auth_api.c

Go to the documentation of this file.

/*
 * $Id: auth_api.c 2 2006-11-14 22:37:20Z vingarzan $
 *
 * Digest Authentication Module 
 * 
 * Just the credential finding routines
 *
 * Copyright (C) 2001-2003 FhG Fokus
 *
 * This file is part of ser, a free SIP server.
 *
 * ser is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version
 *
 * For a license to use the ser software under conditions
 * other than those described here, or to purchase support for this
 * software, please contact iptel.org by e-mail at the following addresses:
 *    info@iptel.org
 *
 * ser is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License 
 * along with this program; if not, write to the Free Software 
 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
 */
 
#include <string.h>
#include "auth_api.h"
#include "../../dprint.h"
#include "../../parser/digest/digest.h"
#include "../../sr_module.h"



/*
 * Find credentials with given realm in a SIP message header
 */
inline int find_credentials(struct sip_msg* _m, str* _realm,
                                    hdr_types_t _hftype, struct hdr_field** _h)
{
    struct hdr_field** hook, *ptr, *prev;
    hdr_flags_t hdr_flags;
    int res;
    str* r;

         /*
          * Determine if we should use WWW-Authorization or
          * Proxy-Authorization header fields, this parameter
          * is set in www_authorize and proxy_authorize
          */
    switch(_hftype) {
    case HDR_AUTHORIZATION_T: 
                            hook = &(_m->authorization);
                            hdr_flags=HDR_AUTHORIZATION_F;
                            break;
    case HDR_PROXYAUTH_T:
                            hook = &(_m->proxy_auth);
                            hdr_flags=HDR_PROXYAUTH_F;
                            break;
    default:                
                            hook = &(_m->authorization);
                            hdr_flags=HDR_T2F(_hftype);
                            break;
    }

         /*
          * If the credentials haven't been parsed yet, do it now
          */
    if (*hook == 0) {
             /* No credentials parsed yet */
        if (parse_headers(_m, hdr_flags, 0) == -1) {
            LOG(L_ERR, "find_credentials(): Error while parsing headers\n");
            return -1;
        }
    }

    ptr = *hook;

         /*
          * Iterate through the credentials in the message and
          * find credentials with given realm
          */
    while(ptr) {
        res = parse_credentials(ptr);
        if (res < 0) {
            LOG(L_ERR, "find_credentials(): Error while parsing credentials\n");
            return (res == -1) ? -2 : -3;
        } else if (res == 0) {
            if (_realm->len) {
                r = &(((auth_body_t*)(ptr->parsed))->digest.realm);
    
                if (r->len == _realm->len) {
                    if (!strncasecmp(_realm->s, r->s, r->len)) {
                        *_h = ptr;
                        return 0;
                    }
                }
            }
            else {
                *_h = ptr;
                return 0;
            }
            
        }

        prev = ptr;
        if (parse_headers(_m, hdr_flags, 1) == -1) {
            LOG(L_ERR, "find_credentials(): Error while parsing headers\n");
            return -4;
        } else {
            if (prev != _m->last_header) {
                if (_m->last_header->type == _hftype) ptr = _m->last_header;
                else break;
            } else break;
        }
    }
    
         /*
          * Credentials with given realm not found
          */
    return 1;
}

---