Domů Procházet Nápověda
Přihlásit se
SoftwareDesign
/
csu3_am335x
8
0
Rozštěpit 0
Soubory Úkoly 0 Pull Requesty 0 Wiki
Strom: e00134b1b7
Větve Značky
csu3_am335x
/
EVSE
/
GPL
/
pure-ftpd-1.0.49
/
src
/
log_pgsql.c

log_pgsql.c 23 KB
Historie Surový

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751 
  1. #include <config.h>
    2. 

  2. 

  3. /* PostgreSQL backend, by Cindy Marasco <cindy at getaclue.org> */
    4. 

  4. 

  5. #ifdef WITH_PGSQL
    6. 

  6. 

  7. # include "ftpd.h"
    8. 

  8. # include "parser.h"
    9. 

  9. # include "log_pgsql_p.h"
    10. 

  10. # include "log_pgsql.h"
    11. 

  11. # include "messages.h"
    12. 

  12. # include "crypto.h"
    13. 

  13. # include "alt_arc4random.h"
    14. 

  14. # include "utils.h"
    15. 

  15. 

  16. # ifdef HAVE_LIBSODIUM
    17. 

  17. #  include <sodium.h>
    18. 

  18. # endif
    19. 

  19. 

  20. # ifdef WITH_DMALLOC
    21. 

  21. #  include <dmalloc.h>
    22. 

  22. # endif
    23. 

  23. 

  24. static int pw_pgsql_validate_name(const char *name)
    25. 

  25. {
    26. 

  26.     if (name == NULL || *name == 0) {
    27. 

  27.         return -1;
    28. 

  28.     }
    29. 

  29.     do {
    30. 

  30.         if ((*name >= 'a' && *name <= 'z') ||
    31. 

  31.             (*name >= 'A' && *name <= 'Z') ||
    32. 

  32.             (*name >= '0' && *name <= '9') ||
    33. 

  33.             *name == ' ' || *name == '-' ||
    34. 

  34.             *name == '_' || *name == '\'' || *name == '.' ||
    35. 

  35.             *name == ':' || *name == '@' || *name == '+') {
    36. 

  36.             /* God bless the Ruby 'unless' keyword */
    37. 

  37.         } else {
    38. 

  38.             return -1;
    39. 

  39.         }
    40. 

  40.         name++;
    41. 

  41.     } while (*name != 0);
    42. 

  42. 

  43.     return 0;
    44. 

  44. }
    45. 

  45. 

  46. static char *pw_pgsql_escape_string(PGconn * const id_sql_server,
    47. 

  47.                                     const char *from)
    48. 

  48. {
    49. 

  49.     size_t from_len;
    50. 

  50.     size_t to_len;
    51. 

  51.     char *to;
    52. 

  52.     size_t tolen;
    53. 

  53.     unsigned int t;
    54. 

  54.     unsigned char t1, t2;
    55. 

  55.     int error;
    56. 

  56. 

  57.     if (from == NULL) {
    58. 

  58.         return NULL;
    59. 

  59.     }
    60. 

  60.     from_len = strlen(from);
    61. 

  61.     to_len = from_len * 2U + (size_t) 1U;
    62. 

  62.     if ((to = malloc(to_len + (size_t) 2U)) == NULL) {
    63. 

  63.         return NULL;
    64. 

  64.     }
    65. 

  65.     t = zrand();
    66. 

  66.     t1 = t & 0xff;
    67. 

  67.     t2 = (t >> 8) & 0xff;
    68. 

  68.     to[to_len] = (char) t1;
    69. 

  69.     to[to_len + 1] = (char) t2;
    70. 

  70.     /*
    71. 

  71.      * I really hate giving a buffer without any size to a 3rd party function.
    72. 

  72.      * The "to" buffer is allocated on the heap, not on the stack, if
    73. 

  73.      * PQescapeStringConn() is buggy, the stack shouldn't be already
    74. 

  74.      * smashed at this point, but data from other malloc can be corrupted and
    75. 

  75.      * bad things can happen. It make sense to wipe this area as soon as
    76. 

  76.      * possible instead of doing anything with the heap. We'll end up with
    77. 

  77.      * a segmentation violation, but without any possible exploit.
    78. 

  78.      */
    79. 

  79.     tolen = PQescapeStringConn(id_sql_server, to, from, from_len, &error);
    80. 

  80.     if (tolen >= to_len ||
    81. 

  81.         (unsigned char) to[to_len] != t1 ||
    82. 

  82.         (unsigned char) to[to_len + 1] != t2) {
    83. 

  83.         for (;;) {
    84. 

  84.             *to++ = 0;
    85. 

  85.         }
    86. 

  86.     }
    87. 

  87.     to[tolen] = 0;
    88. 

  88.     if (error != 0) {
    89. 

  89.         return NULL;
    90. 

  90.     }
    91. 

  91.     return to;
    92. 

  92. }
    93. 

  93. 

  94. /*
    95. 

  95.  * Substitute digraphs for SQL requests.
    96. 

  96.  * orig_str is the original string, from the configuration file
    97. 

