| OLD | NEW |
|---|
| (Empty) |
| 1 /*- | |
| 2 * Copyright 2009 Colin Percival | |
| 3 * All rights reserved. | |
| 4 * | |
| 5 * Redistribution and use in source and binary forms, with or without | |
| 6 * modification, are permitted provided that the following conditions | |
| 7 * are met: | |
| 8 * 1. Redistributions of source code must retain the above copyright | |
| 9 * notice, this list of conditions and the following disclaimer. | |
| 10 * 2. Redistributions in binary form must reproduce the above copyright | |
| 11 * notice, this list of conditions and the following disclaimer in the | |
| 12 * documentation and/or other materials provided with the distribution. | |
| 13 * | |
| 14 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND | |
| 15 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | |
| 16 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | |
| 17 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | |
| 18 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | |
| 19 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | |
| 20 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | |
| 21 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | |
| 22 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | |
| 23 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | |
| 24 * SUCH DAMAGE. | |
| 25 */ | |
| 26 #include "scrypt_platform.h" | |
| 27 | |
| 28 #include <stdio.h> | |
| 29 #include <stdlib.h> | |
| 30 #include <string.h> | |
| 31 #include <termios.h> | |
| 32 #include <unistd.h> | |
| 33 | |
| 34 #include "warn.h" | |
| 35 | |
| 36 #include "readpass.h" | |
| 37 | |
| 38 #define MAXPASSLEN 2048 | |
| 39 | |
| 40 /** | |
| 41 * tarsnap_getpass(passwd, prompt, confirmprompt, devtty) | |
| 42 * If ${devtty} is non-zero, read a password from /dev/tty if possible; if | |
| 43 * not, read from stdin. If reading from a tty (either /dev/tty or stdin), | |
| 44 * disable echo and prompt the user by printing ${prompt} to stderr. If | |
| 45 * ${confirmprompt} is non-NULL, read a second password (prompting if a | |
| 46 * terminal is being used) and repeat until the user enters the same password | |
| 47 * twice. Return the password as a malloced NUL-terminated string via | |
| 48 * ${passwd}. The obscure name is to avoid namespace collisions due to the | |
| 49 * getpass / readpass / readpassphrase / etc. functions in various libraries. | |
| 50 */ | |
| 51 int | |
| 52 tarsnap_readpass(char ** passwd, const char * prompt, | |
| 53 const char * confirmprompt, int devtty) | |
| 54 { | |
| 55 FILE * readfrom; | |
| 56 char passbuf[MAXPASSLEN]; | |
| 57 char confpassbuf[MAXPASSLEN]; | |
| 58 struct termios term, term_old; | |
| 59 int usingtty; | |
| 60 | |
| 61 /* | |
| 62 * If devtty != 0, try to open /dev/tty; if that fails, or if devtty | |
| 63 * is zero, we'll read the password from stdin instead. | |
| 64 */ | |
| 65 if ((devtty == 0) || ((readfrom = fopen("/dev/tty", "r")) == NULL)) | |
| 66 readfrom = stdin; | |
| 67 | |
| 68 /* If we're reading from a terminal, try to disable echo. */ | |
| 69 if ((usingtty = isatty(fileno(readfrom))) != 0) { | |
| 70 if (tcgetattr(fileno(readfrom), &term_old)) { | |
| 71 warn("Cannot read terminal settings"); | |
| 72 goto err1; | |
| 73 } | |
| 74 memcpy(&term, &term_old, sizeof(struct termios)); | |
| 75 term.c_lflag = (term.c_lflag & ~ECHO) | ECHONL; | |
| 76 if (tcsetattr(fileno(readfrom), TCSANOW, &term)) { | |
| 77 warn("Cannot set terminal settings"); | |
| 78 goto err1; | |
| 79 } | |
| 80 } | |
| 81 | |
| 82 retry: | |
| 83 /* If we have a terminal, prompt the user to enter the password. */ | |
| 84 if (usingtty) | |
| 85 fprintf(stderr, "%s: ", prompt); | |
| 86 | |
| 87 /* Read the password. */ | |
| 88 if (fgets(passbuf, MAXPASSLEN, readfrom) == NULL) { | |
| 89 warn("Cannot read password"); | |
| 90 goto err2; | |
| 91 } | |
| 92 | |
| 93 /* Confirm the password if necessary. */ | |
| 94 if (confirmprompt != NULL) { | |
| 95 if (usingtty) | |
| 96 fprintf(stderr, "%s: ", confirmprompt); | |
| 97 if (fgets(confpassbuf, MAXPASSLEN, readfrom) == NULL) { | |
| 98 warn("Cannot read password"); | |
| 99 goto err2; | |
| 100 } | |
| 101 if (strcmp(passbuf, confpassbuf)) { | |
| 102 fprintf(stderr, | |
| 103 "Passwords mismatch, please try again\n"); | |
| 104 goto retry; | |
| 105 } | |
| 106 } | |
| 107 | |
| 108 /* Terminate the string at the first "\r" or "\n" (if any). */ | |
| 109 passbuf[strcspn(passbuf, "\r\n")] = '\0'; | |
| 110 | |
| 111 /* If we changed terminal settings, reset them. */ | |
| 112 if (usingtty) | |
| 113 tcsetattr(fileno(readfrom), TCSANOW, &term_old); | |
| 114 | |
| 115 /* Close /dev/tty if we opened it. */ | |
| 116 if (readfrom != stdin) | |
| 117 fclose(readfrom); | |
| 118 | |
| 119 /* Copy the password out. */ | |
| 120 if ((*passwd = strdup(passbuf)) == NULL) { | |
| 121 warn("Cannot allocate memory"); | |
| 122 goto err1; | |
| 123 } | |
| 124 | |
| 125 /* Zero any stored passwords. */ | |
| 126 memset(passbuf, 0, MAXPASSLEN); | |
| 127 memset(confpassbuf, 0, MAXPASSLEN); | |
| 128 | |
| 129 /* Success! */ | |
| 130 return (0); | |
| 131 | |
| 132 err2: | |
| 133 /* Reset terminal settings if necessary. */ | |
| 134 if (usingtty) | |
| 135 tcsetattr(fileno(readfrom), TCSAFLUSH, &term_old); | |
| 136 err1: | |
| 137 /* Close /dev/tty if we opened it. */ | |
| 138 if (readfrom != stdin) | |
| 139 fclose(readfrom); | |
| 140 | |
| 141 /* Failure! */ | |
| 142 return (-1); | |
| 143 } | |
| OLD | NEW |
|---|
Chromium Code Reviews
