Bring in a hybrid of SunSoft's transport-independent RPC (TI-RPC) and
associated changes that had to happen to make this possible as well as
bugs fixed along the way.
Bring in required TLI library routines to support this.
Since we don't support TLI we've essentially copied what NetBSD
has done, adding a thin layer to emulate direct the TLI calls
into BSD socket calls.
This is mostly from Sun's tirpc release that was made in 1994,
however some fixes were backported from the 1999 release (supposedly
only made available after this porting effort was underway).
The submitter has agreed to continue on and bring us up to the
1999 release.
Several key features are introduced with this update:
Client calls are thread safe. (1999 code has server side thread
safe)
Updated, a more modern interface.
Many userland updates were done to bring the code up to par with
the recent RPC API.
There is an update to the pthreads library, a function
pthread_main_np() was added to emulate a function of Sun's threads
library.
While we're at it, bring in NetBSD's lockd, it's been far too
long of a wait.
New rpcbind(8) replaces portmap(8) (supporting communication over
an authenticated Unix-domain socket, and by default only allowing
set and unset requests over that channel). It's much more secure
than the old portmapper.
Umount(8), mountd(8), mount_nfs(8), nfsd(8) have also been upgraded
to support TI-RPC and to support IPV6.
Umount(8) is also fixed to unmount pathnames longer than 80 chars,
which are currently truncated by the Kernel statfs structure.
Submitted by: Martin Blapp <mb@imp.ch>
Manpage review: ru
Secure RPC implemented by: wpaul
2001-03-19 12:50:13 +00:00
|
|
|
.\" @(#)rpc_clnt_auth.3n 1.21 93/05/07 SMI; from SVr4
|
|
|
|
.\" Copyright 1989 AT&T
|
|
|
|
.\" @(#)rpc_clnt_auth 1.4 89/07/20 SMI;
|
|
|
|
.\" Copyright (c) 1988 Sun Microsystems, Inc. - All Rights Reserved.
|
|
|
|
.\" $NetBSD: rpc_clnt_auth.3,v 1.1 2000/06/03 09:29:50 fvdl Exp $
|
|
|
|
.\" $FreeBSD$
|
|
|
|
.Dd May 7, 1993
|
|
|
|
.Dt RPC_CLNT_AUTH 3
|
|
|
|
.Os
|
|
|
|
.Sh NAME
|
|
|
|
.Nm auth_destroy ,
|
|
|
|
.Nm authnone_create ,
|
|
|
|
.Nm authsys_create ,
|
|
|
|
.Nm authsys_create_default
|
|
|
|
.Nd library routines for client side remote procedure call authentication
|
|
|
|
.Sh LIBRARY
|
|
|
|
.Lb libc
|
|
|
|
.Sh SYNOPSIS
|
2001-10-01 16:09:29 +00:00
|
|
|
.In rpc/rpc.h
|
Bring in a hybrid of SunSoft's transport-independent RPC (TI-RPC) and
associated changes that had to happen to make this possible as well as
bugs fixed along the way.
Bring in required TLI library routines to support this.
Since we don't support TLI we've essentially copied what NetBSD
has done, adding a thin layer to emulate direct the TLI calls
into BSD socket calls.
This is mostly from Sun's tirpc release that was made in 1994,
however some fixes were backported from the 1999 release (supposedly
only made available after this porting effort was underway).
The submitter has agreed to continue on and bring us up to the
1999 release.
Several key features are introduced with this update:
Client calls are thread safe. (1999 code has server side thread
safe)
Updated, a more modern interface.
Many userland updates were done to bring the code up to par with
the recent RPC API.
There is an update to the pthreads library, a function
pthread_main_np() was added to emulate a function of Sun's threads
library.
While we're at it, bring in NetBSD's lockd, it's been far too
long of a wait.
New rpcbind(8) replaces portmap(8) (supporting communication over
an authenticated Unix-domain socket, and by default only allowing
set and unset requests over that channel). It's much more secure
than the old portmapper.
Umount(8), mountd(8), mount_nfs(8), nfsd(8) have also been upgraded
to support TI-RPC and to support IPV6.
Umount(8) is also fixed to unmount pathnames longer than 80 chars,
which are currently truncated by the Kernel statfs structure.
Submitted by: Martin Blapp <mb@imp.ch>
Manpage review: ru
Secure RPC implemented by: wpaul
2001-03-19 12:50:13 +00:00
|
|
|
.Ft "void"
|
|
|
|
.Fn auth_destroy "AUTH *auth"
|
|
|
|
.Ft "AUTH *"
|
|
|
|
.Fn authnone_create "void"
|
|
|
|
.Ft "AUTH *"
|
|
|
|
.Fn authsys_create "const char *host" "const uid_t uid" "const gid_t gid" "const int len" "const gid_t *aup_gids"
|
|
|
|
.Ft "AUTH *"
|
|
|
|
.Fn authsys_create_default "void"
|
|
|
|
.Sh DESCRIPTION
|
|
|
|
These routines are part of the
|
|
|
|
RPC library that allows C language programs to make procedure
|
|
|
|
calls on other machines across the network,
|
|
|
|
with desired authentication.
|
|
|
|
.Pp
|
|
|
|
These routines are normally called after creating the
|
|
|
|
.Vt CLIENT
|
|
|
|
handle.
|
|
|
|
The
|
|
|
|
.Va cl_auth
|
|
|
|
field of the
|
|
|
|
.Vt CLIENT
|
|
|
|
structure should be initialized by the
|
|
|
|
.Vt AUTH
|
|
|
|
structure returned by some of the following routines.
