]> git.ipfire.org Git - thirdparty/cups.git/blame - cups/usersys.c
projects / thirdparty / cups.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Full sweep of all Clang warnings, plus some bug fixes for incorrect memcpy usage.
[thirdparty/cups.git] / cups / usersys.c
CommitLineData
ef416fc2 1/*
f2d18633 2 * "$Id$"
ef416fc2 3 *
83bc2aac
MS		 4 * User, system, and password routines for CUPS.
5 *
7e86f2f6 6 * Copyright 2007-2014 by Apple Inc.
83bc2aac
MS		 7 * Copyright 1997-2006 by Easy Software Products.
8 *
9 * These coded instructions, statements, and computer programs are the
10 * property of Apple Inc. and are protected by Federal copyright
11 * law. Distribution and use rights are outlined in the file "LICENSE.txt"
12 * which should have been included with this file. If this file is
13 * file is missing or damaged, see the license at "http://www.cups.org/".
14 *
15 * This file is subject to the Apple OS-Developed Software exception.
ef416fc2 16 */
17
18/*
19 * Include necessary headers...
20 */
21
71e16022 22#include "cups-private.h"
ef416fc2 23#include <stdlib.h>
e00b005a 24#include <sys/stat.h>
ef416fc2 25#ifdef WIN32
26# include <windows.h>
5a6b583a
MS		 27#else
28# include <pwd.h>
dcb445bc 29# include <termios.h>
db8b865d 30# include <sys/utsname.h>
ef416fc2 31#endif /* WIN32 */
32
33
dcb445bc
MS		 34/*
35 * Local constants...
36 */
37
38#define _CUPS_PASSCHAR '*' /* Character that is echoed for password */
39
40
b423cd4c 41/*
42 * Local functions...
43 */
44
e07d4801
MS		 45static void cups_read_client_conf(cups_file_t *fp,
46 _cups_globals_t *cg,
47 const char *cups_encryption,
7cf5915e 48 const char *cups_server,
3e7fe0ca 49 const char *cups_user,
07ed0e9a
MS		 50#ifdef HAVE_GSSAPI
51 const char *cups_gssservicename,
52#endif /* HAVE_GSSAPI */
7cf5915e
MS		 53 const char *cups_anyroot,
54 const char *cups_expiredroot,
55 const char *cups_expiredcerts);
b423cd4c 56
57
ef416fc2 58/*
5a6b583a 59 * 'cupsEncryption()' - Get the current encryption settings.
ef416fc2 60 *
61 * The default encryption setting comes from the CUPS_ENCRYPTION
568fa3fa 62 * environment variable, then the ~/.cups/client.conf file, and finally the
ef416fc2 63 * /etc/cups/client.conf file. If not set, the default is
cb7f98ee 64 * @code HTTP_ENCRYPTION_IF_REQUESTED@.
5a6b583a
MS		 65 *
66 * Note: The current encryption setting is tracked separately for each thread
67 * in a program. Multi-threaded programs that override the setting via the
68 * @link cupsSetEncryption@ function need to do so in each thread for the same
69 * setting to be used.
ef416fc2 70 */
71
72http_encryption_t /* O - Encryption settings */
73cupsEncryption(void)
74{
ef416fc2 75 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
76
77
ef416fc2 78 if (cg->encryption == (http_encryption_t)-1)
e07d4801 79 _cupsSetDefaults();
ef416fc2 80
81 return (cg->encryption);
82}
83
84
85/*
86 * 'cupsGetPassword()' - Get a password from the user.
87 *
5a738aea 88 * Uses the current password callback function. Returns @code NULL@ if the
ecdc0628 89 * user does not provide a password.
5a6b583a
MS		 90 *
91 * Note: The current password callback function is tracked separately for each
92 * thread in a program. Multi-threaded programs that override the setting via
93 * the @link cupsSetPasswordCB@ or @link cupsSetPasswordCB2@ functions need to
94 * do so in each thread for the same function to be used.
ef416fc2 95 */
96
97const char * /* O - Password */
98cupsGetPassword(const char *prompt) /* I - Prompt string */
99{
f11a948a
MS		 100 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
101
102
103 return ((cg->password_cb)(prompt, NULL, NULL, NULL, cg->password_data));
104}
105
106
107/*
108 * 'cupsGetPassword2()' - Get a password from the user using the advanced
5a6b583a 109 * password callback.
f11a948a
MS		 110 *
111 * Uses the current password callback function. Returns @code NULL@ if the
112 * user does not provide a password.
113 *
5a6b583a
MS		 114 * Note: The current password callback function is tracked separately for each
115 * thread in a program. Multi-threaded programs that override the setting via
116 * the @link cupsSetPasswordCB@ or @link cupsSetPasswordCB2@ functions need to
117 * do so in each thread for the same function to be used.
