[doldaconnect.git] / daemon / auth.c

/*
 *  Dolda Connect - Modular multiuser Direct Connect-style client
 *  Copyright (C) 2004 Fredrik Tolf (fredrik@dolda2000.com)
 *  
 *  This program is free software; you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License as published by
 *  the Free Software Foundation; either version 2 of the License, or
 *  (at your option) any later version.
 *  
 *  This program is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *  GNU General Public License for more details.
 *  
 *  You should have received a copy of the GNU General Public License
 *  along with this program; if not, write to the Free Software
 *  Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
*/
#include <wchar.h>
#include <errno.h>

#ifdef HAVE_CONFIG_H
#include <config.h>
#endif
#include "auth.h"
#include "utils.h"
#include "module.h"
#include "conf.h"

struct authmech *mechs = NULL;

static int authless_inithandle(struct authhandle *auth, char *username)
{
    return(0);
}

static void authless_release(struct authhandle *auth)
{
}

static int authless_authenticate(struct authhandle *auth, char *data)
{
    return(AUTH_SUCCESS);
}

static int authless_succeed_1param(struct authhandle *auth)
{
    return(AUTH_SUCCESS);
}

static struct authmech authless =
{
    .name = L"authless",
    .inithandle = authless_inithandle,
    .release = authless_release,
    .authenticate = authless_authenticate,
    .renewcred = authless_succeed_1param,
    .opensess = authless_succeed_1param,
    .closesess = authless_succeed_1param
};

static struct authhandle *newhandle(void)
{
    struct authhandle *auth;
    
    auth = smalloc(sizeof(*auth));
    auth->refcount = 1;
    auth->mech = NULL;
    auth->text = NULL;
    auth->mechdata = NULL;
    return(auth);
}

void authgethandle(struct authhandle *auth)
{
    auth->refcount++;
}

void authputhandle(struct authhandle *auth)
{
    if(--auth->refcount)
	return;
    if(auth->text != NULL)
	free(auth->text);
    if(auth->mechdata != NULL)
	auth->mech->release(auth);
    free(auth);
}

struct authhandle *initauth(wchar_t *mechname, char *username)
{
    struct authmech *mech;
    struct authhandle *auth;
    
    for(mech = mechs; mech != NULL; mech = mech->next)
    {
	if(mech->enabled && !wcscmp(mechname, mech->name))
	    break;
    }
    if(mech == NULL)
    {
	errno = ENOENT;
	return(NULL);
    }
    auth = newhandle();
    auth->mech = mech;
    if(mech->inithandle(auth, username))
    {
	authputhandle(auth);
	return(NULL);
    }
    return(auth);
}

int authenticate(struct authhandle *handle, char *data)
{
    if(handle->mech == NULL)
	return(AUTH_ERR);
    return(handle->mech->authenticate(handle, data));
}

int authrenewcred(struct authhandle *handle)
{
    if((handle->mech == NULL) || (handle->mech->renewcred == NULL))
	return(AUTH_SUCCESS);
    return(handle->mech->renewcred(handle));
}

int authopensess(struct authhandle *handle)
{
    if((handle->mech == NULL) || (handle->mech->opensess == NULL))
	return(AUTH_SUCCESS);
    return(handle->mech->opensess(handle));
}

int authclosesess(struct authhandle *handle)
{
    if((handle->mech == NULL) || (handle->mech->closesess == NULL))
	return(AUTH_SUCCESS);
    return(handle->mech->closesess(handle));
}

void regmech(struct authmech *mech)
{
    mech->next = mechs;
    mechs = mech;
}

static void preinit(int hup)
{
    extern struct authmech authmech_pam;
    
    if(hup)
	return;
    regmech(&authless);
    regmech(&authmech_pam);
}

static int init(int hup)
{
    authless.enabled = confgetint("auth", "authless");
    return(0);
}

static struct configvar myvars[] =
{
    /** The name of the PAM service file to use. */
    {CONF_VAR_STRING, "pamserv", {.str = L"doldacond"}},
    /** Specifies whether insecure authentication is to be allowed. If
     * you are not completely sure what you are doing, never turn this
     * on without also turning on net.onlylocal. */
    {CONF_VAR_BOOL, "authless", {.num = 1}},
    {CONF_VAR_END}
};

static struct module me =
{
    .name = "auth",
    .conf =
    {
	.vars = myvars
    },
    .preinit = preinit,
    .init = init
};

