Annotation of embedaddon/curl/lib/curl_sspi.c, revision 1.1
1.1 ! misho 1: /***************************************************************************
! 2: * _ _ ____ _
! 3: * Project ___| | | | _ \| |
! 4: * / __| | | | |_) | |
! 5: * | (__| |_| | _ <| |___
! 6: * \___|\___/|_| \_\_____|
! 7: *
! 8: * Copyright (C) 1998 - 2019, Daniel Stenberg, <daniel@haxx.se>, et al.
! 9: *
! 10: * This software is licensed as described in the file COPYING, which
! 11: * you should have received as part of this distribution. The terms
! 12: * are also available at https://curl.haxx.se/docs/copyright.html.
! 13: *
! 14: * You may opt to use, copy, modify, merge, publish, distribute and/or sell
! 15: * copies of the Software, and permit persons to whom the Software is
! 16: * furnished to do so, under the terms of the COPYING file.
! 17: *
! 18: * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
! 19: * KIND, either express or implied.
! 20: *
! 21: ***************************************************************************/
! 22:
! 23: #include "curl_setup.h"
! 24:
! 25: #ifdef USE_WINDOWS_SSPI
! 26:
! 27: #include <curl/curl.h>
! 28: #include "curl_sspi.h"
! 29: #include "curl_multibyte.h"
! 30: #include "system_win32.h"
! 31: #include "warnless.h"
! 32:
! 33: /* The last #include files should be: */
! 34: #include "curl_memory.h"
! 35: #include "memdebug.h"
! 36:
! 37: /* We use our own typedef here since some headers might lack these */
! 38: typedef PSecurityFunctionTable (APIENTRY *INITSECURITYINTERFACE_FN)(VOID);
! 39:
! 40: /* See definition of SECURITY_ENTRYPOINT in sspi.h */
! 41: #ifdef UNICODE
! 42: # ifdef _WIN32_WCE
! 43: # define SECURITYENTRYPOINT L"InitSecurityInterfaceW"
! 44: # else
! 45: # define SECURITYENTRYPOINT "InitSecurityInterfaceW"
! 46: # endif
! 47: #else
! 48: # define SECURITYENTRYPOINT "InitSecurityInterfaceA"
! 49: #endif
! 50:
! 51: /* Handle of security.dll or secur32.dll, depending on Windows version */
! 52: HMODULE s_hSecDll = NULL;
! 53:
! 54: /* Pointer to SSPI dispatch table */
! 55: PSecurityFunctionTable s_pSecFn = NULL;
! 56:
! 57: /*
! 58: * Curl_sspi_global_init()
! 59: *
! 60: * This is used to load the Security Service Provider Interface (SSPI)
! 61: * dynamic link library portably across all Windows versions, without
! 62: * the need to directly link libcurl, nor the application using it, at
! 63: * build time.
! 64: *
! 65: * Once this function has been executed, Windows SSPI functions can be
! 66: * called through the Security Service Provider Interface dispatch table.
! 67: *
! 68: * Parameters:
! 69: *
! 70: * None.
! 71: *
! 72: * Returns CURLE_OK on success.
! 73: */
! 74: CURLcode Curl_sspi_global_init(void)
! 75: {
! 76: INITSECURITYINTERFACE_FN pInitSecurityInterface;
! 77:
! 78: /* If security interface is not yet initialized try to do this */
! 79: if(!s_hSecDll) {
! 80: /* Security Service Provider Interface (SSPI) functions are located in
! 81: * security.dll on WinNT 4.0 and in secur32.dll on Win9x. Win2K and XP
! 82: * have both these DLLs (security.dll forwards calls to secur32.dll) */
! 83:
! 84: /* Load SSPI dll into the address space of the calling process */
! 85: if(Curl_verify_windows_version(4, 0, PLATFORM_WINNT, VERSION_EQUAL))
! 86: s_hSecDll = Curl_load_library(TEXT("security.dll"));
! 87: else
! 88: s_hSecDll = Curl_load_library(TEXT("secur32.dll"));
! 89: if(!s_hSecDll)
! 90: return CURLE_FAILED_INIT;
! 91:
! 92: /* Get address of the InitSecurityInterfaceA function from the SSPI dll */
! 93: pInitSecurityInterface =
! 94: CURLX_FUNCTION_CAST(INITSECURITYINTERFACE_FN,
! 95: (GetProcAddress(s_hSecDll, SECURITYENTRYPOINT)));
! 96: if(!pInitSecurityInterface)
! 97: return CURLE_FAILED_INIT;
! 98:
! 99: /* Get pointer to Security Service Provider Interface dispatch table */
! 100: s_pSecFn = pInitSecurityInterface();
! 101: if(!s_pSecFn)
! 102: return CURLE_FAILED_INIT;
! 103: }
! 104:
! 105: return CURLE_OK;
! 106: }
! 107:
! 108: /*
! 109: * Curl_sspi_global_cleanup()
! 110: *
! 111: * This deinitializes the Security Service Provider Interface from libcurl.
! 112: *
! 113: * Parameters:
! 114: *
! 115: * None.
! 116: */
! 117: void Curl_sspi_global_cleanup(void)
! 118: {
! 119: if(s_hSecDll) {
! 120: FreeLibrary(s_hSecDll);
! 121: s_hSecDll = NULL;
! 122: s_pSecFn = NULL;
! 123: }
! 124: }
! 125:
! 126: /*
! 127: * Curl_create_sspi_identity()
! 128: *
! 129: * This is used to populate a SSPI identity structure based on the supplied
! 130: * username and password.