  97.  * full of \L, \I, \P, \R and \D.
    98. 

  98.  * query is a buffer to handle the result.
    99. 

  99.  * query_len is the size of the buffer.
    100. 

  100.  * returns the buffer @ if successful, NULL otherwise.   -frank.
    101. 

  101.  */
    102. 

  102. 

  103. static char *sqlsubst(const char *orig_str, char * const query,
    104. 

  104.                       size_t query_len, const char * const user,
    105. 

  105.                       const char * const ip, const char * const port,
    106. 

  106.                       const char * const peer_ip,
    107. 

  107.                       const char * const decimal_ip)
    108. 

  108. {
    109. 

  109.     char *query_pnt = query;
    110. 

  110.     const char *orig_str_scan = orig_str;
    111. 

  111.     const size_t user_len = (user == NULL ? (size_t) 0U : strlen(user));
    112. 

  112.     const size_t ip_len = (ip == NULL ? (size_t) 0U : strlen(ip));
    113. 

  113.     const size_t port_len = (port == NULL ? (size_t) 0U : strlen(port));
    114. 

  114.     const size_t peer_ip_len = (peer_ip == NULL ? (size_t) 0U : strlen(peer_ip));
    115. 

  115.     const size_t decimal_ip_len = (decimal_ip == NULL ? (size_t) 0U : strlen(decimal_ip));
    116. 

  116. 

  117.     while (*orig_str_scan != 0) {
    118. 

  118.         if (*orig_str_scan == '\\' && orig_str_scan[1] != 0) {
    119. 

  119.             orig_str_scan++;
    120. 

  120.             switch(tolower((unsigned char) *orig_str_scan)) {
    121. 

  121.             case 'l' :
    122. 

  122.                 if (user_len >= query_len) {
    123. 

  123.                     return NULL;
    124. 

  124.                 }
    125. 

  125.                 if (user_len <= (size_t) 0U) {
    126. 

  126.                     goto nextone;
    127. 

  127.                 }
    128. 

  128.                 memcpy(query_pnt, user, user_len);
    129. 

  129.                 query_pnt += user_len;
    130. 

  130.                 query_len -= user_len;
    131. 

  131.                 goto nextone;
    132. 

  132.             case 'i' :
    133. 

  133.                 if (ip_len >= query_len) {
    134. 

  134.                     return NULL;
    135. 

  135.                 }
    136. 

  136.                 if (ip_len <= (size_t) 0U) {
    137. 

  137.                     goto nextone;
    138. 

  138.                 }
    139. 

  139.                 memcpy(query_pnt, ip, ip_len);
    140. 

  140.                 query_pnt += ip_len;
    141. 

  141.                 query_len -= ip_len;
    142. 

  142.                 goto nextone;
    143. 

  143.             case 'p' :
    144. 

  144.                 if (port_len >= query_len) {
    145. 

  145.                     return NULL;
    146. 

  146.                 }
    147. 

  147.                 if (port_len <= (size_t) 0U) {
    148. 

  148.                     goto nextone;
    149. 

  149.                 }
    150. 

  150.                 memcpy(query_pnt, port, port_len);
    151. 

  151.                 query_pnt += port_len;
    152. 

  152.                 query_len -= port_len;
    153. 

  153.                 goto nextone;
    154. 

  154.             case 'r' :
    155. 

  155.                 if (peer_ip_len >= query_len) {
    156. 

  156.                     return NULL;
    157. 

  157.                 }
    158. 

  158.                 if (peer_ip_len <= (size_t) 0U) {
    159. 

  159.                     goto nextone;
    160. 

  160.                 }
    161. 

  161.                 memcpy(query_pnt, peer_ip, peer_ip_len);
    162. 

  162.                 query_pnt += peer_ip_len;
    163. 

  163.                 query_len -= peer_ip_len;
    164. 

  164.                 goto nextone;
    165. 

  165.             case 'd' :
    166. 

  166.                 if (decimal_ip_len >= query_len) {
    167. 

  167.                     return NULL;
    168. 

  168.                 }
    169. 

  169.                 if (decimal_ip_len <= (size_t) 0U) {
    170. 

  170.                     goto nextone;
    171. 

  171.                 }
    172. 

  172.                 memcpy(query_pnt, decimal_ip, decimal_ip_len);
    173. 

  173.                 query_pnt += decimal_ip_len;
    174. 

  174.                 query_len -= decimal_ip_len;
    175. 

  175.                 goto nextone;
    176. 

  176.             default :
    177. 

  177.                 if (--query_len <= (size_t) 0U) {
    178. 

  178.                     return NULL;
    179. 

  179.                 }
    180. 

  180.                 *query_pnt++ = '\\';
    181. 

  181.             }
    182. 

  182.         }
    183. 

  183.         if (ISCTRLCODE(*orig_str_scan)) {
    184. 

  184.             goto nextone;
    185. 

  185.         }
    186. 

  186.         if (--query_len <= (size_t) 0U) {
    187. 

  187.             return NULL;
    188. 

  188.         }
    189. 

  189.         *query_pnt++ = *orig_str_scan;
    190. 

