1 line
31 KiB
C
1 line
31 KiB
C
|
/* Copyright (c) 2017, Computer History Museum
All rights reserved.
Redistribution and use in source and binary forms, with or without modification, are permitted (subject to
the limitations in the disclaimer below) provided that the following conditions are met:
* Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
* Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following
disclaimer in the documentation and/or other materials provided with the distribution.
* Neither the name of Computer History Museum nor the names of its contributors may be used to endorse or promote products
derived from this software without specific prior written permission.
NO EXPRESS OR IMPLIED LICENSES TO ANY PARTY'S PATENT RIGHTS ARE GRANTED BY THIS LICENSE. THIS SOFTWARE IS PROVIDED BY THE
COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH
DAMAGE. */
/* Copyright (c) 1999 by QUALCOMM Incorporated */
#define FILE_NUM 120
/**********************************************************************
* imapauth.c
*
* This file contains the functions needed to do IMAP authentication.
*
*
* Currently Supported:
*
* CRAM-MD5
* KERBEROS_V4
* GSSAPI (Kerberos V5)
**********************************************************************/
#include "imapauth.h"
/**********************************************************************
* CRAM-MD5
*
* These routines taken straight from the windows code with only minor
* modifications. Thanks JOK!
**********************************************************************/
#pragma mark ~~~CRAM_MD5~~~
unsigned char * GetStamp(unsigned char * stamp,unsigned char * banner);
int produce_hmac(unsigned char* text,unsigned char* key ,char* digest);
/**********************************************************************
* CramMD5Authenticator
*
* Implement the CRAM-MD5 authenticator. This is called by imap_auth.
* It uses "challenger" to get the latest challenge the challenger
* ( the IMAP server in the case of IMAP), and "responnder" to send the
* response.
*
**********************************************************************/
long CramMD5Authenticator (authchallenge_t challenger, authrespond_t responder, NETMBX *mb, void *s, unsigned long *trial, char *user)
{
MAILSTREAM *stream = (MAILSTREAM *) s;
char tmp[MAILTMPLEN];
unsigned char szDigest[1024];
unsigned long len;
unsigned char *pChallenge = NULL;
long ret = NIL;
unsigned char dlen;
unsigned char i;
// Sanity:
if (! (challenger && responder && mb && s && trial && user) )
{
ASSERT (0);
return NIL;
}
//
// This authenticator uses a login password. The caller manages the
// number of allowed trials. Here, we simply, (and always), get the password
// and do the CRAM-MD5 thing.
//
tmp[0] = 0; /* get password in this */
//
// JOK - Call back to upper layers. to get user and password.
//
mm_login (mb, user, tmp, *trial);
//
// Must have both a user and a password.
//
if (! (tmp[0] && user[0]) )
{
//
// user refused to give a password
//
// Don't allow any more trials.
*trial = MAXLOGINTRIALS + 1;
mm_log ("CRAM-MD5 authenticator aborted", IMAP_ERROR);
return NIL;
}
//
// Get the first ready response.
//
len = 0;
pChallenge = (unsigned char *)(*challenger) (stream, &len);
//
|