PageRenderTime 50ms CodeModel.GetById 8ms RepoModel.GetById 1ms app.codeStats 0ms

/kdebase-3.5.10/kdm/backend/access.c

#
C | 468 lines | 373 code | 45 blank | 50 comment | 72 complexity | 071dea135162b1a3b1ec0138b77e80a0 MD5 | raw file
Possible License(s): LGPL-2.0, GPL-2.0, CC-BY-SA-3.0 
    

  1. /*
    2. 

    3. 

  3. Copyright 1990, 1998  The Open Group
    4. 

  4. Copyright 2001,2004 Oswald Buddenhagen <ossi@kde.org>
    5. 

  5. Copyright 2002 Sun Microsystems, Inc.  All rights reserved.
    6. 

    7. 

  7. Permission to use, copy, modify, distribute, and sell this software and its
    8. 

  8. documentation for any purpose is hereby granted without fee, provided that
    9. 

  9. the above copyright notice appear in all copies and that both that
    10. 

  10. copyright notice and this permission notice appear in supporting
    11. 

  11. documentation.
    12. 

    13. 

  13. The above copyright notice and this permission notice shall be included
    14. 

  14. in all copies or substantial portions of the Software.
    15. 

    16. 

  16. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
    17. 

  17. OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
    18. 

  18. MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
    19. 

  19. IN NO EVENT SHALL THE COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR
    20. 

  20. OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE,
    21. 

  21. ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR
    22. 

  22. OTHER DEALINGS IN THE SOFTWARE.
    23. 

    24. 

  24. Except as contained in this notice, the name of a copyright holder shall
    25. 

  25. not be used in advertising or otherwise to promote the sale, use or
    26. 

  26. other dealings in this Software without prior written authorization
    27. 

  27. from the copyright holder.
    28. 

    29. 

  29. */
    30. 

  30. 

  31. /*
    32. 

  32.  * xdm - display manager daemon
    33. 

  33.  * Author:  Keith Packard, MIT X Consortium
    34. 

  34.  *
    35. 

  35.  * Access control for XDMCP - keep a database of allowable display addresses
    36. 

  36.  * and (potentially) a list of hosts to send ForwardQuery packets to
    37. 

  37.  */
    38. 

  38. 

  39. #include <config.h>
    40. 

  40. 

  41. #ifdef XDMCP
    42. 

  42. 

  43. #include "dm.h"
    44. 

  44. #include "dm_error.h"
    45. 

  45. #include "dm_socket.h"
    46. 

  46. 

  47. #include <stdio.h>
    48. 

  48. #include <ctype.h>
    49. 

  49. 

  50. #include <netdb.h>
    51. 

  51. #if defined(IPv6) && defined(AF_INET6)
    52. 

  52. # include <arpa/inet.h>
    53. 

  53. #endif
    54. 

  54. 

  55. typedef struct {
    56. 

  56. 	short int type;
    57. 

  57. 	union {
    58. 

  58. 		char *aliasPattern;
    59. 

  59. 		char *hostPattern;
    60. 

  60. 		struct _displayAddress {
    61. 

  61. 			CARD16 connectionType;
    62. 

  62. 			ARRAY8 hostAddress;
    63. 

  63. 		} displayAddress;
    64. 

  64. 	} entry;
    65. 

  65. } HostEntry;
    66. 

  66. 

  67. typedef struct {
    68. 

  68. 	short int iface;
    69. 

  69. 	short int mcasts;
    70. 

  70. 	short int nmcasts;
    71. 

  71. } ListenEntry;
    72. 

  72. 

  73. typedef struct {
    74. 

  74. 	char *name;
    75. 

  75. 	short int hosts;
    76. 

  76. 	short int nhosts;
    77. 

  77. } AliasEntry;
    78. 

  78. 

  79. typedef struct {
    80. 

  80. 	short int entries;
    81. 

  81. 	short int nentries;
    82. 

  82. 	short int hosts;
    83. 

  83. 	short int nhosts;
    84. 

  84. 	short int flags;
    85. 

  85. } AclEntry;
    86. 

  86. 

