2 * Copyright 2005, 2006 Kai Blin
4 * This library is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU Lesser General Public
6 * License as published by the Free Software Foundation; either
7 * version 2.1 of the License, or (at your option) any later version.
9 * This library is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
12 * Lesser General Public License for more details.
14 * You should have received a copy of the GNU Lesser General Public
15 * License along with this library; if not, write to the Free Software
16 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
18 * A dispatcher to run ntlm_auth for wine's sspi module.
27 #include <sys/types.h>
28 #ifdef HAVE_SYS_WAIT_H
37 #include "secur32_priv.h"
38 #include "wine/debug.h"
40 #define INITIAL_BUFFER_SIZE 200
42 WINE_DEFAULT_DEBUG_CHANNEL(ntlm
);
44 SECURITY_STATUS
fork_helper(PNegoHelper
*new_helper
, const char *prog
,
52 TRACE("%s ", debugstr_a(prog
));
53 for(i
= 0; argv
[i
] != NULL
; ++i
)
55 TRACE("%s ", debugstr_a(argv
[i
]));
59 if( pipe(pipe_in
) < 0 )
61 return SEC_E_INTERNAL_ERROR
;
63 if( pipe(pipe_out
) < 0 )
67 return SEC_E_INTERNAL_ERROR
;
69 if (!(helper
= HeapAlloc(GetProcessHeap(),0, sizeof(NegoHelper
))))
75 return SEC_E_INSUFFICIENT_MEMORY
;
78 helper
->helper_pid
= fork();
80 if(helper
->helper_pid
== -1)
86 HeapFree( GetProcessHeap(), 0, helper
);
87 return SEC_E_INTERNAL_ERROR
;
90 if(helper
->helper_pid
== 0)
92 /* We're in the child now */
106 /* Whoops, we shouldn't get here. Big badaboom.*/
107 write(STDOUT_FILENO
, "BH\n", 3);
112 *new_helper
= helper
;
113 helper
->major
= helper
->minor
= helper
->micro
= -1;
114 helper
->com_buf
= NULL
;
115 helper
->com_buf_size
= 0;
116 helper
->com_buf_offset
= 0;
117 helper
->session_key
= NULL
;
118 helper
->neg_flags
= 0;
119 helper
->crypt
.ntlm
.a4i
= NULL
;
120 helper
->crypt
.ntlm2
.send_a4i
= NULL
;
121 helper
->crypt
.ntlm2
.recv_a4i
= NULL
;
122 helper
->crypt
.ntlm2
.send_sign_key
= NULL
;
123 helper
->crypt
.ntlm2
.send_seal_key
= NULL
;
124 helper
->crypt
.ntlm2
.recv_sign_key
= NULL
;
125 helper
->crypt
.ntlm2
.recv_seal_key
= NULL
;
126 helper
->pipe_in
= pipe_in
[0];
127 fcntl( pipe_in
[0], F_SETFD
, 1 );
129 helper
->pipe_out
= pipe_out
[1];
130 fcntl( pipe_out
[1], F_SETFD
, 1 );
137 static SECURITY_STATUS
read_line(PNegoHelper helper
, int *offset_len
)
142 if(helper
->com_buf
== NULL
)
144 TRACE("Creating a new buffer for the helper\n");
145 if((helper
->com_buf
= HeapAlloc(GetProcessHeap(), 0, INITIAL_BUFFER_SIZE
)) == NULL
)
146 return SEC_E_INSUFFICIENT_MEMORY
;
148 /* Created a new buffer, size is INITIAL_BUFFER_SIZE, offset is 0 */
149 helper
->com_buf_size
= INITIAL_BUFFER_SIZE
;
150 helper
->com_buf_offset
= 0;
155 TRACE("offset = %d, size = %d\n", helper
->com_buf_offset
, helper
->com_buf_size
);
156 if(helper
->com_buf_offset
+ INITIAL_BUFFER_SIZE
> helper
->com_buf_size
)
158 /* increment buffer size in INITIAL_BUFFER_SIZE steps */
159 char *buf
= HeapReAlloc(GetProcessHeap(), 0, helper
->com_buf
,
160 helper
->com_buf_size
+ INITIAL_BUFFER_SIZE
);
161 TRACE("Resizing buffer!\n");
162 if (!buf
) return SEC_E_INSUFFICIENT_MEMORY
;
163 helper
->com_buf_size
+= INITIAL_BUFFER_SIZE
;
164 helper
->com_buf
= buf
;
166 if((read_size
= read(helper
->pipe_in
, helper
->com_buf
