Added authentication support. The tsig_key structure has been renamed

to auth_key and moved into libomapi. libomapi now depends on libres, which contains the data signing routines.
author: Damien Neil <source@isc.org> 2000-08-03 21:00:41 +0000
committer: Damien Neil <source@isc.org> 2000-08-03 21:00:41 +0000
commit: 49146f3c1512a5a18445237ad3edfb91b6434545 (patch)
tree: 54c43f2be43c9bfafd0be51c1a4e246e40bd148e /omapip/auth.c
parent: c62871ba64e76992da8518f4d1ff717d9cdf67e4 (diff)
download: isc-dhcp-49146f3c1512a5a18445237ad3edfb91b6434545.tar.gz
1 files changed, 271 insertions, 0 deletions
diff --git a/omapip/auth.c b/omapip/auth.c
new file mode 100644
index 00000000..f5ce57bc
--- /dev/null
+++ b/omapip/auth.c
@@ -0,0 +1,271 @@
+/* auth.c
+
+   Subroutines having to do with authentication. */
+
+/*
+ * Copyright (c) 1998-2000 Internet Software Consortium.
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ *
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. Neither the name of The Internet Software Consortium nor the names
+ *    of its contributors may be used to endorse or promote products derived
+ *    from this software without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE INTERNET SOFTWARE CONSORTIUM AND
+ * CONTRIBUTORS ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
+ * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
+ * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+ * DISCLAIMED.  IN NO EVENT SHALL THE INTERNET SOFTWARE CONSORTIUM OR
+ * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+ * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
+ * USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
+ * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+ * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
+ * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ *
+ * This software has been written for the Internet Software Consortium
+ * by Ted Lemon in cooperation with Vixie Enterprises and Nominum, Inc.
+ * To learn more about the Internet Software Consortium, see
+ * ``http://www.isc.org/''.  To learn more about Vixie Enterprises,
+ * see ``http://www.vix.com''.   To learn more about Nominum, Inc., see
+ * ``http://www.nominum.com''.
+ */
+
+#ifndef lint
+static char ocopyright[] =
+"$Id: auth.c,v 1.1 2000/08/03 21:00:11 neild Exp $ Copyright 1998-2000 The Internet Software Consortium.";
+#endif
+
+#include <omapip/omapip_p.h>
+
+OMAPI_OBJECT_ALLOC (omapi_auth_key, omapi_auth_key_t, omapi_type_auth_key);
+
+static struct hash_table *auth_key_hash = (struct hash_table *)0;
+HASH_FUNCTIONS_DECL (omapi_auth_key, const char *, omapi_auth_key_t)
+
+isc_result_t omapi_auth_key_new (omapi_auth_key_t **o, const char *file,
+				 int line)
+{
+	return omapi_auth_key_allocate (o, MDL);
+}
+
+isc_result_t omapi_auth_key_destroy (omapi_object_t *h,
+				     const char *file, int line)
+{
+	omapi_auth_key_t *a;
+
+	if (h -> type != omapi_type_auth_key)
+		return ISC_R_INVALIDARG;
+	a = (omapi_auth_key_t *)h;
+
+	if (auth_key_hash)
+		omapi_auth_key_hash_delete (auth_key_hash, a -> name, 0, MDL);
+
+	if (a -> name)
+		dfree (a -> name, MDL);
+	if (a -> algorithm)
+		dfree (a -> algorithm, MDL);
+	if (a -> key)
+		omapi_data_string_dereference (&a -> key, MDL);
+	
+	return ISC_R_SUCCESS;
+}
+
+isc_result_t omapi_auth_key_enter (omapi_auth_key_t *a)
+{
+	omapi_auth_key_t *tk;
+
+	if (a -> type != omapi_type_auth_key)
+		return ISC_R_INVALIDARG;
+
+	tk = (omapi_auth_key_t *)0;
+	if (auth_key_hash) {
+		omapi_auth_key_hash_lookup (&tk, auth_key_hash,
+					    a -> name, 0, MDL);
+		if (tk == a) {
+			omapi_auth_key_dereference (&tk, MDL);
+			return ISC_R_SUCCESS;
+		}
+		if (tk) {
+			omapi_auth_key_hash_delete (auth_key_hash,
+						    tk -> name, 0, MDL);
+			omapi_auth_key_dereference (&tk, MDL);
+		}
+	} else {
+		auth_key_hash =
+			new_hash ((hash_reference)omapi_auth_key_reference,
+				  (hash_dereference)omapi_auth_key_dereference,
+				  1);
+		if (!auth_key_hash)
+			return ISC_R_NOMEMORY;
+	}
+	omapi_auth_key_hash_add (auth_key_hash, a -> name, 0, a, MDL);
+	return ISC_R_SUCCESS;
+	
+}
+
+isc_result_t omapi_auth_key_lookup_name (omapi_auth_key_t **a,
+					 const char *name)
+{
+	if (!auth_key_hash)
+		return ISC_R_NOTFOUND;
+	if (!omapi_auth_key_hash_lookup (a, auth_key_hash, name, 0, MDL))
+		return ISC_R_NOTFOUND;
+	return ISC_R_SUCCESS;
