2004-11-05 08:54:01 +00:00
|
|
|
/*
|
|
|
|
|
* qca_securelayer.cpp - Qt Cryptographic Architecture
|
2005-01-01 02:44:28 +00:00
|
|
|
* Copyright (C) 2003-2005 Justin Karneges <justin@affinix.com>
|
|
|
|
|
* Copyright (C) 2004,2005 Brad Hards <bradh@frogmouth.net>
|
2004-11-05 08:54:01 +00:00
|
|
|
*
|
|
|
|
|
* This library is free software; you can redistribute it and/or
|
|
|
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
|
|
|
* License as published by the Free Software Foundation; either
|
|
|
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
|
|
|
*
|
|
|
|
|
* This library is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
|
* Lesser General Public License for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
|
|
|
* License along with this library; if not, write to the Free Software
|
|
|
|
|
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
|
|
|
|
*
|
|
|
|
|
*/
|
|
|
|
|
|
2005-01-01 02:44:28 +00:00
|
|
|
#include "qca_securelayer.h"
|
2004-11-05 08:54:01 +00:00
|
|
|
|
|
|
|
|
#include <qtimer.h>
|
|
|
|
|
#include <qhostaddress.h>
|
|
|
|
|
#include <qguardedptr.h>
|
2005-01-01 02:44:28 +00:00
|
|
|
#include "qca_publickey.h"
|
|
|
|
|
#include "qca_cert.h"
|
2004-11-05 08:54:01 +00:00
|
|
|
#include "qcaprovider.h"
|
|
|
|
|
|
|
|
|
|
namespace QCA {
|
|
|
|
|
|
|
|
|
|
//----------------------------------------------------------------------------
|
|
|
|
|
// SecureFilter
|
|
|
|
|
//----------------------------------------------------------------------------
|
|
|
|
|
SecureFilter::~SecureFilter()
|
|
|
|
|
{
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bool SecureFilter::isClosable() const
|
|
|
|
|
{
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bool SecureFilter::haveClosed() const
|
|
|
|
|
{
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SecureFilter::close()
|
|
|
|
|
{
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
QSecureArray SecureFilter::readUnprocessed()
|
|
|
|
|
{
|
|
|
|
|
return QSecureArray();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//----------------------------------------------------------------------------
|
|
|
|
|
// SecureLayer
|
|
|
|
|
//----------------------------------------------------------------------------
|
|
|
|
|
SecureLayer::SecureLayer(QObject *parent, const char *name)
|
|
|
|
|
:QObject(parent, name)
|
|
|
|
|
{
|
2004-11-17 00:28:34 +00:00
|
|
|
_signals = true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SecureLayer::setStatefulOnly(bool b)
|
|
|
|
|
{
|
|
|
|
|
_signals = !b;
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SecureLayer::layerUpdateBegin()
|
|
|
|
|
{
|
|
|
|
|
_read = bytesAvailable();
|
|
|
|
|
_readout = bytesOutgoingAvailable();
|
|
|
|
|
_closed = haveClosed();
|
|
|
|
|
_error = haveError();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SecureLayer::layerUpdateEnd()
|
|
|
|
|
{
|
2004-11-17 00:28:34 +00:00
|
|
|
if(_signals)
|
|
|
|
|
{
|
|
|
|
|
if(_read > bytesAvailable())
|
|
|
|
|
QTimer::singleShot(0, this, SIGNAL(readyRead()));
|
|
|
|
|
if(_readout > bytesOutgoingAvailable())
|
|
|
|
|
QTimer::singleShot(0, this, SIGNAL(readyReadOutgoing()));
|
|
|
|
|
if(!_closed && haveClosed())
|
|
|
|
|
QTimer::singleShot(0, this, SIGNAL(closed()));
|
|
|
|
|
if(!_error && haveError())
|
|
|
|
|
QTimer::singleShot(0, this, SIGNAL(error()));
|
|
|
|
|
}
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//----------------------------------------------------------------------------
|
|
|
|
|
// TLS
|
|
|
|
|
