author | zecke <zecke> | 2002-07-12 13:51:37 (UTC) |
---|---|---|
committer | zecke <zecke> | 2002-07-12 13:51:37 (UTC) |
commit | 716211b5e06bb25145cfbcf62a11a7c52c79dde5 (patch) (unidiff) | |
tree | 595c4c15cb0ca31f2579be42ee029c1c30454b9c | |
parent | 7c12000481b535ce54951ef8a53b439814f8fcd6 (diff) | |
download | opie-716211b5e06bb25145cfbcf62a11a7c52c79dde5.zip opie-716211b5e06bb25145cfbcf62a11a7c52c79dde5.tar.gz opie-716211b5e06bb25145cfbcf62a11a7c52c79dde5.tar.bz2 |
Security fix by trolltech
-rw-r--r-- | core/launcher/desktop.cpp | 4 | ||||
-rw-r--r-- | core/launcher/launcher.pro | 2 | ||||
-rw-r--r-- | core/launcher/qcopbridge.cpp | 424 | ||||
-rw-r--r-- | core/launcher/qcopbridge.h | 7 | ||||
-rw-r--r-- | core/launcher/transferserver.cpp | 213 | ||||
-rw-r--r-- | core/launcher/transferserver.h | 23 |
6 files changed, 392 insertions, 281 deletions
diff --git a/core/launcher/desktop.cpp b/core/launcher/desktop.cpp index 24dce73..541b4be 100644 --- a/core/launcher/desktop.cpp +++ b/core/launcher/desktop.cpp | |||
@@ -557,26 +557,26 @@ void Desktop::execAutoStart() { | |||
557 | QString appName; | 557 | QString appName; |
558 | int delay; | 558 | int delay; |
559 | QDateTime now = QDateTime::currentDateTime(); | 559 | QDateTime now = QDateTime::currentDateTime(); |
560 | Config cfg( "autostart" ); | 560 | Config cfg( "autostart" ); |
561 | cfg.setGroup( "AutoStart" ); | 561 | cfg.setGroup( "AutoStart" ); |
562 | appName = cfg.readEntry("Apps", ""); | 562 | appName = cfg.readEntry("Apps", ""); |
563 | delay = (cfg.readEntry("Delay", "0" )).toInt(); | 563 | delay = (cfg.readEntry("Delay", "0" )).toInt(); |
564 | // If the time between suspend and resume was longer then the | 564 | // If the time between suspend and resume was longer then the |
565 | // value saved as delay, start the app | 565 | // value saved as delay, start the app |
566 | if ( suspendTime.secsTo(now) >= (delay*60) ) { | 566 | if ( suspendTime.secsTo(now) >= (delay*60) ) { |
567 | QCopEnvelope e("QPE/System", "execute(QString)"); | 567 | QCopEnvelope e("QPE/System", "execute(QString)"); |
568 | e << QString(appName); | 568 | e << QString(appName); |
569 | } else { | 569 | } //else { |
570 | } | 570 | //} |
571 | } | 571 | } |
572 | 572 | ||
573 | #if defined(QPE_HAVE_TOGGLELIGHT) | 573 | #if defined(QPE_HAVE_TOGGLELIGHT) |
574 | #include <qpe/config.h> | 574 | #include <qpe/config.h> |
575 | 575 | ||
576 | #include <sys/ioctl.h> | 576 | #include <sys/ioctl.h> |
577 | #include <sys/types.h> | 577 | #include <sys/types.h> |
578 | #include <fcntl.h> | 578 | #include <fcntl.h> |
579 | #include <unistd.h> | 579 | #include <unistd.h> |
580 | #include <errno.h> | 580 | #include <errno.h> |
581 | #include <linux/ioctl.h> | 581 | #include <linux/ioctl.h> |
582 | #include <time.h> | 582 | #include <time.h> |
diff --git a/core/launcher/launcher.pro b/core/launcher/launcher.pro index ccf8231..169edc1 100644 --- a/core/launcher/launcher.pro +++ b/core/launcher/launcher.pro | |||
@@ -90,25 +90,25 @@ SOURCES = background.cpp \ | |||
90 | $(OPIEDIR)/rsync/util.c \ | 90 | $(OPIEDIR)/rsync/util.c \ |
91 | $(OPIEDIR)/rsync/version.c \ | 91 | $(OPIEDIR)/rsync/version.c \ |
92 | $(OPIEDIR)/rsync/whole.c \ | 92 | $(OPIEDIR)/rsync/whole.c \ |
93 | $(OPIEDIR)/rsync/qrsync.cpp | 93 | $(OPIEDIR)/rsync/qrsync.cpp |
94 | INTERFACES= syncdialog.ui | 94 | INTERFACES= syncdialog.ui |
95 | INCLUDEPATH += $(OPIEDIR)/include | 95 | INCLUDEPATH += $(OPIEDIR)/include |
96 | DEPENDPATH+= $(OPIEDIR)/include . | 96 | DEPENDPATH+= $(OPIEDIR)/include . |
97 | INCLUDEPATH += $(OPIEDIR)/core/apps/calibrate | 97 | INCLUDEPATH += $(OPIEDIR)/core/apps/calibrate |
98 | DEPENDPATH+= $(OPIEDIR)/core/apps/calibrate | 98 | DEPENDPATH+= $(OPIEDIR)/core/apps/calibrate |
99 | INCLUDEPATH += $(OPIEDIR)/rsync | 99 | INCLUDEPATH += $(OPIEDIR)/rsync |
100 | DEPENDPATH+= $(OPIEDIR)/rsync | 100 | DEPENDPATH+= $(OPIEDIR)/rsync |
101 | TARGET = qpe | 101 | TARGET = qpe |
102 | LIBS += -lqpe -lcrypt -lopie | 102 | LIBS += -lqpe -lcrypt -lopie -luuid |
103 | 103 | ||
104 | TRANSLATIONS = ../../i18n/de/qpe.ts \ | 104 | TRANSLATIONS = ../../i18n/de/qpe.ts \ |
105 | ../../i18n/en/qpe.ts \ | 105 | ../../i18n/en/qpe.ts \ |
106 | ../../i18n/es/qpe.ts \ | 106 | ../../i18n/es/qpe.ts \ |
107 | ../../i18n/fr/qpe.ts \ | 107 | ../../i18n/fr/qpe.ts \ |
108 | ../../i18n/hu/qpe.ts \ | 108 | ../../i18n/hu/qpe.ts \ |
109 | ../../i18n/ja/qpe.ts \ | 109 | ../../i18n/ja/qpe.ts \ |
110 | ../../i18n/ko/qpe.ts \ | 110 | ../../i18n/ko/qpe.ts \ |
111 | ../../i18n/no/qpe.ts \ | 111 | ../../i18n/no/qpe.ts \ |
112 | ../../i18n/pl/qpe.ts \ | 112 | ../../i18n/pl/qpe.ts \ |
113 | ../../i18n/pt/qpe.ts \ | 113 | ../../i18n/pt/qpe.ts \ |
114 | ../../i18n/pt_BR/qpe.ts \ | 114 | ../../i18n/pt_BR/qpe.ts \ |
diff --git a/core/launcher/qcopbridge.cpp b/core/launcher/qcopbridge.cpp index 2d084fc..85993ee 100644 --- a/core/launcher/qcopbridge.cpp +++ b/core/launcher/qcopbridge.cpp | |||
@@ -1,213 +1,245 @@ | |||
1 | /********************************************************************** | 1 | /********************************************************************** |
2 | ** Copyright (C) 2000 Trolltech AS. All rights reserved. | 2 | ** Copyright (C) 2000-2002 Trolltech AS. All rights reserved. |
3 | ** | 3 | ** |
4 | ** This file is part of Qtopia Environment. | 4 | ** This file is part of the Qtopia Environment. |
5 | ** | 5 | ** |
6 | ** This file may be distributed and/or modified under the terms of the | 6 | ** This file may be distributed and/or modified under the terms of the |
7 | ** GNU General Public License version 2 as published by the Free Software | 7 | ** GNU General Public License version 2 as published by the Free Software |
8 | ** Foundation and appearing in the file LICENSE.GPL included in the | 8 | ** Foundation and appearing in the file LICENSE.GPL included in the |
9 | ** packaging of this file. | 9 | ** packaging of this file. |
10 | ** | 10 | ** |
11 | ** This file is provided AS IS with NO WARRANTY OF ANY KIND, INCLUDING THE | 11 | ** This file is provided AS IS with NO WARRANTY OF ANY KIND, INCLUDING THE |
12 | ** WARRANTY OF DESIGN, MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. | 12 | ** WARRANTY OF DESIGN, MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. |
13 | ** | 13 | ** |
14 | ** See http://www.trolltech.com/gpl/ for GPL licensing information. | 14 | ** See http://www.trolltech.com/gpl/ for GPL licensing information. |
15 | ** | 15 | ** |
16 | ** Contact info@trolltech.com if any conditions of this licensing are | 16 | ** Contact info@trolltech.com if any conditions of this licensing are |
17 | ** not clear to you. | 17 | ** not clear to you. |
18 | ** | 18 | ** |
19 | **********************************************************************/ | 19 | **********************************************************************/ |
20 | 20 | ||
21 | #include "qcopbridge.h" | 21 | #include "qcopbridge.h" |
22 | #include "transferserver.h" | 22 | #include "transferserver.h" |
23 | 23 | ||
24 | #ifdef QWS | ||
24 | #include <qpe/qcopenvelope_qws.h> | 25 | #include <qpe/qcopenvelope_qws.h> |
26 | #endif | ||
25 | #include <qpe/qpeapplication.h> | 27 | #include <qpe/qpeapplication.h> |
28 | #include <qpe/version.h> | ||
26 | 29 | ||
27 | #include <qdir.h> | 30 | #include <qdir.h> |
28 | #include <qfile.h> | 31 | #include <qfile.h> |
29 | #include <qtextstream.h> | 32 | #include <qtextstream.h> |
30 | #include <qdatastream.h> | 33 | #include <qdatastream.h> |
31 | #include <qstringlist.h> | 34 | #include <qstringlist.h> |
32 | #include <qfileinfo.h> | 35 | #include <qfileinfo.h> |
33 | #include <qregexp.h> | 36 | #include <qregexp.h> |
37 | #ifdef QWS | ||
34 | #include <qcopchannel_qws.h> | 38 | #include <qcopchannel_qws.h> |
39 | #endif | ||
35 | 40 | ||
36 | // actually this is wrong, _XOPEN_SOURCE should get defined on the commandline | ||
37 | // and it should have a proper value assigned. (Simon) | ||
38 | #if !defined(_XOPEN_SOURCE) | ||
39 | #define _XOPEN_SOURCE | 41 | #define _XOPEN_SOURCE |
40 | #endif | ||
