/* * Sun RPC is a product of Sun Microsystems, Inc. and is provided for * unrestricted use provided that this legend is included on all tape * media and as a part of the software program in whole or part. Users * may copy or modify Sun RPC without charge, but are not authorized * to license or distribute it to anyone else except as part of a product or * program developed by the user or with the express written consent of * Sun Microsystems, Inc. * * SUN RPC IS PROVIDED AS IS WITH NO WARRANTIES OF ANY KIND INCLUDING THE * WARRANTIES OF DESIGN, MERCHANTIBILITY AND FITNESS FOR A PARTICULAR * PURPOSE, OR ARISING FROM A COURSE OF DEALING, USAGE OR TRADE PRACTICE. * * Sun RPC is provided with no support and without any obligation on the * part of Sun Microsystems, Inc. to assist in its use, correction, * modification or enhancement. * * SUN MICROSYSTEMS, INC. SHALL HAVE NO LIABILITY WITH RESPECT TO THE * INFRINGEMENT OF COPYRIGHTS, TRADE SECRETS OR ANY PATENTS BY SUN RPC * OR ANY PART THEREOF. * * In no event will Sun Microsystems, Inc. be liable for any lost revenue * or profits or other special, indirect and consequential damages, even if * Sun has been advised of the possibility of such damages. * * Sun Microsystems, Inc. * 2550 Garcia Avenue * Mountain View, California 94043 */ #if defined(LIBC_SCCS) && !defined(lint) static char sccsid[] = "@(#)whoami_proc.c 2.5 91/03/11 4.0 RPCSRC"; #endif /* * whoami_proc.c: secure identity verifier and reporter: server proc */ #include #include #include #include #include "whoami.h" extern char *strcpy(); /* * Report on the server's notion of the client's identity. */ remote_identity * whoami_iask_1(nullarg, rqstp) void *nullarg; struct svc_req *rqstp; { static remote_identity whoisthem; static char username[MAXNETNAMELEN+1]; static char realname[MAXNETNAMELEN+1]; /* really gecos field */ static int grouplist[WHOAMI_NGROUPS]; int i; uid_t theuid; gid_t thegid; gid_t thegidlist[WHOAMI_NGROUPS]; char publickey[HEXKEYBYTES+1]; struct authdes_cred *des_cred; struct passwd *pwdent; switch (rqstp->rq_cred.oa_flavor) { case AUTH_DES: whoisthem.remote_username = username; whoisthem.remote_realname = realname; whoisthem.gids.gids_val = grouplist; des_cred = (struct authdes_cred *) rqstp->rq_clntcred; /* * Check to see if the netname being used is in the public key * database (if not, reject this (potential) imposter). */ if (! getpublickey(des_cred->adc_fullname.name, publickey)) { svcerr_weakauth(rqstp->rq_xprt); return(NULL); } /* * Get the info that the client wants. */ if (! netname2user(des_cred->adc_fullname.name, &theuid, &thegid, &whoisthem.gids.gids_len, thegidlist)) { /* netname not found */ whoisthem.authenticated = FALSE; strcpy(whoisthem.remote_username, "nobody"); strcpy(whoisthem.remote_realname, "INTERLOPER!"); whoisthem.uid = -2; whoisthem.gid = -2; whoisthem.gids.gids_len = 0; return(&whoisthem); } /* else we found the netname */ whoisthem.authenticated = TRUE; whoisthem.uid = theuid; whoisthem.gid = thegid; for (i=0; ipw_name); strcpy(whoisthem.remote_realname, pwdent->pw_gecos); return(&whoisthem); break; case AUTH_UNIX: case AUTH_NULL: default: svcerr_weakauth(rqstp->rq_xprt); return(NULL); } } /* * Return server's netname. AUTH_NONE is valid. * This routine allows this server to be started under any uid, * and the client can ask us our netname for use in authdes_create(). */ name * whoami_whoru_1(nullarg, rqstp) void *nullarg; struct svc_req *rqstp; { static name whoru; static char servername[MAXNETNAMELEN+1]; whoru = servername; getnetname(servername); return(&whoru); }