--- sourceforge.net/trunk/rdesktop/licence.c	2002/07/29 20:17:10	77
+++ sourceforge.net/trunk/rdesktop/licence.c	2003/02/10 12:58:51	318
@@ -1,7 +1,7 @@
 /*
    rdesktop: A Remote Desktop Protocol client.
    RDP licensing negotiation
-   Copyright (C) Matthew Chapman 1999-2001
+   Copyright (C) Matthew Chapman 1999-2002
    
    This program is free software; you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
@@ -18,22 +18,188 @@
    Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
 */
 
+#include <sys/types.h>
+#include <sys/stat.h>
+#include <unistd.h>
+#include <fcntl.h>
+#include <errno.h>
 #include "rdesktop.h"
+
+#ifdef WITH_OPENSSL
+#include <openssl/rc4.h>
+#else
 #include "crypto/rc4.h"
+#endif
 
 extern char username[16];
 extern char hostname[16];
-extern BOOL licence;
 
 static uint8 licence_key[16];
 static uint8 licence_sign_key[16];
 
 BOOL licence_issued = False;
 
+
+int
+load_licence(unsigned char **data)
+{
+	char *path;
+	char *home;
+	struct stat st;
+	int fd;
+
+	home = getenv("HOME");
+	if (home == NULL)
+		return -1;
+
+	path = xmalloc(strlen(home) + strlen(hostname) + 20);
+	sprintf(path, "%s/.rdesktop/licence.%s", home, hostname);
+
+	fd = open(path, O_RDONLY);
+	if (fd == -1)
+		return -1;
+
+	if (fstat(fd, &st))
+		return -1;
+
+	*data = xmalloc(st.st_size);
+	return read(fd, *data, st.st_size);
+}
+
+void
+save_licence(unsigned char *data, int length)
+{
+	char *fpath;		/* file path for licence */
+	char *fname, *fnamewrk;	/* file name for licence .inkl path. */
+	char *home;
+	uint32 y;
+	struct flock fnfl;
+	int fnfd, fnwrkfd, i, wlen;
+	struct stream s, *s_ptr;
+	uint32 len;
+
+	/* Construct a stream, so that we can use macros to extract the
+	 * licence.
+	 */
+	s_ptr = &s;
+	s_ptr->p = data;
+	/* Skip first two bytes */
+	in_uint16(s_ptr, len);
+
+	/* Skip three strings */
+	for (i = 0; i < 3; i++)
+	{
+		in_uint32(s_ptr, len);
+		s_ptr->p += len;
+		/* Make sure that we won't be past the end of data after
+		 * reading the next length value
+		 */
+		if ((s_ptr->p) + 4 > data + length)
+		{
+			printf("Error in parsing licence key.\n");
+			printf("Strings %d end value %x > supplied length (%x)\n", i,
+			       (unsigned int) s_ptr->p, (unsigned int) data + length);
+			return;
+		}
+	}
+	in_uint32(s_ptr, len);
+	if (s_ptr->p + len > data + length)
+	{
+		printf("Error in parsing licence key.\n");
+		printf("End of licence %x > supplied length (%x)\n",
+		       (unsigned int) s_ptr->p + len, (unsigned int) data + length);
+		return;
+	}
+
+	home = getenv("HOME");
+	if (home == NULL)
+		return;
+
+	/* set and create the directory -- if it doesn't exist. */
+	fpath = xmalloc(strlen(home) + 11);
+	STRNCPY(fpath, home, strlen(home) + 1);
+
+	sprintf(fpath, "%s/.rdesktop", fpath);
+	if (mkdir(fpath, 0700) == -1 && errno != EEXIST)
+	{
+		perror("mkdir");
+		exit(1);
+	}
+
+	/* set the real licence filename, and put a write lock on it. */
+	fname = xmalloc(strlen(fpath) + strlen(hostname) + 10);
+	sprintf(fname, "%s/licence.%s", fpath, hostname);
+	fnfd = open(fname, O_RDONLY);
+	if (fnfd != -1)
+	{
+		fnfl.l_type = F_WRLCK;
+		fnfl.l_whence = SEEK_SET;
+		fnfl.l_start = 0;
+		fnfl.l_len = 1;
+		fcntl(fnfd, F_SETLK, &fnfl);
+	}
+
+	/* create a temporary licence file */
+	fnamewrk = xmalloc(strlen(fname) + 12);
+	for (y = 0;; y++)
+	{
+		sprintf(fnamewrk, "%s.%lu", fname, (long unsigned int) y);
+		fnwrkfd = open(fnamewrk, O_WRONLY | O_CREAT | O_EXCL, 0600);
+		if (fnwrkfd == -1)
+		{
+			if (errno == EINTR || errno == EEXIST)
+				continue;
+			perror("create");
+			exit(1);
+		}
+		break;
+	}
+	/* write to the licence file */
+	for (y = 0; y < len;)
+	{
+		do
+		{
+			wlen = write(fnwrkfd, s_ptr->p + y, len - y);
+		}
+		while (wlen == -1 && errno == EINTR);
+		if (wlen < 1)
+		{
+			perror("write");
+			unlink(fnamewrk);
+			exit(1);
+		}
+		y += wlen;
+	}
+
+	/* close the file and rename it to fname */
+	if (close(fnwrkfd) == -1)
+	{
+		perror("close");
+		unlink(fnamewrk);
+		exit(1);
+	}
+	if (rename(fnamewrk, fname) == -1)
+	{
+		perror("rename");
+		unlink(fnamewrk);
+		exit(1);
+	}
+	/* close the file lock on fname */
+	if (fnfd != -1)
+	{
+		fnfl.l_type = F_UNLCK;
+		fnfl.l_whence = SEEK_SET;
+		fnfl.l_start = 0;
+		fnfl.l_len = 1;
+		fcntl(fnfd, F_SETLK, &fnfl);
+		close(fnfd);
+	}
+
+}
+
 /* Generate a session key and RC4 keys, given client and server randoms */
 static void
-licence_generate_keys(uint8 * client_key, uint8 * server_key,
-		      uint8 * client_rsa)
+licence_generate_keys(uint8 * client_key, uint8 * server_key, uint8 * client_rsa)
 {
 	uint8 session_key[48];
 	uint8 temp_hash[48];
@@ -59,8 +225,7 @@
 /* Present an existing licence to the server */
 static void
 licence_present(uint8 * client_random, uint8 * rsa_data,
-		uint8 * licence_data, int licence_size,
-		uint8 * hwid, uint8 * signature)
+		uint8 * licence_data, int licence_size, uint8 * hwid, uint8 * signature)
 {
 	uint32 sec_flags = SEC_LICENCE_NEG;
 	uint16 length =
@@ -99,8 +264,7 @@
 
