ddnet/src/engine/server/authmanager.cpp

#include <engine/external/md5/md5.h>

#include <engine/shared/config.h>
#include "authmanager.h"

#define ADMIN_IDENT "default_admin"
#define MOD_IDENT "default_mod"
#define HELPER_IDENT "default_helper"

CAuthManager::CAuthManager()
{
	m_aDefault[0] = -1;
	m_aDefault[1] = -1;
	m_aDefault[2] = -1;
	m_Generated = false;
}

void CAuthManager::Init()
{
	int NumDefaultKeys = 0;
	if(g_Config.m_SvRconPassword[0])
		NumDefaultKeys++;
	if(g_Config.m_SvRconModPassword[0])
		NumDefaultKeys++;
	if(g_Config.m_SvRconHelperPassword[0])
		NumDefaultKeys++;
	if(m_aKeys.size() == NumDefaultKeys && !g_Config.m_SvRconPassword[0])
	{
		secure_random_password(g_Config.m_SvRconPassword, sizeof(g_Config.m_SvRconPassword), 6);
		m_Generated = true;
	}
}

int CAuthManager::AddKeyHash(const char *pIdent, const unsigned char *pHash, const unsigned char *pSalt, int AuthLevel)
{
	if(FindKey(pIdent) >= 0)
		return -1;

	CKey Key;
	str_copy(Key.m_aIdent, pIdent, sizeof(Key.m_aIdent));
	mem_copy(Key.m_aPw, pHash, MD5_BYTES);
	mem_copy(Key.m_aSalt, pSalt, SALT_BYTES);
	Key.m_Level = AuthLevel;

	return m_aKeys.add(Key);
}

int CAuthManager::AddKey(const char *pIdent, const char *pPw, int AuthLevel)
{
	md5_state_t ctx;
	unsigned char aHash[MD5_BYTES];
	unsigned char aSalt[SALT_BYTES];

	// Generate random salt
	secure_random_fill(aSalt, SALT_BYTES);

	// Hash the password and the salt
	md5_init(&ctx);
	md5_append(&ctx, (unsigned char *)pPw, str_length(pPw));
	md5_append(&ctx, aSalt, SALT_BYTES);
	md5_finish(&ctx, aHash);

	return AddKeyHash(pIdent, aHash, aSalt, AuthLevel);
}

int CAuthManager::RemoveKey(int Slot)
{
	m_aKeys.remove_index_fast(Slot);
	for(int i = 0; i < (int)(sizeof(m_aDefault) / sizeof(m_aDefault[0])); i++)
	{
		if(m_aDefault[i] == Slot)
		{
			m_aDefault[i] = -1;
		}
		else if(m_aDefault[i] == m_aKeys.size())
		{
			m_aDefault[i] = Slot;
		}
	}
	return m_aKeys.size();
}

int CAuthManager::FindKey(const char *pIdent)
{
	for(int i = 0; i < m_aKeys.size(); i++)
		if(!str_comp(m_aKeys[i].m_aIdent, pIdent))
			return i;

	return -1;
}

bool CAuthManager::CheckKey(int Slot, const char *pPw)
{
	dbg_assert(Slot >= 0 || Slot < m_aKeys.size(), "index out of bounds");

	md5_state_t ctx;
	unsigned char aHash[MD5_BYTES];

	// Hash the password and the salt
	md5_init(&ctx);
	md5_append(&ctx, (unsigned char*)pPw, str_length(pPw));
	md5_append(&ctx, m_aKeys[Slot].m_aSalt, SALT_BYTES);
	md5_finish(&ctx, aHash);

	return !mem_comp(m_aKeys[Slot].m_aPw, aHash, MD5_BYTES);
}

int CAuthManager::DefaultKey(int AuthLevel)
{
	dbg_assert(AuthLevel >= 0 || AuthLevel <= AUTHED_ADMIN, "auth level invalid");
	return m_aDefault[AUTHED_ADMIN - AuthLevel];
}

