search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
s3-libsmb/libsmb_file.c: replace cli_read_old() with cli_read()
[Samba/gebeck_regimport.git] / source3 / librpc / crypto / spnego.h
blob5e1a79b2af4c5ff78ffa3cce8a7f7793c2b3c515
1 /*
2 * SPNEGO Encapsulation
3 * RPC Pipe client routines
4 * Copyright (C) Simo Sorce 2010.
5 *
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 3 of the License, or
9 * (at your option) any later version.
10 *
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
15 *
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, see <http://www.gnu.org/licenses/>.
18 */
19
20 #ifndef _CLI_SPNEGO_H_
21 #define _CLI_SPENGO_H_
22
23 enum spnego_mech {
24 SPNEGO_NONE = 0,
25 SPNEGO_KRB5,
26 SPNEGO_NTLMSSP
27 };
28
29 struct spnego_context {
30 enum spnego_mech mech;
31
32 union {
33 struct auth_ntlmssp_state *ntlmssp_state;
34 struct gse_context *gssapi_state;
35 } mech_ctx;
36
37 char *oid_list[ASN1_MAX_OIDS];
38 char *mech_oid;
39
40 enum {
41 SPNEGO_CONV_INIT = 0,
42 SPNEGO_CONV_NEGO,
43 SPNEGO_CONV_AUTH_MORE,
44 SPNEGO_CONV_AUTH_CONFIRM,
45 SPNEGO_CONV_AUTH_DONE
46 } state;
47
48 bool do_sign;
49 bool do_seal;
50 bool is_dcerpc;
51
52 struct tsocket_address *remote_address;
53 };
54
55 NTSTATUS spnego_gssapi_init_client(TALLOC_CTX *mem_ctx,
56 bool do_sign, bool do_seal,
57 bool is_dcerpc,
58 const char *ccache_name,
59 const char *server,
60 const char *service,
61 const char *username,
62 const char *password,
63 struct spnego_context **spengo_ctx);
64 NTSTATUS spnego_ntlmssp_init_client(TALLOC_CTX *mem_ctx,
65 bool do_sign, bool do_seal,
66 bool is_dcerpc,
67 const char *domain,
68 const char *username,
69 const char *password,
70 struct spnego_context **spnego_ctx);
71
72 NTSTATUS spnego_get_client_auth_token(TALLOC_CTX *mem_ctx,
73 struct spnego_context *sp_ctx,
74 DATA_BLOB *spnego_in,
75 DATA_BLOB *spnego_out);
76
77 bool spnego_require_more_processing(struct spnego_context *sp_ctx);
78
79 NTSTATUS spnego_get_negotiated_mech(struct spnego_context *sp_ctx,
80 enum spnego_mech *type,
81 void **auth_context);
82
83 DATA_BLOB spnego_get_session_key(TALLOC_CTX *mem_ctx,
84 struct spnego_context *sp_ctx);
85
86 NTSTATUS spnego_sign(TALLOC_CTX *mem_ctx,
87 struct spnego_context *sp_ctx,
88 DATA_BLOB *data, DATA_BLOB *full_data,
89 DATA_BLOB *signature);
90 NTSTATUS spnego_sigcheck(TALLOC_CTX *mem_ctx,
91 struct spnego_context *sp_ctx,
92 DATA_BLOB *data, DATA_BLOB *full_data,
93 DATA_BLOB *signature);
94 NTSTATUS spnego_seal(TALLOC_CTX *mem_ctx,
95 struct spnego_context *sp_ctx,
96 DATA_BLOB *data, DATA_BLOB *full_data,
97 DATA_BLOB *signature);
98 NTSTATUS spnego_unseal(TALLOC_CTX *mem_ctx,
99 struct spnego_context *sp_ctx,
100 DATA_BLOB *data, DATA_BLOB *full_data,
101 DATA_BLOB *signature);
102
103 #endif /* _CLI_SPENGO_H_ */
reg import