description: RPA authorisation code for POP3 client
The sole entry point is POP3_auth_rpa()
+
+ For license terms, see the file COPYING in this directory.
+
***********************************************************************/
#include "config.h"
#if defined(POP3_ENABLE) && defined(RPA_ENABLE)
#include <stdio.h>
+#include <stdlib.h>
#include <unistd.h>
#include <ctype.h>
-#include <string.h>
+#include <string.h>
#include "socket.h"
#include "fetchmail.h"
if ((rxlen = DecBase64(buf)) == 0)
{
if (outlevel > O_SILENT)
- report(stderr, _("RPA token 2: Base64 decode error\n"));
+ report(stderr, GT_("RPA token 2: Base64 decode error\n"));
return(PS_RPA);
}
bufp = buf;
verh = *(bufp++); verl = *(bufp++);
if (outlevel >= O_DEBUG)
- report(stdout, _("Service chose RPA version %d.%d\n"),verh,verl);
+ report(stdout, GT_("Service chose RPA version %d.%d\n"),verh,verl);
Csl = *(bufp++);
memcpy(Cs, bufp, Csl);
bufp += Csl;
if (outlevel >= O_DEBUG)
{
- report(stdout, _("Service challenge (l=%d):\n"),Csl);
+ report(stdout, GT_("Service challenge (l=%d):\n"),Csl);
for (i=0; i<Csl; i++)
report_build(stdout, "%02X ",Cs[i]);
report_complete(stdout, "\n");
Ts[Tsl] = 0;
bufp += Tsl;
if (outlevel >= O_DEBUG)
- report(stdout, _("Service timestamp %s\n"),Ts);
+ report(stdout, GT_("Service timestamp %s\n"),Ts);
rll = *(bufp++) << 8; rll = rll | *(bufp++);
if ((bufp-buf+rll) != rxlen)
{
if (outlevel > O_SILENT)
- report(stderr, _("RPA token 2 length error\n"));
+ report(stderr, GT_("RPA token 2 length error\n"));
return(PS_RPA);
}
if (outlevel >= O_DEBUG)
- report(stdout, _("Realm list: %s\n"),bufp);
+ report(stdout, GT_("Realm list: %s\n"),bufp);
if (SetRealmService(bufp) != 0)
{
if (outlevel > O_SILENT)
- report(stderr, _("RPA error in service@realm string\n"));
+ report(stderr, GT_("RPA error in service@realm string\n"));
return(PS_RPA);
}
if ((rxlen = DecBase64(buf)) == 0)
{
if (outlevel > O_SILENT)
- report(stderr, _("RPA token 4: Base64 decode error\n"));
+ report(stderr, GT_("RPA token 4: Base64 decode error\n"));
return(PS_RPA);
}
bufp = buf;
aulin = *(bufp++);
if (outlevel >= O_DEBUG)
{
- report(stdout, _("User authentication (l=%d):\n"),aulin);
+ report(stdout, GT_("User authentication (l=%d):\n"),aulin);
for (i=0; i<aulin; i++)
report_build(stdout, "%02X ",bufp[i]);
report_complete(stdout, "\n");
{
status = *(bufp++);
if (outlevel >= O_DEBUG)
- report(stdout, _("RPA status: %02X\n"),status);
+ report(stdout, GT_("RPA status: %02X\n"),status);
}
else status = 0;
if ((bufp - buf) != rxlen)
{
if (outlevel > O_SILENT)
- report(stderr, _("RPA token 4 length error\n"));
+ report(stderr, GT_("RPA token 4 length error\n"));
return(PS_RPA);
}
if (status != 0)
{
- if (outlevel > O_SILENT)
- if (status < 4)
- report(stderr, _("RPA rejects you: %s\n"),_(stdec[status]));
- else
- report(stderr, _("RPA rejects you, reason unknown\n"));
+ if (outlevel > O_SILENT) {
+ if (status < 4) {
+ report(stderr, GT_("RPA rejects you: %s\n"),GT_(stdec[status]));
+ } else {
+ report(stderr, GT_("RPA rejects you, reason unknown\n"));
+ }
+ }
return(PS_AUTHFAIL);
}
if (Aul != aulin)
{
report(stderr,
- _("RPA User Authentication length error: %d\n"),aulin);
+ GT_("RPA User Authentication length error: %d\n"),aulin);
return(PS_RPA);
