Class: MacAdmin::SaltedSHA512

Inherits:

ShadowHash

• Object
• ShadowHash
• MacAdmin::SaltedSHA512

Defined in:

lib/macadmin/shadowhash.rb

Overview

Lion ShadowHashs

• Mac OS X 10.7 store passwords as Salted SHA512 hashes

• hash is stored directly in the user’s plist

Constant Summary

LABEL =

'SALTED-SHA512'

Instance Attribute Summary

• #hash ⇒ Object

  Returns the value of attribute hash.

Attributes inherited from ShadowHash

#label

Class Method Summary

• .create_from_shadowhashdata(data) ⇒ Object

  Constructs a SaltedSHA512 ShadowHash object from ShadowHashData - param is raw ShadowHashData object.

Instance Method Summary

• #data ⇒ Object

  Return the ShadowHash as a ShadowHashData object - Binary Plist.

• #initialize(string) ⇒ SaltedSHA512 constructor

  Initializes a SaltedSHA512 ShadowHash object from string - string param should be a hex string, 68 bytes.

• #password ⇒ Object

  Return a Hash representation of the ShadowHash data.

• #validate(string) ⇒ Object

  Validates the string param - ensure the string param is hex string 68 bytes long.

Methods inherited from ShadowHash

create_from_user_record, read_shadowhashdata

Methods included from Password

#apropos, #convert_to_blob, #convert_to_hex, #salted_sha1, #salted_sha512, #salted_sha512_pbkdf2, salted_sha512_pbkdf2_from_string

Constructor Details

#initialize(string) ⇒ SaltedSHA512

Initializes a SaltedSHA512 ShadowHash object from string

• string param should be a hex string, 68 bytes

# File 'lib/macadmin/shadowhash.rb', line 161

def initialize(string)
  @label = LABEL
  @hash = validate(string)
end

Instance Attribute Details

#hash ⇒ Object

Returns the value of attribute hash.

# File 'lib/macadmin/shadowhash.rb', line 145

def hash
  @hash
end

Class Method Details

.create_from_shadowhashdata(data) ⇒ Object

Constructs a SaltedSHA512 ShadowHash object from ShadowHashData

• param is raw ShadowHashData object

# File 'lib/macadmin/shadowhash.rb', line 151

def create_from_shadowhashdata(data)
  value = data[SaltedSHA512::LABEL].to_s
  hex = MacAdmin::Password.convert_to_hex(value)
  self.new(hex)
end

Instance Method Details

#data ⇒ Object

Return the ShadowHash as a ShadowHashData object

• Binary Plist

# File 'lib/macadmin/shadowhash.rb', line 176

def data
  @data ||= { @label => convert_to_blob(@hash) }.to_plist
end

#password ⇒ Object

Return a Hash representation of the ShadowHash data

# File 'lib/macadmin/shadowhash.rb', line 181

def password
  { @label => @hash }
end

#validate(string) ⇒ Object

Validates the string param

• ensure the string param is hex string 68 bytes long

Raises:

• (ArgumentError)

# File 'lib/macadmin/shadowhash.rb', line 168

def validate(string)
  error = "Invalid: arg must be hexadecimal string (68 bytes)"
  raise ArgumentError.new(error) unless string =~ /([a-f0-9]{2}){68}/
  string
end