41 | #include <pwd.h> | 42 | #include <pwd.h> |
42 | #include <sys/types.h> | 43 | #include <sys/types.h> |
43 | #include <unistd.h> | 44 | #include <unistd.h> |
44 | 45 | ||
45 | #if defined(_OS_LINUX_) | 46 | #if defined(_OS_LINUX_) |
46 | #include <shadow.h> | 47 | #include <shadow.h> |
47 | #endif | 48 | #endif |
48 | 49 | ||
49 | //#define INSECURE | 50 | //#define INSECURE |
50 | 51 | ||
51 | const int block_size = 51200; | 52 | const int block_size = 51200; |
52 | 53 | ||
53 | QCopBridge::QCopBridge( Q_UINT16 port, QObject *parent, | 54 | QCopBridge::QCopBridge( Q_UINT16 port, QObject *parent , |
54 | const char* name ) | 55 | const char* name ) |
55 | : QServerSocket( port, 1, parent, name ), | 56 | : QServerSocket( port, 1, parent, name ), |
56 | desktopChannel( 0 ), | 57 | desktopChannel( 0 ), |
57 | cardChannel( 0 ) | 58 | cardChannel( 0 ) |
58 | { | 59 | { |
59 | if ( !ok() ) | 60 | if ( !ok() ) |
60 | qWarning( "Failed to bind to port %d", port ); | 61 | qWarning( "Failed to bind to port %d", port ); |
61 | else { | 62 | else { |
62 | desktopChannel = new QCopChannel( "QPE/Desktop", this ); | 63 | #ifndef QT_NO_COP |
63 | connect( desktopChannel, SIGNAL(received(const QCString &, const QByteArray &)), | 64 | desktopChannel = new QCopChannel( "QPE/Desktop", this ); |
64 | this, SLOT(desktopMessage( const QCString &, const QByteArray &)) ); | 65 | connect( desktopChannel, SIGNAL(received(const QCString &, const QByteArray &)), |
65 | cardChannel = new QCopChannel( "QPE/Card", this ); | 66 | this, SLOT(desktopMessage( const QCString &, const QByteArray &)) ); |
66 | connect( cardChannel, SIGNAL(received(const QCString &, const QByteArray &)), | 67 | cardChannel = new QCopChannel( "QPE/Card", this ); |
67 | this, SLOT(desktopMessage( const QCString &, const QByteArray &)) ); | 68 | connect( cardChannel, SIGNAL(received(const QCString &, const QByteArray &)), |
69 | this, SLOT(desktopMessage( const QCString &, const QByteArray &)) ); | ||
70 | #endif | ||
68 | } | 71 | } |
69 | sendSync = FALSE; | 72 | sendSync = FALSE; |
70 | } | 73 | } |
71 | 74 | ||
72 | QCopBridge::~QCopBridge() | 75 | QCopBridge::~QCopBridge() |
73 | { | 76 | { |
77 | #ifndef QT_NO_COP | ||
74 | delete desktopChannel; | 78 | delete desktopChannel; |
79 | #endif | ||
75 | } | 80 | } |
76 | 81 | ||
77 | void QCopBridge::newConnection( int socket ) | 82 | void QCopBridge::newConnection( int socket ) |
78 | { | 83 | { |
79 | QCopBridgePI *pi = new QCopBridgePI( socket, this ); | 84 | QCopBridgePI *pi = new QCopBridgePI( socket, this ); |
80 | openConnections.append( pi ); | 85 | openConnections.append( pi ); |
81 | connect ( pi, SIGNAL( connectionClosed( QCopBridgePI *) ), this, SLOT( connectionClosed( QCopBridgePI *) ) ); | 86 | connect ( pi, SIGNAL( connectionClosed( QCopBridgePI *) ), this, SLOT( connectionClosed( QCopBridgePI *) ) ); |
87 | #ifndef QT_NO_COP | ||
82 | QCopEnvelope( "QPE/System", "setScreenSaverMode(int)" ) << QPEApplication::DisableSuspend; | 88 | QCopEnvelope( "QPE/System", "setScreenSaverMode(int)" ) << QPEApplication::DisableSuspend; |
83 | 89 | #endif | |
90 | |||
84 | if ( sendSync ) { | 91 | if ( sendSync ) { |
85 | pi ->startSync(); | 92 | pi ->startSync(); |
86 | sendSync = FALSE; | 93 | sendSync = FALSE; |
87 | } | 94 | } |
88 | } | 95 | } |
89 | 96 | ||
90 | void QCopBridge::connectionClosed( QCopBridgePI *pi ) | 97 | void QCopBridge::connectionClosed( QCopBridgePI *pi ) |
91 | { | 98 | { |
92 | openConnections.remove( pi ); | 99 | openConnections.remove( pi ); |
93 | if ( openConnections.count() == 0 ) { | 100 | if ( openConnections.count() == 0 ) { |
94 | QCopEnvelope( "QPE/System", "setScreenSaverMode(int)" ) << QPEApplication::Enable; | 101 | #ifndef QT_NO_COP |
102 | QCopEnvelope( "QPE/System", "setScreenSaverMode(int)" ) << QPEApplication::Enable; | ||
103 | #endif | ||
95 | } | 104 | } |
96 | } | 105 | } |
97 | 106 | ||
98 | void QCopBridge::closeOpenConnections() | 107 | void QCopBridge::closeOpenConnections() |
99 | { | 108 | { |
100 | QCopBridgePI *pi; | 109 | QCopBridgePI *pi; |
101 | for ( pi = openConnections.first(); pi != 0; pi = openConnections.next() ) | 110 | for ( pi = openConnections.first(); pi != 0; pi = openConnections.next() ) |
102 | pi->close(); | 111 | pi->close(); |
103 | } | 112 | } |
104 | 113 | ||
105 | 114 | ||
106 | void QCopBridge::desktopMessage( const QCString &command, const QByteArray &args ) | 115 | void QCopBridge::desktopMessage( const QCString &command, const QByteArray &args ) |
107 | { | 116 | { |
108 | command.stripWhiteSpace(); | 117 | command.stripWhiteSpace(); |
109 | 118 | ||
110 | int paren = command.find( "(" ); | 119 | int paren = command.find( "(" ); |
111 | if ( paren <= 0 ) { | 120 | if ( paren <= 0 ) { |
112 | qDebug("DesktopMessage: bad qcop syntax"); | 121 | qDebug("DesktopMessage: bad qcop syntax"); |
113 | return; | 122 | return; |
114 | } | 123 | } |
115 | 124 | ||
116 | QString params = command.mid( paren + 1 ); | 125 | QString params = command.mid( paren + 1 ); |
117 | if ( params[params.length()-1] != ')' ) { | 126 | if ( params[params.length()-1] != ')' ) { |
118 | qDebug("DesktopMessage: bad qcop syntax"); | 127 | qDebug("DesktopMessage: bad qcop syntax"); |
119 | return; | 128 | return; |
120 | } | 129 | } |
121 | 130 | ||
122 | params.truncate( params.length()-1 ); | 131 | params.truncate( params.length()-1 ); |
123 | 132 | ||
124 | QStringList paramList = QStringList::split( ",", params ); | 133 | QStringList paramList = QStringList::split( ",", params ); |
125 | QString data; | 134 | QString data; |
126 | if ( paramList.count() ) { | 135 | if ( paramList.count() ) { |
127 | QDataStream stream( args, IO_ReadOnly ); | 136 | QDataStream stream( args, IO_ReadOnly ); |
128 | for ( QStringList::Iterator it = paramList.begin(); it != paramList.end(); ++it ) { | 137 | for ( QStringList::Iterator it = paramList.begin(); it != paramList.end(); ++it ) { |
129 | QString str; | 138 | QString str; |
130 | if ( *it == "QString" ) { | 139 | if ( *it == "QString" ) { |
131 | stream >> str; | 140 | stream >> str; |
132 | } else if ( *it == "QCString" ) { | 141 | } else if ( *it == "QCString" ) { |
133 | QCString cstr; | 142 | QCString cstr; |
134 | stream >> cstr; | 143 | stream >> cstr; |
135 | str = QString::fromLocal8Bit( cstr ); | 144 | str = QString::fromLocal8Bit( cstr ); |
136 | } else if ( *it == "int" ) { | 145 | } else if ( *it == "int" ) { |
137 | int i; | 146 | int i; |
138 | stream >> i; | 147 | stream >> i; |
139 | str = QString::number( i ); | 148 | str = QString::number( i ); |
140 | } else if ( *it == "bool" ) { | 149 | } else if ( *it == "bool" ) { |
141 | int i; | 150 | int i; |
142 | stream >> i; | 151 | stream >> i; |
143 | str = QString::number( i ); | 152 | str = QString::number( i ); |
144 | } else { | 153 | } else { |
145 | qDebug(" cannot route the argument type %s through the qcop bridge", (*it).latin1() ); | 154 | qDebug(" cannot route the argument type %s throught the qcop bridge", (*it).latin1() ); |
146 | return; | 155 | return; |
147 | } | 156 | } |
148 | str.replace( QRegExp("&"), "&" ); | 157 | QString estr; |
149 | str.replace( QRegExp(" "), "&0x20;" ); | 158 | for (int i=0; i<(int)str.length(); i++) { |
150 | str.replace( QRegExp("\n"), "&0x0d;" ); | 159 | QChar ch = str[i]; |
151 | str.replace( QRegExp("\r"), "&0x0a;" ); | 160 | if ( ch.row() ) |
152 | data += " " + str; | 161 | goto quick; |
153 | } | 162 | switch (ch.cell()) { |
163 | case '&': | ||
164 | estr.append( "&" ); | ||
165 | break; | ||
166 | case ' ': | ||
167 | estr.append( "&0x20;" ); | ||
168 | break; | ||
169 | case '\n': | ||
170 | estr.append( "&0x0d;" ); | ||
171 | break; | ||
172 | case '\r': | ||
173 | estr.append( "&0x0a;" ); | ||
174 | break; | ||
175 | default: quick: | ||
176 | estr.append(ch); | ||
177 | } | ||
178 | } | ||
179 | data += " " + estr; | ||
180 | } | ||
154 | } | 181 | } |
155 | QString sendCommand = QString(command.data()) + data; | 182 | QString sendCommand = QString(command.data()) + data; |
