diff options
Diffstat (limited to 'libntp/authreadkeys.c')
-rw-r--r-- | libntp/authreadkeys.c | 162 |
1 files changed, 162 insertions, 0 deletions
diff --git a/libntp/authreadkeys.c b/libntp/authreadkeys.c new file mode 100644 index 000000000000..22020f3f853a --- /dev/null +++ b/libntp/authreadkeys.c @@ -0,0 +1,162 @@ +/* + * authreadkeys.c - routines to support the reading of the key file + */ +#include <stdio.h> +#include <ctype.h> + +#include "ntp_fp.h" +#include "ntp.h" +#include "ntp_syslog.h" +#include "ntp_stdlib.h" + +/* + * Arbitrary long string of ASCII characters. + */ +#define KEY_TYPE_MD5 4 + +/* Forwards */ +static char *nexttok P((char **)); + +/* + * nexttok - basic internal tokenizing routine + */ +static char * +nexttok( + char **str + ) +{ + register char *cp; + char *starttok; + + cp = *str; + + /* + * Space past white space + */ + while (*cp == ' ' || *cp == '\t') + cp++; + + /* + * Save this and space to end of token + */ + starttok = cp; + while (*cp != '\0' && *cp != '\n' && *cp != ' ' + && *cp != '\t' && *cp != '#') + cp++; + + /* + * If token length is zero return an error, else set end of + * token to zero and return start. + */ + if (starttok == cp) + return 0; + + if (*cp == ' ' || *cp == '\t') + *cp++ = '\0'; + else + *cp = '\0'; + + *str = cp; + return starttok; +} + + +/* + * authreadkeys - (re)read keys from a file. + */ +int +authreadkeys( + const char *file + ) +{ + FILE *fp; + char *line; + char *token; + u_long keyno; + int keytype; + char buf[512]; /* lots of room for line */ + + /* + * Open file. Complain and return if it can't be opened. + */ + fp = fopen(file, "r"); + if (fp == NULL) { + msyslog(LOG_ERR, "can't open key file %s: %m", file); + return 0; + } + + /* + * Remove all existing keys + */ + auth_delkeys(); + + /* + * Now read lines from the file, looking for key entries + */ + while ((line = fgets(buf, sizeof buf, fp)) != NULL) { + token = nexttok(&line); + if (token == 0) + continue; + + /* + * First is key number. See if it is okay. + */ + keyno = atoi(token); + if (keyno == 0) { + msyslog(LOG_ERR, + "cannot change keyid 0, key entry `%s' ignored", + token); + continue; + } + + if (keyno > NTP_MAXKEY) { + msyslog(LOG_ERR, + "keyid's > %d reserved for autokey, key entry `%s' ignored", + NTP_MAXKEY, token); + continue; + } + + /* + * Next is keytype. See if that is all right. + */ + token = nexttok(&line); + if (token == 0) { + msyslog(LOG_ERR, + "no key type for key number %ld, entry ignored", + keyno); + continue; + } + switch (*token) { + case 'M': + case 'm': + keytype = KEY_TYPE_MD5; break; + default: + msyslog(LOG_ERR, + "invalid key type for key number %ld, entry ignored", + keyno); + continue; + } + + /* + * Finally, get key and insert it + */ + token = nexttok(&line); + if (token == 0) { + msyslog(LOG_ERR, + "no key for number %ld entry, entry ignored", + keyno); + } else { + switch(keytype) { + case KEY_TYPE_MD5: + if (!authusekey(keyno, keytype, + (u_char *)token)) + msyslog(LOG_ERR, + "format/parity error for MD5 key %ld, not used", + keyno); + break; + } + } + } + (void) fclose(fp); + return 1; +} |