//----------------------------------------------------------------------------
|
2004-11-07 11:40:11 +00:00
|
|
|
class TLS::Private
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
|
|
|
|
public:
|
|
|
|
|
Private()
|
|
|
|
|
{
|
|
|
|
|
store = 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void reset()
|
|
|
|
|
{
|
|
|
|
|
handshaken = false;
|
|
|
|
|
closing = false;
|
|
|
|
|
in.resize(0);
|
|
|
|
|
out.resize(0);
|
|
|
|
|
from_net.resize(0);
|
|
|
|
|
to_net.resize(0);
|
2004-12-31 04:21:08 +00:00
|
|
|
host = QString();
|
2004-11-05 08:54:01 +00:00
|
|
|
hostMismatch = false;
|
|
|
|
|
cert = Certificate();
|
|
|
|
|
bytesEncoded = 0;
|
|
|
|
|
tryMore = false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void appendArray(QByteArray *a, const QByteArray &b)
|
|
|
|
|
{
|
|
|
|
|
int oldsize = a->size();
|
|
|
|
|
a->resize(oldsize + b.size());
|
|
|
|
|
memcpy(a->data() + oldsize, b.data(), b.size());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Certificate cert;
|
|
|
|
|
CertValidity certValidity;
|
|
|
|
|
TLSContext *c;
|
|
|
|
|
QByteArray in, out, to_net, from_net;
|
|
|
|
|
int bytesEncoded;
|
|
|
|
|
bool tryMore;
|
|
|
|
|
bool handshaken;
|
|
|
|
|
QString host;
|
|
|
|
|
bool hostMismatch;
|
|
|
|
|
bool closing;
|
|
|
|
|
Error errorCode;
|
|
|
|
|
|
|
|
|
|
Certificate ourCert;
|
|
|
|
|
PrivateKey ourKey;
|
|
|
|
|
Store *store;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
TLS::TLS(QObject *parent, const char *name, const QString &provider)
|
2004-11-07 11:40:11 +00:00
|
|
|
:SecureLayer(parent, name), Algorithm("tls", provider)
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
|
|
|
|
d = new Private;
|
|
|
|
|
d->c = (TLSContext *)context();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
TLS::~TLS()
|
|
|
|
|
{
|
|
|
|
|
delete d;
|
|
|
|
|
}
|
|
|
|
|
|
2005-02-24 10:07:14 +00:00
|
|
|
void TLS::reset()
|
|
|
|
|
{
|
|
|
|
|
d->reset();
|
|
|
|
|
// TODO: d->c->reset ??
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
QStringList TLS::supportedCipherSuites(const QString &provider)
|
|
|
|
|
{
|
|
|
|
|
Q_UNUSED(provider);
|
|
|
|
|
return QStringList();
|
|
|
|
|
}
|
|
|
|
|
|
2005-01-14 06:36:12 +00:00
|
|
|
void TLS::setCertificate(const CertificateChain &cert, const PrivateKey &key)
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
2005-01-14 06:36:12 +00:00
|
|
|
Q_UNUSED(cert);
|
|
|
|
|
//d->ourCert = cert;
|
2004-11-05 08:54:01 +00:00
|
|
|
d->ourKey = key;
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-07 11:40:11 +00:00
|
|
|
void TLS::setStore(const Store &store)
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
2004-11-07 11:40:11 +00:00
|
|
|
d->store = new Store(store);
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
2004-11-17 00:28:34 +00:00
|
|
|
void TLS::setConstraints(SecurityLevel s)
|
|
|
|
|
{
|
|
|
|
|
Q_UNUSED(s);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void TLS::setConstraints(int, int)
|
|
|
|
|
{
|
|
|
|
|
}
|
|
|
|
|
|
2005-02-24 10:07:14 +00:00
|
|
|
void TLS::setConstraints(const QStringList &cipherSuiteList)
|
|
|
|
|
{
|
|
|
|
|
Q_UNUSED(cipherSuiteList);
|
|
|
|
|
}
|
|
|
|
|
|
2005-01-27 16:42:44 +00:00
|
|
|
bool TLS::canCompress(const QString &provider)
|
|
|
|
|
{
|
|
|
|
|
Q_UNUSED(provider);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-17 00:28:34 +00:00
|
|
|
void TLS::setCompressionEnabled(bool b)
|
|
|
|
|
{
|
|
|
|
|
Q_UNUSED(b);
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-05 08:54:01 +00:00
|
|
|
bool TLS::startClient(const QString &host)
|
|