int CAuthManager::KeyLevel(int Slot)
{
	dbg_assert(Slot >= 0 || Slot < m_aKeys.size(), "index out of bounds");
	return m_aKeys[Slot].m_Level;
}

const char *CAuthManager::KeyIdent(int Slot)
{
	dbg_assert(Slot >= 0 || Slot < m_aKeys.size(), "index out of bounds");
	return m_aKeys[Slot].m_aIdent;
}

void CAuthManager::UpdateKeyHash(int Slot, const unsigned char *pHash, const unsigned char *pSalt, int AuthLevel)
{
	dbg_assert(Slot >= 0 || Slot < m_aKeys.size(), "index out of bounds");

	CKey *pKey = &m_aKeys[Slot];
	mem_copy(pKey->m_aPw, pHash, MD5_BYTES);
	mem_copy(pKey->m_aSalt, pSalt, SALT_BYTES);
	pKey->m_Level = AuthLevel;
}

void CAuthManager::UpdateKey(int Slot, const char *pPw, int AuthLevel)
{
	dbg_assert(Slot >= 0 || Slot < m_aKeys.size(), "index out of bounds");

	md5_state_t ctx;
	unsigned char aHash[MD5_BYTES];
	unsigned char aSalt[SALT_BYTES];

	// Generate random salt
	secure_random_fill(aSalt, SALT_BYTES);

	// Hash the password and the salt
	md5_init(&ctx);
	md5_append(&ctx, (unsigned char *)pPw, str_length(pPw));
	md5_append(&ctx, aSalt, SALT_BYTES);
	md5_finish(&ctx, aHash);

	UpdateKeyHash(Slot, aHash, aSalt, AuthLevel);
}

void CAuthManager::ListKeys(FListCallback pfnListCallback, void *pUser)
{
	for(int i = 0; i < m_aKeys.size(); i++)
		pfnListCallback(m_aKeys[i].m_aIdent, m_aKeys[i].m_Level, pUser);
}

void CAuthManager::AddDefaultKey(int Level, const char *pPw)
{
	dbg_assert(AUTHED_HELPER <= Level && Level <= AUTHED_ADMIN, "level out of range");
	static const char IDENTS[3][sizeof(HELPER_IDENT)] = {ADMIN_IDENT, MOD_IDENT, HELPER_IDENT};
	int Index = AUTHED_ADMIN - Level;
	dbg_assert(m_aDefault[Index] == -1, "trying to add an already existing default key");
	m_aDefault[Index] = AddKey(IDENTS[Index], pPw, Level);
}

bool CAuthManager::IsGenerated()
{
	return m_Generated;
}
New auth system for rcon 2017-03-02 15:16:29 +00:00			`#include <engine/external/md5/md5.h>`

			`#include <engine/shared/config.h>`
			`#include "authmanager.h"`

			`#define ADMIN_IDENT "default_admin"`
			`#define MOD_IDENT "default_mod"`
			`#define HELPER_IDENT "default_helper"`

			`CAuthManager::CAuthManager()`
			`{`
			`m_aDefault[0] = -1;`
			`m_aDefault[1] = -1;`
			`m_aDefault[2] = -1;`
Fix some issues 2017-03-04 20:06:22 +00:00			`m_Generated = false;`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`}`

			`void CAuthManager::Init()`
			`{`
Fix handling of default passwords It was horribly broken before. :) Only the first password set via `sv_rcon*_password` worked, and that only due to a bug in `AddHashKey` -- `AddHashKey` incorrectly assumed that only key slots greater than 0 are valid, but 0 is valid too. Fix default passwords on password removal, fix no admin password being generated if you only had `sv_rcon_mod_password` or `sv_rcon_helper_password` set. Add an assert that would have caught our mistake. 2017-03-10 11:33:34 +00:00			`int NumDefaultKeys = 0;`
			`if(g_Config.m_SvRconPassword[0])`
			`NumDefaultKeys++;`
			`if(g_Config.m_SvRconModPassword[0])`
			`NumDefaultKeys++;`
			`if(g_Config.m_SvRconHelperPassword[0])`
			`NumDefaultKeys++;`
			`if(m_aKeys.size() == NumDefaultKeys && !g_Config.m_SvRconPassword[0])`
Fix some issues 2017-03-04 20:06:22 +00:00			`{`
			`secure_random_password(g_Config.m_SvRconPassword, sizeof(g_Config.m_SvRconPassword), 6);`
			`m_Generated = true;`
			`}`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`}`