  190.         nextone:
    191. 

  191.         orig_str_scan++;
    192. 

  192.     }
    193. 

  193.     *query_pnt = 0;
    194. 

  194. 

  195.     return query;
    196. 

  196. }
    197. 

  197. 

  198. static size_t pw_pgsql_escape_conninfo_(char * const to,
    199. 

  199.                                         const char * const from,
    200. 

  200.                                         const size_t length)
    201. 

  201. {
    202. 

  202.     const char *source = from;
    203. 

  203.     char *target = to;
    204. 

  204.     size_t remaining = length;
    205. 

  205. 

  206.     while (remaining > (size_t) 0U) {
    207. 

  207.         switch (*source) {
    208. 

  208.         case 0:
    209. 

  209.             remaining = (size_t) 1U;
    210. 

  210.             break;
    211. 

  211.         case '\r':
    212. 

  212.             *target++ = '\\';
    213. 

  213.             *target++ = 'r';
    214. 

  214.             break;
    215. 

  215.         case '\n':
    216. 

  216.             *target++ = '\\';
    217. 

  217.             *target++ = 'n';
    218. 

  218.             break;
    219. 

  219.         case '\b':
    220. 

  220.             *target++ = '\\';
    221. 

  221.             *target++ = 'b';
    222. 

  222.             break;
    223. 

  223.         case '\'':
    224. 

  224.             *target++ = '\'';
    225. 

  225.             *target++ = '\'';
    226. 

  226.             break;
    227. 

  227.         case '\\':
    228. 

  228.         case '"':
    229. 

  229.             *target++ = '\\';
    230. 

  230.         default:
    231. 

  231.             *target++ = *source;
    232. 

  232.         }
    233. 

  233.         source++;
    234. 

  234.         remaining--;
    235. 

  235.     }
    236. 

  236.     *target = 0;
    237. 

  237. 

  238.     return (size_t) (target - to);
    239. 

  239. }
    240. 

  240. 

  241. static char *pw_pgsql_escape_conninfo(const char *from)
    242. 

  242. {
    243. 

  243.     size_t from_len;
    244. 

  244.     size_t to_len;
    245. 

  245.     char *to;
    246. 

  246.     size_t tolen;
    247. 

  247. 

  248.     if (from == NULL) {
    249. 

  249.         return NULL;
    250. 

  250.     }
    251. 

  251.     from_len = strlen(from);
    252. 

  252.     to_len = from_len * 2U + (size_t) 1U;
    253. 

  253.     if ((to = malloc(to_len)) == NULL) {
    254. 

  254.         return NULL;
    255. 

  255.     }
    256. 

  256.     tolen = pw_pgsql_escape_conninfo_(to, from, from_len);
    257. 

  257.     if (tolen >= to_len) {
    258. 

  258.         for (;;) {
    259. 

  259.             *to++ = 0;
    260. 

  260.         }
    261. 

  261.     }
    262. 

  262.     to[tolen] = 0;
    263. 

  263. 

  264.     return to;
    265. 

  265. }
    266. 

  266. 

  267. static int pw_pgsql_connect(PGconn ** const id_sql_server)
    268. 

  268. {
    269. 

  269.     char *conninfo = NULL;
    270. 

  270.     size_t sizeof_conninfo;
    271. 

  271.     char *escaped_server = NULL;
    272. 

  272.     char *escaped_db = NULL;
    273. 

  273.     char *escaped_user = NULL;
    274. 

  274.     char *escaped_pw = NULL;
    275. 

  275.     int ret = -1;
    276. 

  276. 

  277.     *id_sql_server = NULL;
    278. 

  278. 

  279.     if ((escaped_server = pw_pgsql_escape_conninfo(server)) == NULL ||
    280. 

  280.         (escaped_db = pw_pgsql_escape_conninfo(db)) == NULL ||
    281. 

  281.         (escaped_user = pw_pgsql_escape_conninfo(user)) == NULL ||
    282. 

  282.         (escaped_pw = pw_pgsql_escape_conninfo(pw)) == NULL) {
    283. 

  283.         goto bye;
    284. 

  284.     }
    285. 

  285. 

  286. #define PGSQL_CONNECT_FMTSTRING \
    287. 

  287. "host='%s' port='%d' dbname='%s' user='%s' password='%s'"
    288. 

  288. 

  289.     sizeof_conninfo = sizeof PGSQL_CONNECT_FMTSTRING +
    290. 

  290.         strlen(escaped_server) + (size_t) 5U + strlen(escaped_db) +
    291. 

  291.         strlen(escaped_user) + strlen(escaped_pw);
    292. 

  292.     if ((conninfo = malloc(sizeof_conninfo)) == NULL) {
    293. 

  293.         goto bye;
    294. 

  294.     }
    295. 

  295.     if (SNCHECK(snprintf(conninfo, sizeof_conninfo,
    296. 

  296.                          PGSQL_CONNECT_FMTSTRING,
    297. 

  297.                          server, port, db, user, pw), sizeof_conninfo)) {
    298. 

  298.         goto bye;
    299. 

  299.     }
    300. 