|
|
|
{
|
|
|
|
|
d->reset();
|
|
|
|
|
d->host = host;
|
|
|
|
|
|
2004-11-07 11:40:11 +00:00
|
|
|
if(!d->c->startClient(*((StoreContext *)d->store->context()), *((CertContext *)d->ourCert.context()), *((PKeyContext *)d->ourKey.context())))
|
2004-11-05 08:54:01 +00:00
|
|
|
return false;
|
|
|
|
|
QTimer::singleShot(0, this, SLOT(update()));
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bool TLS::startServer()
|
|
|
|
|
{
|
|
|
|
|
d->reset();
|
|
|
|
|
|
2004-11-07 11:40:11 +00:00
|
|
|
if(!d->c->startServer(*((StoreContext *)d->store->context()), *((CertContext *)d->ourCert.context()), *((PKeyContext *)d->ourKey.context())))
|
2004-11-05 08:54:01 +00:00
|
|
|
return false;
|
|
|
|
|
QTimer::singleShot(0, this, SLOT(update()));
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2005-02-24 10:07:14 +00:00
|
|
|
bool TLS::isHandshaken() const
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
2005-02-24 10:07:14 +00:00
|
|
|
return d->handshaken;
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
2005-02-25 03:36:58 +00:00
|
|
|
bool TLS::isCompressed() const
|
|
|
|
|
{
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2005-02-24 10:07:14 +00:00
|
|
|
TLS::Version TLS::version() const
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
2005-02-24 10:07:14 +00:00
|
|
|
return TLS_v1;
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
2005-02-24 10:07:14 +00:00
|
|
|
QString TLS::cipherSuite() const
|
2004-11-17 00:28:34 +00:00
|
|
|
{
|
2004-12-31 04:21:08 +00:00
|
|
|
return QString();
|
2004-11-17 00:28:34 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int TLS::cipherBits() const
|
|
|
|
|
{
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2005-02-24 10:07:14 +00:00
|
|
|
int TLS::cipherMaxBits() const
|
|
|
|
|
{
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-05 08:54:01 +00:00
|
|
|
TLS::Error TLS::errorCode() const
|
|
|
|
|
{
|
|
|
|
|
return d->errorCode;
|
|
|
|
|
}
|
|
|
|
|
|
2005-02-24 10:07:14 +00:00
|
|
|
TLS::IdentityResult TLS::peerIdentityResult() const
|
|
|
|
|
{
|
|
|
|
|
if(d->cert.isNull())
|
|
|
|
|
return NoCert;
|
|
|
|
|
|
|
|
|
|
if(d->certValidity != QCA::Valid)
|
|
|
|
|
return BadCert;
|
|
|
|
|
|
|
|
|
|
if(d->hostMismatch)
|
|
|
|
|
return HostMismatch;
|
|
|
|
|
|
|
|
|
|
return Valid;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
CertValidity TLS::peerCertificateValidity() const
|
|
|
|
|
{
|
|
|
|
|
return d->certValidity;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
CertificateChain TLS::localCertificateChain() const
|
|
|
|
|
{
|
|
|
|
|
return CertificateChain();
|
|
|
|
|
//return d->ourCert;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
CertificateChain TLS::peerCertificateChain() const
|
|
|
|
|
{
|
|
|
|
|
return CertificateChain();
|
|
|
|
|
//return d->cert;
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-05 08:54:01 +00:00
|
|
|
bool TLS::isClosable() const
|
|
|
|
|
{
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-07 11:40:11 +00:00
|
|
|
bool TLS::haveClosed() const
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
2004-11-07 11:40:11 +00:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bool TLS::haveError() const
|
|
|
|
|
{
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int TLS::bytesAvailable() const
|
|
|
|
|
{
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int TLS::bytesOutgoingAvailable() const
|
|
|
|
|
{
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2005-02-24 10:07:14 +00:00
|
|
|
void TLS::close()
|
|
|
|
|
{
|
|
|
|
|
