d460b267e3
Reject passwords bigger than Bcrypt can handle.
2025-01-25 17:54:49 +00:00
9bab54af79
Qualify a use of auto.
2025-01-17 23:54:53 +00:00
0a82366a6b
Merge branch '2.0' into 2.1.
2025-01-14 13:41:19 +00:00
da7f47c1c7
Update the copyright headers for 2025.
2025-01-14 13:30:07 +00:00
78b548628c
Add example code for how to validate SHA2 passwords in PHP.
2024-12-15 13:23:31 +00:00
e6770bc2fd
Fix an off by one error in enc_sha2.
2024-03-18 22:04:57 +00:00
a15f165a1d
Fix an inverted condition in enc_bcrypt.
2024-03-12 00:17:49 +00:00
7c1cfd2849
Fix comparing passwords in enc_sha256.
2024-03-11 21:07:39 +00:00
29e7674e56
Replace convertTo/stringify with non-throwing alternatives.
...
Having these throw is terrible for ergonomics and there are loads
of places where the exception was either silently ignored or not
handled at all. Having a function which returns an optional and
another that returns a default works a lot better imo.
2024-03-11 19:17:29 +00:00
e2df7d4d01
Ensure that verify-only encryption modules can never encrypt passwords.
...
If another module was loaded first and then later unloaded it was
possible for a deprecated module to encrypt passwords.
2024-03-10 20:46:03 +00:00
9a984a8148
Implement verify-only support for raw SHA-2 passwords.
2024-03-10 20:46:03 +00:00
fb9c8950ed
Refactor the enc_bcrypt module and expose an encryption provider.
2024-03-10 20:46:03 +00:00
a849a81ac3
Refactor the enc_old module.
2024-03-10 20:28:00 +00:00
f919bb0748
Add self-tests to the encryption providers.
2024-03-10 20:20:24 +00:00
0353338436
Replace the custom SHA-2 implementation in enc_sha256.
2024-03-10 12:27:49 +00:00
defb8348a7
Move the HMAC function to the encryption header.
...
This will be useful for doing challenge authentication on InspIRCd.
2024-03-09 22:51:23 +00:00
6e0f0b8896
Add the enc_sha2 module which hashes passwords with HMAC-SHA-2.
...
Using HMAC instead of changing the IV is a lot safer.
2024-03-09 22:22:56 +00:00
2c5b2c649e
Convert enc_md5 to use a vendored MD5 library.
2024-03-09 22:22:56 +00:00
a6bc4cab9d
Misc improvements to the encryption API.
2024-03-09 22:22:56 +00:00
4e04a11995
Consistently use email instead of e-mail.
2024-03-07 22:52:41 +00:00
464e6b8010
Use the C++11 random number generator instead of rand().
...
This is safer, faster, and doesn't require seeding.
2024-03-07 22:52:41 +00:00
12214bee72
Add the initial version of the Atheme database importer.
2024-03-07 18:50:36 +00:00
b5b3c74477
Make functions that don't use this static.
2024-02-27 10:48:55 +00:00
c6cb4ba159
Fix some coding style issues.
2024-02-26 15:34:17 +00:00
4cc68397dc
Update the copyright headers for 2024.
2024-02-17 19:58:17 +00:00
72acef4e15
Mark types that have no inheritors as final.
2024-01-23 16:53:06 +00:00
a6a0f6c447
Improve the layout of types that inherit from another type.
2024-01-23 15:28:23 +00:00
a40f8e0b9d
Update the copyright headers for 2024.
2024-01-04 22:25:48 +00:00
6538641e87
Remove some unnecessary spaces that break editor indentation.
2023-12-17 13:59:49 +00:00
a3241065c5
Start migrating to range-based for loops.
2023-10-11 15:51:52 +01:00
885462d98e
Merge branch '2.0' into 2.1.
2022-12-31 22:11:19 +00:00
33a337dfc0
Update the copyright headers for 2023.
2022-12-31 22:08:50 +00:00
9d92de1157
Import InspIRCd's vendoring tool and use it to vendor crypt_blowfish.
2022-10-22 20:08:30 +01:00
a631028660
Merge branch '2.0' into 2.1.
2022-01-12 22:08:35 +00:00
b8bcad048e
Update the copyright headers for 2022.
2022-01-06 23:15:44 +00:00
ec7dfb3675
Use C++11 header names instead of their deprecated equivalents.
2022-01-04 12:36:35 +00:00
c9f93eeaed
Merge branch '2.0' into 2.1.
2022-01-04 00:39:34 +00:00
ba2c82e2f5
Fix some minor issues discovered whilst working on 2.1.
2022-01-03 19:37:33 +00:00
a5f7aac295
Replace anope_{final,override} with their C++11 equivalent.
2022-01-03 19:02:44 +00:00
561b205c4a
Merge branch '2.0' into 2.1.
2021-08-01 18:53:24 +01:00
fd88b756fc
Fix various spelling issues ( #274 ).
...
Signed-off-by: Josh Soref <jsoref@users.noreply.github.com >.
2021-06-17 15:02:30 +01:00
c68b81eac8
Merge branch '2.0' into 2.1.
2021-02-18 23:59:28 +00:00
c5a4e8337c
Update copyright to 2021.
...
This was done with:
find docs/ include/ language/ modules/ src/ *.* Config -exec sed -i 's/-20.. Anope Team/-2021 Anope Team/i' {} \;
2021-01-07 03:31:08 +01:00
8e0e1806a4
Require a secure password hashing algorithm for new accounts.
...
Insecure algorithms can still be used for existing accounts.
2020-09-28 15:28:26 +01:00
c8699c6726
Update copyright to 2020.
...
This was done with:
find docs/ include/ language/ modules/ src/ *.* Config -exec sed -i 's/-20.. Anope Team/-2020 Anope Team/i' {} \;
2020-01-04 15:51:20 +01:00
6617d29b52
Fix a bunch of broken indentation.
2019-12-14 18:38:13 +00:00
34f65e3266
Update enc_bcrypt with upstream crypt_blowfish 1.3 changes.
...
Also reverted the URLs in the header to the original ones provided by upstream.
2019-03-14 16:53:52 +01:00
6fbb7cffe9
Update copyright to 2019.
...
This was done with:
find docs/ include/ language/ modules/ src/ *.* Config -exec sed -i 's/-20.. Anope Team/-2019 Anope Team/i' {} \;
2019-01-01 17:43:35 +01:00
b279863acb
Update most URLs to use HTTPS if available, and fix some dead ones too.
2018-11-10 15:15:05 +01:00
e03ae0cd85
Update copyright to 2018.
...
This was done with:
find docs/ include/ language/ modules/ src/ *.* Config -exec sed -i 's/-20.. Anope Team/-2018 Anope Team/i' {} \;
2018-04-25 19:22:13 +02:00
Sadie Powell