robin.thoni
/
docker-mx-server
Наблюдаван 1
Харесван 0
Разклонения 0
Код Задачи 2 Заявки за сливане 0 Версии 12 Уики Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
34 Ревизии
3 Клонове
ИН на ревизия: 350ff2d8ab
Клонове Маркери
${ item.name }
Create branch ${ searchTerm }
от '350ff2d8ab'
${ noResults }
docker-mx-server/postfixadmin/postfixadmin-3.0/scripts/snippets/dovecot_crypt.php

dovecot_crypt.php 4.8KB
История Директен файл

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134 
  1. <?php

  2. 

  3.   define('SHA1_RESULTLEN', (160/8));

  4.   define('SHA256_RESULTLEN', (256 / 8));

  5.   define('CRAM_MD5_CONTEXTLEN', 32);

  6.   define('MD5_RESULTLEN', (128/8));

  7.   define('MD4_RESULTLEN', (128/8));

  8.   define('LM_HASH_SIZE', 16);

  9.   define('NTLMSSP_HASH_SIZE', 16);

  10.   

  11.   

  12. class DovecotCrypt extends Crypt {

  13. 

  14.   private $salt_chars = "./0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz";

  15. 

  16.   

  17.   /**

  18.    * Array

  19.    * Crypt type and which function handles it.

  20.    * array('alogrithm' => array('encoding', 'length', 'verify', 'function'))

  21.    */

  22.   public $password_schemes = array(

  23.   'CRYPT'      => array('NONE', 0, 'crypt_verify', 'crypt_generate'),

  24.   'MD5'        => array('NONE', 0, 'md5_verify', 'md5_generate'),

  25.   //'MD5-CRYPT'  => array('NONE', 0, 'md5_crypt_verify', 'md5_crypt_generate'),

  26.   'SHA'        => array('BASE64', SHA1_RESULTLEN, NULL, 'sha1_generate'),

  27.   'SHA1'       => array('BASE64', SHA1_RESULTLEN, NULL, 'sha1_generate'),

  28.   //'SHA256'     => array('BASE64', SHA256_RESULTLEN, NULL, 'sha256_generate'),

  29.   //'SMD5'       => array('BASE64', 0, 'smd5_verify', 'smd5_generate'),

  30.   //'SSHA'       => array('BASE64', 0, 'ssha_verify', 'ssha_generate'),

  31.   //'SSHA256'    => array('BASE64', 0, 'ssha356_verify', 'ssha256_generate'),

  32.   'PLAIN'      => array('NONE', 0, NULL, 'plain_generate'),

  33.   'CLEARTEXT'  => array('NONE', 0, NULL, 'plain_generate'),

  34.   'CRAM-MD5'   => array('HEX', CRAM_MD5_CONTEXTLEN, NULL, 'cram_md5_generate'),

  35.   //'HMAC-MD5'   => array('HEX', CRAM_MD5_CONTEXTLEN, NULL, 'cram_md5_generate'),

  36.   //'DIGEST-MD5' => array('HEX', MD5_RESULTLEN, NULL, 'digest_md5_generate'),

  37.   //'PLAIN-MD4'  => array('HEX', MD4_RESULTLEN, NULL, 'plain_md4_generate'),

  38.   //'PLAIN-MD5'  => array('HEX', MD5_RESULTLEN, NULL, 'plain_md5_generate'),

  39.   //'LDAP-MD5'   => array('BASE64', MD5_RESULTLEN, NULL, 'plain_md5_generate'),

  40.   //'LANMAN'     => array('HEX', LM_HASH_SIZE, NULL, 'lm_generate'),

  41.   //'NTLM'       => array('HEX', NTLMSSP_HASH_SIZE, NULL, 'ntlm_generate'),

  42.   //'OTP'        => array('NONE', 0, 'otp_verify', 'otp_generate'),

  43.   //'SKEY'       => array('NONE', 0, 'otp_verify', 'skey_generate'),

  44.   //'RPA'        => array('HEX', MD5_RESULTLEN, NULL, 'rpa_generate'),  

  45.   );

  46.   

  47.   

  48. 

  49.   public function crypt($algorithm) {

  50.       if( !array_key_exists($algorithm, $this->password_schemes) ) {

  51.         $this->errormsg[] = "This password scheme isn't supported. Check our Wiki!";

  52.         return false;

  53.       }

  54.       

  55.       $scheme = $this->password_schemes[$algorithm];

  56.       $func = '__'.$scheme[3];

  57. 

  58.       $this->password = $this->$func($this->plain);

  59.       //$this->plain = '';

  60.   }

  61.   

  62.   public function verify($algorithm, $password) {

  63.       if( !array_key_exists($algorithm, $this->password_schemes) ) {

  64.         $this->errormsg[] = "This password scheme isn't supported. Check our Wiki!";

  65.         return false;

  66.       }

  67.       

  68.       $scheme = $this->password_schemes[$algorithm];

  69.       if($scheme[2] == NULL) {

  70.         $this->errormsg[] = "This password scheme doesn't support verification";

  71.         return false;

  72.       }

  73.       

  74.       $func = '__'.$scheme[2];

  75.       return  $this->$func($this->plain, $password);

  76.       

  77.   }

  78.   

  79.   private function __crypt_verify($plaintext, $password) {

  80.     $crypted = crypt($plaintext, $password);

  81.     return strcmp($crypted, $password) == 0;

  82.   }

  83.   private function __crypt_generate($plaintext) {

  84.     

  85.     $password = crypt($plaintext);

  86.     return $password;

  87.   }

  88.   private function __md5_generate($plaintext) {

  89.     return $password;

  90.   }

  91.   private function __sha1_generate() {

  92.   

  93.   }

  94.   private function __plain_generate() {

  95.   

  96.   }

  97.   private function __cram_md5_generate($plaintext) {

  98.   

  99. #http://hg.dovecot.org/dovecot-1.2/file/84373d238073/src/lib/hmac-md5.c 

  100. #http://hg.dovecot.org/dovecot-1.2/file/84373d238073/src/auth/password-scheme.c cram_md5_generate

  101. #am i right that the hmac salt is the plaintext password itself?

  102. $salt = $plaintext;

  103.     if(function_exists('hash_hmac')) {  //Some providers doesn't offers hash access.

  104.       return hash_hmac('md5', $plaintext, $salt);

  105.     } else {

  106.       return custom_hmac('md5', $plaintext, $salt);

  107.     }

  108.   }

  109.   

  110.   

  111.   function custom_hmac($algo, $data, $key, $raw_output = false)

  112. {

  113.     $algo = strtolower($algo);

  114.     $pack = 'H'.strlen($algo('test'));

  115.     $size = 64;

  116.     $opad = str_repeat(chr(0x5C), $size);

  117.     $ipad = str_repeat(chr(0x36), $size);

  118. 

  119.     if (strlen($key) > $size) {

  120.         $key = str_pad(pack($pack, $algo($key)), $size, chr(0x00));

  121.     } else {

  122.         $key = str_pad($key, $size, chr(0x00));

  123.     }

  124. 

  125.     for ($i = 0; $i < strlen($key) - 1; $i++) {

  126.         $opad[$i] = $opad[$i] ^ $key[$i];

  127.         $ipad[$i] = $ipad[$i] ^ $key[$i];

  128.     }

  129. 

  130.     $output = $algo($opad.pack($pack, $algo($ipad.$data)));

  131. 

  132.     return ($raw_output) ? pack($pack, $output) : $output;

  133. }

  134. }