Mercurial > openid

annotate src/c/openid.c @ 26:ee97bc0e08fa

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Some default OPs, along with some tweaks to keep them happy
author Adam Chlipala <adam@chlipala.net>
date Sun, 23 Jan 2011 14:57:49 -0500
parents 6b2a44da71b0
children f129ddee75f3
rev   line source
adam@14 1 #include <ctype.h>
adam@1 2 #include <string.h>
adam@1 3
adam@6 4 #include <openssl/bio.h>
adam@6 5 #include <openssl/evp.h>
adam@6 6 #include <openssl/buffer.h>
adam@0 7 #include <openssl/sha.h>
adam@7 8 #include <openssl/hmac.h>
adam@8 9 #include <openssl/dh.h>
adam@0 10 #include <curl/curl.h>
adam@1 11 #include <expat.h>
adam@0 12
adam@26 13 #include <pthread.h>
adam@26 14
adam@1 15 #include <openid.h>
adam@0 16
adam@3 17 #define BUF_MAX 10240
adam@3 18 #define BUF_INIT 1024
adam@3 19
adam@26 20 #define DEFAULT_PRIME "DCF93A0B883972EC0E19989AC5A2CE310E1D37717E8D9571BB7623731866E61EF75A2E27898B057F9891C2E27A639C3F29B60814581CD3B2CA3986D2683705577D45C2E7E52DC81C7A171876E5CEA74B1448BFDFAF18828EFD2519F14E45E3826634AF1949E5B535CC829A483B8A76223E5D490A257F05BDFF16F2FB22C583AB"
adam@26 21 #define DEFAULT_GENERATOR "2"
adam@26 22
adam@26 23 static BIGNUM *default_prime, *default_generator;
adam@2 24
adam@2 25 uw_Basis_string uw_OpenidFfi_endpoint(uw_context ctx, uw_OpenidFfi_discovery d) {
adam@8 26 return d.endpoint;
adam@2 27 }
adam@2 28
adam@2 29 uw_Basis_string uw_OpenidFfi_localId(uw_context ctx, uw_OpenidFfi_discovery d) {
adam@8 30 return d.localId;
adam@2 31 }
adam@2 32
adam@26 33 static pthread_mutex_t *locks;
adam@26 34
adam@26 35 static void locking_function(int mode, int n, const char *file, int line) {
adam@26 36 if (mode & CRYPTO_LOCK)
adam@26 37 pthread_mutex_lock(&locks[n]);
adam@26 38 else
adam@26 39 pthread_mutex_unlock(&locks[n]);
adam@26 40 }
adam@26 41
adam@26 42 static unsigned long id_function() {
adam@26 43 return pthread_self();
adam@26 44 }
adam@26 45
adam@0 46 uw_unit uw_OpenidFfi_init(uw_context ctx) {
adam@26 47 int nl = CRYPTO_num_locks(), i;
adam@26 48 locks = malloc(sizeof(pthread_mutex_t) * nl);
adam@26 49 for (i = 0; i < nl; ++i)
adam@26 50 pthread_mutex_init(&locks[i], NULL);
adam@26 51
adam@26 52 CRYPTO_set_locking_callback(locking_function);
adam@26 53 CRYPTO_set_id_callback(id_function);
adam@0 54 curl_global_init(CURL_GLOBAL_ALL);
adam@0 55
adam@26 56 BN_hex2bn(&default_prime, DEFAULT_PRIME);
adam@26 57 BN_dec2bn(&default_generator, DEFAULT_GENERATOR);
adam@26 58
adam@0 59 return uw_unit_v;
adam@0 60 }
adam@1 61
adam@1 62 static CURL *curl(uw_context ctx) {
adam@1 63 CURL *r;
adam@1 64
adam@1 65 if (!(r = uw_get_global(ctx, "curl"))) {
adam@1 66 r = curl_easy_init();
adam@1 67 if (r)
