2 * Copyright (c) 2005,2006 Secure Endpoints Inc.
4 * Permission is hereby granted, free of charge, to any person
5 * obtaining a copy of this software and associated documentation
6 * files (the "Software"), to deal in the Software without
7 * restriction, including without limitation the rights to use, copy,
8 * modify, merge, publish, distribute, sublicense, and/or sell copies
9 * of the Software, and to permit persons to whom the Software is
10 * furnished to do so, subject to the following conditions:
12 * The above copyright notice and this permission notice shall be
13 * included in all copies or substantial portions of the Software.
15 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
16 * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
17 * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
18 * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
19 * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
20 * ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
21 * CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
27 #include <afsconfig.h>
28 #include <afs/param.h>
33 #include<khmsgtypes.h>
40 static BOOL initialized = FALSE;
41 khm_int32 afs_credtype_id = -1;
42 khm_int32 krb5_credtype_id = -1;
43 khm_int32 krb4_credtype_id = -1;
44 khm_int32 afs_msg_type_id = -1;
45 khm_int32 afs_type_principal = -1;
46 khm_int32 afs_type_method = -1;
47 khm_int32 afs_attr_client_princ = -1;
48 khm_int32 afs_attr_server_princ = -1;
49 khm_int32 afs_attr_cell = -1;
50 khm_int32 afs_attr_method = -1;
51 khm_int32 afs_attr_realm = -1;
52 khm_handle afs_credset = NULL;
53 khm_handle afs_sub = NULL; /* AFS message subscription */
55 khm_int32 action_id_afs_help = 0;
59 afs_msg_system(khm_int32 msg_subtype, khm_ui_4 uparam, void * vparam);
62 afs_msg_kcdb(khm_int32 msg_subtype, khm_ui_4 uparam, void * vparam);
65 afs_msg_cred(khm_int32 msg_subtype, khm_ui_4 uparam, void * vparam);
68 afs_msg_act(khm_int32 msg_subtype, khm_ui_4 uparam, void * vparam);
71 afs_msg_ext(khm_int32 msg_subtype, khm_ui_4 uparam, void * vparam);
73 /* AFS help menu extensions */
75 /* some of the functions we will be calling are only available on API
76 version 7 and above of Network Identity Manager. Since these
77 aren't critical, we allow building using API version 5 or above,
78 but conditionally use the newer functionality if the plug-in is
79 loaded by a newer version of Network Identity Manager. */
81 #if KH_VERSION_API < 7
85 /* declarations from version 7 of the API */
87 (KHMAPI * pkhui_action_lock)(void);
90 (KHMAPI * pkhui_action_unlock)(void);
93 (KHMAPI * pkhui_refresh_actions)(void);
96 (KHMAPI * khm_ui_callback)(HWND hwnd_main_wnd, void * rock);
99 (KHMAPI * pkhui_request_UI_callback)(khm_ui_callback cb,
104 /* AFS plugin callback */
106 afs_plugin_cb(khm_int32 msg_type,
107 khm_int32 msg_subtype,
111 if (msg_type == KMSG_SYSTEM)
112 return afs_msg_system(msg_subtype, uparam, vparam);
113 if (msg_type == KMSG_KCDB)
114 return afs_msg_kcdb(msg_subtype, uparam, vparam);
115 if (msg_type == KMSG_CRED)
116 return afs_msg_cred(msg_subtype, uparam, vparam);
117 if (msg_type == KMSG_ACT)
118 return afs_msg_act(msg_subtype, uparam, vparam);
119 if (msg_type == afs_msg_type_id)
120 return afs_msg_ext(msg_subtype, uparam, vparam);
122 return KHM_ERROR_SUCCESS;
125 /* ktc_principal attribute type */
129 afs_type_principal_toString(const void * d,
136 struct ktc_principal * p;
137 wchar_t sprinc[512] = L"";
140 return KHM_ERROR_INVALID_PARAM;
142 p = (struct ktc_principal *) d;
144 // assume this works.
