Tracker: Bugs

5 Another authentic function in dpcl.config - ID: 1459980
Last Update: Comment added ( alfeng )

A new authentic method in dpcl.config:

security:
method = keyfuncs

Both client and SD need to agree on the same security
method. If not, program exit with
ASC_security_model_mismatch.

Both client and SD check if /usr/lib/spkeyfuncs.o (or
/usr/lib/spkeyfuncs.o64 for 64 bits) exist. If not
program exit with ASC_library_load_failed.

/usr/lib/spkeyfuncs.o is a system adm. supplied object.
It contains two functions:

int spgetkey(char ** buff, int * length);
int spchkkey(char * buff, uid_t uid, int length);

client calls spgetkey() to get a malloc'd buff, pass this
buff to the SD. SD uses spchkkey() to verify the client's
ID. Program exit with ASC_authorization_failed if failed

Note, the client needs to free() this malloc'd buff
after use.

See lib/include/spkeyFunc.h for further information.

Al Feng ( alfeng ) - 2006-03-28 04:41:53 PST

5

Open

None

Nobody/Anonymous

None

None

Public


Comment ( 1 )

Date: 2006-04-06 07:30:33 PDT
Sender: alfeng

Logged In: YES
user_id=1211583

To avoid name conflict, the /usr/lib/spkeyfuncs.o and
/usr/lib/spkeyfuncs.o64 are renamed to
/usr/lib/dpclkeyfuncs.o and /usr/lib/dpclkeyfuncs.o64

Attached File

No Files Currently Attached

Change

No changes have been made to this artifact.