nntpchan/contrib/backends/nntpchan-daemon/tools/authtool.cpp

#include "base64.hpp"
#include "crypto.hpp"

#include <cassert>
#include <cstring>
#include <iostream>
#include <sodium.h>
#include <string>

static void print_help(const std::string &exename)
{
  std::cout << "usage: " << exename << " [help|gen|check]" << std::endl;
}

static void print_long_help() {}

static void gen_passwd(const std::string &username, const std::string &passwd)
{
  std::array<uint8_t, 8> random;
  randombytes_buf(random.data(), random.size());
  std::string salt = nntpchan::B64Encode(random.data(), random.size());
  std::string cred = passwd + salt;
  nntpchan::SHA512Digest d;
  nntpchan::SHA512((const uint8_t *)cred.c_str(), cred.size(), d);
  std::string hash = nntpchan::B64Encode(d.data(), d.size());
  std::cout << username << ":" << hash << ":" << salt << std::endl;
}

static bool check_cred(const std::string &cred, const std::string &passwd)
{
  auto idx = cred.find(":");
  if (idx == std::string::npos || idx == 0)
    return false;
  std::string part = cred.substr(idx + 1);
  idx = part.find(":");
  if (idx == std::string::npos || idx == 0)
    return false;
  std::string salt = part.substr(idx + 1);
  std::string hash = part.substr(0, idx);
  std::vector<uint8_t> h;
  if (!nntpchan::B64Decode(hash, h))
    return false;
  nntpchan::SHA512Digest d;
  std::string l = passwd + salt;
  nntpchan::SHA512((const uint8_t *)l.data(), l.size(), d);
  return std::memcmp(h.data(), d.data(), d.size()) == 0;
}

int main(int argc, char *argv[])
{
  assert(sodium_init() == 0);
  if (argc == 1)
  {
    print_help(argv[0]);
    return 1;
  }
  std::string cmd(argv[1]);
  if (cmd == "help")
  {
    print_long_help();
    return 0;
  }
  if (cmd == "gen")
  {
    if (argc == 4)
    {
      gen_passwd(argv[2], argv[3]);
      return 0;
    }
    else
    {
      std::cout << "usage: " << argv[0] << " gen username password" << std::endl;
      return 1;
    }
  }
  if (cmd == "check")
  {
    std::string cred;
    std::cout << "credential: ";
    if (!std::getline(std::cin, cred))
    {
      return 1;
    }
    std::string passwd;
    std::cout << "password: ";
    if (!std::getline(std::cin, passwd))
    {
      return 1;
    }
    if (check_cred(cred, passwd))
    {
      std::cout << "okay" << std::endl;
      return 0;
    }
    std::cout << "bad login" << std::endl;
    return 1;
  }

  print_help(argv[0]);
  return 1;
}
update dis shit mang 2016-10-15 21:37:59 +05:00			`#include "base64.hpp"`
			`#include "crypto.hpp"`

updates 2016-10-15 22:53:35 +05:00			`#include <cassert>`
			`#include <cstring>`
update dis shit mang 2016-10-15 21:37:59 +05:00			`#include <iostream>`
updates 2016-10-15 22:53:35 +05:00			`#include <sodium.h>`
clang format 2017-10-17 19:29:56 +05:00			`#include <string>`
update dis shit mang 2016-10-15 21:37:59 +05:00
clang format 2017-10-17 19:29:56 +05:00			`static void print_help(const std::string &exename)`
update dis shit mang 2016-10-15 21:37:59 +05:00			`{`
more 2017-05-03 20:37:09 +05:00			`std::cout << "usage: " << exename << " [help\|gen\|check]" << std::endl;`
updates 2016-10-15 22:53:35 +05:00			`}`

clang format 2017-10-17 19:29:56 +05:00			`static void print_long_help() {}`
more 2017-05-03 20:37:09 +05:00
clang format 2017-10-17 19:29:56 +05:00			`static void gen_passwd(const std::string &username, const std::string &passwd)`
updates 2016-10-15 22:53:35 +05:00			`{`
			`std::array<uint8_t, 8> random;`
			`randombytes_buf(random.data(), random.size());`
			`std::string salt = nntpchan::B64Encode(random.data(), random.size());`
			`std::string cred = passwd + salt;`
			`nntpchan::SHA512Digest d;`
			`nntpchan::SHA512((const uint8_t *)cred.c_str(), cred.size(), d);`
			`std::string hash = nntpchan::B64Encode(d.data(), d.size());`
			`std::cout << username << ":" << hash << ":" << salt << std::endl;`
			`}`