156 | // send the command to all open connections | 183 | // send the command to all open connections |
157 | if ( command == "startSync()" ) { | 184 | if ( command == "startSync()" ) { |
158 | // we need to buffer it a bit | 185 | // we need to buffer it a bit |
159 | sendSync = TRUE; | 186 | sendSync = TRUE; |
160 | startTimer( 20000 ); | 187 | startTimer( 20000 ); |
161 | } | 188 | } |
162 | 189 | ||
163 | QCopBridgePI *pi; | 190 | QCopBridgePI *pi; |
164 | for ( pi = openConnections.first(); pi != 0; pi = openConnections.next() ) { | 191 | for ( pi = openConnections.first(); pi != 0; pi = openConnections.next() ) { |
165 | pi->sendDesktopMessage( sendCommand ); | 192 | pi->sendDesktopMessage( sendCommand ); |
166 | } | 193 | } |
167 | } | 194 | } |
168 | 195 | ||
169 | void QCopBridge::timerEvent( QTimerEvent * ) | 196 | void QCopBridge::timerEvent( QTimerEvent * ) |
170 | { | 197 | { |
171 | sendSync = FALSE; | 198 | sendSync = FALSE; |
172 | killTimers(); | 199 | killTimers(); |
173 | } | 200 | } |
174 | 201 | ||
175 | 202 | ||
176 | QCopBridgePI::QCopBridgePI( int socket, QObject *parent, const char* name ) | 203 | QCopBridgePI::QCopBridgePI( int socket, QObject *parent , const char* name ) |
177 | : QSocket( parent, name ) | 204 | : QSocket( parent, name ) |
178 | { | 205 | { |
179 | setSocket( socket ); | 206 | setSocket( socket ); |
180 | 207 | ||
181 | peerport = peerPort(); | 208 | peerport = peerPort(); |
182 | peeraddress = peerAddress(); | 209 | peeraddress = peerAddress(); |
183 | 210 | ||
184 | #ifndef INSECURE | 211 | #ifndef INSECURE |
185 | if ( !accessAuthorized(peeraddress) ) { | 212 | if ( !SyncAuthentication::isAuthorized(peeraddress) ) { |
186 | state = Forbidden; | 213 | state = Forbidden; |
187 | startTimer( 0 ); | 214 | startTimer( 0 ); |
188 | } else | 215 | } else |
189 | #endif | 216 | #endif |
190 | { | 217 | { |
191 | state = Connected; | 218 | state = Connected; |
192 | sendSync = FALSE; | 219 | sendSync = FALSE; |
193 | connect( this, SIGNAL( readyRead() ), SLOT( read() ) ); | 220 | connect( this, SIGNAL( readyRead() ), SLOT( read() ) ); |
194 | connect( this, SIGNAL( connectionClosed() ), SLOT( connectionClosed() ) ); | 221 | connect( this, SIGNAL( connectionClosed() ), SLOT( connectionClosed() ) ); |
195 | 222 | ||
196 | send( "220 Qtopia QCop bridge ready!" ); | 223 | QString intro="220 Qtopia "; |
197 | state = Wait_USER; | 224 | intro += QPE_VERSION; intro += ";"; |
198 | 225 | intro += "challenge="; intro += SyncAuthentication::serverId(); intro += ";"; | |
199 | // idle timer to close connections when not used anymore | 226 | intro += "loginname="; intro += SyncAuthentication::loginName(); intro += ";"; |
200 | startTimer( 60000 ); | 227 | intro += "displayname="; intro += SyncAuthentication::ownerName(); intro += ";"; |
201 | connected = TRUE; | 228 | send( intro ); |
229 | state = Wait_USER; | ||
230 | |||
231 | // idle timer to close connections when not used anymore | ||
232 | startTimer( 60000 ); | ||
233 | connected = TRUE; | ||
202 | } | 234 | } |
203 | } | 235 | } |
204 | 236 | ||
205 | 237 | ||
206 | QCopBridgePI::~QCopBridgePI() | 238 | QCopBridgePI::~QCopBridgePI() |
207 | { | 239 | { |
208 | 240 | ||
209 | } | 241 | } |
210 | 242 | ||
211 | void QCopBridgePI::connectionClosed() | 243 | void QCopBridgePI::connectionClosed() |
212 | { | 244 | { |
213 | emit connectionClosed( this ); | 245 | emit connectionClosed( this ); |
@@ -223,198 +255,170 @@ void QCopBridgePI::sendDesktopMessage( const QString &msg ) | |||
223 | 255 | ||
224 | 256 | ||
225 | void QCopBridgePI::send( const QString& msg ) | 257 | void QCopBridgePI::send( const QString& msg ) |
226 | { | 258 | { |
227 | QTextStream os( this ); | 259 | QTextStream os( this ); |
228 | os << msg << endl; | 260 | os << msg << endl; |
229 | //qDebug( "sending qcop message: %s", msg.latin1() ); | 261 | //qDebug( "sending qcop message: %s", msg.latin1() ); |
230 | } | 262 | } |
231 | 263 | ||
232 | void QCopBridgePI::read() | 264 | void QCopBridgePI::read() |
233 | { | 265 | { |
234 | while ( canReadLine() ) | 266 | while ( canReadLine() ) |
235 | process( readLine().stripWhiteSpace() ); | 267 | process( readLine().stripWhiteSpace() ); |
236 | } | ||
237 | |||
238 | bool QCopBridgePI::checkUser( const QString& user ) | ||
239 | { | ||
240 | if ( user.isEmpty() ) return FALSE; | ||
241 | |||
242 | struct passwd *pw; | ||
243 | pw = getpwuid( geteuid() ); | ||
244 | QString euser = QString::fromLocal8Bit( pw->pw_name ); | ||
245 | return user == euser; | ||
246 | } | ||
247 | |||
248 | bool QCopBridgePI::checkPassword( const QString& password ) | ||
249 | { | ||
250 | // ### HACK for testing on local host | ||
251 | return true; | ||
252 | |||
253 | /* | ||
254 | struct passwd *pw = 0; | ||
255 | struct spwd *spw = 0; | ||
256 | |||
257 | pw = getpwuid( geteuid() ); | ||
258 | spw = getspnam( pw->pw_name ); | ||
259 | |||
260 | QString cpwd = QString::fromLocal8Bit( pw->pw_passwd ); | ||
261 | if ( cpwd == "x" && spw ) | ||
262 | cpwd = QString::fromLocal8Bit( spw->sp_pwdp ); | ||
263 | |||
264 | QString cpassword = QString::fromLocal8Bit( crypt( password.local8Bit(), cpwd.local8Bit() ) ); | ||
265 | return cpwd == cpassword; | ||
266 | */ | ||
267 | } | 268 | } |
268 | 269 | ||
269 | void QCopBridgePI::process( const QString& message ) | 270 | void QCopBridgePI::process( const QString& message ) |
270 | { | 271 | { |
271 | //qDebug( "Command: %s", message.latin1() ); | 272 | //qDebug( "Command: %s", message.latin1() ); |
272 | 273 | ||
273 | // split message using "," as separator | 274 | // split message using "," as separator |
274 | QStringList msg = QStringList::split( " ", message ); | 275 | QStringList msg = QStringList::split( " ", message ); |
275 | if ( msg.isEmpty() ) return; | 276 | if ( msg.isEmpty() ) return; |
276 | 277 | ||
277 | // command token | 278 | // command token |
278 | QString cmd = msg[0].upper(); | 279 | QString cmd = msg[0].upper(); |
279 | 280 | ||
280 | // argument token | 281 | // argument token |
281 | QString arg; | 282 | QString arg; |
282 | if ( msg.count() >= 2 ) | 283 | if ( msg.count() >= 2 ) |
283 | arg = msg[1]; | 284 | arg = msg[1]; |
284 | 285 | ||
285 | // we always respond to QUIT, regardless of state | 286 | // we always respond to QUIT, regardless of state |
286 | if ( cmd == "QUIT" ) { | 287 | if ( cmd == "QUIT" ) { |
287 | send( "211 Have a nice day!" ); | 288 | send( "211 Have a nice day!" ); |
288 | delete this; | 289 | delete this; |
289 | return; | 290 | return; |
290 | } | 291 | } |
291 | 292 | ||
292 | // connected to client | 293 | // connected to client |
293 | if ( Connected == state ) | 294 | if ( Connected == state ) |
294 | return; | 295 | return; |
295 | 296 | ||
296 | // waiting for user name | 297 | // waiting for user name |
297 | if ( Wait_USER == state ) { | 298 | if ( Wait_USER == state ) { |
298 | 299 | ||
299 | if ( cmd != "USER" || msg.count() < 2 || !checkUser( arg ) ) { | 300 | if ( cmd != "USER" || msg.count() < 2 || !SyncAuthentication::checkUser( arg ) ) { |
300 | send( "530 Please login with USER and PASS" ); | 301 | send( "530 Please login with USER and PASS" ); |
301 | return; | 302 | return; |
302 | } | 303 | } |
303 | send( "331 User name ok, need password" ); | 304 | send( "331 User name ok, need password" ); |
304 | state = Wait_PASS; | 305 | state = Wait_PASS; |
305 | return; | 306 | return; |
306 | } | 307 | } |
307 | 308 | ||
308 | // waiting for password | 309 | // waiting for password |
309 | if ( Wait_PASS == state ) { | 310 | if ( Wait_PASS == state ) { |
310 | 311 | ||
311 | if ( cmd != "PASS" || !checkPassword( arg ) ) { | 312 | if ( cmd != "PASS" || !SyncAuthentication::checkPassword( arg ) ) { |
312 | //if ( cmd != "PASS" || msg.count() < 2 || !checkPassword( arg ) ) { | 313 | send( "530 Please login with USER and PASS" ); |
313 | send( "530 Please login with USER and PASS" ); | 314 | return; |
314 | return; | 315 | } |
315 | } | 316 | send( "230 User logged in, proceed" ); |
316 | send( "230 User logged in, proceed" ); | 317 | state = Ready; |
317 | state = Ready; | 318 | if ( sendSync ) { |
