406 Bad Item ID
500 Unknown Dispense Failure
+== Item IDs ==
+<item_id> represents the item ID
+Item IDs are allowed to contain any non-whitespace character, but in
+general they will be limited to the standard alpha-numeric set
=== User Auth ===
c USER <username>\n
-s 100 SALT <string 4-8>\n
-c PASS <
Hash>\n (Hex-Encoded SHA-512 Hash of <username><salt><password>)
+s 100 SALT <string>\n or 100 User Set\n (If no salt used)
+c PASS <
hash>\n (Hex-Encoded SHA-512 Hash of <username><salt><password>)
s 200 Auth OK\n or 401 Auth Failure\n
User is now authenticated
+--- Alternate Method (Implicit Trust Authentication) ---
+If the client is connecting from a trusted machine on a low port then
+automatic authentication is allowed
+c AUTOAUTH <username>\n
+s 200 Auth OK\n or 401 Auth Failure\n or 401 Untrusted\n
=== Commands ===
--- Get Item list ---
#include <string.h>
#define MAX_CONNECTION_QUEUE 5
-#define INPUT_BUFFER_SIZE 128
+#define INPUT_BUFFER_SIZE 256
#define MSG_STR_TOO_LONG "499 Command too long (limit "EXPSTR(INPUT_BUFFER_SIZE)")\n"
void Server_Start(void);
void Server_HandleClient(int Socket);
char *Server_ParseClientCommand(tClient *Client, char *CommandString);
+// --- Commands ---
char *Server_Cmd_USER(tClient *Client, char *Args);
+char *Server_Cmd_PASS(tClient *Client, char *Args);
+// --- Helpers ---
+void HexBin(uint8_t *Dest, char *Src, int BufSize);
// === GLOBALS ===
int giServer_Port = 1020;
char *Name;
char *(*Function)(tClient *Client, char *Arguments);
} gaServer_Commands[] = {
- {"USER", Server_Cmd_USER}
+ {"USER", Server_Cmd_USER},
+ {"PASS", Server_Cmd_PASS}
};
#define NUM_COMMANDS (sizeof(gaServer_Commands)/sizeof(gaServer_Commands[0]))
fprintf(stderr, "ERROR: Unable to recieve from client on socket %i\n", Socket);
return ;
}
+
+ if(giDebugLevel >= 2) {
+ printf("Client %i disconnected\n", clientInfo.ID);
+ }
}
/**
free(Client->Username);
Client->Username = strdup(Args);
+ #if USE_SALT
// Create a salt (that changes if the username is changed)
+ // Yes, I know, I'm a little paranoid, but who isn't?
Client->Salt[0] = 0x21 + (rand()&0x3F);
Client->Salt[1] = 0x21 + (rand()&0x3F);
Client->Salt[2] = 0x21 + (rand()&0x3F);
// "100 Salt xxxxXXXX\n"
ret = strdup("100 SALT xxxxXXXX\n");
sprintf(ret, "100 SALT %s\n", Client->Salt);
-
+ #else
+ ret = strdup("100 User Set\n");
+ #endif
return ret;
}
+/**
+ * \brief Authenticate as a user
+ *
+ * Usage: PASS <hash>
+ */
+char *Server_Cmd_PASS(tClient *Client, char *Args)
+{
+ uint8_t clienthash[64] = {0};
+
+ // Read user's hash
+ HexBin(clienthash, Args, 64);
+
+ if( giDebugLevel ) {
+ int i;
+ printf("Client %i: Password hash ", Client->ID);
+ for(i=0;i<64;i++)
+ printf("%02x", clienthash[i]&0xFF);
+ printf("\n");
+ }
+
+ return strdup("401 Auth Failure\n");
+}
+
+// --- INTERNAL HELPERS ---
+// TODO: Move to another file
+void HexBin(uint8_t *Dest, char *Src, int BufSize)
+{
+ int i;
+ for( i = 0; i < BufSize; i ++ )
+ {
+ uint8_t val = 0;
+
+ if('0' <= *Src && *Src <= '9')
+ val |= (*Src-'0') << 4;
+ else if('A' <= *Src && *Src <= 'B')
+ val |= (*Src-'A'+10) << 4;
+ else if('a' <= *Src && *Src <= 'b')
+ val |= (*Src-'a'+10) << 4;
+ else
+ break;
+ Src ++;
+
+ if('0' <= *Src && *Src <= '9')
+ val |= (*Src-'0');
+ else if('A' <= *Src && *Src <= 'B')
+ val |= (*Src-'A'+10);
+ else if('a' <= *Src && *Src <= 'b')
+ val |= (*Src-'a'+10);
+ else
+ break;
+ Src ++;
+
+ Dest[i] = val;
+ }
+ for( ; i < BufSize; i++ )
+ Dest[i] = 0;
+}
git.ucc.asn.au / tpg / opendispense2.git / commitdiff
UCC git Repository :: git.ucc.asn.au