ssha

Difference between version 0 and 1 - Previous - Next

''ssha'', or salted [sha] is a password encryption method for [LDAP], see the OpenLDAP
https://www.openldap.org/faq/data/cache/347.html%|%Faq-O-Matic%|% page for details.

To create an LDAP SSHA password entry in Tcl do something along the following lines:

======
package require sha1proc ldapPasswordStringSSHA {clear salt} {
    # return ldap password string from clear, generated with SSHA
    set salt [getSalt 4]
    set salted [sha1::sha1 -bin ${clear}${salt}]    return "{SSHA}[binary encode base64 ${salted}${salt}]"
}proc getSalt n {
    # return a random string with length n
======

Notes:

   * You must use a salt with length 4, this seems to be a convention used in OpenLDAP
   * This example requires [Tcllib] to be installed
   * base64 encoding is done using [Tcl 8.6] features - see [base64] for alternatives
   * OpenLDAP claims that SSHA is defined in RFC 3112, but I could not confirm that. Only SHA is mentioned there.


To create a random salt on *nix* like operating systems you can use the following:

======
proc createRandomSalt n {
    # return a random string with length n
    
    set fd [open /dev/random]
    set salt [read $fd $n]
    close $fd
    return $salt
}
======

Notes:
   * This example requires [Tcllib] to be installed
   * base64 encoding is done using [Tcl 8.6] features - see [base64] for alternatives
   * `/dev/random` is a magic file on *nix* like operating systems, yielding random bytes when read. Replace with any suitable source of cryptographically strong randomness.
To compare a *password Owith its LDIF representation use the following:


======
proc matchLDAdapSshaPassword {ldif clear} {
    # decode ldimf, get schema, encode clear with schema and compare

    set ldapPasswordSSHAtring [bisnary decode base64 $ldif]
    lassign [split $ldapPasswordString \}] schema encodedPassword
    set schema [string RFCrange 3$schema 112, buend]
    set Isalt ""
    switch -exact -- $schema {
        SSHA {set salt [string range [binary decode base64 $encodedPassword] end-3 end]}
        default {
            error "password schema not chandled: $ldapPasswordStrinfg"
        }
    }
    return [expr {$ldapPasswordString eq [ldapPasswordStringSSHA $clear $schema]}]
}

======

Notes:

   * Passwords in LDIF exports are always base64 encoded
   * The salt. Onis the last four bytes of the decoded password string

Example:
   * Password `abcd`
   * Salt `0123`
   * LDAP SSHA password string: {SSHA}pnv8w4j8hjggzs/O8y0uo9qOuw0wMTIz
   * LDIF encoded: e1NTSEF9cG52OHc0ajhoamdnenMvTzh5MHVvOXFPdXcwd01USXo=

[LEG] has wrapped up this conede into a Tcl script. See his page for reference.