doxygen/digest_8c_source.html

/*

 * File: digest.c

 *

 * Copyright 2009 Justus Winter  <4winter@informatik.uni-hamburg.de>

 *

 * This program is free software; you can redistribute it and/or modify

 * it under the terms of the GNU General Public License as published by

 * the Free Software Foundation; either version 3 of the License, or

 * (at your option) any later version.

 */


#include <stdlib.h>

#include "digest.h"

#include "md5.h"

#include "msg.h"

#include "../dlib/dlib.h"


static const char *ALGORITHM2STR[] = { NULL, "MD5", "MD5-sess" };

static const char *QOP2STR[] = { NULL, "auth", "auth-int" };

static const char hexchars[] = "0123456789abcdef";


static Dstr *md5hexdigest(const Dstr *data)

{

   md5_state_t state;

   md5_byte_t digest[16];

   Dstr *result = dStr_sized_new(33);

   int i;


   md5_init(&state);

   md5_append(&state, (const md5_byte_t *)data->str, data->len);

   md5_finish(&state, digest);


   for (i = 0; i < 16; i++)

      dStr_sprintfa(result, "%02x", digest[i]);

   return result;

}


char *a_Digest_create_cnonce(void)

{

   int i;

   char *result = dNew(char, 33);

   for (i = 0; i < 32; i++)

      result[i] = hexchars[rand() % 16];

   result[32] = 0;

   return result;

}


int a_Digest_compute_digest(AuthRealm_t *realm, const char *username,

                            const char *passwd)

{

   Dstr *a1;

   Dstr *digest;


   if (realm->algorithm == MD5 || realm->algorithm == ALGORITHMNOTSET) {

      /* A1 = unq(username-value) ":" unq(realm-value) ":" passwd */

      a1 = dStr_new(NULL);

      dStr_sprintf(a1, "%s:%s:%s", username, realm->name, passwd);

   } else if (realm->algorithm == MD5SESS) {

      /* A1 = H( unq(username-value) ":" unq(realm-value)

      **         ":" passwd )

      **         ":" unq(nonce-value) ":" unq(cnonce-value)

      */

      Dstr *a0 = dStr_new(NULL);

      dStr_sprintf(a0, "%s:%s:%s", username, realm->name, passwd);

      Dstr *ha0 = md5hexdigest(a0);

      a1 = dStr_new(NULL);

      dStr_sprintf(a1, "%s:%s:%s", ha0, realm->nonce, realm->cnonce);

      dStr_free(a0, 1);

      dStr_free(ha0, 1);

   } else {

      MSG("a_Digest_create_auth: Unknown algorithm.\n");

      return 0;

   }


   digest = md5hexdigest(a1);

   realm->authorization = digest->str;

   dStr_shred(a1);

   dStr_free(a1, 1);

   dStr_free(digest, 0);

   return 1;

}


static Dstr *Digest_create_response(AuthRealm_t *realm, const char *method,

                                    const char *digest_uri,

                                    const Dstr *entity_body)

{

   Dstr *ha2;

   Dstr *result;


   if (realm->qop == QOPNOTSET || realm->qop == AUTH) {

      /* A2 = Method ":" digest-uri-value */

      Dstr *a2 = dStr_new(NULL);

      dStr_sprintf(a2, "%s:%s", method, digest_uri);

      ha2 = md5hexdigest(a2);

      dStr_free(a2, 1);

   } else if (realm->qop == AUTHINT) {

      /* A2 = Method ":" digest-uri-value ":" H(entity-body) */

      Dstr *hentity = md5hexdigest(entity_body);

      Dstr *a2 = dStr_new(NULL);

      dStr_sprintf(a2, "%s:%s:%s", method, digest_uri, hentity->str);

      ha2 = md5hexdigest(a2);

      dStr_free(hentity, 1);

      dStr_free(a2, 1);

   } else {

      MSG("a_Digest_create_auth: Unknown qop value.\n");

      return NULL;

   }

   result = dStr_new(NULL);


   if (realm->qop == AUTH || realm->qop == AUTHINT) {

      dStr_sprintf(result,

                   "%s:%s:%08x:%s:%s:%s",

                   realm->authorization,

                   realm->nonce,

                   realm->nonce_count,

                   realm->cnonce,

                   QOP2STR[realm->qop],

                   ha2->str);

   } else {

      dStr_sprintf(result,

                   "%s:%s:%s",

                   realm->authorization,

                   realm->nonce,

                   ha2->str);

   }


   Dstr *request_digest = md5hexdigest(result);

   dStr_free(result, 1);

   dStr_free(ha2, 1);

   return request_digest;

}


static void Digest_Dstr_append_token_value(Dstr *str, int delimiter,

                                           const char *token,

                                           const char *value, int quoted)

{

   char c;

   dStr_sprintfa(str, "%s%s=", (delimiter ? ", " : ""), token);

   if (quoted) {

      dStr_append_c(str, '"');

      while ((c = *value++)) {

         if (c == '"')

            dStr_append_c(str, '\\');

         dStr_append_c(str, c);

      }

      dStr_append_c(str, '"');

   } else {

      dStr_append(str, value);

   }

}


char *a_Digest_authorization_hdr(AuthRealm_t *realm, const DilloUrl *url,

                                 const char *digest_uri)

{

   char *ret;

   Dstr *response, *result;

   const char *method = URL_FLAGS(url) & URL_Post ? "POST" : "GET";


   realm->nonce_count++;

   response = Digest_create_response(realm, method, digest_uri, URL_DATA(url));

   if (!response)

      return NULL;

   result = dStr_new("Authorization: Digest ");

   Digest_Dstr_append_token_value(result, 0, "username", realm->username, 1);

   Digest_Dstr_append_token_value(result, 1, "realm", realm->name, 1);