  87. typedef struct {
    88. 

  88. 	HostEntry *hostList;
    89. 

  89. 	ListenEntry *listenList;
    90. 

  90. 	AliasEntry *aliasList;
    91. 

  91. 	AclEntry *acList;
    92. 

  92. 	short int nHosts, nListens, nAliases, nAcls;
    93. 

  93. 	CfgDep dep;
    94. 

  94. } AccArr;
    95. 

  95. 

  96. static AccArr accData[1];
    97. 

  97. 

  98. 

  99. static ARRAY8 localAddress;
    100. 

  100. 

  101. ARRAY8Ptr
    102. 

  102. getLocalAddress( void )
    103. 

  103. {
    104. 

  104. 	static int haveLocalAddress;
    105. 

  105. 

  106. 	if (!haveLocalAddress) {
    107. 

  107. #if defined(IPv6) && defined(AF_INET6)
    108. 

  108. 		struct addrinfo *ai;
    109. 

  109. 

  110. 		if (getaddrinfo( localHostname(), NULL, NULL, &ai )) {
    111. 

  111. 			XdmcpAllocARRAY8( &localAddress, 4 );
    112. 

  112. 			localAddress.data[0] = 127;
    113. 

  113. 			localAddress.data[1] = 0;
    114. 

  114. 			localAddress.data[2] = 0;
    115. 

  115. 			localAddress.data[3] = 1;
    116. 

  116. 		} else {
    117. 

  117. 			if (ai->ai_family == AF_INET) {
    118. 

  118. 				XdmcpAllocARRAY8( &localAddress, sizeof(struct in_addr) );
    119. 

  119. 				memcpy( localAddress.data,
    120. 

  120. 				        &((struct sockaddr_in *)ai->ai_addr)->sin_addr,
    121. 

  121. 				        sizeof(struct in_addr) );
    122. 

  122. 			} else /* if (ai->ai_family == AF_INET6) */ {
    123. 

  123. 				XdmcpAllocARRAY8( &localAddress, sizeof(struct in6_addr) );
    124. 

  124. 				memcpy( localAddress.data,
    125. 

  125. 				        &((struct sockaddr_in6 *)ai->ai_addr)->sin6_addr,
    126. 

  126. 				        sizeof(struct in6_addr) );
    127. 

  127. 			}
    128. 

  128. 			freeaddrinfo( ai );
    129. 

  129. #else
    130. 

  130. 		struct hostent *hostent;
    131. 

  131. 

  132. 		if ((hostent = gethostbyname( localHostname() ))) {
    133. 

  133. 			XdmcpAllocARRAY8( &localAddress, hostent->h_length );
    134. 

  134. 			memmove( localAddress.data, hostent->h_addr, hostent->h_length );
    135. 

  135. #endif
    136. 

  136. 			haveLocalAddress = 1;
    137. 

  137. 		}
    138. 

  138. 	}
    139. 

  139. 	return &localAddress;
    140. 

  140. }
    141. 

  141. 

  142. 

  143. void
    144. 

  144. ScanAccessDatabase( int force )
    145. 

  145. {
    146. 

  146. 	struct _displayAddress *da;
    147. 

  147. 	char *cptr;
    148. 

  148. 	int nChars, i;
    149. 

  149. 

  150. 	Debug( "ScanAccessDatabase\n" );
    151. 

  151. 	if (Setjmp( cnftalk.errjmp ))
    152. 

  152. 		return; /* may memleak */
    153. 

  153. 	if (startConfig( GC_gXaccess, &accData->dep, force ) <= 0)
    154. 

  154. 		return;
    155. 

  155. 	if (accData->hostList)
    156. 

  156. 		free( accData->hostList );
    157. 

  157. 	accData->nHosts = GRecvInt();
    158. 

  158. 	accData->nListens = GRecvInt();
    159. 

  159. 	accData->nAliases = GRecvInt();
    160. 

  160. 	accData->nAcls = GRecvInt();
    161. 

  161. 	nChars = GRecvInt();
    162. 

  162. 	if (!(accData->hostList = (HostEntry *)
    163. 