145 afs_princ_to_string(p, sprinc, sizeof(sprinc));
146 StringCbLength(sprinc, sizeof(sprinc), &cbsize);
147 cbsize += sizeof(wchar_t);
149 if(!buffer || *cb_buf < cbsize) {
151 return KHM_ERROR_TOO_LONG;
154 StringCbCopy(buffer, *cb_buf, sprinc);
158 return KHM_ERROR_SUCCESS;
162 afs_type_principal_isValid(const void * d,
165 /*TODO: check for more inconsistencies */
166 if(cbd != sizeof(struct ktc_principal))
172 afs_type_principal_comp(const void * d1,
177 struct ktc_principal * p1 = (struct ktc_principal *) d1;
178 struct ktc_principal * p2 = (struct ktc_principal *) d2;
181 r = strcmp(p1->name, p2->name);
184 r = strcmp(p1->instance, p2->instance);
187 r = strcmp(p1->cell, p2->cell);
192 afs_type_principal_dup(const void * d_src,
197 if(!d_dst || *cbd_dst < sizeof(struct ktc_principal)) {
198 *cbd_dst = sizeof(struct ktc_principal);
199 return KHM_ERROR_TOO_LONG;
202 memcpy(d_dst, d_src, sizeof(struct ktc_principal));
203 *cbd_dst = sizeof(struct ktc_principal);
205 return KHM_ERROR_SUCCESS;
209 afs_type_method_toString(const void * data,
212 khm_size * pcb_s_buf,
214 khm_int32 * pmethod = (khm_int32 *) data;
215 wchar_t wbuf[KHUI_MAXCCH_LONG_DESC];
218 if (!data || cb_data != sizeof(khm_int32))
219 return KHM_ERROR_INVALID_PARAM;
222 if (!afs_method_describe(*pmethod, flags, wbuf, sizeof(wbuf))) {
223 LoadString(hResModule,
224 IDS_NC_METHOD_INVALID,
229 StringCbLength(wbuf, sizeof(wbuf), &cb);
230 cb += sizeof(wchar_t);
232 if (!s_buf || *pcb_s_buf < cb) {
234 return KHM_ERROR_TOO_LONG;
236 StringCbCopy(s_buf, *pcb_s_buf, wbuf);
238 return KHM_ERROR_SUCCESS;
242 /* process KMSG_SYSTEM messages */
244 afs_msg_system(khm_int32 msg_subtype,
248 khm_int32 rv = KHM_ERROR_UNKNOWN;
250 switch(msg_subtype) {
251 case KMSG_SYSTEM_INIT:
253 /* If we are building against an older SDK, we should try to
254 load newer APIs if it's available at run-time. */
255 #if KH_VERSION_API < 7
260 khm_get_lib_version(&libver, &apiver);
265 hm_netidmgr = LoadLibrary(NIMDLLNAME);
267 if (hm_netidmgr == NULL)
270 pkhui_action_lock = (void (KHMAPI *)(void))
271 GetProcAddress(hm_netidmgr, API_khui_action_lock);
272 pkhui_action_unlock = (void (KHMAPI *)(void))
273 GetProcAddress(hm_netidmgr, API_khui_action_unlock);
274 pkhui_refresh_actions = (void (KHMAPI *)(void))
275 GetProcAddress(hm_netidmgr, API_khui_refresh_actions);
276 pkhui_request_UI_callback = (khm_int32 (KHMAPI *)(khm_ui_callback, void *))
277 GetProcAddress(hm_netidmgr, API_khui_request_UI_callback);
282 /* Add the icon now. On NIM v2.x, doing so after tokens were
283 reported may result in a deadlock as we try to switch to
284 the UI thread and the UI thread is blocked on a resource
285 request to this plug-in. */
286 afs_icon_set_state(AFSICON_SERVICE_STOPPED, NULL);
288 /* Perform critical registrations and data structure
292 wchar_t buf[KCDB_MAXCCH_LONG_DESC];
