[disorder] / lib / authhash.c

/*
 * This file is part of DisOrder
 * Copyright (C) 2004, 2006, 2007 Richard Kettlewell
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 * 
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 * 
 * You should have received a copy of the GNU General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 */
/** @file lib/authhash.c @brief The authorization hash */

#include "common.h"

#include <stddef.h>
#include <gcrypt.h>

#include "hex.h"
#include "log.h"
#include "authhash.h"

/** @brief Structure of algorithm lookup table */
struct algorithm {
  /** @brief DisOrder algorithm name */
  const char *name;

  /** @brief gcrypt algorithm ID */
  int id;
};

/** @brief Algorithm lookup table
 *
 * We don't use gcry_md_map_name() since that would import gcrypt's API into
 * the disorder protocol.
 */
static const struct algorithm algorithms[] = {
  { "SHA1", GCRY_MD_SHA1 },
  { "sha1", GCRY_MD_SHA1 },
  { "SHA256", GCRY_MD_SHA256 },
  { "sha256", GCRY_MD_SHA256 },
  { "SHA384", GCRY_MD_SHA384 },
  { "sha384", GCRY_MD_SHA384 },
  { "SHA512", GCRY_MD_SHA512 },
  { "sha512", GCRY_MD_SHA512 },
};

/** @brief Number of supported algorithms */
#define NALGORITHMS (sizeof algorithms / sizeof *algorithms)

/** @brief Perform the authorization hash function
 * @param challenge Pointer to challange
 * @param nchallenge Size of challenge
 * @param password Password
 * @param algo Algorithm to use
 * @return Hex string or NULL on error
 *
 * Computes H(challenge|password) and returns it as a newly allocated hex
 * string, or returns NULL on error.
 */
const char *authhash(const void *challenge, size_t nchallenge,
		     const char *password, const char *algo) {
  gcrypt_hash_handle h;
  const char *res;
  size_t n;
  int id;

  assert(challenge != 0);
  assert(password != 0);
  assert(algo != 0);
  for(n = 0; n < NALGORITHMS; ++n)
    if(!strcmp(algo, algorithms[n].name))
      break;
  if(n >= NALGORITHMS)
    return NULL;
  id = algorithms[n].id;
#if HAVE_GCRY_ERROR_T
  {
    gcry_error_t e;
    
    if((e = gcry_md_open(&h, id, 0))) {
      error(0, "gcry_md_open: %s", gcry_strerror(e));
      return 0;
    }
  }
#else
  h = gcry_md_open(id, 0);
#endif
  gcry_md_write(h, password, strlen(password));
  gcry_md_write(h, challenge, nchallenge);
  res = hex(gcry_md_read(h, id), gcry_md_get_algo_dlen(id));
  gcry_md_close(h);
  return res;
}

/** @brief Return non-zero if @p algo is a valid algorithm */
int valid_authhash(const char *algo) {
  size_t n;

  for(n = 0; n < NALGORITHMS; ++n)
    if(!strcmp(algo, algorithms[n].name))
      return 1;
  return 0;
}

