libzmq/src/gssapi_mechanism_base.hpp

/*
    Copyright (c) 2007-2016 Contributors as noted in the AUTHORS file

    This file is part of libzmq, the ZeroMQ core engine in C++.

    libzmq is free software; you can redistribute it and/or modify it under
    the terms of the GNU Lesser General Public License (LGPL) as published
    by the Free Software Foundation; either version 3 of the License, or
    (at your option) any later version.

    As a special exception, the Contributors give you permission to link
    this library with independent modules to produce an executable,
    regardless of the license terms of these independent modules, and to
    copy and distribute the resulting executable under terms of your choice,
    provided that you also meet, for each linked independent module, the
    terms and conditions of the license of that module. An independent
    module is a module which is not derived from or based on this library.
    If you modify this library, you must extend this exception to your
    version of the library.

    libzmq is distributed in the hope that it will be useful, but WITHOUT
    ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
    FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public
    License for more details.

    You should have received a copy of the GNU Lesser General Public License
    along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/

#ifndef __ZMQ_GSSAPI_MECHANISM_BASE_HPP_INCLUDED__
#define __ZMQ_GSSAPI_MECHANISM_BASE_HPP_INCLUDED__

#ifdef HAVE_LIBGSSAPI_KRB5

#if HAVE_GSSAPI_GSSAPI_GENERIC_H
#include <gssapi/gssapi_generic.h>
#endif
#include <gssapi/gssapi_krb5.h>

#include "mechanism_base.hpp"
#include "options.hpp"

namespace zmq
{
class msg_t;

/// Commonalities between clients and servers are captured here.
/// For example, clients and servers both need to produce and
/// process context-level GSSAPI tokens (via INITIATE commands)
/// and per-message GSSAPI tokens (via MESSAGE commands).
class gssapi_mechanism_base_t : public virtual mechanism_base_t
{
  public:
    gssapi_mechanism_base_t (session_base_t *session_,
                             const options_t &options_);
    ~gssapi_mechanism_base_t () ZMQ_OVERRIDE = 0;

  protected:
    //  Produce a context-level GSSAPI token (INITIATE command)
    //  during security context initialization.
    int produce_initiate (msg_t *msg_, void *data_, size_t data_len_);

    //  Process a context-level GSSAPI token (INITIATE command)
    //  during security context initialization.
    int process_initiate (msg_t *msg_, void **data_, size_t &data_len_);

    // Produce a metadata ready msg (READY) to conclude handshake
    int produce_ready (msg_t *msg_);

    // Process a metadata ready msg (READY)
    int process_ready (msg_t *msg_);

    //  Encode a per-message GSSAPI token (MESSAGE command) using
    //  the established security context.
    int encode_message (msg_t *msg_);

    //  Decode a per-message GSSAPI token (MESSAGE command) using
    //  the  established security context.
    int decode_message (msg_t *msg_);

    //  Convert ZMQ_GSSAPI_NT values to GSSAPI name_type
    static const gss_OID convert_nametype (int zmq_name_type_);

    //  Acquire security context credentials from the
    //  underlying mechanism.
    static int acquire_credentials (char *principal_name_,
                                    gss_cred_id_t *cred_,
                                    gss_OID name_type_);

  protected:
    //  Opaque GSSAPI token for outgoing data
    gss_buffer_desc send_tok;

    //  Opaque GSSAPI token for incoming data
    gss_buffer_desc recv_tok;

    //  Opaque GSSAPI representation of principal
    gss_name_t target_name;

    //  Human-readable principal name
    char *principal_name;

    //  Status code returned by GSSAPI functions
    OM_uint32 maj_stat;

    //  Status code returned by the underlying mechanism
    OM_uint32 min_stat;

    //  Status code returned by the underlying mechanism
    //  during context initialization
    OM_uint32 init_sec_min_stat;

    //  Flags returned by GSSAPI (ignored)
    OM_uint32 ret_flags;

    //  Flags returned by GSSAPI (ignored)
    OM_uint32 gss_flags;

    //  Credentials used to establish security context
    gss_cred_id_t cred;

    //  Opaque GSSAPI representation of the security context
    gss_ctx_id_t context;

    //  If true, use gss to encrypt messages. If false, only utilize gss for auth.
    bool do_encryption;
};
}