295 khm_handle csp_afscred = NULL;
296 khm_int32 disable_afscreds = FALSE;
298 ZeroMemory(&ct, sizeof(ct));
299 /* first of all, register the AFS token credential type */
300 ct.id = KCDB_CREDTYPE_AUTO;
301 ct.name = AFS_CREDTYPE_NAME;
303 if(LoadString(hResModule,
306 ARRAYLENGTH(buf)) != 0) {
307 StringCbLength(buf, sizeof(buf), &cbsize);
308 cbsize += sizeof(wchar_t);
309 ct.short_desc = PMALLOC(cbsize);
310 StringCbCopy(ct.short_desc, cbsize, buf);
312 ct.short_desc = NULL;
314 if(LoadString(hResModule,
317 ARRAYLENGTH(buf)) != 0) {
318 StringCbLength(buf, sizeof(buf), &cbsize);
319 cbsize += sizeof(wchar_t);
320 ct.long_desc = PMALLOC(cbsize);
321 StringCbCopy(ct.long_desc, cbsize, buf);
325 ct.icon = LoadImage(hResModule,
326 MAKEINTRESOURCE(IDI_AFSTOKEN),
328 0, 0, LR_DEFAULTSIZE);
330 kmq_create_subscription(afs_plugin_cb, &afs_sub);
333 kcdb_credtype_register(&ct, &afs_credtype_id);
335 /* register the attribute types */
339 ZeroMemory(&type, sizeof(type));
340 type.comp = afs_type_principal_comp;
341 type.dup = afs_type_principal_dup;
342 type.isValid = afs_type_principal_isValid;
343 type.toString = afs_type_principal_toString;
344 type.name = AFS_TYPENAME_PRINCIPAL;
345 type.id = KCDB_TYPE_INVALID;
346 type.cb_max = sizeof(struct ktc_principal);
347 type.cb_min = sizeof(struct ktc_principal);
348 type.flags = KCDB_TYPE_FLAG_CB_FIXED;
350 if(KHM_FAILED(kcdb_type_register(&type,
351 &afs_type_principal)))
357 kcdb_type *ti32 = NULL;
359 kcdb_type_get_info(KCDB_TYPE_INT32, &ti32);
361 ZeroMemory(&type, sizeof(type));
362 type.comp = ti32->comp;
363 type.dup = ti32->dup;
364 type.isValid = ti32->isValid;
365 type.toString = afs_type_method_toString;
366 type.name = AFS_TYPENAME_METHOD;
367 type.id = KCDB_TYPE_INVALID;
368 type.cb_max = sizeof(khm_int32);
369 type.cb_min = sizeof(khm_int32);
370 type.flags = KCDB_TYPE_FLAG_CB_FIXED;
372 if(KHM_FAILED(kcdb_type_register(&type,
373 &afs_type_method))) {
374 kcdb_type_release_info(ti32);
378 kcdb_type_release_info(ti32);
381 /* now register the attributes */
383 wchar_t short_desc[KCDB_MAXCCH_SHORT_DESC];
385 ZeroMemory(&att, sizeof(att));
387 att.type = KCDB_TYPE_STRING;
388 att.name = AFS_ATTRNAME_CELL;
389 LoadString(hResModule,
390 IDS_ATTR_CELL_SHORT_DESC,
392 ARRAYLENGTH(short_desc));
393 att.short_desc = short_desc;
394 att.long_desc = NULL;
395 att.id = KCDB_ATTR_INVALID;
396 att.flags = KCDB_ATTR_FLAG_TRANSIENT;
398 if(KHM_FAILED(rv = kcdb_attrib_register(&att,
404 wchar_t short_desc[KCDB_MAXCCH_SHORT_DESC];
406 ZeroMemory(&att, sizeof(att));
408 att.type = KCDB_TYPE_STRING;
409 att.name = AFS_ATTRNAME_REALM;
410 LoadString(hResModule,
411 IDS_ATTR_REALM_SHORT_DESC,
413 ARRAYLENGTH(short_desc));
414 att.short_desc = short_desc;
415 att.long_desc = NULL;
416 att.id = KCDB_ATTR_INVALID;
417 att.flags = KCDB_ATTR_FLAG_TRANSIENT;
419 if(KHM_FAILED(rv = kcdb_attrib_register(&att,
