auth: Get correct viceid in legacy GetToken

When ktc_GetTokenEx needs to get tokens via the legacy ktc_GetToken
interface, it was not extracting the viceid. Make it set the viceid so
the caller gets the correct id.

Normally this would require parsing the given client name. To reduce
the amount of times we store and extract the viced from the "AFS ID
%d" string, create a helper GetToken function that can store the
viceid directly, without storing it in a string.

Change-Id: Ib03a419aee6eaed3b253c4d5d575d4dd8d3b8ddc
Reviewed-on: http://gerrit.openafs.org/4482
Tested-by: Simon Wilkinson <sxw@inf.ed.ac.uk>
Reviewed-by: Derrick Brashear <shadow@dementix.org>
This commit is contained in:
Andrew Deason 2011-04-14 15:36:50 -05:00 committed by Derrick Brashear
parent 59b47fba3f
commit 735873d515

View File

@ -154,6 +154,10 @@ static struct {
0}, { 0}, {
0}}; 0}};
static int
GetToken(struct ktc_principal *aserver, struct ktc_token *atoken,
int atokenLen, struct ktc_principal *alicnet, afs_int32 *aviceid);
#define MAXPIOCTLTOKENLEN \ #define MAXPIOCTLTOKENLEN \
(3*sizeof(afs_int32)+MAXKTCTICKETLEN+sizeof(struct ClearToken)+MAXKTCREALMLEN) (3*sizeof(afs_int32)+MAXKTCTICKETLEN+sizeof(struct ClearToken)+MAXKTCREALMLEN)
@ -475,9 +479,9 @@ ktc_GetTokenEx(char *cellName, struct ktc_setTokenData **tokenSet) {
*/ */
if (code == -1 && errno == EINVAL) { if (code == -1 && errno == EINVAL) {
struct ktc_principal server; struct ktc_principal server;
struct ktc_principal client;
struct ktc_tokenUnion token; struct ktc_tokenUnion token;
struct ktc_token *ktcToken; /* too huge for the stack */ struct ktc_token *ktcToken; /* too huge for the stack */
afs_int32 viceid;
memset(&server, 0, sizeof(server)); memset(&server, 0, sizeof(server));
ktcToken = malloc(sizeof(struct ktc_token)); ktcToken = malloc(sizeof(struct ktc_token));
@ -487,8 +491,8 @@ ktc_GetTokenEx(char *cellName, struct ktc_setTokenData **tokenSet) {
strcpy(server.name, "afs"); strcpy(server.name, "afs");
strcpy(server.cell, cellName); strcpy(server.cell, cellName);
code = ktc_GetToken(&server, ktcToken, sizeof(struct ktc_token), code = GetToken(&server, ktcToken, sizeof(struct ktc_token),
&client); NULL /*client*/, &viceid);
if (code == 0) { if (code == 0) {
*tokenSet = token_buildTokenJar(cellName); *tokenSet = token_buildTokenJar(cellName);
token.at_type = AFSTOKEN_UNION_KAD; token.at_type = AFSTOKEN_UNION_KAD;
@ -502,6 +506,7 @@ ktc_GetTokenEx(char *cellName, struct ktc_setTokenData **tokenSet) {
= ktcToken->ticketLen; = ktcToken->ticketLen;
token.ktc_tokenUnion_u.at_kad.rk_ticket.rk_ticket_val token.ktc_tokenUnion_u.at_kad.rk_ticket.rk_ticket_val
= ktcToken->ticket; = ktcToken->ticket;
token.ktc_tokenUnion_u.at_kad.rk_viceid = viceid;
token_addToken(*tokenSet, &token); token_addToken(*tokenSet, &token);
@ -535,6 +540,13 @@ ktc_GetTokenEx(char *cellName, struct ktc_setTokenData **tokenSet) {
int int
ktc_GetToken(struct ktc_principal *aserver, struct ktc_token *atoken, ktc_GetToken(struct ktc_principal *aserver, struct ktc_token *atoken,
int atokenLen, struct ktc_principal *aclient) int atokenLen, struct ktc_principal *aclient)
{
return GetToken(aserver, atoken, atokenLen, aclient, NULL);
}
static int
GetToken(struct ktc_principal *aserver, struct ktc_token *atoken,
int atokenLen, struct ktc_principal *aclient, afs_int32 *aviceid)
{ {
struct ViceIoctl iob; struct ViceIoctl iob;
char tbuffer[MAXPIOCTLTOKENLEN]; char tbuffer[MAXPIOCTLTOKENLEN];
@ -549,6 +561,9 @@ ktc_GetToken(struct ktc_principal *aserver, struct ktc_token *atoken,
#ifdef AFS_KERBEROS_ENV #ifdef AFS_KERBEROS_ENV
char found = 0; char found = 0;
#endif #endif
if (aviceid) {
*aviceid = 0;
}
LOCK_GLOBAL_MUTEX; LOCK_GLOBAL_MUTEX;
@ -684,15 +699,22 @@ ktc_GetToken(struct ktc_principal *aserver, struct ktc_token *atoken,
sizeof(struct ktc_encryptionKey)); sizeof(struct ktc_encryptionKey));
atoken->ticketLen = tktLen; atoken->ticketLen = tktLen;
if (aclient) { if (aclient || aviceid) {
strcpy(aclient->cell, cellp); if (aclient) {
aclient->instance[0] = 0; strcpy(aclient->cell, cellp);
aclient->instance[0] = 0;
}
if ((atoken->kvno == 999) || /* old style bcrypt ticket */ if ((atoken->kvno == 999) || /* old style bcrypt ticket */
(ct.BeginTimestamp && /* new w/ prserver lookup */ (ct.BeginTimestamp && /* new w/ prserver lookup */
(((ct.EndTimestamp - ct.BeginTimestamp) & 1) == 1))) { (((ct.EndTimestamp - ct.BeginTimestamp) & 1) == 1))) {
sprintf(aclient->name, "AFS ID %d", ct.ViceId); if (aclient) {
} else { sprintf(aclient->name, "AFS ID %d", ct.ViceId);
}
if (aviceid) {
*aviceid = ct.ViceId;
}
} else if (aclient) {
sprintf(aclient->name, "Unix UID %d", ct.ViceId); sprintf(aclient->name, "Unix UID %d", ct.ViceId);
} }
} }