118 *
f3c17241 119 * @since CUPS 1.4/OS X 10.6@
f11a948a
MS		 120 */
121
122const char * /* O - Password */
123cupsGetPassword2(const char *prompt, /* I - Prompt string */
124 http_t *http, /* I - Connection to server or @code CUPS_HTTP_DEFAULT@ */
125 const char *method, /* I - Request method ("GET", "POST", "PUT") */
126 const char *resource) /* I - Resource path */
127{
128 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
129
130
131 if (!http)
132 http = _cupsConnect();
133
134 return ((cg->password_cb)(prompt, http, method, resource, cg->password_data));
ef416fc2 135}
136
137
ef416fc2 138/*
5a6b583a
MS		 139 * 'cupsServer()' - Return the hostname/address of the current server.
140 *
141 * The default server comes from the CUPS_SERVER environment variable, then the
142 * ~/.cups/client.conf file, and finally the /etc/cups/client.conf file. If not
143 * set, the default is the local system - either "localhost" or a domain socket
144 * path.
ef416fc2 145 *
5a6b583a
MS		 146 * The returned value can be a fully-qualified hostname, a numeric IPv4 or IPv6
147 * address, or a domain socket pathname.
148 *
149 * Note: The current server is tracked separately for each thread in a program.
150 * Multi-threaded programs that override the server via the
151 * @link cupsSetServer@ function need to do so in each thread for the same
152 * server to be used.
ef416fc2 153 */
154
155const char * /* O - Server name */
156cupsServer(void)
157{
ef416fc2 158 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
159
160
ef416fc2 161 if (!cg->server[0])
e07d4801 162 _cupsSetDefaults();
ef416fc2 163
e07d4801
MS		 164 return (cg->server);
165}
ef416fc2 166
d09495fa 167
7cf5915e
MS		 168/*
169 * 'cupsSetClientCertCB()' - Set the client certificate callback.
170 *
171 * Pass @code NULL@ to restore the default callback.
172 *
173 * Note: The current certificate callback is tracked separately for each thread
174 * in a program. Multi-threaded programs that override the callback need to do
175 * so in each thread for the same callback to be used.
176 *
f3c17241 177 * @since CUPS 1.5/OS X 10.7@
7cf5915e
MS		 178 */
179
180void
181cupsSetClientCertCB(
182 cups_client_cert_cb_t cb, /* I - Callback function */
183 void *user_data) /* I - User data pointer */
184{
185 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
186
187
188 cg->client_cert_cb = cb;
189 cg->client_cert_data = user_data;
190}
191
192
193/*
194 * 'cupsSetCredentials()' - Set the default credentials to be used for SSL/TLS
195 * connections.
196 *
197 * Note: The default credentials are tracked separately for each thread in a
198 * program. Multi-threaded programs that override the setting need to do so in
199 * each thread for the same setting to be used.
200 *
f3c17241 201 * @since CUPS 1.5/OS X 10.7@
7cf5915e
MS		 202 */
203
204int /* O - Status of call (0 = success) */
205cupsSetCredentials(
206 cups_array_t *credentials) /* I - Array of credentials */
207{
208 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
209
210
211 if (cupsArrayCount(credentials) < 1)
212 return (-1);
213
214 _httpFreeCredentials(cg->tls_credentials);
85dda01c 215 cg->tls_credentials = _httpCreateCredentials(credentials);
7cf5915e
MS		 216
217 return (cg->tls_credentials ? 0 : -1);
218}
219
220
e07d4801
MS		 221/*
222 * 'cupsSetEncryption()' - Set the encryption preference.
5a6b583a
MS		 223 *
224 * The default encryption setting comes from the CUPS_ENCRYPTION
225 * environment variable, then the ~/.cups/client.conf file, and finally the
226 * /etc/cups/client.conf file. If not set, the default is
cb7f98ee 227 * @code HTTP_ENCRYPTION_IF_REQUESTED@.
5a6b583a
MS		 228 *
229 * Note: The current encryption setting is tracked separately for each thread
230 * in a program. Multi-threaded programs that override the setting need to do
231 * so in each thread for the same setting to be used.
e07d4801 232 */
ef416fc2 233
e07d4801
MS		 234void
235cupsSetEncryption(http_encryption_t e) /* I - New encryption preference */
236{
237 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
ef416fc2 238
ef416fc2 239
e07d4801 240 cg->encryption = e;
ef416fc2 241
e07d4801
MS		 242 if (cg->http)
243 httpEncryption(cg->http, e);
ef416fc2 244}
245
246
247/*
248 * 'cupsSetPasswordCB()' - Set the password callback for CUPS.
249 *
5a6b583a
MS		 250 * Pass @code NULL@ to restore the default (console) password callback, which
251 * reads the password from the console. Programs should call either this
252 * function or @link cupsSetPasswordCB2@, as only one callback can be registered
253 * by a program per thread.
254 *
255 * Note: The current password callback is tracked separately for each thread
256 * in a program. Multi-threaded programs that override the callback need to do
257 * so in each thread for the same callback to be used.
ef416fc2 258 */
259
260void
261cupsSetPasswordCB(cups_password_cb_t cb)/* I - Callback function */
262{
263 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
264
265
f11a948a
MS		 266 if (cb == (cups_password_cb_t)0)
267 cg->password_cb = (cups_password_cb2_t)_cupsGetPassword;
268 else
269 cg->password_cb = (cups_password_cb2_t)cb;
270
271 cg->password_data = NULL;
272}
273
274
275/*
276 * 'cupsSetPasswordCB2()' - Set the advanced password callback for CUPS.