  300.     if ((*id_sql_server = PQconnectdb(conninfo)) == NULL ||
    301. 

  301.         PQstatus(*id_sql_server) == CONNECTION_BAD) {
    302. 

  302.         if (server_down == 0) {
    303. 

  303.             server_down++;
    304. 

  304.             logfile(LOG_ERR, MSG_SQL_DOWN);
    305. 

  305.         }
    306. 

  306.         goto bye;
    307. 

  307.     }
    308. 

  308.     server_down = 0;
    309. 

  309.     ret = 0;
    310. 

  310. 

  311.     bye:
    312. 

  312.     free(conninfo);
    313. 

  313.     free(escaped_server);
    314. 

  314.     free(escaped_db);
    315. 

  315.     free(escaped_user);
    316. 

  316.     free(escaped_pw);
    317. 

  317. 

  318.     return ret;
    319. 

  319. }
    320. 

  320. 

  321. static int pw_pgsql_simplequery(PGconn * const id_sql_server,
    322. 

  322.                                 const char * const query)
    323. 

  323. {
    324. 

  324.     PGresult *result;
    325. 

  325. 

  326.     if ((result = PQexec(id_sql_server, query)) == NULL) {
    327. 

  327.         return -1;
    328. 

  328.     }
    329. 

  329.     if (PQresultStatus(result) != PGRES_COMMAND_OK) {
    330. 

  330.         PQclear(result);
    331. 

  331.     return -1;
    332. 

  332.     }
    333. 

  333.     PQclear(result);
    334. 

  334. 

  335.     return 0;
    336. 

  336. }
    337. 

  337. 

  338. static char *pw_pgsql_getquery(PGconn * const id_sql_server,
    339. 

  339.                                const char * const orig_query,
    340. 

  340.                                const char * const account,
    341. 

  341.                                const char * const ip,
    342. 

  342.                                const char * const port,
    343. 

  343.                                const char * const peer_ip,
    344. 

  344.                                const char * const decimal_ip)
    345. 

  345. {
    346. 

  346.     PGresult *qresult = NULL;
    347. 

  347.     size_t length;
    348. 

  348.     char *answer = NULL;
    349. 

  349.     char query[PGSQL_MAX_REQUEST_LENGTH];
    350. 

  350. 

  351.     if (orig_query == NULL || *orig_query == 0) {
    352. 

  352.         goto bye;
    353. 

  353.     }
    354. 

  354.     if (sqlsubst(orig_query, query, sizeof query,
    355. 

  355.                  account, ip, port, peer_ip, decimal_ip) == NULL) {
    356. 

  356.         goto bye;
    357. 

  357.     }
    358. 

  358.     if ((qresult = PQexec(id_sql_server, query)) == NULL) {
    359. 

  359.         logfile(LOG_WARNING, MSG_SQL_WRONG_PARMS " : [%s]", query);
    360. 

  360.         goto bye;
    361. 

  361.     }
    362. 

  362.     if (PQresultStatus(qresult) != PGRES_TUPLES_OK ||
    363. 

  363.         PQnfields(qresult) != 1 ||
    364. 

  364.         PQntuples(qresult) != 1 ||
    365. 

  365.         PQgetisnull(qresult, 0, 0)) {
    366. 

  366.         goto bye;
    367. 

  367.     }
    368. 

  368.     if ((length = (size_t) PQgetlength(qresult, 0, 0) + (size_t) 1U)
    369. 

  369.         <= (size_t) 1U || (answer = malloc(length)) == NULL) {
    370. 

  370.         goto bye;
    371. 

  371.     }
    372. 

  372.     strncpy(answer, PQgetvalue(qresult, 0, 0), length - (size_t) 1U);
    373. 

  373.     answer[length - (size_t) 1U] = 0;
    374. 

  374. 

  375.     bye:
    376. 

  376.     if (qresult != NULL) {
    377. 

  377.         PQclear(qresult);
    378. 

  378.     }
    379. 

  379. 

  380.     return answer;
    381. 

  381. }
    382. 

  382. 

  383. void pw_pgsql_check(AuthResult * const result,
    384. 

  384.                     const char *account, const char *password,
    385. 

  385.                     const struct sockaddr_storage * const sa,
    386. 

  386.                     const struct sockaddr_storage * const peer)
    387. 

  387. {
    388. 

  388.     PGconn *id_sql_server = NULL;
    389. 

  389.     const char *spwd = NULL;           /* stored password */
    390. 

  390.     const char *uid = sql_default_uid; /* stored system login/uid */
    391. 

  391.     const char *gid = sql_default_gid; /* stored system group/gid */
    392. 

  392.     const char *dir = NULL;            /* stored home directory */
    393. 

  393. #ifdef QUOTAS
    394. 

  394.     const char *sqta_fs = NULL;        /* stored quota files */
    395. 

  395.     const char *sqta_sz = NULL;        /* stored quota size */
    396. 

  396. #endif
    397. 

  397. #ifdef RATIOS
    398. 

  398.     const char *ratio_ul = NULL;       /* stored ratio UL */
    399. 

