| blob | a7e25a48d9a33e91c1bb998c5637d3f73d632cb4 |
1 /* as.c --- High level client AS functions
2 * Copyright (C) 2002, 2003, 2004, 2006 Simon Josefsson
3 *
4 * This file is part of Shishi.
5 *
6 * Shishi is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 2 of the License, or
9 * (at your option) any later version.
10 *
11 * Shishi is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
15 *
16 * You should have received a copy of the GNU General Public License
17 * along with Shishi; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA
19 *
20 */
24 struct Shishi_as
25 {
27 Shishi_asn1 asreq;
28 Shishi_asn1 asrep;
29 Shishi_asn1 krberror;
31 };
33 /**
34 * shishi_as:
35 * @handle: shishi handle as allocated by shishi_init().
36 * @as: holds pointer to newly allocate Shishi_as structure.
37 *
38 * Allocate a new AS exchange variable.
39 *
40 * Return value: Returns SHISHI_OK iff successful.
41 **/
42 int
44 {
56 {
60 }
64 {
68 }
72 {
76 }
87 }
89 /**
90 * shishi_as_done:
91 * @as: structure that holds information about AS exchange
92 *
93 * Deallocate resources associated with AS exchange. This should be
94 * called by the application when it no longer need to utilize the AS
95 * exchange handle.
96 **/
97 void
99 {
105 }
107 /* TODO: add shishi_as_clientserver(h,p,a,client,server) and make the
108 shishi_as_cnamerealmsname function take real cname/sname pointer
109 arrays. */
111 /**
112 * shishi_as_req:
113 * @as: structure that holds information about AS exchange
114 *
115 * Get ASN.1 AS-REQ structure from AS exchange.
116 *
117 * Return value: Returns the generated AS-REQ packet from the AS
118 * exchange, or NULL if not yet set or an error occured.
119 **/
120 Shishi_asn1
122 {
124 }
126 /**
127 * shishi_as_req_build:
128 * @as: structure that holds information about AS exchange
129 *
130 * Possibly remove unset fields (e.g., rtime).
131 *
132 * Return value: Returns SHISHI_OK iff successful.
133 **/
134 int
136 {
144 }
146 /**
147 * shishi_as_req_set:
148 * @as: structure that holds information about AS exchange
149 * @asreq: asreq to store in AS.
150 *
151 * Set the AS-REQ in the AS exchange.
152 **/
153 void
155 {
159 }
161 /**
162 * shishi_as_req_der:
163 * @as: structure that holds information about AS exchange
164 * @out: output array with newly allocated DER encoding of AS-REQ.
165 * @outlen: length of output array with DER encoding of AS-REQ.
166 *
167 * DER encode AS-REQ. @out is allocated by this function, and it is
168 * the responsibility of caller to deallocate it.
169 *
170 * Return value: Returns SHISHI_OK iff successful.
171 **/
172 int
174 {
182 }
184 /**
185 * shishi_as_req_der_set:
186 * @as: structure that holds information about AS exchange
187 * @der: input array with DER encoded AP-REQ.
188 * @derlen: length of input array with DER encoded AP-REQ.
189 *
190 * DER decode AS-REQ and set it AS exchange. If decoding fails, the
191 * AS-REQ in the AS exchange remains.
192 *
193 * Return value: Returns SHISHI_OK.
194 **/
195 int
197 {
198 Shishi_asn1 asreq;
208 }
210 /**
211 * shishi_as_rep:
212 * @as: structure that holds information about AS exchange
213 *
214 * Get ASN.1 AS-REP structure from AS exchange.
215 *
216 * Return value: Returns the received AS-REP packet from the AS
217 * exchange, or NULL if not yet set or an error occured.
218 **/
219 Shishi_asn1
221 {
223 }
225 /**
226 * shishi_as_rep_process:
227 * @as: structure that holds information about AS exchange
228 * @key: user's key, used to encrypt the encrypted part of the AS-REP.
229 * @password: user's password, used if key is NULL.
230 *
231 * Process new AS-REP and set ticket. The key is used to decrypt the
232 * AP-REP. If both key and password is NULL, the user is queried for
233 * it.
234 *
235 * Return value: Returns SHISHI_OK iff successful.
236 **/
237 int
239 {
253 {
260 {
266 }
272 {
276 }
281 }
285 else
299 {
304 }
312 /* XXX */
316 }
318 /**
319 * shishi_as_rep_build:
320 * @as: structure that holds information about AS exchange
321 * @key: user's key, used to encrypt the encrypted part of the AS-REP.