#endif

#endif
Refactored common impl into gssapi_mechanism_base. E.g., both client and server need to produce and process GSSAPI tokens. 2013-09-30 22:51:20 +02:00			`/*`
Problem: copyright year is still 2015 Solution: update to 2016 2016-01-28 15:07:31 +01:00			`Copyright (c) 2007-2016 Contributors as noted in the AUTHORS file`
Refactored common impl into gssapi_mechanism_base. E.g., both client and server need to produce and process GSSAPI tokens. 2013-09-30 22:51:20 +02:00
Problem: source file headers are somewhat confusing about LGPLv3 Of course people still "can" distributed the sources under the LGPLv3. However we provide COPYING.LESSER with additional grants. Solution: specify these grants in the header of each source file. 2015-06-02 22:33:55 +02:00			`This file is part of libzmq, the ZeroMQ core engine in C++.`
Refactored common impl into gssapi_mechanism_base. E.g., both client and server need to produce and process GSSAPI tokens. 2013-09-30 22:51:20 +02:00
Problem: source file headers are somewhat confusing about LGPLv3 Of course people still "can" distributed the sources under the LGPLv3. However we provide COPYING.LESSER with additional grants. Solution: specify these grants in the header of each source file. 2015-06-02 22:33:55 +02:00			`libzmq is free software; you can redistribute it and/or modify it under`
			`the terms of the GNU Lesser General Public License (LGPL) as published`
			`by the Free Software Foundation; either version 3 of the License, or`
Refactored common impl into gssapi_mechanism_base. E.g., both client and server need to produce and process GSSAPI tokens. 2013-09-30 22:51:20 +02:00			`(at your option) any later version.`

Problem: source file headers are somewhat confusing about LGPLv3 Of course people still "can" distributed the sources under the LGPLv3. However we provide COPYING.LESSER with additional grants. Solution: specify these grants in the header of each source file. 2015-06-02 22:33:55 +02:00			`As a special exception, the Contributors give you permission to link`
			`this library with independent modules to produce an executable,`
			`regardless of the license terms of these independent modules, and to`
			`copy and distribute the resulting executable under terms of your choice,`
			`provided that you also meet, for each linked independent module, the`
			`terms and conditions of the license of that module. An independent`
			`module is a module which is not derived from or based on this library.`
			`If you modify this library, you must extend this exception to your`
			`version of the library.`

			`libzmq is distributed in the hope that it will be useful, but WITHOUT`
			`ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or`
			`FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public`
			`License for more details.`
Refactored common impl into gssapi_mechanism_base. E.g., both client and server need to produce and process GSSAPI tokens. 2013-09-30 22:51:20 +02:00
			`You should have received a copy of the GNU Lesser General Public License`
			`along with this program. If not, see <http://www.gnu.org/licenses/>.`
			`*/`

			`#ifndef __ZMQ_GSSAPI_MECHANISM_BASE_HPP_INCLUDED__`
			`#define __ZMQ_GSSAPI_MECHANISM_BASE_HPP_INCLUDED__`

src/gssapi_client.cpp 2014-04-25 06:17:07 +02:00			`#ifdef HAVE_LIBGSSAPI_KRB5`

Problem: Fix build with Heimdal krb5 Solution: * Check gssapi/gssapi_generic.h header file, it is not in Heimdal. * Check libgssapi too, libgssapi_krb5 is not separated in Heimdal. 2016-03-04 08:38:57 +01:00			`#if HAVE_GSSAPI_GSSAPI_GENERIC_H`
Added gss produce/process routines. For exchanging tokens. 2013-10-03 05:09:36 +02:00			`#include <gssapi/gssapi_generic.h>`
gssapi: RFC 2744 mandates GSS_C_NT_HOSTBASED_SERVICE Tested on FreeBSD 10. 2014-05-05 21:59:11 +02:00			`#endif`
Added gss produce/process routines. For exchanging tokens. 2013-10-03 05:09:36 +02:00			`#include <gssapi/gssapi_krb5.h>`
added ready for meta data exchange at end of gss handshake 2013-11-07 20:49:45 +01:00
Problem: gssapi_mechanism_base does not include mechanism_base Solution: include mechanism_base.hpp instead of mechanism.hpp 2017-08-19 17:51:01 +02:00			`#include "mechanism_base.hpp"`
added ready for meta data exchange at end of gss handshake 2013-11-07 20:49:45 +01:00			`#include "options.hpp"`
Added gss produce/process routines. For exchanging tokens. 2013-10-03 05:09:36 +02:00
Refactored common impl into gssapi_mechanism_base. E.g., both client and server need to produce and process GSSAPI tokens. 2013-09-30 22:51:20 +02:00			`namespace zmq`
			`{`
			`class msg_t;`