+}
+
+isc_result_t omapi_auth_key_lookup (omapi_object_t **h,
+				    omapi_object_t *id,
+				    omapi_object_t *ref)
+{
+	isc_result_t status;
+	omapi_value_t *name = (omapi_value_t *)0;
+	omapi_value_t *algorithm = (omapi_value_t *)0;
+
+	if (!auth_key_hash)
+		return ISC_R_NOTFOUND;
+
+	status = omapi_get_value_str (ref, id, "name", &name);
+	if (status != ISC_R_SUCCESS)
+		return status;
+
+	if ((name -> value -> type != omapi_datatype_string) &&
+	    (name -> value -> type != omapi_datatype_data)) {
+		omapi_value_dereference (&name, MDL);
+		return ISC_R_NOTFOUND;
+	}
+
+	status = omapi_get_value_str (ref, id, "algorithm", &algorithm);
+	if (status != ISC_R_SUCCESS) {
+		omapi_value_dereference (&name, MDL);
+		return status;
+	}
+
+	if ((algorithm -> value -> type != omapi_datatype_string) &&
+	    (algorithm -> value -> type != omapi_datatype_data)) {
+		omapi_value_dereference (&name, MDL);
+		omapi_value_dereference (&algorithm, MDL);
+		return ISC_R_NOTFOUND;
+	}
+
+
+	if (!omapi_auth_key_hash_lookup ((omapi_auth_key_t **)h, auth_key_hash,
+					 name -> value -> u.buffer.value,
+					 name -> value -> u.buffer.len, MDL)) {
+		omapi_value_dereference (&name, MDL);
+		omapi_value_dereference (&algorithm, MDL);
+		return ISC_R_NOTFOUND;
+	}
+
+	if (omapi_td_strcmp (algorithm -> value,
+			     ((omapi_auth_key_t *)*h) -> algorithm) != 0) {
+		omapi_value_dereference (&name, MDL);
+		omapi_value_dereference (&algorithm, MDL);
+		omapi_object_dereference (h, MDL);
+		return ISC_R_NOTFOUND;
+	}
+
+	omapi_value_dereference (&name, MDL);
+	omapi_value_dereference (&algorithm, MDL);
+
+	return ISC_R_SUCCESS;
+}
+
+isc_result_t omapi_auth_key_stuff_values (omapi_object_t *c,
+					  omapi_object_t *id,
+					  omapi_object_t *h)
+{
+	omapi_auth_key_t *a;
+	isc_result_t status;
+
+	if (h -> type != omapi_type_auth_key)
+		return ISC_R_INVALIDARG;
+	a = (omapi_auth_key_t *)h;
+
+	/* Write only the name and algorithm -- not the secret! */
+	if (a -> name) {
+		status = omapi_connection_put_name (c, "name");
+		if (status != ISC_R_SUCCESS)
+			return status;
+		status = omapi_connection_put_string (c, a -> name);
+		if (status != ISC_R_SUCCESS)
+			return status;
+	}
+	if (a -> algorithm) {
+		status = omapi_connection_put_name (c, "algorithm");
+		if (status != ISC_R_SUCCESS)
+			return status;
+		status = omapi_connection_put_string (c, a -> algorithm);
+		if (status != ISC_R_SUCCESS)
+			return status;
+	}
+
+	return ISC_R_SUCCESS;
+}
+
+isc_result_t omapi_auth_key_get_value (omapi_object_t *h,
+				       omapi_object_t *id,
+				       omapi_data_string_t *name,
+				       omapi_value_t **value)
+{
+	omapi_auth_key_t *a;
+	isc_result_t status;
+
+	if (h -> type != omapi_type_auth_key)
+		return ISC_R_UNEXPECTED;
+	a = (omapi_auth_key_t *)h;
+
+	if (omapi_ds_strcmp (name, "name") == 0) {
+		if (a -> name)
+			return omapi_make_string_value
+				(value, name, a -> name, MDL);
+		else
+			return ISC_R_NOTFOUND;
+	} else if (omapi_ds_strcmp (name, "key") == 0) {
+		if (a -> key) {
+			status = omapi_value_new (value, MDL);
+			if (status != ISC_R_SUCCESS)
+				return status;
+
+			status = omapi_data_string_reference
+				(&(*value) -> name, name, MDL);
+			if (status != ISC_R_SUCCESS) {
+				omapi_value_dereference (value, MDL);
+				return status;
+			}
+
+			status = omapi_typed_data_new (MDL, &(*value) -> value,
+						       omapi_datatype_data,
+						       a -> key -> len);
+			if (status != ISC_R_SUCCESS) {
+				omapi_value_dereference (value, MDL);
+				return status;
+			}
+
+			memcpy ((*value) -> value -> u.buffer.value,
+				a -> key -> value, a -> key -> len);
+			return ISC_R_SUCCESS;
+		} else
+			return ISC_R_NOTFOUND;
+	} else if (omapi_ds_strcmp (name, "algorithm") == 0) {
+		if (a -> algorithm)
+			return omapi_make_string_value
+				(value, name, a -> algorithm, MDL);
+		else
+			return ISC_R_NOTFOUND;
+	}
+
+	return ISC_R_SUCCESS;
+}
+
+HASH_FUNCTIONS (omapi_auth_key, const char *, omapi_auth_key_t)
author	Damien Neil <source@isc.org>	2000-08-03 21:00:41 +0000
committer	Damien Neil <source@isc.org>	2000-08-03 21:00:41 +0000
commit	49146f3c1512a5a18445237ad3edfb91b6434545 (patch)
tree	54c43f2be43c9bfafd0be51c1a4e246e40bd148e /omapip/auth.c
parent	c62871ba64e76992da8518f4d1ff717d9cdf67e4 (diff)
download	isc-dhcp-49146f3c1512a5a18445237ad3edfb91b6434545.tar.gz