| blob | 808c4582aa2c65db204ec235dc7ac36a3db5704b |
1 /*
2 * Copyright (c) 1997 - 2007 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 *
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 *
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
34 /* $Id$ */
36 #ifndef __HDB_H__
37 #define __HDB_H__
39 #include <stdio.h>
41 #include <krb5.h>
43 #include <hdb_err.h>
45 #include <heim_asn1.h>
46 #include <hdb_asn1.h>
55 /* flags for various functions */
76 /* hdb_capability_flags */
77 #define HDB_CAP_F_HANDLE_ENTERPRISE_PRINCIPAL 1
78 #define HDB_CAP_F_HANDLE_PASSWORDS 2
79 #define HDB_CAP_F_PASSWORD_UPDATE_KEYS 4
80 #define HDB_CAP_F_SHARED_DIRECTORY 8
82 /* auth status values */
83 #define HDB_AUTH_SUCCESS 0
84 #define HDB_AUTH_WRONG_PASSWORD 1
85 #define HDB_AUTH_INVALID_SIGNATURE 2
87 /* key usage for master key */
88 #define HDB_KU_MKEY 0x484442
90 /*
91 * Second component of WELLKNOWN namespace principals, the third component is
92 * the common DNS suffix of the implied virtual hosts.
93 */
98 /**
99 * hdb_entry_ex is a wrapper structure around the hdb_entry structure
100 * that allows backends to keep a pointer to the backing store, ie in
101 * ->hdb_fetch_kvno(), so that we the kadmin/kpasswd backend gets around to
102 * ->hdb_store(), the backend doesn't need to lookup the entry again.
103 */
107 hdb_entry entry;
112 /**
113 * HDB backend function pointer structure
114 *
115 * The HDB structure is what the KDC and kadmind framework uses to
116 * query the backend database when talking about principals.
117 */
125 hdb_master_key hdb_master_key;
130 /*
131 * These fields cache config values.
132 *
133 * XXX Move these into a structure that we point to so that we
134 * don't need to break the ABI every time we add a field.
135 */
141 /**
142 * Open (or create) the a Kerberos database.
143 *
144 * Open (or create) the a Kerberos database that was resolved with
145 * hdb_create(). The third and fourth flag to the function are the
146 * same as open(), thus passing O_CREAT will create the data base
147 * if it doesn't exists.
148 *
149 * Then done the caller should call hdb_close(), and to release
150 * all resources hdb_destroy().
151 */
153 /**
154 * Close the database for transaction
155 *
156 * Closes the database for further transactions, wont release any
157 * permanant resources. the database can be ->hdb_open-ed again.
158 */
160 /**
161 * Free an entry after use.
162 */
164 /**
165 * Fetch an entry from the backend
166 *
167 * Fetch an entry from the backend, flags are what type of entry
168 * should be fetch: client, server, krbtgt.
169 * knvo (if specified and flags HDB_F_KVNO_SPECIFIED set) is the kvno to get
170 */
173 hdb_entry_ex*);
174 /**
175 * Store an entry to database
176 */
179 /**
180 * Remove an entry from the database.
181 */
184 /**
185 * As part of iteration, fetch one entry
186 */
189 /**
190 * As part of iteration, fetch next entry
191 */
194 /**
195 * Lock database
196 *
197 * A lock can only be held by one consumers. Transaction can still
198 * happen on the database while the lock is held, so the entry is
199 * only useful for syncroning creation of the database and renaming of the database.
200 */
202 /**
203 * Unlock database
204 */
206 /**
207 * Rename the data base.
208 *
209 * Assume that the database is not hdb_open'ed and not locked.
210 */
212 /**
213 * Get an hdb_entry from a classical DB backend
214 *
215 * This function takes a principal key (krb5_data) and returns all
216 * data related to principal in the return krb5_data. The returned
217 * encoded entry is of type hdb_entry or hdb_entry_alias.
218 */
221 /**
222 * Store an hdb_entry from a classical DB backend
223 *
224 * This function takes a principal key (krb5_data) and encoded
225 * hdb_entry or hdb_entry_alias as the data to store.
226 *
227 * For a file-based DB, this must synchronize to disk when done.
228 * This is sub-optimal for kadm5_s_rename_principal(), and for
229 * kadm5_s_modify_principal() when using principal aliases; to
230 * improve this so that only one fsync() need be done
231 * per-transaction will require HDB API extensions.
232 */
235 /**
236 * Delete and hdb_entry from a classical DB backend
237 *
238 * This function takes a principal key (krb5_data) naming the record
239 * to delete.
240 *
241 * Same discussion as in @ref HDB::hdb__put
242 */
244 /**
245 * Destroy the handle to the database.
246 *
247 * Destroy the handle to the database, deallocate all memory and
248 * related resources. Does not remove any permanent data. Its the
249 * logical reverse of hdb_create() function that is the entry
250 * point for the module.
251 */
253 /**
254 * Get the list of realms this backend handles.
255 * This call is optional to support. The returned realms are used
256 * for announcing the realms over bonjour. Free returned array
257 * with krb5_free_host_realm().
258 */
260 /**
261 * Change password.
262 *
263 * Will update keys for the entry when given password. The new
264 * keys must be written into the entry and will then later be
265 * ->hdb_store() into the database. The backend will still perform
266 * all other operations, increasing the kvno, and update
267 * modification timestamp.
268 *
269 * The backend needs to call _kadm5_set_keys() and perform password
270 * quality checks.
271 */
274 /**
275 * Auth feedback
276 *
277 * This is a feedback call that allows backends that provides
278 * lockout functionality to register failure and/or successes.
279 *
280 * In case the entry is locked out, the backend should set the
281 * hdb_entry.flags.locked-out flag.
282 */
284 /**
285 * Check if delegation is allowed.
286 */
287 krb5_error_code (*hdb_check_constrained_delegation)(krb5_context, struct HDB *, hdb_entry_ex *, krb5_const_principal);
289 /**
290 * Check if this name is an alias for the supplied client for PKINIT userPrinicpalName logins
291 */
292 krb5_error_code (*hdb_check_pkinit_ms_upn_match)(krb5_context, struct HDB *, hdb_entry_ex *, krb5_const_principal);
294 /**
295 * Check if s4u2self is allowed from this client to this server
296 */
297 krb5_error_code (*hdb_check_s4u2self)(krb5_context, struct HDB *, hdb_entry_ex *, krb5_const_principal);
299 /**
300 * Enable/disable synchronous updates
301 *
302 * Calling this with 0 disables sync. Calling it with non-zero enables
303 * sync and does an fsync().
304 */
308 #define HDB_INTERFACE_VERSION 11
318 };
320 /* dump entry format, for hdb_print_entry() */
328 hdb_dump_format_t fmt;
329 };
338 #include <hdb-protos.h>