rpc.subproj/svc_auth.c

   1 /*
   2  * Copyright (c) 1999-2018 Apple Inc. All rights reserved.
   3  *
   4  * @APPLE_LICENSE_HEADER_START@
   5  *
   6  * Portions Copyright (c) 1999 Apple Computer, Inc.  All Rights
   7  * Reserved.  This file contains Original Code and/or Modifications of
   8  * Original Code as defined in and that are subject to the Apple Public
   9  * Source License Version 1.1 (the "License").  You may not use this file
  10  * except in compliance with the License.  Please obtain a copy of the
  11  * License at http://www.apple.com/publicsource and read it before using
  12  * this file.
  13  *
  14  * The Original Code and all software distributed under the License are
  15  * distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY KIND, EITHER
  16  * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
  17  * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
  18  * FITNESS FOR A PARTICULAR PURPOSE OR NON- INFRINGEMENT.  Please see the
  19  * License for the specific language governing rights and limitations
  20  * under the License.
  21  *
  22  * @APPLE_LICENSE_HEADER_END@
  23  */
  24 /*
  25  * Sun RPC is a product of Sun Microsystems, Inc. and is provided for
  26  * unrestricted use provided that this legend is included on all tape
  27  * media and as a part of the software program in whole or part.  Users
  28  * may copy or modify Sun RPC without charge, but are not authorized
  29  * to license or distribute it to anyone else except as part of a product or
  30  * program developed by the user.
  31  *
  32  * SUN RPC IS PROVIDED AS IS WITH NO WARRANTIES OF ANY KIND INCLUDING THE
  33  * WARRANTIES OF DESIGN, MERCHANTIBILITY AND FITNESS FOR A PARTICULAR
  34  * PURPOSE, OR ARISING FROM A COURSE OF DEALING, USAGE OR TRADE PRACTICE.
  35  *
  36  * Sun RPC is provided with no support and without any obligation on the
  37  * part of Sun Microsystems, Inc. to assist in its use, correction,
  38  * modification or enhancement.
  39  *
  40  * SUN MICROSYSTEMS, INC. SHALL HAVE NO LIABILITY WITH RESPECT TO THE
  41  * INFRINGEMENT OF COPYRIGHTS, TRADE SECRETS OR ANY PATENTS BY SUN RPC
  42  * OR ANY PART THEREOF.
  43  *
  44  * In no event will Sun Microsystems, Inc. be liable for any lost revenue
  45  * or profits or other special, indirect and consequential damages, even if
  46  * Sun has been advised of the possibility of such damages.
  47  *
  48  * Sun Microsystems, Inc.
  49  * 2550 Garcia Avenue
  50  * Mountain View, California  94043
  51  */
  52
  53 #if defined(LIBC_SCCS) && !defined(lint)
  54 /*static char *sccsid = "from: @(#)svc_auth.c 1.19 87/08/11 Copyr 1984 Sun Micro";*/
  55 /*static char *sccsid = "from: @(#)svc_auth.c   2.1 88/08/07 4.0 RPCSRC";*/
  56 static char *rcsid = "$Id: svc_auth.c,v 1.3 2002/02/19 20:36:25 epeyton Exp $";
  57 #endif
  58
  59 /*
  60  * svc_auth_nodes.c, Server-side rpc authenticator interface,
  61  * *WITHOUT* DES authentication.
  62  *
  63  * Copyright (C) 1984, Sun Microsystems, Inc.
  64  */
  65
  66 #include "libinfo_common.h"
  67
  68 #include <rpc/rpc.h>
  69
  70 /*
  71  * svcauthsw is the bdevsw of server side authentication.
  72  *
  73  * Server side authenticators are called from authenticate by
  74  * using the client auth struct flavor field to index into svcauthsw.
  75  * The server auth flavors must implement a routine that looks
  76  * like:
  77  *
  78  *      enum auth_stat
  79  *      flavorx_auth(rqst, msg)
  80  *              register struct svc_req *rqst;
  81  *              register struct rpc_msg *msg;
  82  *
  83  */
  84
  85 enum auth_stat _svcauth_null();         /* no authentication */
  86 enum auth_stat _svcauth_unix();         /* unix style (uid, gids) */
  87 enum auth_stat _svcauth_short();        /* short hand unix style */
  88
  89 static struct {
  90         enum auth_stat (*authenticator)();
  91 } svcauthsw[] = {
  92         { _svcauth_null },              /* AUTH_NULL */
  93         { _svcauth_unix },              /* AUTH_UNIX */
  94         { _svcauth_short },             /* AUTH_SHORT */
  95 };
  96 #define AUTH_MAX        2               /* HIGHEST AUTH NUMBER */
  97
  98
  99 /*
 100  * The call rpc message, msg has been obtained from the wire.  The msg contains
 101  * the raw form of credentials and verifiers.  authenticate returns AUTH_OK
 102  * if the msg is successfully authenticated.  If AUTH_OK then the routine also
 103  * does the following things:
 104  * set rqst->rq_xprt->verf to the appropriate response verifier;
 105  * sets rqst->rq_client_cred to the "cooked" form of the credentials.
 106  *
 107  * NB: rqst->rq_cxprt->verf must be pre-alloctaed;
 108  * its length is set appropriately.
 109  *
 110  * The caller still owns and is responsible for msg->u.cmb.cred and
 111  * msg->u.cmb.verf.  The authentication system retains ownership of
 112  * rqst->rq_client_cred, the cooked credentials.
 113  *
 114  * There is an assumption that any flavour less than AUTH_NULL is
 115  * invalid.
 116  */
 117 LIBINFO_EXPORT
 118 enum auth_stat
 119 _authenticate(rqst, msg)
 120         register struct svc_req *rqst;
 121         struct rpc_msg *msg;
 122 {
 123         register int cred_flavor;
 124
 125         rqst->rq_cred = msg->rm_call.cb_cred;
 126         rqst->rq_xprt->xp_verf.oa_flavor = _null_auth.oa_flavor;
 127         rqst->rq_xprt->xp_verf.oa_length = 0;
 128         cred_flavor = rqst->rq_cred.oa_flavor;
 129         if ((cred_flavor <= AUTH_MAX) && (cred_flavor >= AUTH_NULL)) {
 130                 return ((*(svcauthsw[cred_flavor].authenticator))(rqst, msg));
 131         }
 132
 133         return (AUTH_REJECTEDCRED);
 134 }
 135
 136 enum auth_stat
 137 _svcauth_null(/*rqst, msg*/)
 138         /*struct svc_req *rqst;
 139         struct rpc_msg *msg;*/
 140 {
 141
 142         return (AUTH_OK);
 143 }