PageRenderTime 57ms CodeModel.GetById 31ms RepoModel.GetById 0ms app.codeStats 1ms

/usr/src/boot/forth/check-password.4th

https://github.com/illumos/illumos-gate
Forth | 178 lines | 149 code | 29 blank | 0 comment | 34 complexity | d783e2e9f2221b40108bb4fc32225444 MD5 | raw file
    

  1. \ Copyright (c) 2006-2015 Devin Teske <dteske@FreeBSD.org>
    2. 

  2. \ Copyright 2019 OmniOS Community Edition (OmniOSce) Association.
    3. 

  3. \ All rights reserved.
    4. 

  4. \
    5. 

  5. \ Redistribution and use in source and binary forms, with or without
    6. 

  6. \ modification, are permitted provided that the following conditions
    7. 

  7. \ are met:
    8. 

  8. \ 1. Redistributions of source code must retain the above copyright
    9. 

  9. \    notice, this list of conditions and the following disclaimer.
    10. 

  10. \ 2. Redistributions in binary form must reproduce the above copyright
    11. 

  11. \    notice, this list of conditions and the following disclaimer in the
    12. 

  12. \    documentation and/or other materials provided with the distribution.
    13. 

  13. \
    14. 

  14. \ THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
    15. 

  15. \ ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
    16. 

  16. \ IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
    17. 

  17. \ ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
    18. 

  18. \ FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
    19. 

  19. \ DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
    20. 

  20. \ OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
    21. 

  21. \ HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
    22. 

  22. \ LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
    23. 

  23. \ OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
    24. 

  24. \ SUCH DAMAGE.
    25. 

  25. 

  26. marker task-check-password.4th
    27. 

  27. 

  28. include /boot/forth/screen.4th
    29. 

  29. 

  30. vocabulary password-processing
    31. 

  31. only forth also password-processing definitions
    32. 

  32. 

  33. 13  constant enter_key       \ The decimal ASCII value for Enter key
    34. 

  34. 8   constant bs_key          \ The decimal ASCII value for Backspace key
    35. 

  35. 21  constant ctrl_u          \ The decimal ASCII value for Ctrl-U sequence
    36. 

  36. 255 constant readmax         \ Maximum number of characters for the password
    37. 

  37. 

  38. variable read-tick           \ Twiddle position (used by read)
    39. 

  39. variable read-start          \ Starting X offset (column)(used by read)
    40. 

  40. 

  41. create readval readmax allot \ input obtained (up to readmax characters)
    42. 

  42. variable readlen             \ input length
    43. 

  43. 

  44. \ This function blocks program flow (loops forever) until a key is pressed.
    45. 

  45. \ The key that was pressed is added to the top of the stack in the form of its
    46. 

  46. \ decimal ASCII representation. Note: the stack cannot be empty when this
    47. 

  47. \ function starts or an underflow exception will occur. Simplest way to prevent
    48. 

  48. \ this is to pass 0 as a stack parameter (ie. `0 sgetkey'). This function is
    49. 

  49. \ called by the read function. You need not call it directly. NOTE: arrow keys
    50. 

  50. \ show as 0 on the stack
    51. 

  51. \
    52. 

  52. : sgetkey ( -- )
    53. 

    54. 

  54. 	begin \ Loop forever
    55. 

  55. 		key? if \ Was a key pressed? (see loader(8))
    56. 

  56. 			drop \ Remove stack-cruft
    57. 

  57. 			key  \ Get the key that was pressed
    58. 

    59. 

  59. 			\ Check key pressed (see loader(8)) and input limit
    60. 

  60. 			dup 0<> if ( and ) readlen @ readmax < if
    61. 

  61. 				\ Spin the twiddle and then exit this function
    62. 

  62. 				read-tick @ dup 1+ 4 mod read-tick !
    63. 

  63. 				2 spaces
    64. 

  64. 				dup 0 = if ( 1 ) ." /" else
    65. 

  65. 				dup 1 = if ( 2 ) ." -" else
    66. 

  66. 				dup 2 = if ( 3 ) ." \" else
    67. 

  67. 				dup 3 = if ( 4 ) ." |" else
    68. 

  68. 					1 spaces
    69. 

  69. 				then then then then drop
    70. 

  70. 				read-start @ sr at-xy
    71. 

  71. 				exit
    72. 

  72. 			then then
    73. 

    74. 

  74. 			\ Always allow Backspace, Enter, and Ctrl-U
    75. 

  75. 			dup bs_key = if exit then
    76. 

  76. 			dup enter_key = if exit then
    77. 

  77. 			dup ctrl_u = if exit then
    78. 

  78. 		then
    79. 

  79. 		50 ms \ Sleep for 50 milliseconds (see loader(8))
    80. 

  80. 	again
    81. 

  81. ;
    82. 

    83. 

  83. : cfill ( c c-addr/u -- )
    84. 

  84. 	begin dup 0> while
    85. 