  399.     const char *ratio_dl = NULL;       /* stored ratio DL */
    400. 

  400. #endif
    401. 

  401. #ifdef THROTTLING
    402. 

  402.     const char *bandwidth_ul = NULL;   /* stored bandwidth UL */
    403. 

  403.     const char *bandwidth_dl = NULL;   /* stored bandwidth DL */
    404. 

  404. #endif
    405. 

  405.     char *escaped_account = NULL;
    406. 

  406.     char *escaped_ip = NULL;
    407. 

  407.     char *escaped_port = NULL;
    408. 

  408.     char *escaped_peer_ip = NULL;
    409. 

  409.     char *escaped_decimal_ip = NULL;
    410. 

  410.     char *scrambled_password = NULL;
    411. 

  411.     int committed = 1;
    412. 

  412.     int crypto_argon2 = 0, crypto_scrypt = 0, crypto_crypt = 0, crypto_md5 = 0,
    413. 

  413.         crypto_sha1 = 0, crypto_plain = 0;
    414. 

  414.     unsigned long decimal_ip_num = 0UL;
    415. 

  415.     char decimal_ip[42];
    416. 

  416.     char hbuf[NI_MAXHOST];
    417. 

  417.     char pbuf[NI_MAXSERV];
    418. 

  418.     char phbuf[NI_MAXHOST];
    419. 

  419. 

  420.     result->auth_ok = 0;
    421. 

  421.     if (pw_pgsql_validate_name(account) != 0) {
    422. 

  422.         goto bye;
    423. 

  423.     }
    424. 

  424.     if (getnameinfo((const struct sockaddr *) sa, STORAGE_LEN(*sa),
    425. 

  425.                     hbuf, sizeof hbuf, pbuf, sizeof pbuf,
    426. 

  426.                     NI_NUMERICHOST | NI_NUMERICSERV) != 0 ||
    427. 

  427.         getnameinfo((const struct sockaddr *) peer, STORAGE_LEN(*peer),
    428. 

  428.                     phbuf, sizeof phbuf, NULL, (size_t) 0U,
    429. 

  429.                     NI_NUMERICHOST) != 0) {
    430. 

  430.         goto bye;
    431. 

  431.     }
    432. 

  432.     *decimal_ip = 0;
    433. 

  433.     if (STORAGE_FAMILY(*peer) == AF_INET) {
    434. 

  434.         const unsigned char *decimal_ip_raw =
    435. 

  435.             (const unsigned char *) &(STORAGE_SIN_ADDR(*peer));
    436. 

  436.         decimal_ip_num = ((unsigned long) decimal_ip_raw[0] << 24) |
    437. 

  437.             ((unsigned long) decimal_ip_raw[1] << 16) |
    438. 

  438.             (decimal_ip_raw[2] << 8) | decimal_ip_raw[3];
    439. 

  439.         if (SNCHECK(snprintf(decimal_ip, sizeof decimal_ip,
    440. 

  440.                              "%lu", decimal_ip_num), sizeof decimal_ip)) {
    441. 

  441.             goto bye;
    442. 

  442.         }
    443. 

  443.     }
    444. 

  444.     if (pw_pgsql_connect(&id_sql_server) != 0) {
    445. 

  445.         goto bye;
    446. 

  446.     }
    447. 

  447.     if ((escaped_account =
    448. 

  448.          pw_pgsql_escape_string(id_sql_server, account)) == NULL) {
    449. 

  449.         goto bye;
    450. 

  450.     }
    451. 

  451.     if ((escaped_ip =
    452. 

  452.          pw_pgsql_escape_string(id_sql_server, hbuf)) == NULL) {
    453. 

  453.         goto bye;
    454. 

  454.     }
    455. 

  455.     if ((escaped_port =
    456. 

  456.          pw_pgsql_escape_string(id_sql_server, pbuf)) == NULL) {
    457. 

  457.         goto bye;
    458. 

  458.     }
    459. 

  459.     if ((escaped_peer_ip =
    460. 

  460.          pw_pgsql_escape_string(id_sql_server, phbuf)) == NULL) {
    461. 

  461.         goto bye;
    462. 

  462.     }
    463. 

  463.     if ((escaped_decimal_ip =
    464. 

  464.          pw_pgsql_escape_string(id_sql_server, decimal_ip)) == NULL) {
    465. 

  465.         goto bye;
    466. 

  466.     }
    467. 

  467.     if (pw_pgsql_simplequery(id_sql_server, PGSQL_TRANSACTION_START) == 0) {
    468. 

  468.         committed = 0;
    469. 

  469.     }
    470. 

  470.     if ((spwd = pw_pgsql_getquery(id_sql_server, sqlreq_getpw,
    471. 

  471.                                   escaped_account, escaped_ip,
    472. 

  472.                                   escaped_port, escaped_peer_ip,
    473. 

  473.                                   escaped_decimal_ip)) == NULL) {
    474. 

  474.         goto bye;
    475. 

  475.     }
    476. 

  476.     if (uid == NULL) {
    477. 

  477.         uid = pw_pgsql_getquery(id_sql_server, sqlreq_getuid,
    478. 