adam@1 68 uw_set_global(ctx, "curl", r, curl_easy_cleanup);
adam@1 69 }
adam@1 70
adam@1 71 return r;
adam@1 72 }
adam@1 73
adam@26 74 typedef enum { NONE, SERVICE, TYPE, MATCHED, URI } xrds_mode;
adam@26 75
adam@1 76 typedef struct {
adam@1 77 uw_context ctx;
adam@8 78 uw_OpenidFfi_discovery *d;
adam@26 79 xrds_mode mode;
adam@1 80 } endpoint;
adam@1 81
adam@1 82 static void XMLCALL startElement(void *userData, const XML_Char *name, const XML_Char **atts) {
adam@1 83 endpoint *ep = userData;
adam@1 84
adam@26 85 if (!strncmp(name, "xrd:", 4))
adam@26 86 name += 4;
adam@26 87
adam@1 88 if (!strcmp(name, "link")) {
adam@1 89 const XML_Char **attp;
adam@1 90 int found = 0;
adam@1 91
adam@1 92 for (attp = atts; *attp; attp += 2) {
adam@1 93 if (!strcmp(attp[0], "rel") && !strcmp(attp[1], "openid2.provider")) {
adam@1 94 found = 1;
adam@1 95 break;
adam@1 96 }
adam@1 97 }
adam@1 98
adam@1 99 if (found) {
adam@1 100 for (attp = atts; *attp; attp += 2) {
adam@1 101 if (!strcmp(attp[0], "href")) {
adam@2 102 ep->d->endpoint = uw_strdup(ep->ctx, attp[1]);
adam@1 103 return;
adam@1 104 }
adam@1 105 }
adam@1 106 }
adam@1 107 }
adam@26 108 else if (!strcmp(name, "Service"))
adam@26 109 ep->mode = SERVICE;
adam@26 110 else if (!strcmp(name, "Type")) {
adam@26 111 if (ep->mode == SERVICE)
adam@26 112 ep->mode = TYPE;
adam@26 113 }
adam@26 114 else if (!strcmp(name, "URI")) {
adam@26 115 if (ep->mode == MATCHED)
adam@26 116 ep->mode = URI;
adam@26 117 }
adam@26 118 }
adam@26 119
adam@26 120 static char server[] = "http://specs.openid.net/auth/2.0/server";
adam@26 121 static char signon[] = "http://specs.openid.net/auth/2.0/signon";
adam@26 122
adam@26 123 static void XMLCALL cdata(void *userData, const XML_Char *s, int len) {
adam@26 124 endpoint *ep = userData;
adam@26 125
adam@26 126 switch (ep->mode) {
adam@26 127 case TYPE:
adam@26 128 if ((len == sizeof(server)-1 && !memcmp(server, s, sizeof(server)-1))
adam@26 129 || (len == sizeof(signon)-1 && !memcmp(signon, s, sizeof(signon)-1)))
adam@26 130 ep->mode = MATCHED;
adam@26 131 break;
adam@26 132 case URI:
adam@26 133 ep->d->endpoint = uw_malloc(ep->ctx, len+1);
adam@26 134 memcpy(ep->d->endpoint, s, len);
adam@26 135 ep->d->endpoint[len] = 0;
adam@26 136 break;
adam@26 137 default:
adam@26 138 break;
adam@26 139 }
adam@26 140 }
adam@26 141
adam@26 142 static void XMLCALL endElement(void *userData, const XML_Char *name) {
adam@26 143 endpoint *ep = userData;
adam@26 144
adam@26 145 if (!strncmp(name, "xrd:", 4))
adam@26 146 name += 4;
adam@26 147
adam@26 148 if (!strcmp(name, "Service"))
adam@26 149 ep->mode = NONE;
adam@26 150 else if (!strcmp(name, "Type")) {
adam@26 151 if (ep->mode != MATCHED)