GSSAPI mechanism now fully working with encryption 2013-10-08 07:12:50 +02:00			`/// Commonalities between clients and servers are captured here.`
Added comments to methods. 2013-10-08 07:25:18 +02:00			`/// For example, clients and servers both need to produce and`
			`/// process context-level GSSAPI tokens (via INITIATE commands)`
			`/// and per-message GSSAPI tokens (via MESSAGE commands).`
Problem: curve_client_t may emit misleading event on bad data processed by curve_client_t::decode Solution: use check_basic_command_structure in curve_client_t::decode, also prepare other client mechanisms to use that method by rearranging inheritance hierarchy 2017-08-18 10:04:58 +02:00			`class gssapi_mechanism_base_t : public virtual mechanism_base_t`
Refactored common impl into gssapi_mechanism_base. E.g., both client and server need to produce and process GSSAPI tokens. 2013-09-30 22:51:20 +02:00			`{`
Problem: curve_client_t may emit misleading event on bad data processed by curve_client_t::decode Solution: use check_basic_command_structure in curve_client_t::decode, also prepare other client mechanisms to use that method by rearranging inheritance hierarchy 2017-08-18 10:04:58 +02:00			`public:`
			`gssapi_mechanism_base_t (session_base_t *session_,`
			`const options_t &options_);`
Problem: inconsistent polymorphic inheritance Solution: consistently use virtual, override and final 2019-12-24 10:39:26 +01:00			`~gssapi_mechanism_base_t () ZMQ_OVERRIDE = 0;`
src/gssapi_client.cpp 2014-04-25 06:17:07 +02:00
Problem: curve_client_t may emit misleading event on bad data processed by curve_client_t::decode Solution: use check_basic_command_structure in curve_client_t::decode, also prepare other client mechanisms to use that method by rearranging inheritance hierarchy 2017-08-18 10:04:58 +02:00			`protected:`
Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Produce a context-level GSSAPI token (INITIATE command)`
			`// during security context initialization.`
GSSAPI mechanism now fully working with encryption 2013-10-08 07:12:50 +02:00			`int produce_initiate (msg_t msg_, void data_, size_t data_len_);`
added ready for meta data exchange at end of gss handshake 2013-11-07 20:49:45 +01:00
			`// Process a context-level GSSAPI token (INITIATE command)`
			`// during security context initialization.`
encode and decode ready message 2014-04-23 21:19:19 +02:00			`int process_initiate (msg_t msg_, void *data_, size_t &data_len_);`
added ready for meta data exchange at end of gss handshake 2013-11-07 20:49:45 +01:00
			`// Produce a metadata ready msg (READY) to conclude handshake`
			`int produce_ready (msg_t *msg_);`
src/gssapi_client.cpp 2014-04-25 06:17:07 +02:00
Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Process a metadata ready msg (READY)`
GSSAPI mechanism now fully working with encryption 2013-10-08 07:12:50 +02:00			`int process_ready (msg_t *msg_);`
src/gssapi_client.cpp 2014-04-25 06:17:07 +02:00
Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Encode a per-message GSSAPI token (MESSAGE command) using`
			`// the established security context.`
GSSAPI mechanism now fully working with encryption 2013-10-08 07:12:50 +02:00			`int encode_message (msg_t *msg_);`
src/gssapi_client.cpp 2014-04-25 06:17:07 +02:00
gssapi: add NAMETYPE socket options Problem: principals are looked up unconditionally with the GSS_C_NT_HOSTBASED_SERVICE name type. Solution: Add two new socket options to set the name type for ZMQ_GSSAPI_PRINCIPAL and ZMQ_GSSAPI_SERVICE_PRINCIPAL: ZMQ_GSSAPI_PRINCIPAL_NAMETYPE ZMQ_GSSAPI_SERVICE_PRINCIPAL_NAMETYPE They take an integer argument which must be one of ZMQ_GSSAPI_NT_HOSTBASED (0) - default ZMQ_GSSAPI_NT_USER_NAME (1) ZMQ_GSSAPI_NT_KRB5_PRINCIPAL (2) These correspond to GSSAPI name types of: GSS_C_NT_HOSTBASED_SERVICE GSS_C_NT_USER_NAME GSS_KRB5_NT_PRINCIPAL_NAME Fixes #2542 2017-04-21 01:28:30 +02:00			`// Decode a per-message GSSAPI token (MESSAGE command) using`
			`// the established security context.`
			`int decode_message (msg_t *msg_);`

Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Convert ZMQ_GSSAPI_NT values to GSSAPI name_type`
gssapi: move new options to DRAFT section Problem: The new GSSAPI NAMESPACE options should have been added to the DRAFT section of the API so they can be changed until stabilized. Solution: - Move defines to the DRAFT section of zmq.h - Duplicate them in zmq_draft.h, as is the local custom - Compile only if defined (ZMQ_BUILD_DRAFT_API) - Refactor internals slightly to avoid #ifdef hell 2017-04-24 22:55:35 +02:00			`static const gss_OID convert_nametype (int zmq_name_type_);`
Establishing GSSAPI sec context is working now 2013-10-03 20:43:20 +02:00
Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Acquire security context credentials from the`
			`// underlying mechanism.`
			`static int acquire_credentials (char *principal_name_,`
Establishing GSSAPI sec context is working now 2013-10-03 20:43:20 +02:00			`gss_cred_id_t *cred_,`
			`gss_OID name_type_);`
src/gssapi_client.cpp 2014-04-25 06:17:07 +02:00
Establishing GSSAPI sec context is working now 2013-10-03 20:43:20 +02:00			`protected:`
Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Opaque GSSAPI token for outgoing data`
Establishing GSSAPI sec context is working now 2013-10-03 20:43:20 +02:00			`gss_buffer_desc send_tok;`
src/gssapi_client.cpp 2014-04-25 06:17:07 +02:00
principle->principal 2014-04-23 19:20:22 +02:00			`// Opaque GSSAPI token for incoming data`
Establishing GSSAPI sec context is working now 2013-10-03 20:43:20 +02:00			`gss_buffer_desc recv_tok;`
src/gssapi_client.cpp 2014-04-25 06:17:07 +02:00
configurable principle and service principle (for client) 2013-11-20 23:01:16 +01:00			`// Opaque GSSAPI representation of principal`
principle->principal 2014-04-23 19:20:22 +02:00			`gss_name_t target_name;`
GSSAPI mechanism now fully working with encryption 2013-10-08 07:12:50 +02:00
Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Human-readable principal name`
Establishing GSSAPI sec context is working now 2013-10-03 20:43:20 +02:00			`char *principal_name;`
GSSAPI mechanism now fully working with encryption 2013-10-08 07:12:50 +02:00
Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Status code returned by GSSAPI functions`
Establishing GSSAPI sec context is working now 2013-10-03 20:43:20 +02:00			`OM_uint32 maj_stat;`
GSSAPI mechanism now fully working with encryption 2013-10-08 07:12:50 +02:00
Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Status code returned by the underlying mechanism`
Establishing GSSAPI sec context is working now 2013-10-03 20:43:20 +02:00			`OM_uint32 min_stat;`
GSSAPI mechanism now fully working with encryption 2013-10-08 07:12:50 +02:00
Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Status code returned by the underlying mechanism`
			`// during context initialization`
Establishing GSSAPI sec context is working now 2013-10-03 20:43:20 +02:00			`OM_uint32 init_sec_min_stat;`
src/gssapi_client.cpp 2014-04-25 06:17:07 +02:00
Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Flags returned by GSSAPI (ignored)`
Establishing GSSAPI sec context is working now 2013-10-03 20:43:20 +02:00			`OM_uint32 ret_flags;`
src/gssapi_client.cpp 2014-04-25 06:17:07 +02:00
Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Flags returned by GSSAPI (ignored)`
Establishing GSSAPI sec context is working now 2013-10-03 20:43:20 +02:00			`OM_uint32 gss_flags;`
GSSAPI mechanism now fully working with encryption 2013-10-08 07:12:50 +02:00
Added comments to methods. 2013-10-08 07:25:18 +02:00			`// Credentials used to establish security context`
Establishing GSSAPI sec context is working now 2013-10-03 20:43:20 +02:00			`gss_cred_id_t cred;`
ZMQ_GSSAPI_PLAINTEXT option for disabling encryption 2014-04-23 20:01:54 +02:00
			`// Opaque GSSAPI representation of the security context`
			`gss_ctx_id_t context;`
Refactored common impl into gssapi_mechanism_base. E.g., both client and server need to produce and process GSSAPI tokens. 2013-09-30 22:51:20 +02:00
ZMQ_GSSAPI_PLAINTEXT option for disabling encryption 2014-04-23 20:01:54 +02:00			`// If true, use gss to encrypt messages. If false, only utilize gss for auth.`
			`bool do_encryption;`
Problem: formatting inconsistent Solution: applied clang-format 2018-02-01 11:46:09 +01:00			`};`
Refactored common impl into gssapi_mechanism_base. E.g., both client and server need to produce and process GSSAPI tokens. 2013-09-30 22:51:20 +02:00			`}`
src/gssapi_client.cpp 2014-04-25 06:17:07 +02:00
Refactored common impl into gssapi_mechanism_base. E.g., both client and server need to produce and process GSSAPI tokens. 2013-09-30 22:51:20 +02:00			`#endif`
GSSAPI mechanism now fully working with encryption 2013-10-08 07:12:50 +02:00
src/gssapi_client.cpp 2014-04-25 06:17:07 +02:00			`#endif`