/* * Copyright (c) 2000-2001 Apple Computer, Inc. All Rights Reserved. * * The contents of this file constitute Original Code as defined in and are * subject to the Apple Public Source License Version 1.2 (the 'License'). * You may not use this file except in compliance with the License. Please obtain * a copy of the License at http://www.apple.com/publicsource and read it before * using this file. * * This Original Code and all software distributed under the License are * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS * OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, INCLUDING WITHOUT * LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR * PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. Please see the License for the * specific language governing rights and limitations under the License. */ // // passphrases - canonical code to obtain passphrases // #ifndef _H_PASSPHRASES #define _H_PASSPHRASES #include "securityserver.h" #include "xdatabase.h" #include #include "SecurityAgentClient.h" // // The common machinery of retryable SecurityAgent queries // class SecurityAgentQuery : protected SecurityAgent::Client { typedef SecurityAgent::Reason Reason; public: SecurityAgentQuery(); virtual ~SecurityAgentQuery(); }; // // Specialized for "rogue app" alert queries // class QueryKeychainUse : public SecurityAgent::Client::KeychainChoice, public SecurityAgentQuery { public: void operator () (const char *database, const char *description, AclAuthorization action); }; // // Specialized for passphrase-yielding queries based on Credential markers // class QueryPassphrase : public SecurityAgentQuery { protected: QueryPassphrase(unsigned int maxTries) : maxRetries(maxTries) { } void query(const AccessCredentials *cred, CSSM_SAMPLE_TYPE relevantSampleType); virtual void queryInteractive(CssmOwnedData &passphrase) = 0; virtual void retryInteractive(CssmOwnedData &passphrase, Reason reason) = 0; protected: virtual Reason accept(CssmManagedData &passphrase, bool canRetry) = 0; private: const unsigned int maxRetries; }; // // A query for an existing passphrase // class QueryUnlock : public QueryPassphrase { static const int maxTries = 3; public: QueryUnlock(Database &db) : QueryPassphrase(maxTries), database(db) { } Database &database; void operator () (const AccessCredentials *cred); protected: void queryInteractive(CssmOwnedData &passphrase); void retryInteractive(CssmOwnedData &passphrase, Reason reason); Reason accept(CssmManagedData &passphrase, bool canRetry); }; // // A query for a new passphrase // class QueryNewPassphrase : public QueryPassphrase { static const int maxTries = 7; public: QueryNewPassphrase(Database::Common &common, Reason reason) : QueryPassphrase(maxTries), dbCommon(common), initialReason(reason), mPassphrase(CssmAllocator::standard(CssmAllocator::sensitive)), mPassphraseValid(false) { } Database::Common &dbCommon; void operator () (const AccessCredentials *cred, CssmOwnedData &passphrase); protected: void queryInteractive(CssmOwnedData &passphrase); void retryInteractive(CssmOwnedData &passphrase, Reason reason); Reason accept(CssmManagedData &passphrase, bool canRetry); private: Reason initialReason; CssmAutoData mPassphrase; bool mPassphraseValid; }; // // The "give user/passphrase in group" authorization dialog. // This class is not self-contained, since the AuthorizationEngine wants // to micro-manage the retry process. // class QueryAuthorizeByGroup : public SecurityAgentQuery { public: QueryAuthorizeByGroup() : mActive(false) { } bool operator () (const char *group, const char *candidateUser, char username[SecurityAgent::maxUsernameLength], char passphrase[SecurityAgent::maxPassphraseLength], Reason reason = SecurityAgent::userNotInGroup); void cancel(Reason reason); void done(); uid_t uid(); private: bool mActive; }; #endif //_H_PASSPHRASES