~ubuntu-branches/ubuntu/trusty/xdm/trusty

Viewing changes to xdmauth.c

Committer: Package Import Robot
Author(s): Micah Gersten
Date: 2011-12-09 03:00:26 UTC
mfrom: (9.1.5 sid)
Revision ID: package-import@ubuntu.com-20111209030026-baa9vul2hhtujjxh

Tags: 1:1.1.11-1ubuntu1

* Merge from Debian testing.  Remaining changes:
  - debian/{rules, xdm.install, local/ubuntu*}:
    + Add Ubuntu graphics and configure xdm to use them by default.
  - debian/patches/ubuntu_no_whiteglass.diff: Don't hardcode
    the default Xcursor theme to whiteglass. Use the Ubuntu
    default x-cursor-theme instead.

* Drop debian/patches/ftbfs_binutils-gold.diff: Fixed upstream
* Change Vcs-* to XS-Debian-Vcs-*
  - update debian/control

files added:
app-defaults/Chooser

app-defaults/Makefile.am

app-defaults/Makefile.in

chooser

chooser/Makefile.am

chooser/Makefile.in

chooser/chooser.c

debian/patches/greeter-xrender.diff

include

include/Makefile.am

include/Makefile.in

include/dm.h

include/dm_auth.h

include/dm_error.h

include/dm_socket.h

include/greet.h

m4/ax_define_dir.m4

man/Makefile.am

man/Makefile.in

man/xdm.man

man/xdmshell.man

xdm.service.in

xdm/Makefile.am

xdm/Makefile.in

xdm/access.c

xdm/auth.c

xdm/choose.c

xdm/daemon.c

xdm/dm.c

xdm/dpylist.c

xdm/error.c

xdm/file.c

xdm/genauth.c

xdm/krb5auth.c

xdm/mitauth.c

xdm/netaddr.c

xdm/policy.c

xdm/prngc.c

xdm/protodpy.c

xdm/reset.c

xdm/resource.c

xdm/rpcauth.c

xdm/server.c

xdm/session.c

xdm/socket.c

xdm/streams.c

xdm/util.c

xdm/xdmauth.c

xdm/xdmcp.c

xdmshell

xdmshell/Makefile.am

xdmshell/Makefile.in

xdmshell/xdmshell.c

files removed:
access.c

app-defaults/Chooser.ad

auth.c

choose.c

chooser.c

compile

daemon.c

debian/changelog.dch

debian/patches/ftbfs_binutils-gold.diff

dm.c

dm.h

dm_auth.h

dm_error.h

dm_socket.h

dpylist.c

error.c

file.c

genauth.c

greet.h

krb5auth.c

m4/ac_define_dir.m4

m4/libtool.m4

m4/ltoptions.m4

m4/ltsugar.m4

m4/ltversion.m4

m4/lt~obsolete.m4

mitauth.c

netaddr.c

policy.c

prngc.c

protodpy.c

reset.c

resource.c

rpcauth.c

server.c

session.c

socket.c

streams.c

util.c

xdm.man.cpp

xdmauth.c

xdmcp.c

xdmshell.c

files modified:
AUTHORS

COPYING

ChangeLog

Makefile.am

Makefile.in

aclocal.m4

config.guess

config.h.in

config.sub

config/Makefile.am

config/Makefile.in

config/Xaccess

config/Xresources.cpp

config/Xsession.cpp

config/xdm-config.cpp

configure

configure.ac

cpprules.in

debian/changelog

debian/control

debian/patches/06_hurd_utsname.diff

debian/patches/20_xdm_log_timestamp.diff

debian/patches/21_xdm_log_append.diff

debian/patches/debian.diff

debian/patches/doc_mention_xdm.options.diff

debian/patches/series

debian/patches/support_logfile_rotation.diff

debian/patches/ubuntu_no_whiteglass.diff

debian/po/da.po

debian/rules

debian/watch

debian/xdm.install

greeter/Login.c

greeter/Login.h

greeter/LoginP.h

greeter/Makefile.am

greeter/Makefile.in

greeter/greet.c

greeter/verify.c

ltmain.sh

Show diffs side-by-side

added added

removed removed

xdmauth.c

Permission to use, copy, modify, distribute, and sell this software and its

documentation for any purpose is hereby granted without fee, provided that

the above copyright notice appear in all copies and that both that

documentation.

The above copyright notice and this permission notice shall be included

in all copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS

OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF

MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.