if(!d->handshaken || d->closing)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
d->closing = true;
|
|
|
|
|
QTimer::singleShot(0, this, SLOT(update()));
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-07 11:40:11 +00:00
|
|
|
void TLS::write(const QSecureArray &a)
|
|
|
|
|
{
|
|
|
|
|
d->appendArray(&d->out, a.toByteArray());
|
2004-11-13 10:13:12 +00:00
|
|
|
//update();
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
2004-11-07 11:40:11 +00:00
|
|
|
QSecureArray TLS::read()
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
|
|
|
|
QByteArray a = d->in.copy();
|
|
|
|
|
d->in.resize(0);
|
|
|
|
|
return a;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void TLS::writeIncoming(const QByteArray &a)
|
|
|
|
|
{
|
|
|
|
|
d->appendArray(&d->from_net, a);
|
2004-11-13 10:13:12 +00:00
|
|
|
//update();
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
2004-11-13 10:13:12 +00:00
|
|
|
QByteArray TLS::readOutgoing(int *plainBytes)
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
2004-11-13 10:13:12 +00:00
|
|
|
Q_UNUSED(plainBytes);
|
2004-11-05 08:54:01 +00:00
|
|
|
QByteArray a = d->to_net.copy();
|
|
|
|
|
d->to_net.resize(0);
|
|
|
|
|
return a;
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-07 11:40:11 +00:00
|
|
|
QSecureArray TLS::readUnprocessed()
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
|
|
|
|
QByteArray a = d->from_net.copy();
|
|
|
|
|
d->from_net.resize(0);
|
|
|
|
|
return a;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//----------------------------------------------------------------------------
|
|
|
|
|
// SASL
|
|
|
|
|
//----------------------------------------------------------------------------
|
2004-11-13 10:13:12 +00:00
|
|
|
QString *saslappname = 0;
|
2004-11-05 08:54:01 +00:00
|
|
|
class SASL::Private
|
|
|
|
|
{
|
|
|
|
|
public:
|
|
|
|
|
void setSecurityProps()
|
|
|
|
|
{
|
|
|
|
|
c->setSecurityProps(noPlain, noActive, noDict, noAnon, reqForward, reqCreds, reqMutual, ssfmin, ssfmax, ext_authid, ext_ssf);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// security opts
|
|
|
|
|
bool noPlain, noActive, noDict, noAnon, reqForward, reqCreds, reqMutual;
|
|
|
|
|
int ssfmin, ssfmax;
|
|
|
|
|
QString ext_authid;
|
|
|
|
|
int ext_ssf;
|
|
|
|
|
|
|
|
|
|
bool tried;
|
|
|
|
|
SASLContext *c;
|
|
|
|
|
QHostAddress localAddr, remoteAddr;
|
|
|
|
|
int localPort, remotePort;
|
|
|
|
|
QByteArray stepData;
|
|
|
|
|
bool allowCSF;
|
|
|
|
|
bool first, server;
|
|
|
|
|
Error errorCode;
|
|
|
|
|
|
|
|
|
|
QByteArray inbuf, outbuf;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
SASL::SASL(QObject *parent, const char *name, const QString &provider)
|
2004-11-13 10:13:12 +00:00
|
|
|
:SecureLayer(parent, name), Algorithm("sasl", provider)
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
|
|
|
|
d = new Private;
|
|
|
|
|
d->c = (SASLContext *)context();
|
|
|
|
|
reset();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
SASL::~SASL()
|
|
|
|
|
{
|
|
|
|
|
delete d;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::reset()
|
|
|
|
|
{
|
|
|
|
|
d->localPort = -1;
|
|
|
|
|
d->remotePort = -1;
|
|
|
|
|
|
|
|
|
|
d->noPlain = false;
|
|
|
|
|
d->noActive = false;
|
|
|
|
|
d->noDict = false;
|
|
|
|
|
d->noAnon = false;
|
|
|
|
|
d->reqForward = false;
|
|
|
|
|
d->reqCreds = false;
|
|
|
|
|
d->reqMutual = false;
|
|
|
|
|
d->ssfmin = 0;
|
|
|
|
|
d->ssfmax = 0;
|
2004-12-31 04:21:08 +00:00
|
|
|
d->ext_authid = QString();
|
2004-11-05 08:54:01 +00:00
|
|
|
d->ext_ssf = 0;
|
|
|
|
|
|
|
|
|
|
