| blob | 757addd6e031be33756291b8a4196a52b4a108cd |
1 /* as.c High level client AS functions
2 * Copyright (C) 2002, 2003 Simon Josefsson
3 *
4 * This file is part of Shishi.
5 *
6 * Shishi is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 2 of the License, or
9 * (at your option) any later version.
10 *
11 * Shishi is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
15 *
16 * You should have received a copy of the GNU General Public License
17 * along with Shishi; if not, write to the Free Software
18 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
19 *
20 */
24 struct Shishi_as
25 {
27 Shishi_asn1 asreq;
28 Shishi_asn1 asrep;
29 Shishi_asn1 krberror;
31 };
33 /**
34 * shishi_as:
35 * @handle: shishi handle as allocated by shishi_init().
36 * @as: holds pointer to newly allocate Shishi_as structure.
37 *
38 * Allocate a new AS exchange variable.
39 *
40 * Return value: Returns SHISHI_OK iff successful.
41 **/
42 int
44 {
56 {
60 }
62 /* XXX there are reasons for having padata in AS-REQ */
69 {
73 }
77 {
81 }
92 }
94 /**
95 * shishi_as_done:
96 * @as: structure that holds information about AS exchange
97 *
98 * Deallocate resources associated with AS exchange. This should be
99 * called by the application when it no longer need to utilize the AS
100 * exchange handle.
101 **/
102 void
104 {
110 }
112 /* TODO: add shishi_as_clientserver(h,p,a,client,server) and make the
113 shishi_as_cnamerealmsname function take real cname/sname pointer
114 arrays. */
116 /**
117 * shishi_as_asreq:
118 * @as: structure that holds information about AS exchange
119 *
120 * Return value: Returns the generated AS-REQ packet from the AS
121 * exchange, or NULL if not yet set or an error occured.
122 **/
123 Shishi_asn1
125 {
127 }
129 /**
130 * shishi_as_req_build:
131 * @as: structure that holds information about AS exchange
132 *
133 * Possibly remove unset fields (e.g., rtime).
134 *
135 * Return value: Returns SHISHI_OK iff successful.
136 **/
137 int
139 {
147 }
149 /**
150 * shishi_as_req_set:
151 * @as: structure that holds information about AS exchange
152 * @asreq: asreq to store in AS.
153 *
154 * Set the AS-REQ in the AS exchange.
155 **/
156 void
158 {
162 }
164 /**
165 * shishi_as_req_der:
166 * @as: structure that holds information about AS exchange
167 * @out: output array with newly allocated DER encoding of AS-REQ.
168 * @outlen: length of output array with DER encoding of AS-REQ.
169 *
170 * DER encode AS-REQ. @out is allocated by this function, and it is
171 * the responsibility of caller to deallocate it.
172 *
173 * Return value: Returns SHISHI_OK iff successful.
174 **/
175 int
177 {
185 }
187 /**
188 * shishi_as_req_der_set:
189 * @as: structure that holds information about AS exchange
190 * @der: input array with DER encoded AP-REQ.
191 * @derlen: length of input array with DER encoded AP-REQ.
192 *
193 * DER decode AS-REQ and set it AS exchange. If decoding fails, the
194 * AS-REQ in the AS exchange remains.
195 *
196 * Return value: Returns SHISHI_OK.
197 **/
198 int
200 {
201 Shishi_asn1 asreq;
211 }
213 /**
214 * shishi_as_rep:
215 * @as: structure that holds information about AS exchange
216 *
217 * Return value: Returns the received AS-REP packet from the AS
218 * exchange, or NULL if not yet set or an error occured.
219 **/
220 Shishi_asn1
222 {
224 }
226 /**
227 * shishi_as_rep_process:
228 * @as: structure that holds information about AS exchange
229 * @key: user's key, used to encrypt the encrypted part of the AS-REP.
230 * @password: user's password, used if key is NULL.
231 *
232 * Process new AS-REP and set ticket. The key is used to decrypt the
233 * AP-REP. If both key and password is NULL, the user is queried for
234 * it.