IN NO EVENT SHALL THE OPEN GROUP BE LIABLE FOR ANY CLAIM, DAMAGES OR

OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE,

ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR

OTHER DEALINGS IN THE SOFTWARE.

Except as contained in this notice, the name of The Open Group shall

not be used in advertising or otherwise to promote the sale, use or

other dealings in this Software without prior written authorization

from The Open Group.

* xdm - display manager daemon

* Author: Keith Packard, MIT X Consortium

* xdmauth

* generate authorization data for XDM-AUTHORIZATION-1 as per XDMCP spec

#include "dm.h"

#include "dm_auth.h"

#include "dm_error.h"

#ifdef HASXDMAUTH

static char auth_name[256];

static int auth_name_len;

static void

XdmPrintDataHex (char *s, char *a, int l)

{

int i;

Debug ("%s", s);

for (i = 0; i < l; i++)

Debug (" %02x", a[i] & 0xff);

Debug ("\n");

}

# ifdef XDMCP

static void

XdmPrintArray8Hex (char *s, ARRAY8Ptr a)

{

XdmPrintDataHex (s, (char *) a->data, a->length);

}

# endif

void

XdmInitAuth (unsigned short name_len, char *name)

{

if (name_len > 256)

name_len = 256;

auth_name_len = name_len;

memmove( auth_name, name, name_len);

}

* Generate authorization for XDM-AUTHORIZATION-1

* When being used with XDMCP, 8 bytes are generated for the session key

* (sigma), as the random number (rho) is already shared between xdm and

* the server. Otherwise, we'll prepend a random number to pass in the file

* between xdm and the server (16 bytes total)

static Xauth *

XdmGetAuthHelper (unsigned short namelen, char *name, int includeRho)

{

Xauth *new;

new = (Xauth *) malloc (sizeof (Xauth));

if (!new)

return (Xauth *) 0;

new->family = FamilyWild;

new->address_length = 0;

new->address = NULL;

new->number_length = 0;

new->number = NULL;

if (includeRho)

new->data_length = 16;

else

new->data_length = 8;

100

101

new->data = (char *) malloc (new->data_length);

102

if (!new->data)

103

{

104

free ((char *) new);

105

return (Xauth *) 0;

106

}

107

new->name = (char *) malloc (namelen);

108

if (!new->name)

109

{

110

free ((char *) new->data);

111

free ((char *) new);

112

return (Xauth *) 0;

113

}

114

memmove( (char *)new->name, name, namelen);

115

new->name_length = namelen;

116

if (!GenerateAuthData ((char *)new->data, new->data_length))

117

{

118

free ((char *) new->name);

119

free ((char *) new->data);

120

free ((char *) new);

121

return (Xauth *) 0;

122

}

123

124

* set the first byte of the session key to zero as it

125

* is a DES key and only uses 56 bits

126

127

((char *)new->data)[new->data_length - 8] = '\0';

128

XdmPrintDataHex ("Local server auth", (char *)new->data, new->data_length);

129

return new;

130

}

131

132

Xauth *

133

XdmGetAuth (unsigned short namelen, char *name)

134

{

135

return XdmGetAuthHelper (namelen, name, TRUE);

136

}

137

138

# ifdef XDMCP

139

140

void

141

XdmGetXdmcpAuth (struct protoDisplay *pdpy,

142

unsigned short authorizationNameLen, char *authorizationName)

143

{

144

Xauth *fileauth, *xdmcpauth;

145

146

if (pdpy->fileAuthorization && pdpy->xdmcpAuthorization)

147

return;

148

xdmcpauth = XdmGetAuthHelper (authorizationNameLen, authorizationName, FALSE);

149

if (!xdmcpauth)

150

return;

151

fileauth = (Xauth *) malloc (sizeof (Xauth));

152

if (!fileauth)

153

{

154

XauDisposeAuth(xdmcpauth);

155

return;

156

}

157

/* build the file auth from the XDMCP auth */

158

*fileauth = *xdmcpauth;

159

fileauth->name = malloc (xdmcpauth->name_length);

160

fileauth->data = malloc (16);

161

fileauth->data_length = 16;

162

if (!fileauth->name || !fileauth->data)

163

{

164

XauDisposeAuth (xdmcpauth);

165

if (fileauth->name)

166

free ((char *) fileauth->name);

167

if (fileauth->data)

168

free ((char *) fileauth->data);

169

free ((char *) fileauth);

170

return;

171

}

172

173

* for the file authorization, prepend the random number (rho)

