xref: /OK3568_Linux_fs/external/xserver/os/mitauth.c (revision 4882a59341e53eb6f0b4789bf948001014eff981) 
1*4882a593Smuzhiyun /*
2*4882a593Smuzhiyun 
3*4882a593Smuzhiyun Copyright 1988, 1998  The Open Group
4*4882a593Smuzhiyun 
5*4882a593Smuzhiyun Permission to use, copy, modify, distribute, and sell this software and its
6*4882a593Smuzhiyun documentation for any purpose is hereby granted without fee, provided that
7*4882a593Smuzhiyun the above copyright notice appear in all copies and that both that
8*4882a593Smuzhiyun copyright notice and this permission notice appear in supporting
9*4882a593Smuzhiyun documentation.
10*4882a593Smuzhiyun 
11*4882a593Smuzhiyun The above copyright notice and this permission notice shall be included
12*4882a593Smuzhiyun in all copies or substantial portions of the Software.
13*4882a593Smuzhiyun 
14*4882a593Smuzhiyun THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
15*4882a593Smuzhiyun OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
16*4882a593Smuzhiyun MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
17*4882a593Smuzhiyun IN NO EVENT SHALL THE OPEN GROUP BE LIABLE FOR ANY CLAIM, DAMAGES OR
18*4882a593Smuzhiyun OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE,
19*4882a593Smuzhiyun ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR
20*4882a593Smuzhiyun OTHER DEALINGS IN THE SOFTWARE.
21*4882a593Smuzhiyun 
22*4882a593Smuzhiyun Except as contained in this notice, the name of The Open Group shall
23*4882a593Smuzhiyun not be used in advertising or otherwise to promote the sale, use or
24*4882a593Smuzhiyun other dealings in this Software without prior written authorization
25*4882a593Smuzhiyun from The Open Group.
26*4882a593Smuzhiyun 
27*4882a593Smuzhiyun */
28*4882a593Smuzhiyun 
29*4882a593Smuzhiyun /*
30*4882a593Smuzhiyun  * MIT-MAGIC-COOKIE-1 authorization scheme
31*4882a593Smuzhiyun  * Author:  Keith Packard, MIT X Consortium
32*4882a593Smuzhiyun  */
33*4882a593Smuzhiyun 
34*4882a593Smuzhiyun #ifdef HAVE_DIX_CONFIG_H
35*4882a593Smuzhiyun #include <dix-config.h>
36*4882a593Smuzhiyun #endif
37*4882a593Smuzhiyun 
38*4882a593Smuzhiyun #include <X11/X.h>
39*4882a593Smuzhiyun #include "os.h"
40*4882a593Smuzhiyun #include "osdep.h"
41*4882a593Smuzhiyun #include "dixstruct.h"
42*4882a593Smuzhiyun 
43*4882a593Smuzhiyun static struct auth {
44*4882a593Smuzhiyun     struct auth *next;
45*4882a593Smuzhiyun     unsigned short len;
46*4882a593Smuzhiyun     char *data;
47*4882a593Smuzhiyun     XID id;
48*4882a593Smuzhiyun } *mit_auth;
49*4882a593Smuzhiyun 
50*4882a593Smuzhiyun int
MitAddCookie(unsigned short data_length,const char * data,XID id)51*4882a593Smuzhiyun MitAddCookie(unsigned short data_length, const char *data, XID id)
52*4882a593Smuzhiyun {
53*4882a593Smuzhiyun     struct auth *new;
54*4882a593Smuzhiyun 
55*4882a593Smuzhiyun     new = malloc(sizeof(struct auth));
56*4882a593Smuzhiyun     if (!new)
57*4882a593Smuzhiyun         return 0;
58*4882a593Smuzhiyun     new->data = malloc((unsigned) data_length);
59*4882a593Smuzhiyun     if (!new->data) {
60*4882a593Smuzhiyun         free(new);
61*4882a593Smuzhiyun         return 0;
62*4882a593Smuzhiyun     }
63*4882a593Smuzhiyun     new->next = mit_auth;
64*4882a593Smuzhiyun     mit_auth = new;
65*4882a593Smuzhiyun     memmove(new->data, data, (int) data_length);
66*4882a593Smuzhiyun     new->len = data_length;
67*4882a593Smuzhiyun     new->id = id;
68*4882a593Smuzhiyun     return 1;
69*4882a593Smuzhiyun }
70*4882a593Smuzhiyun 
71*4882a593Smuzhiyun XID
MitCheckCookie(unsigned short data_length,const char * data,ClientPtr client,const char ** reason)72*4882a593Smuzhiyun MitCheckCookie(unsigned short data_length,
73*4882a593Smuzhiyun                const char *data, ClientPtr client, const char **reason)
74*4882a593Smuzhiyun {
75*4882a593Smuzhiyun     struct auth *auth;
76*4882a593Smuzhiyun 
77*4882a593Smuzhiyun     for (auth = mit_auth; auth; auth = auth->next) {
