firebird-mirror/src/jrd/jrd_pwd.h

/*
 *	PROGRAM:	JRD Access Method
 *	MODULE:		jrd_pwd.h
 *	DESCRIPTION:	User information database name
 *
 * The contents of this file are subject to the Interbase Public
 * License Version 1.0 (the "License"); you may not use this file
 * except in compliance with the License. You may obtain a copy
 * of the License at http://www.Inprise.com/IPL.html
 *
 * Software distributed under the License is distributed on an
 * "AS IS" basis, WITHOUT WARRANTY OF ANY KIND, either express
 * or implied. See the License for the specific language governing
 * rights and limitations under the License.
 *
 * The Original Code was created by Inprise Corporation
 * and its predecessors. Portions created by Inprise Corporation are
 * Copyright (C) Inprise Corporation.
 *
 * All Rights Reserved.
 * Contributor(s): ______________________________________.
 *
 * 2002.10.29 Sean Leyne - Removed obsolete "Netware" port
 * 2003.02.02 Dmitry Yemanov: Implemented cached security database connection
 */

#ifndef JRD_PWD_H
#define JRD_PWD_H

#include "../jrd/ibase.h"
#include "../common/utils_proto.h"
#include "../jrd/sha.h"
#include "gen/iberror.h"
#include "../common/classes/ClumpletWriter.h"

#include "../auth/AuthInterface.h"

#ifdef HAVE_STDLIB_H
#include <stdlib.h>
#endif
#include <time.h>

namespace Auth {

const size_t MAX_PASSWORD_ENC_LENGTH = 12;		// passed by remote protocol
const size_t MAX_PASSWORD_LENGTH = 64;			// used to store passwords internally
static const char* const PASSWORD_SALT = "9z";	// for old ENC_crypt()
const size_t SALT_LENGTH = 12;					// measured after base64 coding

class SecurityDatabase
{
public:
	static void getPath(char* path_buffer)
	{
		static const char* USER_INFO_NAME = "security2.fdb";
		Firebird::PathName name = fb_utils::getPrefix(fb_utils::FB_DIR_SECDB, USER_INFO_NAME);
		name.copyTo(path_buffer, MAXPATHLEN);
	}

	static Result verify(WriterInterface* authBlock,
						 Firebird::ClumpletReader& originalDpb);

	static void shutdown(void*);

	static void hash(Firebird::string& h, const Firebird::string& userName, const TEXT* passwd)
	{
		Firebird::string salt;
		Jrd::CryptSupport::random(salt, SALT_LENGTH);
		hash(h, userName, passwd, salt);
	}

	static void hash(Firebird::string& h,
					 const Firebird::string& userName,
					 const Firebird::string& passwd,
					 const Firebird::string& oldHash)
	{
		Firebird::string salt(oldHash);
		salt.resize(SALT_LENGTH, '=');
		Firebird::string allData(salt);
		allData += userName;
		allData += passwd;
		Jrd::CryptSupport::hash(h, allData);
		h = salt + h;
	}

private:
	Firebird::Mutex mutex;

	ISC_STATUS_ARRAY status;

	isc_db_handle lookup_db;
	isc_req_handle lookup_req;

	int timer;
	char user_info_name[MAXPATHLEN];

	void init();
	void fini();
	bool lookup_user(const char*, char*);
	void prepare();
	void checkStatus(const char* callName, ISC_STATUS userError = isc_psw_db_error);

	static SecurityDatabase instance;

	SecurityDatabase()
		: lookup_db(0), lookup_req(0), timer(0)
	{
	}
};

class SecurityDatabaseServer : public ServerPlugin
{
public:
	ServerInstance* instance();
	void getName(const char** data, unsigned short* dataSize);
	void release();
};

class SecurityDatabaseServerInstance : public ServerInstance
{
public:

