diff --git a/snippets/create_sha512-hash.sh b/snippets/create_sha512-hash.sh new file mode 100755 index 0000000..e02dd11 --- /dev/null +++ b/snippets/create_sha512-hash.sh @@ -0,0 +1,214 @@ +#!/usr/bin/env bash + +script_name="$(basename $(realpath $0))" +working_dir="$(dirname $(realpath $0))" + +conf_file="${working_dir}/conf/${script_name%%.*}.conf" + +LOCK_DIR="/tmp/$(basename $0).$$.LOCK" +log_file="${LOCK_DIR}/${script_name%%.*}.log" + + +# ---------- +# Base Function(s) +# ---------- + +usage() { + + + [[ -n "$1" ]] && error "$1" + + + [[ $terminal ]] && echo -e " +\033[1mUsage:\033[m + + $(basename $0) [salt] + +\033[1mDescription\033[m + + Script creates a saltet SHA-512 hash for a given passwort. If no salt is given, + a random salt of length '8' is used. + +\033[1mOptions\033[m + + No further Options needed. The clear password and optionally the salt is given + at the commandline. + +\033[1mFiles\033[m + + No configuration files needed + +\033[1mExample:\033[m + + Create a saltet SHA512 password hash + + $(basename $0) test100 54A2E64G + +" + + clean_up 1 + +} + + +echononl(){ + if $terminal ; then + echo X\\c > /tmp/shprompt$$ + if [ `wc -c /tmp/shprompt$$ | awk '{print $1}'` -eq 1 ]; then + echo -e -n " $*\\c" 1>&2 + else + echo -e -n " $*" 1>&2 + fi + rm /tmp/shprompt$$ + fi +} + +clean_up() { + + # Perform program exit housekeeping + rm -rf "$LOCK_DIR" + blank_line + exit $1 +} + +fatal(){ + echo "" + if $terminal ; then + echo -e " [ \033[31m\033[1mFatal\033[m ] $*" + else + echo -e " [ Fatal ] $*" + fi + echo "" + if $terminal ; then + echo -e " \033[1mScript terminated\033[m.." + else + echo -e " Script terminated.." + fi + echo "" + rm -rf $LOCK_DIR + exit 1 +} + + +error (){ + echo "" + if $terminal ; then + echo -e " [ \033[31m\033[1mError\033[m ] $*" + else + echo " [ Error ] $*" + fi + echo "" +} + +echo_ok() { + if $terminal ; then + echo -e "\033[55G[ \033[32mok\033[m ]" + fi +} +echo_failed(){ + if $terminal ; then + echo -e "\033[55G[ \033[1;31mfailed\033[m ]" + fi +} +echo_skipped() { + if $terminal ; then + echo -e "\033[55G[ \033[33m\033[1mskipped\033[m ]" + fi +} + +trim() { + local var="$*" + var="${var#"${var%%[![:space:]]*}"}" # remove leading whitespace characters + var="${var%"${var##*[![:space:]]}"}" # remove trailing whitespace characters + echo -n "$var" +} + +blank_line() { + if $terminal ; then + echo "" + fi +} + + + +# ---------- +# - Jobhandling +# ---------- + +# - Run 'clean_up' for signals SIGHUP SIGINT SIGTERM +# - +trap clean_up SIGHUP SIGINT SIGTERM + +# - Create lock directory '$LOCK_DIR" +# +mkdir "$LOCK_DIR" + + +# ---------- +# - Some checks .. +# ---------- + +# - Running in a terminal? +# - +if [[ -t 1 ]] ; then + terminal=true +else + fatal "Script must run in a terminal." +fi +# - Print help? +# - +if [[ "$(trim $*)" = "-h" ]] || [[ "$(trim $*)" = "--help" ]] ; then + usage +fi + +if [[ -z "$(which basename)" ]]; then + fatal 'It seems "basename" is not installed, but needed!' +fi + + + +if [[ $# < 1 ]] +then + usage +fi + + +passwd=$1 +salt=$2 + +[[ -z $salt ]] && salt=$(tr -cd 'a-zA-Z0-9' < /dev/urandom | head -c 8) + + +echo "" +echo "" +echononl "\033[1mmkpasswd -m SHA-512 $passwd $salt\033[m" +passwd_hash="$(mkpasswd -m SHA-512 "$passwd" $salt 2> $log_file)" +if [[ $? -ne 0 ]] ; then + echo_failed + error "$(cat "$log_file")" +else + echo_ok + echo "" + echo " password: $passwd" + echo " salt: $salt" + echo " password hash: $passwd_hash" + echo "" +fi + +echo "" +echo "" +echononl "\033[1mopenssl passwd -6 -salt $salt \"$passwd\"\033[m" +passwd_hash="$(openssl passwd -6 -salt $salt "$passwd" 2> $log_file)" +if [[ $? -ne 0 ]] ; then + echo_failed + error "$(cat "$log_file")" +else + echo_ok + echo "" + echo " password: $passwd" + echo " salt: $salt" + echo " password hash: $passwd_hash" + echo "" +fi + +clean_up 0