127 lines
2.6 KiB
C
127 lines
2.6 KiB
C
/*
|
||
FILENAME : pam_panic_pw.c
|
||
DESCRIPTION : Generates and saves password for pam_panic
|
||
AUTHOR : Bandie, some Author of the glibc manpage
|
||
DATE : 2018-03-27T02:34:08+02:00
|
||
LICENSE : GNU-GPLv3
|
||
*/
|
||
|
||
|
||
#include "pam_panic_pw.h"
|
||
|
||
#include <stdio.h>
|
||
#include <stdlib.h>
|
||
#include <string.h>
|
||
#include <libgen.h>
|
||
#include <time.h>
|
||
#include <unistd.h>
|
||
#include <sys/stat.h>
|
||
#include <crypt.h>
|
||
#include "../config.h"
|
||
#include "../../lib/gettext.h"
|
||
|
||
#define _(String) gettext(String)
|
||
#define FMODE 0644
|
||
#define DMODE 0755
|
||
|
||
int writePasswords(char pw[][256], char* pwfile){
|
||
|
||
// Check, if path of pwfile exist
|
||
// Get parent dir of pwfile
|
||
char* parentdir;
|
||
parentdir = strdup(pwfile);
|
||
dirname(parentdir);
|
||
|
||
// Get POSIX info about the parent dir and create dir, if it does not exist
|
||
struct stat pd;
|
||
if(stat(parentdir, &pd) != 0 && !(S_ISDIR(pd.st_mode))){
|
||
mkdir(parentdir, DMODE);
|
||
}
|
||
|
||
FILE *f = fopen(pwfile, "w");
|
||
if(f == NULL){
|
||
fprintf(stderr, _("ERROR opening file!\n"));
|
||
return 2;
|
||
}
|
||
|
||
fprintf(f, "%s\n%s\n", pw[0], pw[1]);
|
||
|
||
fclose(f);
|
||
|
||
chmod(pwfile, FMODE);
|
||
|
||
return 0;
|
||
}
|
||
|
||
#ifndef TEST
|
||
|
||
int main(void){
|
||
|
||
// gettext
|
||
setlocale(LC_ALL, "");
|
||
bindtextdomain(PACKAGE, LOCALEDIR);
|
||
textdomain(PACKAGE);
|
||
|
||
// init
|
||
time_t t;
|
||
srand((unsigned) time(&t));
|
||
unsigned long seed[2];
|
||
char salt[] = "$6$........";
|
||
const char *const seedchars =
|
||
"./0123456789ABCDEFGHIJKLMNOPQRST"
|
||
"UVWXYZabcdefghijklmnopqrstuvwxyz";
|
||
char *password[2];
|
||
char *pwvrf[2];
|
||
|
||
char pw[2][256];
|
||
char pwv[2][256];
|
||
|
||
char *prompt[4] = {
|
||
_("Key password: "),
|
||
_("Panic password: "),
|
||
_("Confirm key password: "),
|
||
_("Confirm panic password: ")
|
||
};
|
||
|
||
int i;
|
||
|
||
if(getuid() != 0){
|
||
printf(_("Please run this program under root. Write access to %s is mandatory.\n"), PPASSFILE); return 1;
|
||
}
|
||
|
||
for(int j=0; j<2; j++){
|
||
|
||
seed[0] = time(&t);
|
||
seed[1] = rand() ^ (seed[0] >> 14 & 0x30000);
|
||
|
||
/* Turn it into printable characters from ‘seedchars’. */
|
||
for (i = 0; i < 8; i++)
|
||
salt[3+i] = seedchars[(seed[i/5] >> (i%5)*6) & 0x3f];
|
||
|
||
/* Read in the user’s password and encrypt it. */
|
||
password[j] = crypt(getpass(prompt[j]), salt);
|
||
|
||
strcpy(pw[j], password[j]);
|
||
|
||
for(int k=0; k<3; k++){
|
||
pwvrf[j] = crypt(getpass(prompt[j+2]), pw[j]);
|
||
strcpy(pwv[j], pwvrf[j]);
|
||
int ok = strcmp(pw[j], pwv[j]) == 0;
|
||
if(!ok){
|
||
if(k==2){
|
||
printf(_("Didn't work. Bye.\n"));
|
||
return 1;
|
||
}else
|
||
printf(_("Password didn't match. Try again.\n"));
|
||
}else
|
||
break;
|
||
}
|
||
|
||
}
|
||
|
||
/* Save the results. */
|
||
|
||
return writePasswords(pw, PPASSFILE);
|
||
}
|
||
#endif
|