 /* Send a licence request packet */
 static void
-licence_send_request(uint8 * client_random, uint8 * rsa_data,
-		     char *user, char *host)
+licence_send_request(uint8 * client_random, uint8 * rsa_data, char *user, char *host)
 {
 	uint32 sec_flags = SEC_LICENCE_NEG;
 	uint16 userlen = strlen(user) + 1;
@@ -140,9 +304,9 @@
 licence_process_demand(STREAM s)
 {
 	uint8 null_data[SEC_MODULUS_SIZE];
-	uint8 hwid[LICENCE_HWID_SIZE];
-	uint8 signature[LICENCE_SIGNATURE_SIZE];
 	uint8 *server_random;
+	uint8 signature[LICENCE_SIGNATURE_SIZE];
+	uint8 hwid[LICENCE_HWID_SIZE];
 	uint8 *licence_data;
 	int licence_size;
 	RC4_KEY crypt_key;
@@ -156,24 +320,22 @@
 	licence_generate_keys(null_data, server_random, null_data);
 
 	licence_size = load_licence(&licence_data);
-	if (licence_size == -1)
+	if (licence_size != -1)
 	{
-		licence_send_request(null_data, null_data, username,
-				     hostname);
+		/* Generate a signature for the HWID buffer */
+		licence_generate_hwid(hwid);
+		sec_sign(signature, 16, licence_sign_key, 16, hwid, sizeof(hwid));
+
+		/* Now encrypt the HWID */
+		RC4_set_key(&crypt_key, 16, licence_key);
+		RC4(&crypt_key, sizeof(hwid), hwid, hwid);
+
+		licence_present(null_data, null_data, licence_data, licence_size, hwid, signature);
+		xfree(licence_data);
 		return;
 	}
 
-	/* Generate a signature for the HWID buffer */
-	licence_generate_hwid(hwid);
-	sec_sign(signature, 16, licence_sign_key, 16, hwid, sizeof(hwid));
-
-	/* Now encrypt the HWID */
-	RC4_set_key(&crypt_key, 16, licence_key);
-	RC4(&crypt_key, sizeof(hwid), hwid, hwid);
-
-	licence_present(null_data, null_data, licence_data, licence_size,
-			hwid, signature);
-	xfree(licence_data);
+	licence_send_request(null_data, null_data, username, hostname);
 }
 
 /* Send an authentication response packet */
@@ -229,8 +391,7 @@
 licence_process_authreq(STREAM s)
 {
 	uint8 *in_token, *in_sig;
-	uint8 out_token[LICENCE_TOKEN_SIZE],
-		decrypt_token[LICENCE_TOKEN_SIZE];
+	uint8 out_token[LICENCE_TOKEN_SIZE], decrypt_token[LICENCE_TOKEN_SIZE];
 	uint8 hwid[LICENCE_HWID_SIZE], crypt_hwid[LICENCE_HWID_SIZE];
 	uint8 sealed_buffer[LICENCE_TOKEN_SIZE + LICENCE_HWID_SIZE];
 	uint8 out_sig[LICENCE_SIGNATURE_SIZE];
@@ -248,12 +409,7 @@
 	licence_generate_hwid(hwid);
 	memcpy(sealed_buffer, decrypt_token, LICENCE_TOKEN_SIZE);
 	memcpy(sealed_buffer + LICENCE_TOKEN_SIZE, hwid, LICENCE_HWID_SIZE);
-	sec_sign(out_sig, 16, licence_sign_key, 16,
-		 sealed_buffer, sizeof(sealed_buffer));
-
-	/* Deliberately break signature if licencing disabled */
-	if (!licence)
-		memset(out_sig, 0, sizeof(out_sig));
+	sec_sign(out_sig, 16, licence_sign_key, 16, sealed_buffer, sizeof(sealed_buffer));
 
 	/* Now encrypt the HWID */
 	RC4_set_key(&crypt_key, 16, licence_key);