adam@26 152 ep->mode = SERVICE;
adam@26 153 }
adam@26 154 else if (!strcmp(name, "URI"))
adam@26 155 ep->mode = MATCHED;
adam@1 156 }
adam@1 157
adam@1 158 typedef struct {
adam@1 159 XML_Parser parser;
adam@1 160 int any_errors;
adam@3 161 } curl_discovery_data;
adam@1 162
adam@3 163 static size_t write_discovery_data(void *buffer, size_t size, size_t nmemb, void *userp) {
adam@3 164 curl_discovery_data *d = userp;
adam@1 165
adam@1 166 if (!XML_Parse(d->parser, buffer, size * nmemb, 0))
adam@1 167 d->any_errors = 1;
adam@1 168
adam@1 169 return size * nmemb;
adam@1 170 }
adam@1 171
adam@2 172 uw_OpenidFfi_discovery *uw_OpenidFfi_discover(uw_context ctx, uw_Basis_string id) {
adam@1 173 char *s;
adam@1 174 CURL *c = curl(ctx);
adam@3 175 curl_discovery_data cd = {};
adam@8 176 uw_OpenidFfi_discovery *dy = uw_malloc(ctx, sizeof(uw_OpenidFfi_discovery));
adam@26 177 endpoint ep = {ctx, dy, NONE};
adam@1 178 CURLcode code;
adam@1 179
adam@2 180 dy->endpoint = dy->localId = NULL;
adam@2 181
adam@1 182 if (!strchr(id, ':')) {
adam@1 183 id = uw_Basis_strcat(ctx, "http://", id);
adam@1 184 if ((s = strchr(id, '#')) != NULL)
adam@1 185 *s = 0;
adam@1 186 } else if ((s = strchr(id, '#')) != NULL) {
adam@1 187 char *id2 = uw_malloc(ctx, s - id + 1);
adam@1 188 memcpy(id2, s, s - id);
adam@1 189 id2[s - id] = 0;
adam@1 190 id = id2;
adam@1 191 }
adam@1 192
adam@1 193 cd.parser = XML_ParserCreate(NULL);
adam@1 194 XML_SetUserData(cd.parser, &ep);
adam@1 195 uw_push_cleanup(ctx, (void (*)(void *))XML_ParserFree, cd.parser);
adam@26 196 XML_SetElementHandler(cd.parser, startElement, endElement);
adam@26 197 XML_SetCharacterDataHandler(cd.parser, cdata);
adam@1 198
adam@26 199 curl_easy_reset(c);
adam@1 200 curl_easy_setopt(c, CURLOPT_URL, id);
adam@3 201 curl_easy_setopt(c, CURLOPT_WRITEFUNCTION, write_discovery_data);
adam@1 202 curl_easy_setopt(c, CURLOPT_WRITEDATA, &cd);
adam@1 203
adam@1 204 code = curl_easy_perform(c);
adam@1 205 uw_pop_cleanup(ctx);
adam@1 206
adam@8 207 if (code || !dy->endpoint)
adam@1 208 return NULL;
adam@8 209 else
adam@8 210 return dy;
adam@1 211 }
adam@3 212
adam@3 213 uw_OpenidFfi_inputs uw_OpenidFfi_createInputs(uw_context ctx) {
adam@3 214 uw_buffer *r = uw_malloc(ctx, sizeof(uw_buffer));
adam@3 215 uw_buffer_init(BUF_MAX, r, BUF_INIT);
adam@3 216 return r;
adam@3 217 }
adam@3 218
adam@8 219 static void postify(uw_OpenidFfi_inputs buf, uw_Basis_string s) {
adam@14 220 char hex[4];
adam@14 221
adam@8 222 for (; *s; ++s) {
adam@14 223 if (isalnum(*s))
adam@14 224 uw_buffer_append(buf, s, 1);
adam@14 225 else {
adam@14 226 sprintf(hex, "%%%02X", (unsigned char)*s);
adam@14 227 uw_buffer_append(buf, hex, 3);