  478.                                 escaped_account, escaped_ip,
    479. 

  479.                                 escaped_port, escaped_peer_ip,
    480. 

  480.                                 escaped_decimal_ip);
    481. 

  481.     }
    482. 

  482.     if (uid == NULL) {
    483. 

  483.         goto bye;
    484. 

  484.     }
    485. 

  485.     if (gid == NULL) {
    486. 

  486.         gid = pw_pgsql_getquery(id_sql_server, sqlreq_getgid,
    487. 

  487.                                 escaped_account, escaped_ip,
    488. 

  488.                                 escaped_port, escaped_peer_ip,
    489. 

  489.                                 escaped_decimal_ip);
    490. 

  490.     }
    491. 

  491.     if (gid == NULL) {
    492. 

  492.         goto bye;
    493. 

  493.     }
    494. 

  494.     if ((dir = pw_pgsql_getquery(id_sql_server, sqlreq_getdir,
    495. 

  495.                                  escaped_account, escaped_ip,
    496. 

  496.                                  escaped_port, escaped_peer_ip,
    497. 

  497.                                  escaped_decimal_ip)) == NULL) {
    498. 

  498.         goto bye;
    499. 

  499.     }
    500. 

  500.     result->auth_ok--;                  /* -1 */
    501. 

  501.     if (strcasecmp(crypto, PASSWD_SQL_ANY) == 0) {
    502. 

  502.         crypto_argon2++;
    503. 

  503.         crypto_scrypt++;
    504. 

  504.         crypto_crypt++;
    505. 

  505.         crypto_md5++;
    506. 

  506.         crypto_sha1++;
    507. 

  507.     } else if (strcasecmp(crypto, PASSWD_SQL_ARGON2) == 0) {
    508. 

  508.         crypto_argon2++;
    509. 

  509.     } else if (strcasecmp(crypto, PASSWD_SQL_SCRYPT) == 0) {
    510. 

  510.         crypto_scrypt++;
    511. 

  511.     } else if (strcasecmp(crypto, PASSWD_SQL_CRYPT) == 0) {
    512. 

  512.         crypto_crypt++;
    513. 

  513.     } else if (strcasecmp(crypto, PASSWD_SQL_MD5) == 0) {
    514. 

  514.         crypto_md5++;
    515. 

  515.     } else if (strcasecmp(crypto, PASSWD_SQL_SHA1) == 0) {
    516. 

  516.         crypto_sha1++;
    517. 

  517.     } else {                           /* default to plaintext */
    518. 

  518.         crypto_plain++;
    519. 

  519.     }
    520. 

  520. #ifdef crypto_pwhash_STRPREFIX
    521. 

  521.     if (crypto_argon2 != 0) {
    522. 

  522.         if (crypto_pwhash_str_verify(spwd, password, strlen(password)) == 0) {
    523. 

  523.             goto auth_ok;
    524. 

  524.         }
    525. 

  525.     }
    526. 

  526. #endif
    527. 

  527. #ifdef crypto_pwhash_scryptsalsa208sha256_STRPREFIX
    528. 

  528.     if (crypto_scrypt != 0) {
    529. 

  529.         if (crypto_pwhash_scryptsalsa208sha256_str_verify
    530. 

  530.             (spwd, password, strlen(password)) == 0) {
    531. 

  531.             goto auth_ok;
    532. 

  532.         }
    533. 

  533.     }
    534. 

  534. #endif
    535. 

  535.     if (crypto_crypt != 0) {
    536. 

  536.         const char *crypted;
    537. 

  537. 

  538.         if ((crypted = (const char *) crypt(password, spwd)) != NULL &&
    539. 

  539.             pure_strcmp(crypted, spwd) == 0) {
    540. 

  540.             goto auth_ok;
    541. 

  541.         }
    542. 

  542.     }
    543. 

  543.     if (crypto_md5 != 0) {
    544. 

  544.         const char *crypted;
    545. 

  545. 

  546.         if ((crypted = (const char *) crypto_hash_md5(password, 1)) != NULL &&
    547. 

  547.             pure_strcmp(crypted, spwd) == 0) {
    548. 

  548.             goto auth_ok;
    549. 

  549.         }
    550. 

  550.     }
    551. 

  551.     if (crypto_sha1 != 0) {
    552. 

  552.         const char *crypted;
    553. 

  553. 

  554.         if ((crypted = (const char *) crypto_hash_sha1(password, 1)) != NULL &&
    555. 

  555.             pure_strcmp(crypted, spwd) == 0) {
    556. 

  556.             goto auth_ok;
    557. 

  557.         }
    558. 

  558.     }
    559. 

  559.     if (crypto_plain != 0) {
    560. 

  560.         if (*password != 0 &&    /* refuse null cleartext passwords */
    561. 

  561.             pure_strcmp(password, spwd) == 0) {
    562. 

  562.             goto auth_ok;
    563. 

  563.         }
    564. 

  564.     }
    565. 

  565.     goto bye;
    566. 

  566. 

  567.     auth_ok:
    568. 

  568.     /*
    569. 

