File Coverage

blib/lib/POE/Component/Server/IRC/Common.pm

Criterion	Covered	Total	%
statement	63	63	100.0
branch	31	42	73.8
condition	6	12	50.0
subroutine	9	9	100.0
pod	2	2	100.0
total	111	128	86.7

line	stmt	bran	cond	sub	pod	time	code
1							package POE::Component::Server::IRC::Common;
2							our $AUTHORITY = 'cpan:BINGOS';
3							$POE::Component::Server::IRC::Common::VERSION = '1.61'; # TRIAL
4	184			184		176992	use strict;
	184					440
	184					6351
5	184			184		1013	use warnings FATAL => 'all';
	184					396
	184					7534
6	184			184		87274	use Crypt::PasswdMD5;
	184					189474
	184					10383
7	184			184		88779	use Crypt::Eksblowfish::Bcrypt ();
	184					680586
	184					6925
8
9							require Exporter;
10	184			184		1567	use base qw(Exporter);
	184					494
	184					153951
11							our @EXPORT_OK = qw(mkpasswd chkpasswd);
12							our %EXPORT_TAGS = ( ALL => [@EXPORT_OK] );
13
14							sub mkpasswd {
15	210			210	1	1553444	my ($plain, %opts) = @_;
16	210	50	33			1046	return if !defined $plain \|\| !length $plain;
17	210					937	$opts{lc $_} = delete $opts{$_} for keys %opts;
18
19	210	100				707	return _bcrypt($plain) if $opts{bcrypt};
20	153	100				463	return unix_md5_crypt($plain) if $opts{md5};
21	102	100				357	return apache_md5_crypt($plain) if $opts{apache};
22	51					660	my $salt = join '', ('.','/', 0..9, 'A'..'Z', 'a'..'z')[rand 64, rand 64];
23	51					89	my $alg = '';
24	51	50				2510	$alg = '$5$' if !defined(crypt("ab", $alg."cd"));
25	51	50				384	$alg = '$2b$12$FPWWO2RJ3CK4FINTw0Hi' if !defined(crypt("ab", $alg."cd"));
26	51	50				346	$alg = '' if !defined(crypt("ab", $alg."cd"));
27	51					1190	return crypt($plain, $alg.$salt);
28							}
29
30							sub chkpasswd {
31	753			753	1	13034663	my ($pass, $chk) = @_;
32	753	50	33			8576	return if !defined $pass \|\| !length $pass;
33	753	50	33			4455	return if !defined $chk \|\| !length $chk;
34
35	753					3311	my $md5 = '$1$'; my $apr = '$apr1$'; my $bcr = '$2a$';
	753					3056
	753					1664
36	753	100				6059	if (index($chk,$apr) == 0) {
		100
		100
37	101					663	my $salt = $chk;
38	101					3261	$salt =~ s/^\Q$apr//;
39	101					2148	$salt =~ s/^(.*)\$/$1/;
40	101					385	$salt = substr( $salt, 0, 8 );
41	101	50				1026	return 1 if apache_md5_crypt($pass, $salt) eq $chk;
42							}
43							elsif ( index($chk,$md5) == 0 ) {
44	101					708	my $salt = $chk;
45	101					3563	$salt =~ s/^\Q$md5//;
46	101					2255	$salt =~ s/^(.*)\$/$1/;
47	101					404	$salt = substr( $salt, 0, 8 );
48	101	50				1403	return 1 if unix_md5_crypt($pass, $salt) eq $chk;
49							}
50							elsif ( index($chk,$bcr) == 0 ) {
51	144	100				944	return 1 if _bcrypt( $pass, $chk ) eq $chk;
52							}
53
54	415					141418	my $crypt = crypt( $pass, $chk );
55	415	100	100			5874	return 1 if $crypt && $crypt eq $chk;
56	314	100				2273	return 1 if $pass eq $chk;
57	8					38	return;
58							}
59
60							sub _bcrypt {
61	201			201		978	my $plain = shift;
62	201					477	my $salt = shift;
63	201	100				752	if ( !defined $salt ) {
64	57					118	my $cost = sprintf('%02d', 6);
65	57					102	my $alg = '';
66	57	50				2092	$alg = '$5$' if !defined(crypt("ab", $alg."cd"));
67	57	50				448	$alg = '$2b$12$FPWWO2RJ3CK4FINTw0Hi' if !defined(crypt("ab", $alg."cd"));
68	57	50				437	$alg = '' if !defined(crypt("ab", $alg."cd"));
69							my $salty = sub {
70	57			57		88	my $num = 999999;
71	57					3230	my $cr = crypt( rand($num), $alg.rand($num) ) . crypt( rand($num), $alg.rand($num) );
72	57					331	Crypt::Eksblowfish::Bcrypt::en_base64(substr( $cr, 4, 16 ));
73	57					459	};
74	57					162	$salt = join( '$', '$2a', $cost, $salty->() );
75							}
76	201					2384	return Crypt::Eksblowfish::Bcrypt::bcrypt($plain,$salt);
77							}
78
79							1;
80
81							=encoding utf8
82
83							=head1 NAME
84
85							POE::Component::Server::IRC::Common - provides a set of common functions for the POE::Component::Server::IRC suite.
86
87							=head1 SYNOPSIS
88
89							use strict;
90							use warnings;
91
92							use POE::Component::Server::IRC::Common qw( :ALL );
93
94							my $passwd = mkpasswd( 'moocow' );
95
96
97							=head1 DESCRIPTION
98
99							POE::Component::IRC::Common provides a set of common functions for the
100							L suite.
101
102							=head1 FUNCTIONS
103
104							=head2 C
105
106							Takes one mandatory argument a plain string to 'encrypt'. If no further
107							options are specified it uses C to generate the password. Specifying
108							'md5' option uses L's C
109							function to generate the password. Specifying 'apache' uses
110							Crypt::PasswdMD5 C function to generate the password.
111							Specifying 'bcrypt' option uses L to generate
112							the password (recommended).
113
114							my $passwd = mkpasswd( 'moocow' ); # vanilla crypt()
115							my $passwd = mkpasswd( 'moocow', md5 => 1 ) # unix_md5_crypt()
116							my $passwd = mkpasswd( 'moocow', apache => 1 ) # apache_md5_crypt()
117							my $passwd = mkpasswd( 'moocow', bcrypt => 1 ) # bcrypt() # recommended
118
119							=head2 C
120
121							Takes two mandatory arguments, a password string and something to check that
122							password against. The function first tries md5 comparisons (UNIX and Apache)
123							and bcrypt, then C and finally plain-text password check.
124
125							=head1 AUTHOR
126
127							Chris 'BinGOs' Williams
128
129							=head1 LICENSE
130
131							Copyright E Chris Williams
132
133							This module may be used, modified, and distributed under the same terms as
134							Perl itself. Please see the license that came with your Perl distribution
135							for details.
136
137							=head1 SEE ALSO
138
139							L
140							L
141							L
142							L
143
144							=cut