adam@14 228 }
adam@8 229 }
adam@3 230 }
adam@3 231
adam@3 232 uw_unit uw_OpenidFfi_addInput(uw_context ctx, uw_OpenidFfi_inputs buf, uw_Basis_string key, uw_Basis_string value) {
adam@3 233 if (uw_buffer_used(buf) > 0)
adam@3 234 uw_buffer_append(buf, "&", 1);
adam@3 235
adam@14 236 uw_buffer_append(buf, key, strlen(key));
adam@3 237 uw_buffer_append(buf, "=", 1);
adam@8 238 postify(buf, value);
adam@3 239
adam@3 240 return uw_unit_v;
adam@3 241 }
adam@3 242
adam@3 243 uw_Basis_string uw_OpenidFfi_getOutput(uw_context ctx, uw_OpenidFfi_outputs buf, uw_Basis_string key) {
adam@3 244 char *s = buf->start;
adam@3 245
adam@3 246 for (; *s; s = strchr(strchr(s, 0)+1, 0)+1)
adam@3 247 if (!strcmp(key, s))
adam@3 248 return strchr(s, 0)+1;
adam@3 249
adam@3 250 return NULL;
adam@3 251 }
adam@3 252
adam@3 253 static size_t write_buffer_data(void *buffer, size_t size, size_t nmemb, void *userp) {
adam@3 254 uw_buffer *buf = userp;
adam@3 255
adam@3 256 uw_buffer_append(buf, buffer, size * nmemb);
adam@3 257
adam@3 258 return size * nmemb;
adam@3 259 }
adam@3 260
adam@3 261 const char curl_failure[] = "error\0Error fetching URL";
adam@3 262
adam@4 263 uw_OpenidFfi_outputs uw_OpenidFfi_direct(uw_context ctx, uw_Basis_string url, uw_OpenidFfi_inputs inps) {
adam@3 264 uw_buffer *buf = uw_malloc(ctx, sizeof(uw_buffer));
adam@3 265 CURL *c = curl(ctx);
adam@3 266 CURLcode code;
adam@3 267
adam@3 268 uw_buffer_init(BUF_MAX, buf, BUF_INIT);
adam@3 269
adam@3 270 uw_buffer_append(inps, "", 1);
adam@3 271
adam@26 272 curl_easy_reset(c);
adam@3 273 curl_easy_setopt(c, CURLOPT_URL, url);
adam@3 274 curl_easy_setopt(c, CURLOPT_POSTFIELDS, inps->start);
adam@3 275 curl_easy_setopt(c, CURLOPT_WRITEFUNCTION, write_buffer_data);
adam@3 276 curl_easy_setopt(c, CURLOPT_WRITEDATA, buf);
adam@3 277
adam@3 278 code = curl_easy_perform(c);
adam@3 279 uw_buffer_append(buf, "", 1);
adam@3 280
adam@3 281 if (code) {
adam@3 282 uw_buffer_reset(buf);
adam@3 283 uw_buffer_append(buf, curl_failure, sizeof curl_failure);
adam@3 284 } else {
adam@3 285 char *s;
adam@3 286
adam@3 287 s = buf->start;
adam@3 288 while (*s) {
adam@3 289 char *colon = strchr(s, ':'), *newline;
adam@3 290
adam@3 291 if (!colon) {
adam@3 292 *s = 0;
adam@3 293 break;
adam@3 294 }
adam@3 295
adam@7 296 *colon = 0;
adam@7 297
adam@3 298 newline = strchr(colon+1, '\n');
adam@3 299
adam@7 300 if (!newline)
adam@3 301 break;
adam@3 302
adam@3 303 *newline = 0;
adam@3 304 s = newline+1;
adam@3 305 }
adam@3 306 }
adam@3 307
adam@3 308 return buf;
adam@3 309 }
adam@4 310
adam@4 311 static uw_Basis_string deurl(uw_context ctx, uw_Basis_string s) {
adam@4 312 uw_Basis_string r = uw_malloc(ctx, strlen(s)), s2 = r;
