Re: Re: [PATCH 3 of 6] svcrpc: move export table checks to a per-program pg_add_client method

[Olaf Kirch <okir@suse.de>]

On Wed, Sep 22, 2004 at 04:54:12PM +1000, Neil Brown wrote:
> One approach is the patches you produced.  Another might be a
> per-svc_procedure flag to say whether auth was required or not.  There
> are doubtlessly others.

I think the code in svcauth*.c should not concern itself with
authorization and make security policy decisions. It should parse the
credentials and verifier and call service specific routines that
make this decision. Specifically, stuff like ip_map_lookup() should
occur inside the policy routine, not in svcauth_unix_accept().

I also see no problem with having specific callback routines per
authentication flavor:

	int	(*pg_auth_null)(struct svc_rqst *);
	int	(*pg_auth_unix)(struct svc_rqst *, struct svc_auth_unix_data *);
	int	(*pg_auth_gss)(struct svc_rqst *, struct svc_auth_gss_data *);

If a program leaves one of these pointers NULL means "reject any request
with this auth flavor"

Of course, it makes sense to provide default implementations for all
auth flavors so that you don't have to cut'n'paste them for every
rpc service.

Olaf
-- 
Olaf Kirch     | Things that make Monday morning interesting, #1:
okir@suse.de   |        "I want to use NFS over AX25, can you help me?"
---------------+ 


-------------------------------------------------------
This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170
Project Admins to receive an Apple iPod Mini FREE for your judgement on
who ports your project to Linux PPC the best. Sponsored by IBM.
Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php
_______________________________________________
NFS maillist  -  NFS@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nfs