2006-11-26 11:13:41 -07:00
|
|
|
/*
|
|
|
|
|
|
|
|
Copyright 1988, 1998 The Open Group
|
|
|
|
|
|
|
|
Permission to use, copy, modify, distribute, and sell this software and its
|
|
|
|
documentation for any purpose is hereby granted without fee, provided that
|
|
|
|
the above copyright notice appear in all copies and that both that
|
|
|
|
copyright notice and this permission notice appear in supporting
|
|
|
|
documentation.
|
|
|
|
|
|
|
|
The above copyright notice and this permission notice shall be included
|
|
|
|
in all copies or substantial portions of the Software.
|
|
|
|
|
|
|
|
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
|
|
|
|
OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
|
|
|
|
MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
|
|
|
|
IN NO EVENT SHALL THE OPEN GROUP BE LIABLE FOR ANY CLAIM, DAMAGES OR
|
|
|
|
OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE,
|
|
|
|
ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR
|
|
|
|
OTHER DEALINGS IN THE SOFTWARE.
|
|
|
|
|
|
|
|
Except as contained in this notice, the name of The Open Group shall
|
|
|
|
not be used in advertising or otherwise to promote the sale, use or
|
|
|
|
other dealings in this Software without prior written authorization
|
|
|
|
from The Open Group.
|
|
|
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
/*
|
|
|
|
* MIT-MAGIC-COOKIE-1 authorization scheme
|
|
|
|
* Author: Keith Packard, MIT X Consortium
|
|
|
|
*/
|
|
|
|
|
|
|
|
#ifdef HAVE_DIX_CONFIG_H
|
|
|
|
#include <dix-config.h>
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#include <X11/X.h>
|
|
|
|
#include "os.h"
|
|
|
|
#include "osdep.h"
|
|
|
|
#include "dixstruct.h"
|
|
|
|
|
|
|
|
static struct auth {
|
|
|
|
struct auth *next;
|
|
|
|
unsigned short len;
|
|
|
|
char *data;
|
|
|
|
XID id;
|
|
|
|
} *mit_auth;
|
|
|
|
|
|
|
|
int
|
|
|
|
MitAddCookie (
|
|
|
|
unsigned short data_length,
|
|
|
|
char *data,
|
|
|
|
XID id)
|
|
|
|
{
|
|
|
|
struct auth *new;
|
|
|
|
|
2010-07-27 13:02:24 -06:00
|
|
|
new = xalloc (sizeof (struct auth));
|
2006-11-26 11:13:41 -07:00
|
|
|
if (!new)
|
|
|
|
return 0;
|
2010-07-27 13:02:24 -06:00
|
|
|
new->data = xalloc ((unsigned) data_length);
|
2006-11-26 11:13:41 -07:00
|
|
|
if (!new->data) {
|
|
|
|
xfree(new);
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
new->next = mit_auth;
|
|
|
|
mit_auth = new;
|
|
|
|
memmove(new->data, data, (int) data_length);
|
|
|
|
new->len = data_length;
|
|
|
|
new->id = id;
|
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
|
|
|
|
XID
|
|
|
|
MitCheckCookie (
|
|
|
|
unsigned short data_length,
|
|
|
|
char *data,
|
|
|
|
ClientPtr client,
|
|
|
|
char **reason)
|
|
|
|
{
|
|
|
|
struct auth *auth;
|
|
|
|
|
|
|
|
for (auth = mit_auth; auth; auth=auth->next) {
|
|
|
|
if (data_length == auth->len &&
|
|
|
|
memcmp (data, auth->data, (int) data_length) == 0)
|
|
|
|
return auth->id;
|
|
|
|
}
|
|
|
|
*reason = "Invalid MIT-MAGIC-COOKIE-1 key";
|
|
|
|
return (XID) -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
int
|
|
|
|
MitResetCookie (void)
|
|
|
|
{
|
|
|
|
struct auth *auth, *next;
|
|
|
|
|
|
|
|
for (auth = mit_auth; auth; auth=next) {
|
|
|
|
next = auth->next;
|
|
|
|
xfree (auth->data);
|
|
|
|
xfree (auth);
|
|
|
|
}
|
|
|
|
mit_auth = 0;
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
XID
|
|
|
|
MitToID (
|
|
|
|
unsigned short data_length,
|
|
|
|
char *data)
|
|
|
|
{
|
|
|
|
struct auth *auth;
|
|
|
|
|
|
|
|
for (auth = mit_auth; auth; auth=auth->next) {
|
|
|
|
if (data_length == auth->len &&
|
|
|
|
memcmp (data, auth->data, data_length) == 0)
|
|
|
|
return auth->id;
|
|
|
|
}
|
|
|
|
return (XID) -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
int
|
|
|
|
MitFromID (
|
|
|
|
XID id,
|
|
|
|
unsigned short *data_lenp,
|
|
|
|
char **datap)
|
|
|
|
{
|
|
|
|
struct auth *auth;
|
|
|
|
|
|
|
|
for (auth = mit_auth; auth; auth=auth->next) {
|
|
|
|
if (id == auth->id) {
|
|
|
|
*data_lenp = auth->len;
|
|
|
|
*datap = auth->data;
|
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
int
|
|
|
|
MitRemoveCookie (
|
|
|
|
unsigned short data_length,
|
|
|
|
char *data)
|
|
|
|
{
|
|
|
|
struct auth *auth, *prev;
|
|
|
|
|
|
|
|
prev = 0;
|
|
|
|
for (auth = mit_auth; auth; prev = auth, auth=auth->next) {
|
|
|
|
if (data_length == auth->len &&
|
|
|
|
memcmp (data, auth->data, data_length) == 0)
|
|
|
|
{
|
|
|
|
if (prev)
|
|
|
|
prev->next = auth->next;
|
|
|
|
else
|
|
|
|
mit_auth = auth->next;
|
|
|
|
xfree (auth->data);
|
|
|
|
xfree (auth);
|
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
#ifdef XCSECURITY
|
|
|
|
|
|
|
|
static char cookie[16]; /* 128 bits */
|
|
|
|
|
|
|
|
XID
|
|
|
|
MitGenerateCookie (
|
|
|
|
unsigned data_length,
|
|
|
|
char *data,
|
|
|
|
XID id,
|
|
|
|
unsigned *data_length_return,
|
|
|
|
char **data_return)
|
|
|
|
{
|
|
|
|
int i = 0;
|
|
|
|
int status;
|
|
|
|
|
|
|
|
while (data_length--)
|
|
|
|
{
|
|
|
|
cookie[i++] += *data++;
|
|
|
|
if (i >= sizeof (cookie)) i = 0;
|
|
|
|
}
|
|
|
|
GenerateRandomData(sizeof (cookie), cookie);
|
|
|
|
status = MitAddCookie(sizeof (cookie), cookie, id);
|
|
|
|
if (!status)
|
|
|
|
{
|
|
|
|
id = -1;
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
*data_return = cookie;
|
|
|
|
*data_length_return = sizeof (cookie);
|
|
|
|
}
|
|
|
|
return id;
|
|
|
|
}
|
|
|
|
|
|
|
|
#endif /* XCSECURITY */
|