277 *
5a6b583a
MS		 278 * Pass @code NULL@ to restore the default (console) password callback, which
279 * reads the password from the console. Programs should call either this
280 * function or @link cupsSetPasswordCB2@, as only one callback can be registered
281 * by a program per thread.
282 *
283 * Note: The current password callback is tracked separately for each thread
284 * in a program. Multi-threaded programs that override the callback need to do
285 * so in each thread for the same callback to be used.
f11a948a 286 *
f3c17241 287 * @since CUPS 1.4/OS X 10.6@
f11a948a
MS		 288 */
289
290void
291cupsSetPasswordCB2(
292 cups_password_cb2_t cb, /* I - Callback function */
293 void *user_data) /* I - User data pointer */
294{
295 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
296
297
298 if (cb == (cups_password_cb2_t)0)
299 cg->password_cb = (cups_password_cb2_t)_cupsGetPassword;
ef416fc2 300 else
301 cg->password_cb = cb;
f11a948a
MS		 302
303 cg->password_data = user_data;
ef416fc2 304}
305
306
307/*
5a6b583a 308 * 'cupsSetServer()' - Set the default server name and port.
ef416fc2 309 *
310 * The "server" string can be a fully-qualified hostname, a numeric
5a6b583a
MS		 311 * IPv4 or IPv6 address, or a domain socket pathname. Hostnames and numeric IP
312 * addresses can be optionally followed by a colon and port number to override
313 * the default port 631, e.g. "hostname:8631". Pass @code NULL@ to restore the
314 * default server name and port.
315 *
316 * Note: The current server is tracked separately for each thread in a program.
317 * Multi-threaded programs that override the server need to do so in each
318 * thread for the same server to be used.
ef416fc2 319 */
320
321void
322cupsSetServer(const char *server) /* I - Server name */
323{
0cb67df3
MS		 324 char *options, /* Options */
325 *port; /* Pointer to port */
ef416fc2 326 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
327
328
329 if (server)
330 {
331 strlcpy(cg->server, server, sizeof(cg->server));
332
0cb67df3
MS		 333 if (cg->server[0] != '/' && (options = strrchr(cg->server, '/')) != NULL)
334 {
335 *options++ = '\0';
336
337 if (!strcmp(options, "version=1.0"))
338 cg->server_version = 10;
339 else if (!strcmp(options, "version=1.1"))
340 cg->server_version = 11;
341 else if (!strcmp(options, "version=2.0"))
342 cg->server_version = 20;
343 else if (!strcmp(options, "version=2.1"))
344 cg->server_version = 21;
345 else if (!strcmp(options, "version=2.2"))
346 cg->server_version = 22;
347 }
567f49cb
MS		 348 else
349 cg->server_version = 20;
0cb67df3 350
ef416fc2 351 if (cg->server[0] != '/' && (port = strrchr(cg->server, ':')) != NULL &&
352 !strchr(port, ']') && isdigit(port[1] & 255))
353 {
354 *port++ = '\0';
355
e07d4801 356 cg->ipp_port = atoi(port);
ef416fc2 357 }
358
359 if (cg->server[0] == '/')
5a9febac 360 strlcpy(cg->servername, "localhost", sizeof(cg->servername));
ef416fc2 361 else
362 strlcpy(cg->servername, cg->server, sizeof(cg->servername));
363 }
364 else
365 {
0cb67df3
MS		 366 cg->server[0] = '\0';
367 cg->servername[0] = '\0';
368 cg->server_version = 20;
ef416fc2 369 }
5a738aea
MS		 370
371 if (cg->http)
372 {
373 httpClose(cg->http);
374 cg->http = NULL;
375 }
ef416fc2 376}
377
378
7cf5915e
MS		 379/*
380 * 'cupsSetServerCertCB()' - Set the server certificate callback.
381 *
382 * Pass @code NULL@ to restore the default callback.
383 *
384 * Note: The current credentials callback is tracked separately for each thread
385 * in a program. Multi-threaded programs that override the callback need to do
386 * so in each thread for the same callback to be used.
387 *
f3c17241 388 * @since CUPS 1.5/OS X 10.7@
7cf5915e
MS		 389 */
390
391void
392cupsSetServerCertCB(
393 cups_server_cert_cb_t cb, /* I - Callback function */
394 void *user_data) /* I - User data pointer */
395{
396 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
397
398
399 cg->server_cert_cb = cb;
400 cg->server_cert_data = user_data;
401}
402
403
ef416fc2 404/*
405 * 'cupsSetUser()' - Set the default user name.
406 *
5a738aea 407 * Pass @code NULL@ to restore the default user name.
5a6b583a
MS		 408 *
409 * Note: The current user name is tracked separately for each thread in a
410 * program. Multi-threaded programs that override the user name need to do so
411 * in each thread for the same user name to be used.
ef416fc2 412 */
413
414void
415cupsSetUser(const char *user) /* I - User name */
416{
417 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
418
419
420 if (user)
421 strlcpy(cg->user, user, sizeof(cg->user));
422 else
423 cg->user[0] = '\0';
424}
425
426
db8b865d
MS		 427/*
428 * 'cupsSetUserAgent()' - Set the default HTTP User-Agent string.
