|
require 'base64'
|
|
|
|
class PasswordCrypt
|
|
ALGORITHMS = {'SHA256' => '$5$', 'SHA512' => '$6$', 'Base64' => ''}
|
|
|
|
if Foreman::Fips.md5_available?
|
|
ALGORITHMS['MD5'] = '$1$'
|
|
end
|
|
|
|
def self.passw_crypt(passwd, hash_alg = 'SHA256')
|
|
raise Foreman::Exception.new(N_("Unsupported password hash function '%s'"), hash_alg) unless ALGORITHMS.has_key?(hash_alg)
|
|
result = (hash_alg == 'Base64') ? Base64.strict_encode64(passwd) : passwd.crypt("#{ALGORITHMS[hash_alg]}#{SecureRandom.base64(6)}")
|
|
result.force_encoding(Encoding::UTF_8) if result.encoding != Encoding::UTF_8
|
|
result
|
|
end
|
|
|
|
def self.grub2_passw_crypt(passw)
|
|
self.passw_crypt(passw, 'SHA512')
|
|
end
|
|
|
|
def self.crypt_gnu_compatible?
|
|
@crypt_gnu_compatible ||= passw_crypt("test_this").match('^\$\d+\$.+\$.+')
|
|
end
|
|
end
|
