1/* 2 * Copyright (c) 1999 Apple Computer, Inc. All rights reserved. 3 * 4 * @APPLE_LICENSE_HEADER_START@ 5 * 6 * Portions Copyright (c) 1999 Apple Computer, Inc. All Rights 7 * Reserved. This file contains Original Code and/or Modifications of 8 * Original Code as defined in and that are subject to the Apple Public 9 * Source License Version 1.1 (the "License"). You may not use this file 10 * except in compliance with the License. Please obtain a copy of the 11 * License at http://www.apple.com/publicsource and read it before using 12 * this file. 13 * 14 * The Original Code and all software distributed under the License are 15 * distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY KIND, EITHER 16 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, 17 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, 18 * FITNESS FOR A PARTICULAR PURPOSE OR NON- INFRINGEMENT. Please see the 19 * License for the specific language governing rights and limitations 20 * under the License. 21 * 22 * @APPLE_LICENSE_HEADER_END@ 23 */ 24/* 25 * Sun RPC is a product of Sun Microsystems, Inc. and is provided for 26 * unrestricted use provided that this legend is included on all tape 27 * media and as a part of the software program in whole or part. Users 28 * may copy or modify Sun RPC without charge, but are not authorized 29 * to license or distribute it to anyone else except as part of a product or 30 * program developed by the user. 31 * 32 * SUN RPC IS PROVIDED AS IS WITH NO WARRANTIES OF ANY KIND INCLUDING THE 33 * WARRANTIES OF DESIGN, MERCHANTIBILITY AND FITNESS FOR A PARTICULAR 34 * PURPOSE, OR ARISING FROM A COURSE OF DEALING, USAGE OR TRADE PRACTICE. 35 * 36 * Sun RPC is provided with no support and without any obligation on the 37 * part of Sun Microsystems, Inc. to assist in its use, correction, 38 * modification or enhancement. 39 * 40 * SUN MICROSYSTEMS, INC. SHALL HAVE NO LIABILITY WITH RESPECT TO THE 41 * INFRINGEMENT OF COPYRIGHTS, TRADE SECRETS OR ANY PATENTS BY SUN RPC 42 * OR ANY PART THEREOF. 43 * 44 * In no event will Sun Microsystems, Inc. be liable for any lost revenue 45 * or profits or other special, indirect and consequential damages, even if 46 * Sun has been advised of the possibility of such damages. 47 * 48 * Sun Microsystems, Inc. 49 * 2550 Garcia Avenue 50 * Mountain View, California 94043 51 */ 52 53#if defined(LIBC_SCCS) && !defined(lint) 54/*static char *sccsid = "from: @(#)svc_auth_unix.c 1.28 88/02/08 Copyr 1984 Sun Micro";*/ 55/*static char *sccsid = "from: @(#)svc_auth_unix.c 2.3 88/08/01 4.0 RPCSRC";*/ 56static char *rcsid = "$Id: svc_auth_unix.c,v 1.5 2003/06/23 17:24:59 majka Exp $"; 57#endif 58 59/* 60 * svc_auth_unix.c 61 * Handles UNIX flavor authentication parameters on the service side of rpc. 62 * There are two svc auth implementations here: AUTH_UNIX and AUTH_SHORT. 63 * _svcauth_unix does full blown unix style uid,gid+gids auth, 64 * _svcauth_short uses a shorthand auth to index into a cache of longhand auths. 65 * Note: the shorthand has been gutted for efficiency. 66 * 67 * Copyright (C) 1984, Sun Microsystems, Inc. 68 */ 69 70#include <stdio.h> 71#include <string.h> 72#include <sys/param.h> 73#include <rpc/rpc.h> 74 75/* 76 * Unix longhand authenticator 77 */ 78enum auth_stat 79_svcauth_unix(rqst, msg) 80 register struct svc_req *rqst; 81 register struct rpc_msg *msg; 82{ 83 register enum auth_stat stat; 84 XDR xdrs; 85 register struct authunix_parms *aup; 86#ifdef __LP64__ 87 int *buf; 88#else 89 register long *buf; 90#endif 91 struct area { 92 struct authunix_parms area_aup; 93 char area_machname[MAX_MACHINE_NAME+1]; 94 int area_gids[NGROUPS]; 95 } *area; 96 u_int auth_len, str_len, gid_len; 97 register int i; 98 99 area = (struct area *) rqst->rq_clntcred; 100 aup = &area->area_aup; 101 aup->aup_machname = area->area_machname; 102 aup->aup_gids = area->area_gids; 103 auth_len = (u_int)msg->rm_call.cb_cred.oa_length; 104 xdrmem_create(&xdrs, msg->rm_call.cb_cred.oa_base, auth_len,XDR_DECODE); 105#ifdef __LP64__ 106 buf = (int *)XDR_INLINE(&xdrs, auth_len); 107#else 108 buf = (long *)XDR_INLINE(&xdrs, auth_len); 109#endif 110 if (buf != NULL) { 111 aup->aup_time = IXDR_GET_LONG(buf); 112 str_len = IXDR_GET_U_LONG(buf); 113 if (str_len > MAX_MACHINE_NAME) { 114 stat = AUTH_BADCRED; 115 goto done; 116 } 117 bcopy((caddr_t)buf, aup->aup_machname, str_len); 118 aup->aup_machname[str_len] = 0; 119 str_len = RNDUP(str_len); 120#ifdef __LP64__ 121 buf += str_len / sizeof (int); 122#else 123 buf += str_len / sizeof (long); 124#endif 125 aup->aup_uid = IXDR_GET_LONG(buf); 126 aup->aup_gid = IXDR_GET_LONG(buf); 127 gid_len = IXDR_GET_U_LONG(buf); 128 if (gid_len > NGROUPS) { 129 stat = AUTH_BADCRED; 130 goto done; 131 } 132 aup->aup_len = gid_len; 133 for (i = 0; i < gid_len; i++) { 134 aup->aup_gids[i] = IXDR_GET_LONG(buf); 135 } 136 /* 137 * five is the smallest unix credentials structure - 138 * timestamp, hostname len (0), uid, gid, and gids len (0). 139 */ 140 if ((5 + gid_len) * BYTES_PER_XDR_UNIT + str_len > auth_len) { 141 /* LIBRARY CODE SHOULD NOT PRINT 142 (void) printf("bad auth_len gid %d str %d auth %d\n", 143 gid_len, str_len, auth_len); 144 */ 145 stat = AUTH_BADCRED; 146 goto done; 147 } 148 } else if (! xdr_authunix_parms(&xdrs, aup)) { 149 xdrs.x_op = XDR_FREE; 150 (void)xdr_authunix_parms(&xdrs, aup); 151 stat = AUTH_BADCRED; 152 goto done; 153 } 154 rqst->rq_xprt->xp_verf.oa_flavor = AUTH_NULL; 155 rqst->rq_xprt->xp_verf.oa_length = 0; 156 stat = AUTH_OK; 157done: 158 XDR_DESTROY(&xdrs); 159 return (stat); 160} 161 162 163/* 164 * Shorthand unix authenticator 165 * Looks up longhand in a cache. 166 */ 167/*ARGSUSED*/ 168enum auth_stat 169_svcauth_short(rqst, msg) 170 struct svc_req *rqst; 171 struct rpc_msg *msg; 172{ 173 return (AUTH_REJECTEDCRED); 174} 175