X-Git-Url: http://git.tuebingen.mpg.de/?p=paraslash.git;a=blobdiff_plain;f=command.c;h=f096edcc37493bab7dbe8e4cab461da71dee50ce;hp=ad3f504103b4a773b392c25afe07be28e36dff2c;hb=b0f9ae192371acb53d020fae6d4e9aaf516a1852;hpb=262739658bab36f6dc057dfe68a2f7e43a71e41e diff --git a/command.c b/command.c index ad3f5041..f096edcc 100644 --- a/command.c +++ b/command.c @@ -19,7 +19,6 @@ /** \file command.c does client authentication and executes server commands */ #include /* gettimeofday */ -#include "crypt.h" #include "server.cmdline.h" #include "db.h" #include "server.h" @@ -32,6 +31,7 @@ #include "daemon.h" #include "string.h" #include "fd.h" +#include "user_list.h" static RC4_KEY rc4_recv_key; static RC4_KEY rc4_send_key; @@ -992,70 +992,6 @@ long int para_rand(long unsigned max) return (long int) ((max + 0.0) * (random() / (RAND_MAX + 1.0))); } -/* Open user_list file, returns pointer to opened file on success, - * NULL on errors - */ -static FILE *open_user_list(char *file) -{ - PARA_DEBUG_LOG("opening user list %s\n", file); - return fopen(file, "r"); -} - -/* - * lookup user in user_list file. Fills in a user struct containing - * filename of the user's public key as well as the permissions of that user. - * Returns 1 on success, 0 if user does not exist and < 0 on errors. - */ -static int get_user(struct user *user) { - FILE *file_ptr; - char *char_ptr; - char line[MAXLINE]; - /* keyword, user, key, perms */ - char w[MAXLINE], n[MAXLINE], k[MAXLINE], p[MAXLINE], tmp[4][MAXLINE]; - int num, ret; - - file_ptr = open_user_list(user_list); - if (!file_ptr) - return -E_USERLIST; - for (;;) { - ret = para_fgets(line, MAXLINE, file_ptr); - if (ret < 0) - PARA_ERROR_LOG("%s\n", PARA_STRERROR(-ret)); - if (ret <= 0) - break; - if (sscanf(line,"%200s %200s %200s %200s", w, n, k, p) < 3) - continue; - if (strcmp(w, "user") || strcmp(user->name, n)) - continue; - PARA_DEBUG_LOG("found entry for %s\n", n); - strcpy(user->name, n); - strcpy(user->pubkey_file, k); - user->perms = 0; - char_ptr = p; - num = sscanf(char_ptr, "%200[A-Z_],%200[A-Z_],%200[A-Z_],%200[A-Z_]", - tmp[0], tmp[1], tmp[2], tmp[3]); - PARA_DEBUG_LOG("found %i perm entries\n", num); - user->perms = 0; - while (num > 0) { - num--; - if (!strcmp(tmp[num], "AFS_READ")) - user->perms = user->perms | AFS_READ; - else if (!strcmp(tmp[num], "AFS_WRITE")) - user->perms = user->perms | AFS_WRITE; - else if (!strcmp(tmp[num], "DB_READ")) - user->perms = user->perms | DB_READ; - else if (!strcmp(tmp[num], "DB_WRITE")) - user->perms = user->perms | DB_WRITE; - else /* unknown permission */ - PARA_WARNING_LOG("unknown permission: %s\n", - tmp[num]); - } - break; - } - fclose(file_ptr); - return ret; -} - static void init_rc4_keys(void) { int i; @@ -1119,23 +1055,21 @@ int handle_connect(int fd, struct sockaddr_in *addr) goto err_out; if (numbytes < 9 || strncmp(buf, "auth rc4 ", 9)) - strcpy(u.name, buf + 5); /* client version < 0.2.6 */ + u.name = para_strdup(buf + 5); /* client version < 0.2.6 */ else { - strcpy(u.name, buf + 9); /* client version >= 0.2.6 */ + u.name = para_strdup(buf + 9); /* client version >= 0.2.6 */ use_rc4 = 1; } -// strcpy(u.name, buf + 5); /* ok, but ugly */ PARA_DEBUG_LOG("received %s request for user %s\n", use_rc4? "rc4" : "auth", u.name); - /* lookup user in list file */ - if ((ret = get_user(&u)) < 0) + if ((ret = lookup_user(&u)) < 0) goto err_out; if (!ret) { /* user not found */ PARA_WARNING_LOG("auth request for unknown user %s\n", u.name); ret = -E_BAD_USER; goto err_out; } - ret = para_encrypt_challenge(u.pubkey_file, challenge_nr, crypt_buf); + ret = para_encrypt_challenge(u.rsa, challenge_nr, crypt_buf); if (ret <= 0) goto err_out; numbytes = ret; @@ -1160,7 +1094,7 @@ int handle_connect(int fd, struct sockaddr_in *addr) sprintf(buf, "%s", PROCEED_MSG); if (use_rc4) { init_rc4_keys(); - ret = para_encrypt_buffer(u.pubkey_file, rc4_buf, 2 * RC4_KEY_LEN, + ret = para_encrypt_buffer(u.rsa, rc4_buf, 2 * RC4_KEY_LEN, (unsigned char *)buf + PROCEED_MSG_LEN + 1); if (ret <= 0) goto err_out;