adam@4 313
adam@4 314 for (; *s; ++s) {
adam@4 315 if (s[0] == '%' && s[1] && s[2]) {
adam@4 316 unsigned u;
adam@4 317
adam@4 318 sscanf(s+1, "%02x", &u);
adam@4 319 *s2++ = u;
adam@4 320 s += 2;
adam@4 321 } else
adam@4 322 *s2++ = *s;
adam@4 323 }
adam@4 324
adam@4 325 *s2 = 0;
adam@4 326 return r;
adam@4 327 }
adam@4 328
adam@4 329 uw_OpenidFfi_outputs uw_OpenidFfi_indirect(uw_context ctx, uw_Basis_string fields) {
adam@4 330 uw_OpenidFfi_outputs b = malloc(sizeof(uw_buffer));
adam@4 331
adam@4 332 uw_buffer_init(BUF_MAX, b, BUF_INIT);
adam@4 333
adam@6 334 fields = uw_strdup(ctx, fields);
adam@6 335
adam@4 336 while (*fields) {
adam@4 337 char *equal = strchr(fields, '='), *and, *s;
adam@4 338
adam@4 339 if (!equal)
adam@4 340 break;
adam@4 341
adam@4 342 *equal = 0;
adam@4 343 s = deurl(ctx, fields);
adam@4 344 uw_buffer_append(b, s, strlen(s));
adam@4 345 uw_buffer_append(b, "", 1);
adam@4 346
adam@4 347 and = strchr(equal+1, '&');
adam@4 348 if (and) {
adam@4 349 *and = 0;
adam@4 350 fields = and+1;
adam@4 351 } else
adam@4 352 fields = and = strchr(equal+1, 0);
adam@4 353 s = deurl(ctx, equal+1);
adam@4 354 uw_buffer_append(b, s, strlen(s));
adam@4 355 uw_buffer_append(b, "", 1);
adam@4 356 }
adam@4 357
adam@4 358 uw_buffer_append(b, "", 1);
adam@4 359 return b;
adam@4 360 }
adam@6 361
adam@6 362 static uw_Basis_string base64(uw_context ctx, unsigned char *input, int length) {
adam@6 363 BIO *bmem, *b64;
adam@6 364
adam@6 365 b64 = BIO_new(BIO_f_base64());
adam@7 366 BIO_set_flags(b64, BIO_FLAGS_BASE64_NO_NL);
adam@6 367 bmem = BIO_new(BIO_s_mem());
adam@7 368 BIO_push(b64, bmem);
adam@6 369 BIO_write(b64, input, length);
adam@6 370 (void)BIO_flush(b64);
adam@6 371
adam@7 372 int len = BIO_ctrl_pending(bmem);
adam@7 373 char *buff = uw_malloc(ctx, len+1);
adam@7 374 BIO_read(bmem, buff, len);
adam@7 375 buff[len] = 0;
adam@6 376
adam@6 377 BIO_free_all(b64);
adam@6 378
adam@6 379 return buff;
adam@6 380 }
adam@6 381
adam@8 382 static int unbase64(unsigned char *input, int length, unsigned char *buffer, int bufferLength)
adam@7 383 {
adam@7 384 BIO *b64, *bmem;
adam@8 385 int n;
adam@6 386
adam@7 387 b64 = BIO_new(BIO_f_base64());
adam@7 388 BIO_set_flags(b64, BIO_FLAGS_BASE64_NO_NL);
adam@7 389 bmem = BIO_new_mem_buf(input, length);
adam@7 390 BIO_push(b64, bmem);
adam@8 391 n = BIO_read(b64, buffer, bufferLength);
adam@6 392
adam@7 393 BIO_free_all(bmem);
adam@8 394
adam@8 395 return n;
adam@8 396 }
adam@8 397
adam@12 398 uw_Basis_string uw_OpenidFfi_hmac_sha1(uw_context ctx, uw_Basis_string key, uw_Basis_string data) {
adam@8 399 unsigned char keyBin[SHA_DIGEST_LENGTH], out[EVP_MAX_MD_SIZE];