429 *
430 * Setting the string to NULL forces the default value containing the CUPS
431 * version, IPP version, and operating system version and architecture.
432 *
9c0e8e5d 433 * @since CUPS 1.7/OS X 10.9@
db8b865d
MS		 434 */
435
436void
437cupsSetUserAgent(const char *user_agent)/* I - User-Agent string or @code NULL@ */
438{
439 _cups_globals_t *cg = _cupsGlobals();
440 /* Thread globals */
441#ifdef WIN32
442 SYSTEM_INFO sysinfo; /* System information */
443 OSVERSIONINFO version; /* OS version info */
444#else
445 struct utsname name; /* uname info */
446#endif /* WIN32 */
447
448
449 if (user_agent)
450 {
451 strlcpy(cg->user_agent, user_agent, sizeof(cg->user_agent));
452 return;
453 }
454
455#ifdef WIN32
456 version.dwOSVersionInfoSize = sizeof(OSVERSIONINFO);
457 GetVersionEx(&version);
458 GetNativeSystemInfo(&sysinfo);
459
460 snprintf(cg->user_agent, sizeof(cg->user_agent),
461 CUPS_MINIMAL " (Windows %d.%d; %s) IPP/2.0",
462 version.dwMajorVersion, version.dwMinorVersion,
463 sysinfo.wProcessorArchitecture
464 == PROCESSOR_ARCHITECTURE_AMD64 ? "amd64" :
465 sysinfo.wProcessorArchitecture
466 == PROCESSOR_ARCHITECTURE_ARM ? "arm" :
467 sysinfo.wProcessorArchitecture
468 == PROCESSOR_ARCHITECTURE_IA64 ? "ia64" :
469 sysinfo.wProcessorArchitecture
470 == PROCESSOR_ARCHITECTURE_INTEL ? "intel" :
471 "unknown");
472
473#else
474 uname(&name);
475
476 snprintf(cg->user_agent, sizeof(cg->user_agent),
477 CUPS_MINIMAL " (%s %s; %s) IPP/2.0",
478 name.sysname, name.release, name.machine);
479#endif /* WIN32 */
480}
481
482
ef416fc2 483/*
484 * 'cupsUser()' - Return the current user's name.
5a6b583a
MS		 485 *
486 * Note: The current user name is tracked separately for each thread in a
487 * program. Multi-threaded programs that override the user name with the
488 * @link cupsSetUser@ function need to do so in each thread for the same user
489 * name to be used.
ef416fc2 490 */
491
492const char * /* O - User name */
493cupsUser(void)
494{
495 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
496
497
498 if (!cg->user[0])
3e7fe0ca 499 _cupsSetDefaults();
ef416fc2 500
501 return (cg->user);
502}
503
504
db8b865d
MS		 505/*
506 * 'cupsUserAgent()' - Return the default HTTP User-Agent string.
507 *
9c0e8e5d 508 * @since CUPS 1.7/OS X 10.9@
db8b865d
MS		 509 */
510
511const char * /* O - User-Agent string */
512cupsUserAgent(void)
513{
514 _cups_globals_t *cg = _cupsGlobals(); /* Thread globals */
515
516
517 if (!cg->user_agent[0])
518 cupsSetUserAgent(NULL);
519
520 return (cg->user_agent);
521}
522
523
ef416fc2 524/*
525 * '_cupsGetPassword()' - Get a password from the user.
526 */
527
dcb445bc 528const char * /* O - Password or @code NULL@ if none */
ef416fc2 529_cupsGetPassword(const char *prompt) /* I - Prompt string */
530{
5a6b583a 531#ifdef WIN32
dcb445bc
MS		 532 HANDLE tty; /* Console handle */
533 DWORD mode; /* Console mode */
534 char passch, /* Current key press */
535 *passptr, /* Pointer into password string */
536 *passend; /* End of password string */
12f89d24 537 DWORD passbytes; /* Bytes read */
dcb445bc
MS		 538 _cups_globals_t *cg = _cupsGlobals();
539 /* Thread globals */
540
541
5a6b583a 542 /*
dcb445bc 543 * Disable input echo and set raw input...
5a6b583a
MS		 544 */
545
dcb445bc
MS		 546 if ((tty = GetStdHandle(STD_INPUT_HANDLE)) == INVALID_HANDLE_VALUE)
547 return (NULL);
548
549 if (!GetConsoleMode(tty, &mode))
550 return (NULL);
551
552 if (!SetConsoleMode(tty, 0))
553 return (NULL);
554
555 /*
556 * Display the prompt...
557 */
558
559 printf("%s ", prompt);
560 fflush(stdout);
561
562 /*
563 * Read the password string from /dev/tty until we get interrupted or get a
564 * carriage return or newline...
565 */
566
567 passptr = cg->password;
568 passend = cg->password + sizeof(cg->password) - 1;
569
12f89d24 570 while (ReadFile(tty, &passch, 1, &passbytes, NULL))
dcb445bc
MS		 571 {
572 if (passch == 0x0A || passch == 0x0D)
573 {
574 /*
575 * Enter/return...