   Digest_Dstr_append_token_value(result, 1, "nonce", realm->nonce, 1);

   Digest_Dstr_append_token_value(result, 1, "uri", digest_uri, 1);

   if (realm->qop != QOPNOTSET) {

      Digest_Dstr_append_token_value(result, 1, "cnonce", realm->cnonce, 1);

      dStr_sprintfa(result, ", nc=%08x", realm->nonce_count);

   }

   if (realm->algorithm != ALGORITHMNOTSET) {

      Digest_Dstr_append_token_value(result, 1, "algorithm",

                                     ALGORITHM2STR[realm->algorithm], 0);

   }

   Digest_Dstr_append_token_value(result, 1, "response", response->str, 1);

   if (realm->opaque)

      Digest_Dstr_append_token_value(result, 1, "opaque", realm->opaque, 1);

   if (realm->qop != QOPNOTSET)

      Digest_Dstr_append_token_value(result, 1, "qop", QOP2STR[realm->qop], 1);

   dStr_sprintfa(result, "\r\n");


   dStr_free(response, 1);

   ret = result->str;

   dStr_free(result, 0);

   return ret;

}


AUTHINT
@ AUTHINT
Definition auth.h:12

AUTH
@ AUTH
Definition auth.h:12

QOPNOTSET
@ QOPNOTSET
Definition auth.h:12

MD5SESS
@ MD5SESS
Definition auth.h:11

MD5
@ MD5
Definition auth.h:11

ALGORITHMNOTSET
@ ALGORITHMNOTSET
Definition auth.h:11

MSG
#define MSG(...)
Definition bookmarks.c:46

hexchars
static const char hexchars[]
Definition digest.c:20

md5hexdigest
static Dstr * md5hexdigest(const Dstr *data)
Definition digest.c:22

a_Digest_compute_digest
int a_Digest_compute_digest(AuthRealm_t *realm, const char *username, const char *passwd)
This portion only has to be calculated once.
Definition digest.c:54

QOP2STR
static const char * QOP2STR[]
Definition digest.c:19

a_Digest_create_cnonce
char * a_Digest_create_cnonce(void)
Returns a pointer to a newly allocated string containing a cnonce.
Definition digest.c:41

ALGORITHM2STR
static const char * ALGORITHM2STR[]
Definition digest.c:18

Digest_Dstr_append_token_value
static void Digest_Dstr_append_token_value(Dstr *str, int delimiter, const char *token, const char *value, int quoted)
Definition digest.c:142

a_Digest_authorization_hdr
char * a_Digest_authorization_hdr(AuthRealm_t *realm, const DilloUrl *url, const char *digest_uri)
Construct Digest Authorization header.
Definition digest.c:169

Digest_create_response
static Dstr * Digest_create_response(AuthRealm_t *realm, const char *method, const char *digest_uri, const Dstr *entity_body)
This portion is calculatd for each request.
Definition digest.c:92

digest.h

dStr_sprintfa
void dStr_sprintfa(Dstr *ds, const char *format,...)
Printf-like function that appends.
Definition dlib.c:464

dStr_append
void dStr_append(Dstr *ds, const char *s)
Append a C string to a Dstr.
Definition dlib.c:316

dStr_sized_new
Dstr * dStr_sized_new(int sz)
Create a new string with a given size.
Definition dlib.c:254

dStr_free
void dStr_free(Dstr *ds, int all)
Free a dillo string.
Definition dlib.c:337

dStr_append_c
void dStr_append_c(Dstr *ds, int c)
Append one character.
Definition dlib.c:349

dStr_sprintf
void dStr_sprintf(Dstr *ds, const char *format,...)
Printf-like function.
Definition dlib.c:450

dStr_new
Dstr * dStr_new(const char *s)
Create a new string.
Definition dlib.c:325

dStr_shred
void dStr_shred(Dstr *ds)
Clear a Dstr.
Definition dlib.c:379

dNew
#define dNew(type, count)
Definition dlib.h:49

md5_append
void md5_append(md5_state_t *pms, const md5_byte_t *data, int nbytes)
Append a string to the message.
Definition md5.c:334

md5_init
void md5_init(md5_state_t *pms)
Initialize the algorithm.
Definition md5.c:324

md5_finish
void md5_finish(md5_state_t *pms, md5_byte_t digest[16])
Finish the message and return the digest.
Definition md5.c:372

md5.h

md5_byte_t
unsigned char md5_byte_t
Definition md5.h:72

msg.h

AuthRealm_t
Definition auth.h:14

AuthRealm_t::nonce_count
unsigned int nonce_count
Definition auth.h:23

AuthRealm_t::username
char * username
Definition auth.h:21

AuthRealm_t::cnonce
char * cnonce
Definition auth.h:22

AuthRealm_t::qop
enum AuthParseDigestQOP_t qop
Definition auth.h:28

AuthRealm_t::opaque
char * opaque
Definition auth.h:25

AuthRealm_t::nonce
char * nonce
Definition auth.h:24

AuthRealm_t::name
char * name
Definition auth.h:16

AuthRealm_t::authorization
char * authorization
Definition auth.h:18

AuthRealm_t::algorithm
enum AuthParseDigestAlgorithm_t algorithm
Definition auth.h:26

DilloUrl
Definition url.h:88

Dstr
Definition dlib.h:102

Dstr::str
Dstr_char_t * str
Definition dlib.h:105

Dstr::len
int len
Definition dlib.h:104

md5_state_s
Define the state of the MD5 Algorithm.
Definition md5.h:76

URL_FLAGS
#define URL_FLAGS(u)
Definition url.h:79

URL_DATA
#define URL_DATA(u)
Definition url.h:77

URL_Post
#define URL_Post
Definition url.h:33