mirror of
https://github.com/Yubico/yubikey-ksm.git
synced 2025-03-02 15:29:17 +01:00
89 lines
2.8 KiB
PHP
89 lines
2.8 KiB
PHP
<?php
|
|
|
|
# Written by Simon Josefsson <simon@josefsson.org>.
|
|
# Copyright (c) 2009-2013 Yubico AB
|
|
# All rights reserved.
|
|
#
|
|
# Redistribution and use in source and binary forms, with or without
|
|
# modification, are permitted provided that the following conditions are
|
|
# met:
|
|
#
|
|
# * Redistributions of source code must retain the above copyright
|
|
# notice, this list of conditions and the following disclaimer.
|
|
#
|
|
# * Redistributions in binary form must reproduce the above
|
|
# copyright notice, this list of conditions and the following
|
|
# disclaimer in the documentation and/or other materials provided
|
|
# with the distribution.
|
|
#
|
|
# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
|
|
# "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
|
|
# LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
|
|
# A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
|
|
# OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
|
# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
|
|
# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
# DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
# THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
# (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
|
# OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
function yubi_hex2bin($h)
|
|
{
|
|
if (!is_string($h)) return null;
|
|
$r = '';
|
|
for ($a = 0; $a < strlen($h); $a += 2) {
|
|
$r .= chr(hexdec($h{
|
|
$a} . $h{
|
|
($a + 1)}));
|
|
}
|
|
return $r;
|
|
}
|
|
|
|
function modhex2hex($m)
|
|
{
|
|
return strtr($m, "cbdefghijklnrtuv", "0123456789abcdef");
|
|
}
|
|
|
|
function aes128ecb_decrypt($key, $in)
|
|
{
|
|
if (extension_loaded('openssl') && function_exists('openssl_decrypt') && in_array('aes-128-ecb', openssl_get_cipher_methods())) {
|
|
$result = openssl_decrypt(yubi_hex2bin($in), 'aes-128-ecb', yubi_hex2bin($key), OPENSSL_RAW_DATA | OPENSSL_ZERO_PADDING);
|
|
if ($result !== false)
|
|
$result = bin2hex($result);
|
|
else
|
|
$result = '';
|
|
} else {
|
|
$td = mcrypt_module_open(MCRYPT_RIJNDAEL_128, '', 'ecb', '');
|
|
$iv = yubi_hex2bin('00000000000000000000000000000000');
|
|
mcrypt_generic_init($td, yubi_hex2bin($key), $iv);
|
|
$result = bin2hex(mdecrypt_generic($td, yubi_hex2bin($in)));
|
|
mcrypt_generic_deinit($td);
|
|
}
|
|
return $result;
|
|
}
|
|
|
|
function calculate_crc($token)
|
|
{
|
|
$crc = 0xffff;
|
|
|
|
for ($i = 0; $i < 16; $i++) {
|
|
$b = hexdec($token[$i * 2] . $token[($i * 2) + 1]);
|
|
$crc = $crc ^ ($b & 0xff);
|
|
for ($j = 0; $j < 8; $j++) {
|
|
$n = $crc & 1;
|
|
$crc = $crc >> 1;
|
|
if ($n != 0) {
|
|
$crc = $crc ^ 0x8408;
|
|
}
|
|
}
|
|
}
|
|
return $crc;
|
|
}
|
|
|
|
function crc_is_good($token)
|
|
{
|
|
$crc = calculate_crc($token);
|
|
return $crc == 0xf0b8;
|
|
}
|