rpc.subproj/svc_auth.c

   1 /*
   2  * Copyright (c) 1999 Apple Computer, Inc. All rights reserved.
   3  *
   4  * @APPLE_LICENSE_HEADER_START@
   5  *
   6  * Portions Copyright (c) 1999 Apple Computer, Inc.  All Rights
   7  * Reserved.  This file contains Original Code and/or Modifications of
   8  * Original Code as defined in and that are subject to the Apple Public
   9  * Source License Version 1.1 (the "License").  You may not use this file
  10  * except in compliance with the License.  Please obtain a copy of the
  11  * License at http://www.apple.com/publicsource and read it before using
  12  * this file.
  13  *
  14  * The Original Code and all software distributed under the License are
  15  * distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY KIND, EITHER
  16  * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
  17  * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
  18  * FITNESS FOR A PARTICULAR PURPOSE OR NON- INFRINGEMENT.  Please see the
  19  * License for the specific language governing rights and limitations
  20  * under the License.
  21  *
  22  * @APPLE_LICENSE_HEADER_END@
  23  */
  24 /*
  25  * Sun RPC is a product of Sun Microsystems, Inc. and is provided for
  26  * unrestricted use provided that this legend is included on all tape
  27  * media and as a part of the software program in whole or part.  Users
  28  * may copy or modify Sun RPC without charge, but are not authorized
  29  * to license or distribute it to anyone else except as part of a product or
  30  * program developed by the user.
  31  *
  32  * SUN RPC IS PROVIDED AS IS WITH NO WARRANTIES OF ANY KIND INCLUDING THE
  33  * WARRANTIES OF DESIGN, MERCHANTIBILITY AND FITNESS FOR A PARTICULAR
  34  * PURPOSE, OR ARISING FROM A COURSE OF DEALING, USAGE OR TRADE PRACTICE.
  35  *
  36  * Sun RPC is provided with no support and without any obligation on the
  37  * part of Sun Microsystems, Inc. to assist in its use, correction,
  38  * modification or enhancement.
  39  *
  40  * SUN MICROSYSTEMS, INC. SHALL HAVE NO LIABILITY WITH RESPECT TO THE
  41  * INFRINGEMENT OF COPYRIGHTS, TRADE SECRETS OR ANY PATENTS BY SUN RPC
  42  * OR ANY PART THEREOF.
  43  *
  44  * In no event will Sun Microsystems, Inc. be liable for any lost revenue
  45  * or profits or other special, indirect and consequential damages, even if
  46  * Sun has been advised of the possibility of such damages.
  47  *
  48  * Sun Microsystems, Inc.
  49  * 2550 Garcia Avenue
  50  * Mountain View, California  94043
  51  */
  52
  53 #if defined(LIBC_SCCS) && !defined(lint)
  54 /*static char *sccsid = "from: @(#)svc_auth.c 1.19 87/08/11 Copyr 1984 Sun Micro";*/
  55 /*static char *sccsid = "from: @(#)svc_auth.c   2.1 88/08/07 4.0 RPCSRC";*/
  56 static char *rcsid = "$Id: svc_auth.c,v 1.2 1999/10/14 21:56:54 wsanchez Exp $";
  57 #endif
  58
  59 /*
  60  * svc_auth_nodes.c, Server-side rpc authenticator interface,
  61  * *WITHOUT* DES authentication.
  62  *
  63  * Copyright (C) 1984, Sun Microsystems, Inc.
  64  */
  65
  66 #include <rpc/rpc.h>
  67
  68 /*
  69  * svcauthsw is the bdevsw of server side authentication.
  70  *
  71  * Server side authenticators are called from authenticate by
  72  * using the client auth struct flavor field to index into svcauthsw.
  73  * The server auth flavors must implement a routine that looks
  74  * like:
  75  *
  76  *      enum auth_stat
  77  *      flavorx_auth(rqst, msg)
  78  *              register struct svc_req *rqst;
  79  *              register struct rpc_msg *msg;
  80  *
  81  */
  82
  83 enum auth_stat _svcauth_null();         /* no authentication */
  84 enum auth_stat _svcauth_unix();         /* unix style (uid, gids) */
  85 enum auth_stat _svcauth_short();        /* short hand unix style */
  86
  87 static struct {
  88         enum auth_stat (*authenticator)();
  89 } svcauthsw[] = {
  90         _svcauth_null,                  /* AUTH_NULL */
  91         _svcauth_unix,                  /* AUTH_UNIX */
  92         _svcauth_short,                 /* AUTH_SHORT */
  93 };
  94 #define AUTH_MAX        2               /* HIGHEST AUTH NUMBER */
  95
  96
  97 /*
  98  * The call rpc message, msg has been obtained from the wire.  The msg contains
  99  * the raw form of credentials and verifiers.  authenticate returns AUTH_OK
 100  * if the msg is successfully authenticated.  If AUTH_OK then the routine also
 101  * does the following things:
 102  * set rqst->rq_xprt->verf to the appropriate response verifier;
 103  * sets rqst->rq_client_cred to the "cooked" form of the credentials.
 104  *
 105  * NB: rqst->rq_cxprt->verf must be pre-alloctaed;
 106  * its length is set appropriately.
 107  *
 108  * The caller still owns and is responsible for msg->u.cmb.cred and
 109  * msg->u.cmb.verf.  The authentication system retains ownership of
 110  * rqst->rq_client_cred, the cooked credentials.
 111  *
 112  * There is an assumption that any flavour less than AUTH_NULL is
 113  * invalid.
 114  */
 115 enum auth_stat
 116 _authenticate(rqst, msg)
 117         register struct svc_req *rqst;
 118         struct rpc_msg *msg;
 119 {
 120         register int cred_flavor;
 121
 122         rqst->rq_cred = msg->rm_call.cb_cred;
 123         rqst->rq_xprt->xp_verf.oa_flavor = _null_auth.oa_flavor;
 124         rqst->rq_xprt->xp_verf.oa_length = 0;
 125         cred_flavor = rqst->rq_cred.oa_flavor;
 126         if ((cred_flavor <= AUTH_MAX) && (cred_flavor >= AUTH_NULL)) {
 127                 return ((*(svcauthsw[cred_flavor].authenticator))(rqst, msg));
 128         }
 129
 130         return (AUTH_REJECTEDCRED);
 131 }
 132
 133 enum auth_stat
 134 _svcauth_null(/*rqst, msg*/)
 135         /*struct svc_req *rqst;
 136         struct rpc_msg *msg;*/
 137 {
 138
 139         return (AUTH_OK);
 140 }