saslserver.c
No OneTemporary
Actions

Authored By

Unknown

Size

4 KB

Referenced Files

None

Subscribers

None

saslserver.c
View Options

	/* saslserver.c -- shared SASL code for server-side authentication
	*
	* Copyright (c) 1998-2003 Carnegie Mellon University. All rights reserved.
	*
	* Redistribution and use in source and binary forms, with or without
	* modification, are permitted provided that the following conditions
	* are met:
	*
	* 1. Redistributions of source code must retain the above copyright
	* notice, this list of conditions and the following disclaimer.
	*
	* 2. Redistributions in binary form must reproduce the above copyright
	* notice, this list of conditions and the following disclaimer in
	* the documentation and/or other materials provided with the
	* distribution.
	*
	* 3. The name "Carnegie Mellon University" must not be used to
	* endorse or promote products derived from this software without
	* prior written permission. For permission or any other legal
	* details, please contact
	* Office of Technology Transfer
	* Carnegie Mellon University
	* 5000 Forbes Avenue
	* Pittsburgh, PA 15213-3890
	* (412) 268-4387, fax: (412) 268-7395
	* tech-transfer@andrew.cmu.edu
	*
	* 4. Redistributions of any form whatsoever must retain the following
	* acknowledgment:
	* "This product includes software developed by Computing Services
	* at Carnegie Mellon University (http://www.cmu.edu/computing/)."
	*
	* CARNEGIE MELLON UNIVERSITY DISCLAIMS ALL WARRANTIES WITH REGARD TO
	* THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
	* AND FITNESS, IN NO EVENT SHALL CARNEGIE MELLON UNIVERSITY BE LIABLE
	* FOR ANY SPECIAL, INDIRECT OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
	* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN
	* AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING
	* OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
	*/

	/* $Id: saslserver.c,v 1.5 2003/10/22 18:30:56 rjs3 Exp $ */

	#include <config.h>

	#include <string.h>
	#include <sasl/sasl.h>
	#include <sasl/saslutil.h>

	#include "prot.h"
	#include "imap_err.h"

	#define BASE64_BUF_SIZE 21848 /* per RFC 2222bis: ((16K / 3) + 1) * 4 */


	int saslserver(sasl_conn_t conn, const char mech,
	const char init_resp, const char resp_prefix,
	const char *continuation,
	struct protstream pin, struct protstream pout,
	int sasl_result, char *success_data)
	{
	static char base64[BASE64_BUF_SIZE+1];
	char *clientin = NULL;
	unsigned int clientinlen = 0;
	const char *serverout;
	unsigned int serveroutlen;
	int r = SASL_OK;

	if (success_data) *success_data = NULL;

	/* initial response */
	if (init_resp) {
	clientin = base64;
	if (!strcmp(init_resp, "=")) {
	/* zero-length initial response */
	base64[0] = '\0';
	}
	else {
	r = sasl_decode64(init_resp, strlen(init_resp),
	clientin, BASE64_BUF_SIZE, &clientinlen);
	}
	}

	/* start the exchange */
	if (r == SASL_OK)
	r = sasl_server_start(conn, mech, clientin, clientinlen,
	&serverout, &serveroutlen);

	while (r == SASL_CONTINUE) {
	char *p;

	/* send the challenge to the client */
	if (serverout) {
	r = sasl_encode64(serverout, serveroutlen,
	base64, BASE64_BUF_SIZE, NULL);
	if (r != SASL_OK) break;

	prot_printf(pout, "%s%s\r\n", continuation, base64);
	}

	/* get response from the client */
	if (!prot_fgets(base64, BASE64_BUF_SIZE, pin) \|\|
	strncasecmp(base64, resp_prefix, strlen(resp_prefix))) {
	if (sasl_result) *sasl_result = SASL_FAIL;
	return IMAP_SASL_PROTERR;
	}

	/* trim CRLF */
	p = base64 + strlen(base64) - 1;
	if (p >= base64 && p == '\n') p-- = '\0';
	if (p >= base64 && p == '\r') p-- = '\0';

	/* trim prefix */
	p = base64 + strlen(resp_prefix);

	/* check if client cancelled */
	if (p[0] == '*') {
	if(sasl_result) *sasl_result = SASL_BADPROT;
	return IMAP_SASL_CANCEL;
	}

	/* decode the response */
	clientin = base64;
	r = sasl_decode64(p, strlen(p),
	clientin, BASE64_BUF_SIZE, &clientinlen);
	if (r != SASL_OK) break;

	/* do the next step */
	r = sasl_server_step(conn, clientin, clientinlen,
	&serverout, &serveroutlen);
	}

	/* success data */
	if (r == SASL_OK && serverout && success_data) {
	r = sasl_encode64(serverout, serveroutlen,
	base64, BASE64_BUF_SIZE, NULL);
	if (r == SASL_OK)
	*success_data = base64;
	}

	if(sasl_result) *sasl_result = r;
	return (r == SASL_OK ? 0 : IMAP_SASL_FAIL);
	}

File Metadata

Mime Type: text/x-c
Expires: Sat, Apr 4, 1:38 AM (1 w, 5 d ago)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 18821947
Default Alt Text: saslserver.c (4 KB)

saslserver.cNo OneTemporaryActions

saslserver.cView Options

File Metadata

Event Timeline

saslserver.c
No OneTemporary
Actions

saslserver.c
View Options