576 */
577
578 break;
579 }
580 else if (passch == 0x08 || passch == 0x7F)
581 {
582 /*
583 * Backspace/delete (erase character)...
584 */
585
586 if (passptr > cg->password)
587 {
588 passptr --;
589 fputs("\010 \010", stdout);
590 }
591 else
592 putchar(0x07);
593 }
594 else if (passch == 0x15)
595 {
596 /*
597 * CTRL+U (erase line)
598 */
599
600 if (passptr > cg->password)
601 {
602 while (passptr > cg->password)
603 {
604 passptr --;
605 fputs("\010 \010", stdout);
606 }
607 }
608 else
609 putchar(0x07);
610 }
611 else if (passch == 0x03)
612 {
613 /*
614 * CTRL+C...
615 */
616
617 passptr = cg->password;
618 break;
619 }
620 else if ((passch & 255) < 0x20 || passptr >= passend)
621 putchar(0x07);
622 else
623 {
624 *passptr++ = passch;
625 putchar(_CUPS_PASSCHAR);
626 }
627
628 fflush(stdout);
629 }
630
631 putchar('\n');
632 fflush(stdout);
633
634 /*
635 * Cleanup...
636 */
637
638 SetConsoleMode(tty, mode);
639
640 /*
641 * Return the proper value...
642 */
643
644 if (passbytes == 1 && passptr > cg->password)
645 {
646 *passptr = '\0';
647 return (cg->password);
648 }
649 else
650 {
651 memset(cg->password, 0, sizeof(cg->password));
652 return (NULL);
653 }
5a6b583a
MS		 654
655#else
dcb445bc
MS		 656 int tty; /* /dev/tty - never read from stdin */
657 struct termios original, /* Original input mode */
658 noecho; /* No echo input mode */
659 char passch, /* Current key press */
660 *passptr, /* Pointer into password string */
661 *passend; /* End of password string */
662 ssize_t passbytes; /* Bytes read */
663 _cups_globals_t *cg = _cupsGlobals();
664 /* Thread globals */
665
666
5a6b583a 667 /*
dcb445bc 668 * Disable input echo and set raw input...
5a6b583a
MS		 669 */
670
dcb445bc
MS		 671 if ((tty = open("/dev/tty", O_RDONLY)) < 0)
672 return (NULL);
673
674 if (tcgetattr(tty, &original))
675 {
676 close(tty);
677 return (NULL);
678 }
679
680 noecho = original;
7e86f2f6 681 noecho.c_lflag &= (tcflag_t)~(ICANON | ECHO | ECHOE | ISIG);
7cf5915e 682
dcb445bc
MS		 683 if (tcsetattr(tty, TCSAFLUSH, &noecho))
684 {
685 close(tty);
7cf5915e 686 return (NULL);
dcb445bc
MS		 687 }
688
689 /*
690 * Display the prompt...
691 */
692
693 printf("%s ", prompt);
694 fflush(stdout);
695
696 /*
697 * Read the password string from /dev/tty until we get interrupted or get a
698 * carriage return or newline...
699 */
700
701 passptr = cg->password;
702 passend = cg->password + sizeof(cg->password) - 1;
703
704 while ((passbytes = read(tty, &passch, 1)) == 1)
705 {
706 if (passch == noecho.c_cc[VEOL] || passch == noecho.c_cc[VEOL2] ||
707 passch == 0x0A || passch == 0x0D)
708 {
709 /*
710 * Enter/return...
711 */
712
713 break;
714 }
715 else if (passch == noecho.c_cc[VERASE] ||
716 passch == 0x08 || passch == 0x7F)
717 {
718 /*
719 * Backspace/delete (erase character)...
720 */
721
722 if (passptr > cg->password)
723 {
724 passptr --;
725 fputs("\010 \010", stdout);
726 }
727 else
728 putchar(0x07);
729 }
730 else if (passch == noecho.c_cc[VKILL])
731 {
732 /*
733 * CTRL+U (erase line)
734 */
735
736 if (passptr > cg->password)
737 {
738 while (passptr > cg->password)
739 {
740 passptr --;
741 fputs("\010 \010", stdout);
742 }
743 }
744 else
745 putchar(0x07);
746 }
747 else if (passch == noecho.c_cc[VINTR] || passch == noecho.c_cc[VQUIT] ||
748 passch == noecho.c_cc[VEOF])
749 {
750 /*
751 * CTRL+C, CTRL+D, or CTRL+Z...
752 */
753
754 passptr = cg->password;
755 break;
756 }
757 else if ((passch & 255) < 0x20 || passptr >= passend)
758 putchar(0x07);
759 else
760 {
761 *passptr++ = passch;
762 putchar(_CUPS_PASSCHAR);
763 }
764
765 fflush(stdout);
766 }
767
768 putchar('\n');
769 fflush(stdout);
770
771 /*
772 * Cleanup...
773 */
774
775 tcsetattr(tty, TCSAFLUSH, &original);
776 close(tty);
777
778 /*
779 * Return the proper value...