! 131: *
! 132: * Parameters:
! 133: *
! 134: * userp [in] - The user name in the format User or Domain\User.
! 135: * passwdp [in] - The user's password.
! 136: * identity [in/out] - The identity structure.
! 137: *
! 138: * Returns CURLE_OK on success.
! 139: */
! 140: CURLcode Curl_create_sspi_identity(const char *userp, const char *passwdp,
! 141: SEC_WINNT_AUTH_IDENTITY *identity)
! 142: {
! 143: xcharp_u useranddomain;
! 144: xcharp_u user, dup_user;
! 145: xcharp_u domain, dup_domain;
! 146: xcharp_u passwd, dup_passwd;
! 147: size_t domlen = 0;
! 148:
! 149: domain.const_tchar_ptr = TEXT("");
! 150:
! 151: /* Initialize the identity */
! 152: memset(identity, 0, sizeof(*identity));
! 153:
! 154: useranddomain.tchar_ptr = Curl_convert_UTF8_to_tchar((char *)userp);
! 155: if(!useranddomain.tchar_ptr)
! 156: return CURLE_OUT_OF_MEMORY;
! 157:
! 158: user.const_tchar_ptr = _tcschr(useranddomain.const_tchar_ptr, TEXT('\\'));
! 159: if(!user.const_tchar_ptr)
! 160: user.const_tchar_ptr = _tcschr(useranddomain.const_tchar_ptr, TEXT('/'));
! 161:
! 162: if(user.tchar_ptr) {
! 163: domain.tchar_ptr = useranddomain.tchar_ptr;
! 164: domlen = user.tchar_ptr - useranddomain.tchar_ptr;
! 165: user.tchar_ptr++;
! 166: }
! 167: else {
! 168: user.tchar_ptr = useranddomain.tchar_ptr;
! 169: domain.const_tchar_ptr = TEXT("");
! 170: domlen = 0;
! 171: }
! 172:
! 173: /* Setup the identity's user and length */
! 174: dup_user.tchar_ptr = _tcsdup(user.tchar_ptr);
! 175: if(!dup_user.tchar_ptr) {
! 176: Curl_unicodefree(useranddomain.tchar_ptr);
! 177: return CURLE_OUT_OF_MEMORY;
! 178: }
! 179: identity->User = dup_user.tbyte_ptr;
! 180: identity->UserLength = curlx_uztoul(_tcslen(dup_user.tchar_ptr));
! 181: dup_user.tchar_ptr = NULL;
! 182:
! 183: /* Setup the identity's domain and length */
! 184: dup_domain.tchar_ptr = malloc(sizeof(TCHAR) * (domlen + 1));
! 185: if(!dup_domain.tchar_ptr) {
! 186: Curl_unicodefree(useranddomain.tchar_ptr);
! 187: return CURLE_OUT_OF_MEMORY;
! 188: }
! 189: _tcsncpy(dup_domain.tchar_ptr, domain.tchar_ptr, domlen);
! 190: *(dup_domain.tchar_ptr + domlen) = TEXT('\0');
! 191: identity->Domain = dup_domain.tbyte_ptr;
! 192: identity->DomainLength = curlx_uztoul(domlen);
! 193: dup_domain.tchar_ptr = NULL;
! 194:
! 195: Curl_unicodefree(useranddomain.tchar_ptr);
! 196:
! 197: /* Setup the identity's password and length */
! 198: passwd.tchar_ptr = Curl_convert_UTF8_to_tchar((char *)passwdp);
! 199: if(!passwd.tchar_ptr)
! 200: return CURLE_OUT_OF_MEMORY;
! 201: dup_passwd.tchar_ptr = _tcsdup(passwd.tchar_ptr);
! 202: if(!dup_passwd.tchar_ptr) {
! 203: Curl_unicodefree(passwd.tchar_ptr);
! 204: return CURLE_OUT_OF_MEMORY;
! 205: }
! 206: identity->Password = dup_passwd.tbyte_ptr;
! 207: identity->PasswordLength = curlx_uztoul(_tcslen(dup_passwd.tchar_ptr));
! 208: dup_passwd.tchar_ptr = NULL;
! 209:
! 210: Curl_unicodefree(passwd.tchar_ptr);
! 211:
! 212: /* Setup the identity's flags */
! 213: identity->Flags = SECFLAG_WINNT_AUTH_IDENTITY;
! 214:
! 215: return CURLE_OK;
! 216: }
! 217:
! 218: /*
! 219: * Curl_sspi_free_identity()
! 220: *
! 221: * This is used to free the contents of a SSPI identifier structure.
! 222: *
! 223: * Parameters:
! 224: *
! 225: * identity [in/out] - The identity structure.
! 226: */
! 227: void Curl_sspi_free_identity(SEC_WINNT_AUTH_IDENTITY *identity)
! 228: {
! 229: if(identity) {
! 230: Curl_safefree(identity->User);
! 231: Curl_safefree(identity->Password);
! 232: Curl_safefree(identity->Domain);
! 233: }
! 234: }
! 235:
! 236: #endif /* USE_WINDOWS_SSPI */
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/cvsweb/back.gif){kind=icon}
Return to curl_sspi.c CVS log ![[TXT]](/icons/cvsweb/text.gif){kind=icon}
![[DIR]](/icons/cvsweb/dir.gif){kind=icon}
Up to [ELWIX - Embedded LightWeight unIX -] / embedaddon / curl / lib