52
|
1
|
|
2 /*
|
|
3 * Copyright (C) Igor Sysoev
|
|
4 */
|
|
5
|
|
6
|
|
7 #include <ngx_config.h>
|
|
8 #include <ngx_core.h>
|
|
9
|
|
10
|
|
11 /*
|
|
12 * Solaris has thread-safe crypt()
|
|
13 * Linux has crypt_r(); "struct crypt_data" is more than 128K
|
|
14 * FreeBSD needs the mutex to protect crypt()
|
|
15 *
|
|
16 * TODO:
|
|
17 * ngx_crypt_init() to init mutex
|
|
18 */
|
|
19
|
|
20
|
54
|
21 #if (NGX_CRYPT)
|
|
22
|
52
|
23 #if (NGX_LINUX)
|
|
24
|
|
25 ngx_int_t
|
|
26 ngx_crypt(ngx_pool_t *pool, u_char *key, u_char *salt, u_char **encrypted)
|
|
27 {
|
|
28 char *value;
|
|
29 size_t len;
|
58
|
30 ngx_err_t err;
|
52
|
31 struct crypt_data cd;
|
|
32
|
58
|
33 ngx_set_errno(0);
|
|
34
|
|
35 cd.initialized = 0;
|
|
36
|
52
|
37 value = crypt_r((char *) key, (char *) salt, &cd);
|
|
38
|
58
|
39 err = ngx_errno;
|
|
40
|
|
41 if (err == 0) {
|
52
|
42 len = ngx_strlen(value);
|
|
43
|
|
44 *encrypted = ngx_palloc(pool, len);
|
|
45 if (*encrypted) {
|
|
46 ngx_memcpy(*encrypted, value, len + 1);
|
|
47 return NGX_OK;
|
|
48 }
|
|
49 }
|
|
50
|
58
|
51 ngx_log_error(NGX_LOG_CRIT, pool->log, err, "crypt_r() failed");
|
|
52
|
52
|
53 return NGX_ERROR;
|
|
54 }
|
|
55
|
|
56 #else
|
|
57
|
|
58 ngx_int_t
|
|
59 ngx_crypt(ngx_pool_t *pool, u_char *key, u_char *salt, u_char **encrypted)
|
|
60 {
|
|
61 char *value;
|
|
62 size_t len;
|
58
|
63 ngx_err_t err;
|
52
|
64
|
|
65 #if (NGX_THREADS && NGX_NONREENTRANT_CRYPT)
|
|
66
|
|
67 /* crypt() is a time consuming funtion, so we only try to lock */
|
|
68
|
|
69 if (ngx_mutex_trylock(ngx_crypt_mutex) != NGX_OK) {
|
|
70 return NGX_AGAIN;
|
|
71 }
|
|
72
|
|
73 #endif
|
|
74
|
58
|
75 ngx_set_errno(0);
|
52
|
76
|
|
77 value = crypt((char *) key, (char *) salt);
|
|
78
|
|
79 if (value) {
|
|
80 len = ngx_strlen(value);
|
|
81
|
|
82 *encrypted = ngx_palloc(pool, len);
|
|
83 if (*encrypted) {
|
|
84 ngx_memcpy(*encrypted, value, len + 1);
|
|
85 }
|
58
|
86
|
|
87 #if (NGX_THREADS && NGX_NONREENTRANT_CRYPT)
|
|
88 ngx_mutex_unlock(ngx_crypt_mutex);
|
|
89 #endif
|
|
90 return NGX_OK;
|
52
|
91 }
|
|
92
|
58
|
93 err = ngx_errno;
|
|
94
|
52
|
95 #if (NGX_THREADS && NGX_NONREENTRANT_CRYPT)
|
|
96 ngx_mutex_unlock(ngx_crypt_mutex);
|
|
97 #endif
|
|
98
|
58
|
99 ngx_log_error(NGX_LOG_CRIT, pool->log, err, "crypt() failed");
|
|
100
|
|
101 return NGX_ERROR;
|
52
|
102 }
|
|
103
|
|
104 #endif
|
54
|
105
|
|
106 #endif /* NGX_CRYPT */
|