318 | if ( sendSync ) { | 319 | sendDesktopMessage( "startSync()" ); |
319 | sendDesktopMessage( "startSync()" ); | 320 | sendSync = FALSE; |
320 | sendSync = FALSE; | 321 | } |
321 | } | 322 | return; |
322 | return; | ||
323 | } | 323 | } |
324 | 324 | ||
325 | // noop (NOOP) | 325 | // noop (NOOP) |
326 | else if ( cmd == "NOOP" ) { | 326 | else if ( cmd == "NOOP" ) { |
327 | connected = TRUE; | 327 | connected = TRUE; |
328 | send( "200 Command okay" ); | 328 | send( "200 Command okay" ); |
329 | } | 329 | } |
330 | 330 | ||
331 | // call (CALL) | 331 | // call (CALL) |
332 | else if ( cmd == "CALL" ) { | 332 | else if ( cmd == "CALL" ) { |
333 | 333 | ||
334 | // example: call QPE/System execute(QString) addressbook | 334 | // example: call QPE/System execute(QString) addressbook |
335 | 335 | ||
336 | if ( msg.count() < 3 ) { | 336 | if ( msg.count() < 3 ) { |
337 | send( "500 Syntax error, command unrecognized" ); | 337 | send( "500 Syntax error, command unrecognized" ); |
338 | } | 338 | } |
339 | else { | 339 | else { |
340 | 340 | ||
341 | QString channel = msg[1]; | 341 | QString channel = msg[1]; |
342 | QString command = msg[2]; | 342 | QString command = msg[2]; |
343 | 343 | ||
344 | command.stripWhiteSpace(); | 344 | command.stripWhiteSpace(); |
345 | 345 | ||
346 | int paren = command.find( "(" ); | 346 | int paren = command.find( "(" ); |
347 | if ( paren <= 0 ) { | 347 | if ( paren <= 0 ) { |
348 | send( "500 Syntax error, command unrecognized" ); | 348 | send( "500 Syntax error, command unrecognized" ); |
349 | return; | 349 | return; |
350 | } | 350 | } |
351 | 351 | ||
352 | QString params = command.mid( paren + 1 ); | 352 | QString params = command.mid( paren + 1 ); |
353 | if ( params[params.length()-1] != ')' ) { | 353 | if ( params[params.length()-1] != ')' ) { |
354 | send( "500 Syntax error, command unrecognized" ); | 354 | send( "500 Syntax error, command unrecognized" ); |
355 | return; | 355 | return; |
356 | } | 356 | } |
357 | 357 | ||
358 | params.truncate( params.length()-1 ); | 358 | params.truncate( params.length()-1 ); |
359 | QByteArray buffer; | 359 | QByteArray buffer; |
360 | QDataStream ds( buffer, IO_WriteOnly ); | 360 | QDataStream ds( buffer, IO_WriteOnly ); |
361 | 361 | ||
362 | int msgId = 3; | 362 | int msgId = 3; |
363 | 363 | ||
364 | QStringList paramList = QStringList::split( ",", params ); | 364 | QStringList paramList = QStringList::split( ",", params ); |
365 | if ( paramList.count() > msg.count() - 3 ) { | 365 | if ( paramList.count() > msg.count() - 3 ) { |
366 | send( "500 Syntax error, command unrecognized" ); | 366 | send( "500 Syntax error, command unrecognized" ); |
367 | return; | 367 | return; |
368 | } | 368 | } |
369 | 369 | ||
370 | for ( QStringList::Iterator it = paramList.begin(); it != paramList.end(); ++it ) { | 370 | for ( QStringList::Iterator it = paramList.begin(); it != paramList.end(); ++it ) { |
371 | 371 | ||
372 | QString arg = msg[msgId]; | 372 | QString arg = msg[msgId]; |
373 | arg.replace( QRegExp("&0x20;"), " " ); | 373 | arg.replace( QRegExp("&0x20;"), " " ); |
374 | arg.replace( QRegExp("&"), "&" ); | 374 | arg.replace( QRegExp("&"), "&" ); |
375 | arg.replace( QRegExp("&0x0d;"), "\n" ); | 375 | arg.replace( QRegExp("&0x0d;"), "\n" ); |
376 | arg.replace( QRegExp("&0x0a;"), "\r" ); | 376 | arg.replace( QRegExp("&0x0a;"), "\r" ); |
377 | if ( *it == "QString" ) | 377 | if ( *it == "QString" ) |
378 | ds << arg; | 378 | ds << arg; |
379 | else if ( *it == "QCString" ) | 379 | else if ( *it == "QCString" ) |
380 | ds << arg.local8Bit(); | 380 | ds << arg.local8Bit(); |
381 | else if ( *it == "int" ) | 381 | else if ( *it == "int" ) |
382 | ds << arg.toInt(); | 382 | ds << arg.toInt(); |
383 | else if ( *it == "bool" ) | 383 | else if ( *it == "bool" ) |
384 | ds << arg.toInt(); | 384 | ds << arg.toInt(); |
385 | else { | 385 | else { |
386 | send( "500 Syntax error, command unrecognized" ); | 386 | send( "500 Syntax error, command unrecognized" ); |
387 | return; | 387 | return; |
388 | } | 388 | } |
389 | msgId++; | 389 | msgId++; |
390 | } | 390 | } |
391 | 391 | ||
392 | if ( !QCopChannel::isRegistered( channel.latin1() ) ) { | 392 | #ifndef QT_NO_COP |
393 | // send message back about it | 393 | if ( !QCopChannel::isRegistered( channel.latin1() ) ) { |
394 | QString answer = "599 ChannelNotRegistered " + channel; | 394 | // send message back about it |
395 | send( answer ); | 395 | QString answer = "599 ChannelNotRegistered " + channel; |
396 | return; | 396 | send( answer ); |
397 | } | 397 | return; |
398 | 398 | } | |
399 | if ( paramList.count() ) | 399 | #endif |
400 | QCopChannel::send( channel.latin1(), command.latin1(), buffer ); | 400 | |
401 | else | 401 | #ifndef QT_NO_COP |
402 | QCopChannel::send( channel.latin1(), command.latin1() ); | 402 | if ( paramList.count() ) |
403 | 403 | QCopChannel::send( channel.latin1(), command.latin1(), buffer ); | |
404 | send( "200 Command okay" ); | 404 | else |
405 | } | 405 | QCopChannel::send( channel.latin1(), command.latin1() ); |
406 | |||
407 | send( "200 Command okay" ); | ||
408 | #endif | ||
409 | } | ||
406 | } | 410 | } |
407 | // not implemented | 411 | // not implemented |
408 | else | 412 | else |
409 | send( "502 Command not implemented" ); | 413 | send( "502 Command not implemented" ); |
410 | } | 414 | } |
411 | 415 | ||
412 | 416 | ||
413 | 417 | ||
414 | void QCopBridgePI::timerEvent( QTimerEvent * ) | 418 | void QCopBridgePI::timerEvent( QTimerEvent * ) |
415 | { | 419 | { |
416 | if ( connected ) | 420 | if ( connected ) |
417 | connected = FALSE; | 421 | connected = FALSE; |
418 | else | 422 | else |
419 | connectionClosed(); | 423 | connectionClosed(); |
420 | } | 424 | } |
diff --git a/core/launcher/qcopbridge.h b/core/launcher/qcopbridge.h index 114b3ee..408d10d 100644 --- a/core/launcher/qcopbridge.h +++ b/core/launcher/qcopbridge.h | |||
@@ -1,16 +1,16 @@ | |||
1 | /********************************************************************** | 1 | /********************************************************************** |
2 | ** Copyright (C) 2000 Trolltech AS. All rights reserved. | 2 | ** Copyright (C) 2000-2002 Trolltech AS. All rights reserved. |
3 | ** | 3 | ** |
4 | ** This file is part of Qtopia Environment. | 4 | ** This file is part of the Qtopia Environment. |
5 | ** | 5 | ** |
6 | ** This file may be distributed and/or modified under the terms of the | 6 | ** This file may be distributed and/or modified under the terms of the |
7 | ** GNU General Public License version 2 as published by the Free Software | 7 | ** GNU General Public License version 2 as published by the Free Software |
8 | ** Foundation and appearing in the file LICENSE.GPL included in the | 8 | ** Foundation and appearing in the file LICENSE.GPL included in the |
9 | ** packaging of this file. | 9 | ** packaging of this file. |
10 | ** | 10 | ** |
11 | ** This file is provided AS IS with NO WARRANTY OF ANY KIND, INCLUDING THE | 11 | ** This file is provided AS IS with NO WARRANTY OF ANY KIND, INCLUDING THE |
12 | ** WARRANTY OF DESIGN, MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. | 12 | ** WARRANTY OF DESIGN, MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. |
13 | ** | 13 | ** |
14 | ** See http://www.trolltech.com/gpl/ for GPL licensing information. | 14 | ** See http://www.trolltech.com/gpl/ for GPL licensing information. |
15 | ** | 15 | ** |
16 | ** Contact info@trolltech.com if any conditions of this licensing are | 16 | ** Contact info@trolltech.com if any conditions of this licensing are |
@@ -70,26 +70,23 @@ public: | |||
70 | void startSync() { sendSync = TRUE; } | 70 | void startSync() { sendSync = TRUE; } |
71 | 71 | ||
72 | signals: | 72 | signals: |
73 | void connectionClosed( QCopBridgePI *); | 73 | void connectionClosed( QCopBridgePI *); |
74 | 74 | ||
75 | protected slots: | 75 | protected slots: |
76 | void read(); | 76 | void read(); |
77 | void send( const QString& msg ); | 77 | void send( const QString& msg ); |