/*
Local Variables:
c-basic-offset:2
comment-column:40
fill-column:79
End:
*/
Commit	Line	Data
460b9539	1	/*
460b9539	2	* This file is part of DisOrder
1020001c	3	* Copyright (C) 2004, 2006, 2007 Richard Kettlewell
460b9539	4	*
e7eb3a27	5	* This program is free software: you can redistribute it and/or modify
460b9539	6	* it under the terms of the GNU General Public License as published by
e7eb3a27	7	* the Free Software Foundation, either version 3 of the License, or
460b9539	8	* (at your option) any later version.
e7eb3a27 RK	9	*
	10	* This program is distributed in the hope that it will be useful,
	11	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	12	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	13	* GNU General Public License for more details.
	14	*
460b9539	15	* You should have received a copy of the GNU General Public License
e7eb3a27	16	* along with this program. If not, see <http://www.gnu.org/licenses/>.
460b9539	17	*/
14ad73b9	18	/** @file lib/authhash.c @brief The authorization hash */
460b9539	19
05b75f8d	20	#include "common.h"
460b9539	21
	22	#include <stddef.h>
	23	#include <gcrypt.h>
	24
	25	#include "hex.h"
	26	#include "log.h"
	27	#include "authhash.h"
	28
637fdea3 RK	29	/** @brief Structure of algorithm lookup table */
637fdea3 RK	30	struct algorithm {
4d82d579	31	/** @brief DisOrder algorithm name */
637fdea3	32	const char *name;
4d82d579 RK	33
4d82d579 RK	34	/** @brief gcrypt algorithm ID */
637fdea3 RK	35	int id;
	36	};
	37
	38	/** @brief Algorithm lookup table
	39	*
	40	* We don't use gcry_md_map_name() since that would import gcrypt's API into
	41	* the disorder protocol.
	42	*/
	43	static const struct algorithm algorithms[] = {
	44	{ "SHA1", GCRY_MD_SHA1 },
	45	{ "sha1", GCRY_MD_SHA1 },
	46	{ "SHA256", GCRY_MD_SHA256 },
	47	{ "sha256", GCRY_MD_SHA256 },
	48	{ "SHA384", GCRY_MD_SHA384 },
	49	{ "sha384", GCRY_MD_SHA384 },
	50	{ "SHA512", GCRY_MD_SHA512 },
	51	{ "sha512", GCRY_MD_SHA512 },
	52	};
	53
	54	/** @brief Number of supported algorithms */
	55	#define NALGORITHMS (sizeof algorithms / sizeof *algorithms)
460b9539	56
d7b6f0d1	57	/** @brief Perform the authorization hash function
	58	* @param challenge Pointer to challange
	59	* @param nchallenge Size of challenge
	60	* @param password Password
637fdea3	61	* @param algo Algorithm to use
4d82d579	62	* @return Hex string or NULL on error
d7b6f0d1	63	*
d7b6f0d1	64	* Computes H(challenge\|password) and returns it as a newly allocated hex
637fdea3	65	* string, or returns NULL on error.
d7b6f0d1	66	*/
460b9539	67	const char authhash(const void challenge, size_t nchallenge,
637fdea3	68	const char password, const char algo) {
460b9539	69	gcrypt_hash_handle h;
460b9539	70	const char *res;
637fdea3 RK	71	size_t n;
637fdea3 RK	72	int id;
1c0d78bd RK	73
	74	assert(challenge != 0);
	75	assert(password != 0);
637fdea3 RK	76	assert(algo != 0);
	77	for(n = 0; n < NALGORITHMS; ++n)
	78	if(!strcmp(algo, algorithms[n].name))
	79	break;
	80	if(n >= NALGORITHMS)
	81	return NULL;
	82	id = algorithms[n].id;
460b9539	83	#if HAVE_GCRY_ERROR_T
	84	{
	85	gcry_error_t e;
	86
637fdea3	87	if((e = gcry_md_open(&h, id, 0))) {
460b9539	88	error(0, "gcry_md_open: %s", gcry_strerror(e));
	89	return 0;
	90	}
	91	}
	92	#else
637fdea3	93	h = gcry_md_open(id, 0);
460b9539	94	#endif
	95	gcry_md_write(h, password, strlen(password));
	96	gcry_md_write(h, challenge, nchallenge);
637fdea3	97	res = hex(gcry_md_read(h, id), gcry_md_get_algo_dlen(id));
460b9539	98	gcry_md_close(h);
	99	return res;
	100	}
	101
637fdea3 RK	102	/** @brief Return non-zero if @p algo is a valid algorithm */
	103	int valid_authhash(const char *algo) {
	104	size_t n;
	105
	106	for(n = 0; n < NALGORITHMS; ++n)
	107	if(!strcmp(algo, algorithms[n].name))
	108	return 1;
	109	return 0;
	110	}
	111
460b9539	112	/*
	113	Local Variables:
	114	c-basic-offset:2
	115	comment-column:40
	116	fill-column:79
	117	End:
	118	*/