  569.      * do *NOT* accept root uid/gid - if the database is compromized, the FTP
    570. 

  570.      * server could also be rooted.
    571. 

  571.      */
    572. 

  572.     result->uid = (uid_t) strtoul(uid, NULL, 10);
    573. 

  573.     if (result->uid <= (uid_t) 0) {
    574. 

  574.         struct passwd *pw;
    575. 

  575. 

  576.         if ((pw = getpwnam(uid)) == NULL || pw->pw_uid <= (uid_t) 0) {
    577. 

  577.             goto bye;
    578. 

  578.         }
    579. 

  579.         result->uid = pw->pw_uid;
    580. 

  580.     }
    581. 

  581.     result->gid = (gid_t) strtoul(gid, NULL, 10);
    582. 

  582.     if (result->gid <= (gid_t) 0) {
    583. 

  583.         struct group *gr;
    584. 

  584. 

  585.         if ((gr = getgrnam(gid)) == NULL || gr->gr_gid <= (gid_t) 0) {
    586. 

  586.             goto bye;
    587. 

  587.         }
    588. 

  588.         result->gid = gr->gr_gid;
    589. 

  589.     }
    590. 

  590.     result->dir = dir;
    591. 

  591.     dir = NULL;
    592. 

  592. #ifdef QUOTAS
    593. 

  593.     if ((sqta_fs = pw_pgsql_getquery(id_sql_server, sqlreq_getqta_fs,
    594. 

  594.                                      escaped_account, escaped_ip,
    595. 

  595.                                      escaped_port, escaped_peer_ip,
    596. 

  596.                                      escaped_decimal_ip)) != NULL) {
    597. 

  597.         const unsigned long long q = strtoull(sqta_fs, NULL, 10);
    598. 

  598. 

  599.         if (q > 0ULL) {
    600. 

  600.             result->user_quota_files = q;
    601. 

  601.             result->quota_files_changed = 1;
    602. 

  602.         }
    603. 

  603.     }
    604. 

  604.     if ((sqta_sz = pw_pgsql_getquery(id_sql_server, sqlreq_getqta_sz,
    605. 

  605.                                      escaped_account, escaped_ip,
    606. 

  606.                                      escaped_port, escaped_peer_ip,
    607. 

  607.                                      escaped_decimal_ip)) != NULL) {
    608. 

  608.         const unsigned long long q = strtoull(sqta_sz, NULL, 10);
    609. 

  609. 

  610.         if (q > 0ULL) {
    611. 

  611.             result->user_quota_size = q * (1024UL * 1024UL);
    612. 

  612.             result->quota_size_changed = 1;
    613. 

  613.         }
    614. 

  614.     }
    615. 

  615. #endif
    616. 

  616. #ifdef RATIOS
    617. 

  617.     if ((ratio_ul = pw_pgsql_getquery(id_sql_server, sqlreq_getratio_ul,
    618. 

  618.                                       escaped_account, escaped_ip,
    619. 

  619.                                       escaped_port, escaped_peer_ip,
    620. 

  620.                                       escaped_decimal_ip)) != NULL) {
    621. 

  621.         const unsigned int q = (unsigned int) strtoul(ratio_ul, NULL, 10);
    622. 

  622. 

  623.         if (q > 0U) {
    624. 

  624.             result->ratio_upload = q;
    625. 

  625.             result->ratio_ul_changed = 1;
    626. 

  626.         }
    627. 

  627.     }
    628. 

  628.     if ((ratio_dl = pw_pgsql_getquery(id_sql_server, sqlreq_getratio_dl,
    629. 

  629.                                       escaped_account, escaped_ip,
    630. 

  630.                                       escaped_port, escaped_peer_ip,
    631. 

  631.                                       escaped_decimal_ip)) != NULL) {
    632. 

  632.         const unsigned int q = (unsigned int) strtoul(ratio_dl, NULL, 10);
    633. 

  633. 

  634.         if (q > 0U) {
    635. 

  635.             result->ratio_download = q;
    636. 

  636.             result->ratio_dl_changed = 1;
    637. 

  637.         }
    638. 

  638.     }
    639. 

  639. #endif
    640. 

  640. #ifdef THROTTLING
    641. 

  641.     if ((bandwidth_ul = pw_pgsql_getquery(id_sql_server, sqlreq_getbandwidth_ul,
    642. 

  642.                                           escaped_account, escaped_ip,
    643. 

  643.                                           escaped_port, escaped_peer_ip,
    644. 

  644.                                           escaped_decimal_ip)) != NULL) {
    645. 

  645.         const unsigned long q = (unsigned long) strtoul(bandwidth_ul, NULL, 10);
    646. 

  646. 

  647.         if (q > 0UL) {
    648. 

  648.             result->throttling_bandwidth_ul = q * 1024UL;
    649. 

  649.             result->throttling_ul_changed = 1;
    650. 

  650.         }
    651. 

  651.     }
    652. 

  652.     if ((bandwidth_dl = pw_pgsql_getquery(id_sql_server, sqlreq_getbandwidth_dl,
    653. 

  653.                                           escaped_account, escaped_ip,
    654. 

