1 /* Licensed to the Apache Software Foundation (ASF) under one or more
2 * contributor license agreements. See the NOTICE file distributed with
3 * this work for additional information regarding copyright ownership.
4 * The ASF licenses this file to You under the Apache License, Version 2.0
5 * (the "License"); you may not use this file except in compliance with
6 * the License. You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
17 /******************************************************************************
18 ******************************************************************************
19 * NOTE! This program is not safe as a setuid executable! Do not make it
21 ******************************************************************************
22 *****************************************************************************/
24 * htdigest.c: simple program for manipulating digest passwd file for Apache
26 * by Alexei Kosut, based on htpasswd.c, by Rob McCool
30 #include "apr_file_io.h"
32 #include "apr_lib.h" /* for apr_getpass() */
33 #include "apr_general.h"
34 #include "apr_signal.h"
35 #include "apr_strings.h" /* for apr_pstrdup() */
37 #define APR_WANT_STDIO
38 #define APR_WANT_STRFUNC
41 #if APR_HAVE_SYS_TYPES_H
42 #include <sys/types.h>
53 #if APR_CHARSET_EBCDIC
59 #endif /* APR_CHARSET_EBCDIC */
61 #define MAX_STRING_LEN 256
63 apr_file_t *tfp = NULL;
66 #if APR_CHARSET_EBCDIC
67 apr_xlate_t *to_ascii;
70 static void cleanup_tempfile_and_exit(int rc)
78 static void getword(char *word, char *line, char stop)
82 for (x = 0; ((line[x]) && (line[x] != stop)); x++)
90 while ((line[y++] = line[x++]));
93 static int get_line(char *s, int n, apr_file_t *f)
97 apr_status_t rv = APR_EINVAL;
99 /* we need 2 remaining bytes in buffer */
100 while (i < (n - 2) &&
101 ((rv = apr_file_getc(&ch, f)) == APR_SUCCESS) && (ch != '\n')) {
104 /* First remaining byte potentially used here */
107 /* Second remaining byte used here */
110 if (rv != APR_SUCCESS)
116 static void putline(apr_file_t *f, char *l)
120 for (x = 0; l[x]; x++)
121 apr_file_putc(l[x], f);
125 static void add_password(const char *user, const char *realm, apr_file_t *f)
128 apr_md5_ctx_t context;
129 unsigned char digest[16];
130 char string[3 * MAX_STRING_LEN]; /* this includes room for 2 * ':' + '\0' */
131 char pwin[MAX_STRING_LEN];
132 char pwv[MAX_STRING_LEN];
134 apr_size_t len = sizeof(pwin);
136 if (apr_password_get("New password: ", pwin, &len) != APR_SUCCESS) {
137 apr_file_printf(errfile, "password too long");
138 cleanup_tempfile_and_exit(5);
141 apr_password_get("Re-type new password: ", pwv, &len);
142 if (strcmp(pwin, pwv) != 0) {
143 apr_file_printf(errfile, "They don't match, sorry.\n");
144 cleanup_tempfile_and_exit(1);
147 apr_file_printf(f, "%s:%s:", user, realm);
150 apr_snprintf(string, sizeof(string), "%s:%s:%s", user, realm, pw);
152 apr_md5_init(&context);
153 #if APR_CHARSET_EBCDIC
154 apr_md5_set_xlate(&context, to_ascii);
156 apr_md5_update(&context, (unsigned char *) string, strlen(string));
157 apr_md5_final(digest, &context);
159 for (i = 0; i < 16; i++)
160 apr_file_printf(f, "%02x", digest[i]);
162 apr_file_printf(f, "\n");
165 static void usage(void)
167 apr_file_printf(errfile, "Usage: htdigest [-c] passwordfile realm username\n");
168 apr_file_printf(errfile, "The -c flag creates a new file.\n");
172 static void interrupted(void)
174 apr_file_printf(errfile, "Interrupted.\n");
175 cleanup_tempfile_and_exit(1);
178 static void terminate(void)
186 int main(int argc, const char * const argv[])
190 char tn[] = "htdigest.tmp.XXXXXX";
192 char user[MAX_STRING_LEN];
193 char realm[MAX_STRING_LEN];
194 char line[3 * MAX_STRING_LEN];
195 char l[3 * MAX_STRING_LEN];
196 char w[MAX_STRING_LEN];
197 char x[MAX_STRING_LEN];
200 apr_app_initialize(&argc, &argv, NULL);
202 apr_pool_create(&cntxt, NULL);
203 apr_file_open_stderr(&errfile, cntxt);
205 #if APR_CHARSET_EBCDIC
206 rv = apr_xlate_open(&to_ascii, "ISO-8859-1", APR_DEFAULT_CHARSET, cntxt);
208 apr_file_printf(errfile, "apr_xlate_open(): %pm (%d)\n",
214 apr_signal(SIGINT, (void (*)(int)) interrupted);
216 if (strcmp(argv[1], "-c"))
218 rv = apr_file_open(&f, argv[2], APR_WRITE | APR_CREATE,
219 APR_OS_DEFAULT, cntxt);
220 if (rv != APR_SUCCESS) {
221 apr_file_printf(errfile, "Could not open passwd file %s for writing: %pm\n",
225 apr_cpystrn(user, argv[4], sizeof(user));
226 apr_cpystrn(realm, argv[3], sizeof(realm));
227 apr_file_printf(errfile, "Adding password for %s in realm %s.\n",
229 add_password(user, realm, f);
236 if (apr_temp_dir_get((const char**)&dirname, cntxt) != APR_SUCCESS) {
237 apr_file_printf(errfile, "%s: could not determine temp dir\n",
241 dirname = apr_psprintf(cntxt, "%s/%s", dirname, tn);
243 if (apr_file_mktemp(&tfp, dirname, 0, cntxt) != APR_SUCCESS) {
244 apr_file_printf(errfile, "Could not open temp file %s.\n", dirname);
248 if (apr_file_open(&f, argv[1], APR_READ, APR_OS_DEFAULT, cntxt) != APR_SUCCESS) {
249 apr_file_printf(errfile,
250 "Could not open passwd file %s for reading.\n", argv[1]);
251 apr_file_printf(errfile, "Use -c option to create new one.\n");
252 cleanup_tempfile_and_exit(1);
254 apr_cpystrn(user, argv[3], sizeof(user));
255 apr_cpystrn(realm, argv[2], sizeof(realm));
258 while (!(get_line(line, sizeof(line), f))) {
259 if (found || (line[0] == '#') || (!line[0])) {
266 if (strcmp(user, w) || strcmp(realm, x)) {
271 apr_file_printf(errfile, "Changing password for user %s in realm %s\n",
273 add_password(user, realm, tfp);
278 apr_file_printf(errfile, "Adding user %s in realm %s\n", user, realm);
279 add_password(user, realm, tfp);
283 /* The temporary file has all the data, just copy it to the new location.
285 if (apr_file_copy(dirname, argv[1], APR_OS_DEFAULT, cntxt) !=
287 apr_file_printf(errfile, "%s: unable to update file %s\n",