78 | void process( const QString& command ); | 78 | void process( const QString& command ); |
79 | void connectionClosed(); | 79 | void connectionClosed(); |
80 | 80 | ||
81 | protected: | 81 | protected: |
82 | bool checkUser( const QString& user ); | ||
83 | bool checkPassword( const QString& pw ); | ||
84 | |||
85 | void timerEvent( QTimerEvent *e ); | 82 | void timerEvent( QTimerEvent *e ); |
86 | 83 | ||
87 | private: | 84 | private: |
88 | State state; | 85 | State state; |
89 | Q_UINT16 peerport; | 86 | Q_UINT16 peerport; |
90 | QHostAddress peeraddress; | 87 | QHostAddress peeraddress; |
91 | bool connected; | 88 | bool connected; |
92 | bool sendSync; | 89 | bool sendSync; |
93 | }; | 90 | }; |
94 | 91 | ||
95 | #endif | 92 | #endif |
diff --git a/core/launcher/transferserver.cpp b/core/launcher/transferserver.cpp index 7294f9c..a6dab07 100644 --- a/core/launcher/transferserver.cpp +++ b/core/launcher/transferserver.cpp | |||
@@ -1,120 +1,239 @@ | |||
1 | /********************************************************************** | 1 | /********************************************************************** |
2 | ** Copyright (C) 2000 Trolltech AS. All rights reserved. | 2 | ** Copyright (C) 2000-2002 Trolltech AS. All rights reserved. |
3 | ** | 3 | ** |
4 | ** This file is part of Qtopia Environment. | 4 | ** This file is part of the Qtopia Environment. |
5 | ** | 5 | ** |
6 | ** This file may be distributed and/or modified under the terms of the | 6 | ** This file may be distributed and/or modified under the terms of the |
7 | ** GNU General Public License version 2 as published by the Free Software | 7 | ** GNU General Public License version 2 as published by the Free Software |
8 | ** Foundation and appearing in the file LICENSE.GPL included in the | 8 | ** Foundation and appearing in the file LICENSE.GPL included in the |
9 | ** packaging of this file. | 9 | ** packaging of this file. |
10 | ** | 10 | ** |
11 | ** This file is provided AS IS with NO WARRANTY OF ANY KIND, INCLUDING THE | 11 | ** This file is provided AS IS with NO WARRANTY OF ANY KIND, INCLUDING THE |
12 | ** WARRANTY OF DESIGN, MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. | 12 | ** WARRANTY OF DESIGN, MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. |
13 | ** | 13 | ** |
14 | ** See http://www.trolltech.com/gpl/ for GPL licensing information. | 14 | ** See http://www.trolltech.com/gpl/ for GPL licensing information. |
15 | ** | 15 | ** |
16 | ** Contact info@trolltech.com if any conditions of this licensing are | 16 | ** Contact info@trolltech.com if any conditions of this licensing are |
17 | ** not clear to you. | 17 | ** not clear to you. |
18 | ** | 18 | ** |
19 | **********************************************************************/ | 19 | **********************************************************************/ |
20 | #define _XOPEN_SOURCE | 20 | #define _XOPEN_SOURCE |
21 | #include <pwd.h> | 21 | #include <pwd.h> |
22 | #include <sys/types.h> | 22 | #include <sys/types.h> |
23 | #include <unistd.h> | 23 | #include <unistd.h> |
24 | #include <stdlib.h> | 24 | #include <stdlib.h> |
25 | #include <time.h> | ||
26 | #include <shadow.h> | ||
27 | |||
28 | extern "C" { | ||
29 | #include <uuid/uuid.h> | ||
30 | #define UUID_H_INCLUDED | ||
31 | } | ||
25 | 32 | ||
26 | #if defined(_OS_LINUX_) | 33 | #if defined(_OS_LINUX_) |
27 | #include <shadow.h> | 34 | #include <shadow.h> |
28 | #endif | 35 | #endif |
29 | 36 | ||
30 | #include <qdir.h> | 37 | #include <qdir.h> |
31 | #include <qfile.h> | 38 | #include <qfile.h> |
32 | #include <qtextstream.h> | 39 | #include <qtextstream.h> |
33 | #include <qdatastream.h> | 40 | #include <qdatastream.h> |
34 | #include <qmessagebox.h> | 41 | #include <qmessagebox.h> |
35 | #include <qstringlist.h> | 42 | #include <qstringlist.h> |
36 | #include <qfileinfo.h> | 43 | #include <qfileinfo.h> |
37 | #include <qregexp.h> | 44 | #include <qregexp.h> |
38 | //#include <qpe/qcopchannel_qws.h> | 45 | //#include <qpe/qcopchannel_qws.h> |
39 | #include <qpe/process.h> | 46 | #include <qpe/process.h> |
47 | #include <qpe/global.h> | ||
40 | #include <qpe/config.h> | 48 | #include <qpe/config.h> |
49 | #include <qpe/contact.h> | ||
50 | #include <qpe/quuid.h> | ||
51 | #include <qpe/version.h> | ||
52 | #ifdef QWS | ||
41 | #include <qpe/qcopenvelope_qws.h> | 53 | #include <qpe/qcopenvelope_qws.h> |
54 | #endif | ||
42 | 55 | ||
43 | #include "transferserver.h" | 56 | #include "transferserver.h" |
44 | #include "qprocess.h" | 57 | #include "qprocess.h" |
45 | 58 | ||
46 | const int block_size = 51200; | 59 | const int block_size = 51200; |
47 | 60 | ||
48 | TransferServer::TransferServer( Q_UINT16 port, QObject *parent, | 61 | TransferServer::TransferServer( Q_UINT16 port, QObject *parent , |
49 | const char* name ) | 62 | const char* name ) |
50 | : QServerSocket( port, 1, parent, name ) | 63 | : QServerSocket( port, 1, parent, name ) |
51 | { | 64 | { |
52 | if ( !ok() ) | 65 | if ( !ok() ) |
53 | qWarning( "Failed to bind to port %d", port ); | 66 | qWarning( "Failed to bind to port %d", port ); |
54 | } | 67 | } |
55 | 68 | ||
56 | TransferServer::~TransferServer() | 69 | TransferServer::~TransferServer() |
57 | { | 70 | { |
58 | 71 | ||
59 | } | 72 | } |
60 | 73 | ||
61 | void TransferServer::newConnection( int socket ) | 74 | void TransferServer::newConnection( int socket ) |
62 | { | 75 | { |
63 | (void) new ServerPI( socket, this ); | 76 | (void) new ServerPI( socket, this ); |
64 | } | 77 | } |
65 | 78 | ||
66 | bool accessAuthorized(QHostAddress peeraddress) | 79 | QString SyncAuthentication::serverId() |
67 | { | 80 | { |
68 | Config cfg("Security"); | 81 | Config cfg("Security"); |
69 | cfg.setGroup("Sync"); | 82 | cfg.setGroup("Sync"); |
70 | uint auth_peer = cfg.readNumEntry("auth_peer",0xc0a80100); | 83 | QString r=cfg.readEntry("serverid"); |
84 | if ( r.isEmpty() ) { | ||
85 | uuid_t uuid; | ||
86 | uuid_generate( uuid ); | ||
87 | cfg.writeEntry("serverid",(r = QUuid( uuid ).toString())); | ||
88 | } | ||
89 | return r; | ||
90 | } | ||
91 | |||
92 | QString SyncAuthentication::ownerName() | ||
93 | { | ||
94 | QString vfilename = Global::applicationFileName("addressbook", | ||
95 | "businesscard.vcf"); | ||
96 | if (QFile::exists(vfilename)) { | ||
97 | Contact c; | ||
98 | c = Contact::readVCard( vfilename )[0]; | ||
99 | return c.fullName(); | ||
100 | } | ||
101 | |||
102 | return ""; | ||
103 | } | ||
104 | |||
105 | QString SyncAuthentication::loginName() | ||
106 | { | ||
107 | struct passwd *pw; | ||
108 | pw = getpwuid( geteuid() ); | ||
109 | return QString::fromLocal8Bit( pw->pw_name ); | ||
110 | } | ||
111 | |||
112 | int SyncAuthentication::isAuthorized(QHostAddress peeraddress) | ||
113 | { | ||
114 | Config cfg("Security"); | ||
115 | cfg.setGroup("Sync"); | ||
116 | QString allowedstr = cfg.readEntry("auth_peer","192.168.1.0"); | ||
117 | QHostAddress allowed; | ||
118 | allowed.setAddress(allowedstr); | ||
119 | uint auth_peer = allowed.ip4Addr(); | ||
71 | uint auth_peer_bits = cfg.readNumEntry("auth_peer_bits",24); | 120 | uint auth_peer_bits = cfg.readNumEntry("auth_peer_bits",24); |
72 | bool ok = (peeraddress.ip4Addr() & (((1<<auth_peer_bits)-1)<<(32-auth_peer_bits))) | 121 | uint mask = auth_peer_bits >= 32 // shifting by 32 is not defined |
73 | == auth_peer; | 122 | ? 0xffffffff : (((1<<auth_peer_bits)-1)<<(32-auth_peer_bits)); |
74 | /* Allows denial-of-service attack. | 123 | return (peeraddress.ip4Addr() & mask) == auth_peer; |
75 | if ( !ok ) { | 124 | } |
76 | QMessageBox::warning(0,tr("Security"), | 125 | |
77 | tr("<p>An attempt to access this device from %1 has been denied.") | 126 | bool SyncAuthentication::checkUser( const QString& user ) |
78 | .arg(peeraddress.toString())); | 127 | { |
79 | } | 128 | if ( user.isEmpty() ) return FALSE; |
80 | */ | 129 | QString euser = loginName(); |
81 | return ok; | 130 | return user == euser; |
82 | } | 131 | } |
83 | 132 | ||
84 | ServerPI::ServerPI( int socket, QObject *parent, const char* name ) | 133 | bool SyncAuthentication::checkPassword( const QString& password ) |
