busybox/libbb/pw_encrypt.c

/* vi: set sw=4 ts=4: */
/*
 * Utility routine.
 *
 * Copyright (C) 1999-2004 by Erik Andersen <andersen@codepoet.org>
 *
 * Licensed under GPLv2 or later, see file LICENSE in this tarball for details.
 */

#include "libbb.h"

#if ENABLE_USE_BB_CRYPT

/*
 * DES and MD5 crypt implementations are taken from uclibc.
 * They were modified to not use static buffers.
 */
/* Common for them */
static const uint8_t ascii64[] = "./0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz";
#include "pw_encrypt_des.c"
#include "pw_encrypt_md5.c"

/* Other advanced crypt ids: */
/* $2$ or $2a$: Blowfish */
/* $5$: SHA-256 */
/* $6$: SHA-512 */
/* TODO: implement SHA - http://people.redhat.com/drepper/SHA-crypt.txt */

static struct const_des_ctx *des_cctx;
static struct des_ctx *des_ctx;

/* my_crypt returns malloc'ed data */
static char *my_crypt(const char *key, const char *salt)
{
	/* First, check if we are supposed to be using the MD5 replacement
	 * instead of DES...  */
	if (salt[0] == '$' && salt[1] == '1' && salt[2] == '$') {
		return md5_crypt(xzalloc(MD5_OUT_BUFSIZE), (unsigned char*)key, (unsigned char*)salt);
	}

	{
		if (!des_cctx)
			des_cctx = const_des_init();
		des_ctx = des_init(des_ctx, des_cctx);
		return des_crypt(des_ctx, xzalloc(DES_OUT_BUFSIZE), (unsigned char*)key, (unsigned char*)salt);
	}
}

/* So far nobody wants to have it public */
static void my_crypt_cleanup(void)
{
	free(des_cctx);
	free(des_ctx);
	des_cctx = NULL;
	des_ctx = NULL;
}

char* FAST_FUNC pw_encrypt(const char *clear, const char *salt, int cleanup)
{
	char *encrypted;

	encrypted = my_crypt(clear, salt);

	if (cleanup)
		my_crypt_cleanup();

	return encrypted;
}

#else /* if !ENABLE_USE_BB_CRYPT */

char* FAST_FUNC pw_encrypt(const char *clear, const char *salt, int cleanup)
{
	return xstrdup(crypt(clear, salt));
}

#endif
Port over the last of the tinylogin applets -Erik 2002-06-23 09:54:25 +05:30			`/* vi: set sw=4 ts=4: */`
			`/*`
			`* Utility routine.`
			`*`
Remove trailing whitespace. Update copyright to include 2004. 2004-03-15 13:59:22 +05:30			`* Copyright (C) 1999-2004 by Erik Andersen <andersen@codepoet.org>`
Port over the last of the tinylogin applets -Erik 2002-06-23 09:54:25 +05:30			`*`
Replace current verbose GPL stuff in libbb/*.c with one-line GPL boilerplate. 2006-07-10 17:11:19 +05:30			`* Licensed under GPLv2 or later, see file LICENSE in this tarball for details.`
Port over the last of the tinylogin applets -Erik 2002-06-23 09:54:25 +05:30			`*/`

skip_whitespace() shouldn't claim its return value is const, it doesn't know that and callers wind up typecasting it back. 2006-06-19 01:50:07 +05:30			`#include "libbb.h"`
Port over the last of the tinylogin applets -Erik 2002-06-23 09:54:25 +05:30
Specially for Bernhard Fischer introduce USE_BB_CRYPT which selects between libc/custom crypt routines. 2008-06-16 00:05:34 +05:30			`#if ENABLE_USE_BB_CRYPT`

uclibc insists on having 70k static buffer for crypt. For bbox it's not acceptable. Roll our own des and md5 crypt implementation. Against older uclibc: text data bss dec hex filename 759945 604 6684 767233 bb501 busybox_old 759766 604 6684 767054 bb44e busybox_unstripped so, we still save on code size. 2008-06-12 22:25:59 +05:30			`/*`
			`* DES and MD5 crypt implementations are taken from uclibc.`
			`* They were modified to not use static buffers.`
			`*/`
			`/* Common for them */`
			`static const uint8_t ascii64[] = "./0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz";`
			`#include "pw_encrypt_des.c"`
			`#include "pw_encrypt_md5.c"`

