/** \file auth.c \brief functions for SMTP AUTH */ #include #include #include #include #include #include #include #include #include #include #include #include "qsmtpd.h" #include "sstring.h" #include "netio.h" #include "base64.h" #include "log.h" #include "tls.h" #include "control.h" #include "qsauth.h" static const char tempnoauth[] = "454 4.3.0 AUTH temporaryly not available\r\n"; static int err_child(void) { log_write(LOG_ERR, "auth child crashed"); if (!netwrite(tempnoauth)) errno = EDONE; return -1; } static int err_fork(void) { log_write(LOG_ERR, "cannot fork auth"); if (!netwrite(tempnoauth)) errno = EDONE; return -1; } static int err_pipe(void) { log_write(LOG_ERR, "cannot create pipe for authentication"); if (!netwrite(tempnoauth)) errno = EDONE; return -1; } static int err_write(void) { log_write(LOG_ERR, "pipe error while authenticating"); if (!netwrite(tempnoauth)) errno = EDONE; return -1; } static int err_authabrt(void) { return netwrite("501 5.0.0 auth exchange cancelled\r\n") ? errno : EDONE; } static int err_input(void) { if (!netwrite("501 5.5.4 malformed auth input\r\n")) errno = EDONE; return -1; } static string authin; static string user; static string pass; static string resp; static int authgetl(void) { int i; STREMPTY(authin); do { char *s; /* to avoid calling realloc for every byte we alloc and * read in chunks of 64 byte */ s = realloc(authin.s, authin.len + 64); if (!s) { free(authin.s); return -1; } authin.s = s; /* read the next 64 bytes */ i = net_readline(64, authin.s + authin.len); if (i < 0) { free(authin.s); return -1; } authin.len += i; } while (authin.s[authin.len - 1] != '\n'); if (--authin.len) { if (authin.s[authin.len - 1] == '\r') --authin.len; if ((authin.len == 1) && (*authin.s == '*')) { free(authin.s); errno = err_authabrt(); return -1; } authin.s[authin.len] = '\0'; } if (authin.len == 0) { free(authin.s); return err_input(); } return authin.len; } #define WRITE(a,b) if (write(pi[1], (a), (b)) < 0) { fun = err_write; goto out; } static int authenticate(void) { pid_t child; int wstat; int pi[2]; struct sigaction sa; int (*fun)(void) = NULL; if (pipe(pi) == -1) { fun = err_pipe; goto out; } switch(child = fork_clean()) { case -1: memset(pass.s, 0, pass.len); free(pass.s); free(user.s); free(resp.s); return err_fork(); case 0: while (close(pi[1])) { if (errno != EINTR) _exit(1); } if (pi[0] != 3) { if (dup2(pi[0],3) < 0) { _exit(1); } } memset(pass.s, 0, pass.len); free(pass.s); free(user.s); free(resp.s); memset(&sa, 0, sizeof(sa)); sa.sa_handler = SIG_DFL; sigemptyset(&(sa.sa_mask)); sigaction(SIGPIPE, &sa, NULL); execlp(auth_check, auth_check, *auth_sub, NULL); _exit(1); } while (close(pi[0])) { if (errno != EINTR) goto out; } WRITE(user.s, user.len + 1); WRITE(pass.s, pass.len + 1); /* make sure not to leak password */ memset(pass.s, 0, pass.len); free(pass.s); STREMPTY(pass); WRITE(resp.s, resp.len); WRITE("", 1); free(resp.s); STREMPTY(resp); while (close(pi[1])) { if (errno != EINTR) goto out; } while (waitpid(child, &wstat, 0) == -1) { if (errno != EINTR) { fun = err_child; goto out; } } if (!WIFEXITED(wstat)) { fun = err_child; goto out; } if (WEXITSTATUS(wstat)) { free(user.s); sleep(5); return 1; } /* no */ out: /* make sure not to leak password */ memset(pass.s, 0, pass.len); free(pass.s); free(resp.s); if (fun) { /* only free user.s here, it will be copied to * xmitstat.authname.s on success */ free(user.s); return fun(); } return 0; /* yes */ } static int auth_login(void) { int r; if (linelen > 11) { if ( (r = b64decode(linein + 11, linelen - 11, &user)) > 0) return err_input(); } else { if (netwrite("334 VXNlcm5hbWU6\r\n")) /* Username: */ return -1; if (authgetl() < 0) return -1; r = b64decode(authin.s, authin.len, &user); free(authin.s); if (r > 0) goto err_input; } if (r < 0) return r; if (netwrite("334 UGFzc3dvcmQ6\r\n")) /* Password: */ goto err; if (authgetl() < 0) goto err; r = b64decode(authin.s, authin.len, &pass); memset(authin.s, 0, authin.len); free(authin.s); if (r > 0) { goto err_input; } else if (r < 0) { goto err; } if (!user.len || !pass.len) goto err; return authenticate(); err_input: err_input(); err: free(user.s); memset(pass.s, 0, pass.len); free(pass.s); return -1; } static int auth_plain(void) { int r; unsigned int id = 0; string slop; STREMPTY(slop); if (linelen > 11) { if ( (r = b64decode(linein + 11, linelen - 11, &slop) > 0)) return err_input(); } else { if ((r = netwrite("334 \r\n"))) return r; if ((r = authgetl()) < 0) return r; r = b64decode(authin.s, authin.len, &slop); free(authin.s); if (r > 0) return err_input(); } if (r < 0) { return r; } while (slop.s[id]) id++; /* ignore authorize-id */ if (slop.len > id + 1) { char *s = slop.s + id + 1; /* one byte longer so