235 *
236 * Return value: Returns SHISHI_OK iff successful.
237 **/
238 int
240 {
258 {
263 }
267 {
273 {
277 }
282 }
286 else
300 {
305 }
313 /* XXX */
317 }
319 /**
320 * shishi_as_rep_build:
321 * @as: structure that holds information about AS exchange
322 * @key: user's key, used to encrypt the encrypted part of the AS-REP.
323 *
324 * Build AS-REP.
325 *
326 * Return value: Returns SHISHI_OK iff successful.
327 **/
328 int
330 {
333 /* XXX there are reasons for having padata in AS-REP */
338 rc = shishi_enckdcreppart_populate_encticketpart
351 key,
352 SHISHI_KEYUSAGE_ENCASREPPART,
373 }
375 /**
376 * shishi_as_rep_der:
377 * @as: structure that holds information about AS exchange
378 * @out: output array with newly allocated DER encoding of AS-REP.
379 * @outlen: length of output array with DER encoding of AS-REP.
380 *
381 * DER encode AS-REP. @out is allocated by this function, and it is
382 * the responsibility of caller to deallocate it.
383 *
384 * Return value: Returns SHISHI_OK iff successful.
385 **/
386 int
388 {
396 }
398 /**
399 * shishi_as_rep_set:
400 * @as: structure that holds information about AS exchange
401 * @asrep: asrep to store in AS.
402 *
403 * Set the AS-REP in the AS exchange.
404 **/
405 void
407 {
411 }
413 /**
414 * shishi_as_rep_der_set:
415 * @as: structure that holds information about AS exchange
416 * @der: input array with DER encoded AP-REP.
417 * @derlen: length of input array with DER encoded AP-REP.
418 *
419 * DER decode AS-REP and set it AS exchange. If decoding fails, the
420 * AS-REP in the AS exchange remains.
421 *
422 * Return value: Returns SHISHI_OK.
423 **/
424 int
426 {
427 Shishi_asn1 asrep;
437 }
439 /**
440 * shishi_as_get_krberror:
441 * @as: structure that holds information about AS exchange
442 *
443 * Return value: Returns the received KRB-ERROR packet from the AS
444 * exchange, or NULL if not yet set or an error occured.
445 **/
446 Shishi_asn1
448 {
450 }
452 /**
453 * shishi_as_krberror_der:
454 * @as: structure that holds information about AS exchange
455 * @out: output array with newly allocated DER encoding of KRB-ERROR.
456 * @outlen: length of output array with DER encoding of KRB-ERROR.
457 *
458 * DER encode KRB-ERROR. @out is allocated by this function, and it is
459 * the responsibility of caller to deallocate it.
460 *
461 * Return value: Returns SHISHI_OK iff successful.
462 **/
463 int
465 {
473 }
475 /**
476 * shishi_as_krberror_set:
477 * @as: structure that holds information about AS exchange
478 * @krberror: krberror to store in AS.
479 *
480 * Set the KRB-ERROR in the AS exchange.
481 **/
482 void
484 {
488 }
490 /**
491 * shishi_as_get_tkt:
492 * @as: structure that holds information about AS exchange
493 *
494 * Return value: Returns the newly aquired tkt from the AS
495 * exchange, or NULL if not yet set or an error occured.
496 **/
497 Shishi_tkt *
499 {
501 }
503 /**
504 * shishi_as_tkt_set:
505 * @as: structure that holds information about AS exchange
506 * @tkt: tkt to store in AS.
507 *
508 * Set the Tkt in the AS exchange.
509 **/
510 void
512 {
514 }
516 /**
517 * shishi_as_sendrecv:
518 * @as: structure that holds information about AS exchange
519 *
520 * Send AS-REQ and receive AS-REP or KRB-ERROR. This is the initial
521 * authentication, usually used to acquire a Ticket Granting Ticket.
522 *
523 * Return value: Returns SHISHI_OK iff successful.
524 **/
525 int
527 {
538 {
546 }
557 }