libbb: add a TODO to support new SHA-based encrypted passwords 2008-11-07 19:06:46 +05:30			`/* Other advanced crypt ids: */`
			`/* $2$ or $2a$: Blowfish */`
			`/* $5$: SHA-256 */`
			`/* $6$: SHA-512 */`
			`/* TODO: implement SHA - http://people.redhat.com/drepper/SHA-crypt.txt */`
uclibc insists on having 70k static buffer for crypt. For bbox it's not acceptable. Roll our own des and md5 crypt implementation. Against older uclibc: text data bss dec hex filename 759945 604 6684 767233 bb501 busybox_old 759766 604 6684 767054 bb44e busybox_unstripped so, we still save on code size. 2008-06-12 22:25:59 +05:30
			`static struct const_des_ctx *des_cctx;`
			`static struct des_ctx *des_ctx;`

			`/* my_crypt returns malloc'ed data */`
			`static char my_crypt(const char key, const char *salt)`
			`{`
			`/* First, check if we are supposed to be using the MD5 replacement`
			`* instead of DES... */`
			`if (salt[0] == '$' && salt[1] == '1' && salt[2] == '$') {`
			`return md5_crypt(xzalloc(MD5_OUT_BUFSIZE), (unsigned char)key, (unsigned char)salt);`
			`}`

			`{`
			`if (!des_cctx)`
			`des_cctx = const_des_init();`
			`des_ctx = des_init(des_ctx, des_cctx);`
			`return des_crypt(des_ctx, xzalloc(DES_OUT_BUFSIZE), (unsigned char)key, (unsigned char)salt);`
			`}`
			`}`

			`/* So far nobody wants to have it public */`
			`static void my_crypt_cleanup(void)`
			`{`
			`free(des_cctx);`
			`free(des_ctx);`
			`des_cctx = NULL;`
			`des_ctx = NULL;`
			`}`

*: introduce and use FAST_FUNC: regparm on i386, otherwise no-on text data bss dec hex filename 808035 611 6868 815514 c719a busybox_old 804472 611 6868 811951 c63af busybox_unstripped 2008-06-27 08:22:20 +05:30			`char* FAST_FUNC pw_encrypt(const char clear, const char salt, int cleanup)`
Port over the last of the tinylogin applets -Erik 2002-06-23 09:54:25 +05:30			`{`
make pw_encrypt() return malloc'ed string. text data bss dec hex filename 759802 604 6684 767090 bb472 busybox_old 759804 604 6676 767084 bb46c busybox_unstripped 2008-06-12 22:26:52 +05:30			`char *encrypted;`
Port over the last of the tinylogin applets -Erik 2002-06-23 09:54:25 +05:30
make pw_encrypt() return malloc'ed string. text data bss dec hex filename 759802 604 6684 767090 bb472 busybox_old 759804 604 6676 767084 bb46c busybox_unstripped 2008-06-12 22:26:52 +05:30			`encrypted = my_crypt(clear, salt);`
uclibc insists on having 70k static buffer for crypt. For bbox it's not acceptable. Roll our own des and md5 crypt implementation. Against older uclibc: text data bss dec hex filename 759945 604 6684 767233 bb501 busybox_old 759766 604 6684 767054 bb44e busybox_unstripped so, we still save on code size. 2008-06-12 22:25:59 +05:30
			`if (cleanup)`
			`my_crypt_cleanup();`

make pw_encrypt() return malloc'ed string. text data bss dec hex filename 759802 604 6684 767090 bb472 busybox_old 759804 604 6676 767084 bb46c busybox_unstripped 2008-06-12 22:26:52 +05:30			`return encrypted;`
Port over the last of the tinylogin applets -Erik 2002-06-23 09:54:25 +05:30			`}`
Specially for Bernhard Fischer introduce USE_BB_CRYPT which selects between libc/custom crypt routines. 2008-06-16 00:05:34 +05:30
			`#else /* if !ENABLE_USE_BB_CRYPT */`

*: introduce and use FAST_FUNC: regparm on i386, otherwise no-on text data bss dec hex filename 808035 611 6868 815514 c719a busybox_old 804472 611 6868 811951 c63af busybox_unstripped 2008-06-27 08:22:20 +05:30			`char* FAST_FUNC pw_encrypt(const char clear, const char salt, int cleanup)`
Specially for Bernhard Fischer introduce USE_BB_CRYPT which selects between libc/custom crypt routines. 2008-06-16 00:05:34 +05:30			`{`
			`return xstrdup(crypt(clear, salt));`
			`}`

			`#endif`