heimdal/kcm/glue.c

c19800e8SDoug Rabson/*
c19800e8SDoug Rabson * Copyright (c) 2005, PADL Software Pty Ltd.
c19800e8SDoug Rabson * All rights reserved.
c19800e8SDoug Rabson *
c19800e8SDoug Rabson * Redistribution and use in source and binary forms, with or without
c19800e8SDoug Rabson * modification, are permitted provided that the following conditions
c19800e8SDoug Rabson * are met:
c19800e8SDoug Rabson *
c19800e8SDoug Rabson * 1. Redistributions of source code must retain the above copyright
c19800e8SDoug Rabson *    notice, this list of conditions and the following disclaimer.
c19800e8SDoug Rabson *
c19800e8SDoug Rabson * 2. Redistributions in binary form must reproduce the above copyright
c19800e8SDoug Rabson *    notice, this list of conditions and the following disclaimer in the
c19800e8SDoug Rabson *    documentation and/or other materials provided with the distribution.
c19800e8SDoug Rabson *
c19800e8SDoug Rabson * 3. Neither the name of PADL Software nor the names of its contributors
c19800e8SDoug Rabson *    may be used to endorse or promote products derived from this software
c19800e8SDoug Rabson *    without specific prior written permission.
c19800e8SDoug Rabson *
c19800e8SDoug Rabson * THIS SOFTWARE IS PROVIDED BY PADL SOFTWARE AND CONTRIBUTORS ``AS IS'' AND
c19800e8SDoug Rabson * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
c19800e8SDoug Rabson * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
c19800e8SDoug Rabson * ARE DISCLAIMED.  IN NO EVENT SHALL PADL SOFTWARE OR CONTRIBUTORS BE LIABLE
c19800e8SDoug Rabson * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
c19800e8SDoug Rabson * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
c19800e8SDoug Rabson * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
c19800e8SDoug Rabson * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
c19800e8SDoug Rabson * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
c19800e8SDoug Rabson * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
c19800e8SDoug Rabson * SUCH DAMAGE.
c19800e8SDoug Rabson */
c19800e8SDoug Rabson
c19800e8SDoug Rabson#include "kcm_locl.h"
c19800e8SDoug Rabson
*ae771770SStanislav SedovRCSID("$Id$");
c19800e8SDoug Rabson
c19800e8SDoug Rabson/*
c19800e8SDoug Rabson * Server-side loopback glue for credentials cache operations; this
c19800e8SDoug Rabson * must be initialized with kcm_internal_ccache(), it is not for real
c19800e8SDoug Rabson * use. This entire file assumes the cache is locked, it does not do
c19800e8SDoug Rabson * any concurrency checking for multithread applications.
c19800e8SDoug Rabson */
c19800e8SDoug Rabson
c19800e8SDoug Rabson#define KCMCACHE(X)	((kcm_ccache)(X)->data.data)
c19800e8SDoug Rabson#define CACHENAME(X)	(KCMCACHE(X)->name)
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic const char *
c19800e8SDoug Rabsonkcmss_get_name(krb5_context context,
c19800e8SDoug Rabson	       krb5_ccache id)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    return CACHENAME(id);
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_resolve(krb5_context context, krb5_ccache *id, const char *res)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    return KRB5_FCC_INTERNAL;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_gen_new(krb5_context context, krb5_ccache *id)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    return KRB5_FCC_INTERNAL;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_initialize(krb5_context context,
c19800e8SDoug Rabson		 krb5_ccache id,
c19800e8SDoug Rabson		 krb5_principal primary_principal)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    krb5_error_code ret;
c19800e8SDoug Rabson    kcm_ccache c = KCMCACHE(id);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    KCM_ASSERT_VALID(c);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    ret = kcm_zero_ccache_data_internal(context, c);
c19800e8SDoug Rabson    if (ret)
c19800e8SDoug Rabson	return ret;
c19800e8SDoug Rabson
c19800e8SDoug Rabson    ret = krb5_copy_principal(context, primary_principal,
c19800e8SDoug Rabson			      &c->client);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    return ret;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_close(krb5_context context,
c19800e8SDoug Rabson	    krb5_ccache id)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    kcm_ccache c = KCMCACHE(id);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    KCM_ASSERT_VALID(c);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    id->data.data = NULL;
c19800e8SDoug Rabson    id->data.length = 0;
c19800e8SDoug Rabson
c19800e8SDoug Rabson    return 0;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_destroy(krb5_context context,
c19800e8SDoug Rabson	      krb5_ccache id)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    krb5_error_code ret;
c19800e8SDoug Rabson    kcm_ccache c = KCMCACHE(id);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    KCM_ASSERT_VALID(c);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    ret = kcm_ccache_destroy(context, CACHENAME(id));
c19800e8SDoug Rabson
c19800e8SDoug Rabson    return ret;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_store_cred(krb5_context context,
c19800e8SDoug Rabson		 krb5_ccache id,
c19800e8SDoug Rabson		 krb5_creds *creds)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    krb5_error_code ret;
c19800e8SDoug Rabson    kcm_ccache c = KCMCACHE(id);
c19800e8SDoug Rabson    krb5_creds *tmp;
c19800e8SDoug Rabson
c19800e8SDoug Rabson    KCM_ASSERT_VALID(c);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    ret = kcm_ccache_store_cred_internal(context, c, creds, 1, &tmp);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    return ret;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_retrieve(krb5_context context,