78*4882a593Smuzhiyun         if (data_length == auth->len &&
79*4882a593Smuzhiyun             timingsafe_memcmp(data, auth->data, (int) data_length) == 0)
80*4882a593Smuzhiyun             return auth->id;
81*4882a593Smuzhiyun     }
82*4882a593Smuzhiyun     *reason = "Invalid MIT-MAGIC-COOKIE-1 key";
83*4882a593Smuzhiyun     return (XID) -1;
84*4882a593Smuzhiyun }
85*4882a593Smuzhiyun 
86*4882a593Smuzhiyun int
MitResetCookie(void)87*4882a593Smuzhiyun MitResetCookie(void)
88*4882a593Smuzhiyun {
89*4882a593Smuzhiyun     struct auth *auth, *next;
90*4882a593Smuzhiyun 
91*4882a593Smuzhiyun     for (auth = mit_auth; auth; auth = next) {
92*4882a593Smuzhiyun         next = auth->next;
93*4882a593Smuzhiyun         free(auth->data);
94*4882a593Smuzhiyun         free(auth);
95*4882a593Smuzhiyun     }
96*4882a593Smuzhiyun     mit_auth = 0;
97*4882a593Smuzhiyun     return 0;
98*4882a593Smuzhiyun }
99*4882a593Smuzhiyun 
100*4882a593Smuzhiyun int
MitFromID(XID id,unsigned short * data_lenp,char ** datap)101*4882a593Smuzhiyun MitFromID(XID id, unsigned short *data_lenp, char **datap)
102*4882a593Smuzhiyun {
103*4882a593Smuzhiyun     struct auth *auth;
104*4882a593Smuzhiyun 
105*4882a593Smuzhiyun     for (auth = mit_auth; auth; auth = auth->next) {
106*4882a593Smuzhiyun         if (id == auth->id) {
107*4882a593Smuzhiyun             *data_lenp = auth->len;
108*4882a593Smuzhiyun             *datap = auth->data;
109*4882a593Smuzhiyun             return 1;
110*4882a593Smuzhiyun         }
111*4882a593Smuzhiyun     }
112*4882a593Smuzhiyun     return 0;
113*4882a593Smuzhiyun }
114*4882a593Smuzhiyun 
115*4882a593Smuzhiyun int
MitRemoveCookie(unsigned short data_length,const char * data)116*4882a593Smuzhiyun MitRemoveCookie(unsigned short data_length, const char *data)
117*4882a593Smuzhiyun {
118*4882a593Smuzhiyun     struct auth *auth, *prev;
119*4882a593Smuzhiyun 
120*4882a593Smuzhiyun     prev = 0;
121*4882a593Smuzhiyun     for (auth = mit_auth; auth; prev = auth, auth = auth->next) {
122*4882a593Smuzhiyun         if (data_length == auth->len &&
123*4882a593Smuzhiyun             memcmp(data, auth->data, data_length) == 0) {
124*4882a593Smuzhiyun             if (prev)
125*4882a593Smuzhiyun                 prev->next = auth->next;
126*4882a593Smuzhiyun             else
127*4882a593Smuzhiyun                 mit_auth = auth->next;
128*4882a593Smuzhiyun             free(auth->data);
129*4882a593Smuzhiyun             free(auth);
130*4882a593Smuzhiyun             return 1;
131*4882a593Smuzhiyun         }
132*4882a593Smuzhiyun     }
133*4882a593Smuzhiyun     return 0;
134*4882a593Smuzhiyun }
135*4882a593Smuzhiyun 
136*4882a593Smuzhiyun static char cookie[16];         /* 128 bits */
137*4882a593Smuzhiyun 
138*4882a593Smuzhiyun XID
MitGenerateCookie(unsigned data_length,const char * data,XID id,unsigned * data_length_return,char ** data_return)139*4882a593Smuzhiyun MitGenerateCookie(unsigned data_length,
140*4882a593Smuzhiyun                   const char *data,
141*4882a593Smuzhiyun                   XID id, unsigned *data_length_return, char **data_return)
142*4882a593Smuzhiyun {
143*4882a593Smuzhiyun     int i = 0;
144*4882a593Smuzhiyun     int status;
145*4882a593Smuzhiyun 
146*4882a593Smuzhiyun     while (data_length--) {
147*4882a593Smuzhiyun         cookie[i++] += *data++;
148*4882a593Smuzhiyun         if (i >= sizeof(cookie))
149*4882a593Smuzhiyun             i = 0;
150*4882a593Smuzhiyun     }
151*4882a593Smuzhiyun     GenerateRandomData(sizeof(cookie), cookie);
152*4882a593Smuzhiyun     status = MitAddCookie(sizeof(cookie), cookie, id);
153*4882a593Smuzhiyun     if (!status) {
154*4882a593Smuzhiyun         id = -1;
155*4882a593Smuzhiyun     }
156*4882a593Smuzhiyun     else {
157*4882a593Smuzhiyun         *data_return = cookie;
158*4882a593Smuzhiyun         *data_length_return = sizeof(cookie);
159*4882a593Smuzhiyun     }
160*4882a593Smuzhiyun     return id;
161*4882a593Smuzhiyun }
162