134 | { | ||
135 | #ifdef ALLOW_UNIX_USER_FTP | ||
136 | // First, check system password... | ||
137 | |||
138 | struct passwd *pw = 0; | ||
139 | struct spwd *spw = 0; | ||
140 | |||
141 | pw = getpwuid( geteuid() ); | ||
142 | spw = getspnam( pw->pw_name ); | ||
143 | |||
144 | QString cpwd = QString::fromLocal8Bit( pw->pw_passwd ); | ||
145 | if ( cpwd == "x" && spw ) | ||
146 | cpwd = QString::fromLocal8Bit( spw->sp_pwdp ); | ||
147 | |||
148 | // Note: some systems use more than crypt for passwords. | ||
149 | QString cpassword = QString::fromLocal8Bit( crypt( password.local8Bit(), cpwd.local8Bit() ) ); | ||
150 | if ( cpwd == cpassword ) | ||
151 | return TRUE; | ||
152 | #endif | ||
153 | |||
154 | static int lastdenial=0; | ||
155 | static int denials=0; | ||
156 | int now = time(0); | ||
157 | |||
158 | // Detect old Qtopia Desktop (no password) | ||
159 | if ( password.isEmpty() ) { | ||
160 | if ( denials < 1 || now > lastdenial+600 ) { | ||
161 | QMessageBox::warning( 0,tr("Sync Connection"), | ||
162 | tr("<p>An unauthorized system is requesting access to this device." | ||
163 | "<p>If you are using a version of Qtopia Desktop older than 1.5.1, " | ||
164 | "please upgrade."), | ||
165 | tr("Deny") ); | ||
166 | denials++; | ||
167 | lastdenial=now; | ||
168 | } | ||
169 | return FALSE; | ||
170 | } | ||
171 | |||
172 | // Second, check sync password... | ||
173 | if ( password.left(6) == "Qtopia" ) { | ||
174 | QString cpassword = QString::fromLocal8Bit( crypt( password.mid(8).local8Bit(), "qp" ) ); | ||
175 | Config cfg("Security"); | ||
176 | cfg.setGroup("Sync"); | ||
177 | QString pwds = cfg.readEntry("Passwords"); | ||
178 | if ( QStringList::split(QChar(' '),pwds).contains(cpassword) ) | ||
179 | return TRUE; | ||
180 | |||
181 | // Unrecognized system. Be careful... | ||
182 | |||
183 | if ( (denials > 2 && now < lastdenial+600) | ||
184 | || QMessageBox::warning(0,tr("Sync Connection"), | ||
185 | tr("<p>An unrecognized system is requesting access to this device." | ||
186 | "<p>If you have just initiated a Sync for the first time, this is normal."), | ||
187 | tr("Allow"),tr("Deny"))==1 ) | ||
188 | { | ||
189 | denials++; | ||
190 | lastdenial=now; | ||
191 | return FALSE; | ||
192 | } else { | ||
193 | denials=0; | ||
194 | cfg.writeEntry("Passwords",pwds+" "+cpassword); | ||
195 | return TRUE; | ||
196 | } | ||
197 | } | ||
198 | |||
199 | return FALSE; | ||
200 | } | ||
201 | |||
202 | |||
203 | ServerPI::ServerPI( int socket, QObject *parent , const char* name ) | ||
85 | : QSocket( parent, name ) , dtp( 0 ), serversocket( 0 ), waitsocket( 0 ) | 204 | : QSocket( parent, name ) , dtp( 0 ), serversocket( 0 ), waitsocket( 0 ) |
86 | { | 205 | { |
87 | state = Connected; | 206 | state = Connected; |
88 | 207 | ||
89 | setSocket( socket ); | 208 | setSocket( socket ); |
90 | 209 | ||
91 | peerport = peerPort(); | 210 | peerport = peerPort(); |
92 | peeraddress = peerAddress(); | 211 | peeraddress = peerAddress(); |
93 | 212 | ||
94 | #ifndef INSECURE | 213 | #ifndef INSECURE |
95 | if ( !accessAuthorized(peeraddress) ) { | 214 | if ( !SyncAuthentication::isAuthorized(peeraddress) ) { |
96 | state = Forbidden; | 215 | state = Forbidden; |
97 | startTimer( 0 ); | 216 | startTimer( 0 ); |
98 | } else | 217 | } else |
99 | #endif | 218 | #endif |
100 | { | 219 | { |
101 | connect( this, SIGNAL( readyRead() ), SLOT( read() ) ); | 220 | connect( this, SIGNAL( readyRead() ), SLOT( read() ) ); |
102 | connect( this, SIGNAL( connectionClosed() ), SLOT( connectionClosed() ) ); | 221 | connect( this, SIGNAL( connectionClosed() ), SLOT( connectionClosed() ) ); |
103 | 222 | ||
104 | passiv = FALSE; | 223 | passiv = FALSE; |
105 | for( int i = 0; i < 4; i++ ) | 224 | for( int i = 0; i < 4; i++ ) |
106 | wait[i] = FALSE; | 225 | wait[i] = FALSE; |
107 | 226 | ||
108 | send( "220 Qtopia transfer service ready!" ); | 227 | send( "220 Qtopia " QPE_VERSION " FTP Server" ); |
109 | state = Wait_USER; | 228 | state = Wait_USER; |
110 | 229 | ||
111 | dtp = new ServerDTP( this ); | 230 | dtp = new ServerDTP( this ); |
112 | connect( dtp, SIGNAL( completed() ), SLOT( dtpCompleted() ) ); | 231 | connect( dtp, SIGNAL( completed() ), SLOT( dtpCompleted() ) ); |
113 | connect( dtp, SIGNAL( failed() ), SLOT( dtpFailed() ) ); | 232 | connect( dtp, SIGNAL( failed() ), SLOT( dtpFailed() ) ); |
114 | connect( dtp, SIGNAL( error( int ) ), SLOT( dtpError( int ) ) ); | 233 | connect( dtp, SIGNAL( error( int ) ), SLOT( dtpError( int ) ) ); |
115 | 234 | ||
116 | 235 | ||
117 | directory = QDir::currentDirPath(); | 236 | directory = QDir::currentDirPath(); |
118 | 237 | ||
119 | static int p = 1024; | 238 | static int p = 1024; |
120 | 239 | ||
@@ -142,55 +261,24 @@ void ServerPI::send( const QString& msg ) | |||
142 | { | 261 | { |
143 | QTextStream os( this ); | 262 | QTextStream os( this ); |
144 | os << msg << endl; | 263 | os << msg << endl; |
145 | //qDebug( "Reply: %s", msg.latin1() ); | 264 | //qDebug( "Reply: %s", msg.latin1() ); |
146 | } | 265 | } |
147 | 266 | ||
148 | void ServerPI::read() | 267 | void ServerPI::read() |
149 | { | 268 | { |
150 | while ( canReadLine() ) | 269 | while ( canReadLine() ) |
151 | process( readLine().stripWhiteSpace() ); | 270 | process( readLine().stripWhiteSpace() ); |
152 | } | 271 | } |
153 | 272 | ||
154 | bool ServerPI::checkUser( const QString& user ) | ||
155 | { | ||
156 | if ( user.isEmpty() ) return FALSE; | ||
157 | |||
158 | struct passwd *pw; | ||
159 | pw = getpwuid( geteuid() ); | ||
160 | QString euser = QString::fromLocal8Bit( pw->pw_name ); | ||
161 | return user == euser; | ||
162 | } | ||
163 | |||
164 | bool ServerPI::checkPassword( const QString& /* password */ ) | ||
165 | { | ||
166 | // ### HACK for testing on local host | ||
167 | return true; | ||
168 | |||
169 | /* | ||
170 | struct passwd *pw = 0; | ||
171 | struct spwd *spw = 0; | ||
172 | |||
173 | pw = getpwuid( geteuid() ); | ||
174 | spw = getspnam( pw->pw_name ); | ||
175 | |||
176 | QString cpwd = QString::fromLocal8Bit( pw->pw_passwd ); | ||
177 | if ( cpwd == "x" && spw ) | ||
178 | cpwd = QString::fromLocal8Bit( spw->sp_pwdp ); | ||
179 | |||
180 | QString cpassword = QString::fromLocal8Bit( crypt( password.local8Bit(), cpwd.local8Bit() ) ); | ||
181 | return cpwd == cpassword; | ||
182 | */ | ||
183 | } | ||
184 | |||
185 | bool ServerPI::checkReadFile( const QString& file ) | 273 | bool ServerPI::checkReadFile( const QString& file ) |
186 | { | 274 | { |
187 | QString filename; | 275 | QString filename; |
188 | 276 | ||
189 | if ( file[0] != "/" ) | 277 | if ( file[0] != "/" ) |
190 | filename = directory.path() + "/" + file; | 278 | filename = directory.path() + "/" + file; |
191 | else | 279 | else |
192 | filename = file; | 280 | filename = file; |
193 | 281 | ||
194 | QFileInfo fi( filename ); | 282 | QFileInfo fi( filename ); |
195 | return ( fi.exists() && fi.isReadable() ); | 283 | return ( fi.exists() && fi.isReadable() ); |
196 | } | 284 | } |
@@ -245,38 +333,37 @@ void ServerPI::process( const QString& message ) | |||
245 | send( "211 Good bye!" ); | 333 | send( "211 Good bye!" ); |
246 | delete this; | 334 | delete this; |
247 | return; | 335 | return; |
248 | } | 336 | } |
249 | 337 | ||
250 | // connected to client | 338 | // connected to client |
251 | if ( Connected == state ) | 339 | if ( Connected == state ) |
252 | return; | 340 | return; |
253 | 341 | ||
254 | // waiting for user name | 342 | // waiting for user name |
255 | if ( Wait_USER == state ) { | 343 | if ( Wait_USER == state ) { |
256 | 344 | ||
257 | if ( cmd != "USER" || msg.count() < 2 || !checkUser( arg ) ) { | 345 | if ( cmd != "USER" || msg.count() < 2 || !SyncAuthentication::checkUser( arg ) ) { |
258 | send( "530 Please login with USER and PASS" ); | 346 | send( "530 Please login with USER and PASS" ); |
259 | return; | 347 | return; |
260 | } | 348 | } |
261 | send( "331 User name ok, need password" ); | 349 | send( "331 User name ok, need password" ); |