|
|
|
|
The client's authentication information
|
|
|
|
is passed to the server when the
|
|
|
|
RPC
|
|
|
|
call is made.
|
|
|
|
.Pp
|
|
|
|
Only the
|
|
|
|
.Dv NULL
|
|
|
|
and the
|
|
|
|
.Dv SYS
|
|
|
|
style of authentication is discussed here.
|
|
|
|
.Sh Routines
|
|
|
|
.Bl -tag -width authsys_create_default()
|
|
|
|
.It Fn auth_destroy
|
|
|
|
A function macro that destroys the authentication
|
2001-07-15 07:53:42 +00:00
|
|
|
information associated with
|
Bring in a hybrid of SunSoft's transport-independent RPC (TI-RPC) and
associated changes that had to happen to make this possible as well as
bugs fixed along the way.
Bring in required TLI library routines to support this.
Since we don't support TLI we've essentially copied what NetBSD
has done, adding a thin layer to emulate direct the TLI calls
into BSD socket calls.
This is mostly from Sun's tirpc release that was made in 1994,
however some fixes were backported from the 1999 release (supposedly
only made available after this porting effort was underway).
The submitter has agreed to continue on and bring us up to the
1999 release.
Several key features are introduced with this update:
Client calls are thread safe. (1999 code has server side thread
safe)
Updated, a more modern interface.
Many userland updates were done to bring the code up to par with
the recent RPC API.
There is an update to the pthreads library, a function
pthread_main_np() was added to emulate a function of Sun's threads
library.
While we're at it, bring in NetBSD's lockd, it's been far too
long of a wait.
New rpcbind(8) replaces portmap(8) (supporting communication over
an authenticated Unix-domain socket, and by default only allowing
set and unset requests over that channel). It's much more secure
than the old portmapper.
Umount(8), mountd(8), mount_nfs(8), nfsd(8) have also been upgraded
to support TI-RPC and to support IPV6.
Umount(8) is also fixed to unmount pathnames longer than 80 chars,
which are currently truncated by the Kernel statfs structure.
Submitted by: Martin Blapp <mb@imp.ch>
Manpage review: ru
Secure RPC implemented by: wpaul
2001-03-19 12:50:13 +00:00
|
|
|
.Fa auth .
|
|
|
|
Destruction usually involves deallocation
|
|
|
|
of private data structures.
|
|
|
|
The use of
|
2001-03-20 10:47:21 +00:00
|
|
|
.Fa auth
|
Bring in a hybrid of SunSoft's transport-independent RPC (TI-RPC) and
associated changes that had to happen to make this possible as well as
bugs fixed along the way.
Bring in required TLI library routines to support this.
Since we don't support TLI we've essentially copied what NetBSD
has done, adding a thin layer to emulate direct the TLI calls
into BSD socket calls.
This is mostly from Sun's tirpc release that was made in 1994,
however some fixes were backported from the 1999 release (supposedly
only made available after this porting effort was underway).
The submitter has agreed to continue on and bring us up to the
1999 release.
Several key features are introduced with this update:
Client calls are thread safe. (1999 code has server side thread
safe)
Updated, a more modern interface.
Many userland updates were done to bring the code up to par with
the recent RPC API.
There is an update to the pthreads library, a function
pthread_main_np() was added to emulate a function of Sun's threads
library.
While we're at it, bring in NetBSD's lockd, it's been far too
long of a wait.
New rpcbind(8) replaces portmap(8) (supporting communication over
an authenticated Unix-domain socket, and by default only allowing
set and unset requests over that channel). It's much more secure
than the old portmapper.
Umount(8), mountd(8), mount_nfs(8), nfsd(8) have also been upgraded
to support TI-RPC and to support IPV6.
Umount(8) is also fixed to unmount pathnames longer than 80 chars,
which are currently truncated by the Kernel statfs structure.
Submitted by: Martin Blapp <mb@imp.ch>
Manpage review: ru
Secure RPC implemented by: wpaul
2001-03-19 12:50:13 +00:00
|
|
|
is undefined after calling
|
|
|
|
.Fn auth_destroy .
|
|
|
|
.It Fn authnone_create
|
|
|
|
Create and return an RPC
|
|
|
|
authentication handle that passes nonusable
|
|
|
|
authentication information with each remote procedure call.
|
|
|
|
This is the default authentication used by RPC.
|
|
|
|
.It Fn authsys_create
|
|
|
|
Create and return an RPC authentication handle that contains
|
|
|
|
.Dv AUTH_SYS
|
|
|
|
authentication information.
|
|
|
|
The parameter
|
|
|
|
.Fa host
|
|
|
|
is the name of the machine on which the information was
|
|
|
|
created;
|
|
|
|
.Fa uid
|
|
|
|
is the user's user ID;
|
|
|
|
.Fa gid
|
|
|
|
is the user's current group ID;
|
|
|
|
.Fa len
|
|
|
|
and
|
|
|
|
.Fa aup_gids
|
|
|
|
refer to a counted array of groups to which the user belongs.
|
|
|
|
.It Fn authsys_create_default
|
|
|
|
Call
|
|
|
|
.Fn authsys_create
|
|
|
|
with the appropriate parameters.
|
|
|
|
.El
|
|
|
|
.Sh SEE ALSO
|
|
|
|
.Xr rpc 3 ,
|
|
|
|
.Xr rpc_clnt_calls 3 ,
|
|
|
|
.Xr rpc_clnt_create 3
|