clang format 2017-10-17 19:29:56 +05:00			`static bool check_cred(const std::string &cred, const std::string &passwd)`
updates 2016-10-15 22:53:35 +05:00			`{`
			`auto idx = cred.find(":");`
clang format 2017-10-17 19:29:56 +05:00			`if (idx == std::string::npos \|\| idx == 0)`
			`return false;`
			`std::string part = cred.substr(idx + 1);`
updates 2016-10-15 22:53:35 +05:00			`idx = part.find(":");`
clang format 2017-10-17 19:29:56 +05:00			`if (idx == std::string::npos \|\| idx == 0)`
			`return false;`
			`std::string salt = part.substr(idx + 1);`
updates 2016-10-15 22:53:35 +05:00			`std::string hash = part.substr(0, idx);`
			`std::vector<uint8_t> h;`
clang format 2017-10-17 19:29:56 +05:00			`if (!nntpchan::B64Decode(hash, h))`
			`return false;`
updates 2016-10-15 22:53:35 +05:00			`nntpchan::SHA512Digest d;`
			`std::string l = passwd + salt;`
clang format 2017-10-17 19:29:56 +05:00			`nntpchan::SHA512((const uint8_t *)l.data(), l.size(), d);`
updates 2016-10-15 22:53:35 +05:00			`return std::memcmp(h.data(), d.data(), d.size()) == 0;`
update dis shit mang 2016-10-15 21:37:59 +05:00			`}`

clang format 2017-10-17 19:29:56 +05:00			`int main(int argc, char *argv[])`
update dis shit mang 2016-10-15 21:37:59 +05:00			`{`
updates 2016-10-15 22:53:35 +05:00			`assert(sodium_init() == 0);`
clang format 2017-10-17 19:29:56 +05:00			`if (argc == 1)`
			`{`
update dis shit mang 2016-10-15 21:37:59 +05:00			`print_help(argv[0]);`
			`return 1;`
			`}`
updates 2016-10-15 22:53:35 +05:00			`std::string cmd(argv[1]);`
clang format 2017-10-17 19:29:56 +05:00			`if (cmd == "help")`
			`{`
updates 2016-10-15 22:53:35 +05:00			`print_long_help();`
			`return 0;`
			`}`
clang format 2017-10-17 19:29:56 +05:00			`if (cmd == "gen")`
			`{`
			`if (argc == 4)`
			`{`
updates 2016-10-15 22:53:35 +05:00			`gen_passwd(argv[2], argv[3]);`
			`return 0;`
clang format 2017-10-17 19:29:56 +05:00			`}`
			`else`
			`{`
more 2017-05-03 20:37:09 +05:00			`std::cout << "usage: " << argv[0] << " gen username password" << std::endl;`
updates 2016-10-15 22:53:35 +05:00			`return 1;`
			`}`
			`}`
clang format 2017-10-17 19:29:56 +05:00			`if (cmd == "check")`
			`{`
updates 2016-10-15 22:53:35 +05:00			`std::string cred;`
clang format 2017-10-17 19:29:56 +05:00			`std::cout << "credential: ";`
			`if (!std::getline(std::cin, cred))`
			`{`
updates 2016-10-15 22:53:35 +05:00			`return 1;`
			`}`
			`std::string passwd;`
			`std::cout << "password: ";`
clang format 2017-10-17 19:29:56 +05:00			`if (!std::getline(std::cin, passwd))`
			`{`
updates 2016-10-15 22:53:35 +05:00			`return 1;`
			`}`
clang format 2017-10-17 19:29:56 +05:00			`if (check_cred(cred, passwd))`
			`{`
updates 2016-10-15 22:53:35 +05:00			`std::cout << "okay" << std::endl;`
			`return 0;`
			`}`
			`std::cout << "bad login" << std::endl;`
			`return 1;`
			`}`

			`print_help(argv[0]);`
			`return 1;`
update dis shit mang 2016-10-15 21:37:59 +05:00			`}`