/** @file
* VirtualBox External Authentication Library:
* Simple Authentication.
* Copyright (C) 2006-2011 Oracle Corporation
* This file is part of VirtualBox Open Source Edition (OSE), as
* available from http://www.virtualbox.org. This file is free software;
* you can redistribute it and/or modify it under the terms of the GNU
* General Public License (GPL) as published by the Free Software
* Foundation, in version 2 as it comes in the "COPYING" file of the
* VirtualBox OSE distribution. VirtualBox OSE is distributed in the
* hope that it will be useful, but WITHOUT ANY WARRANTY of any kind.
#include <stdlib.h>
#include <stdio.h>
#include <string.h>
#include <iprt/cdefs.h>
#include <iprt/uuid.h>
#include <iprt/sha.h>
#include <VBox/VBoxAuth.h>
#include <VBox/com/com.h>
#include <VBox/com/string.h>
#include <VBox/com/Guid.h>
#include <VBox/com/VirtualBox.h>
using namespace com;
/* If defined, debug messages will be written to the specified file. */
//#define AUTH_DEBUG_FILE_NAME "/tmp/VBoxAuth.log"
static void dprintf(const char *fmt, ...)
va_list va;
va_start(va, fmt);
char buffer[1024];
vsnprintf(buffer, sizeof(buffer), fmt, va);
FILE *f = fopen(AUTH_DEBUG_FILE_NAME, "ab");
if (f)
fprintf(f, "%s", buffer);
va_end (va);
DECLEXPORT(AuthResult) AUTHCALL AuthEntry(const char *szCaller,
AuthGuestJudgement guestJudgement,
const char *szUser,
const char *szPassword,
const char *szDomain,
int fLogon,
unsigned clientId)
/* default is failed */
AuthResult result = AuthResultAccessDenied;
/* only interested in logon */
if (!fLogon)
/* return value ignored */
return result;
char uuid[RTUUID_STR_LENGTH] = {0};
if (pUuid)
RTUuidToStr((PCRTUUID)pUuid, (char*)uuid, RTUUID_STR_LENGTH);
/* the user might contain a domain name, split it */
char *user = strchr((char*)szUser, '\\');
if (user)
user = (char*)szUser;
dprintf("VBoxAuth: uuid: %s, user: %s, szPassword: %s\n", uuid, user, szPassword);
ComPtr<IVirtualBox> virtualBox;
rc = virtualBox.createLocalObject(CLSID_VirtualBox);
if (SUCCEEDED(rc))
Bstr key = BstrFmt("VBoxAuthSimple/users/%s", user);
Bstr password;
/* lookup in VM's extra data? */
if (pUuid)
ComPtr<IMachine> machine;
virtualBox->FindMachine(Bstr(uuid).raw(), machine.asOutParam());
if (machine)
machine->GetExtraData(key.raw(), password.asOutParam());
} else
/* lookup global extra data */
virtualBox->GetExtraData(key.raw(), password.asOutParam());
if (!password.isEmpty())
/* calculate hash */
uint8_t abDigest[RTSHA256_HASH_SIZE];
RTSha256(szPassword, strlen(szPassword), abDigest);
char pszDigest[RTSHA256_DIGEST_LEN + 1];
RTSha256ToString(abDigest, pszDigest, sizeof(pszDigest));
if (password == pszDigest)
result = AuthResultAccessGranted;
return result;
/* Verify the function prototype. */
static PAUTHENTRY3 gpfnAuthEntry = AuthEntry;