425 wchar_t short_desc[KCDB_MAXCCH_SHORT_DESC];
427 ZeroMemory(&att, sizeof(att));
429 att.type = afs_type_method;
430 att.name = AFS_ATTRNAME_METHOD;
431 LoadString(hResModule,
432 IDS_ATTR_METHOD_SHORT_DESC,
434 ARRAYLENGTH(short_desc));
435 att.short_desc = short_desc;
436 att.long_desc = NULL;
437 att.id = KCDB_ATTR_INVALID;
438 att.flags = KCDB_ATTR_FLAG_TRANSIENT;
440 if(KHM_FAILED(rv = kcdb_attrib_register(&att,
446 wchar_t short_desc[KCDB_MAXCCH_SHORT_DESC];
448 ZeroMemory(&att, sizeof(att));
450 att.type = afs_type_principal;
451 att.name = AFS_ATTRNAME_CLIENT_PRINC;
452 LoadString(hResModule,
453 IDS_ATTR_CLIENT_PRINC_SHORT_DESC,
455 ARRAYLENGTH(short_desc));
456 att.short_desc = short_desc;
457 att.long_desc = NULL;
458 att.id = KCDB_ATTR_INVALID;
459 att.flags = KCDB_ATTR_FLAG_TRANSIENT;
461 if(KHM_FAILED(rv = kcdb_attrib_register(&att, &afs_attr_client_princ)))
466 wchar_t short_desc[KCDB_MAXCCH_SHORT_DESC];
468 ZeroMemory(&att, sizeof(att));
470 att.type = afs_type_principal;
471 att.name = AFS_ATTRNAME_SERVER_PRINC;
472 LoadString(hResModule,
473 IDS_ATTR_SERVER_PRINC_SHORT_DESC,
474 short_desc, ARRAYLENGTH(short_desc));
475 att.short_desc = short_desc;
476 att.long_desc = NULL;
477 att.id = KCDB_ATTR_INVALID;
478 att.flags = KCDB_ATTR_FLAG_TRANSIENT;
480 if(KHM_FAILED(rv = kcdb_attrib_register(&att, &afs_attr_server_princ)))
484 /* afs_credset is our stock credentials set that we
485 use for all our credset needs (instead of creating
486 a new one every time) */
488 if(KHM_FAILED(rv = kcdb_credset_create(&afs_credset)))
491 if(KHM_FAILED(rv = kcdb_credtype_get_id(KRB5_CREDTYPE_NAME,
495 /* register the configuration nodes */
497 khui_config_node node_ident;
498 khui_config_node_reg reg;
499 wchar_t wshort_desc[KHUI_MAXCCH_SHORT_DESC];
500 wchar_t wlong_desc[KHUI_MAXCCH_LONG_DESC];
502 if (KHM_FAILED(rv = khui_cfg_open(NULL,
507 ZeroMemory(®, sizeof(reg));
508 reg.name = AFS_CONFIG_NODE_MAIN;
509 reg.short_desc = wshort_desc;
510 reg.long_desc = wlong_desc;
511 reg.h_module = hResModule;
512 reg.dlg_template = MAKEINTRESOURCE(IDD_CFG_AFS);
513 reg.dlg_proc = afs_cfg_main_proc;
515 LoadString(hResModule, IDS_CFG_MAIN_LONG,
516 wlong_desc, ARRAYLENGTH(wlong_desc));
517 LoadString(hResModule, IDS_CFG_MAIN_SHORT,
518 wshort_desc, ARRAYLENGTH(wshort_desc));
520 khui_cfg_register(NULL, ®);
522 ZeroMemory(®, sizeof(reg));
523 reg.name = AFS_CONFIG_NODE_IDS;
524 reg.short_desc = wshort_desc;
525 reg.long_desc = wshort_desc;
526 reg.h_module = hResModule;
527 reg.dlg_template = MAKEINTRESOURCE(IDD_CFG_IDS_TAB);
528 reg.dlg_proc = afs_cfg_ids_proc;
529 reg.flags = KHUI_CNFLAG_SUBPANEL;
530 LoadString(hResModule, IDS_CFG_IDS_TAB,
531 wshort_desc, ARRAYLENGTH(wshort_desc));
533 khui_cfg_register(node_ident, ®);
535 ZeroMemory(®, sizeof(reg));
536 reg.name = AFS_CONFIG_NODE_ID;
537 reg.short_desc = wshort_desc;
