NetBSD/sys/lib/libsa/checkpasswd.c

132 lines
2.9 KiB
C

/* $NetBSD: checkpasswd.c,v 1.9 2011/01/06 02:45:13 jakllsch Exp $ */
/*-
* Copyright (c) 1993
* The Regents of the University of California. All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
*
* THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
* ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
* SUCH DAMAGE.
*
* @(#)gets.c 8.1 (Berkeley) 6/11/93
*/
#ifdef _STANDALONE
#include <lib/libkern/libkern.h>
#else
#include <string.h>
#endif
#include "stand.h"
char *
getpass(const char *prompt)
{
int c;
char *lp;
static char buf[128]; /* == _PASSWORD_LEN */
printf("%s", prompt);
for (lp = buf;;) {
switch (c = getchar() & 0177) {
case '\n':
case '\r':
*lp = '\0';
putchar('\n');
return buf;
case '\b':
case '\177':
if (lp > buf) {
lp--;
putchar('\b');
putchar(' ');
putchar('\b');
}
break;
#if HASH_ERASE
case '#':
if (lp > buf)
--lp;
break;
#endif
case 'r'&037: {
char *p;
putchar('\n');
for (p = buf; p < lp; ++p)
putchar('*');
break;
}
#if AT_ERASE
case '@':
#endif
case 'u'&037:
case 'w'&037:
lp = buf;
putchar('\n');
break;
default:
*lp++ = c;
putchar('*');
break;
}
}
/*NOTREACHED*/
}
#include <sys/md5.h>
char bootpasswd[16] = {'\0'}; /* into data segment! */
int
checkpasswd(void)
{
return check_password(bootpasswd);
}
int
check_password(const char *password)
{
int i;
char *passwd;
MD5_CTX md5ctx;
char pwdigest[16];
for (i = 0; i < 16; i++)
if (password[i])
break;
if (i == 16)
return 1; /* no password set */
for (i = 0; i < 3; i++) {
passwd = getpass("Password: ");
MD5Init(&md5ctx);
MD5Update(&md5ctx, passwd, strlen(passwd));
MD5Final(pwdigest, &md5ctx);
if (memcmp(pwdigest, password, 16) == 0)
return 1;
}
/* failed */
return 0;
}