d->inbuf.resize(0);
|
|
|
|
|
d->outbuf.resize(0);
|
|
|
|
|
|
|
|
|
|
d->c->reset();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
SASL::Error SASL::errorCode() const
|
|
|
|
|
{
|
|
|
|
|
return d->errorCode;
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-13 10:13:12 +00:00
|
|
|
SASL::AuthCondition SASL::authCondition() const
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
2004-11-13 10:13:12 +00:00
|
|
|
return (AuthCondition)d->c->authError();
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
2004-11-17 00:28:34 +00:00
|
|
|
void SASL::setConstraints(AuthFlags f, SecurityLevel s)
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
2004-11-17 00:28:34 +00:00
|
|
|
Q_UNUSED(f);
|
|
|
|
|
Q_UNUSED(s);
|
|
|
|
|
|
|
|
|
|
/*d->noPlain = (f & SAllowPlain) ? false: true;
|
2004-11-05 08:54:01 +00:00
|
|
|
d->noAnon = (f & SAllowAnonymous) ? false: true;
|
2004-11-13 10:13:12 +00:00
|
|
|
//d->noActive = (f & SAllowActiveVulnerable) ? false: true;
|
|
|
|
|
//d->noDict = (f & SAllowDictVulnerable) ? false: true;
|
2004-11-05 08:54:01 +00:00
|
|
|
d->reqForward = (f & SRequireForwardSecrecy) ? true : false;
|
|
|
|
|
d->reqCreds = (f & SRequirePassCredentials) ? true : false;
|
2004-11-17 00:28:34 +00:00
|
|
|
d->reqMutual = (f & SRequireMutualAuth) ? true : false;*/
|
|
|
|
|
|
|
|
|
|
//d->ssfmin = minSSF;
|
|
|
|
|
//d->ssfmax = maxSSF;
|
|
|
|
|
}
|
2004-11-05 08:54:01 +00:00
|
|
|
|
2004-11-17 00:28:34 +00:00
|
|
|
void SASL::setConstraints(AuthFlags, int, int)
|
|
|
|
|
{
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
2004-12-20 08:08:39 +00:00
|
|
|
void SASL::setExternalAuthId(const QString &authid)
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
|
|
|
|
d->ext_authid = authid;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::setExternalSSF(int x)
|
|
|
|
|
{
|
|
|
|
|
d->ext_ssf = x;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::setLocalAddr(const QHostAddress &addr, Q_UINT16 port)
|
|
|
|
|
{
|
|
|
|
|
d->localAddr = addr;
|
|
|
|
|
d->localPort = port;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::setRemoteAddr(const QHostAddress &addr, Q_UINT16 port)
|
|
|
|
|
{
|
|
|
|
|
d->remoteAddr = addr;
|
|
|
|
|
d->remotePort = port;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bool SASL::startClient(const QString &service, const QString &host, const QStringList &mechlist, bool allowClientSendFirst)
|
|
|
|
|
{
|
2004-11-13 10:13:12 +00:00
|
|
|
SASLContext::HostPort la, ra;
|
2004-11-05 08:54:01 +00:00
|
|
|
if(d->localPort != -1) {
|
|
|
|
|
la.addr = d->localAddr;
|
|
|
|
|
la.port = d->localPort;
|
|
|
|
|
}
|
|
|
|
|
if(d->remotePort != -1) {
|
|
|
|
|
ra.addr = d->remoteAddr;
|
|
|
|
|
ra.port = d->remotePort;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
d->allowCSF = allowClientSendFirst;
|
|
|
|
|
d->c->setCoreProps(service, host, d->localPort != -1 ? &la : 0, d->remotePort != -1 ? &ra : 0);
|
|
|
|
|
d->setSecurityProps();
|
|
|
|
|
|
|
|
|
|
if(!d->c->clientStart(mechlist))
|
|
|
|
|
return false;
|
|
|
|
|
d->first = true;
|
|
|
|
|
d->server = false;
|
|
|
|
|
d->tried = false;
|
|
|
|
|
QTimer::singleShot(0, this, SLOT(tryAgain()));
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-17 00:28:34 +00:00
|
|
|
bool SASL::startServer(const QString &service, const QString &host, const QString &realm, QStringList *mechlist, bool allowServerSendLast)
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
2004-11-17 00:28:34 +00:00
|
|
|
Q_UNUSED(allowServerSendLast);
|
|
|
|
|
|
2004-11-13 10:13:12 +00:00