538 reg.long_desc = wshort_desc;
539 reg.h_module = hResModule;
540 reg.dlg_template = MAKEINTRESOURCE(IDD_CFG_ID_TAB);
541 reg.dlg_proc = afs_cfg_id_proc;
542 reg.flags = KHUI_CNFLAG_SUBPANEL | KHUI_CNFLAG_PLURAL;
543 LoadString(hResModule, IDS_CFG_ID_TAB,
544 wshort_desc, ARRAYLENGTH(wshort_desc));
546 khui_cfg_register(node_ident, ®);
549 /* and register the AFS message type */
550 rv = kmq_register_type(AFS_MSG_TYPENAME, &afs_msg_type_id);
552 if (KHM_SUCCEEDED(rv))
553 kmq_subscribe(afs_msg_type_id, afs_plugin_cb);
555 /* if the configuration is set to disable afscreds.exe,
556 then we look for the shortcut and remove it if
558 if (KHM_SUCCEEDED(kmm_get_plugin_config(AFS_PLUGIN_NAME,
561 wchar_t wpath[MAX_PATH];
563 khc_read_int32(csp_afscred, L"Disableafscreds",
566 if (disable_afscreds &&
567 afs_cfg_get_afscreds_shortcut(wpath)) {
573 khc_close_space(csp_afscred);
576 /* try to register the "AFS Help" menu item, if
579 khm_handle h_sub = NULL;
580 wchar_t short_desc[KHUI_MAXCCH_SHORT_DESC];
581 wchar_t long_desc[KHUI_MAXCCH_LONG_DESC];
583 #if KH_VERSION_API < 7
584 if (pkhui_action_lock == NULL ||
585 pkhui_action_unlock == NULL ||
586 pkhui_refresh_actions == NULL ||
587 pkhui_request_UI_callback == NULL)
592 kmq_create_subscription(afs_plugin_cb, &h_sub);
594 LoadString(hResModule, IDS_ACTION_AFS_HELP,
595 short_desc, ARRAYLENGTH(short_desc));
596 LoadString(hResModule, IDS_ACTION_AFS_HELP_TT,
597 long_desc, ARRAYLENGTH(long_desc));
599 action_id_afs_help = khui_action_create(NULL,
603 KHUI_ACTIONTYPE_TRIGGER,
606 if (action_id_afs_help != 0) {
609 khui_menu_def * help_menu;
610 khm_boolean refresh = FALSE;
614 help_menu = khui_find_menu(KHUI_MENU_HELP);
616 s = khui_menu_get_size(help_menu);
618 for (i=0; i < s; i++) {
619 khui_action_ref * aref;
621 aref = khui_menu_get_action(help_menu, i);
623 if (aref && !(aref->flags & KHUI_ACTIONREF_PACTION) &&
624 aref->action == KHUI_ACTION_HELP_INDEX) {
626 khui_menu_insert_action(help_menu,
636 khui_action_unlock();
639 khui_refresh_actions();
642 #if KH_VERSION_API < 7
650 PFREE(ct.short_desc);
654 /* now that the critical stuff is done, we move on to the
655 non-critical stuff */
656 if(KHM_SUCCEEDED(rv)) {
659 /* obtain existing tokens */
663 /* define this so that if there are no TGT's, we don't
664 deadlock trying to open a new creds dialog from within the
666 SetEnvironmentVariable(L"KERBEROSLOGIN_NEVER_PROMPT", L"1");
669 /* end of KMSG_SYSTEM_INIT */
671 case KMSG_SYSTEM_EXIT:
675 /* Try to remove the AFS plug-in action from Help menu if it
676 was successfully registered. Also, delete the action. */
677 if (action_id_afs_help != 0) {
679 khui_menu_def * help_menu;
680 khm_boolean menu_changed = FALSE;
684 help_menu = khui_find_menu(KHUI_MENU_HELP);
689 s = khui_menu_get_size(help_menu);
690 for (i=0; i < s; i++) {
