You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
165 lines
4.1 KiB
165 lines
4.1 KiB
var Buffer = require('buffer').Buffer;
|
|
var Crypto = require('crypto');
|
|
var Auth = exports;
|
|
|
|
function sha1(msg) {
|
|
var hash = Crypto.createHash('sha1');
|
|
hash.update(msg);
|
|
// hash.digest() does not output buffers yet
|
|
return hash.digest('binary');
|
|
};
|
|
Auth.sha1 = sha1;
|
|
|
|
function xor(a, b) {
|
|
a = new Buffer(a, 'binary');
|
|
b = new Buffer(b, 'binary');
|
|
var result = new Buffer(a.length);
|
|
for (var i = 0; i < a.length; i++) {
|
|
result[i] = (a[i] ^ b[i]);
|
|
}
|
|
return result;
|
|
};
|
|
Auth.xor = xor;
|
|
|
|
Auth.token = function(password, scramble) {
|
|
if (!password) {
|
|
return new Buffer(0);
|
|
}
|
|
|
|
var stage1 = sha1(password);
|
|
var stage2 = sha1(stage1);
|
|
var stage3 = sha1(scramble.toString('binary') + stage2);
|
|
return xor(stage3, stage1);
|
|
};
|
|
|
|
// This is a port of sql/password.c:hash_password which needs to be used for
|
|
// pre-4.1 passwords.
|
|
Auth.hashPassword = function(password) {
|
|
var nr = [0x5030, 0x5735],
|
|
add = 7,
|
|
nr2 = [0x1234, 0x5671],
|
|
result = new Buffer(8);
|
|
|
|
if (typeof password == 'string'){
|
|
password = new Buffer(password);
|
|
}
|
|
|
|
for (var i = 0; i < password.length; i++) {
|
|
var c = password[i];
|
|
if (c == 32 || c == 9) {
|
|
// skip space in password
|
|
continue;
|
|
}
|
|
|
|
// nr^= (((nr & 63)+add)*c)+ (nr << 8);
|
|
// nr = xor(nr, add(mul(add(and(nr, 63), add), c), shl(nr, 8)))
|
|
nr = this.xor32(nr, this.add32(this.mul32(this.add32(this.and32(nr, [0,63]), [0,add]), [0,c]), this.shl32(nr, 8)));
|
|
|
|
// nr2+=(nr2 << 8) ^ nr;
|
|
// nr2 = add(nr2, xor(shl(nr2, 8), nr))
|
|
nr2 = this.add32(nr2, this.xor32(this.shl32(nr2, 8), nr));
|
|
|
|
// add+=tmp;
|
|
add += c;
|
|
}
|
|
|
|
this.int31Write(result, nr, 0);
|
|
this.int31Write(result, nr2, 4);
|
|
|
|
return result;
|
|
};
|
|
|
|
Auth.randomInit = function(seed1, seed2) {
|
|
return {
|
|
max_value: 0x3FFFFFFF,
|
|
max_value_dbl: 0x3FFFFFFF,
|
|
seed1: seed1 % 0x3FFFFFFF,
|
|
seed2: seed2 % 0x3FFFFFFF
|
|
};
|
|
};
|
|
|
|
Auth.myRnd = function(r){
|
|
r.seed1 = (r.seed1 * 3 + r.seed2) % r.max_value;
|
|
r.seed2 = (r.seed1 + r.seed2 + 33) % r.max_value;
|
|
|
|
return r.seed1 / r.max_value_dbl;
|
|
};
|
|
|
|
Auth.scramble323 = function(message, password) {
|
|
var to = new Buffer(8),
|
|
hashPass = this.hashPassword(password),
|
|
hashMessage = this.hashPassword(message.slice(0, 8)),
|
|
seed1 = this.int32Read(hashPass, 0) ^ this.int32Read(hashMessage, 0),
|
|
seed2 = this.int32Read(hashPass, 4) ^ this.int32Read(hashMessage, 4),
|
|
r = this.randomInit(seed1, seed2);
|
|
|
|
for (var i = 0; i < 8; i++){
|
|
to[i] = Math.floor(this.myRnd(r) * 31) + 64;
|
|
}
|
|
var extra = (Math.floor(this.myRnd(r) * 31));
|
|
|
|
for (var i = 0; i < 8; i++){
|
|
to[i] ^= extra;
|
|
}
|
|
|
|
return to;
|
|
};
|
|
|
|
Auth.fmt32 = function(x){
|
|
var a = x[0].toString(16),
|
|
b = x[1].toString(16);
|
|
|
|
if (a.length == 1) a = '000'+a;
|
|
if (a.length == 2) a = '00'+a;
|
|
if (a.length == 3) a = '0'+a;
|
|
if (b.length == 1) b = '000'+b;
|
|
if (b.length == 2) b = '00'+b;
|
|
if (b.length == 3) b = '0'+b;
|
|
return '' + a + '/' + b;
|
|
};
|
|
|
|
Auth.xor32 = function(a,b){
|
|
return [a[0] ^ b[0], a[1] ^ b[1]];
|
|
};
|
|
|
|
Auth.add32 = function(a,b){
|
|
var w1 = a[1] + b[1],
|
|
w2 = a[0] + b[0] + ((w1 & 0xFFFF0000) >> 16);
|
|
|
|
return [w2 & 0xFFFF, w1 & 0xFFFF];
|
|
};
|
|
|
|
Auth.mul32 = function(a,b){
|
|
// based on this example of multiplying 32b ints using 16b
|
|
// http://www.dsprelated.com/showmessage/89790/1.php
|
|
var w1 = a[1] * b[1],
|
|
w2 = (((a[1] * b[1]) >> 16) & 0xFFFF) + ((a[0] * b[1]) & 0xFFFF) + (a[1] * b[0] & 0xFFFF);
|
|
|
|
return [w2 & 0xFFFF, w1 & 0xFFFF];
|
|
};
|
|
|
|
Auth.and32 = function(a,b){
|
|
return [a[0] & b[0], a[1] & b[1]];
|
|
};
|
|
|
|
Auth.shl32 = function(a,b){
|
|
// assume b is 16 or less
|
|
var w1 = a[1] << b,
|
|
w2 = (a[0] << b) | ((w1 & 0xFFFF0000) >> 16);
|
|
|
|
return [w2 & 0xFFFF, w1 & 0xFFFF];
|
|
};
|
|
|
|
Auth.int31Write = function(buffer, number, offset) {
|
|
buffer[offset] = (number[0] >> 8) & 0x7F;
|
|
buffer[offset + 1] = (number[0]) & 0xFF;
|
|
buffer[offset + 2] = (number[1] >> 8) & 0xFF;
|
|
buffer[offset + 3] = (number[1]) & 0xFF;
|
|
};
|
|
|
|
Auth.int32Read = function(buffer, offset){
|
|
return (buffer[offset] << 24)
|
|
+ (buffer[offset+1] << 16)
|
|
+ (buffer[offset+2] << 8)
|
|
+ (buffer[offset+3]);
|
|
};
|