			`int CAuthManager::AddKeyHash(const char pIdent, const unsigned char pHash, const unsigned char *pSalt, int AuthLevel)`
			`{`
Fix handling of default passwords It was horribly broken before. :) Only the first password set via `sv_rcon*_password` worked, and that only due to a bug in `AddHashKey` -- `AddHashKey` incorrectly assumed that only key slots greater than 0 are valid, but 0 is valid too. Fix default passwords on password removal, fix no admin password being generated if you only had `sv_rcon_mod_password` or `sv_rcon_helper_password` set. Add an assert that would have caught our mistake. 2017-03-10 11:33:34 +00:00			`if(FindKey(pIdent) >= 0)`
Get rid of pw generation in CServer, Err out in CAuthManager instead 2017-03-04 20:16:02 +00:00			`return -1;`

New auth system for rcon 2017-03-02 15:16:29 +00:00			`CKey Key;`
Fix some style issues and a > to >= 2017-03-06 19:11:23 +00:00			`str_copy(Key.m_aIdent, pIdent, sizeof(Key.m_aIdent));`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`mem_copy(Key.m_aPw, pHash, MD5_BYTES);`
			`mem_copy(Key.m_aSalt, pSalt, SALT_BYTES);`
			`Key.m_Level = AuthLevel;`

			`return m_aKeys.add(Key);`
			`}`

			`int CAuthManager::AddKey(const char pIdent, const char pPw, int AuthLevel)`
			`{`
			`md5_state_t ctx;`
			`unsigned char aHash[MD5_BYTES];`
			`unsigned char aSalt[SALT_BYTES];`

Fix some style issues and a > to >= 2017-03-06 19:11:23 +00:00			`// Generate random salt`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`secure_random_fill(aSalt, SALT_BYTES);`

Fix some style issues and a > to >= 2017-03-06 19:11:23 +00:00			`// Hash the password and the salt`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`md5_init(&ctx);`
			`md5_append(&ctx, (unsigned char *)pPw, str_length(pPw));`
			`md5_append(&ctx, aSalt, SALT_BYTES);`
			`md5_finish(&ctx, aHash);`

			`return AddKeyHash(pIdent, aHash, aSalt, AuthLevel);`
			`}`

Fix key slot indices after removing a key 2017-03-06 17:02:19 +00:00			`int CAuthManager::RemoveKey(int Slot)`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`{`
			`m_aKeys.remove_index_fast(Slot);`
Fix handling of default passwords It was horribly broken before. :) Only the first password set via `sv_rcon*_password` worked, and that only due to a bug in `AddHashKey` -- `AddHashKey` incorrectly assumed that only key slots greater than 0 are valid, but 0 is valid too. Fix default passwords on password removal, fix no admin password being generated if you only had `sv_rcon_mod_password` or `sv_rcon_helper_password` set. Add an assert that would have caught our mistake. 2017-03-10 11:33:34 +00:00			`for(int i = 0; i < (int)(sizeof(m_aDefault) / sizeof(m_aDefault[0])); i++)`
			`{`
			`if(m_aDefault[i] == Slot)`
			`{`
			`m_aDefault[i] = -1;`
			`}`
			`else if(m_aDefault[i] == m_aKeys.size())`
			`{`
			`m_aDefault[i] = Slot;`
			`}`
			`}`
Fix key slot indices after removing a key 2017-03-06 17:02:19 +00:00			`return m_aKeys.size();`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`}`