174

* which is simply the number we've been passing back and

175

* forth via XDMCP

176

177

memmove( fileauth->name, xdmcpauth->name, xdmcpauth->name_length);

178

memmove( fileauth->data, pdpy->authenticationData.data, 8);

179

memmove( fileauth->data + 8, xdmcpauth->data, 8);

180

XdmPrintDataHex ("Accept packet auth", xdmcpauth->data, xdmcpauth->data_length);

181

XdmPrintDataHex ("Auth file auth", fileauth->data, fileauth->data_length);

182

/* encrypt the session key for its trip back to the server */

183

XdmcpWrap ((unsigned char *)xdmcpauth->data, (unsigned char *)&pdpy->key,

184

(unsigned char *)xdmcpauth->data, 8);

185

pdpy->fileAuthorization = fileauth;

186

pdpy->xdmcpAuthorization = xdmcpauth;

187

}

188

189

# define atox(c) ('0' <= c && c <= '9' ? c - '0' : \

190

'a' <= c && c <= 'f' ? c - 'a' + 10 : \

191

'A' <= c && c <= 'F' ? c - 'A' + 10 : -1)

192

193

static int

194

HexToBinary(char *key)

195

{

196

char *out, *in;

197

int top, bottom;

198

199

in = key + 2;

200

out= key;

201

while (in[0] && in[1])

202

{

203

top = atox(in[0]);

204

if (top == -1)

205

return 0;

206

bottom = atox(in[1]);

207

if (bottom == -1)

208

return 0;

209

*out++ = (top << 4) | bottom;

210

in += 2;

211

}

212

if (in[0])

213

return 0;

214

*out++ = '\0';

215

return 1;

216

}

217

218

219

* Search the Keys file for the entry matching this display. This

220

* routine accepts either plain ascii strings for keys, or hex-encoded numbers

221

222

223

static int

224

XdmGetKey(struct protoDisplay *pdpy, ARRAY8Ptr displayID)

225

{

226

FILE *keys;

227

char line[1024], id[1024], key[1024];

228

int keylen;

229

230

Debug ("Lookup key for %*.*s\n", displayID->length, displayID->length, displayID->data);

231

keys = fopen (keyFile, "r");

232

if (!keys)

233

return FALSE;

234

while (fgets (line, sizeof (line) - 1, keys))

235

{

236

if (line[0] == '#' || sscanf (line, "%s %s", id, key) != 2)

237

continue;

238

bzero(line, sizeof(line));

239

Debug ("Key entry for \"%s\" %d bytes\n", id, strlen(key));

240

if (strlen (id) == displayID->length &&

241

!strncmp (id, (char *)displayID->data, displayID->length))

242

{

243

if (!strncmp (key, "0x", 2) || !strncmp (key, "0X", 2))

244

if (!HexToBinary (key))

245

break;

246

keylen = strlen (key);

247

while (keylen < 7)

248

key[keylen++] = '\0';

249

pdpy->key.data[0] = '\0';

250

memmove( pdpy->key.data + 1, key, 7);

251

bzero(key, sizeof(key));

252

fclose (keys);

253

return TRUE;

254

}

255

}

256

bzero(line, sizeof(line));

257

bzero(key, sizeof(key));

258

fclose (keys);

259

return FALSE;

260

}

261

262

/*ARGSUSED*/

263

int

264

XdmCheckAuthentication(struct protoDisplay *pdpy, ARRAY8Ptr displayID,

265

ARRAY8Ptr authenticationName, ARRAY8Ptr authenticationData)

266

{

267

XdmAuthKeyPtr incoming;

268

269

if (!XdmGetKey (pdpy, displayID))

270

return FALSE;

271

if (authenticationData->length != 8)

272

return FALSE;

273

XdmcpUnwrap (authenticationData->data, (unsigned char *)&pdpy->key,

274

authenticationData->data, 8);

275

XdmPrintArray8Hex ("Request packet auth", authenticationData);

276

if (!XdmcpCopyARRAY8(authenticationData, &pdpy->authenticationData))

277

return FALSE;

278

incoming = (XdmAuthKeyPtr) authenticationData->data;

279

XdmcpIncrementKey (incoming);

280

XdmcpWrap (authenticationData->data, (unsigned char *)&pdpy->key,

281

authenticationData->data, 8);

282

return TRUE;

283

}

284

285

# endif /* XDMCP */

286

#endif /* HASXDMAUTH (covering the entire file) */

Older »