1 ;;; sasl-digest.el --- DIGEST-MD5 module for the SASL client framework
3 ;; Copyright (C) 2000, 2007, 2008, 2009, 2010 Free Software Foundation, Inc.
5 ;; Author: Daiki Ueno <ueno@unixuser.org>
6 ;; Kenichi OKADA <okada@opaopa.org>
7 ;; Keywords: SASL, DIGEST-MD5
10 ;; This file is part of GNU Emacs.
12 ;; GNU Emacs is free software: you can redistribute it and/or modify
13 ;; it under the terms of the GNU General Public License as published by
14 ;; the Free Software Foundation, either version 3 of the License, or
15 ;; (at your option) any later version.
17 ;; GNU Emacs is distributed in the hope that it will be useful,
18 ;; but WITHOUT ANY WARRANTY; without even the implied warranty of
19 ;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
20 ;; GNU General Public License for more details.
22 ;; You should have received a copy of the GNU General Public License
23 ;; along with GNU Emacs. If not, see <http://www.gnu.org/licenses/>.
27 ;; This program is implemented from draft-leach-digest-sasl-05.txt.
29 ;; It is caller's responsibility to base64-decode challenges and
30 ;; base64-encode responses in IMAP4 AUTHENTICATE command.
32 ;; Passphrase should be longer than 16 bytes. (See RFC 2195)
39 (defvar sasl-digest-md5-nonce-count 1)
40 (defvar sasl-digest-md5-unique-id-function
41 sasl-unique-id-function)
43 (defvar sasl-digest-md5-syntax-table
44 (let ((table (make-syntax-table)))
45 (modify-syntax-entry ?= "." table)
46 (modify-syntax-entry ?, "." table)
48 "A syntax table for parsing digest-challenge attributes.")
50 (defconst sasl-digest-md5-steps
51 '(ignore ;no initial response
52 sasl-digest-md5-response
55 (defun sasl-digest-md5-parse-string (string)
56 "Parse STRING and return a property list.
57 The value is a cons cell of the form \(realm nonce qop-options stale maxbuf
58 charset algorithm cipher-opts auth-param)."
60 (set-syntax-table sasl-digest-md5-syntax-table)
63 (goto-char (point-min))
65 (while (progn (forward-sexp) (not (eobp)))
69 (read (point-min-marker)))))
71 (defun sasl-digest-md5-digest-uri (serv-type host &optional serv-name)
72 (concat serv-type "/" host
74 (not (string= host serv-name)))
75 (concat "/" serv-name))))
77 (defun sasl-digest-md5-cnonce ()
78 (let ((sasl-unique-id-function sasl-digest-md5-unique-id-function))
81 (defun sasl-digest-md5-response-value (username
91 (format "DIGEST-MD5 passphrase for %s: "
98 (md5-binary (concat (md5-binary
99 (concat username ":" realm ":" passphrase))
102 (concat ":" authzid)))))
104 ":" (format "%08x" nonce-count) ":" cnonce ":" qop ":"
107 (concat "AUTHENTICATE:" digest-uri
108 (if (member qop '("auth-int" "auth-conf"))
109 ":00000000000000000000000000000000")))))))
110 (fillarray passphrase 0))))