storage.c
2.04 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
/**
* \file
*
* \author Georg Hopp
*
* \copyright
* Copyright © 2012 Georg Hopp
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
#include "class.h"
#include "storage.h"
#include "auth/storage.h"
#include "auth/credential.h"
#include "commons.h"
static
int
authStorageCtor(void * _this, va_list * params)
{
AuthStorage this = _this;
this->store = va_arg(*params, Storage);
return 0;
}
static
void
authStorageDtor(void * _this)
{
}
static
int
authStorageAuthenticate(void * _this, Credential cred)
{
AuthStorage this = _this;
unsigned char current_hash[HASH_SIZE];
unsigned char * found_hash = NULL;
size_t nfound_hash = 0;
if (CRED_PASSWORD != cred->type) {
return FALSE;
}
storageGet(
this->store,
CRED_PWD(cred).user,
CRED_PWD(cred).nuser,
&found_hash,
&nfound_hash);
if (NULL == found_hash || (SALT_SIZE + HASH_SIZE) != nfound_hash) {
/* user not found or found hash is invalid */
return FALSE;
}
/* found_hash <=> salt+hash */
if (FALSE == hash_pw(
CRED_PWD(cred).pass,
CRED_PWD(cred).npass,
current_hash,
&found_hash)) {
MEM_FREE(found_hash);
return FALSE;
}
if (0 != memcmp(current_hash, found_hash+SALT_SIZE, HASH_SIZE)) {
MEM_FREE(found_hash);
return FALSE;
}
MEM_FREE(found_hash);
return TRUE;
}
INIT_IFACE(Class, authStorageCtor, authStorageDtor, NULL);
INIT_IFACE(Auth, authStorageAuthenticate);
CREATE_CLASS(AuthLdap, NULL, IFACE(Class), IFACE(Auth));
// vim: set ts=4 sw=4: