[hcoop/debian/courier-authlib.git] / checkpasswordsha1.c

/*
** Copyright 2001-2008 Double Precision, Inc.  See COPYING for
** distribution information.
*/

#if	HAVE_CONFIG_H
#include	"courier_auth_config.h"
#endif
#include	"courierauthsasl.h"
#include	<string.h>
#include	<stdlib.h>
#if	HAVE_UNISTD_H
#include	<unistd.h>
#endif
#include	"sha1/sha1.h"
#include	"auth.h"


int authcheckpasswordsha1(const char *password, const char *encrypted_password)
{
	if (strncasecmp(encrypted_password, "{SHA}", 5) == 0)
	{
		return (strcmp(encrypted_password+5, sha1_hash(password)));
	}
	if (strncasecmp(encrypted_password, "{SHA256}", 8) == 0)
	{
		return (strcmp(encrypted_password+8, sha256_hash(password)));
	}
	if (strncasecmp(encrypted_password, "{SHA512}", 8) == 0)
	{
		return (strcmp(encrypted_password+8, sha512_hash(password)));
	}
	if (strncasecmp(encrypted_password, "{SSHA}", 6) == 0)
	{
		char *code = NULL; 
		int i;
		SSHA_RAND rand;

		code = strdup(encrypted_password+6);

		if(code == NULL)
		{
			return (-1);
		}

		i = authsasl_frombase64(code);

		if(i == -1 || i < sizeof(SSHA_RAND))
		{
			free(code);
			return (-1);
		}

		memcpy((char *)rand, code+i-sizeof(SSHA_RAND),
		       sizeof(SSHA_RAND));

		i=strcmp(encrypted_password+6, ssha_hash(password, rand));

		free(code);
		return i;

	}
	return (-1);
}
Commit	Line	Data
d9898ee8	1	/*
8d138742	2	** Copyright 2001-2008 Double Precision, Inc. See COPYING for
d9898ee8	3	** distribution information.
	4	*/
	5
	6	#if HAVE_CONFIG_H
	7	#include "courier_auth_config.h"
	8	#endif
8d138742	9	#include "courierauthsasl.h"
d9898ee8	10	#include <string.h>
8d138742	11	#include <stdlib.h>
d9898ee8	12	#if HAVE_UNISTD_H
	13	#include <unistd.h>
	14	#endif
	15	#include "sha1/sha1.h"
	16	#include "auth.h"
	17
d9898ee8	18
	19	int authcheckpasswordsha1(const char password, const char encrypted_password)
	20	{
	21	if (strncasecmp(encrypted_password, "{SHA}", 5) == 0)
	22	{
	23	return (strcmp(encrypted_password+5, sha1_hash(password)));
	24	}
	25	if (strncasecmp(encrypted_password, "{SHA256}", 8) == 0)
	26	{
	27	return (strcmp(encrypted_password+8, sha256_hash(password)));
	28	}
8d138742 CE	29	if (strncasecmp(encrypted_password, "{SHA512}", 8) == 0)
	30	{
	31	return (strcmp(encrypted_password+8, sha512_hash(password)));
	32	}
	33	if (strncasecmp(encrypted_password, "{SSHA}", 6) == 0)
	34	{
	35	char *code = NULL;
	36	int i;
	37	SSHA_RAND rand;
	38
	39	code = strdup(encrypted_password+6);
	40
	41	if(code == NULL)
	42	{
	43	return (-1);
	44	}
	45
	46	i = authsasl_frombase64(code);
	47
	48	if(i == -1 \|\| i < sizeof(SSHA_RAND))
	49	{
	50	free(code);
	51	return (-1);
	52	}
	53
	54	memcpy((char *)rand, code+i-sizeof(SSHA_RAND),
	55	sizeof(SSHA_RAND));
	56
	57	i=strcmp(encrypted_password+6, ssha_hash(password, rand));
	58
	59	free(code);
	60	return i;
	61
	62	}
d9898ee8	63	return (-1);
d9898ee8	64	}