			`int CAuthManager::FindKey(const char *pIdent)`
			`{`
			`for(int i = 0; i < m_aKeys.size(); i++)`
			`if(!str_comp(m_aKeys[i].m_aIdent, pIdent))`
			`return i;`

			`return -1;`
			`}`

			`bool CAuthManager::CheckKey(int Slot, const char *pPw)`
			`{`
Fix handling of default passwords It was horribly broken before. :) Only the first password set via `sv_rcon*_password` worked, and that only due to a bug in `AddHashKey` -- `AddHashKey` incorrectly assumed that only key slots greater than 0 are valid, but 0 is valid too. Fix default passwords on password removal, fix no admin password being generated if you only had `sv_rcon_mod_password` or `sv_rcon_helper_password` set. Add an assert that would have caught our mistake. 2017-03-10 11:33:34 +00:00			`dbg_assert(Slot >= 0 \|\| Slot < m_aKeys.size(), "index out of bounds");`
New auth system for rcon 2017-03-02 15:16:29 +00:00
			`md5_state_t ctx;`
			`unsigned char aHash[MD5_BYTES];`

Fix some style issues and a > to >= 2017-03-06 19:11:23 +00:00			`// Hash the password and the salt`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`md5_init(&ctx);`
			`md5_append(&ctx, (unsigned char*)pPw, str_length(pPw));`
			`md5_append(&ctx, m_aKeys[Slot].m_aSalt, SALT_BYTES);`
			`md5_finish(&ctx, aHash);`

			`return !mem_comp(m_aKeys[Slot].m_aPw, aHash, MD5_BYTES);`
			`}`

			`int CAuthManager::DefaultKey(int AuthLevel)`
			`{`
Forgot to negate the comparisons 2017-03-06 12:01:07 +00:00			`dbg_assert(AuthLevel >= 0 \|\| AuthLevel <= AUTHED_ADMIN, "auth level invalid");`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`return m_aDefault[AUTHED_ADMIN - AuthLevel];`
			`}`

			`int CAuthManager::KeyLevel(int Slot)`
			`{`
Fix handling of default passwords It was horribly broken before. :) Only the first password set via `sv_rcon*_password` worked, and that only due to a bug in `AddHashKey` -- `AddHashKey` incorrectly assumed that only key slots greater than 0 are valid, but 0 is valid too. Fix default passwords on password removal, fix no admin password being generated if you only had `sv_rcon_mod_password` or `sv_rcon_helper_password` set. Add an assert that would have caught our mistake. 2017-03-10 11:33:34 +00:00			`dbg_assert(Slot >= 0 \|\| Slot < m_aKeys.size(), "index out of bounds");`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`return m_aKeys[Slot].m_Level;`
			`}`

			`const char *CAuthManager::KeyIdent(int Slot)`
			`{`
Fix handling of default passwords It was horribly broken before. :) Only the first password set via `sv_rcon*_password` worked, and that only due to a bug in `AddHashKey` -- `AddHashKey` incorrectly assumed that only key slots greater than 0 are valid, but 0 is valid too. Fix default passwords on password removal, fix no admin password being generated if you only had `sv_rcon_mod_password` or `sv_rcon_helper_password` set. Add an assert that would have caught our mistake. 2017-03-10 11:33:34 +00:00			`dbg_assert(Slot >= 0 \|\| Slot < m_aKeys.size(), "index out of bounds");`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`return m_aKeys[Slot].m_aIdent;`
			`}`

			`void CAuthManager::UpdateKeyHash(int Slot, const unsigned char pHash, const unsigned char pSalt, int AuthLevel)`
			`{`
Fix handling of default passwords It was horribly broken before. :) Only the first password set via `sv_rcon*_password` worked, and that only due to a bug in `AddHashKey` -- `AddHashKey` incorrectly assumed that only key slots greater than 0 are valid, but 0 is valid too. Fix default passwords on password removal, fix no admin password being generated if you only had `sv_rcon_mod_password` or `sv_rcon_helper_password` set. Add an assert that would have caught our mistake. 2017-03-10 11:33:34 +00:00			`dbg_assert(Slot >= 0 \|\| Slot < m_aKeys.size(), "index out of bounds");`
New auth system for rcon 2017-03-02 15:16:29 +00:00
			`CKey *pKey = &m_aKeys[Slot];`
			`mem_copy(pKey->m_aPw, pHash, MD5_BYTES);`
			`mem_copy(pKey->m_aSalt, pSalt, SALT_BYTES);`
			`pKey->m_Level = AuthLevel;`
			`}`

