gnome-control-center/panels/user-accounts/pw-utils.c

/* -*- Mode: C; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 8 -*-
 *
 * Copyright 2012  Red Hat, Inc,
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
 *
 * Written by: Matthias Clasen <mclasen@redhat.com>
 */

#include "config.h"

#include "pw-utils.h"

#include <glib.h>
#include <glib/gi18n.h>

#include <pwquality.h>


static pwquality_settings_t *
get_pwq (void)
{
        static pwquality_settings_t *settings;

        if (settings == NULL) {
                gchar *err = NULL;
                settings = pwquality_default_settings ();
                if (pwquality_read_config (settings, NULL, (gpointer)&err) < 0) {
                        g_error ("failed to read pwquality configuration: %s\n", err);
                }
        }

        return settings;
}

gint
pw_min_length (void)
{
        gint value = 0;

        if (pwquality_get_int_value (get_pwq (), PWQ_SETTING_MIN_LENGTH, &value) < 0) {
                g_error ("Failed to read pwquality setting\n" );
        }

        return value;
}

gchar *
pw_generate (void)
{
        gchar *res;
        gint rv;

        rv = pwquality_generate (get_pwq (), 0, &res);

        if (rv < 0) {
                g_error ("Password generation failed: %s\n",
                         pwquality_strerror (NULL, 0, rv, NULL));
                return NULL;
        }

        return res;
}

gdouble
pw_strength (const gchar  *password,
             const gchar **hint)
{
        gint rv;
        gdouble strength;
        void *auxerror;

        rv = pwquality_check (get_pwq (),
                              password, NULL, NULL,
                              &auxerror);

        if (rv == PWQ_ERROR_MIN_LENGTH) {
                *hint = C_("Password strength", "Too short");
                return 0.0;
        }
        else if (rv < 0) {
                *hint = C_("Password strength", "Not good enough");
                return 0.0;
        }

        strength = CLAMP (0.01 * rv, 0.0, 1.0);

        if (strength < 0.50)
                *hint = C_("Password strength", "Weak");
        else if (strength < 0.75)
                *hint = C_("Password strength", "Fair");
        else if (strength < 0.90)
                *hint = C_("Password strength", "Good");
        else
                *hint = C_("Password strength", "Strong");

         return strength;
}
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00			`/* -- Mode: C; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 8 --`
			`*`
			`* Copyright 2012 Red Hat, Inc,`
			`*`
			`* This program is free software; you can redistribute it and/or modify`
			`* it under the terms of the GNU General Public License as published by`
			`* the Free Software Foundation; either version 3 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License`
			`* along with this program; if not, write to the Free Software`
			`* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.`
			`*`
			`* Written by: Matthias Clasen <mclasen@redhat.com>`
			`*/`

			`#include "config.h"`

			`#include "pw-utils.h"`

			`#include <glib.h>`
			`#include <glib/gi18n.h>`

users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`#include <pwquality.h>`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00

users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`static pwquality_settings_t *`
			`get_pwq (void)`
			`{`
			`static pwquality_settings_t *settings;`

			`if (settings == NULL) {`
			`gchar *err = NULL;`
			`settings = pwquality_default_settings ();`
			`if (pwquality_read_config (settings, NULL, (gpointer)&err) < 0) {`
			`g_error ("failed to read pwquality configuration: %s\n", err);`
			`}`
			`}`

			`return settings;`
			`}`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00
			`gint`
			`pw_min_length (void)`
			`{`
users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`gint value = 0;`

			`if (pwquality_get_int_value (get_pwq (), PWQ_SETTING_MIN_LENGTH, &value) < 0) {`
			`g_error ("Failed to read pwquality setting\n" );`
			`}`

			`return value;`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00			`}`

			`gchar *`
			`pw_generate (void)`
			`{`
users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`gchar *res;`
			`gint rv;`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00
users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`rv = pwquality_generate (get_pwq (), 0, &res);`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00
users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`if (rv < 0) {`
			`g_error ("Password generation failed: %s\n",`
			`pwquality_strerror (NULL, 0, rv, NULL));`
			`return NULL;`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00			`}`

users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`return res;`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00			`}`

			`gdouble`
			`pw_strength (const gchar *password,`
			`const gchar **hint)`
			`{`
users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`gint rv;`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00			`gdouble strength;`
users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`void *auxerror;`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00
users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`rv = pwquality_check (get_pwq (),`
			`password, NULL, NULL,`
			`&auxerror);`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00
users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`if (rv == PWQ_ERROR_MIN_LENGTH) {`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00			`*hint = C_("Password strength", "Too short");`
			`return 0.0;`
			`}`
users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`else if (rv < 0) {`
			`*hint = C_("Password strength", "Not good enough");`
			`return 0.0;`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00			`}`

users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`strength = CLAMP (0.01 * rv, 0.0, 1.0);`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00
			`if (strength < 0.50)`
			`*hint = C_("Password strength", "Weak");`
			`else if (strength < 0.75)`
			`*hint = C_("Password strength", "Fair");`
			`else if (strength < 0.90)`
			`*hint = C_("Password strength", "Good");`
			`else`
			`*hint = C_("Password strength", "Strong");`

users: Use libpwquality for password handling Using a library for password generation and quality checking has the obvious benefit that we can have centralized policy for password quality, and our homegrown code for this was not a beauty in the first place. This commit drops the use of /usr/bin/agp for generating random passwords. https://bugzilla.gnome.org/show_bug.cgi?id=676396 2012-05-23 10:43:17 -04:00			`return strength;`
users: Separate out password generation and strength calculation This is in preparation of using a library for this purpose, and is just generally cleaner. 2012-05-23 08:40:56 -04:00			`}`