243 lines
5.1 KiB
C
243 lines
5.1 KiB
C
/*
|
|
$Header: /cvs/src/chrony/keys.c,v 1.12 2003/09/22 21:22:30 richard Exp $
|
|
|
|
=======================================================================
|
|
|
|
chronyd/chronyc - Programs for keeping computer clocks accurate.
|
|
|
|
**********************************************************************
|
|
* Copyright (C) Richard P. Curnow 1997-2003
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of version 2 of the GNU General Public License as
|
|
* published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope that it will be useful, but
|
|
* WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License along
|
|
* with this program; if not, write to the Free Software Foundation, Inc.,
|
|
* 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA
|
|
*
|
|
**********************************************************************
|
|
|
|
=======================================================================
|
|
|
|
Module for managing keys used for authenticating NTP packets and commands
|
|
|
|
*/
|
|
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
|
|
#include "keys.h"
|
|
#include "conf.h"
|
|
#include "memory.h"
|
|
|
|
typedef struct {
|
|
unsigned long id;
|
|
char *val;
|
|
int len;
|
|
} Key;
|
|
|
|
#define MAX_KEYS 256
|
|
|
|
static int n_keys;
|
|
static Key keys[MAX_KEYS];
|
|
|
|
static int command_key_valid;
|
|
static int command_key_pos;
|
|
static int cache_valid;
|
|
static unsigned long cache_key_id;
|
|
static int cache_key_pos;
|
|
|
|
/* ================================================== */
|
|
|
|
void
|
|
KEY_Initialise(void)
|
|
{
|
|
n_keys = 0;
|
|
command_key_valid = 0;
|
|
cache_valid = 0;
|
|
KEY_Reload();
|
|
return;
|
|
}
|
|
|
|
/* ================================================== */
|
|
|
|
void
|
|
KEY_Finalise(void)
|
|
{
|
|
/* Nothing to do */
|
|
return;
|
|
}
|
|
|
|
/* ================================================== */
|
|
|
|
/* Compare two keys */
|
|
|
|
static int
|
|
compare_keys_by_id(const void *a, const void *b)
|
|
{
|
|
const Key *c = (const Key *) a;
|
|
const Key *d = (const Key *) b;
|
|
|
|
if (c->id < d->id) {
|
|
return -1;
|
|
} else if (c->id > d->id) {
|
|
return +1;
|
|
} else {
|
|
return 0;
|
|
}
|
|
|
|
}
|
|
|
|
/* ================================================== */
|
|
|
|
|
|
#define KEYLEN 2047
|
|
#define SKEYLEN "2047"
|
|
|
|
void
|
|
KEY_Reload(void)
|
|
{
|
|
int i, len1;
|
|
char *key_file;
|
|
FILE *in;
|
|
unsigned long key_id;
|
|
char line[KEYLEN+1], keyval[KEYLEN+1];
|
|
|
|
for (i=0; i<n_keys; i++) {
|
|
Free(keys[i].val);
|
|
}
|
|
|
|
n_keys = 0;
|
|
|
|
key_file = CNF_GetKeysFile();
|
|
|
|
if (key_file) {
|
|
in = fopen(key_file, "r");
|
|
if (in) {
|
|
while (fgets(line, sizeof(line), in)) {
|
|
len1 = strlen(line) - 1;
|
|
|
|
/* Guard against removing last character of the line
|
|
* if the last line of the file is missing an end-of-line */
|
|
if (line[len1] == '\n') {
|
|
line[len1] = '\0';
|
|
}
|
|
|
|
if (sscanf(line, "%lu%" SKEYLEN "s", &key_id, keyval) == 2) {
|
|
keys[n_keys].id = key_id;
|
|
keys[n_keys].len = strlen(keyval);
|
|
keys[n_keys].val = MallocArray(char, 1 + keys[n_keys].len);
|
|
strcpy(keys[n_keys].val, keyval);
|
|
n_keys++;
|
|
}
|
|
}
|
|
fclose(in);
|
|
|
|
/* Sort keys into order. Note, if there's a duplicate, it is
|
|
arbitrary which one we use later - the user should have been
|
|
more careful! */
|
|
qsort((void *) keys, n_keys, sizeof(Key), compare_keys_by_id);
|
|
|
|
}
|
|
}
|
|
|
|
command_key_valid = 0;
|
|
cache_valid = 0;
|
|
|
|
return;
|
|
}
|
|
|
|
/* ================================================== */
|
|
|
|
static int
|
|
lookup_key(unsigned long id)
|
|
{
|
|
Key specimen, *where;
|
|
int pos;
|
|
|
|
specimen.id = id;
|
|
where = (Key *) bsearch((void *)&specimen, (void *)keys, n_keys, sizeof(Key), compare_keys_by_id);
|
|
if (!where) {
|
|
return -1;
|
|
} else {
|
|
pos = where - keys;
|
|
return pos;
|
|
}
|
|
}
|
|
|
|
/* ================================================== */
|
|
|
|
void
|
|
KEY_CommandKey(char **key, int *len)
|
|
{
|
|
unsigned long command_key_id;
|
|
|
|
if (!command_key_valid) {
|
|
command_key_id = CNF_GetCommandKey();
|
|
command_key_pos = lookup_key(command_key_id);
|
|
command_key_valid = 1;
|
|
}
|
|
|
|
if (command_key_pos >= 0) {
|
|
*key = keys[command_key_pos].val;
|
|
*len = keys[command_key_pos].len;
|
|
} else {
|
|
*key = "";
|
|
*len = 0;
|
|
}
|
|
}
|
|
|
|
/* ================================================== */
|
|
|
|
int
|
|
KEY_GetKey(unsigned long key_id, char **key, int *len)
|
|
{
|
|
if (!cache_valid || key_id != cache_key_id) {
|
|
cache_valid = 1;
|
|
cache_key_pos = lookup_key(key_id);
|
|
cache_key_id = key_id;
|
|
}
|
|
|
|
if (cache_key_pos >= 0) {
|
|
*key = keys[cache_key_pos].val;
|
|
*len = keys[cache_key_pos].len;
|
|
return 1;
|
|
} else {
|
|
*key = "";
|
|
*len = 0;
|
|
return 0;
|
|
}
|
|
}
|
|
|
|
/* ================================================== */
|
|
|
|
int
|
|
KEY_KeyKnown(unsigned long key_id)
|
|
{
|
|
int position;
|
|
|
|
if (cache_valid && (key_id == cache_key_id)) {
|
|
return 1;
|
|
} else {
|
|
|
|
position = lookup_key(key_id);
|
|
|
|
if (position >= 0) {
|
|
/* Store key in cache, we will probably be using it in a
|
|
minute... */
|
|
cache_valid = 1;
|
|
cache_key_pos = position;
|
|
cache_key_id = key_id;
|
|
return 1;
|
|
} else {
|
|
return 0;
|
|
}
|
|
}
|
|
}
|