	Result startAuthentication(bool isService, const char* dbName,
							   const unsigned char* dpb, unsigned int dpbSize,
							   WriterInterface* writerInterface);
	Result contAuthentication(WriterInterface* writerInterface,
							  const unsigned char* data, unsigned int size);
	void getData(const unsigned char** data, unsigned short* dataSize);
	void release();
};

} // namespace Auth

#endif // JRD_PWD_H
Opps, I should at least commit the newly renamed file :-) 2003-02-13 23:44:00 +01:00			`/*`
			`* PROGRAM: JRD Access Method`
Fixed more issues with pwd.h. 2003-02-19 07:14:39 +01:00			`* MODULE: jrd_pwd.h`
Opps, I should at least commit the newly renamed file :-) 2003-02-13 23:44:00 +01:00			`* DESCRIPTION: User information database name`
			`*`
			`* The contents of this file are subject to the Interbase Public`
			`* License Version 1.0 (the "License"); you may not use this file`
			`* except in compliance with the License. You may obtain a copy`
			`* of the License at http://www.Inprise.com/IPL.html`
			`*`
			`* Software distributed under the License is distributed on an`
			`* "AS IS" basis, WITHOUT WARRANTY OF ANY KIND, either express`
			`* or implied. See the License for the specific language governing`
			`* rights and limitations under the License.`
			`*`
			`* The Original Code was created by Inprise Corporation`
			`* and its predecessors. Portions created by Inprise Corporation are`
			`* Copyright (C) Inprise Corporation.`
			`*`
			`* All Rights Reserved.`
			`* Contributor(s): ______________________________________.`
			`*`
			`* 2002.10.29 Sean Leyne - Removed obsolete "Netware" port`
			`* 2003.02.02 Dmitry Yemanov: Implemented cached security database connection`
			`*/`

extern cleaning removing underscores in macros DLL_EXPORT cleaning 2003-10-03 03:53:34 +02:00			`#ifndef JRD_PWD_H`
			`#define JRD_PWD_H`
Opps, I should at least commit the newly renamed file :-) 2003-02-13 23:44:00 +01:00
			`#include "../jrd/ibase.h"`
Fixed CORE-2601: fine tuning of the installation directories does not work in configure 2009-09-11 12:49:46 +02:00			`#include "../common/utils_proto.h"`
replaced platform-dependent SHA1 with in-tree sha.cpp 2004-11-14 19:09:14 +01:00			`#include "../jrd/sha.h"`
Do not ignore errors in our API calls when working with security database 2008-09-04 15:16:59 +02:00			`#include "gen/iberror.h"`
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`#include "../common/classes/ClumpletWriter.h"`

			`#include "../auth/AuthInterface.h"`

take autoconfig.h into account 2004-11-16 12:41:35 +01:00			`#ifdef HAVE_STDLIB_H`
replaced platform-dependent SHA1 with in-tree sha.cpp 2004-11-14 19:09:14 +01:00			`#include <stdlib.h>`
take autoconfig.h into account 2004-11-16 12:41:35 +01:00			`#endif`
security fix 1. Use SHA1 hash instead of ENC_crypt. 2. Disable any remote (non-embedded) access to security.fdb. 3. Use services in gsec and isc_*_user() fucntions. In gsec switch -database replaced with -server. 4. Protect from attempts to brut-force accounts/passwords. 2004-11-07 15:50:53 +01:00			`#include <time.h>`
Opps, I should at least commit the newly renamed file :-) 2003-02-13 23:44:00 +01:00
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`namespace Auth {`