262 | state = Wait_PASS; | 350 | state = Wait_PASS; |
263 | return; | 351 | return; |
264 | } | 352 | } |
265 | 353 | ||
266 | // waiting for password | 354 | // waiting for password |
267 | if ( Wait_PASS == state ) { | 355 | if ( Wait_PASS == state ) { |
268 | 356 | ||
269 | if ( cmd != "PASS" || !checkPassword( arg ) ) { | 357 | if ( cmd != "PASS" || !SyncAuthentication::checkPassword( arg ) ) { |
270 | //if ( cmd != "PASS" || msg.count() < 2 || !checkPassword( arg ) ) { | ||
271 | send( "530 Please login with USER and PASS" ); | 358 | send( "530 Please login with USER and PASS" ); |
272 | return; | 359 | return; |
273 | } | 360 | } |
274 | send( "230 User logged in, proceed" ); | 361 | send( "230 User logged in, proceed" ); |
275 | state = Ready; | 362 | state = Ready; |
276 | return; | 363 | return; |
277 | } | 364 | } |
278 | 365 | ||
279 | // ACCESS CONTROL COMMANDS | 366 | // ACCESS CONTROL COMMANDS |
280 | 367 | ||
281 | 368 | ||
282 | // account (ACCT) | 369 | // account (ACCT) |
@@ -445,28 +532,31 @@ void ServerPI::process( const QString& message ) | |||
445 | if ( dtp->dtpMode() != ServerDTP::Idle ) | 532 | if ( dtp->dtpMode() != ServerDTP::Idle ) |
446 | send( "426 Connection closed; transfer aborted" ); | 533 | send( "426 Connection closed; transfer aborted" ); |
447 | else | 534 | else |
448 | send( "226 Closing data connection" ); | 535 | send( "226 Closing data connection" ); |
449 | } | 536 | } |
450 | 537 | ||
451 | // delete (DELE) | 538 | // delete (DELE) |
452 | else if ( cmd == "DELE" ) { | 539 | else if ( cmd == "DELE" ) { |
453 | if ( args.isEmpty() ) | 540 | if ( args.isEmpty() ) |
454 | send( "500 Syntax error, command unrecognized" ); | 541 | send( "500 Syntax error, command unrecognized" ); |
455 | else { | 542 | else { |
456 | QFile file( absFilePath( args ) ) ; | 543 | QFile file( absFilePath( args ) ) ; |
457 | if ( file.remove() ) | 544 | if ( file.remove() ) { |
458 | send( "250 Requested file action okay, completed" ); | 545 | send( "250 Requested file action okay, completed" ); |
459 | else | 546 | QCopEnvelope e("QPE/System", "linkChanged(QString)" ); |
547 | e << file.name(); | ||
548 | } else { | ||
460 | send( "550 Requested action not taken" ); | 549 | send( "550 Requested action not taken" ); |
550 | } | ||
461 | } | 551 | } |
462 | } | 552 | } |
463 | 553 | ||
464 | // remove directory (RMD) | 554 | // remove directory (RMD) |
465 | else if ( cmd == "RMD" ) { | 555 | else if ( cmd == "RMD" ) { |
466 | if ( args.isEmpty() ) | 556 | if ( args.isEmpty() ) |
467 | send( "500 Syntax error, command unrecognized" ); | 557 | send( "500 Syntax error, command unrecognized" ); |
468 | else { | 558 | else { |
469 | QDir dir; | 559 | QDir dir; |
470 | if ( dir.rmdir( absFilePath( args ), TRUE ) ) | 560 | if ( dir.rmdir( absFilePath( args ), TRUE ) ) |
471 | send( "250 Requested file action okay, completed" ); | 561 | send( "250 Requested file action okay, completed" ); |
472 | else | 562 | else |
@@ -625,27 +715,34 @@ bool ServerPI::parsePort( const QString& pp ) | |||
625 | QStringList p = QStringList::split( ",", pp ); | 715 | QStringList p = QStringList::split( ",", pp ); |
626 | if ( p.count() != 6 ) return FALSE; | 716 | if ( p.count() != 6 ) return FALSE; |
627 | 717 | ||
628 | // h1,h2,h3,h4,p1,p2 | 718 | // h1,h2,h3,h4,p1,p2 |
629 | peeraddress = QHostAddress( ( p[0].toInt() << 24 ) + ( p[1].toInt() << 16 ) + | 719 | peeraddress = QHostAddress( ( p[0].toInt() << 24 ) + ( p[1].toInt() << 16 ) + |
630 | ( p[2].toInt() << 8 ) + p[3].toInt() ); | 720 | ( p[2].toInt() << 8 ) + p[3].toInt() ); |
631 | peerport = ( p[4].toInt() << 8 ) + p[5].toInt(); | 721 | peerport = ( p[4].toInt() << 8 ) + p[5].toInt(); |
632 | return TRUE; | 722 | return TRUE; |
633 | } | 723 | } |
634 | 724 | ||
635 | void ServerPI::dtpCompleted() | 725 | void ServerPI::dtpCompleted() |
636 | { | 726 | { |
637 | dtp->close(); | ||
638 | waitsocket = 0; | ||
639 | send( "226 Closing data connection, file transfer successful" ); | 727 | send( "226 Closing data connection, file transfer successful" ); |
728 | if ( dtp->dtpMode() == ServerDTP::RetrieveFile ) { | ||
729 | QString fn = dtp->fileName(); | ||
730 | if ( fn.right(8)==".desktop" && fn.find("/Documents/")>=0 ) { | ||
731 | QCopEnvelope e("QPE/System", "linkChanged(QString)" ); | ||
732 | e << fn; | ||
733 | } | ||
734 | } | ||
735 | waitsocket = 0; | ||
736 | dtp->close(); | ||
640 | } | 737 | } |
641 | 738 | ||
642 | void ServerPI::dtpFailed() | 739 | void ServerPI::dtpFailed() |
643 | { | 740 | { |
644 | dtp->close(); | 741 | dtp->close(); |
645 | waitsocket = 0; | 742 | waitsocket = 0; |
646 | send( "451 Requested action aborted: local error in processing" ); | 743 | send( "451 Requested action aborted: local error in processing" ); |
647 | } | 744 | } |
648 | 745 | ||
649 | void ServerPI::dtpError( int ) | 746 | void ServerPI::dtpError( int ) |
650 | { | 747 | { |
651 | dtp->close(); | 748 | dtp->close(); |
@@ -843,25 +940,25 @@ QString ServerPI::absFilePath( const QString& file ) | |||
843 | filepath = directory.path() + "/" + file; | 940 | filepath = directory.path() + "/" + file; |
844 | 941 | ||
845 | return filepath; | 942 | return filepath; |
846 | } | 943 | } |
847 | 944 | ||
848 | 945 | ||
849 | void ServerPI::timerEvent( QTimerEvent * ) | 946 | void ServerPI::timerEvent( QTimerEvent * ) |
850 | { | 947 | { |
851 | connectionClosed(); | 948 | connectionClosed(); |
852 | } | 949 | } |
853 | 950 | ||
854 | 951 | ||
855 | ServerDTP::ServerDTP( QObject *parent, const char* name ) | 952 | ServerDTP::ServerDTP( QObject *parent = 0, const char* name = 0) |
856 | : QSocket( parent, name ), mode( Idle ), createTargzProc( 0 ), | 953 | : QSocket( parent, name ), mode( Idle ), createTargzProc( 0 ), |
857 | retrieveTargzProc( 0 ), gzipProc( 0 ) | 954 | retrieveTargzProc( 0 ), gzipProc( 0 ) |
858 | { | 955 | { |
859 | 956 | ||
860 | connect( this, SIGNAL( connected() ), SLOT( connected() ) ); | 957 | connect( this, SIGNAL( connected() ), SLOT( connected() ) ); |
861 | connect( this, SIGNAL( connectionClosed() ), SLOT( connectionClosed() ) ); | 958 | connect( this, SIGNAL( connectionClosed() ), SLOT( connectionClosed() ) ); |
862 | connect( this, SIGNAL( bytesWritten( int ) ), SLOT( bytesWritten( int ) ) ); | 959 | connect( this, SIGNAL( bytesWritten( int ) ), SLOT( bytesWritten( int ) ) ); |
863 | connect( this, SIGNAL( readyRead() ), SLOT( readyRead() ) ); | 960 | connect( this, SIGNAL( readyRead() ), SLOT( readyRead() ) ); |
864 | 961 | ||
865 | gzipProc = new QProcess( this, "gzipProc" ); | 962 | gzipProc = new QProcess( this, "gzipProc" ); |
866 | gzipProc->setCommunication( QProcess::Stdin | QProcess::Stdout ); | 963 | gzipProc->setCommunication( QProcess::Stdin | QProcess::Stdout ); |
867 | 964 | ||
@@ -882,26 +979,28 @@ retrieveTargzProc( 0 ), gzipProc( 0 ) | |||
882 | } | 979 | } |
883 | 980 | ||
884 | ServerDTP::~ServerDTP() | 981 | ServerDTP::~ServerDTP() |
885 | { | 982 | { |
886 | buf.close(); | 983 | buf.close(); |
887 | file.close(); | 984 | file.close(); |
888 | createTargzProc->kill(); | 985 | createTargzProc->kill(); |
889 | } | 986 | } |
890 | 987 | ||
891 | void ServerDTP::extractTarDone() | 988 | void ServerDTP::extractTarDone() |
892 | { | 989 | { |
893 | qDebug("extract done"); | 990 | qDebug("extract done"); |
991 | #ifndef QT_NO_COP | ||
894 | QCopEnvelope e( "QPE/Desktop", "restoreDone(QString)" ); | 992 | QCopEnvelope e( "QPE/Desktop", "restoreDone(QString)" ); |
895 | e << file.name(); | 993 | e << file.name(); |
994 | #endif | ||
896 | } | 995 | } |
897 | 996 | ||
898 | void ServerDTP::connected() | 997 | void ServerDTP::connected() |
899 | { | 998 | { |
900 | // send file mode | 999 | // send file mode |
901 | switch ( mode ) { | 1000 | switch ( mode ) { |
902 | case SendFile : | 1001 | case SendFile : |
903 | if ( !file.exists() || !file.open( IO_ReadOnly) ) { | 1002 | if ( !file.exists() || !file.open( IO_ReadOnly) ) { |
904 | emit failed(); | 1003 | emit failed(); |
905 | mode = Idle; | 1004 | mode = Idle; |
906 | return; | 1005 | return; |
