24da5b34f49324ed742a340010ed5bd3d4e06625rie/*
24da5b34f49324ed742a340010ed5bd3d4e06625rie * CDDL HEADER START
24da5b34f49324ed742a340010ed5bd3d4e06625rie *
24da5b34f49324ed742a340010ed5bd3d4e06625rie * The contents of this file are subject to the terms of the
24da5b34f49324ed742a340010ed5bd3d4e06625rie * Common Development and Distribution License (the "License").
24da5b34f49324ed742a340010ed5bd3d4e06625rie * You may not use this file except in compliance with the License.
24da5b34f49324ed742a340010ed5bd3d4e06625rie *
24da5b34f49324ed742a340010ed5bd3d4e06625rie * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
24da5b34f49324ed742a340010ed5bd3d4e06625rie * or http://www.opensolaris.org/os/licensing.
24da5b34f49324ed742a340010ed5bd3d4e06625rie * See the License for the specific language governing permissions
24da5b34f49324ed742a340010ed5bd3d4e06625rie * and limitations under the License.
24da5b34f49324ed742a340010ed5bd3d4e06625rie *
24da5b34f49324ed742a340010ed5bd3d4e06625rie * When distributing Covered Code, include this CDDL HEADER in each
24da5b34f49324ed742a340010ed5bd3d4e06625rie * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
24da5b34f49324ed742a340010ed5bd3d4e06625rie * If applicable, add the following below this CDDL HEADER, with the
24da5b34f49324ed742a340010ed5bd3d4e06625rie * fields enclosed by brackets "[]" replaced with your own identifying
24da5b34f49324ed742a340010ed5bd3d4e06625rie * information: Portions Copyright [yyyy] [name of copyright owner]
24da5b34f49324ed742a340010ed5bd3d4e06625rie *
24da5b34f49324ed742a340010ed5bd3d4e06625rie * CDDL HEADER END
24da5b34f49324ed742a340010ed5bd3d4e06625rie */
24da5b34f49324ed742a340010ed5bd3d4e06625rie
24da5b34f49324ed742a340010ed5bd3d4e06625rie/*
24da5b34f49324ed742a340010ed5bd3d4e06625rie * Copyright 2007 Sun Microsystems, Inc. All rights reserved.
24da5b34f49324ed742a340010ed5bd3d4e06625rie * Use is subject to license terms.
24da5b34f49324ed742a340010ed5bd3d4e06625rie */
24da5b34f49324ed742a340010ed5bd3d4e06625rie
24da5b34f49324ed742a340010ed5bd3d4e06625rie#pragma ident "%Z%%M% %I% %E% SMI"
24da5b34f49324ed742a340010ed5bd3d4e06625rie
24da5b34f49324ed742a340010ed5bd3d4e06625rie#include <sys/types.h>
24da5b34f49324ed742a340010ed5bd3d4e06625rie#include <unistd.h>
24da5b34f49324ed742a340010ed5bd3d4e06625rie#include <dlfcn.h>
24da5b34f49324ed742a340010ed5bd3d4e06625rie#include "k5-int.h"
24da5b34f49324ed742a340010ed5bd3d4e06625rie
24da5b34f49324ed742a340010ed5bd3d4e06625rie#define KRB5_UID "app_krb5_user_uid"
24da5b34f49324ed742a340010ed5bd3d4e06625rie
24da5b34f49324ed742a340010ed5bd3d4e06625rie/*
24da5b34f49324ed742a340010ed5bd3d4e06625rie * mech_krb5 makes various calls to getuid(). When employed by gssd(1M) and
24da5b34f49324ed742a340010ed5bd3d4e06625rie * ktkt_warnd(1M), app_krb5_user_uid() is used to select a given user's
24da5b34f49324ed742a340010ed5bd3d4e06625rie * credential cache, rather than the id of the process.
24da5b34f49324ed742a340010ed5bd3d4e06625rie */
24da5b34f49324ed742a340010ed5bd3d4e06625rieuid_t
24da5b34f49324ed742a340010ed5bd3d4e06625riekrb5_getuid()
24da5b34f49324ed742a340010ed5bd3d4e06625rie{
24da5b34f49324ed742a340010ed5bd3d4e06625rie static uid_t (*gptr)() = NULL;
24da5b34f49324ed742a340010ed5bd3d4e06625rie void *handle;
24da5b34f49324ed742a340010ed5bd3d4e06625rie
24da5b34f49324ed742a340010ed5bd3d4e06625rie if (gptr == NULL) {
24da5b34f49324ed742a340010ed5bd3d4e06625rie /*
24da5b34f49324ed742a340010ed5bd3d4e06625rie * Specifically look for app_krb5_user_uid() in the application,
24da5b34f49324ed742a340010ed5bd3d4e06625rie * and don't fall into an exhaustive search through all of the
24da5b34f49324ed742a340010ed5bd3d4e06625rie * process dependencies. This interface is suplied from
24da5b34f49324ed742a340010ed5bd3d4e06625rie * gssd(1M) and ktkt_warnd(1M).
24da5b34f49324ed742a340010ed5bd3d4e06625rie */
24da5b34f49324ed742a340010ed5bd3d4e06625rie if (((handle = dlopen(0, (RTLD_LAZY | RTLD_FIRST))) == NULL) ||
24da5b34f49324ed742a340010ed5bd3d4e06625rie ((gptr = (uid_t (*)())dlsym(handle, KRB5_UID)) == NULL)) {
24da5b34f49324ed742a340010ed5bd3d4e06625rie /*
24da5b34f49324ed742a340010ed5bd3d4e06625rie * Fall back to the default getuid(), which is probably
24da5b34f49324ed742a340010ed5bd3d4e06625rie * libc.
24da5b34f49324ed742a340010ed5bd3d4e06625rie */
24da5b34f49324ed742a340010ed5bd3d4e06625rie gptr = &getuid;
24da5b34f49324ed742a340010ed5bd3d4e06625rie }
24da5b34f49324ed742a340010ed5bd3d4e06625rie }
24da5b34f49324ed742a340010ed5bd3d4e06625rie
24da5b34f49324ed742a340010ed5bd3d4e06625rie /*
24da5b34f49324ed742a340010ed5bd3d4e06625rie * Return the appropriate uid. Note, if a default getuid() couldn't
24da5b34f49324ed742a340010ed5bd3d4e06625rie * be found, the getuid assignment would have failed to relocate, and
24da5b34f49324ed742a340010ed5bd3d4e06625rie * hence this module would fail to load.
24da5b34f49324ed742a340010ed5bd3d4e06625rie */
24da5b34f49324ed742a340010ed5bd3d4e06625rie return ((*gptr)());
24da5b34f49324ed742a340010ed5bd3d4e06625rie}