adam@8 400 unsigned outLen;
adam@8 401
adam@8 402 unbase64((unsigned char *)key, strlen(key), keyBin, sizeof keyBin);
adam@8 403
adam@8 404 HMAC(EVP_sha1(), keyBin, sizeof keyBin, (unsigned char *)data, strlen(data), out, &outLen);
adam@8 405 return base64(ctx, out, outLen);
adam@6 406 }
adam@7 407
adam@12 408 uw_Basis_string uw_OpenidFfi_hmac_sha256(uw_context ctx, uw_Basis_string key, uw_Basis_string data) {
adam@7 409 unsigned char keyBin[SHA256_DIGEST_LENGTH], out[EVP_MAX_MD_SIZE];
adam@7 410 unsigned outLen;
adam@7 411
adam@7 412 unbase64((unsigned char *)key, strlen(key), keyBin, sizeof keyBin);
adam@7 413
adam@7 414 HMAC(EVP_sha256(), keyBin, sizeof keyBin, (unsigned char *)data, strlen(data), out, &outLen);
adam@7 415 return base64(ctx, out, outLen);
adam@7 416 }
adam@8 417
adam@8 418 static uw_Basis_string btwoc(uw_context ctx, const BIGNUM *n) {
adam@8 419 int len = BN_num_bytes(n), i;
adam@8 420 unsigned char bytes[len+1];
adam@8 421
adam@8 422 bytes[0] = 0;
adam@8 423 BN_bn2bin(n, bytes+1);
adam@8 424
adam@8 425 for (i = 1; i <= len; ++i)
adam@8 426 if (bytes[i]) {
adam@8 427 if (bytes[i] & 0x80)
adam@8 428 --i;
adam@8 429 break;
adam@8 430 }
adam@8 431
adam@8 432 if (i > len)
adam@8 433 i = len;
adam@8 434
adam@8 435 return base64(ctx, bytes+i, len+1-i);
adam@8 436 }
adam@8 437
adam@8 438 static BIGNUM *unbtwoc(uw_context ctx, uw_Basis_string s) {
adam@8 439 unsigned char bytes[1024];
adam@8 440 int len;
adam@8 441
adam@8 442 len = unbase64((unsigned char *)s, strlen(s), bytes, sizeof bytes);
adam@8 443 return BN_bin2bn(bytes, len, NULL);
adam@8 444 }
adam@8 445
adam@8 446 uw_Basis_string uw_OpenidFfi_modulus(uw_context ctx, uw_OpenidFfi_dh dh) {
adam@8 447 return btwoc(ctx, dh->p);
adam@8 448 }
adam@8 449
adam@8 450 uw_Basis_string uw_OpenidFfi_generator(uw_context ctx, uw_OpenidFfi_dh dh) {
adam@8 451 return btwoc(ctx, dh->g);
adam@8 452 }
adam@8 453
adam@8 454 uw_Basis_string uw_OpenidFfi_public(uw_context ctx, uw_OpenidFfi_dh dh) {
adam@8 455 return btwoc(ctx, dh->pub_key);
adam@8 456 }
adam@8 457
adam@8 458 static void free_DH(void *data, int will_retry) {
adam@8 459 DH *dh = data;
adam@26 460 dh->p = NULL;
adam@26 461 dh->g = NULL;
adam@8 462 DH_free(dh);
adam@8 463 }
adam@8 464
adam@8 465 uw_OpenidFfi_dh uw_OpenidFfi_generate(uw_context ctx) {
adam@8 466 DH *dh = DH_new();
adam@8 467
adam@26 468 dh->p = default_prime;
adam@26 469 dh->g = default_generator;
adam@8 470 uw_register_transactional(ctx, dh, NULL, NULL, free_DH);
adam@8 471
adam@8 472 if (DH_generate_key(dh) != 1)
adam@8 473 uw_error(ctx, FATAL, "Diffie-Hellman key generation failed");
adam@8 474
adam@8 475 return dh;
adam@8 476 }
adam@8 477