}
if (Kusl != kuslin)
{
- report(stderr, _("RPA Session key length error: %d\n"),kuslin);
+ report(stderr, GT_("RPA Session key length error: %d\n"),kuslin);
return(PS_RPA);
}
if (CheckUserAuth() != 0)
{
if (outlevel > O_SILENT)
- report(stderr, _("RPA _service_ auth fail. Spoof server?\n"));
+ report(stderr, GT_("RPA _service_ auth fail. Spoof server?\n"));
return(PS_AUTHFAIL);
}
if (outlevel >= O_DEBUG)
{
- report(stdout, _("Session key established:\n"));
+ report(stdout, GT_("Session key established:\n"));
for (i=0; i<Kusl; i++)
report_build(stdout, "%02X ",Kus[i]);
report_complete(stdout, "\n");
}
if (outlevel > O_SILENT)
- report(stdout, _("RPA authorisation complete\n"));
+ report(stdout, GT_("RPA authorisation complete\n"));
return(PS_SUCCESS);
}
int sockrc;
if (outlevel >= O_DEBUG)
- report(stdout, _("Get response\n"));
+ report(stdout, GT_("Get response\n"));
#ifndef TESTMODE
sockrc = gen_recv(socket, buf, sizeof(buf));
#else
else
ok = PS_SOCKET;
if (outlevel >= O_DEBUG)
- report(stdout, _("Get response return %d [%s]\n"), ok, buf);
+ report(stdout, GT_("Get response return %d [%s]\n"), ok, buf);
buf[sockrc] = 0;
return(ok);
}
if (**pptr != HDR)
{
if (outlevel > O_SILENT)
- report(stderr, _("Hdr not 60\n"));
+ report(stderr, GT_("Hdr not 60\n"));
return(0);
}
(*pptr)++;
if (len==0)
{
if (outlevel>O_SILENT)
- report(stderr, _("Token length error\n"));
+ report(stderr, GT_("Token length error\n"));
}
else if (((*pptr-save)+len) != rxlen)
{
if (outlevel>O_SILENT)
- report(stderr, _("Token Length %d disagrees with rxlen %d\n"),len,rxlen);
+ report(stderr, GT_("Token Length %d disagrees with rxlen %d\n"),len,rxlen);
len = 0;
}
else if (memcmp(*pptr,MECH,11))
{
if (outlevel > O_SILENT)
- report(stderr, _("Mechanism field incorrect\n"));
+ report(stderr, GT_("Mechanism field incorrect\n"));
len = 0;
}
else (*pptr) += 11; /* Skip mechanism field */
else if ( ch=='+' ) new = 62;
else if ( ch=='/' ) new = 63;
else {
- report(stderr, _("dec64 error at char %d: %x\n"), inp - bufp, ch);
+ report(stderr, GT_("dec64 error at char %d: %x\n"), inp - bufp, ch);
return(0);
}
part=((part & 0x3F)*64) + new;
}
if (outlevel >= O_MONITOR)
{
- report(stdout, _("Inbound binary data:\n"));
+ report(stdout, GT_("Inbound binary data:\n"));
for (i=0; i<cnt; i++)
{
report_build(stdout, "%02X ",bufp[i]);
if (outlevel >= O_MONITOR)
{
- report(stdout, _("Outbound data:\n"));
+ report(stdout, GT_("Outbound data:\n"));
for (i=0; i<len; i++)
{
report_build(stdout, "%02X ",bufp[i]);
globals: reads outlevel;
*********************************************************************/
-static void ToUnicode(pptr,delim,buf,plen,conv)
-unsigned char **pptr; /* input string */
-unsigned char delim;
-unsigned char *buf; /* output buffer */
-int *plen;
-int conv;
+static void ToUnicode(unsigned char **pptr /* input string*/,
+ unsigned char delim, unsigned char *buf /* output buffer */,
+ int *plen, int conv)
{
unsigned char *p;
int i;
if ( ((**pptr)!=delim) && ((**pptr)!=0) && ((*plen)==STRMAX) )
{
if (outlevel > O_SILENT)
- report(stderr, _("RPA String too long\n"));
+ report(stderr, GT_("RPA String too long\n"));
*plen = 0;
}
if (outlevel >= O_DEBUG)
{
- report(stdout, _("Unicode:\n"));
+ report(stdout, GT_("Unicode:\n"));
