kdxcxs
/
n2n
mirror of https://github.com/ntop/n2n.git
1
0
Fork 0
Code Issues Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1073 Commits
7 Branches
7 Tags
23 MiB
Tree: 03ce1e2b84
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '03ce1e2b84'
${ noResults }
n2n/tools/n2n-keygen.c

77 lines
2.7 KiB
Raw Normal View History

added user-password edge authentication (#673)
3 years ago
/*
* (C) 2007-21 - ntop.org and contributors
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, see <http://www.gnu.org/licenses/>
*
*/
#include "n2n.h"
int main(int argc, char * argv[]) {
n2n_private_public_key_t prv; /* 32 bytes private key */
n2n_private_public_key_t bin; /* 32 bytes public key binary output buffer */
addressed all but one of the remaining compile warnings (#793) * Fix the mismatched char, uint8_t warnings * Ensure we leave room for zero termination and then ensure the string is terminated * GCC has a warning if it thinks your could overflow your snprintf buffer, but dont check for said overflow
3 years ago
char asc[44]; /* 43 bytes + 0-terminator ascii string output */
added user-password edge authentication (#673)
3 years ago
uint8_t fed = 0;
// exactly two parameters required
if(argc != 3) {
// error message to stderr to not interfere with batch usage
fprintf(stderr, "\n"
"n2n-keygen tool\n\n"
" usage: n2n-keygen <username> <password>\n\n"
" or n2n-keygen -F <federation name>\n\n"
" outputs a line to insert at supernode's community file for user-and-\n"
" password authentication or a command line parameter with the public\n"
" federation key for use at edge's command line, please refer to the\n"
" doc/Authentication.md document or the man pages for more details\n\n");
return 1;
}
// federation mode?
if(strcmp(argv[1], "-F") == 0)
fed = 1;
// derive private key from username and password:
// hash username once, hash password twice (so password is bound
// to username but username and password are not interchangeable),
// finally xor the result
// in federation mode: only hash federation name, twice
addressed all but one of the remaining compile warnings (#793) * Fix the mismatched char, uint8_t warnings * Ensure we leave room for zero termination and then ensure the string is terminated * GCC has a warning if it thinks your could overflow your snprintf buffer, but dont check for said overflow
3 years ago
generate_private_key(prv, argv[2]);
added user-password edge authentication (#673)
3 years ago
// hash user name only if required
if(!fed) {
addressed all but one of the remaining compile warnings (#793) * Fix the mismatched char, uint8_t warnings * Ensure we leave room for zero termination and then ensure the string is terminated * GCC has a warning if it thinks your could overflow your snprintf buffer, but dont check for said overflow
3 years ago
bind_private_key_to_username(prv, argv[1]);
added user-password edge authentication (#673)
3 years ago
}
// calculate the public key into binary output buffer
generate_public_key(bin, prv);
// clear out the private key
memset(prv, 0, sizeof(prv));
// convert binary output to 6-bit-ascii string output
bin_to_ascii(asc, bin, sizeof(bin));
// output
if(fed)
fprintf(stdout, "-P %s\n", asc);
else
fprintf(stdout, "%c %s %s\n", N2N_USER_KEY_LINE_STARTER, argv[1], asc);
return 0;
}