hopfma
/
om
Watch 4
Star 1
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Ohm-Management - Projektarbeit B-ME
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
232 Commits
2 Branches
Branch: developer
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'developer'
${ noResults }
om/node_modules/mongodb-core/lib/auth/scram.js

scram.js 7.2KB
Raw Permalink Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293 
  1. 'use strict';

  2. 

  3. const crypto = require('crypto');

  4. const Buffer = require('safe-buffer').Buffer;

  5. const retrieveBSON = require('../connection/utils').retrieveBSON;

  6. const MongoError = require('../error').MongoError;

  7. const AuthProvider = require('./auth_provider').AuthProvider;

  8. 

  9. const BSON = retrieveBSON();

  10. const Binary = BSON.Binary;

  11. 

  12. let saslprep;

  13. try {

  14.   saslprep = require('saslprep');

  15. } catch (e) {

  16.   // don't do anything;

  17. }

  18. 

  19. var parsePayload = function(payload) {

  20.   var dict = {};

  21.   var parts = payload.split(',');

  22. 

  23.   for (var i = 0; i < parts.length; i++) {

  24.     var valueParts = parts[i].split('=');

  25.     dict[valueParts[0]] = valueParts[1];

  26.   }

  27. 

  28.   return dict;

  29. };

  30. 

  31. var passwordDigest = function(username, password) {

  32.   if (typeof username !== 'string') throw new MongoError('username must be a string');

  33.   if (typeof password !== 'string') throw new MongoError('password must be a string');

  34.   if (password.length === 0) throw new MongoError('password cannot be empty');

  35.   // Use node md5 generator

  36.   var md5 = crypto.createHash('md5');

  37.   // Generate keys used for authentication

  38.   md5.update(username + ':mongo:' + password, 'utf8');

  39.   return md5.digest('hex');

  40. };

  41. 

  42. // XOR two buffers

  43. function xor(a, b) {

  44.   if (!Buffer.isBuffer(a)) a = Buffer.from(a);

  45.   if (!Buffer.isBuffer(b)) b = Buffer.from(b);

  46.   const length = Math.max(a.length, b.length);

  47.   const res = [];

  48. 

  49.   for (let i = 0; i < length; i += 1) {

  50.     res.push(a[i] ^ b[i]);

  51.   }

  52. 

  53.   return Buffer.from(res).toString('base64');

  54. }

  55. 

  56. function H(method, text) {

  57.   return crypto

  58.     .createHash(method)

  59.     .update(text)

  60.     .digest();

  61. }

  62. 

  63. function HMAC(method, key, text) {

  64.   return crypto

  65.     .createHmac(method, key)

  66.     .update(text)

  67.     .digest();

  68. }

  69. 

  70. var _hiCache = {};

  71. var _hiCacheCount = 0;

  72. var _hiCachePurge = function() {

  73.   _hiCache = {};

  74.   _hiCacheCount = 0;

  75. };

  76. 

  77. const hiLengthMap = {

  78.   sha256: 32,

  79.   sha1: 20

  80. };

  81. 

  82. function HI(data, salt, iterations, cryptoMethod) {

  83.   // omit the work if already generated

  84.   const key = [data, salt.toString('base64'), iterations].join('_');

  85.   if (_hiCache[key] !== undefined) {

  86.     return _hiCache[key];

  87.   }

  88. 

  89.   // generate the salt

  90.   const saltedData = crypto.pbkdf2Sync(

  91.     data,

  92.     salt,

  93.     iterations,

  94.     hiLengthMap[cryptoMethod],

  95.     cryptoMethod

  96.   );

  97. 

  98.   // cache a copy to speed up the next lookup, but prevent unbounded cache growth

  99.   if (_hiCacheCount >= 200) {

  100.     _hiCachePurge();

  101.   }

  102. 

  103.   _hiCache[key] = saltedData;

  104.   _hiCacheCount += 1;

  105.   return saltedData;

  106. }

  107. 

  108. /**

  109.  * Creates a new ScramSHA authentication mechanism

  110.  * @class

  111.  * @extends AuthProvider

  112.  */

  113. class ScramSHA extends AuthProvider {

  114.   constructor(bson, cryptoMethod) {

  115.     super(bson);

  116.     this.cryptoMethod = cryptoMethod || 'sha1';

  117.   }

  118. 

  119.   static _getError(err, r) {

  120.     if (err) {

  121.       return err;

  122.     }

  123. 

  124.     if (r.$err || r.errmsg) {

  125.       return new MongoError(r);

  126.     }

  127.   }

  128. 

  129.   /**

  130.    * @ignore

  131.    */

  132.   _executeScram(sendAuthCommand, connection, credentials, nonce, callback) {

  133.     let username = credentials.username;

  134.     const password = credentials.password;

  135.     const db = credentials.source;

  136. 

  137.     const cryptoMethod = this.cryptoMethod;

  138.     let mechanism = 'SCRAM-SHA-1';

  139.     let processedPassword;

  140. 

  141.     if (cryptoMethod === 'sha256') {

  142.       mechanism = 'SCRAM-SHA-256';

  143. 

  144.       processedPassword = saslprep ? saslprep(password) : password;

  145.     } else {

  146.       try {

  147.         processedPassword = passwordDigest(username, password);

  148.       } catch (e) {

  149.         return callback(e);

  150.       }

  151.     }

  152. 