  163. 	      Malloc( accData->nHosts * sizeof(HostEntry) +
    164. 

  164. 	              accData->nListens * sizeof(ListenEntry) +
    165. 

  165. 	              accData->nAliases * sizeof(AliasEntry) +
    166. 

  166. 	              accData->nAcls * sizeof(AclEntry) +
    167. 

  167. 	              nChars )))
    168. 

  168. 	{
    169. 

  169. 		CloseGetter();
    170. 

  170. 		return;
    171. 

  171. 	}
    172. 

  172. 	accData->listenList = (ListenEntry *)(accData->hostList + accData->nHosts);
    173. 

  173. 	accData->aliasList = (AliasEntry *)(accData->listenList + accData->nListens);
    174. 

  174. 	accData->acList = (AclEntry *)(accData->aliasList + accData->nAliases);
    175. 

  175. 	cptr = (char *)(accData->acList + accData->nAcls);
    176. 

  176. 	for (i = 0; i < accData->nHosts; i++) {
    177. 

  177. 		switch ((accData->hostList[i].type = GRecvInt())) {
    178. 

  178. 		case HOST_ALIAS:
    179. 

  179. 			accData->hostList[i].entry.aliasPattern = cptr;
    180. 

  180. 			cptr += GRecvStrBuf( cptr );
    181. 

  181. 			break;
    182. 

  182. 		case HOST_PATTERN:
    183. 

  183. 			accData->hostList[i].entry.hostPattern = cptr;
    184. 

  184. 			cptr += GRecvStrBuf( cptr );
    185. 

  185. 			break;
    186. 

  186. 		case HOST_ADDRESS:
    187. 

  187. 			da = &accData->hostList[i].entry.displayAddress;
    188. 

  188. 			da->hostAddress.data = (unsigned char *)cptr;
    189. 

  189. 			cptr += (da->hostAddress.length = GRecvArrBuf( cptr ));
    190. 

  190. 			switch (GRecvInt())
    191. 

  191. 			{
    192. 

  192. #ifdef AF_INET
    193. 

  193. 			case AF_INET:
    194. 

  194. 				da->connectionType = FamilyInternet;
    195. 

  195. 				break;
    196. 

  196. #endif
    197. 

  197. #if defined(IPv6) && defined(AF_INET6)
    198. 

  198. 			case AF_INET6:
    199. 

  199. 				da->connectionType = FamilyInternet6;
    200. 

  200. 				break;
    201. 

  201. #endif
    202. 

  202. #ifdef AF_DECnet
    203. 

  203. 			case AF_DECnet:
    204. 

  204. 				da->connectionType = FamilyDECnet;
    205. 

  205. 				break;
    206. 

  206. #endif
    207. 

  207. /*#ifdef AF_UNIX
    208. 

  208. 			case AF_UNIX:
    209. 

  209. #endif*/
    210. 

  210. 			default:
    211. 

  211. 				da->connectionType = FamilyLocal;
    212. 

  212. 				break;
    213. 

  213. 			}
    214. 

  214. 			break;
    215. 

  215. 		case HOST_BROADCAST:
    216. 

  216. 			break;
    217. 

  217. 		default:
    218. 

  218. 			LogError( "Received unknown host type %d from config reader\n", accData->hostList[i].type );
    219. 

  219. 			return;
    220. 

  220. 		}
    221. 

  221. 	}
    222. 

  222. 	for (i = 0; i < accData->nListens; i++) {
    223. 

  223. 		accData->listenList[i].iface = GRecvInt();
    224. 

  224. 		accData->listenList[i].mcasts = GRecvInt();
    225. 

  225. 		accData->listenList[i].nmcasts = GRecvInt();
    226. 

  226. 	}
    227. 

  227. 	for (i = 0; i < accData->nAliases; i++) {
    228. 

  228. 		accData->aliasList[i].name = cptr;
    229. 

  229. 		cptr += GRecvStrBuf( cptr );
    230. 

  230. 		accData->aliasList[i].hosts = GRecvInt();
    231. 

  231. 		accData->aliasList[i].nhosts = GRecvInt();
    232. 

