summaryrefslogtreecommitdiff
path: root/src/first_run.c
diff options
context:
space:
mode:
authorJakub Sławiński2005-03-15 01:22:55 +0100
committerJoshua Judson Rosen2014-07-17 21:14:58 +0200
commit1adde65db245ec1fca752cfee4c198badf40fb5f (patch)
treebba33f3b1fe7d469f9df7a89af9dac77b27fa3bb /src/first_run.c
parentudp_patch (diff)
downloadapf-1adde65db245ec1fca752cfee4c198badf40fb5f.tar.gz
v0.6
- Fixed: default password incompatibilities from config file - Added: "client's id" option - Lightly Modified: verbose mode - Added: temporary listen ports - Fixed: bug in printing "client's id" - Added: 'dateformat' option to set format of the date in the logs - Modified: command line option and config file behaviour - Added: logging to a socket - Fixed: parsing config file - Fixed: major bug in packet buffering - Added: several clients-users in one realm - Modified: default hostname used by afserver - Modified: server listening behaviour (for clients) - Fixed: bug in checking options values - Modified: verbose mode - Modified: client initial connection to server - Added: connection time / uptime statistics - Added: first version of remote administration (statistics only) - Fixed: major bug in remove_client routine - Added: 'raclients' option - Added: use of automake/autoconf - Added: creating ~/.apf directory - Modified: the way of creating/managing keys/certificates - Added: 'dnslookups' option - Modified: usage functions - Fixed: no handling of missing 'listen' option after 'newrealm' in config file - Added: 'quit' command in remote administration mode - Modified: logging error messages during initialization - Modified: 'newrealm' changed to 'realm' in config file - Added: realm names - Modified: connection time / uptime - Added: client names / unique numbers - Added: user unique numbers - Fixed: segmentation fault after 'quit' command
Diffstat (limited to 'src/first_run.c')
-rw-r--r--src/first_run.c156
1 files changed, 156 insertions, 0 deletions
diff --git a/src/first_run.c b/src/first_run.c
new file mode 100644
index 0000000..842a3e0
--- /dev/null
+++ b/src/first_run.c
@@ -0,0 +1,156 @@
+/*
+ * active port forwarder - software for secure forwarding
+ * Copyright (C) 2003,2004,2005 jeremian <jeremian [at] poczta.fm>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
+ *
+ */
+
+#include <config.h>
+
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+#include <unistd.h>
+#include <sys/types.h>
+#include <sys/stat.h>
+#include <sys/wait.h>
+#include <pwd.h>
+
+static char* home_dir = NULL;
+static char* home_dir_key = NULL;
+static char* home_dir_cer = NULL;
+
+int
+create_apf_dir()
+{
+ int length;
+ struct stat buf;
+ struct passwd *user = getpwuid(getuid());
+ if (user == NULL) {
+ return 1; /* some problems witch fetching user info*/
+ }
+ if (user->pw_dir == NULL) {
+ return 2; /* home directory is not set? */
+ }
+ if (home_dir) {
+ free(home_dir);
+ home_dir = NULL;
+ }
+ length = strlen(user->pw_dir);
+ home_dir = calloc(1, length + 6);
+ if (home_dir == NULL) {
+ return 3; /* calloc failed */
+ }
+ strcpy(home_dir, user->pw_dir);
+ if (home_dir[length] == '/') {
+ strcpy(&home_dir[length], ".apf");
+ }
+ else {
+ strcpy(&home_dir[length], "/.apf");
+ }
+ if (stat(home_dir, &buf)) {
+ if (mkdir(home_dir, 0700)) {
+ return 4; /* creating directory failed */
+ }
+ }
+ return 0;
+}
+
+int
+generate_rsa_key(char** keyfile)
+{
+ int key_length, home_length, status;
+ char openssl_cmd[101];
+ struct stat buf;
+ /* check in local directory first */
+ if (stat(*keyfile, &buf) == 0) {
+ return 0;
+ }
+ /* check in home_dir */
+ key_length = strlen(*keyfile);
+ home_length = strlen(home_dir);
+ if (home_dir_key) {
+ free(home_dir_key);
+ home_dir_key = NULL;
+ }
+ home_dir_key = calloc(1, home_length + key_length + 2);
+ if (home_dir_key == NULL) {
+ return 1; /* calloc failed */
+ }
+ strcpy(home_dir_key, home_dir);
+ home_dir_key[home_length] = '/';
+ strcpy(&home_dir_key[home_length+1], *keyfile);
+ *keyfile = home_dir_key;
+ if (stat(home_dir_key, &buf) == 0) {
+ return 0;
+ }
+ /* have to generate the key */
+ if (snprintf(openssl_cmd, 101, "openssl genrsa -out %s 2048", home_dir_key) > 100) {
+ return 2; /* string is too long */
+ }
+ status = system(openssl_cmd);
+ if (status == -1) {
+ return -1;
+ }
+ return WEXITSTATUS(status);
+}
+
+int
+generate_certificate(char** cerfile, char* keyfile)
+{
+ int cer_length, home_length, status, tmp_fd1, tmp_fd2;
+ char openssl_cmd[301];
+ struct stat buf;
+ /* check in local directory first */
+ if (stat(*cerfile, &buf) == 0) {
+ return 0;
+ }
+ /* check in home_dir */
+ cer_length = strlen(*cerfile);
+ home_length = strlen(home_dir);
+ if (home_dir_cer) {
+ free(home_dir_cer);
+ home_dir_cer = NULL;
+ }
+ home_dir_cer = calloc(1, home_length + cer_length + 2);
+ if (home_dir_cer == NULL) {
+ return 1; /* calloc failed */
+ }
+ strcpy(home_dir_cer, home_dir);
+ home_dir_cer[home_length] = '/';
+ strcpy(&home_dir_cer[home_length+1], *cerfile);
+ *cerfile = home_dir_cer;
+ if (stat(home_dir_cer, &buf) == 0) {
+ return 0;
+ }
+ /* have to generate the certificate */
+ if (snprintf(openssl_cmd, 201, "echo -e \"pl\nWar-Maz\nOlsztyn\nSHEG\nUtils productions\njeremian\njeremian@poczta.fm\" | openssl req -new -x509 -key %s -out %s -days 1095", keyfile, home_dir_cer) > 300) {
+ return 2; /* string is too long */
+ }
+ tmp_fd1 = dup(STDOUT_FILENO);
+ tmp_fd2 = dup(STDERR_FILENO);
+ close(STDOUT_FILENO);
+ close(STDERR_FILENO);
+ status = system(openssl_cmd);
+ dup2(tmp_fd1, STDOUT_FILENO);
+ dup2(tmp_fd2, STDERR_FILENO);
+ close(tmp_fd1);
+ close(tmp_fd2);
+ if (status == -1) {
+ return -1;
+ }
+ return WEXITSTATUS(status);
+}