  654.                                           escaped_port, escaped_peer_ip,
    655. 

  655.                                           escaped_decimal_ip)) != NULL) {
    656. 

  656.         const unsigned long q = (unsigned long) strtoul(bandwidth_dl, NULL, 10);
    657. 

  657. 

  658.         if (q > 0UL) {
    659. 

  659.             result->throttling_bandwidth_dl = q * 1024UL;
    660. 

  660.             result->throttling_dl_changed = 1;
    661. 

  661.         }
    662. 

  662.     }
    663. 

  663. #endif
    664. 

  664.     result->slow_tilde_expansion = 1;
    665. 

  665.     result->auth_ok = -result->auth_ok;
    666. 

  666.     bye:
    667. 

  667.     if (committed == 0) {
    668. 

  668.         (void) pw_pgsql_simplequery(id_sql_server, PGSQL_TRANSACTION_END);
    669. 

  669.     }
    670. 

  670.     if (id_sql_server != NULL) {
    671. 

  671.         PQfinish(id_sql_server);
    672. 

  672.     }
    673. 

  673.     free((void *) spwd);
    674. 

  674.     if (uid != sql_default_uid) {
    675. 

  675.         free((void *) uid);
    676. 

  676.     }
    677. 

  677.     if (gid != sql_default_gid) {
    678. 

  678.         free((void *) gid);
    679. 

  679.     }
    680. 

  680.     free((void *) dir);
    681. 

  681.     free(scrambled_password);
    682. 

  682. #ifdef QUOTAS
    683. 

  683.     free((void *) sqta_fs);
    684. 

  684.     free((void *) sqta_sz);
    685. 

  685. #endif
    686. 

  686. #ifdef RATIOS
    687. 

  687.     free((void *) ratio_ul);
    688. 

  688.     free((void *) ratio_dl);
    689. 

  689. #endif
    690. 

  690. #ifdef THROTTLING
    691. 

  691.     free((void *) bandwidth_ul);
    692. 

  692.     free((void *) bandwidth_dl);
    693. 

  693. #endif
    694. 

  694.     free((void *) escaped_account);
    695. 

  695.     free((void *) escaped_ip);
    696. 

  696.     free((void *) escaped_port);
    697. 

  697.     free((void *) escaped_peer_ip);
    698. 

  698.     free((void *) escaped_decimal_ip);
    699. 

  699. }
    700. 

  700. 

  701. void pw_pgsql_parse(const char * const file)
    702. 

  702. {
    703. 

  703.     if (generic_parser(file, pgsql_config_keywords) != 0) {
    704. 

  704.         die(421, LOG_ERR, MSG_CONF_ERR ": " MSG_ILLEGAL_CONFIG_FILE_SQL ": %s" , file);
    705. 

  705.     }
    706. 

  706.     if (server == NULL ) {
    707. 

  707.         die(421, LOG_ERR, MSG_SQL_MISSING_SERVER);
    708. 

  708.     }
    709. 

  709.     if (port_s != NULL) {
    710. 

  710.         port = atoi(port_s);
    711. 

  711.         if (port <= 0 || port > 65535) {
    712. 

  712.             port = PGSQL_DEFAULT_PORT;
    713. 

  713.         }
    714. 

  714.         free(port_s);
    715. 

  715.         port_s = NULL;
    716. 

  716.     }
    717. 

  717. }
    718. 

  718. 

  719. #define ZFREE(X) do { free(X); (X) = NULL; } while (0)
    720. 

  720. 

  721. void pw_pgsql_exit(void)
    722. 

  722. {
    723. 

  723.     ZFREE(server);
    724. 

  724.     ZFREE(port_s);
    725. 

  725.     port = -1;
    726. 

  726.     ZFREE(user);
    727. 

  727.     ZFREE(pw);
    728. 

  728.     ZFREE(db);
    729. 

  729.     ZFREE(crypto);
    730. 

  730.     ZFREE(sqlreq_getpw);
    731. 

  731.     ZFREE(sqlreq_getuid);
    732. 

  732.     ZFREE(sql_default_uid);
    733. 

  733.     ZFREE(sqlreq_getgid);
    734. 

  734.     ZFREE(sql_default_gid);
    735. 

  735.     ZFREE(sqlreq_getdir);
    736. 

  736. #ifdef QUOTAS
    737. 

  737.     ZFREE(sqlreq_getqta_fs);
    738. 

  738.     ZFREE(sqlreq_getqta_sz);
    739. 

  739. #endif
    740. 

  740. #ifdef RATIOS
    741. 

  741.     ZFREE(sqlreq_getratio_ul);
    742. 

  742.     ZFREE(sqlreq_getratio_dl);
    743. 

  743. #endif
    744. 

  744. #ifdef THROTTLING
    745. 

  745.     ZFREE(sqlreq_getbandwidth_ul);
    746. 

  746.     ZFREE(sqlreq_getbandwidth_dl);
    747. 

  747. #endif
    748. 

  748. }
    749. 

  749. #else
    750. 

  750. extern signed char v6ready;
    751. 

  751. #endif
    752.