  232. 	}
    233. 

  233. 	for (i = 0; i < accData->nAcls; i++) {
    234. 

  234. 		accData->acList[i].entries = GRecvInt();
    235. 

  235. 		accData->acList[i].nentries = GRecvInt();
    236. 

  236. 		accData->acList[i].hosts = GRecvInt();
    237. 

  237. 		accData->acList[i].nhosts = GRecvInt();
    238. 

  238. 		accData->acList[i].flags = GRecvInt();
    239. 

  239. 	}
    240. 

  240. }
    241. 

  241. 

  242. 

  243. /* Returns non-0 if string is matched by pattern.  Does case folding.
    244. 

  244.  */
    245. 

  245. static int
    246. 

  246. patternMatch( const char *string, const char *pattern )
    247. 

  247. {
    248. 

  248. 	int p, s;
    249. 

  249. 

  250. 	if (!string)
    251. 

  251. 		string = "";
    252. 

  252. 

  253. 	for (;;) {
    254. 

  254. 		s = *string++;
    255. 

  255. 		switch (p = *pattern++) {
    256. 

  256. 		case '*':
    257. 

  257. 			if (!*pattern)
    258. 

  258. 				return 1;
    259. 

  259. 			for (string--; *string; string++)
    260. 

  260. 				if (patternMatch( string, pattern ))
    261. 

  261. 					return 1;
    262. 

  262. 			return 0;
    263. 

  263. 		case '?':
    264. 

  264. 			if (s == '\0')
    265. 

  265. 				return 0;
    266. 

  266. 			break;
    267. 

  267. 		case '\0':
    268. 

  268. 			return s == '\0';
    269. 

  269. 		case '\\':
    270. 

  270. 			p = *pattern++;
    271. 

  271. 			/* fall through */
    272. 

  272. 		default:
    273. 

  273. 			if (tolower( p ) != tolower( s ))
    274. 

  274. 				return 0;
    275. 

  275. 		}
    276. 

  276. 	}
    277. 

  277. }
    278. 

  278. 

  279. 

  280. #define MAX_DEPTH 32
    281. 

  281. 

  282. static void
    283. 

  283. scanHostlist( int fh, int nh,
    284. 

  284.               ARRAY8Ptr clientAddress, CARD16 connectionType,
    285. 

  285.               ChooserFunc function, char *closure,
    286. 

  286.               int broadcast, int *haveLocalhost )
    287. 

  287. {
    288. 

  288. 	HostEntry *h;
    289. 

  289. 	AliasEntry *a;
    290. 

  290. 	int na;
    291. 

  291. 

  292. 	for (h = accData->hostList + fh; nh; nh--, h++) {
    293. 

  293. 		switch (h->type) {
    294. 

  294. 		case HOST_ALIAS:
    295. 

  295. 			for (a = accData->aliasList, na = accData->nAliases; na; na--, a++)
    296. 

  296. 				if (patternMatch( a->name, h->entry.aliasPattern )) /* XXX originally swapped, no wildcards in alias name matching */
    297. 

  297. 					scanHostlist( a->hosts, a->nhosts,
    298. 

  298. 					              clientAddress, connectionType,
    299. 

  299. 					              function, closure, broadcast,
    300. 

  300. 					              haveLocalhost );
    301. 

  301. 			break;
    302. 

  302. 		case HOST_ADDRESS:
    303. 

  303. 			if (XdmcpARRAY8Equal( getLocalAddress(), &h->entry.displayAddress.hostAddress ))
    304. 

  304. 				*haveLocalhost = 1;
    305. 

  305. 			else if (function)
    306. 

  306. 				(*function)( connectionType, &h->entry.displayAddress.hostAddress, closure );
    307. 

  307. 			break;
    308. 

  308. 		case HOST_BROADCAST:
    309. 

  309. 			if (broadcast && function)
    310. 

  310. 				(*function)( FamilyBroadcast, 0, closure );
    311. 

  311. 			break;
    312. 

  312. 		default:
    313. 

  313. 			break;
    314. 

  314. 		}
    315. 

  315. 	}
    316. 