MODULE(me)
Commit	Line	Data
d3372da9	1	/*
	2	* Dolda Connect - Modular multiuser Direct Connect-style client
	3	* Copyright (C) 2004 Fredrik Tolf (fredrik@dolda2000.com)
	4	*
	5	* This program is free software; you can redistribute it and/or modify
	6	* it under the terms of the GNU General Public License as published by
	7	* the Free Software Foundation; either version 2 of the License, or
	8	* (at your option) any later version.
	9	*
	10	* This program is distributed in the hope that it will be useful,
	11	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	12	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	13	* GNU General Public License for more details.
	14	*
	15	* You should have received a copy of the GNU General Public License
	16	* along with this program; if not, write to the Free Software
	17	* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
	18	*/
	19	#include <wchar.h>
	20	#include <errno.h>
	21
	22	#ifdef HAVE_CONFIG_H
	23	#include <config.h>
	24	#endif
	25	#include "auth.h"
	26	#include "utils.h"
	27	#include "module.h"
	28	#include "conf.h"
	29
	30	struct authmech *mechs = NULL;
	31
	32	static int authless_inithandle(struct authhandle auth, char username)
	33	{
	34	return(0);
	35	}
	36
	37	static void authless_release(struct authhandle *auth)
	38	{
	39	}
	40
	41	static int authless_authenticate(struct authhandle auth, char data)
	42	{
	43	return(AUTH_SUCCESS);
	44	}
	45
	46	static int authless_succeed_1param(struct authhandle *auth)
	47	{
	48	return(AUTH_SUCCESS);
	49	}
	50
	51	static struct authmech authless =
	52	{
	53	.name = L"authless",
	54	.inithandle = authless_inithandle,
	55	.release = authless_release,
	56	.authenticate = authless_authenticate,
	57	.renewcred = authless_succeed_1param,
	58	.opensess = authless_succeed_1param,
	59	.closesess = authless_succeed_1param
	60	};
	61
	62	static struct authhandle *newhandle(void)
	63	{
	64	struct authhandle *auth;
65
66	auth = smalloc(sizeof(*auth));
67	auth->refcount = 1;
68	auth->mech = NULL;
69	auth->text = NULL;
70	auth->mechdata = NULL;
71	return(auth);
72	}
73
74	void authgethandle(struct authhandle *auth)
75	{
76	auth->refcount++;
77	}
78
79	void authputhandle(struct authhandle *auth)
80	{
81	if(--auth->refcount)
82	return;
83	if(auth->text != NULL)
84	free(auth->text);
85	if(auth->mechdata != NULL)
86	auth->mech->release(auth);
87	free(auth);
88	}
89
90	struct authhandle initauth(wchar_t mechname, char *username)
91	{
92	struct authmech *mech;
93	struct authhandle *auth;
94
95	for(mech = mechs; mech != NULL; mech = mech->next)
96	{
97	if(mech->enabled && !wcscmp(mechname, mech->name))
98	break;
99	}
100	if(mech == NULL)
101	{
102	errno = ENOENT;
103	return(NULL);
104	}
105	auth = newhandle();
106	auth->mech = mech;
107	if(mech->inithandle(auth, username))
108	{
109	authputhandle(auth);
110	return(NULL);
111	}
112	return(auth);
113	}
114
115	int authenticate(struct authhandle handle, char data)
116	{
117	if(handle->mech == NULL)
118	return(AUTH_ERR);
119	return(handle->mech->authenticate(handle, data));
120	}
121
122	int authrenewcred(struct authhandle *handle)
123	{
124	if((handle->mech == NULL) \|\| (handle->mech->renewcred == NULL))
125	return(AUTH_SUCCESS);
126	return(handle->mech->renewcred(handle));
127	}
128
129	int authopensess(struct authhandle *handle)
130	{
131	if((handle->mech == NULL) \|\| (handle->mech->opensess == NULL))
132	return(AUTH_SUCCESS);
133	return(handle->mech->opensess(handle));
134	}
135
136	int authclosesess(struct authhandle *handle)
137	{
138	if((handle->mech == NULL) \|\| (handle->mech->closesess == NULL))
139	return(AUTH_SUCCESS);
140	return(handle->mech->closesess(handle));
141	}
142
143	void regmech(struct authmech *mech)
144	{
145	mech->next = mechs;
146	mechs = mech;
147	}
148
149	static void preinit(int hup)
150	{
151	extern struct authmech authmech_pam;
152
153	if(hup)
154	return;
155	regmech(&authless);
156	regmech(&authmech_pam);
157	}
158
159	static int init(int hup)
160	{
161	authless.enabled = confgetint("auth", "authless");
162	return(0);
163	}
164
165	static struct configvar myvars[] =
166	{
d9f89ef5	167	/** The name of the PAM service file to use. */
d3372da9	168	{CONF_VAR_STRING, "pamserv", {.str = L"doldacond"}},
d9f89ef5	169	/** Specifies whether insecure authentication is to be allowed. If
	170	* you are not completely sure what you are doing, never turn this
	171	* on without also turning on net.onlylocal. */
d3372da9	172	{CONF_VAR_BOOL, "authless", {.num = 1}},
	173	{CONF_VAR_END}
	174	};
	175
	176	static struct module me =
	177	{
	178	.name = "auth",
	179	.conf =
	180	{
	181	.vars = myvars
	182	},
	183	.preinit = preinit,
	184	.init = init
	185	};
	186
	187	MODULE(me)