780 */
781
782 if (passbytes == 1 && passptr > cg->password)
783 {
784 *passptr = '\0';
785 return (cg->password);
786 }
7cf5915e 787 else
dcb445bc
MS		 788 {
789 memset(cg->password, 0, sizeof(cg->password));
790 return (NULL);
791 }
ef416fc2 792#endif /* WIN32 */
5a6b583a 793}
ef416fc2 794
795
eac3a0a0
MS		 796#ifdef HAVE_GSSAPI
797/*
798 * '_cupsGSSServiceName()' - Get the GSS (Kerberos) service name.
799 */
800
801const char *
802_cupsGSSServiceName(void)
803{
804 _cups_globals_t *cg = _cupsGlobals(); /* Thread globals */
805
806
807 if (!cg->gss_service_name[0])
808 _cupsSetDefaults();
809
810 return (cg->gss_service_name);
811}
812#endif /* HAVE_GSSAPI */
813
814
ef416fc2 815/*
e07d4801 816 * '_cupsSetDefaults()' - Set the default server, port, and encryption.
b423cd4c 817 */
818
e07d4801
MS		 819void
820_cupsSetDefaults(void)
b423cd4c 821{
822 cups_file_t *fp; /* File */
e07d4801
MS		 823 const char *home, /* Home directory of user */
824 *cups_encryption, /* CUPS_ENCRYPTION env var */
7cf5915e 825 *cups_server, /* CUPS_SERVER env var */
3e7fe0ca 826 *cups_user, /* CUPS_USER/USER env var */
07ed0e9a
MS		 827#ifdef HAVE_GSSAPI
828 *cups_gssservicename, /* CUPS_GSSSERVICENAME env var */
829#endif /* HAVE_GSSAPI */
7cf5915e
MS		 830 *cups_anyroot, /* CUPS_ANYROOT env var */
831 *cups_expiredroot, /* CUPS_EXPIREDROOT env var */
832 *cups_expiredcerts; /* CUPS_EXPIREDCERTS env var */
b423cd4c 833 char filename[1024]; /* Filename */
834 _cups_globals_t *cg = _cupsGlobals(); /* Pointer to library globals */
835
836
e07d4801
MS		 837 DEBUG_puts("_cupsSetDefaults()");
838
839 /*
840 * First collect environment variables...
841 */
842
07ed0e9a
MS		 843 cups_encryption = getenv("CUPS_ENCRYPTION");
844 cups_server = getenv("CUPS_SERVER");
845#ifdef HAVE_GSSAPI
846 cups_gssservicename = getenv("CUPS_GSSSERVICENAME");
847#endif /* HAVE_GSSAPI */
848 cups_anyroot = getenv("CUPS_ANYROOT");
849 cups_expiredroot = getenv("CUPS_EXPIREDROOT");
850 cups_expiredcerts = getenv("CUPS_EXPIREDCERTS");
e07d4801 851
3e7fe0ca 852 if ((cups_user = getenv("CUPS_USER")) == NULL)
4541d836
MS		 853 {
854 /*
855 * Try the USER environment variable...
856 */
857
858 if ((cups_user = getenv("USER")) != NULL)
859 {
860 /*
861 * Validate USER matches the current UID, otherwise don't allow it to
862 * override things... This makes sure that printing after doing su or
863 * sudo records the correct username.
864 */
865
866 struct passwd *pw; /* Account information */
867
868 if ((pw = getpwnam(cups_user)) == NULL || pw->pw_uid != getuid())
869 cups_user = NULL;
870 }
871 }
3e7fe0ca 872
e07d4801 873 /*
10d09e33
MS		 874 * Then, if needed, read the ~/.cups/client.conf or /etc/cups/client.conf
875 * files to get the default values...
e07d4801
MS		 876 */
877
e07d4801 878 if (cg->encryption == (http_encryption_t)-1 || !cg->server[0] ||
3e7fe0ca 879 !cg->user[0] || !cg->ipp_port)
e07d4801 880 {
83bc2aac
MS		 881# ifdef HAVE_GETEUID
882 if ((geteuid() == getuid() || !getuid()) && getegid() == getgid() && (home = getenv("HOME")) != NULL)
883# elif !defined(WIN32)
884 if (getuid() && (home = getenv("HOME")) != NULL)
885# else
10d09e33 886 if ((home = getenv("HOME")) != NULL)
83bc2aac 887# endif /* HAVE_GETEUID */
d09495fa 888 {
10d09e33
MS		 889 /*
890 * Look for ~/.cups/client.conf...
891 */
e07d4801 892
10d09e33
MS		 893 snprintf(filename, sizeof(filename), "%s/.cups/client.conf", home);
894 fp = cupsFileOpen(filename, "r");
895 }
896 else
897 fp = NULL;
e07d4801 898
10d09e33 899 if (!fp)
e07d4801 900 {
e07d4801 901 /*
10d09e33 902 * Look for CUPS_SERVERROOT/client.conf...
e07d4801
MS		 903 */
904
10d09e33
MS		 905 snprintf(filename, sizeof(filename), "%s/client.conf",
906 cg->cups_serverroot);
907 fp = cupsFileOpen(filename, "r");
e07d4801
MS		 908 }
909
10d09e33
MS		 910 /*
911 * Read the configuration file and apply any environment variables; both
912 * functions handle NULL cups_file_t pointers...
