| blob | c26d80e48c083945bdff39ee66bc304434bd1a2b |
1 /*
2 * CDDL HEADER START
3 *
4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License (the "License").
6 * You may not use this file except in compliance with the License.
7 *
8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 * or http://www.opensolaris.org/os/licensing.
10 * See the License for the specific language governing permissions
11 * and limitations under the License.
12 *
13 * When distributing Covered Code, include this CDDL HEADER in each
14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 * If applicable, add the following below this CDDL HEADER, with the
16 * fields enclosed by brackets "[]" replaced with your own identifying
17 * information: Portions Copyright [yyyy] [name of copyright owner]
18 *
19 * CDDL HEADER END
20 */
22 /*
23 * Copyright 2009 Sun Microsystems, Inc. All rights reserved.
24 * Use is subject to license terms.
25 */
27 /*
28 * Password Keychain storage mechanism.
29 */
31 #include <sys/types.h>
32 #include <sys/param.h>
33 #include <sys/errno.h>
34 #include <sys/sysmacros.h>
35 #include <sys/uio.h>
36 #include <sys/buf.h>
37 #include <sys/modctl.h>
38 #include <sys/open.h>
39 #include <sys/file.h>
40 #include <sys/kmem.h>
41 #include <sys/conf.h>
42 #include <sys/cmn_err.h>
43 #include <sys/stat.h>
44 #include <sys/ddi.h>
45 #include <sys/sunddi.h>
46 #include <sys/sunldi.h>
47 #include <sys/policy.h>
48 #include <sys/zone.h>
49 #include <sys/pathname.h>
50 #include <sys/mount.h>
51 #include <sys/sdt.h>
52 #include <fs/fs_subr.h>
53 #include <sys/devops.h>
54 #include <sys/thread.h>
55 #include <sys/mkdev.h>
56 #include <sys/avl.h>
57 #include <sys/avl_impl.h>
58 #include <sys/u8_textprep.h>
60 #include <netsmb/smb_osdep.h>
62 #include <netsmb/smb.h>
63 #include <netsmb/smb_conn.h>
64 #include <netsmb/smb_subr.h>
65 #include <netsmb/smb_dev.h>
66 #include <netsmb/smb_pass.h>
68 /*
69 * The smb_ptd is a cache of Uid's, User names, passwords and domain names.
70 * It will be used for storing the password information for a user and will
71 * be used to for connections without entering the pasword again if its
72 * already keyed in by the user. Its a kind of Key-Chain mechanism
73 * implemented by Apple folks.
74 */
76 /*
77 * Information stored in the nodes:
78 * UID: Uid of the person who initiated the login request.
79 * ZoneID: ZoneID of the zone from where the login request is initiated.
80 * Username: Username in the CIFS server.
81 * Srvdom: Domain name/ Server name of the CIFS server.
82 * Password: Password of the user.
83 * For more information, see smb_pass.h and sys/avl.h
84 */
86 /*
87 * Information retrieved from the node.
88 * Node/password information can only be retrived with a call
89 * to smb_pkey_getpw(). Password never gets copied to the userspace.
90 * It will be copied to the Kernel data structure smbioc_ossn->ioc_password
91 * when needed for doing the "Session Setup". All other calls will return
92 * either a success or a failure.
93 */
102 /*
103 * This routine is called by AVL tree calls when they want to find a
104 * node, find the next position in the tree to add or for deletion.
105 * Compare nodes from the tree to find the actual node based on
106 * uid/zoneid/username/domainname.
107 */
108 int
110 {
117 /*
118 * The nodes are added sorted on the uid/zoneid/domainname/username
119 * We will do this:
120 * Compare uid's. The owner who stored the node gets access.
121 * Then zoneid to check if the access is from the same zone.
122 * Compare usernames.
123 * If the above are same, then compare domain/server names.
124 */
146 }
148 /*
149 * Initialization of the code that deals with uid and passwords.
150 */
151 void
153 {
155 smb_pkey_cmp,
158 cpnode));
160 }
162 /*
163 * Destroy the full AVL tree.
164 * Called just before unload.
165 */
166 void
168 {
172 }
174 /*
175 * Driver unload calls this to ask if we
176 * have any stored passwords
177 */
178 int
180 {
188 }
190 static void
192 {
198 }
201 /*
202 * Remove a node from the AVL tree identified by cpid.
203 */
204 int
206 {
207 avl_index_t where;
209 uid_t uid;
218 }
228 }
232 }
234 /*
235 * Delete the entries owned by a particular user
236 * based on uid. We go through all the nodes and
237 * delete the nodes whereever the uid matches.
238 *
239 * Also implements "delete all" when uid == -1.
240 *
241 * You must have privilege to use any uid other
242 * than your real uid.
243 */
244 int
246 {
258 /*
259 * Delete the node.
260 */
262 }
263 }
267 }
269 /*
270 * Add entry or modify existing.
271 * Check for existing entry..
272 * If present, delete.
273 * Now, add the new entry.
274 */
275 int
277 {
279 avl_index_t where;
282 uid_t uid;
290 }
299 /*
300 * XXX: Instead of calling smb_pkey_check here,
301 * should call avl_find directly, and hold the
302 * lock across: avl_find, avl_remove, avl_insert.
303 */
305 /* If it already exists, delete it. */
309 }
319 }
323 }
325 /*
326 * Determine if a node with uid,zoneid, uname & dname exists in the tree
327 * given the information, and if found, return the hashes.
328 */
329 int
331 {
333 avl_index_t where;
336 uid_t uid;
344 }
359 }
363 }
366 int
368 {
370 uid_t uid;
383 }
384 /* Make strlen (etc) on these safe. */
388 }
401 /* This is just a hash now. */
418 }
420 out:
423 }