322 *
323 * Build AS-REP.
324 *
325 * Return value: Returns SHISHI_OK iff successful.
326 **/
327 int
329 {
332 /* XXX there are reasons for having padata in AS-REP */
337 rc = shishi_enckdcreppart_populate_encticketpart
350 key,
351 SHISHI_KEYUSAGE_ENCASREPPART,
372 }
374 /**
375 * shishi_as_rep_der:
376 * @as: structure that holds information about AS exchange
377 * @out: output array with newly allocated DER encoding of AS-REP.
378 * @outlen: length of output array with DER encoding of AS-REP.
379 *
380 * DER encode AS-REP. @out is allocated by this function, and it is
381 * the responsibility of caller to deallocate it.
382 *
383 * Return value: Returns SHISHI_OK iff successful.
384 **/
385 int
387 {
395 }
397 /**
398 * shishi_as_rep_set:
399 * @as: structure that holds information about AS exchange
400 * @asrep: asrep to store in AS.
401 *
402 * Set the AS-REP in the AS exchange.
403 **/
404 void
406 {
410 }
412 /**
413 * shishi_as_rep_der_set:
414 * @as: structure that holds information about AS exchange
415 * @der: input array with DER encoded AP-REP.
416 * @derlen: length of input array with DER encoded AP-REP.
417 *
418 * DER decode AS-REP and set it AS exchange. If decoding fails, the
419 * AS-REP in the AS exchange remains.
420 *
421 * Return value: Returns SHISHI_OK.
422 **/
423 int
425 {
426 Shishi_asn1 asrep;
436 }
438 /**
439 * shishi_as_krberror:
440 * @as: structure that holds information about AS exchange
441 *
442 * Get ASN.1 KRB-ERROR structure from AS exchange.
443 *
444 * Return value: Returns the received KRB-ERROR packet from the AS
445 * exchange, or NULL if not yet set or an error occured.
446 **/
447 Shishi_asn1
449 {
451 }
453 /**
454 * shishi_as_krberror_der:
455 * @as: structure that holds information about AS exchange
456 * @out: output array with newly allocated DER encoding of KRB-ERROR.
457 * @outlen: length of output array with DER encoding of KRB-ERROR.
458 *
459 * DER encode KRB-ERROR. @out is allocated by this function, and it is
460 * the responsibility of caller to deallocate it.
461 *
462 * Return value: Returns SHISHI_OK iff successful.
463 **/
464 int
466 {
474 }
476 /**
477 * shishi_as_krberror_set:
478 * @as: structure that holds information about AS exchange
479 * @krberror: krberror to store in AS.
480 *
481 * Set the KRB-ERROR in the AS exchange.
482 **/
483 void
485 {
489 }
491 /**
492 * shishi_as_tkt:
493 * @as: structure that holds information about AS exchange
494 *
495 * Get Ticket in AS exchange.
496 *
497 * Return value: Returns the newly aquired tkt from the AS
498 * exchange, or NULL if not yet set or an error occured.
499 **/
500 Shishi_tkt *
502 {
504 }
506 /**
507 * shishi_as_tkt_set:
508 * @as: structure that holds information about AS exchange
509 * @tkt: tkt to store in AS.
510 *
511 * Set the Tkt in the AS exchange.
512 **/
513 void
515 {
517 }
519 /**
520 * shishi_as_sendrecv_hint:
521 * @as: structure that holds information about AS exchange
522 * @hint: additional parameters that modify connection behaviour, or %NULL.
523 *
524 * Send AS-REQ and receive AS-REP or KRB-ERROR. This is the initial
525 * authentication, usually used to acquire a Ticket Granting Ticket.
526 * The @hint structure can be used to set, e.g., parameters for TLS
527 * authentication.
528 *
529 * Return value: Returns SHISHI_OK iff successful.
530 **/
531 int
533 {
544 {
554 }
565 }
567 /**
568 * shishi_as_sendrecv:
569 * @as: structure that holds information about AS exchange
570 *
571 * Send AS-REQ and receive AS-REP or KRB-ERROR. This is the initial
572 * authentication, usually used to acquire a Ticket Granting Ticket.
573 *
574 * Return value: Returns SHISHI_OK iff successful.
575 **/
576 int
578 {
580 }