ae2df95306
There are variety of word lists available in /usr/share/dict, let's try more than just one. Closes: https://gitlab.gnome.org/GNOME/gnome-control-center/-/issues/2957
214 lines
5.3 KiB
C
214 lines
5.3 KiB
C
/*
|
|
* Copyright (C) 2024 Red Hat, Inc.
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
|
*/
|
|
|
|
#include "cc-password-utils.h"
|
|
|
|
#include <gio/gio.h>
|
|
#include <glib.h>
|
|
#include <glob.h>
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
|
|
#define DICEWARE_CORPUS_GLOB "/usr/share/dict/*"
|
|
#define SPECIAL_CHARACTERS "-!\"#$%&()*,./:;?@[]^_`{|}~+<=>"
|
|
#define WORD_SEPARATORS " -_&+,;:."
|
|
|
|
static char *
|
|
get_word_at_line (const char *file_path,
|
|
guint line_number)
|
|
{
|
|
g_autoptr (GError) error = NULL;
|
|
g_autoptr (GFile) file = NULL;
|
|
g_autoptr (GFileInputStream) input_stream = NULL;
|
|
g_autoptr (GDataInputStream) data = NULL;
|
|
g_autofree char *line = NULL;
|
|
gsize length;
|
|
guint line_count = 0;
|
|
|
|
file = g_file_new_for_path (file_path);
|
|
|
|
input_stream = g_file_read (file, NULL, &error);
|
|
|
|
if (error != NULL)
|
|
{
|
|
g_warning ("Failed to open file: %s", error->message);
|
|
return NULL;
|
|
}
|
|
|
|
data = g_data_input_stream_new (G_INPUT_STREAM (input_stream));
|
|
|
|
while ((line = g_data_input_stream_read_line_utf8 (data, &length, NULL, &error)) != NULL)
|
|
{
|
|
if (line_count == line_number)
|
|
return g_str_to_ascii (line, NULL);
|
|
|
|
g_clear_pointer (&line, g_free);
|
|
line_count++;
|
|
}
|
|
|
|
if (error != NULL)
|
|
{
|
|
g_warning ("Failed to read file: %s", error->message);
|
|
return NULL;
|
|
}
|
|
|
|
if (line_count == 0)
|
|
{
|
|
g_warning ("File is empty");
|
|
return NULL;
|
|
}
|
|
|
|
if (line_number >= line_count)
|
|
return get_word_at_line (file_path, line_number % line_count);
|
|
|
|
return NULL;
|
|
}
|
|
|
|
static gboolean
|
|
is_word_separator (char character)
|
|
{
|
|
return strchr (WORD_SEPARATORS, character) != NULL;
|
|
}
|
|
|
|
static char
|
|
generate_word_separator (void)
|
|
{
|
|
return WORD_SEPARATORS[g_random_int_range (0, strlen (WORD_SEPARATORS))];
|
|
}
|
|
|
|
static char
|
|
generate_special_character (void)
|
|
{
|
|
return SPECIAL_CHARACTERS[g_random_int_range (0, strlen (SPECIAL_CHARACTERS))];
|
|
}
|
|
|
|
static char
|
|
generate_digit (void)
|
|
{
|
|
return g_random_int_range (0, 10) + '0';
|
|
}
|
|
|
|
static char *
|
|
get_random_file_from_glob (const char *pattern)
|
|
{
|
|
glob_t glob_result;
|
|
int ret = 0;
|
|
int index;
|
|
g_autofree char *file = NULL;
|
|
|
|
ret = glob (pattern, 0, NULL, &glob_result);
|
|
if (ret != 0)
|
|
goto out;
|
|
|
|
if (glob_result.gl_pathc == 0)
|
|
goto out;
|
|
|
|
index = g_random_int_range (0, glob_result.gl_pathc);
|
|
file = g_strdup (glob_result.gl_pathv[index]);
|
|
|
|
out:
|
|
globfree (&glob_result);
|
|
return g_steal_pointer (&file);
|
|
}
|
|
|
|
char *
|
|
cc_generate_password (void)
|
|
{
|
|
g_autoptr(GString) password_string = NULL;
|
|
g_autofree char *password = NULL;
|
|
static const size_t min_number_of_words = 2;
|
|
size_t i;
|
|
char *p = NULL;
|
|
gboolean needs_digit = TRUE;
|
|
gboolean needs_special_character = TRUE;
|
|
gboolean needs_uppercase = TRUE;
|
|
gboolean last_character_trimmable = TRUE;
|
|
|
|
password_string = g_string_new (NULL);
|
|
|
|
i = 0;
|
|
while (password_string->len < 16 || i < min_number_of_words)
|
|
{
|
|
g_autofree char *file_path = NULL;
|
|
int word_offset = g_random_int ();
|
|
g_autofree char *word = NULL;
|
|
|
|
file_path = get_random_file_from_glob (DICEWARE_CORPUS_GLOB);
|
|
|
|
if (!file_path)
|
|
return NULL;
|
|
|
|
word = get_word_at_line (file_path, word_offset);
|
|
|
|
if (word == NULL)
|
|
return NULL;
|
|
|
|
if (strlen (word) > 10)
|
|
continue;
|
|
|
|
g_string_append (password_string, word);
|
|
g_string_append_c (password_string, ' ');
|
|
i++;
|
|
}
|
|
|
|
password = g_string_free_and_steal (g_steal_pointer (&password_string));
|
|
|
|
while (needs_uppercase || needs_digit || needs_special_character || strstr (password, " ") != NULL)
|
|
{
|
|
for (p = password; *p != '\0'; p++)
|
|
{
|
|
if (p == password || is_word_separator (p[-1]))
|
|
{
|
|
if (g_random_int_range (0, 2) == 0)
|
|
{
|
|
*p = g_ascii_toupper (*p);
|
|
needs_uppercase = FALSE;
|
|
}
|
|
}
|
|
|
|
if (!is_word_separator (*p))
|
|
continue;
|
|
|
|
if (needs_digit && g_random_int_range (0, strlen (password)) == 0)
|
|
{
|
|
*p = generate_digit ();
|
|
needs_digit = FALSE;
|
|
|
|
if (p[1] == '\0')
|
|
last_character_trimmable = FALSE;
|
|
}
|
|
else if (needs_special_character && g_random_int_range (0, strlen (password)) == 0)
|
|
{
|
|
*p = generate_special_character ();
|
|
needs_special_character = FALSE;
|
|
|
|
if (p[1] == '\0')
|
|
last_character_trimmable = FALSE;
|
|
}
|
|
else if (!needs_digit && !needs_special_character)
|
|
{
|
|
*p = generate_word_separator ();
|
|
}
|
|
}
|
|
}
|
|
|
|
if (last_character_trimmable)
|
|
password[strlen (password) - 1] = '\0';
|
|
|
|
return g_steal_pointer (&password);
|
|
}
|