|
|
|
SASLContext::HostPort la, ra;
|
2004-11-05 08:54:01 +00:00
|
|
|
if(d->localPort != -1) {
|
|
|
|
|
la.addr = d->localAddr;
|
|
|
|
|
la.port = d->localPort;
|
|
|
|
|
}
|
|
|
|
|
if(d->remotePort != -1) {
|
|
|
|
|
ra.addr = d->remoteAddr;
|
|
|
|
|
ra.port = d->remotePort;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
d->c->setCoreProps(service, host, d->localPort != -1 ? &la : 0, d->remotePort != -1 ? &ra : 0);
|
|
|
|
|
d->setSecurityProps();
|
|
|
|
|
|
|
|
|
|
QString appname;
|
|
|
|
|
if(saslappname)
|
|
|
|
|
appname = *saslappname;
|
|
|
|
|
else
|
|
|
|
|
appname = "qca";
|
|
|
|
|
|
|
|
|
|
if(!d->c->serverStart(realm, mechlist, appname))
|
|
|
|
|
return false;
|
|
|
|
|
d->first = true;
|
|
|
|
|
d->server = true;
|
|
|
|
|
d->tried = false;
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::putServerFirstStep(const QString &mech)
|
|
|
|
|
{
|
2004-11-13 10:13:12 +00:00
|
|
|
/*int r =*/ d->c->serverFirstStep(mech, 0);
|
|
|
|
|
//handleServerFirstStep(r);
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::putServerFirstStep(const QString &mech, const QByteArray &clientInit)
|
|
|
|
|
{
|
2004-11-13 10:13:12 +00:00
|
|
|
/*int r =*/ d->c->serverFirstStep(mech, &clientInit);
|
|
|
|
|
//handleServerFirstStep(r);
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::putStep(const QByteArray &stepData)
|
|
|
|
|
{
|
|
|
|
|
d->stepData = stepData.copy();
|
2004-11-13 10:13:12 +00:00
|
|
|
//tryAgain();
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::setUsername(const QString &user)
|
|
|
|
|
{
|
|
|
|
|
d->c->setClientParams(&user, 0, 0, 0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::setAuthzid(const QString &authzid)
|
|
|
|
|
{
|
|
|
|
|
d->c->setClientParams(0, &authzid, 0, 0);
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-13 10:13:12 +00:00
|
|
|
void SASL::setPassword(const QSecureArray &pass)
|
2004-11-05 08:54:01 +00:00
|
|
|
{
|
|
|
|
|
d->c->setClientParams(0, 0, &pass, 0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::setRealm(const QString &realm)
|
|
|
|
|
{
|
|
|
|
|
d->c->setClientParams(0, 0, 0, &realm);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::continueAfterParams()
|
|
|
|
|
{
|
2004-11-13 10:13:12 +00:00
|
|
|
//tryAgain();
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::continueAfterAuthCheck()
|
|
|
|
|
{
|
2004-11-13 10:13:12 +00:00
|
|
|
//tryAgain();
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int SASL::ssf() const
|
|
|
|
|
{
|
|
|
|
|
return d->c->security();
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-13 10:13:12 +00:00
|
|
|
bool SASL::haveError() const
|
|
|
|
|
{
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int SASL::bytesAvailable() const
|
|
|
|
|
{
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int SASL::bytesOutgoingAvailable() const
|
|
|
|
|
{
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::close()
|
|
|
|
|
{
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::write(const QSecureArray &a)
|
|
|
|
|
{
|
|
|
|
|
Q_UNUSED(a);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
QSecureArray SASL::read()
|
|
|
|
|
{
|
|
|
|
|
return QSecureArray();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void SASL::writeIncoming(const QByteArray &a)
|
|
|
|
|
{
|
|
|
|
|
Q_UNUSED(a);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
QByteArray SASL::readOutgoing(int *plainBytes)
|
|
|
|
|
{
|
|
|
|
|
Q_UNUSED(plainBytes);
|
|
|
|
|
return QByteArray();
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-05 08:54:01 +00:00
|
|
|
}
|