691 khui_action_ref * aref = khui_menu_get_action(help_menu, i);
693 if (aref && !(aref->flags & KHUI_ACTIONREF_PACTION) &&
694 aref->action == action_id_afs_help) {
696 khui_menu_remove_action(help_menu, i);
703 khui_action_delete(action_id_afs_help);
705 khui_action_unlock();
708 khui_refresh_actions();
710 action_id_afs_help = 0;
713 if (afs_msg_type_id != -1) {
714 kmq_unsubscribe(afs_msg_type_id, afs_plugin_cb);
715 kmq_unregister_type(afs_msg_type_id);
717 if(afs_credtype_id >= 0) {
718 kcdb_credtype_unregister(afs_credtype_id);
721 if(afs_attr_client >= 0) {
722 kcdb_attrib_unregister(afs_attr_client);
725 if(afs_attr_cell >= 0) {
726 kcdb_attrib_unregister(afs_attr_cell);
728 if(afs_attr_realm >= 0) {
729 kcdb_attrib_unregister(afs_attr_realm);
731 if(afs_attr_method >= 0) {
732 kcdb_attrib_unregister(afs_attr_method);
734 if(afs_attr_client_princ >= 0) {
735 kcdb_attrib_unregister(afs_attr_client_princ);
737 if(afs_attr_server_princ >= 0) {
738 kcdb_attrib_unregister(afs_attr_server_princ);
740 if(afs_type_principal >= 0) {
741 kcdb_type_unregister(afs_type_principal);
743 if(afs_type_method >= 0) {
744 kcdb_type_unregister(afs_type_method);
748 kcdb_credset_delete(afs_credset);
750 /* afs_sub doesn't need to be deleted. That is taken care
751 of when unregistering the afs cred type */
754 #if KH_VERSION_API < 7
756 FreeLibrary(hm_netidmgr);
758 pkhui_action_lock = NULL;
759 pkhui_action_unlock = NULL;
760 pkhui_refresh_actions = NULL;
761 pkhui_request_UI_callback = NULL;
764 rv = KHM_ERROR_SUCCESS;
766 /* end of KMSG_SYSTEM_EXIT */
771 /* process KMSG_KCDB messages */
773 afs_msg_kcdb(khm_int32 msg_subtype,
777 khm_int32 rv = KHM_ERROR_SUCCESS;
779 /* we don't really do anything with this yet */
781 switch(msg_subtype) {
790 static khm_int32 KHMAPI
791 afs_cred_destroy_proc(khm_handle cred, void * rock) {
794 if (KHM_FAILED(kcdb_cred_get_type(cred, &t)) ||
795 t != afs_credtype_id)
796 return KHM_ERROR_SUCCESS;
798 afs_unlog_cred(cred);
800 return KHM_ERROR_SUCCESS;
803 /* process KMSG_CRED messages */
805 afs_msg_cred(khm_int32 msg_subtype,
809 khm_int32 rv = KHM_ERROR_SUCCESS;
811 switch(msg_subtype) {
812 case KMSG_CRED_REFRESH:
816 case KMSG_CRED_DESTROY_CREDS:
818 khui_action_context * ctx;
820 ctx = (khui_action_context *) vparam;
824 _report_cs0(KHERR_INFO, L"Destroying AFS Tokens");
827 kcdb_credset_apply(ctx->credset,
828 afs_cred_destroy_proc,
838 if (IS_CRED_ACQ_MSG(msg_subtype))
839 return afs_msg_newcred(msg_subtype, uparam, vparam);
847 help_launcher(HWND hwnd_main, void * rock) {
848 afs_html_help(hwnd_main, NULL, HH_DISPLAY_TOC, 0);
850 return KHM_ERROR_SUCCESS;
854 afs_msg_act(khm_int32 msg_subtype,
858 khm_int32 rv = KHM_ERROR_SUCCESS;
860 if (msg_subtype == KMSG_ACT_ACTIVATE &&
861 uparam == (khm_ui_4)action_id_afs_help) {
863 khui_request_UI_callback(help_launcher, NULL);
git://git.openafs.org / openafs.git / blob