| d5a7ea17 |
1 | /* $Id$ |
| 2 | * |
| 3 | * Shared routines for playing with list membership. |
| 4 | * |
| 5 | * Copyright (C) 1999 by the Massachusetts Institute of Technology |
| 6 | * For copying and distribution information, please see the file |
| 7 | * <mit-copyright.h>. |
| 8 | */ |
| 9 | |
| 10 | #include <mit-copyright.h> |
| 11 | #include <moira.h> |
| 12 | #include <mrclient.h> |
| 13 | #include "mrclient-internal.h" |
| 14 | |
| 15 | #include <stdio.h> |
| 16 | #include <stdlib.h> |
| 17 | #include <string.h> |
| 655a8467 |
18 | #include <ctype.h> |
| d5a7ea17 |
19 | |
| cb974713 |
20 | #include <krb5.h> |
| d5a7ea17 |
21 | |
| 22 | RCSID("$Header$"); |
| 23 | |
| d5a7ea17 |
24 | int mrcl_validate_string_member(char *str) |
| 25 | { |
| 655a8467 |
26 | char *p, *lname, *ret; |
| 27 | |
| 28 | for (ret = str; *ret; ret++) |
| 29 | { |
| 30 | if (iscntrl(*ret)) |
| 31 | { |
| 32 | mrcl_set_message("STRING \"%s\" contains control characters, " |
| 33 | "which are not allowed.", str); |
| 34 | return MRCL_REJECT; |
| 35 | } |
| 36 | } |
| d5a7ea17 |
37 | |
| 38 | p = strchr(str, '@'); |
| 39 | if (p) |
| 40 | { |
| 41 | char *host = canonicalize_hostname(strdup(++p)); |
| 42 | |
| 43 | if (mailtype(host) != MAILTYPE_SMTP) |
| 44 | { |
| 45 | free(host); |
| 46 | lname = strdup(str); |
| 47 | *strchr(str, '@') = '\0'; |
| 48 | mrcl_set_message("STRING \"%s\" should be USER or LIST \"%s\" " |
| 49 | "because it is a local name.", lname, str); |
| 50 | free(lname); |
| 51 | return MRCL_REJECT; |
| 52 | } |
| 53 | free(host); |
| 54 | } |
| 55 | else if (!strpbrk(str, "%!")) |
| 56 | { |
| 57 | mrcl_set_message("STRING \"%s\" is not a foreign mail address.\nAdding " |
| 58 | "it to a mailing list may cause the list to break.", |
| b97f7d79 |
59 | str); |
| 74e83a8c |
60 | return MRCL_WARN; |
| d5a7ea17 |
61 | } |
| 62 | |
| 63 | mrcl_clear_message(); |
| 64 | return MRCL_SUCCESS; |
| 65 | } |
| 66 | |
| 67 | int mrcl_validate_kerberos_member(char *str, char **ret) |
| 68 | { |
| 69 | char *p; |
| cb974713 |
70 | int code = 0; |
| 71 | krb5_context context = NULL; |
| 72 | char *default_realm = NULL; |
| d5a7ea17 |
73 | |
| 74 | mrcl_clear_message(); |
| 75 | |
| 138b81d7 |
76 | for (p = str; *p; p++) |
| 77 | { |
| 78 | if (isspace(*p) || *p == ',') |
| 79 | { |
| 80 | mrcl_set_message("KERBEROS member \"%s\" may not contain whitespace " |
| 81 | "or commas.", str); |
| 82 | return MRCL_REJECT; |
| 83 | } |
| 84 | } |
| 85 | |
| d5a7ea17 |
86 | p = strchr(str, '@'); |
| 87 | if (!p) |
| 88 | { |
| 89 | /* An IP address is not a Kerberos principal, but we allow it |
| 90 | * for AFS purposes. |
| 91 | */ |
| 92 | if (strtoul(str, &p, 10) < 256 && (*p == '.') && |
| 93 | strtoul(p + 1, &p, 10) < 256 && (*p == '.') && |
| 94 | strtoul(p + 1, &p, 10) < 256 && (*p == '.') && |
| 95 | strtoul(p + 1, &p, 10) < 256 && !*p) |
| 96 | { |
| 97 | *ret = strdup(str); |
| 98 | return MRCL_SUCCESS; |
| 99 | } |
| 100 | |
| cb974713 |
101 | code = krb5_init_context(&context); |
| 102 | if (!code) |
| 103 | goto out; |
| 104 | |
| 105 | code = krb5_get_default_realm(context, &default_realm); |
| 106 | if (!code) |
| 107 | goto out; |
| d5a7ea17 |
108 | |
| 109 | *ret = malloc(strlen(str) + strlen(default_realm) + 2); |
| 110 | sprintf(*ret, "%s@%s", str, default_realm); |
| 111 | |
| 112 | mrcl_set_message("Warning: default realm \"%s\" added to principal " |
| 113 | "\"%s\"", default_realm, str); |
| cb974713 |
114 | |
| 115 | out: |
| 116 | if (default_realm) |
| 117 | free(default_realm); |
| 118 | if (context) |
| 119 | krb5_free_context(context); |
| 120 | if (!code) |
| 121 | return code; |
| d5a7ea17 |
122 | return MRCL_SUCCESS; |
| 123 | } |
| 124 | |
| 125 | /* Check capitalization. */ |
| 126 | *ret = strdup(str); |
| 127 | p = strchr(*ret, '@'); |
| 128 | while (*++p) |
| 129 | { |
| 130 | if (islower(*p)) |
| 131 | { |
| 132 | *p = toupper(*p); |
| 133 | mrcl_set_message("Warning: set realm in \"%s\" to all caps.", *ret); |
| 134 | } |
| 135 | } |
| 136 | |
| 137 | return MRCL_SUCCESS; |
| 138 | } |
andersk / moira.git / blame