c19800e8SDoug Rabson	       krb5_ccache id,
c19800e8SDoug Rabson	       krb5_flags which,
c19800e8SDoug Rabson	       const krb5_creds *mcred,
c19800e8SDoug Rabson	       krb5_creds *creds)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    krb5_error_code ret;
c19800e8SDoug Rabson    kcm_ccache c = KCMCACHE(id);
c19800e8SDoug Rabson    krb5_creds *credp;
c19800e8SDoug Rabson
c19800e8SDoug Rabson    KCM_ASSERT_VALID(c);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    ret = kcm_ccache_retrieve_cred_internal(context, c, which,
c19800e8SDoug Rabson					    mcred, &credp);
c19800e8SDoug Rabson    if (ret)
c19800e8SDoug Rabson	return ret;
c19800e8SDoug Rabson
c19800e8SDoug Rabson    ret = krb5_copy_creds_contents(context, credp, creds);
c19800e8SDoug Rabson    if (ret)
c19800e8SDoug Rabson	return ret;
c19800e8SDoug Rabson
c19800e8SDoug Rabson    return 0;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_get_principal(krb5_context context,
c19800e8SDoug Rabson		    krb5_ccache id,
c19800e8SDoug Rabson		    krb5_principal *principal)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    krb5_error_code ret;
c19800e8SDoug Rabson    kcm_ccache c = KCMCACHE(id);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    KCM_ASSERT_VALID(c);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    ret = krb5_copy_principal(context, c->client,
c19800e8SDoug Rabson			      principal);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    return ret;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_get_first (krb5_context context,
c19800e8SDoug Rabson		 krb5_ccache id,
c19800e8SDoug Rabson		 krb5_cc_cursor *cursor)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    kcm_ccache c = KCMCACHE(id);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    KCM_ASSERT_VALID(c);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    *cursor = c->creds;
c19800e8SDoug Rabson
c19800e8SDoug Rabson    return (*cursor == NULL) ? KRB5_CC_END : 0;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_get_next (krb5_context context,
c19800e8SDoug Rabson		krb5_ccache id,
c19800e8SDoug Rabson		krb5_cc_cursor *cursor,
c19800e8SDoug Rabson		krb5_creds *creds)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    krb5_error_code ret;
c19800e8SDoug Rabson    kcm_ccache c = KCMCACHE(id);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    KCM_ASSERT_VALID(c);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    ret = krb5_copy_creds_contents(context,
c19800e8SDoug Rabson				   &((struct kcm_creds *)cursor)->cred,
c19800e8SDoug Rabson				   creds);
c19800e8SDoug Rabson    if (ret)
c19800e8SDoug Rabson	return ret;
c19800e8SDoug Rabson
c19800e8SDoug Rabson    *cursor = ((struct kcm_creds *)cursor)->next;
c19800e8SDoug Rabson    if (*cursor == 0)
c19800e8SDoug Rabson	ret = KRB5_CC_END;
c19800e8SDoug Rabson
c19800e8SDoug Rabson    return ret;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_end_get (krb5_context context,
c19800e8SDoug Rabson	       krb5_ccache id,
c19800e8SDoug Rabson	       krb5_cc_cursor *cursor)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    *cursor = NULL;
c19800e8SDoug Rabson    return 0;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_remove_cred(krb5_context context,
c19800e8SDoug Rabson		  krb5_ccache id,
c19800e8SDoug Rabson		  krb5_flags which,
c19800e8SDoug Rabson		  krb5_creds *cred)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    krb5_error_code ret;
c19800e8SDoug Rabson    kcm_ccache c = KCMCACHE(id);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    KCM_ASSERT_VALID(c);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    ret = kcm_ccache_remove_cred_internal(context, c, which, cred);
c19800e8SDoug Rabson
c19800e8SDoug Rabson    return ret;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_set_flags(krb5_context context,
c19800e8SDoug Rabson		krb5_ccache id,
c19800e8SDoug Rabson		krb5_flags flags)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    return 0;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic krb5_error_code
c19800e8SDoug Rabsonkcmss_get_version(krb5_context context,
c19800e8SDoug Rabson		  krb5_ccache id)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    return 0;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson
c19800e8SDoug Rabsonstatic const krb5_cc_ops krb5_kcmss_ops = {
*ae771770SStanislav Sedov    KRB5_CC_OPS_VERSION,
c19800e8SDoug Rabson    "KCM",
c19800e8SDoug Rabson    kcmss_get_name,
c19800e8SDoug Rabson    kcmss_resolve,
c19800e8SDoug Rabson    kcmss_gen_new,
c19800e8SDoug Rabson    kcmss_initialize,
c19800e8SDoug Rabson    kcmss_destroy,
c19800e8SDoug Rabson    kcmss_close,
c19800e8SDoug Rabson    kcmss_store_cred,
c19800e8SDoug Rabson    kcmss_retrieve,
c19800e8SDoug Rabson    kcmss_get_principal,
c19800e8SDoug Rabson    kcmss_get_first,
c19800e8SDoug Rabson    kcmss_get_next,
c19800e8SDoug Rabson    kcmss_end_get,
c19800e8SDoug Rabson    kcmss_remove_cred,
c19800e8SDoug Rabson    kcmss_set_flags,
c19800e8SDoug Rabson    kcmss_get_version
c19800e8SDoug Rabson};
c19800e8SDoug Rabson
c19800e8SDoug Rabsonkrb5_error_code
c19800e8SDoug Rabsonkcm_internal_ccache(krb5_context context,
c19800e8SDoug Rabson		    kcm_ccache c,
c19800e8SDoug Rabson		    krb5_ccache id)
c19800e8SDoug Rabson{
c19800e8SDoug Rabson    id->ops = &krb5_kcmss_ops;
c19800e8SDoug Rabson    id->data.length = sizeof(*c);
c19800e8SDoug Rabson    id->data.data = c;
c19800e8SDoug Rabson
c19800e8SDoug Rabson    return 0;
c19800e8SDoug Rabson}
c19800e8SDoug Rabson