			`void CAuthManager::UpdateKey(int Slot, const char *pPw, int AuthLevel)`
			`{`
Fix handling of default passwords It was horribly broken before. :) Only the first password set via `sv_rcon*_password` worked, and that only due to a bug in `AddHashKey` -- `AddHashKey` incorrectly assumed that only key slots greater than 0 are valid, but 0 is valid too. Fix default passwords on password removal, fix no admin password being generated if you only had `sv_rcon_mod_password` or `sv_rcon_helper_password` set. Add an assert that would have caught our mistake. 2017-03-10 11:33:34 +00:00			`dbg_assert(Slot >= 0 \|\| Slot < m_aKeys.size(), "index out of bounds");`
New auth system for rcon 2017-03-02 15:16:29 +00:00
			`md5_state_t ctx;`
			`unsigned char aHash[MD5_BYTES];`
			`unsigned char aSalt[SALT_BYTES];`

Fix some style issues and a > to >= 2017-03-06 19:11:23 +00:00			`// Generate random salt`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`secure_random_fill(aSalt, SALT_BYTES);`

Fix some style issues and a > to >= 2017-03-06 19:11:23 +00:00			`// Hash the password and the salt`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`md5_init(&ctx);`
			`md5_append(&ctx, (unsigned char *)pPw, str_length(pPw));`
			`md5_append(&ctx, aSalt, SALT_BYTES);`
			`md5_finish(&ctx, aHash);`

			`UpdateKeyHash(Slot, aHash, aSalt, AuthLevel);`
			`}`

			`void CAuthManager::ListKeys(FListCallback pfnListCallback, void *pUser)`
			`{`
			`for(int i = 0; i < m_aKeys.size(); i++)`
			`pfnListCallback(m_aKeys[i].m_aIdent, m_aKeys[i].m_Level, pUser);`
			`}`

Fix key slot indices after removing a key 2017-03-06 17:02:19 +00:00			`void CAuthManager::AddDefaultKey(int Level, const char *pPw)`
New auth system for rcon 2017-03-02 15:16:29 +00:00			`{`
Fix key slot indices after removing a key 2017-03-06 17:02:19 +00:00			`dbg_assert(AUTHED_HELPER <= Level && Level <= AUTHED_ADMIN, "level out of range");`
			`static const char IDENTS[3][sizeof(HELPER_IDENT)] = {ADMIN_IDENT, MOD_IDENT, HELPER_IDENT};`
			`int Index = AUTHED_ADMIN - Level;`
Fix handling of default passwords It was horribly broken before. :) Only the first password set via `sv_rcon*_password` worked, and that only due to a bug in `AddHashKey` -- `AddHashKey` incorrectly assumed that only key slots greater than 0 are valid, but 0 is valid too. Fix default passwords on password removal, fix no admin password being generated if you only had `sv_rcon_mod_password` or `sv_rcon_helper_password` set. Add an assert that would have caught our mistake. 2017-03-10 11:33:34 +00:00			`dbg_assert(m_aDefault[Index] == -1, "trying to add an already existing default key");`
Fix key slot indices after removing a key 2017-03-06 17:02:19 +00:00			`m_aDefault[Index] = AddKey(IDENTS[Index], pPw, Level);`
Fix some issues 2017-03-04 20:06:22 +00:00			`}`

			`bool CAuthManager::IsGenerated()`
			`{`
			`return m_Generated;`
Fix key slot indices after removing a key 2017-03-06 17:02:19 +00:00			`}`