arlad/cred.h

   1 /*
   2  * Copyright (c) 1995 - 2003 Kungliga Tekniska Högskolan
   3  * (Royal Institute of Technology, Stockholm, Sweden).
   4  * All rights reserved.
   5  *
   6  * Redistribution and use in source and binary forms, with or without
   7  * modification, are permitted provided that the following conditions
   8  * are met:
   9  *
  10  * 1. Redistributions of source code must retain the above copyright
  11  *    notice, this list of conditions and the following disclaimer.
  12  *
  13  * 2. Redistributions in binary form must reproduce the above copyright
  14  *    notice, this list of conditions and the following disclaimer in the
  15  *    documentation and/or other materials provided with the distribution.
  16  *
  17  * 3. Neither the name of the Institute nor the names of its contributors
  18  *    may be used to endorse or promote products derived from this software
  19  *    without specific prior written permission.
  20  *
  21  * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
  22  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  23  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  24  * ARE DISCLAIMED.  IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
  25  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  26  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  27  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  28  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  29  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  30  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  31  * SUCH DAMAGE.
  32  */
  33
  34 /*
  35  * Header for credetial cache
  36  */
  37
  38 /* $Id$ */
  39
  40 #ifndef _CRED_H_
  41 #define _CRED_H_
  42
  43 #include <sys/types.h>
  44 #include <time.h>
  45 #include <lock.h>
  46 #include "bool.h"
  47 #include <nnpfs/nnpfs_message.h>
  48
  49 /* The cred-types we support */
  50 #define CRED_NONE     0
  51 #define CRED_KRB4     1
  52 #define CRED_RXGK     3
  53 #define CRED_MAX      CRED_RXGK
  54 #define CRED_ANY      (-1)
  55
  56 struct cred_rxkad {
  57     struct arla_ClearToken ct;
  58     size_t ticket_len;
  59     unsigned char ticket[MAXKRB4TICKETLEN];
  60 };
  61
  62 struct cred_rxgk {
  63     uint32_t flags;
  64     uint32_t level;
  65     uint32_t bytelife;
  66     uint32_t lifetime;
  67     uint64_t starttime;
  68     uint64_t endtime;
  69     uint32_t enctype;
  70     uint32_t tokenlen;
  71     uint32_t keylen;
  72 };
  73
  74 typedef struct {
  75     nnpfs_pag_t cred;
  76     uid_t uid;
  77     int type;
  78     int securityindex;
  79     long cell;
  80     uint32_t hostid;
  81     time_t expire;
  82     struct token_rxgk *token_rxgk;
  83     void *cred_data;
  84     void (*cred_free_func)(void *);
  85     struct {
  86         unsigned killme : 1;
  87     } flags;
  88     unsigned refcount;
  89     union {
  90         List *list;
  91         Listitem *li;
  92     } pag;
  93 } CredCacheEntry;
  94
  95 /*
  96  *
  97  */
  98
  99 void cred_init (unsigned nentries);
 100
 101 CredCacheEntry *
 102 cred_get (long cell, nnpfs_pag_t cred, int type);
 103
 104 void
 105 cred_ref(CredCacheEntry *cred);
 106
 107 int
 108 cred_list_pag(nnpfs_pag_t, int,
 109               int (*func)(CredCacheEntry *, void *),
 110               void *);
 111
 112 void
 113 cred_free (CredCacheEntry *ce);
 114
 115 CredCacheEntry *
 116 cred_add (nnpfs_pag_t cred, int type, int securityindex, long cell,
 117           time_t expire, void *cred_data, size_t cred_data_sz,
 118           uid_t uid);
 119
 120 void
 121 cred_delete (CredCacheEntry *ce);
 122
 123 void
 124 cred_expire (CredCacheEntry *ce);
 125
 126 void cred_status (void);
 127
 128 void cred_remove (nnpfs_pag_t cred);
 129
 130 void cred_foreach (Bool (* func)(CredCacheEntry *e));
 131
 132 #endif /* _CRED_H_ */