Fixed some warnings 2009-04-03 12:49:07 +02:00			`const size_t MAX_PASSWORD_ENC_LENGTH = 12; // passed by remote protocol`
			`const size_t MAX_PASSWORD_LENGTH = 64; // used to store passwords internally`
Misc 2009-04-04 18:28:33 +02:00			`static const char* const PASSWORD_SALT = "9z"; // for old ENC_crypt()`
Fixed some warnings 2009-04-03 12:49:07 +02:00			`const size_t SALT_LENGTH = 12; // measured after base64 coding`
Opps, I should at least commit the newly renamed file :-) 2003-02-13 23:44:00 +01:00
			`class SecurityDatabase`
			`{`
			`public:`
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`static void getPath(char* path_buffer)`
security fix 1. Use SHA1 hash instead of ENC_crypt. 2. Disable any remote (non-embedded) access to security.fdb. 3. Use services in gsec and isc_*_user() fucntions. In gsec switch -database replaced with -server. 4. Protect from attempts to brut-force accounts/passwords. 2004-11-07 15:50:53 +01:00			`{`
The merge continued. 2008-01-16 10:29:37 +01:00			`static const char* USER_INFO_NAME = "security2.fdb";`
Fixed CORE-2601: fine tuning of the installation directories does not work in configure 2009-09-11 12:49:46 +02:00			`Firebird::PathName name = fb_utils::getPrefix(fb_utils::FB_DIR_SECDB, USER_INFO_NAME);`
			`name.copyTo(path_buffer, MAXPATHLEN);`
security fix 1. Use SHA1 hash instead of ENC_crypt. 2. Disable any remote (non-embedded) access to security.fdb. 3. Use services in gsec and isc_*_user() fucntions. In gsec switch -database replaced with -server. 4. Protect from attempts to brut-force accounts/passwords. 2004-11-07 15:50:53 +01:00			`}`

Misc 2010-01-24 16:18:43 +01:00			`static Result verify(WriterInterface* authBlock,`
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`Firebird::ClumpletReader& originalDpb);`

Misc 2010-01-24 18:15:57 +01:00			`static void shutdown(void*);`
Opps, I should at least commit the newly renamed file :-) 2003-02-13 23:44:00 +01:00
Style. 2008-12-22 10:00:05 +01:00			`static void hash(Firebird::string& h, const Firebird::string& userName, const TEXT* passwd)`
security fix 1. Use SHA1 hash instead of ENC_crypt. 2. Disable any remote (non-embedded) access to security.fdb. 3. Use services in gsec and isc_*_user() fucntions. In gsec switch -database replaced with -server. 4. Protect from attempts to brut-force accounts/passwords. 2004-11-07 15:50:53 +01:00			`{`
			`Firebird::string salt;`
replaced platform-dependent SHA1 with in-tree sha.cpp 2004-11-14 19:09:14 +01:00			`Jrd::CryptSupport::random(salt, SALT_LENGTH);`
security fix 1. Use SHA1 hash instead of ENC_crypt. 2. Disable any remote (non-embedded) access to security.fdb. 3. Use services in gsec and isc_*_user() fucntions. In gsec switch -database replaced with -server. 4. Protect from attempts to brut-force accounts/passwords. 2004-11-07 15:50:53 +01:00			`hash(h, userName, passwd, salt);`
			`}`

Remove trailing spaces (.h files) 2008-12-05 01:56:15 +01:00			`static void hash(Firebird::string& h,`
			`const Firebird::string& userName,`
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`const Firebird::string& passwd,`
security fix 1. Use SHA1 hash instead of ENC_crypt. 2. Disable any remote (non-embedded) access to security.fdb. 3. Use services in gsec and isc_*_user() fucntions. In gsec switch -database replaced with -server. 4. Protect from attempts to brut-force accounts/passwords. 2004-11-07 15:50:53 +01:00			`const Firebird::string& oldHash)`
			`{`
			`Firebird::string salt(oldHash);`
			`salt.resize(SALT_LENGTH, '=');`
			`Firebird::string allData(salt);`
			`allData += userName;`
			`allData += passwd;`
replaced platform-dependent SHA1 with in-tree sha.cpp 2004-11-14 19:09:14 +01:00			`Jrd::CryptSupport::hash(h, allData);`
security fix 1. Use SHA1 hash instead of ENC_crypt. 2. Disable any remote (non-embedded) access to security.fdb. 3. Use services in gsec and isc_*_user() fucntions. In gsec switch -database replaced with -server. 4. Protect from attempts to brut-force accounts/passwords. 2004-11-07 15:50:53 +01:00			`h = salt + h;`
			`}`

