1 files changed, 175 insertions, 0 deletions

diff --git a/contrib/opie/libopie/lock.c b/contrib/opie/libopie/lock.c
new file mode 100644
index 0000000..d6ea56e
--- /dev/null
+++ b/contrib/opie/libopie/lock.c
@@ -0,0 +1,175 @@
+/* lock.c: The opielock() library function.
+
+%%% portions-copyright-cmetz
+Portions of this software are Copyright 1996 by Craig Metz, All Rights
+Reserved. The Inner Net License Version 2 applies to these portions of
+the software.
+You should have received a copy of the license with this software. If
+you didn't get a copy, you may request one from <license@inner.net>.
+
+Portions of this software are Copyright 1995 by Randall Atkinson and Dan
+McDonald, All Rights Reserved. All Rights under this copyright are assigned
+to the U.S. Naval Research Laboratory (NRL). The NRL Copyright Notice and
+License Agreement applies to this software.
+
+        History:
+
+	Modified by cmetz for OPIE 2.3. Do refcounts whether or not we
+            actually lock. Fixed USER_LOCKING=0 case.
+	Modified by cmetz for OPIE 2.22. Added reference count for locks.
+	    Changed lock filename/refcount symbol names to better indicate
+	    that they're not user serviceable.
+	Modified by cmetz for OPIE 2.2. Use FUNCTION declaration et al.
+            Use "principal" instead of "name" to make it clearer.
+            Ifdef around some headers, be more careful about allowed
+            error return values. Check open() return value properly.
+            Avoid NULL.
+        Created at NRL for OPIE 2.2 from opiesubr2.c
+*/
+#include "opie_cfg.h"
+#if HAVE_STRING_H
+#include <string.h>
+#endif /* HAVE_STRING_H */
+#if HAVE_UNISTD_H
+#include <unistd.h>
+#endif /* HAVE_UNISTD_H */
+#include <fcntl.h>
+#if HAVE_STDLIB_H
+#include <stdlib.h>
+#endif /* HAVE_STDLIB_H */
+#include "opie.h"
+
+int __opie_lockrefcount = 0;
+
+#if USER_LOCKING
+char *__opie_lockfilename = (char *)0;
+
+/* atexit() handler for opielock() */
+static VOIDRET opieunlockaeh FUNCTION_NOARGS
+{
+  if (__opie_lockfilename) {
+    __opie_lockrefcount = 0;
+    opieunlock();
+  }
+}
+#endif /* USER_LOCKING */
+
+/* 
+   Serialize (we hope) authentication of user to prevent race conditions.
+   Creates a lock file with a name of OPIE_LOCK_PREFIX with the user name
+   appended. This file contains the pid of the lock's owner and a time()
+   stamp. We use the former to check for dead owners and the latter to
+   provide an upper bound on the lock duration. If there are any problems,
+   we assume the lock is bogus.
+
+   The value of this locking and its security implications are still not
+   completely clear and require further study.
+
+   One could conceivably hack this facility to provide locking of user
+   accounts after several authentication failures.
+ 
+   Return -1 on low-level error, 0 if ok, 1 on locking failure.
+*/
+int opielock FUNCTION((principal), char *principal)
+{
+#if USER_LOCKING
+  int fh, waits = 0, rval = -1, pid, t, i;
+  char buffer[128], buffer2[128], *c, *c2;
+
+  if (__opie_lockfilename) {
+    __opie_lockrefcount++;
+    return 0;
+  }
+
+  if (!(__opie_lockfilename = (char *)malloc(sizeof(OPIE_LOCK_PREFIX) + strlen(principal))))
+    return -1;
+
+  strcpy(__opie_lockfilename, OPIE_LOCK_PREFIX);
+  strcat(__opie_lockfilename, principal);
+
+  fh = 0;
+  while (!fh)
+    if ((fh = open(__opie_lockfilename, O_WRONLY | O_CREAT | O_EXCL, 0600)) < 0) {
+      if ((fh = open(__opie_lockfilename, O_RDWR, 0600)) < 0)
+        goto lockret;
+      if ((i = read(fh, buffer, sizeof(buffer))) <= 0)
+        goto lockret;
+
+      buffer[sizeof(buffer) - 1] = 0;
+      buffer[i - 1] = 0;
+
+      if (!(c = strchr(buffer, '\n')))
+        break;
+
+      *(c++) = 0;
+
+      if (!(c2 = strchr(c, '\n')))
+        break;
+
+      *(c2++) = 0;
+
+      if (!(pid = atoi(buffer)))
+        break;
+
+      if (!(t = atoi(c)))
+        break;
+
+      if ((time(0) + OPIE_LOCK_TIMEOUT) < t)
+        break;
+
+      if (kill(pid, 0))
+        break;
+
+      close(fh);
+      fh = 0;
+      sleep(1);
+      if (waits++ > 3) {
+        rval = 1; 
+        goto lockret;
+      };
+    };
+
+  sprintf(buffer, "%d\n%d\n", getpid(), time(0));
+  i = strlen(buffer) + 1;
+  if (lseek(fh, 0, SEEK_SET)) { 
+    close(fh);
+    unlink(__opie_lockfilename);
+    fh = 0;
+    goto lockret;
+  };
+  if (write(fh, buffer, i) != i) {
+    close(fh);
+    unlink(__opie_lockfilename);
+    fh = 0;
+    goto lockret;
+  };
+  close(fh);
+  if ((fh = open(__opie_lockfilename, O_RDWR, 0600)) < 0) {
+    unlink(__opie_lockfilename);
+    goto lockret;
+  };
+  if (read(fh, buffer2, i) != i) {
+    close(fh);
+    unlink(__opie_lockfilename);
+    fh = 0;
+    goto lockret;
+  };
+  close(fh);
+  if (memcmp(buffer, buffer2, i)) {
+    unlink(__opie_lockfilename);
+    goto lockret;
+  };
+    
+  __opie_lockrefcount++;
+  rval = 0;
+  atexit(opieunlockaeh);
+
+lockret:
+  if (fh)
+    close(fh);
+  return rval;
+#else /* USER_LOCKING */
+  __opie_lockrefcount++;
+  return 0;
+#endif /* USER_LOCKING */
+}