  153.     // Clean up the user

  154.     username = username.replace('=', '=3D').replace(',', '=2C');

  155. 

  156.     // NOTE: This is done b/c Javascript uses UTF-16, but the server is hashing in UTF-8.

  157.     // Since the username is not sasl-prep-d, we need to do this here.

  158.     const firstBare = Buffer.concat([

  159.       Buffer.from('n=', 'utf8'),

  160.       Buffer.from(username, 'utf8'),

  161.       Buffer.from(',r=', 'utf8'),

  162.       Buffer.from(nonce, 'utf8')

  163.     ]);

  164. 

  165.     // Build command structure

  166.     const saslStartCmd = {

  167.       saslStart: 1,

  168.       mechanism,

  169.       payload: new Binary(Buffer.concat([Buffer.from('n,,', 'utf8'), firstBare])),

  170.       autoAuthorize: 1

  171.     };

  172. 

  173.     // Write the commmand on the connection

  174.     sendAuthCommand(connection, `${db}.$cmd`, saslStartCmd, (err, r) => {

  175.       let tmpError = ScramSHA._getError(err, r);

  176.       if (tmpError) {

  177.         return callback(tmpError, null);

  178.       }

  179. 

  180.       const payload = Buffer.isBuffer(r.payload) ? new Binary(r.payload) : r.payload;

  181.       const dict = parsePayload(payload.value());

  182.       const iterations = parseInt(dict.i, 10);

  183.       const salt = dict.s;

  184.       const rnonce = dict.r;

  185. 

  186.       // Set up start of proof

  187.       const withoutProof = `c=biws,r=${rnonce}`;

  188.       const saltedPassword = HI(

  189.         processedPassword,

  190.         Buffer.from(salt, 'base64'),

  191.         iterations,

  192.         cryptoMethod

  193.       );

  194. 

  195.       if (iterations && iterations < 4096) {

  196.         const error = new MongoError(`Server returned an invalid iteration count ${iterations}`);

  197.         return callback(error, false);

  198.       }

  199. 

  200.       const clientKey = HMAC(cryptoMethod, saltedPassword, 'Client Key');

  201.       const storedKey = H(cryptoMethod, clientKey);

  202.       const authMessage = [firstBare, payload.value().toString('base64'), withoutProof].join(',');

  203. 

  204.       const clientSignature = HMAC(cryptoMethod, storedKey, authMessage);

  205.       const clientProof = `p=${xor(clientKey, clientSignature)}`;

  206.       const clientFinal = [withoutProof, clientProof].join(',');

  207.       const saslContinueCmd = {

  208.         saslContinue: 1,

  209.         conversationId: r.conversationId,

  210.         payload: new Binary(Buffer.from(clientFinal))

  211.       };

  212. 

  213.       sendAuthCommand(connection, `${db}.$cmd`, saslContinueCmd, (err, r) => {

  214.         if (!r || r.done !== false) {

  215.           return callback(err, r);

  216.         }

  217. 

  218.         const retrySaslContinueCmd = {

  219.           saslContinue: 1,

  220.           conversationId: r.conversationId,

  221.           payload: Buffer.alloc(0)

  222.         };

  223. 

  224.         sendAuthCommand(connection, `${db}.$cmd`, retrySaslContinueCmd, callback);

  225.       });

  226.     });

  227.   }

  228. 

  229.   /**

  230.    * Implementation of authentication for a single connection

  231.    * @override

  232.    */

  233.   _authenticateSingleConnection(sendAuthCommand, connection, credentials, callback) {

  234.     // Create a random nonce

  235.     crypto.randomBytes(24, (err, buff) => {

  236.       if (err) {

  237.         return callback(err, null);

  238.       }

  239. 

  240.       return this._executeScram(

  241.         sendAuthCommand,

  242.         connection,

  243.         credentials,

  244.         buff.toString('base64'),

  245.         callback

  246.       );

  247.     });

  248.   }

  249. 

  250.   /**

  251.    * Authenticate

  252.    * @override

  253.    * @method

  254.    */

  255.   auth(sendAuthCommand, connections, credentials, callback) {

  256.     this._checkSaslprep();

  257.     super.auth(sendAuthCommand, connections, credentials, callback);

  258.   }

  259. 

  260.   _checkSaslprep() {

  261.     const cryptoMethod = this.cryptoMethod;

  262. 

  263.     if (cryptoMethod === 'sha256') {

  264.       if (!saslprep) {

  265.         console.warn('Warning: no saslprep library specified. Passwords will not be sanitized');

  266.       }

  267.     }

  268.   }

  269. }

  270. 

  271. /**

  272.  * Creates a new ScramSHA1 authentication mechanism

  273.  * @class

  274.  * @extends ScramSHA

  275.  */

  276. class ScramSHA1 extends ScramSHA {

  277.   constructor(bson) {

  278.     super(bson, 'sha1');

  279.   }

  280. }

  281. 

  282. /**

  283.  * Creates a new ScramSHA256 authentication mechanism

  284.  * @class

  285.  * @extends ScramSHA

  286.  */

  287. class ScramSHA256 extends ScramSHA {

  288.   constructor(bson) {

  289.     super(bson, 'sha256');

  290.   }

  291. }

  292. 

  293. module.exports = { ScramSHA1, ScramSHA256 };