Migrate off passlib to bcrypt, arp1, hashlib and crypt directly.

Author: nzlosh

CHANGELOG.md

@@ -0,0 +1,15 @@
+## unreleased v3.9dev
+
+### Add
+
+ - Added apr1.py module from https://github.com/Tblue/pyapr1 to support
+   apr1 hash algorithm.
+
+### Remove
+
+ - Removed passlib dependency since it's been unmaintained for 5 years
+   and is causing compatibility issue with bcrypt module.
+
+### Change
+
+ - Used standard library hashlib and crypt to support SHA and CRYPT hash.

requirements.txt

@@ -1,4 +1 @@
-# passlib can use several libs to provide bcrypt (which is required for htpasswd support),
-# but passlib deprecated support for py-bcrypt, a bcrypt lib alternative.
-# The [bcrypt] extra ensures we use bcrypt instead of some other lib.
-passlib[bcrypt]>=1.7.1,<1.8.0
+bcrypt>=4.3.0

st2auth_flat_file_backend/apr1.py

@@ -0,0 +1,160 @@
+# pyapr1 - A Python implementation of the APR1 algorithm
+#
+# Copyright (c) 2015, Tilman Blumenbach
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#
+# * Redistributions of source code must retain the above copyright notice, this
+#   list of conditions and the following disclaimer.
+#
+# * Redistributions in binary form must reproduce the above copyright notice,
+#   this list of conditions and the following disclaimer in the documentation
+#   and/or other materials provided with the distribution.
+#
+# * Neither the name of pyapr1 nor the names of its
+#   contributors may be used to endorse or promote products derived from
+#   this software without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
+# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
+# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+# SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
+# CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+# OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+# OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+# The to64() and hash_apr1() functions are based on code from the Apache Portable
+# Runtime Utility Library (namely, on the two functions to64() and
+# apr_md5_encode() from the file crypto/apr_md5.c). The licenses for that original
+# material are included below:
+#
+# ============================================================================
+#
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements.  See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License.  You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+#
+#
+# The apr_md5_encode() routine uses much code obtained from the FreeBSD 3.0
+# MD5 crypt() function, which is licenced as follows:
+# ----------------------------------------------------------------------------
+# "THE BEER-WARE LICENSE" (Revision 42):
+# <[email protected]> wrote this file.  As long as you retain this notice you
+# can do whatever you want with this stuff. If we meet some day, and you think
+# this stuff is worth it, you can buy me a beer in return.   Poul-Henning Kamp
+# ----------------------------------------------------------------------------
+#
+# ============================================================================
+
+# 20250910 - This file was sourced from https://github.com/Tblue/pyapr1 and is used
+#            to provide backward compatibility with older htpasswd tools, notably
+#            apache 2.2 and lower.  The apr1 algorithm is not considered secure and
+#            bcrypt is currently the recommended algorithm.
+
+import os
+import sys
+
+from hashlib import md5
+from time import sleep
+
+
+def to64(data, n_out):
+    chars = "./0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz"
+    out = ""
+
+    for i in range(n_out):
+        out += chars[data & 0x3F]
+        data >>= 6
+
+    return out
+
+
+def mkint(data, *indexes):
+    r = 0
+    for i, idx in enumerate(indexes):
+        r |= data[idx] << 8 * (len(indexes) - i - 1)
+
+    return r
+
+
+def hash_apr1(salt, password):
+    sb = bytes(salt, "utf-8")
+    pb = bytes(password, "utf-8")
+    ph = md5()
+
+    # First, the password.
+    ph.update(pb)
+    # Then, the magic string.
+    ph.update(b"$apr1$")
+    # Then, the salt.
+    ph.update(sb)
+
+    # Weird stuff.
+    sandwich = md5(pb + sb + pb).digest()
+    ndig, nrem = divmod(len(pb), ph.digest_size)
+    for n in ndig * [ph.digest_size] + [nrem]:
+        ph.update(sandwich[:n])
+
+    # Even more weird stuff.
+    i = len(pb)
+    while i:
+        if i & 1:
+            ph.update(b"\0")
+        else:
+            ph.update(pb[:1])
+
+        i >>= 1
+
+    final = ph.digest()
+    for i in range(1000):
+        maelstrom = md5()
+
+        if i & 1:
+            maelstrom.update(pb)
+        else:
+            maelstrom.update(final)
+
+        if i % 3:
+            maelstrom.update(sb)
+
+        if i % 7:
+            maelstrom.update(pb)
+
+        if i & 1:
+            maelstrom.update(final)
+        else:
+            maelstrom.update(pb)
+
+        final = maelstrom.digest()
+
+    pw_ascii = (
+        to64(mkint(final, 0, 6, 12), 4)
+        + to64(mkint(final, 1, 7, 13), 4)
+        + to64(mkint(final, 2, 8, 14), 4)
+        + to64(mkint(final, 3, 9, 15), 4)
+        + to64(mkint(final, 4, 10, 5), 4)
+        + to64(mkint(final, 11), 2)
+    )
+
+    return "$apr1$%s$%s" % (salt, pw_ascii)
+
+
+def generate_salt():
+    return to64(mkint(os.urandom(6), *range(6)), 8)

st2auth_flat_file_backend/flat_file.py

@@ -14,51 +14,97 @@
 # limitations under the License.
 