adam@8 478 uw_Basis_string uw_OpenidFfi_compute(uw_context ctx, uw_OpenidFfi_dh dh, uw_Basis_string server_pub) {
adam@8 479 BIGNUM *bn = unbtwoc(ctx, server_pub);
adam@12 480 unsigned char secret[DH_size(dh)+1], *secretP;
adam@8 481 int size;
adam@8 482
adam@8 483 uw_push_cleanup(ctx, (void (*)(void *))BN_free, bn);
adam@8 484
adam@12 485 size = DH_compute_key(secret+1, bn, dh);
adam@8 486 if (size == -1)
adam@8 487 uw_error(ctx, FATAL, "Diffie-Hellman key computation failed");
adam@8 488
adam@8 489 uw_pop_cleanup(ctx);
adam@8 490
adam@12 491 if (size > 0 && (secret[1] & 0x80)) {
adam@12 492 secret[0] = 0;
adam@12 493 secretP = secret;
adam@12 494 ++size;
adam@12 495 } else
adam@12 496 secretP = secret+1;
adam@12 497
adam@12 498 return base64(ctx, secretP, size);
adam@8 499 }
adam@12 500
adam@12 501 uw_Basis_string uw_OpenidFfi_sha1(uw_context ctx, uw_Basis_string data) {
adam@12 502 unsigned char dataBin[128], out[EVP_MAX_MD_SIZE];
adam@12 503 int len;
adam@12 504
adam@12 505 len = unbase64((unsigned char *)data, strlen(data), dataBin, sizeof dataBin);
adam@12 506
adam@12 507 SHA1(dataBin, len, out);
adam@12 508 return base64(ctx, out, SHA_DIGEST_LENGTH);
adam@12 509 }
adam@12 510
adam@12 511 uw_Basis_string uw_OpenidFfi_sha256(uw_context ctx, uw_Basis_string data) {
adam@12 512 unsigned char dataBin[128], out[EVP_MAX_MD_SIZE];
adam@12 513 int len;
adam@12 514
adam@12 515 len = unbase64((unsigned char *)data, strlen(data), dataBin, sizeof dataBin);
adam@12 516
adam@12 517 SHA256(dataBin, len, out);
adam@12 518 return base64(ctx, out, SHA256_DIGEST_LENGTH);
adam@12 519 }
adam@12 520
adam@12 521 uw_Basis_string uw_OpenidFfi_xor(uw_context ctx, uw_Basis_string s1, uw_Basis_string s2) {
adam@12 522 unsigned char buf1[128], buf2[128], bufO[128];
adam@12 523 int len1, len2, i;
adam@12 524
adam@12 525 len1 = unbase64((unsigned char *)s1, strlen(s1), buf1, sizeof buf1);
adam@12 526 len2 = unbase64((unsigned char *)s2, strlen(s2), buf2, sizeof buf2);
adam@12 527
adam@12 528 for (i = 0; i < len1; ++i)
adam@12 529 bufO[i] = buf1[i] ^ buf2[i % len2];
adam@12 530
adam@12 531 return base64(ctx, bufO, len1);
adam@12 532 }
adam@13 533
adam@13 534 uw_OpenidFfi_inputs uw_OpenidFfi_remode(uw_context ctx, uw_OpenidFfi_outputs out, uw_Basis_string mode) {
adam@13 535 uw_OpenidFfi_inputs in = uw_OpenidFfi_createInputs(ctx);
adam@13 536 char *s;
adam@13 537
adam@13 538 for (s = out->start; *s; s = strchr(strchr(s, 0)+1, 0)+1)
adam@13 539 if (!strcmp("openid.mode", s))
adam@13 540 uw_OpenidFfi_addInput(ctx, in, "openid.mode", mode);
adam@13 541 else
adam@13 542 uw_OpenidFfi_addInput(ctx, in, s, strchr(s, 0)+1);
adam@13 543
adam@13 544 return in;
adam@13 545 }