for (i=0; i<(*plen); i++)
{
report_build(stdout, "%02X ",buf[i]);
writes Ns Nsl Nr Nrl
*********************************************************************/
-static int SetRealmService(bufp)
-unsigned char* bufp;
+static int SetRealmService(unsigned char *bufp)
{
/* For the moment we pick the first available realm. It would */
/* make more sense to verify that the realm which the user */
reads /dev/random
*********************************************************************/
-static void GenChallenge(buf,len)
-unsigned char *buf;
-int len;
+static void GenChallenge(unsigned char *buf, int len)
{
int i;
FILE *devrandom;
devrandom = fopen("/dev/urandom","rb");
if (devrandom == NULL && outlevel > O_SILENT)
{
- report(stdout, _("RPA Failed open of /dev/urandom. This shouldn't\n"));
- report(stdout, _(" prevent you logging in, but means you\n"));
- report(stdout, _(" cannot be sure you are talking to the\n"));
- report(stdout, _(" service that you think you are (replay\n"));
- report(stdout, _(" attacks by a dishonest service are possible.)\n"));
+ report(stdout, GT_("RPA Failed open of /dev/urandom. This shouldn't\n"));
+ report(stdout, GT_(" prevent you logging in, but means you\n"));
+ report(stdout, GT_(" cannot be sure you are talking to the\n"));
+ report(stdout, GT_(" service that you think you are (replay\n"));
+ report(stdout, GT_(" attacks by a dishonest service are possible.)\n"));
}
for(i=0; i<len; i++)
buf[i] = devrandom ? fgetc(devrandom) : random();
if (devrandom)
- fclose(devrandom);
+ fclose(devrandom); /* should be safe, file mode was "r" */
if (outlevel >= O_DEBUG)
{
- report(stdout, _("User challenge:\n"));
+ report(stdout, GT_("User challenge:\n"));
for (i=0; i<len; i++)
{
report_build(stdout, "%02X ",buf[i]);
writes Pu.
*********************************************************************/
-static int DigestPassphrase(passphrase,rbuf,unicodeit)
-unsigned char *passphrase;
-unsigned char *rbuf;
-int unicodeit;
+static int DigestPassphrase(unsigned char *passphrase,unsigned char *rbuf,
+ int unicodeit)
{
int len;
unsigned char workarea[STRMAX];
writes Ru.
*********************************************************************/
-static void CompUserResp()
+static void CompUserResp(void)
{
unsigned char workarea[Pul+48+STRMAX*5+Tsl+Pul];
unsigned char* p;
writes Ru.
*********************************************************************/
-static int CheckUserAuth()
+static int CheckUserAuth(void)
{
unsigned char workarea[Pul+48+STRMAX*7+Tsl+Pul];
unsigned char* p;
globals: reads outlevel
*********************************************************************/
-static void md5(in,len,out)
-unsigned char* in;
-int len;
-unsigned char* out;
+static void md5(unsigned char *in,int len,unsigned char *out)
{
int i;
MD5_CTX md5context;
if (outlevel >= O_DEBUG)
{
- report(stdout, _("MD5 being applied to data block:\n"));
+ report(stdout, GT_("MD5 being applied to data block:\n"));
for (i=0; i<len; i++)
{
report_build(stdout, "%02X ",in[i]);
MD5Final( out, &md5context );
if (outlevel >= O_DEBUG)
{
- report(stdout, _("MD5 result is: \n"));
+ report(stdout, GT_("MD5 result is: \n"));
for (i=0; i<16; i++)
{
report_build(stdout, "%02X ",out[i]);
projects / ~andy / fetchmail / blobdiff