2014-05-12 10:50:33 +02:00
/*
MIT - Samba4 library
Copyright ( c ) 2010 , Simo Sorce < idra @ samba . org >
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 3 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program . If not , see < http : //www.gnu.org/licenses/>.
*/
# ifndef _MIT_SAMBA_H
# define _MIT_SAMBA_H
struct mit_samba_context {
struct auth_session_info * session_info ;
/* for compat with hdb plugin common code */
krb5_context context ;
struct samba_kdc_db_context * db_ctx ;
} ;
int mit_samba_context_init ( struct mit_samba_context * * _ctx ) ;
void mit_samba_context_free ( struct mit_samba_context * ctx ) ;
2014-08-06 15:41:05 +02:00
int mit_samba_generate_salt ( krb5_data * salt ) ;
int mit_samba_generate_random_password ( krb5_data * pwd ) ;
2014-05-12 10:50:33 +02:00
int mit_samba_get_principal ( struct mit_samba_context * ctx ,
2015-07-30 14:36:55 +02:00
krb5_const_principal principal ,
unsigned int kflags ,
2014-05-12 10:50:33 +02:00
krb5_db_entry * * _kentry ) ;
int mit_samba_get_firstkey ( struct mit_samba_context * ctx ,
krb5_db_entry * * _kentry ) ;
int mit_samba_get_nextkey ( struct mit_samba_context * ctx ,
krb5_db_entry * * _kentry ) ;
2016-09-29 02:03:35 +02:00
int mit_samba_get_pac ( struct mit_samba_context * smb_ctx ,
krb5_context context ,
2021-10-11 13:33:33 +02:00
uint32_t flags ,
2016-09-29 02:03:35 +02:00
krb5_db_entry * client ,
2021-12-13 08:33:05 +01:00
krb5_db_entry * server ,
2021-10-04 11:53:55 +02:00
krb5_keyblock * replaced_reply_key ,
2016-09-29 02:03:35 +02:00
krb5_pac * pac ) ;
2016-09-30 07:43:31 +02:00
krb5_error_code mit_samba_reget_pac ( struct mit_samba_context * ctx ,
krb5_context context ,
int flags ,
krb5_const_principal client_principal ,
krb5_db_entry * client ,
krb5_db_entry * server ,
krb5_db_entry * krbtgt ,
krb5_keyblock * krbtgt_keyblock ,
krb5_pac * pac ) ;
2021-10-04 11:53:55 +02:00
krb5_error_code mit_samba_update_pac ( struct mit_samba_context * ctx ,
krb5_context context ,
int flags ,
krb5_db_entry * client ,
krb5_db_entry * server ,
krb5_db_entry * signing_krbtgt ,
krb5_pac old_pac ,
krb5_pac new_pac ) ;
2014-05-12 10:50:33 +02:00
int mit_samba_check_client_access ( struct mit_samba_context * ctx ,
krb5_db_entry * client ,
const char * client_name ,
krb5_db_entry * server ,
const char * server_name ,
const char * netbios_name ,
bool password_change ,
DATA_BLOB * e_data ) ;
int mit_samba_check_s4u2proxy ( struct mit_samba_context * ctx ,
2021-11-22 20:09:31 +01:00
const krb5_db_entry * server ,
krb5_const_principal target_principal ) ;
2021-12-14 11:17:15 +01:00
krb5_error_code mit_samba_check_allowed_to_delegate_from (
struct mit_samba_context * ctx ,
krb5_const_principal client ,
krb5_const_principal server ,
krb5_pac header_pac ,
const krb5_db_entry * proxy ) ;
2014-05-12 10:50:33 +02:00
2015-07-30 14:46:48 +02:00
int mit_samba_kpasswd_change_password ( struct mit_samba_context * ctx ,
char * pwd ,
krb5_db_entry * db_entry ) ;
2015-05-20 17:19:35 +02:00
void mit_samba_zero_bad_password_count ( krb5_db_entry * db_entry ) ;
void mit_samba_update_bad_password_count ( krb5_db_entry * db_entry ) ;
2021-07-12 13:12:00 +02:00
bool mit_samba_princ_needs_pac ( krb5_db_entry * db_entry ) ;
2014-05-12 10:50:33 +02:00
# endif /* _MIT_SAMBA_H */