907 | } | 1006 | } |
diff --git a/core/launcher/transferserver.h b/core/launcher/transferserver.h index 076e460..a3bb060 100644 --- a/core/launcher/transferserver.h +++ b/core/launcher/transferserver.h | |||
@@ -1,16 +1,16 @@ | |||
1 | /********************************************************************** | 1 | /********************************************************************** |
2 | ** Copyright (C) 2000 Trolltech AS. All rights reserved. | 2 | ** Copyright (C) 2000-2002 Trolltech AS. All rights reserved. |
3 | ** | 3 | ** |
4 | ** This file is part of Qtopia Environment. | 4 | ** This file is part of the Qtopia Environment. |
5 | ** | 5 | ** |
6 | ** This file may be distributed and/or modified under the terms of the | 6 | ** This file may be distributed and/or modified under the terms of the |
7 | ** GNU General Public License version 2 as published by the Free Software | 7 | ** GNU General Public License version 2 as published by the Free Software |
8 | ** Foundation and appearing in the file LICENSE.GPL included in the | 8 | ** Foundation and appearing in the file LICENSE.GPL included in the |
9 | ** packaging of this file. | 9 | ** packaging of this file. |
10 | ** | 10 | ** |
11 | ** This file is provided AS IS with NO WARRANTY OF ANY KIND, INCLUDING THE | 11 | ** This file is provided AS IS with NO WARRANTY OF ANY KIND, INCLUDING THE |
12 | ** WARRANTY OF DESIGN, MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. | 12 | ** WARRANTY OF DESIGN, MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. |
13 | ** | 13 | ** |
14 | ** See http://www.trolltech.com/gpl/ for GPL licensing information. | 14 | ** See http://www.trolltech.com/gpl/ for GPL licensing information. |
15 | ** | 15 | ** |
16 | ** Contact info@trolltech.com if any conditions of this licensing are | 16 | ** Contact info@trolltech.com if any conditions of this licensing are |
@@ -27,24 +27,38 @@ class QFileInfo; | |||
27 | class QProcess; | 27 | class QProcess; |
28 | class TransferServer : public QServerSocket | 28 | class TransferServer : public QServerSocket |
29 | { | 29 | { |
30 | Q_OBJECT | 30 | Q_OBJECT |
31 | 31 | ||
32 | public: | 32 | public: |
33 | TransferServer( Q_UINT16 port, QObject *parent = 0, const char* name = 0 ); | 33 | TransferServer( Q_UINT16 port, QObject *parent = 0, const char* name = 0 ); |
34 | virtual ~TransferServer(); | 34 | virtual ~TransferServer(); |
35 | 35 | ||
36 | void newConnection( int socket ); | 36 | void newConnection( int socket ); |
37 | }; | 37 | }; |
38 | 38 | ||
39 | class SyncAuthentication : QObject | ||
40 | { | ||
41 | Q_OBJECT | ||
42 | |||
43 | public: | ||
44 | static int isAuthorized(QHostAddress peeraddress); | ||
45 | static bool checkPassword(const QString& pw); | ||
46 | static bool checkUser(const QString& user); | ||
47 | |||
48 | static QString serverId(); | ||
49 | static QString loginName(); | ||
50 | static QString ownerName(); | ||
51 | }; | ||
52 | |||
39 | 53 | ||
40 | class ServerDTP : public QSocket | 54 | class ServerDTP : public QSocket |
41 | { | 55 | { |
42 | Q_OBJECT | 56 | Q_OBJECT |
43 | 57 | ||
44 | public: | 58 | public: |
45 | ServerDTP( QObject *parent = 0, const char* name = 0 ); | 59 | ServerDTP( QObject *parent = 0, const char* name = 0 ); |
46 | ~ServerDTP(); | 60 | ~ServerDTP(); |
47 | 61 | ||
48 | enum Mode{ Idle = 0, SendFile, SendGzipFile, SendBuffer, | 62 | enum Mode{ Idle = 0, SendFile, SendGzipFile, SendBuffer, |
49 | RetrieveFile, RetrieveGzipFile, RetrieveBuffer }; | 63 | RetrieveFile, RetrieveGzipFile, RetrieveBuffer }; |
50 | 64 | ||
@@ -56,24 +70,25 @@ public: | |||
56 | void sendByteArray( const QByteArray& array ); | 70 | void sendByteArray( const QByteArray& array ); |
57 | void sendByteArray( const QByteArray& array, const QHostAddress& host, Q_UINT16 port ); | 71 | void sendByteArray( const QByteArray& array, const QHostAddress& host, Q_UINT16 port ); |
58 | 72 | ||
59 | void retrieveFile( const QString fn ); | 73 | void retrieveFile( const QString fn ); |
60 | void retrieveFile( const QString fn, const QHostAddress& host, Q_UINT16 port ); | 74 | void retrieveFile( const QString fn, const QHostAddress& host, Q_UINT16 port ); |
61 | void retrieveGzipFile( const QString &fn ); | 75 | void retrieveGzipFile( const QString &fn ); |
62 | void retrieveGzipFile( const QString &fn, const QHostAddress& host, Q_UINT16 port ); | 76 | void retrieveGzipFile( const QString &fn, const QHostAddress& host, Q_UINT16 port ); |
63 | void retrieveByteArray(); | 77 | void retrieveByteArray(); |
64 | void retrieveByteArray( const QHostAddress& host, Q_UINT16 port ); | 78 | void retrieveByteArray( const QHostAddress& host, Q_UINT16 port ); |
65 | 79 | ||
66 | Mode dtpMode() { return mode; } | 80 | Mode dtpMode() { return mode; } |
67 | QByteArray buffer() { return buf.buffer(); } | 81 | QByteArray buffer() { return buf.buffer(); } |
82 | QString fileName() const { return file.name(); } | ||
68 | 83 | ||
69 | void setSocket( int socket ); | 84 | void setSocket( int socket ); |
70 | 85 | ||
71 | signals: | 86 | signals: |
72 | void completed(); | 87 | void completed(); |
73 | void failed(); | 88 | void failed(); |
74 | 89 | ||
75 | private slots: | 90 | private slots: |
76 | void connectionClosed(); | 91 | void connectionClosed(); |
77 | void connected(); | 92 | void connected(); |
78 | void bytesWritten( int bytes ); | 93 | void bytesWritten( int bytes ); |
79 | void readyRead(); | 94 | void readyRead(); |
@@ -122,26 +137,24 @@ public: | |||
122 | 137 | ||
123 | protected slots: | 138 | protected slots: |
124 | void read(); | 139 | void read(); |
125 | void send( const QString& msg ); | 140 | void send( const QString& msg ); |
126 | void process( const QString& command ); | 141 | void process( const QString& command ); |
127 | void connectionClosed(); | 142 | void connectionClosed(); |
128 | void dtpCompleted(); | 143 | void dtpCompleted(); |
129 | void dtpFailed(); | 144 | void dtpFailed(); |
130 | void dtpError( int ); | 145 | void dtpError( int ); |
131 | void newConnection( int socket ); | 146 | void newConnection( int socket ); |
132 | 147 | ||
133 | protected: | 148 | protected: |
134 | bool checkUser( const QString& user ); | ||
135 | bool checkPassword( const QString& pw ); | ||
136 | bool checkReadFile( const QString& file ); | 149 | bool checkReadFile( const QString& file ); |
137 | bool checkWriteFile( const QString& file ); | 150 | bool checkWriteFile( const QString& file ); |
138 | bool parsePort( const QString& pw ); | 151 | bool parsePort( const QString& pw ); |
139 | bool backupRestoreGzip( const QString &file, QStringList &targets ); | 152 | bool backupRestoreGzip( const QString &file, QStringList &targets ); |
140 | bool backupRestoreGzip( const QString &file ); | 153 | bool backupRestoreGzip( const QString &file ); |
141 | 154 | ||
142 | bool sendList( const QString& arg ); | 155 | bool sendList( const QString& arg ); |
143 | void sendFile( const QString& file ); | 156 | void sendFile( const QString& file ); |
144 | void retrieveFile( const QString& file ); | 157 | void retrieveFile( const QString& file ); |
145 | 158 | ||
146 | QString permissionString( QFileInfo *info ); | 159 | QString permissionString( QFileInfo *info ); |
147 | QString fileListing( QFileInfo *info ); | 160 | QString fileListing( QFileInfo *info ); |
@@ -155,14 +168,12 @@ private: | |||
155 | QHostAddress peeraddress; | 168 | QHostAddress peeraddress; |
156 | bool passiv; | 169 | bool passiv; |
157 | bool wait[4]; | 170 | bool wait[4]; |
158 | ServerDTP *dtp; | 171 | ServerDTP *dtp; |
159 | ServerSocket *serversocket; | 172 | ServerSocket *serversocket; |
160 | QString waitfile; | 173 | QString waitfile; |
161 | QDir directory; | 174 | QDir directory; |
162 | QByteArray waitarray; | 175 | QByteArray waitarray; |
163 | QString renameFrom; | 176 | QString renameFrom; |
164 | QString lastCommand; | 177 | QString lastCommand; |
165 | int waitsocket; | 178 | int waitsocket; |
166 | }; | 179 | }; |
167 | |||
168 | bool accessAuthorized(QHostAddress peeraddress); | ||