/*
* $Id: auth_diameter.c,v 1.4 2004/08/24 08:58:25 janakj Exp $
* Digest Authentication - Diameter support
*
* Copyright (C) 2001-2003 FhG Fokus
*
* This file is part of ser, a free SIP server.
*
* ser is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version
*
* For a license to use the ser software under conditions
* other than those described here, or to purchase support for this
* software, please contact iptel.org by e-mail at the following addresses:
* info@iptel.org
*
* ser is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
*
* History:
* -------
*
*
*/
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <sys/types.h>
#include <sys/socket.h>
#include <netinet/in.h>
#include <netdb.h>
#include "../../sr_module.h"
#include "../../error.h"
#include "../../dprint.h"
#include "../../mem/mem.h"
#include "diameter_msg.h"
#include "auth_diameter.h"
#include "authorize.h"
#include "tcp_comm.h"
MODULE_VERSION
// Pointer to reply function in stateless module
int (*sl_reply)(struct sip_msg* _msg, char* _str1, char* _str2);
static int mod_init(void); /* Module initialization function*/
static int mod_child_init(int r); /* Child initialization function*/
static int str_fixup(void** param, int param_no); /* char* -> str* */
static int group_fixup(void** param, int param_no);
int diameter_www_authorize(struct sip_msg* _msg, char* _realm, char* _s2);
int diameter_proxy_authorize(struct sip_msg* _msg, char* _realm, char* _s2);
int diameter_is_user_in(struct sip_msg* _msg, char* group, char* _s2);
/*
* Module parameter variables
*/
char* diameter_client_host = "localhost";
int diameter_client_port = 3000;
int use_domain = 0;
rd_buf_t *rb;
/*
* Exported functions
*/
static cmd_export_t cmds[] = {
{"diameter_www_authorize", diameter_www_authorize, 1, str_fixup,
REQUEST_ROUTE},
{"diameter_proxy_authorize", diameter_proxy_authorize, 1, str_fixup,
REQUEST_ROUTE},
{"diameter_is_user_in", diameter_is_user_in, 2, group_fixup,
REQUEST_ROUTE},
{0, 0, 0, 0, 0}
};
static int mod_init(void); /* Module initialization function*/
static int str_fixup(void** param, int param_no); /* char* -> str* */
/*
* Exported parameters
*/
static param_export_t params[] = {
{"diameter_client_host", STR_PARAM, &diameter_client_host},
{"diameter_client_port", INT_PARAM, &diameter_client_port},
{"use_domain", INT_PARAM, &use_domain},
{0, 0, 0}
};
/*
* Module interface
*/
struct module_exports exports = {
"auth_diameter",
cmds, /* Exported functions */
params, /* Exported parameters */
mod_init, /* module initialization function */
0, /* response function */
0, /* destroy function */
0, /* oncancel function */
mod_child_init /* child initialization function */
};
/*
* Module initialization function
*/
static int mod_init(void)
{
DBG("auth_diameter - Initializing\n");
sl_reply = find_export("sl_send_reply", 2, 0);
if (!sl_reply) {
LOG(L_ERR, "auth_diameter.c:mod_init(): This module requires"
" sl module\n");
return -1;
}
return 0;
}
static int mod_child_init(int r)
{
/* open TCP connection */
DBG("auth_diameter.c: mod_child_init(): Initializing TCP connection\n");
sockfd = init_mytcp(diameter_client_host, diameter_client_port);
if(sockfd==-1)
{
DBG("auth_diameter.c: mod_child_init(): TCP connection not"
" established\n");
return -1;
}
DBG("auth_diameter.c: mod_child_init(): TCP connection established"
" on socket=%d\n", sockfd);
rb = (rd_buf_t*)pkg_malloc(sizeof(rd_buf_t));
if(!rb)
{
DBG("auth_diameter.c: mod_child_init: no more free memory\n");
return -1;
}
rb->buf = 0;
rb->chall = 0;
return 0;
}
#if 0
static void destroy(void)
{
close_tcp_connection(sockfd);
}
#endif
/*
* Convert char* parameter to str* parameter
*/
static int str_fixup(void** param, int param_no)
{
str* s;
if (param_no == 1)
{
s = (str*)ad_malloc(sizeof(str));
if (!s)
{
LOG(L_ERR, "auth_diameter.c: str_fixup(): No memory left\n");
return E_UNSPEC;
}
s->s = (char*)(*param);
s->len = strlen(*param);
*param = (void*)s;
}
return 0;
}
/*
* Authorize using Proxy-Authorization header field
*/
int diameter_proxy_authorize(struct sip_msg* _msg, char* _realm, char* _s2)
{
/* realm parameter is converted to str* in str_fixup */
return authorize(_msg, (str*)_realm, HDR_PROXYAUTH);
}
/*
* Authorize using WWW-Authorization header field
*/
int diameter_www_authorize(struct sip_msg* _msg, char* _realm, char* _s2)
{
return authorize(_msg, (str*)_realm, HDR_AUTHORIZATION);
}
static int group_fixup(void** param, int param_no)
{
void* ptr;
str* s;
if (param_no == 1)
{
ptr = *param;
if (!strcasecmp((char*)*param, "Request-URI"))
{
*param = (void*)1;
goto end;
}
if(!strcasecmp((char*)*param, "To"))
{
*param = (void*)2;
goto end;
}
if (!strcasecmp((char*)*param, "From"))
{
*param = (void*)3;
goto end;
}
if (!strcasecmp((char*)*param, "Credentials"))
{
*param = (void*)4;
goto end;
}
LOG(L_ERR, "group_fixup(): Unsupported Header Field identifier\n");
return E_UNSPEC;
//pkg_free(ptr);
}
if (param_no == 2)
{
s = (str*)pkg_malloc(sizeof(str));
if (!s)
{
LOG(L_ERR, "group_fixup(): No memory left\n");
return E_UNSPEC;
}
ptr = *param;
s->s = (char*)*param;
s->len = strlen(s->s);
*param = (void*)s;
}
end:
// pkg_free(ptr);
return 0;
}
syntax highlighted by Code2HTML, v. 0.9.1