we can also copy the trailing '\0' */ r = newstr(&user, strlen(s) + 1); if (r) goto err; memcpy(user.s, s, user.len); if (slop.len > id + user.len + 1) { s += user.len; r = newstr(&pass, strlen(s) + 1); if (r) goto err; memcpy(pass.s, s, pass.len); pass.len--; } user.len--; } if (!user.len || !pass.len) { memset(pass.s, 0, pass.len); free(pass.s); err_input(); goto err; } return authenticate(); err: free(user.s); free(slop.s); return -1; } #ifdef AUTHCRAM static int auth_cram(void) { int i, r; unsigned int k, l, m; char *s, t[ULSTRLEN]; const char *netmsg[] = { "334 ", NULL, NULL }; string slop; char unique[83]; ultostr(getpid(), t); m = strlen(t); memcpy(unique, t, m); unique[m++] = '.'; s = unique + m; ultostr(time(NULL), t); m = strlen(t); memcpy(s, t, m); s += m; *s++ = '@'; /* (s - unique) is strlen(unique) but faster (and unique is not '\0'-terminated here!) */ k = (s - unique); m = strlen(auth_host); /* '<' + unique + auth_host + '>'+ '\0' */ l = 1 + k + m + 1 + 1; if ( (r = newstr(&pass, l)) ) return r; pass.s[0] = '<'; memcpy(pass.s + 1, unique, k); memcpy(pass.s + 1 + k, auth_host, m); pass.s[1 + k + m] = '>'; pass.s[1 + k + m + 1] = '\0'; if (b64encode(&pass, &slop) < 0) goto err; netmsg[1] = slop.s; if (net_writen(netmsg)) goto err; free(slop.s); STREMPTY(slop); if (authgetl() < 0) goto err; r = b64decode(authin.s, authin.len, &slop); free(authin.s); if (r > 0) { err_input(); goto err; } else if (r < 0) { goto err; } s = strchr(slop.s, ' '); if (!s) { err_input(); goto err; } i = (s - slop.s); while (*s == ' ') s++; slop.s[i] = 0; if (newstr(&user, i)) goto err; k = strlen(s); if (newstr(&resp, k)) { free(user.s); goto err; } memcpy(user.s, slop.s, i + 1); memcpy(resp.s, s, k + 1); if (!user.len || !resp.len) { free(resp.s); err_input(); goto err; } free(slop.s); return authenticate(); err: memset(slop.s, 0, slop.len); free(slop.s); /* don't need to memset pass here: it contains only our random challenge */ free(pass.s); return -1; } #endif static struct authcmd { char *text; int (*fun)(void); } authcmds[] = { { .text = "login", .fun = auth_login }, { .text = "plain", .fun = auth_plain }, #ifdef AUTHCRAM { .text = "cram-md5", .fun = auth_cram }, #endif { .text = NULL,} }; /** * check if user sends valid authentication * * @return 0 if user is successfully authenticated, error code else */ int smtp_auth(void) { int i; char *type = linein + 5; if (xmitstat.authname.len || !auth_host || (sslauth && !ssl)) return 1; STREMPTY(user); STREMPTY(pass); STREMPTY(resp); for (i = 0; authcmds[i].text; i++) { if (!strncasecmp(authcmds[i].text, type, strlen(authcmds[i].text))) { switch (authcmds[i].fun()) { case 0: xmitstat.authname.s = user.s; xmitstat.authname.len = user.len; return netwrite("235 2.0.0 ok, go ahead\r\n") ? errno : 0; case 1: return netwrite("535 5.7.0 authorization failed\r\n") ? errno : EDONE; case -1: return errno; } } } return netwrite("504 5.5.1 Unrecognized authentication type.\r\n") ? errno : EDONE; } /** * return a list of all enabled auth types * * @return string of enabled auth types or NULL if out of memory */ char * smtp_authstring(void) { size_t conflen, slen, confpos, wpos; char *confbuf, *ret, *tmp; unsigned int i; uint8_t usedtype; /* make sure this is big enough to hold all auth types */ conflen = lloadfilefd(open("control/authtypes", O_RDONLY), &confbuf, 3); if (conflen == (size_t) -1) return NULL; i = 0; slen = 1; while (authcmds[i].text != NULL) { slen += strlen(authcmds[i].text) + 1; i++; } ret = malloc(slen); if (ret == NULL) { free(confbuf); return NULL; } if (conflen == 0) { wpos = 0; i = 0; while (authcmds[i].text != NULL) { ret[wpos++] = ' '; strcpy(ret + wpos, authcmds[i].text); wpos += strlen(authcmds[i].text); i++; } /* ret[0] is a space anyway */ while (wpos > 0) { ret[wpos] = toupper(ret[wpos]); wpos--; } return ret; } confpos = 0; usedtype = 0; wpos = 0; while (confpos < conflen) { int found = 0; i = 0; while (authcmds[i].text != NULL) { if (strcasecmp(authcmds[i].text, confbuf + confpos) == 0) { if (usedtype & (1 << i)) { const char *logmsg[] = {"error: duplicate auth type \"", confbuf + confpos, "\" found in control/authtypes\n", NULL}; log_writen(LOG_ERR, logmsg); found = 1; break; } found = 1; usedtype |= (1 << i); ret[wpos++] = ' '; strcpy(ret + wpos, authcmds[i].text); while (ret[wpos]) { ret[wpos] = toupper(ret[wpos]); wpos++; } break; } i++; } if (found == 0) { const char *logmsg[] = {"error: unknown auth type \"", confbuf + confpos, "\" found in control/authtypes\n", NULL}; log_writen(LOG_ERR, logmsg); } confpos += strlen(confbuf + confpos) + 1; } free(confbuf); if (wpos == 0) { free(ret); errno = ENOENT; return NULL; } tmp = realloc(ret, wpos + 1); if (tmp == NULL) return ret; else return tmp; }