Opps, I should at least commit the newly renamed file :-) 2003-02-13 23:44:00 +01:00			`private:`
Mutexes cleanup: 1. Make all firebird mutexes recursive. 2. Enable exceptions to be thrown by mutexes and process them in code where needed. 3. Catch and ignore exceptions in various MutexGuard dtors. 2008-02-05 09:21:18 +01:00			`Firebird::Mutex mutex;`
Fixed threading issues in the security database manager. 2003-05-02 20:41:12 +02:00
Introduce of ISC_STATUS_ARRAY 2003-04-16 12:18:51 +02:00			`ISC_STATUS_ARRAY status;`
Opps, I should at least commit the newly renamed file :-) 2003-02-13 23:44:00 +01:00
			`isc_db_handle lookup_db;`
			`isc_req_handle lookup_req;`

Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`int timer;`
			`char user_info_name[MAXPATHLEN];`
Opps, I should at least commit the newly renamed file :-) 2003-02-13 23:44:00 +01:00
			`void init();`
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`void fini();`
			`bool lookup_user(const char, char);`
Do not ignore errors in our API calls when working with security database 2008-09-04 15:16:59 +02:00			`void prepare();`
			`void checkStatus(const char* callName, ISC_STATUS userError = isc_psw_db_error);`
Opps, I should at least commit the newly renamed file :-) 2003-02-13 23:44:00 +01:00
A few corrections. 2003-10-03 14:28:54 +02:00			`static SecurityDatabase instance;`
Opps, I should at least commit the newly renamed file :-) 2003-02-13 23:44:00 +01:00
Enabled security database connection caching and brute-force attack protection for SuperClassic. This code is almost useless for the regular Classic, but it doesn't hurt either. 2008-05-02 13:10:00 +02:00			`SecurityDatabase()`
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`: lookup_db(0), lookup_req(0), timer(0)`
Fixed CORE-1726: isc_service_start failed, use InitHolder for SecurityDatabase in services too. 2008-02-13 14:10:23 +01:00			`{`
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`}`
Opps, I should at least commit the newly renamed file :-) 2003-02-13 23:44:00 +01:00			`};`

Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`class SecurityDatabaseServer : public ServerPlugin`
The merge continued. 2008-01-16 10:29:37 +01:00			`{`
			`public:`
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`ServerInstance* instance();`
Better approach to const correctnes of auth interfaces - thanks to Claudio 2010-01-27 17:51:26 +01:00			`void getName(const char** data, unsigned short* dataSize);`
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`void release();`
The merge continued. 2008-01-16 10:29:37 +01:00			`};`

Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`class SecurityDatabaseServerInstance : public ServerInstance`
			`{`
			`public:`
Misc 2010-01-24 16:18:43 +01:00
			`Result startAuthentication(bool isService, const char* dbName,`
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`const unsigned char* dpb, unsigned int dpbSize,`
			`WriterInterface* writerInterface);`
Misc 2010-01-24 16:18:43 +01:00			`Result contAuthentication(WriterInterface* writerInterface,`
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`const unsigned char* data, unsigned int size);`
Better approach to const correctnes of auth interfaces - thanks to Claudio 2010-01-27 17:51:26 +01:00			`void getData(const unsigned char** data, unsigned short* dataSize);`
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`void release();`
			`};`
The merge continued. 2008-01-16 10:29:37 +01:00
Moved authentication code from engine to remote listener. Get ready for authentication plugins. 2010-01-22 15:55:11 +01:00			`} // namespace Auth`
The merge continued. 2008-01-16 10:29:37 +01:00
Enabled security database connection caching and brute-force attack protection for SuperClassic. This code is almost useless for the regular Classic, but it doesn't hurt either. 2008-05-02 13:10:00 +02:00			`#endif // JRD_PWD_H`