913 */
e07d4801 914
3e7fe0ca 915 cups_read_client_conf(fp, cg, cups_encryption, cups_server, cups_user,
07ed0e9a
MS		 916#ifdef HAVE_GSSAPI
917 cups_gssservicename,
918#endif /* HAVE_GSSAPI */
10d09e33
MS		 919 cups_anyroot, cups_expiredroot,
920 cups_expiredcerts);
921 cupsFileClose(fp);
e07d4801
MS		 922 }
923}
924
925
926/*
927 * 'cups_read_client_conf()' - Read a client.conf file.
928 */
929
930static void
931cups_read_client_conf(
932 cups_file_t *fp, /* I - File to read */
933 _cups_globals_t *cg, /* I - Global data */
934 const char *cups_encryption, /* I - CUPS_ENCRYPTION env var */
7cf5915e 935 const char *cups_server, /* I - CUPS_SERVER env var */
3e7fe0ca 936 const char *cups_user, /* I - CUPS_USER env var */
07ed0e9a
MS		 937#ifdef HAVE_GSSAPI
938 const char *cups_gssservicename,
939 /* I - CUPS_GSSSERVICENAME env var */
940#endif /* HAVE_GSSAPI */
7cf5915e
MS		 941 const char *cups_anyroot, /* I - CUPS_ANYROOT env var */
942 const char *cups_expiredroot, /* I - CUPS_EXPIREDROOT env var */
943 const char *cups_expiredcerts) /* I - CUPS_EXPIREDCERTS env var */
e07d4801
MS		 944{
945 int linenum; /* Current line number */
946 char line[1024], /* Line from file */
947 *value, /* Pointer into line */
948 encryption[1024], /* Encryption value */
85dda01c 949#ifndef __APPLE__
7cf5915e 950 server_name[1024], /* ServerName value */
85dda01c 951#endif /* !__APPLE__ */
3e7fe0ca 952 user[256], /* User value */
7cf5915e
MS		 953 any_root[1024], /* AllowAnyRoot value */
954 expired_root[1024], /* AllowExpiredRoot value */
955 expired_certs[1024]; /* AllowExpiredCerts value */
07ed0e9a
MS		 956#ifdef HAVE_GSSAPI
957 char gss_service_name[32]; /* GSSServiceName value */
958#endif /* HAVE_GSSAPI */
e07d4801
MS		 959
960
961 /*
962 * Read from the file...
963 */
964
965 linenum = 0;
966 while (cupsFileGetConf(fp, line, sizeof(line), &value, &linenum))
967 {
968 if (!cups_encryption && cg->encryption == (http_encryption_t)-1 &&
88f9aafc 969 !_cups_strcasecmp(line, "Encryption") && value)
e07d4801
MS		 970 {
971 strlcpy(encryption, value, sizeof(encryption));
972 cups_encryption = encryption;
973 }
85dda01c
MS		 974#ifndef __APPLE__
975 /*
f3c17241 976 * The Server directive is not supported on OS X due to app sandboxing
85dda01c
MS		 977 * restrictions, i.e. not all apps request network access.
978 */
e07d4801 979 else if (!cups_server && (!cg->server[0] || !cg->ipp_port) &&
88f9aafc 980 !_cups_strcasecmp(line, "ServerName") && value)
e07d4801
MS		 981 {
982 strlcpy(server_name, value, sizeof(server_name));
983 cups_server = server_name;
984 }
85dda01c 985#endif /* !__APPLE__ */
3e7fe0ca
MS		 986 else if (!cups_user && !_cups_strcasecmp(line, "User") && value)
987 {
988 strlcpy(user, value, sizeof(user));
989 cups_user = user;
990 }
88f9aafc 991 else if (!cups_anyroot && !_cups_strcasecmp(line, "AllowAnyRoot") && value)
7cf5915e
MS		 992 {
993 strlcpy(any_root, value, sizeof(any_root));
994 cups_anyroot = any_root;
995 }
88f9aafc 996 else if (!cups_expiredroot && !_cups_strcasecmp(line, "AllowExpiredRoot") &&
7cf5915e
MS		 997 value)
998 {
999 strlcpy(expired_root, value, sizeof(expired_root));
1000 cups_expiredroot = expired_root;
1001 }
88f9aafc 1002 else if (!cups_expiredcerts && !_cups_strcasecmp(line, "AllowExpiredCerts") &&
7cf5915e
MS		 1003 value)
1004 {
1005 strlcpy(expired_certs, value, sizeof(expired_certs));
1006 cups_expiredcerts = expired_certs;
1007 }
07ed0e9a 1008#ifdef HAVE_GSSAPI
88f9aafc 1009 else if (!cups_gssservicename && !_cups_strcasecmp(line, "GSSServiceName") &&
07ed0e9a
MS		 1010 value)
1011 {
1012 strlcpy(gss_service_name, value, sizeof(gss_service_name));
1013 cups_gssservicename = gss_service_name;
1014 }
1015#endif /* HAVE_GSSAPI */
e07d4801
MS		 1016 }
1017
1018 /*
1019 * Set values...