  85. 		-rot 2dup c! 1+ rot 1-
    86. 

  86. 	repeat 2drop drop
    87. 

  87. ;
    88. 

    89. 

  89. : read-reset ( -- )
    90. 

  90. 	0 readlen !
    91. 

  91. 	0 readval readmax cfill
    92. 

  92. ;
    93. 

    94. 

  94. : read ( c-addr/u -- ) \ Expects string prompt as stack input
    95. 

    96. 

  96. 	at-bl                \ Move the cursor to the bottom-left
    97. 

  97. 	dup 1+ read-start !  \ Store X offset after the prompt
    98. 

  98. 	0 readlen !          \ Initialize the read length
    99. 

  99. 	type                 \ Print the prompt
    100. 

    101. 

  101. 	begin \ Loop forever
    102. 

    103. 

  103. 		0 sgetkey \ Block here, waiting for a key to be pressed
    104. 

    105. 

  105. 		\ We are not going to echo the password to the screen (for
    106. 

  106. 		\ security reasons). If Enter is pressed, we process the
    107. 

  107. 		\ password, otherwise augment the key to a string.
    108. 

    109. 

  109. 		dup enter_key = if
    110. 

  110. 			drop     \ Clean up stack cruft
    111. 

  111. 			3 spaces \ Erase the twiddle
    112. 

  112. 			10 emit  \ Echo new line
    113. 

  113. 			exit
    114. 

  114. 		else dup ctrl_u = if
    115. 

  115. 			3 spaces read-start @ sr at-xy \ Erase the twiddle
    116. 

  116. 			0 readlen ! \ Reset input to NULL
    117. 

  117. 		else dup bs_key = if
    118. 

  118. 			readlen @ 1 - dup readlen ! \ Decrement input length
    119. 

  119. 			dup 0< if drop 0 dup readlen ! then \ Don't go negative
    120. 

  120. 			0= if 3 spaces read-start @ sr at-xy then \ Twiddle
    121. 

  121. 		else dup \ Store the character
    122. 

  122. 			\ NB: sgetkey prevents overflow by way of blocking
    123. 

  123. 			\     at readmax except for Backspace or Enter
    124. 

  124. 			readlen @ 1+ dup readlen ! 1- readval + c!
    125. 

  125. 		then then then
    126. 

    127. 

  127. 		drop \ last key pressed
    128. 

  128. 	again \ Enter was not pressed; repeat
    129. 

  129. ;
    130. 

    131. 

  131. only forth definitions also password-processing
    132. 

    133. 

  133. : check-password ( -- )
    134. 

    135. 

  135. 	\ Do not allow the user to proceed beyond this point if a boot-lock
    136. 

  136. 	\ password has been set (preventing even boot from proceeding)
    137. 

  137. 	s" bootlock_password" getenv dup -1 <> if
    138. 

  138. 		dup readmax > if drop readmax then
    139. 

  139. 		begin
    140. 

  140. 			s" Boot Password: " read ( prompt -- )
    141. 

  141. 			2dup readval readlen @ compare 0<>
    142. 

  142. 		while
    143. 

  143. 			3000 ms ." loader: incorrect password" 10 emit
    144. 

  144. 		repeat
    145. 

  145. 		2drop read-reset
    146. 

  146. 	else drop then
    147. 

    148. 

  148. 	\ Prompt for GEOM ELI (geli(8)) passphrase if enabled
    149. 

  149. 	s" geom_eli_passphrase_prompt" getenv dup -1 <> if
    150. 

  150. 		s" YES" compare-insensitive 0= if
    151. 

  151. 			s" GELI Passphrase: " read ( prompt -- )
    152. 

  152. 			readval readlen @ s" kern.geom.eli.passphrase" setenv
    153. 

  153. 			read-reset
    154. 

  154. 		then
    155. 

  155. 	else drop then
    156. 

    157. 

  157. 	\ Exit if a password was not set
    158. 

  158. 	s" password" getenv -1 = if exit else drop then
    159. 

    160. 

  160. 	\ We should prevent the user from visiting the menu or dropping to the
    161. 

  161. 	\ interactive loader(8) prompt, but still allow the machine to boot...
    162. 

    163. 

  163. 	0 autoboot
    164. 

    165. 

  165. 	\ Only reached if autoboot fails for any reason (including if/when
    166. 

  166. 	\ the user aborts/escapes the countdown sequence leading to boot).
    167. 

    168. 

  168. 	s" password" getenv dup readmax > if drop readmax then
    169. 

  169. 	begin
    170. 

  170. 		s" Password: " read ( prompt -- )
    171. 

  171. 		2dup readval readlen @ compare 0= if \ Correct password?
    172. 

  172. 			2drop read-reset exit
    173. 

  173. 		then
    174. 

  174. 		3000 ms ." loader: incorrect password" 10 emit
    175. 

  175. 	again
    176. 

  176. ;
    177. 

    178. 

  178. only forth definitions
    179. 

    180.