+ helper
->com_buf_offset
,
167 helper
->com_buf_size
- helper
->com_buf_offset
)) <= 0)
169 return SEC_E_INTERNAL_ERROR
;
172 TRACE("read_size = %d, read: %s\n", read_size
,
173 debugstr_a(helper
->com_buf
+ helper
->com_buf_offset
));
174 helper
->com_buf_offset
+= read_size
;
175 newline
= memchr(helper
->com_buf
, '\n', helper
->com_buf_offset
);
176 }while(newline
== NULL
);
178 /* Now, if there's a newline character, and we read more than that newline,
179 * we have to store the offset so we can preserve the additional data.*/
180 if( newline
!= helper
->com_buf
+ helper
->com_buf_offset
)
182 TRACE("offset_len is calculated from %p - %p\n",
183 (helper
->com_buf
+ helper
->com_buf_offset
), newline
+1);
184 /* the length of the offset is the number of chars after the newline */
185 *offset_len
= (helper
->com_buf
+ helper
->com_buf_offset
) - (newline
+ 1);
197 static SECURITY_STATUS
preserve_unused(PNegoHelper helper
, int offset_len
)
199 TRACE("offset_len = %d\n", offset_len
);
203 memmove(helper
->com_buf
, helper
->com_buf
+ helper
->com_buf_offset
,
205 helper
->com_buf_offset
= offset_len
;
209 helper
->com_buf_offset
= 0;
212 TRACE("helper->com_buf_offset was set to: %d\n", helper
->com_buf_offset
);
216 SECURITY_STATUS
run_helper(PNegoHelper helper
, char *buffer
,
217 unsigned int max_buflen
, int *buflen
)
220 SECURITY_STATUS sec_status
= SEC_E_OK
;
222 TRACE("In helper: sending %s\n", debugstr_a(buffer
));
225 write(helper
->pipe_out
, buffer
, lstrlenA(buffer
));
226 write(helper
->pipe_out
, "\n", 1);
228 if((sec_status
= read_line(helper
, &offset_len
)) != SEC_E_OK
)
233 TRACE("In helper: received %s\n", debugstr_a(helper
->com_buf
));
234 *buflen
= lstrlenA(helper
->com_buf
);
236 if( *buflen
> max_buflen
)
238 ERR("Buffer size too small(%d given, %d required) dropping data!\n",
239 max_buflen
, *buflen
);
240 return SEC_E_BUFFER_TOO_SMALL
;
245 return SEC_E_ILLEGAL_MESSAGE
;
248 /* We only get ERR if the input size is too big. On a GENSEC error,
249 * ntlm_auth will return BH */
250 if(strncmp(helper
->com_buf
, "ERR", 3) == 0)
252 return SEC_E_INVALID_TOKEN
;
255 memcpy(buffer
, helper
->com_buf
, *buflen
+1);
257 sec_status
= preserve_unused(helper
, offset_len
);
262 void cleanup_helper(PNegoHelper helper
)
265 TRACE("Killing helper %p\n", helper
);
266 if( (helper
== NULL
) || (helper
->helper_pid
== 0))
269 HeapFree(GetProcessHeap(), 0, helper
->com_buf
);
271 /* closing stdin will terminate ntlm_auth */
272 close(helper
->pipe_out
);
273 close(helper
->pipe_in
);
275 waitpid(helper
->helper_pid
, NULL
, 0);
277 helper
->helper_pid
= 0;
278 HeapFree(GetProcessHeap(), 0, helper
);
281 void check_version(PNegoHelper helper
)
285 int major
= 0, minor
= 0, micro
= 0, ret
;
287 TRACE("Checking version of helper\n");
290 int len
= read(helper
->pipe_in
, temp
, sizeof(temp
)-1);
293 if((newline
= memchr(temp
, '\n', len
)) != NULL
)
298 TRACE("Exact version is %s\n", debugstr_a(temp
));
299 ret
= sscanf(temp
, "Version %d.%d.%d", &major
, &minor
, µ
);
302 ERR("Failed to get the helper version.\n");
303 helper
->major
= helper
->minor
= helper
->micro
= -1;
307 TRACE("Version recognized: %d.%d.%d\n", major
, minor
, micro
);
308 helper
->major
= major
;
309 helper
->minor
= minor
;
310 helper
->micro
= micro
;