1020 */
1021
1022 if (cg->encryption == (http_encryption_t)-1 && cups_encryption)
1023 {
88f9aafc 1024 if (!_cups_strcasecmp(cups_encryption, "never"))
cb7f98ee 1025 cg->encryption = HTTP_ENCRYPTION_NEVER;
88f9aafc 1026 else if (!_cups_strcasecmp(cups_encryption, "always"))
cb7f98ee 1027 cg->encryption = HTTP_ENCRYPTION_ALWAYS;
88f9aafc 1028 else if (!_cups_strcasecmp(cups_encryption, "required"))
cb7f98ee 1029 cg->encryption = HTTP_ENCRYPTION_REQUIRED;
e07d4801 1030 else
cb7f98ee 1031 cg->encryption = HTTP_ENCRYPTION_IF_REQUESTED;
b423cd4c 1032 }
1033
e07d4801 1034 if ((!cg->server[0] || !cg->ipp_port) && cups_server)
6961465f 1035 cupsSetServer(cups_server);
7cf5915e 1036
10d09e33
MS		 1037 if (!cg->server[0])
1038 {
1039#ifdef CUPS_DEFAULT_DOMAINSOCKET
1040 /*
1041 * If we are compiled with domain socket support, only use the
1042 * domain socket if it exists and has the right permissions...
1043 */
1044
1045 struct stat sockinfo; /* Domain socket information */
1046
1047 if (!stat(CUPS_DEFAULT_DOMAINSOCKET, &sockinfo) &&
1048 (sockinfo.st_mode & S_IRWXO) == S_IRWXO)
1049 cups_server = CUPS_DEFAULT_DOMAINSOCKET;
1050 else
1051#endif /* CUPS_DEFAULT_DOMAINSOCKET */
1052 cups_server = "localhost";
1053
1054 cupsSetServer(cups_server);
1055 }
1056
1057 if (!cg->ipp_port)
1058 {
88f9aafc 1059 const char *ipp_port; /* IPP_PORT environment variable */
10d09e33
MS		 1060
1061 if ((ipp_port = getenv("IPP_PORT")) != NULL)
1062 {
1063 if ((cg->ipp_port = atoi(ipp_port)) <= 0)
1064 cg->ipp_port = CUPS_DEFAULT_IPP_PORT;
1065 }
10d09e33 1066 else
88f9aafc 1067 cg->ipp_port = CUPS_DEFAULT_IPP_PORT;
10d09e33
MS		 1068 }
1069
3e7fe0ca
MS		 1070 if (!cg->user[0])
1071 {
1072 if (cups_user)
1073 strlcpy(cg->user, cups_user, sizeof(cg->user));
1074 else
1075 {
1076#ifdef WIN32
1077 /*
1078 * Get the current user name from the OS...
1079 */
1080
1081 DWORD size; /* Size of string */
1082
1083 size = sizeof(cg->user);
1084 if (!GetUserName(cg->user, &size))
1085#else
1086 /*
1087 * Get the user name corresponding to the current UID...
1088 */
1089
1090 struct passwd *pwd; /* User/password entry */
1091
1092 setpwent();
1093 if ((pwd = getpwuid(getuid())) != NULL)
1094 {
1095 /*
1096 * Found a match!
1097 */
1098
1099 strlcpy(cg->user, pwd->pw_name, sizeof(cg->user));
1100 }
1101 else
1102#endif /* WIN32 */
1103 {
1104 /*
1105 * Use the default "unknown" user name...
1106 */
1107
5a9febac 1108 strlcpy(cg->user, "unknown", sizeof(cg->user));
3e7fe0ca
MS		 1109 }
1110 }
1111 }
1112
07ed0e9a
MS		 1113#ifdef HAVE_GSSAPI
1114 if (!cups_gssservicename)
1115 cups_gssservicename = CUPS_DEFAULT_GSSSERVICENAME;
1116
1117 strlcpy(cg->gss_service_name, cups_gssservicename,
1118 sizeof(cg->gss_service_name));
1119#endif /* HAVE_GSSAPI */
1120
7cf5915e 1121 if (cups_anyroot)
88f9aafc
MS		 1122 cg->any_root = !_cups_strcasecmp(cups_anyroot, "yes") ||
1123 !_cups_strcasecmp(cups_anyroot, "on") ||
1124 !_cups_strcasecmp(cups_anyroot, "true");
7cf5915e
MS		 1125
1126 if (cups_expiredroot)
88f9aafc
MS		 1127 cg->expired_root = !_cups_strcasecmp(cups_expiredroot, "yes") ||
1128 !_cups_strcasecmp(cups_expiredroot, "on") ||
1129 !_cups_strcasecmp(cups_expiredroot, "true");
7cf5915e
MS		 1130
1131 if (cups_expiredcerts)
88f9aafc
MS		 1132 cg->expired_certs = !_cups_strcasecmp(cups_expiredcerts, "yes") ||
1133 !_cups_strcasecmp(cups_expiredcerts, "on") ||
1134 !_cups_strcasecmp(cups_expiredcerts, "true");
b423cd4c 1135}
1136
1137
1138/*
f2d18633 1139 * End of "$Id$".
ef416fc2 1140 */
Unnamed repository; edit this file 'description' to name the repository.