[solanum.git] / authd / provider.h

/* authd/provider.h - authentication provider framework
 * Copyright (c) 2016 Elizabeth Myers <elizabeth@interlinked.me>
 *
 * Permission to use, copy, modify, and/or distribute this software for any
 * purpose with or without fee is hereby granted, provided that the above
 * copyright notice and this permission notice is present in all copies.
 *
 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
 * DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,
 * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
 * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING
 * IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
 * POSSIBILITY OF SUCH DAMAGE.
 */

#ifndef __CHARYBDIS_AUTHD_PROVIDER_H__
#define __CHARYBDIS_AUTHD_PROVIDER_H__

#include "stdinc.h"
#include "authd.h"
#include "rb_dictionary.h"

#define MAX_PROVIDERS 32	/* This should be enough */

/* Registered providers */
typedef enum
{
	PROVIDER_RDNS,
	PROVIDER_IDENT,
	PROVIDER_BLACKLIST,
} provider_t;

struct auth_client
{
	uint16_t cid;				/* Client ID */

	char l_ip[HOSTIPLEN + 1];		/* Listener IP address */
	uint16_t l_port;			/* Listener port */
	struct rb_sockaddr_storage l_addr;	/* Listener address/port */

	char c_ip[HOSTIPLEN + 1];		/* Client IP address */
	uint16_t c_port;			/* Client port */
	struct rb_sockaddr_storage c_addr;	/* Client address/port */

	char hostname[HOSTLEN + 1];		/* Used for DNS lookup */
	char username[USERLEN + 1];		/* Used for ident lookup */

	uint32_t providers;			/* Providers at work,
						 * none left when set to 0 */
	uint32_t providers_done;		/* Providers completed */

	void *data[MAX_PROVIDERS];		/* Provider-specific data slots */
};

typedef bool (*provider_init_t)(void);
typedef void (*provider_destroy_t)(void);

typedef bool (*provider_start_t)(struct auth_client *);
typedef void (*provider_cancel_t)(struct auth_client *);
typedef void (*provider_complete_t)(struct auth_client *, provider_t);

struct auth_provider
{
	rb_dlink_node node;

	provider_t id;

	provider_init_t init;		/* Initalise the provider */
	provider_destroy_t destroy;	/* Terminate the provider */

	provider_start_t start;		/* Perform authentication */
	provider_cancel_t cancel;	/* Authentication cancelled */
	provider_complete_t completed;	/* Callback for when other performers complete (think dependency chains) */

	struct auth_opts_handler *opt_handlers;
};

extern rb_dlink_list auth_providers;
extern rb_dictionary *auth_clients;

extern struct auth_provider rdns_provider;
extern struct auth_provider ident_provider;
extern struct auth_provider blacklist_provider;

void load_provider(struct auth_provider *provider);
void unload_provider(struct auth_provider *provider);

void init_providers(void);
void destroy_providers(void);
void cancel_providers(struct auth_client *auth);

void provider_done(struct auth_client *auth, provider_t id);
void accept_client(struct auth_client *auth, provider_t id);
void reject_client(struct auth_client *auth, provider_t id, const char *reason);

void handle_new_connection(int parc, char *parv[]);

/* Provider is operating on this auth_client (set this if you have async work to do) */
static inline void set_provider_on(struct auth_client *auth, provider_t provider)
{
	auth->providers |= (1 << provider);
}

/* Provider is no longer operating on this auth client (you should use provider_done) */
static inline void set_provider_off(struct auth_client *auth, provider_t provider)
{
	auth->providers &= ~(1 << provider);
}

/* Set the provider to done (you should use provider_done) */
static inline void set_provider_done(struct auth_client *auth, provider_t provider)
{
	auth->providers_done |= (1 << provider);
}

/* Check if provider is operating on this auth client */
static inline bool is_provider_on(struct auth_client *auth, provider_t provider)
{
	return auth->providers & (1 << provider);
}

static inline bool is_provider_done(struct auth_client *auth, provider_t provider)
{
	return auth->providers_done & (1 << provider);
}

#endif /* __CHARYBDIS_AUTHD_PROVIDER_H__ */
Commit	Line	Data
0f95a274	1	/* authd/provider.h - authentication provider framework
05e17ac2 EM	2	* Copyright (c) 2016 Elizabeth Myers <elizabeth@interlinked.me>
	3	*
	4	* Permission to use, copy, modify, and/or distribute this software for any
	5	* purpose with or without fee is hereby granted, provided that the above
	6	* copyright notice and this permission notice is present in all copies.
	7	*
	8	* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
	9	* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
	10	* WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
	11	* DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,
	12	* INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
	13	* (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
	14	* SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	15	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
	16	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING
	17	* IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
	18	* POSSIBILITY OF SUCH DAMAGE.
	19	*/
	20
0f95a274 EM	21	#ifndef __CHARYBDIS_AUTHD_PROVIDER_H__
0f95a274 EM	22	#define __CHARYBDIS_AUTHD_PROVIDER_H__
05e17ac2 EM	23
05e17ac2 EM	24	#include "stdinc.h"
a51487e0	25	#include "authd.h"
3e875f62	26	#include "rb_dictionary.h"
05e17ac2	27
3e875f62	28	#define MAX_PROVIDERS 32 /* This should be enough */
05e17ac2 EM	29
	30	/* Registered providers */
	31	typedef enum
	32	{
3e875f62 EM	33	PROVIDER_RDNS,
	34	PROVIDER_IDENT,
	35	PROVIDER_BLACKLIST,
05e17ac2 EM	36	} provider_t;
	37
	38	struct auth_client
	39	{
be67cfca	40	uint16_t cid; /* Client ID */
05e17ac2	41
2b0cc3d3 EM	42	char l_ip[HOSTIPLEN + 1]; /* Listener IP address */
2b0cc3d3 EM	43	uint16_t l_port; /* Listener port */
9c7498d5	44	struct rb_sockaddr_storage l_addr; /* Listener address/port */
2b0cc3d3 EM	45
	46	char c_ip[HOSTIPLEN + 1]; /* Client IP address */
	47	uint16_t c_port; /* Client port */
9c7498d5	48	struct rb_sockaddr_storage c_addr; /* Client address/port */
05e17ac2	49
5bfc606f	50	char hostname[HOSTLEN + 1]; /* Used for DNS lookup */
be67cfca	51	char username[USERLEN + 1]; /* Used for ident lookup */
05e17ac2	52
3e875f62	53	uint32_t providers; /* Providers at work,
2b0cc3d3	54	* none left when set to 0 */
a7d5aea1	55	uint32_t providers_done; /* Providers completed */
f7b37c1d	56
3e875f62	57	void data[MAX_PROVIDERS]; / Provider-specific data slots */
2b0cc3d3 EM	58	};
	59
	60	typedef bool (*provider_init_t)(void);
2b0cc3d3 EM	61	typedef void (*provider_destroy_t)(void);
2b0cc3d3 EM	62
89d22b9a EM	63	typedef bool (provider_start_t)(struct auth_client );
89d22b9a EM	64	typedef void (provider_cancel_t)(struct auth_client );
a51487e0	65	typedef void (provider_complete_t)(struct auth_client , provider_t);
89d22b9a	66
05e17ac2 EM	67	struct auth_provider
05e17ac2 EM	68	{
99e53867 EM	69	rb_dlink_node node;
	70
	71	provider_t id;
05e17ac2 EM	72
	73	provider_init_t init; /* Initalise the provider */
	74	provider_destroy_t destroy; /* Terminate the provider */
	75
89d22b9a	76	provider_start_t start; /* Perform authentication */
05e17ac2 EM	77	provider_cancel_t cancel; /* Authentication cancelled */
05e17ac2 EM	78	provider_complete_t completed; /* Callback for when other performers complete (think dependency chains) */
a51487e0 EM	79
a51487e0 EM	80	struct auth_opts_handler *opt_handlers;
05e17ac2 EM	81	};
05e17ac2 EM	82
9b5b2ded	83	extern rb_dlink_list auth_providers;
a52c7a8e	84	extern rb_dictionary *auth_clients;
3e875f62	85
18764319	86	extern struct auth_provider rdns_provider;
f1861e48	87	extern struct auth_provider ident_provider;
add80afd	88	extern struct auth_provider blacklist_provider;
9b5b2ded EM	89
	90	void load_provider(struct auth_provider *provider);
	91	void unload_provider(struct auth_provider *provider);
	92
05e17ac2 EM	93	void init_providers(void);
	94	void destroy_providers(void);
	95	void cancel_providers(struct auth_client *auth);
	96
91f870b3 EM	97	void provider_done(struct auth_client *auth, provider_t id);
91f870b3 EM	98	void accept_client(struct auth_client *auth, provider_t id);
f7b37c1d	99	void reject_client(struct auth_client auth, provider_t id, const char reason);
05e17ac2	100
05e17ac2 EM	101	void handle_new_connection(int parc, char *parv[]);
05e17ac2 EM	102
cdf15929	103	/* Provider is operating on this auth_client (set this if you have async work to do) */
a7d5aea1	104	static inline void set_provider_on(struct auth_client *auth, provider_t provider)
05e17ac2	105	{
3e875f62	106	auth->providers \|= (1 << provider);
05e17ac2 EM	107	}
	108
	109	/* Provider is no longer operating on this auth client (you should use provider_done) */
a7d5aea1	110	static inline void set_provider_off(struct auth_client *auth, provider_t provider)
2b0cc3d3	111	{
3e875f62	112	auth->providers &= ~(1 << provider);
2b0cc3d3 EM	113	}
2b0cc3d3 EM	114
a7d5aea1 EM	115	/* Set the provider to done (you should use provider_done) */
a7d5aea1 EM	116	static inline void set_provider_done(struct auth_client *auth, provider_t provider)
05e17ac2	117	{
a7d5aea1	118	auth->providers_done \|= (1 << provider);
05e17ac2 EM	119	}
	120
	121	/* Check if provider is operating on this auth client */
a7d5aea1	122	static inline bool is_provider_on(struct auth_client *auth, provider_t provider)
2b0cc3d3	123	{
3e875f62	124	return auth->providers & (1 << provider);
2b0cc3d3 EM	125	}
2b0cc3d3 EM	126
a7d5aea1	127	static inline bool is_provider_done(struct auth_client *auth, provider_t provider)
05e17ac2	128	{
a7d5aea1	129	return auth->providers_done & (1 << provider);
05e17ac2 EM	130	}
05e17ac2 EM	131
0f95a274	132	#endif /* __CHARYBDIS_AUTHD_PROVIDER_H__ */