  316. }
    317. 

  317. 

  318. static int
    319. 

  319. scanEntrylist( int fh, int nh,
    320. 

  320.                ARRAY8Ptr clientAddress, CARD16 connectionType,
    321. 

  321.                char **clientName )
    322. 

  322. {
    323. 

  323. 	HostEntry *h;
    324. 

  324. 	AliasEntry *a;
    325. 

  325. 	int na;
    326. 

  326. 

  327. 	for (h = accData->hostList + fh; nh; nh--, h++) {
    328. 

  328. 		switch (h->type) {
    329. 

  329. 		case HOST_ALIAS:
    330. 

  330. 			for (a = accData->aliasList, na = accData->nAliases; na; na--, a++)
    331. 

  331. 				if (patternMatch( a->name, h->entry.aliasPattern ))
    332. 

  332. 					if (scanEntrylist( a->hosts, a->nhosts,
    333. 

  333. 					                   clientAddress, connectionType,
    334. 

  334. 					                   clientName ))
    335. 

  335. 						return 1;
    336. 

  336. 			break;
    337. 

  337. 		case HOST_PATTERN:
    338. 

  338. 			if (!*clientName)
    339. 

  339. 				*clientName = NetworkAddressToHostname( connectionType,
    340. 

  340. 				                                        clientAddress );
    341. 

  341. 			if (patternMatch( *clientName, h->entry.hostPattern ))
    342. 

  342. 				return 1;
    343. 

  343. 			break;
    344. 

  344. 		case HOST_ADDRESS:
    345. 

  345. 			if (h->entry.displayAddress.connectionType == connectionType &&
    346. 

  346. 			    XdmcpARRAY8Equal( &h->entry.displayAddress.hostAddress,
    347. 

  347. 			                      clientAddress ))
    348. 

  348. 				return 1;
    349. 

  349. 			break;
    350. 

  350. 		default:
    351. 

  351. 			break;
    352. 

  352. 		}
    353. 

  353. 	}
    354. 

  354. 	return 0;
    355. 

  355. }
    356. 

  356. 

  357. static AclEntry *
    358. 

  358. matchAclEntry( ARRAY8Ptr clientAddress, CARD16 connectionType, int direct )
    359. 

  359. {
    360. 

  360. 	AclEntry *e, *re;
    361. 

  361. 	char *clientName = 0;
    362. 

  362. 	int ne;
    363. 

  363. 

  364. 	for (e = accData->acList, ne = accData->nAcls, re = 0; ne; ne--, e++)
    365. 

  365. 		if (!e->nhosts == direct)
    366. 

  366. 			if (scanEntrylist( e->entries, e->nentries,
    367. 

  367. 			                   clientAddress, connectionType,
    368. 

  368. 			                   &clientName ))
    369. 

  369. 			{
    370. 

  370. 				re = e;
    371. 

  371. 				break;
    372. 

  372. 			}
    373. 

  373. 	if (clientName)
    374. 

  374. 		free( clientName );
    375. 

  375. 	return re;
    376. 

  376. }
    377. 

  377. 

  378. /*
    379. 

  379.  * calls the given function for each valid indirect entry.  Returns TRUE if
    380. 

  380.  * the local host exists on any of the lists, else FALSE
    381. 

  381.  */
    382. 

  382. int
    383. 

  383. ForEachMatchingIndirectHost( ARRAY8Ptr clientAddress,
    384. 

  384.                              CARD16 connectionType,
    385. 

  385.                              ChooserFunc function, char *closure )
    386. 

  386. {
    387. 

  387. 	AclEntry *e;
    388. 

  388. 	int haveLocalhost = 0;
    389. 

  389. 

  390. 	e = matchAclEntry( clientAddress, connectionType, 0 );
    391. 

  391. 	if (e && !(e->flags & a_notAllowed)) {
    392. 

  392. 		if (e->flags & a_useChooser) {
    393. 

  393. 			ARRAY8Ptr choice;
    394. 

  394. 

  395. 			choice = IndirectChoice( clientAddress, connectionType );
    396. 

