Google Git
Sign in
apache / axis-axis2-c-rampart / 0c352c7a6165966a78654b68c5905a17d6602182 / . / src / util / rampart_crypto_util.c
blob: 8fd2fe82dce09e7da8ba4b2c698993f82838673b [file] [log] [blame]
/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#include <rampart_crypto_util.h>
#include <axis2_util.h>
#include <axutil_base64.h>
#include <openssl_digest.h>
/**
* Calculate the hash of concatenated string of nonce+created+password
* @param env pointer to environment variable
* @param nonce randomly created bytes
* @param created created time
* @param password password to be hashed
* @return calculated hash on success. NULL otherwise
*/
AXIS2_EXTERN axis2_char_t* AXIS2_CALL
rampart_crypto_sha1(
const axutil_env_t *env,
const axis2_char_t *nonce,
const axis2_char_t *created,
const axis2_char_t *password)
{
char* input = NULL;
axis2_char_t* digest = NULL;
axis2_char_t* decoded_nonce = NULL;
int decoded_nonce_length = 0;
int created_length = 0;
int password_length = 0;
/* Decode the nonce first */
if(nonce)
{
int ret;
decoded_nonce_length = axutil_base64_decode_len(nonce);
decoded_nonce = AXIS2_MALLOC(env->allocator, decoded_nonce_length);
ret = axutil_base64_decode_binary((unsigned char *)decoded_nonce, nonce);
}
if ((!nonce) && (!created))
{
/* If both nonce and created are omitted, string to be hashed is only password */
password_length = axutil_strlen(password);
input = AXIS2_MALLOC(env->allocator, password_length);
memcpy(input, password, password_length);
}
else if (!nonce)
{
/* If nonce is omitted, but created is given.
* So, string to be hashed is created + password */
created_length = axutil_strlen(created);
password_length = axutil_strlen(password);
input = AXIS2_MALLOC(env->allocator, created_length + password_length);
memcpy(input, created, created_length);
memcpy(input + created_length, password, password_length);
}
else if (!created)
{
/* If created is omitted, but nonce is given.
* So, string to be hased is nonce + password */
password_length = axutil_strlen(password);
input = AXIS2_MALLOC(env->allocator, decoded_nonce_length + password_length);
memcpy(input, decoded_nonce, decoded_nonce_length);
memcpy(input + decoded_nonce_length, password, password_length);
}
else
{
/* If all nonce, created and password are present */
created_length = axutil_strlen(created);
password_length = axutil_strlen(password);
input = AXIS2_MALLOC(
env->allocator, decoded_nonce_length + created_length + password_length);
memcpy(input, decoded_nonce, decoded_nonce_length);
memcpy(input + decoded_nonce_length, created, created_length);
memcpy(input + decoded_nonce_length + created_length, password, password_length);
}
digest = openssl_sha1(env, input, decoded_nonce_length + created_length + password_length);
AXIS2_FREE(env->allocator, input);
AXIS2_FREE(env->allocator, decoded_nonce);
return digest;
}