/* * CDDL HEADER START * * The contents of this file are subject to the terms of the * Common Development and Distribution License, Version 1.0 only * (the "License"). You may not use this file except in compliance * with the License. * * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE * or http://www.opensolaris.org/os/licensing. * See the License for the specific language governing permissions * and limitations under the License. * * When distributing Covered Code, include this CDDL HEADER in each * file and include the License file at usr/src/OPENSOLARIS.LICENSE. * If applicable, add the following below this CDDL HEADER, with the * fields enclosed by brackets "[]" replaced with your own identifying * information: Portions Copyright [yyyy] [name of copyright owner] * * CDDL HEADER END * * Copyright 2005 Sun Microsystems, Inc. All rights reserved. * Use is subject to license terms. * * Copyright (c) 1982, 1983, 1984, 1985, 1986, 1987, 1988, 1989 AT&T * All Rights Reserved * * Portions of this source code were derived from Berkeley * 4.3 BSD under license from the Regents of the University of * California. */ /* from kerbd_handle.c 1.3 92/01/29 SMI */ /* * gssd_handle.c, Interface to gssd * */ #include <unistd.h> #include <rpc/rpc.h> #include <rpc/clnt.h> #include <stdio.h> #include <string.h> #include <netconfig.h> #include <sys/utsname.h> #include "gssd.h" #ifdef DEBUG #define dprt(msg) (void) fprintf(stderr, "%s\n", msg); #else #define dprt(msg) #endif /* DEBUG */ /* * Keep the handle cached. This call may be made quite often. */ CLIENT * getgssd_handle() { void *localhandle; struct netconfig *nconf; struct netconfig *tpconf; static CLIENT *clnt; struct timeval wait_time; struct utsname u; static char *hostname; static bool_t first_time = TRUE; #define TOTAL_TIMEOUT 1000 /* total timeout talking to gssd */ #define TOTAL_TRIES 1 /* Number of tries */ if (clnt) return (clnt); if (!(localhandle = setnetconfig())) return (NULL); tpconf = NULL; if (first_time == TRUE) { if (uname(&u) == -1) return ((CLIENT *) NULL); if ((hostname = strdup(u.nodename)) == (char *)NULL) return ((CLIENT *) NULL); first_time = FALSE; } while (nconf = getnetconfig(localhandle)) { if (strcmp(nconf->nc_protofmly, NC_LOOPBACK) == 0) { if (nconf->nc_semantics == NC_TPI_COTS_ORD) { clnt = clnt_tp_create(hostname, GSSPROG, GSSVERS, nconf); if (clnt) { dprt("got COTS_ORD\n"); break; } } else { tpconf = nconf; } } } if ((clnt == NULL) && (tpconf)) { /* Now, try the connection-oriented loopback transport */ clnt = clnt_tp_create(hostname, GSSPROG, GSSVERS, tpconf); #ifdef DEBUG if (clnt) { dprt("got COTS\n"); } #endif /* DEBUG */ } endnetconfig(localhandle); /* * This bit of code uses an as yet unimplemented argument to * clnt_control(). CLSET_SVC_PRIV specifies that the underlying * loopback transport should be checked to ensure it is * connected to a process running as root. If so, the clnt_control() * call returns TRUE. If not, it returns FALSE. */ #ifdef CLSET_SVC_PRIV if (clnt_control(clnt, CLSET_SVC_PRIV, NULL) != TRUE) { clnt_destroy(clnt); clnt = NULL; return (NULL); { #endif if (clnt == NULL) return (NULL); clnt->cl_auth = authsys_create("", getuid(), 0, 0, NULL); if (clnt->cl_auth == NULL) { clnt_destroy(clnt); clnt = NULL; return (NULL); } wait_time.tv_sec = TOTAL_TIMEOUT/TOTAL_TRIES; wait_time.tv_usec = 0; (void) clnt_control(clnt, CLSET_RETRY_TIMEOUT, (char *)&wait_time); return (clnt); }