  396. 			if (!choice || XdmcpARRAY8Equal( getLocalAddress(), choice ))
    397. 

  397. 				haveLocalhost = 1;
    398. 

  398. 			else
    399. 

  399. 				(*function)( connectionType, choice, closure );
    400. 

  400. 		} else
    401. 

  401. 			scanHostlist( e->hosts, e->nhosts, clientAddress, connectionType,
    402. 

  402. 			              function, closure, FALSE, &haveLocalhost );
    403. 

  403. 	}
    404. 

  404. 	return haveLocalhost;
    405. 

  405. }
    406. 

  406. 

  407. int
    408. 

  408. UseChooser( ARRAY8Ptr clientAddress, CARD16 connectionType )
    409. 

  409. {
    410. 

  410. 	AclEntry *e;
    411. 

  411. 

  412. 	e = matchAclEntry( clientAddress, connectionType, 0 );
    413. 

  413. 	return e && !(e->flags & a_notAllowed) && (e->flags & a_useChooser) &&
    414. 

  414. 		!IndirectChoice( clientAddress, connectionType );
    415. 

  415. }
    416. 

  416. 

  417. void
    418. 

  418. ForEachChooserHost( ARRAY8Ptr clientAddress, CARD16 connectionType,
    419. 

  419.                     ChooserFunc function, char *closure )
    420. 

  420. {
    421. 

  421. 	AclEntry *e;
    422. 

  422. 	int haveLocalhost = 0;
    423. 

  423. 

  424. 	e = matchAclEntry( clientAddress, connectionType, 0 );
    425. 

  425. 	if (e && !(e->flags & a_notAllowed) && (e->flags & a_useChooser))
    426. 

  426. 		scanHostlist( e->hosts, e->nhosts, clientAddress, connectionType,
    427. 

  427. 		              function, closure, TRUE, &haveLocalhost );
    428. 

  428. 	if (haveLocalhost)
    429. 

  429. 		(*function)( connectionType, getLocalAddress(), closure );
    430. 

  430. }
    431. 

  431. 

  432. /*
    433. 

  433.  * returns TRUE if the given client is acceptable to the local host.  The
    434. 

  434.  * given display client is acceptable if it occurs without a host list.
    435. 

  435.  */
    436. 

  436. int
    437. 

  437. AcceptableDisplayAddress( ARRAY8Ptr clientAddress, CARD16 connectionType,
    438. 

  438.                           xdmOpCode type )
    439. 

  439. {
    440. 

  440. 	AclEntry *e;
    441. 

  441. 

  442. 	if (type == INDIRECT_QUERY)
    443. 

  443. 		return 1;
    444. 

  444. 

  445. 	e = matchAclEntry( clientAddress, connectionType, 1 );
    446. 

  446. 	return e && !(e->flags & a_notAllowed) &&
    447. 

  447. 		(type != BROADCAST_QUERY || !(e->flags & a_notBroadcast));
    448. 

  448. }
    449. 

  449. 

  450. void
    451. 

  451. ForEachListenAddr( ListenFunc listenfunction, ListenFunc mcastfunction,
    452. 

  452.                    void **closure )
    453. 

  453. {
    454. 

  454. 	int i, j, ifc, mc, nmc;
    455. 

  455. 

  456. 	for (i = 0; i < accData->nListens; i++) {
    457. 

  457. 		ifc = accData->listenList[i].iface;
    458. 

  458. 		(*listenfunction)( ifc < 0 ? 0 :
    459. 

  459. 		                   &accData->hostList[ifc].entry.displayAddress.hostAddress,
    460. 

  460. 		                   closure );
    461. 

  461. 		mc = accData->listenList[i].mcasts;
    462. 

  462. 		nmc = accData->listenList[i].nmcasts;
    463. 

  463. 		for (j = 0; j < nmc; j++, mc++)
    464. 

  464. 			(*mcastfunction)( &accData->hostList[mc].entry.displayAddress.hostAddress,
    465. 

  465. 			                  closure );
    466. 

  466. 	}
    467. 

  467. }
    468. 

  468. #endif /* XDMCP */
    469. 

  469.