![[BACK]](/cvsweb/icons/back.gif){kind=icon}
Return to read_service_key.c CVS log ![[TXT]](/cvsweb/icons/text.gif){kind=icon}
![[DIR]](/cvsweb/icons/dir.gif){kind=icon}
Up to [CSRG BSD Unix] / 43BSDReno / kerberosIV / krb|
Return to read_service_key.c CVS log | Up to [CSRG BSD Unix] / 43BSDReno / kerberosIV / krb |
1.1 root 1: /*
2: * $Source: /usr/src/kerberosIV/krb/RCS/read_service_key.c,v $
3: * $Author: kfall $
4: *
5: * Copyright 1985, 1986, 1987, 1988 by the Massachusetts Institute
6: * of Technology.
7: *
8: * For copying and distribution information, please see the file
9: * <mit-copyright.h>.
10: */
11:
12: #ifndef lint
13: static char *rcsid_read_service_key_c =
14: "$Id: read_service_key.c,v 4.10 90/06/25 20:57:14 kfall Exp $";
15: #endif /* lint */
16:
17: #include <mit-copyright.h>
18: #include <des.h>
19: #include <krb.h>
20: #include <stdio.h>
21: #include <strings.h>
22:
23: /*
24: * The private keys for servers on a given host are stored in a
25: * "srvtab" file (typically "/etc/srvtab"). This routine extracts
26: * a given server's key from the file.
27: *
28: * read_service_key() takes the server's name ("service"), "instance",
29: * and "realm" and a key version number "kvno", and looks in the given
30: * "file" for the corresponding entry, and if found, returns the entry's
31: * key field in "key".
32: *
33: * If "instance" contains the string "*", then it will match
34: * any instance, and the chosen instance will be copied to that
35: * string. For this reason it is important that the there is enough
36: * space beyond the "*" to receive the entry.
37: *
38: * If "kvno" is 0, it is treated as a wild card and the first
39: * matching entry regardless of the "vno" field is returned.
40: *
41: * This routine returns KSUCCESS on success, otherwise KFAILURE.
42: *
43: * The format of each "srvtab" entry is as follows:
44: *
45: * Size Variable Field in file
46: * ---- -------- -------------
47: * string serv server name
48: * string inst server instance
49: * string realm server realm
50: * 1 byte vno server key version #
51: * 8 bytes key server's key
52: * ... ... ...
53: */
54:
55:
56: /*ARGSUSED */
57: read_service_key(service,instance,realm,kvno,file,key)
58: char *service; /* Service Name */
59: char *instance; /* Instance name or "*" */
60: char *realm; /* Realm */
61: int kvno; /* Key version number */
62: char *file; /* Filename */
63: char *key; /* Pointer to key to be filled in */
64: {
65: char serv[SNAME_SZ];
66: char inst[INST_SZ];
67: char rlm[REALM_SZ];
68: unsigned char vno; /* Key version number */
69: int wcard;
70:
71: int stab, open();
72:
73: if ((stab = open(file, 0, 0)) < NULL)
74: return(KFAILURE);
75:
76: wcard = (instance[0] == '*') && (instance[1] == '\0');
77:
78: while(getst(stab,serv,SNAME_SZ) > 0) { /* Read sname */
79: (void) getst(stab,inst,INST_SZ); /* Instance */
80: (void) getst(stab,rlm,REALM_SZ); /* Realm */
81: /* Vers number */
82: if (read(stab,(char *)&vno,1) != 1)
83: return(KFAILURE);
84: /* Key */
85: if (read(stab,key,8) != 8)
86: return(KFAILURE);
87: /* Is this the right service */
88: if (strcmp(serv,service))
89: continue;
90: /* How about instance */
91: if (!wcard && strcmp(inst,instance))
92: continue;
93: if (wcard)
94: (void) strncpy(instance,inst,INST_SZ);
95: /* Is this the right realm */
96: #ifdef ATHENA_COMPAT
97: /* XXX For backward compatibility: if keyfile says "Athena"
98: and caller wants "ATHENA.MIT.EDU", call it a match */
99: if (strcmp(rlm,realm) &&
100: (strcmp(rlm,"Athena") ||
101: strcmp(realm,"ATHENA.MIT.EDU")))
102: continue;
103: #else /* ! ATHENA_COMPAT */
104: if (strcmp(rlm,realm))
105: continue;
106: #endif /* ATHENA_COMPAT */
107:
108: /* How about the key version number */
109: if (kvno && kvno != (int) vno)
110: continue;
111:
112: (void) close(stab);
113: return(KSUCCESS);
114: }
115:
116: /* Can't find the requested service */
117: (void) close(stab);
118: return(KFAILURE);
119: }
This archive runs on limited infrastructure. Preserving old code on modern bandwidth. Automated agents are requested to crawl responsibly.