 import logging
+import locale
+import bcrypt
+import base64
 import hashlib
+import apr1
+import crypt  # deprecated in 3.11 and removed in 3.13.
+from hmac import compare_digest as compare_hash
+
+# Reference:    https://httpd.apache.org/docs/2.4/misc/password_encryptions.html
+#               https://akkadia.org/drepper/SHA-crypt.txt
 
 # empirical format for htpasswd using apache utils 2.4.41
 # md5sum:$apr1$AmfEURVX$U0A7kxYcofNn2J.lptuOn0
 # bcrypt:$2y$05$LtdiiELPayMNfwk5PMWA2uOMNAWW9wacCrYgN.lXUR35YEG.kOPWO
-# crypt:znExVsGU19vAQ
 # sha:{SHA}C5wmJdwh7wX2rU3fR8XyA4N6oyw=
+# crypt:znExVsGU19vAQ
 # plain:toto
 
-
-try:
-    from passlib.apache import HtpasswdFile
-except ModuleNotFoundError:
-    try:
-        import bcrypt
-    except Exception as e:
-        raise e
-
 __all__ = ["FlatFileAuthenticationBackend"]
 
 LOG = logging.getLogger(__name__)
 
-COMMENT_MARKER = "**COMMENTIGNORE**"
 
-
-class HttpasswdFileWithComments(HtpasswdFile):
+class HtpasswdFile(object):
     """
-    Custom HtpasswdFile implementation which supports comments (lines starting
-    with #).
+    Custom HtpasswdFile implementation which supports comments
+    (lines starting with #).
     """
 
-    def _load_lines(self, lines):
-        super(HttpasswdFileWithComments, self)._load_lines(lines=lines)
-
-        # Filter out comments
-        self._records.pop(COMMENT_MARKER, None)
-        assert COMMENT_MARKER not in self._records
+    def __init__(self, filename):
+        self.filename = filename
+        self.entries = {}
+        self._load_file()
 
-    def _parse_record(self, record, lineno):
-        if record.startswith(b"#"):
-            # Comment, add special marker so we can filter it out later
-            return (COMMENT_MARKER, None)
+    def _load_file(self):
+        """
+        Load apache htpasswd formatted file with support for lines starting with "#"
+        as comments.  The format is a single line per record as <username>:<hash>
 
-        result = super(HttpasswdFileWithComments, self)._parse_record(record=record, lineno=lineno)
-        return result
+        Records are added to the 'entries' dictionary with the username as the key
+        and hash data as the value.
+        """
+        data = None
+        with open(self.filename, "r") as f:
+            data = f.readlines()
+        for line in data:
+            line = line.strip()
+            if line.startswith("#"):
+                LOG.debug(f"Skip comment {line}")
+                continue
+            if ":" not in line:
+                LOG.debug(f"Malformed entry '{line}'.")
+                continue
+            username, hash_data = line.split(":", 1)
+            self.entries[username] = hash_data
+
+    def check_password(self, username, password):
+        if username in self.entries:
+            hash_data = self.entries[username]
+            encode_local = locale.getpreferredencoding()
+            pw = bytes(password, encoding=encode_local)
+            if hash_data.startswith("$apr1$"):
+                LOG.warning(
+                    "%s uses MD5 algorithm to hash the password."
+                    "Rehash the password with bcrypt is strongly recommended.",
+                    username,
+                )
+                _, _, salt, md5hash = hash_data.split("$")
+                return apr1.hash_apr1(salt, password) == hash_data
+            elif hash_data.startswith("$2y$"):
+                return bcrypt.checkpw(pw, bytes(hash_data, encoding=encode_local))
+            elif hash_data.startswith("{SHA}"):
+                LOG.warning(
+                    "%s uses deprecated SHA algorithm to hash password."
+                    "Rehash the password with bcrypt.",
+                    username,
+                )
+                return bytes(hash_data, encoding=encode_local) == b"{SHA}" + base64.b64encode(
+                    hashlib.sha1(pw).digest()
+                )
+            else:
+                # crypt is deprecated and will be dropped in python 3.13.
+                LOG.warning(
+                    "%s uses deprecated crypt algorithm to hash password."
+                    "Rehash the password with bcrypt.",
+                    username,
+                )
+                return compare_hash(crypt.crypt(password, hash_data), hash_data)
+        else:
+            # User not found.
+            return None
 
 
 class FlatFileAuthenticationBackend(object):
@@ -68,8 +114,6 @@ class FlatFileAuthenticationBackend(object):
     Entries need to be in a htpasswd file like format. This means entries can be managed with
     the htpasswd utility (https://httpd.apache.org/docs/current/programs/htpasswd.html) which
     ships with Apache HTTP server.
-
-    Note: This backends depends on the "passlib" library.
     """
 
     def __init__(self, file_path):
@@ -80,7 +124,7 @@ def __init__(self, file_path):
         self._file_path = file_path
 
     def authenticate(self, username, password):
-        htpasswd_file = HttpasswdFileWithComments(path=self._file_path)
+        htpasswd_file = HtpasswdFile(self._file_path)
         result = htpasswd_file.check_password(username, password)
 
         if result is None: