| blob | e2d12823dab8449ca39b4e078110d6e7cce6d9bd |
1 /*
2 * Copyright (c) 1997-2002 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 *
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 *
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
37 int
39 {
54 }
56 int
58 {
60 }
62 int
64 {
72 }
74 int
76 {
78 }
80 int
84 {
93 }
95 int
98 {
100 }
102 /*
103 * Some old databases may not have stored the salt with each key, which will
104 * break clients when aliases or canonicalization are used. Generate a
105 * default salt based on the real principal name in the entry to handle
106 * this case.
107 */
108 static krb5_error_code
110 {
111 krb5_error_code ret;
113 krb5_salt pwsalt;
130 }
139 }
144 }
146 static krb5_error_code
149 krb5_const_principal principal,
152 {
153 HDB_EntryOrAlias eoa;
156 krb5_error_code ret;
169 }
175 }
191 }
193 /* No alias chaining */
200 /*
201 * Whilst Windows does not canonicalize enterprise principal names if
202 * the canonicalize flag is unset, the original specification in
203 * draft-ietf-krb-wg-kerberos-referrals-03.txt says we should.
204 */
206 }
208 #if 0
209 /* HDB_F_GET_ANY indicates request originated from KDC (not kadmin) */
213 /* `principal' was alias but canon not req'd */
216 }
217 #endif
224 }
226 /*
227 * We have only one type of aliases in our HDB entries, but we really need two:
228 * hard and soft.
229 *
230 * Hard aliases should be treated as if they were distinct principals with the
231 * same keys.
232 *
233 * Soft aliases should be treated as configuration to issue referrals, and they
234 * can only result in referrals to other realms.
235 *
236 * Rather than add a type of aliases, we'll use a convention where the form of
237 * the target of the alias indicates whether the alias is hard or soft.
238 *
239 * TODO We could also use an attribute of the aliased entry.
240 */
241 static int
243 krb5_const_principal principal,
246 {
247 /* Target is a WELLKNOWN/REFERRALS/TARGET/... -> soft alias */
257 /*
258 * Pre-8.0 we had only soft aliases for a while, and one site used aliases
259 * of referrals-targetNN@TARGET-REALM.
260 */
267 /* All other cases are hard aliases */
269 }
271 krb5_error_code
274 {
275 krb5_error_code ret;
284 /* Decrypt the current keys */
289 }
290 /* Decrypt the key history too */
295 }
298 /* Decrypt the current keys */
303 }
307 /*
308 * Find and decrypt the keys from the history that we want,
309 * and swap them with the current keys
310 */
315 }
316 }
317 }
319 /*
320 * Generate default salt for any principals missing one; note such
321 * principals could include those for which a random (non-password)
322 * key was generated, but given the salt will be ignored by a keytab
323 * client it doesn't hurt to include the default salt.
324 */
329 }
330 }
337 /* Never return HDB_ERR_WRONG_REALM to kadm5 or other non-KDC callers */
344 /*
345 * This is a hard alias. We'll make the entry's name be the same as
346 * the alias.
347 *
348 * Except, we allow for disabling this for same-realm aliases, mainly
349 * for our tests.
350 */
356 /* EPNs are always soft */
363 }
364 }
366 }
368 /* Same realm -> not a referral, therefore this is a hard alias */
371 /* Soft alias to the same realm?! No. */
374 }
376 }
378 /* Not same realm && not hard alias */
380 }
382 static krb5_error_code
384 {
386 krb5_error_code code;
387 hdb_entry oldentry;
388 krb5_data value;
406 }
408 krb5_data akey;
416 }
420 }
421 }
424 }
426 static krb5_error_code
429 {
431 krb5_error_code code;
440 hdb_entry_alias entryalias;
452 /*
453 * Assuming hdb_check_aliases() was called, this must be a
454 * duplicate in the alias list.
455 */
457 }
461 }
463 }
465 /* Check if new aliases are already used for other entries */
466 static krb5_error_code
468 {
470 HDB_EntryOrAlias eoa;
490 /* New alias names an existing non-alias entry in the HDB */
495 /* New alias names an existing alias of a different entry */
498 /* New alias is a name that doesn't exist in the HDB */
504 }
506 }
508 /*
509 * Many HDB entries don't have `etypes' setup. Historically we use the
510 * enctypes of the selected keyset as the entry's supported enctypes, but that
511 * is problematic. By doing this at store time and, if need be, at fetch time,
512 * we can make sure to stop deriving supported etypes from keys in the long
513 * run. We also need kadm5/kadmin support for etypes. We'll use this function
514 * there to derive etypes when using a kadm5_principal_ent_t that lacks the new
515 * TL data for etypes.
516 */
517 krb5_error_code
519 {
530 /* There's no way that base_keys->val[i].keys.len == 0, but hey */
533 }
544 }
552 }
563 }
565 }
567 krb5_error_code
569 {
576 /* check if new aliases already is used */
595 }
607 }
623 /* remove aliases */
628 }
640 }
642 krb5_error_code
645 {
647 HDB_EntryOrAlias eoa;
651 /*
652 * We only allow deletion of entries by canonical name. To remove an
653 * alias use kadm5_modify_principal().
654 *
655 * We need to determine if this is an alias. We decode as a
656 * HDB_EntryOrAlias, which is expensive -- we could decode as a
657 * HDB_entry_alias instead and assume it's an entry if decoding fails...
658 */
666 }
670 }
678 }
686 }
688 /* PRF+(K_base, pad, keylen(etype)) */
689 static krb5_error_code
693 krb5int32 etype,
695 {
696 krb5_error_code ret;
698 krb5_data out;
715 }
717 /* PRF+(PRF+(K_base, princ, keylen(etype)), kvno, keylen(etype)) */
718 /* XXX Make it PRF+(PRF+(K_base, princ, keylen(K_base.etype)), and lift it, kvno, keylen(etype)) */
719 static krb5_error_code
722 krb5uint32 kvno,
724 krb5int32 etype,
726 {
728 EncryptionKey intermediate;
729 krb5_data pad;
741 /* Derive intermediate key for the given principal */
742 /* XXX Lift to optimize? */
750 /* Derive final key for `kvno' from intermediate key */
758 }
760 /*
761 * PRF+(PRF+(K_base, princ, keylen(etype)), kvno, keylen(etype)) for one
762 * enctype.
763 */
764 static krb5_error_code
767 krb5uint32 kvno,
768 krb5int32 etype,
772 {
775 Key nk;
780 /*
781 * The enctypes of the base keys is the list of enctypes to derive keys
782 * for. Still, we derive all keys from the first base key.
783 */
793 /*
794 * FIXME We need to finish kdc/kadm5/kadmin support for the `etypes' so
795 * we can reduce the number of keys in keytabs to just those in current
796 * use and only of *one* enctype.
797 *
798 * What we could do is derive *one* key and for the others output a
799 * one-byte key of the intended enctype (which will never work).
800 *
801 * We'll never need any keys but the first one...
802 */
803 }
808 }
810 /* Helper for derive_keys_for_kr() */
811 static krb5_error_code
815 krb5int32 etype,
816 krb5uint32 kvno,
819 {
827 }
829 /* Possibly derive and install in `h' a keyset identified by `t' */
830 static krb5_error_code
837 krb5int32 etype,
838 krb5uint32 kvno_wanted,
839 KerberosTime t,
841 {
842 krb5_error_code ret;
843 hdb_keyset dks;
845 krb5uint32 kvno;
851 /*
852 * Compute `kvno' and `set_time' given `t' and `krp'.
853 *
854 * There be signed 32-bit time_t dragons here.
855 *
856 * (t - krp->epoch < 0) is better than (krp->epoch < t), making us more
857 * tolerant of signed 32-bit time_t here near 2038. Of course, we have
858 * signed 32-bit time_t dragons elsewhere.
859 *
860 * We don't need to check for n == 0 && rotation_period_offset < 0 because
861 * only derive_keys_for_current_kr() calls us with non-zero rotation period
862 * offsets, and it will never call us in that case.
863 */
871 /*
872 * Since this principal is virtual, or has virtual keys, we're going to
873 * derive a "password expiration time" for it in order to help httpkadmind
874 * and other tools figure out when to request keys again.
875 *
876 * The kadm5 representation of principals does not include the set_time of
877 * keys/keysets, so we can't have httpkadmind derive a Cache-Control from
878 * that without adding yet another "TL data". Since adding TL data is a
879 * huge pain, we'll just use the `pw_end' field of `HDB_entry' to
880 * communicate when this principal's keys will change next.
881 */
886 /*
887 * If `h->pw_end[0]' == 0 then this must be the current period of the
888 * current KR we're deriving keys for. See upstairs.
889 *
890 * If there's more than a quarter of this time period left, then we'll
891 * set `h->pw_end[0]' to one quarter before the end of this time
892 * period. Else we'll set it to 1/4 after (we'll be including the next
893 * set of derived keys, so there's no harm in waiting that long to
894 * refetch).
895 */
898 else
900 }
903 /*
904 * Do not waste cycles computing keys not wanted or needed.
905 * A past kvno is too old if its set_time + rotation period is in the past
906 * by more than half a rotation period, since then no service ticket
907 * encrypted with keys of that kvno can still be extant.
908 *
909 * A future kvno is not coming up soon enough if we're more than a quarter
910 * of the rotation period away from it.
911 *
912 * Recall: the assumption for virtually-keyed principals is that services
913 * fetch their future keys frequently enough that they'll never miss having
914 * the keys they need.
915 */
921 }
926 }
928 /* Base key not found! */
934 }
936 }
945 }
947 /* Derive and install current keys, and possibly preceding or next keys */
948 static krb5_error_code
954 krb5int32 etype,
955 krb5uint32 kvno_wanted,
956 KerberosTime t,
958 KerberosTime future_epoch)
959 {
960 krb5_error_code ret;
962 /* derive_keys_for_kr() for current kvno and install as the current keys */
968 /* */
971 /*
972 * derive_keys_for_kr() for prev kvno if still needed -- it can only be
973 * needed if the prev kvno's start time is within this KR's epoch.
974 *
975 * Note that derive_keys_for_kr() can return without doing anything if this
976 * is isn't the current keyset. So these conditions need not be
977 * sufficiently narrow.
978 */
982 /*
983 * derive_keys_for_kr() for next kvno if near enough, but only if it
984 * doesn't start after the next KR's epoch.
985 */
994 }
999 }
1001 /*
1002 * Derive and install all keysets in `h' that `princ' needs at time `now'.
1003 *
1004 * This mutates the entry `h' to
1005 *
1006 * a) not have base keys,
1007 * b) have keys derived from the base keys according to
1008 * c) the key rotation periods for the base principal (possibly the same
1009 * principal if it's a concrete principal with virtual keys), and the
1010 * requested time, enctype, and kvno (all of which are optional, with zero
1011 * implying some default).
1012 *
1013 * Arguments:
1014 *
1015 * - `flags' is the flags passed to `hdb_fetch_kvno()'
1016 * - `princ' is the name of the principal we'll end up with in `entry'
1017 * - `h_is_namespace' indicates whether `h' is for a namespace or a concrete
1018 * principal (that might nonetheless have virtual/derived keys)
1019 * - `t' is the time such that the derived keys are for kvnos needed at `t'
1020 * - `etype' indicates what enctype to derive keys for (0 for all enctypes in
1021 * `entry->etypes')
1022 * - `kvno' requests a particular kvno, or all if zero
1023 *
1024 * The caller doesn't know if the principal needs key derivation -- we make
1025 * that determination in this function.
1026 *
1027 * Note that this function is fully deterministic for any given set of
1028 * arguments and HDB contents.
1029 *
1030 * Definitions:
1031 *
1032 * - A keyset is a set of keys for a single kvno.
1033 * - A keyset is relevant IFF:
1034 * - it is the keyset for a time period identified by `t' in a
1035 * corresponding KR
1036 * - it is a keyset for a past time period for which there may be extant,
1037 * not-yet-expired tickets that a service may need to decrypt
1038 * - it is a keyset for an upcoming time period that a service will need to
1039 * fetch before that time period becomes current, that way the service
1040 * can have keytab entries for those keys in time for when the KDC starts
1041 * encrypting service tickets to those keys
1042 *
1043 * This function derives the keyset(s) for the current KR first. The idea is
1044 * to optimize the order of resulting keytabs so that the most likely keys to
1045 * be used come first.
1046 *
1047 * Invariants:
1048 *
1049 * - KR metadata is sane because sanity is checked for when storing HDB
1050 * entries
1051 * - KRs are sorted by epoch in descending order; KR #0's epoch is the most
1052 * recent
1053 * - KR periods are non-zero (we divide by period)
1054 * - kvnos are numerically ordered and correspond to time periods
1055 * - within each KR, the kvnos for larger times are larger than (or equal
1056 * to) the kvnos of earlier times
1057 * - at KR boundaries, the first kvno of the newer boundary is larger than
1058 * the kvno of the last time period of the previous KR
1059 * - the time `t' must fall into exactly one KR period
1060 * - the time `t' must fall into exactly one period within a KR period
1061 * - at most two kvnos will be relevant from the KR that `t' falls into
1062 * (the current kvno for `t', and possibly either the preceding, or the
1063 * next)
1064 * - at most one kvno from non-current KRs will be derived: possibly one for a
1065 * preceding KR, and possibly one from an upcoming KR
1066 *
1067 * There can be:
1068 *
1069 * - no KR extension (not a namespace principal, and no virtual keys)
1070 * - 1, 2, or 3 KRs (see above)
1071 * - the newest KR may have the `deleted' flag, meaning "does not exist after
1072 * this epoch"
1073 *
1074 * Note that the last time period in any older KR can be partial.
1075 *
1076 * Timeline diagram:
1077 *
1078 * .......|--+--+...+--|---+---+---+...+--|----+...
1079 * T20 T10 T11 RT12 T1n T01
1080 * ^ ^ ^ ^ ^ ^ ^ T00
1081 * | | | T22 T2n | | ^
1082 * ^ | T21 | | |
1083 * princ | | epoch of | epoch of
1084 * did | | middle KR | newest epoch
1085 * not | | |
1086 * exist! | start of Note that T1n
1087 * | second kvno is shown as shorter
1088 * | in 1st epoch than preceding periods
1089 * |
1090 * ^
1091 * first KR's
1092 * epoch, and start
1093 * of its first kvno
1094 *
1095 * Tmn == the start of the Mth KR's Nth time period.
1096 * (higher M -> older KR; lower M -> newer KR)
1097 * (N is the reverse: lower N -> older time period in KR)
1098 * T20 == start of oldest KR -- no keys before this time will be derived.
1099 * T2n == last time period in oldest KR
1100 * T10 == start of middle KR
1101 * T1n == last time period in middle KR
1102 * T00 == start of newest KR
1103 * T0n == current time period in newest KR for wall clock time
1104 */
1105 static krb5_error_code
1108 krb5_const_principal princ,
1110 krb5_timestamp t,
1111 krb5int32 etype,
1112 krb5uint32 kvno,
1114 {
1115 HDB_Ext_KeyRotation kr;
1116 HDB_Ext_KeySet base_keys;
1131 /* Installing keys invalidates `ckr', so we copy it */
1137 }
1139 /* Get the base keys from the entry, and remove them */
1145 /* Make sure we have h->etypes */
1149 /* Keys not desired? Don't derive them! */
1154 }
1156 /* The principal name will be used in key derivation and error messages */
1160 /* Sanity check key rotations, determine current & last kr */
1166 else
1169 /*
1170 * Identify a current, next, and previous KRs if there are any.
1171 *
1172 * There can be up to three KRs, ordered by epoch, descending, making up a
1173 * timeline like:
1174 *
1175 * ...|---------|--------|------>
1176 * ^ | | |
1177 * | | | |
1178 * | | | Newest KR (kr.val[0])
1179 * | | Middle KR (kr.val[1])
1180 * | Oldest (last) KR (kr.val[2])
1181 * |
1182 * Before the begging of time for this namespace
1183 *
1184 * We step through these from future towards past looking for the best
1185 * future, current, and past KRs. The best current KR is one that has its
1186 * epoch nearest to `t' but in the past of `t'.
1187 *
1188 * We validate KRs before storing HDB entries with the KR extension, so we
1189 * can assume they are valid here. However, we do some validity checking,
1190 * and if they're not valid, we pick the best current KR and ignore the
1191 * others.
1192 *
1193 * In principle there cannot be two future KRs, but this function is
1194 * deterministic and takes a time value, so it should not enforce this just
1195 * so we can test. Enforcement of such rules should be done at store time.
1196 */
1198 /* Minimal validation: order and period */
1202 }
1207 }
1209 /*
1210 * `t' is in the future of this KR's epoch, so it's a candidate for
1211 * either current or past KR.
1212 */
1220 /* This KR is in the future of `t', a candidate for next KR */
1222 }
1223 }
1225 /* No current KR -> too soon */
1229 /* Check that the principal has not been marked deleted */
1232 "virtual principal %s does not exist "
1233 "because last key rotation period "
1236 /* See `derive_keys_for_kr()' */
1241 /*
1242 * Derive and set in `h' its current kvno and current keys.
1243 *
1244 * This will set h->kvno as well.
1245 *
1246 * This may set up to TWO keysets for the current key rotation period:
1247 * - current keys (h->keys and h->kvno)
1248 * - possibly one future
1249 * OR
1250 * possibly one past keyset in hist_keys for the current_kr
1251 */
1257 /*
1258 * Derive and set in `h' its future keys for next KR if it is soon to be
1259 * current.
1260 *
1261 * We want to derive keys for the first kvno of the next (future) KR if
1262 * it's sufficiently close to `t', meaning within 1 period of the current
1263 * KR, but we want these keys to be available sooner, so 1.5 of the current
1264 * period.
1265 */
1270 /*
1271 * Derive and set in `h' its past keys for the previous KR if its last time
1272 * period could still have extant, unexpired service tickets encrypted in
1273 * its keys.
1274 */
1279 /*
1280 * Impose a bound on h->max_life so that [when the KDC is the caller]
1281 * the KDC won't issue tickets longer lived than this.
1282 */
1290 /* Shouldn't happen */
1299 }
1301 /*
1302 * Pick a best kvno for the given principal at the given time.
1303 *
1304 * Implements the [hdb] new_service_key_delay configuration parameter.
1305 *
1306 * In order for disparate keytab provisioning systems such as OSKT and our own
1307 * kadmin ext_keytab and httpkadmind's get-keys to coexist, we need to be able
1308 * to force keys set by the former to not become current keys until users of
1309 * the latter have had a chance to fetch those keys into their keytabs. To do
1310 * this we have to search the list of keys in the entry looking for the newest
1311 * keys older than `now - db->new_service_key_delay'.
1312 *
1313 * The context is that OSKT's krb5_keytab is very happy to change keys in a way
1314 * that requires all members of a cluster to rekey together. If one also
1315 * wishes to have cluster members that opt out of this and just fetch current,
1316 * past, and future keys periodically, then the keys set by OSKT must not come
1317 * into effect until all the opt-out members have had a chance to fetch the new
1318 * keys.
1319 *
1320 * The assumption is that services will fetch new keys periodically, say, every
1321 * four hours. Then one can set `[hdb] new_service_key_delay = 8h' in the
1322 * configuration and new keys set by OSKT will not be used until 8h after they
1323 * are set.
1324 *
1325 * Naturally, this applies only to concrete principals with concrete keys.
1326 */
1327 static krb5_error_code
1331 krb5_timestamp now,
1332 krb5uint32 kvno,
1334 {
1336 HDB_Ext_KeySet keys;
1341 /*
1342 * If we want a specific kvno, or if the caller doesn't want new keys
1343 * delayed, or if there's no new-key delay configured, or we're not
1344 * fetching for use as a service principal, then we're out.
1345 */
1350 /* No history -> current keyset is the only one and therefore the best */
1355 /* Assume the current keyset is the best to start with */
1362 /* Current keyset starts out as best */
1366 /* Look for a better keyset in the history */
1369 /* No set_time? Ignore. Too new? Ignore */
1374 /*
1375 * Ignore the keyset with kvno 1 when the entry has better kvnos
1376 * because kadmin's `ank -r' command immediately changes the keys.
1377 */
1381 /*
1382 * This keyset's set_time older than the previous best? Ignore.
1383 * However, if the current best is the entry's current and that one
1384 * is too new, then don't ignore this one.
1385 */
1390 /*
1391 * If two good enough keysets have the same set_time, take the keyset
1392 * with the highest kvno.
1393 */
1397 /*
1398 * This keyset is clearly more current than the previous best keyset
1399 * but still old enough to use for encrypting tickets with.
1400 */
1403 }
1405 }
1407 /*
1408 * Make a WELLKNOWN/HOSTBASED-NAMESPACE/${svc}/${hostname} or
1409 * WELLKNOWN/HOSTBASED-NAMESPACE/${svc}/${hostname}/${domainname} principal
1410 * object, with the service and hostname components take from `wanted', but if
1411 * the service name is not in the list `db->virtual_hostbased_princ_svcs[]'
1412 * then use "_" (wildcard) instead. This way we can have different attributes
1413 * for different services in the same namespaces.
1414 *
1415 * For example, virtual hostbased service names for the "host" service might
1416 * have ok-as-delegate set, but ones for the "HTTP" service might not.
1417 */
1418 static krb5_error_code
1421 krb5_const_principal wanted,
1423 {
1442 }
1443 }
1447 /* First go around, need a namespace princ. Make it! */
1454 /* Support domain-based names */
1456 /* Caller frees `*namespace' on error */
1458 }
1460 static int
1462 krb5_const_principal princ)
1463 {
1464 return
1470 }
1472 /* See call site */
1473 static krb5_error_code
1475 krb5_const_principal wanted_princ,
1476 krb5_const_principal ns_princ,
1477 krb5_const_principal found_ns_princ,
1479 {
1488 "Aliases of host-based principals longer than "
1491 }
1496 /* Find `ns_host_part' as the tail of `wanted_host_part' */
1500 ;
1506 found_host_part =
1508 return
1512 }
1514 /*
1515 * Fix `h->principal' to match the desired `princ' in the namespace
1516 * `nsprinc' (which is either the same as `h->principal' or an alias
1517 * of it).
1518 */
1519 static krb5_error_code
1521 krb5_const_principal princ,
1522 krb5_const_principal nsprinc,
1524 {
1533 /* `nsprinc' must be a namespace principal */
1536 /*
1537 * `h' is the HDB entry for `nsprinc', and `nsprinc' is its canonical
1538 * name.
1539 *
1540 * Set the entry's principal name to the desired name. The keys will
1541 * be fixed next (upstairs, but don't forget to!).
1542 */
1545 }
1548 /*
1549 * The alias is a namespace, but the canonical name is not. WAT.
1550 *
1551 * Well, the KDC will just issue a referral anyways, so we can leave
1552 * `h->principal' as is...
1553 *
1554 * Remove all of `h's keys just in case, and leave
1555 * `h->principal' as-is.
1556 */
1560 choice_HDB_extension_data_hist_keys);
1561 }
1563 /*
1564 * A namespace alias of a namespace entry.
1565 *
1566 * We'll want to rewrite the original principal accordingly.
1567 *
1568 * E.g., if the caller wanted host/foo.ns.test.h5l.se and we
1569 * found WELLKNOWN/HOSTBASED-NAMESPACE/ns.test.h5l.se is an
1570 * alias of WELLKNOWN/HOSTBASED-NAMESPACE/ns.example.org, then
1571 * we'll want to treat host/foo.ns.test.h5l.se as an alias of
1572 * host/foo.ns.example.org.
1573 */
1586 s,
1587 NULL);
1588 }
1591 }
1593 /* Wrapper around db->hdb_fetch_kvno() that implements virtual princs/keys */
1594 static krb5_error_code
1597 krb5_const_principal princ,
1599 krb5_timestamp t,
1600 krb5int32 etype,
1601 krb5uint32 kvno,
1603 {
1625 /* Strip out any :port */
1629 /* Extra ':'s? No virtualization for you! */
1634 }
1635 }
1636 /* Count dots in `host' */
1639 hdots++;
1642 }
1648 /*
1649 * We break out of this loop with ret == 0 only if we found the HDB
1650 * entry we were looking for or the HDB entry for a matching namespace.
1651 *
1652 * Otherwise we break out with ret != 0, typically HDB_ERR_NOENTRY.
1653 *
1654 * First time through we lookup the principal as given.
1655 *
1656 * Next we lookup a namespace principal, stripping off hostname labels
1657 * from the left until we find one or get tired of looking or run out
1658 * of labels.
1659 */
1664 }
1669 /*
1670 * Breadcrumb:
1671 *
1672 * - if we found a concrete principal, but it's been marked
1673 * as now-virtual, then we must keep going
1674 *
1675 * But this will be coded in the future.
1676 *
1677 * Maybe we can take attributes from the concrete principal...
1678 */
1680 /*
1681 * The namespace's hostname will not have more labels than maxdots + 1.
1682 * Thus we truncate immediately down to maxdots + 1 if we haven't yet.
1683 *
1684 * Example: with maxdots == 3,
1685 * foo.bar.baz.app.blah.example -> baz.app.blah.example
1686 */
1689 /* tmp != NULL because maxdots > 0; we check to quiet linters */
1693 }
1694 tmp++;
1695 hdots--;
1696 }
1699 /* First go around, need a namespace princ. Make it! */
1702 /* Update the hostname component of the namespace principal */
1709 /* Strip off left-most label for the next go-around */
1711 tmp++;
1712 hdots--;
1714 }
1716 /*
1717 * If unencrypted keys were requested, derive them. There may not be any
1718 * key derivation to do, but that's decided in derive_keys().
1719 */
1723 /* Fix the principal name if namespaced */
1726 /* Derive keys if namespaced or virtual */
1729 ent);
1730 /* Pick the best kvno for this principal at the given time */
1735 }
1737 out:
1743 }
1745 /**
1746 * Fetch a principal's HDB entry, possibly generating virtual keys from base
1747 * keys according to strict key rotation schedules. If a time is given, other
1748 * than HDB I/O, this function is pure, thus usable for testing.
1749 *
1750 * HDB writers should use `db->hdb_fetch_kvno()' to avoid materializing virtual
1751 * principals.
1752 *
1753 * HDB readers should use this function rather than `db->hdb_fetch_kvno()'
1754 * unless they only want to see concrete principals and not bother generating
1755 * any virtual keys.
1756 *
1757 * @param context Context
1758 * @param db HDB
1759 * @param principal Principal name
1760 * @param flags Fetch flags
1761 * @param t For virtual keys, use this as the point in time (use zero to mean "now")
1762 * @param etype Key enctype (use KRB5_ENCTYPE_NULL to mean "preferred")
1763 * @param kvno Key version number (use zero to mean "current")
1764 * @param h Output HDB entry
1765 *
1766 * @return Zero or HDB_ERR_WRONG_REALM on success, an error code otherwise.
1767 */
1768 krb5_error_code
1771 krb5_const_principal principal,
1773 krb5_timestamp t,
1774 krb5int32 etype,
1775 krb5uint32 kvno,
1777 {
1778 krb5_error_code ret;
1779 krb5_timestamp now;
1787 /*
1788 * This shouldn't happen!
1789 *
1790 * Do not allow h->pw_end[0] to be in the past for virtual principals
1791 * outside testing. This is just to prevent the AS/TGS from failing.
1792 */
1794 }
1798 }
1800 size_t ASN1CALL
1802 {
1804 }
1806 size_t ASN1CALL
1808 {
1810 }
1812 size_t ASN1CALL
1814 {
1816 }
1818 void ASN1CALL
1820 {
1822 }
1824 void ASN1CALL
1826 {
1828 }
1830 void ASN1CALL
1832 {
1834 }
1836 size_t ASN1CALL
1838 {
1840 }
1842 size_t ASN1CALL
1844 {
1846 }
1848 size_t ASN1CALL
1850 {
1852 }
1854 int ASN1CALL
1859 {
1861 }
1863 int ASN1CALL
1868 {
1870 }
1872 int ASN1CALL
1877 {
1879 }
1881 int ASN1CALL
1886 {
1888 }
1890 int ASN1CALL
1895 {
1897 }
1899 int ASN1CALL
1904 {
1906 }