/* * $Id: auth_diameter.c,v 1.4 2004/08/24 08:58:25 janakj Exp $ * Digest Authentication - Diameter support * * Copyright (C) 2001-2003 FhG Fokus * * This file is part of ser, a free SIP server. * * ser is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version * * For a license to use the ser software under conditions * other than those described here, or to purchase support for this * software, please contact iptel.org by e-mail at the following addresses: * info@iptel.org * * ser is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * * History: * ------- * * */ #include #include #include #include #include #include #include #include "../../sr_module.h" #include "../../error.h" #include "../../dprint.h" #include "../../mem/mem.h" #include "diameter_msg.h" #include "auth_diameter.h" #include "authorize.h" #include "tcp_comm.h" MODULE_VERSION // Pointer to reply function in stateless module int (*sl_reply)(struct sip_msg* _msg, char* _str1, char* _str2); static int mod_init(void); /* Module initialization function*/ static int mod_child_init(int r); /* Child initialization function*/ static int str_fixup(void** param, int param_no); /* char* -> str* */ static int group_fixup(void** param, int param_no); int diameter_www_authorize(struct sip_msg* _msg, char* _realm, char* _s2); int diameter_proxy_authorize(struct sip_msg* _msg, char* _realm, char* _s2); int diameter_is_user_in(struct sip_msg* _msg, char* group, char* _s2); /* * Module parameter variables */ char* diameter_client_host = "localhost"; int diameter_client_port = 3000; int use_domain = 0; rd_buf_t *rb; /* * Exported functions */ static cmd_export_t cmds[] = { {"diameter_www_authorize", diameter_www_authorize, 1, str_fixup, REQUEST_ROUTE}, {"diameter_proxy_authorize", diameter_proxy_authorize, 1, str_fixup, REQUEST_ROUTE}, {"diameter_is_user_in", diameter_is_user_in, 2, group_fixup, REQUEST_ROUTE}, {0, 0, 0, 0, 0} }; static int mod_init(void); /* Module initialization function*/ static int str_fixup(void** param, int param_no); /* char* -> str* */ /* * Exported parameters */ static param_export_t params[] = { {"diameter_client_host", STR_PARAM, &diameter_client_host}, {"diameter_client_port", INT_PARAM, &diameter_client_port}, {"use_domain", INT_PARAM, &use_domain}, {0, 0, 0} }; /* * Module interface */ struct module_exports exports = { "auth_diameter", cmds, /* Exported functions */ params, /* Exported parameters */ mod_init, /* module initialization function */ 0, /* response function */ 0, /* destroy function */ 0, /* oncancel function */ mod_child_init /* child initialization function */ }; /* * Module initialization function */ static int mod_init(void) { DBG("auth_diameter - Initializing\n"); sl_reply = find_export("sl_send_reply", 2, 0); if (!sl_reply) { LOG(L_ERR, "auth_diameter.c:mod_init(): This module requires" " sl module\n"); return -1; } return 0; } static int mod_child_init(int r) { /* open TCP connection */ DBG("auth_diameter.c: mod_child_init(): Initializing TCP connection\n"); sockfd = init_mytcp(diameter_client_host, diameter_client_port); if(sockfd==-1) { DBG("auth_diameter.c: mod_child_init(): TCP connection not" " established\n"); return -1; } DBG("auth_diameter.c: mod_child_init(): TCP connection established" " on socket=%d\n", sockfd); rb = (rd_buf_t*)pkg_malloc(sizeof(rd_buf_t)); if(!rb) { DBG("auth_diameter.c: mod_child_init: no more free memory\n"); return -1; } rb->buf = 0; rb->chall = 0; return 0; } #if 0 static void destroy(void) { close_tcp_connection(sockfd); } #endif /* * Convert char* parameter to str* parameter */ static int str_fixup(void** param, int param_no) { str* s; if (param_no == 1) { s = (str*)ad_malloc(sizeof(str)); if (!s) { LOG(L_ERR, "auth_diameter.c: str_fixup(): No memory left\n"); return E_UNSPEC; } s->s = (char*)(*param); s->len = strlen(*param); *param = (void*)s; } return 0; } /* * Authorize using Proxy-Authorization header field */ int diameter_proxy_authorize(struct sip_msg* _msg, char* _realm, char* _s2) { /* realm parameter is converted to str* in str_fixup */ return authorize(_msg, (str*)_realm, HDR_PROXYAUTH); } /* * Authorize using WWW-Authorization header field */ int diameter_www_authorize(struct sip_msg* _msg, char* _realm, char* _s2) { return authorize(_msg, (str*)_realm, HDR_AUTHORIZATION); } static int group_fixup(void** param, int param_no) { void* ptr; str* s; if (param_no == 1) { ptr = *param; if (!strcasecmp((char*)*param, "Request-URI")) { *param = (void*)1; goto end; } if(!strcasecmp((char*)*param, "To")) { *param = (void*)2; goto end; } if (!strcasecmp((char*)*param, "From")) { *param = (void*)3; goto end; } if (!strcasecmp((char*)*param, "Credentials")) { *param = (void*)4; goto end; } LOG(L_ERR, "group_fixup(): Unsupported Header Field identifier\n"); return E_UNSPEC; //pkg_free(ptr); } if (param_no == 2) { s = (str*)pkg_malloc(sizeof(str)); if (!s) { LOG(L_ERR, "group_fixup(): No memory left\n"); return E_UNSPEC; } ptr = *param; s->s = (char*)*param; s->len = strlen(s->s); *param = (void*)s; } end: // pkg_free(ptr); return 0; }