/* lib/gssapi/mechglue/mglueP.h */ /* * Copyright (c) 1995, by Sun Microsystems, Inc. * All rights reserved. */ /* This header contains the private mechglue definitions. */ #ifndef _GSS_MECHGLUEP_H #define _GSS_MECHGLUEP_H #include "autoconf.h" #include "mechglue.h" #include "gssapiP_generic.h" #define g_OID_copy(o1, o2) \ do { \ memcpy((o1)->elements, (o2)->elements, (o2)->length); \ (o1)->length = (o2)->length; \ } while (0) /* * Array of context IDs typed by mechanism OID */ typedef struct gss_union_ctx_id_struct { struct gss_union_ctx_id_struct *loopback; gss_OID mech_type; gss_ctx_id_t internal_ctx_id; } gss_union_ctx_id_desc, *gss_union_ctx_id_t; /* * Generic GSSAPI names. A name can either be a generic name, or a * mechanism specific name.... */ typedef struct gss_name_struct { struct gss_name_struct *loopback; gss_OID name_type; gss_buffer_t external_name; /* * These last two fields are only filled in for mechanism * names. */ gss_OID mech_type; gss_name_t mech_name; } gss_union_name_desc, *gss_union_name_t; /* * Structure for holding list of mechanism-specific name types */ typedef struct gss_mech_spec_name_t { gss_OID name_type; gss_OID mech; struct gss_mech_spec_name_t *next, *prev; } gss_mech_spec_name_desc, *gss_mech_spec_name; /* * Set of Credentials typed on mechanism OID */ typedef struct gss_cred_id_struct { struct gss_cred_id_struct *loopback; int count; gss_OID mechs_array; gss_cred_id_t *cred_array; } gss_union_cred_desc, *gss_union_cred_t; /* * Rudimentary pointer validation macro to check whether the * "loopback" field of an opaque struct points back to itself. This * field also catches some programming errors where an opaque pointer * is passed to a function expecting the address of the opaque * pointer. */ #define GSSINT_CHK_LOOP(p) (!((p) != NULL && (p)->loopback == (p))) /********************************************************/ /* The Mechanism Dispatch Table -- a mechanism needs to */ /* define one of these and provide a function to return */ /* it to initialize the GSSAPI library */ int gssint_mechglue_initialize_library(void); OM_uint32 gssint_get_mech_type_oid(gss_OID OID, gss_buffer_t token); /* * This is the definition of the mechs_array struct, which is used to * define the mechs array table. This table is used to indirectly * access mechanism specific versions of the gssapi routines through * the routines in the glue module (gssd_mech_glue.c) * * This contains all of the functions defined in gssapi.h except for * gss_release_buffer() and gss_release_oid_set(), which I am * assuming, for now, to be equal across mechanisms. */ typedef struct gss_config { gss_OID_desc mech_type; void * context; OM_uint32 (KRB5_CALLCONV *gss_acquire_cred) ( OM_uint32*, /* minor_status */ gss_name_t, /* desired_name */ OM_uint32, /* time_req */ gss_OID_set, /* desired_mechs */ int, /* cred_usage */ gss_cred_id_t*, /* output_cred_handle */ gss_OID_set*, /* actual_mechs */ OM_uint32* /* time_rec */ ); OM_uint32 (KRB5_CALLCONV *gss_release_cred) ( OM_uint32*, /* minor_status */ gss_cred_id_t* /* cred_handle */ ); OM_uint32 (KRB5_CALLCONV *gss_init_sec_context) ( OM_uint32*, /* minor_status */ gss_cred_id_t, /* claimant_cred_handle */ gss_ctx_id_t*, /* context_handle */ gss_name_t, /* target_name */ gss_OID, /* mech_type */ OM_uint32, /* req_flags */ OM_uint32, /* time_req */ gss_channel_bindings_t, /* input_chan_bindings */ gss_buffer_t, /* input_token */ gss_OID*, /* actual_mech_type */ gss_buffer_t, /* output_token */ OM_uint32*, /* ret_flags */ OM_uint32* /* time_rec */ ); OM_uint32 (KRB5_CALLCONV *gss_accept_sec_context) ( OM_uint32*, /* minor_status */ gss_ctx_id_t*, /* context_handle */ gss_cred_id_t, /* verifier_cred_handle */ gss_buffer_t, /* input_token_buffer */ gss_channel_bindings_t, /* input_chan_bindings */ gss_name_t*, /* src_name */ gss_OID*, /* mech_type */ gss_buffer_t, /* output_token */ OM_uint32*, /* ret_flags */ OM_uint32*, /* time_rec */ gss_cred_id_t* /* delegated_cred_handle */ ); OM_uint32 (KRB5_CALLCONV *gss_process_context_token) ( OM_uint32*, /* minor_status */ gss_ctx_id_t, /* context_handle */ gss_buffer_t /* token_buffer */ ); OM_uint32 (KRB5_CALLCONV *gss_delete_sec_context) ( OM_uint32*, /* minor_status */ gss_ctx_id_t*, /* context_handle */ gss_buffer_t /* output_token */ ); OM_uint32 (KRB5_CALLCONV *gss_context_time) ( OM_uint32*, /* minor_status */ gss_ctx_id_t, /* context_handle */ OM_uint32* /* time_rec */ ); OM_uint32 (KRB5_CALLCONV *gss_get_mic) ( OM_uint32*, /* minor_status */ gss_ctx_id_t, /* context_handle */ gss_qop_t, /* qop_req */ gss_buffer_t, /* message_buffer */ gss_buffer_t /* message_token */ ); OM_uint32 (KRB5_CALLCONV *gss_verify_mic) ( OM_uint32*, /* minor_status */ gss_ctx_id_t, /* context_handle */ gss_buffer_t, /* message_buffer */ gss_buffer_t, /* token_buffer */ gss_qop_t* /* qop_state */ ); OM_uint32 (KRB5_CALLCONV *gss_wrap) ( OM_uint32*, /* minor_status */ gss_ctx_id_t, /* context_handle */ int, /* conf_req_flag */ gss_qop_t, /* qop_req */ gss_buffer_t, /* input_message_buffer */ int*, /* conf_state */ gss_buffer_t /* output_message_buffer */ ); OM_uint32 (KRB5_CALLCONV *gss_unwrap) ( OM_uint32*, /* minor_status */ gss_ctx_id_t, /* context_handle */ gss_buffer_t, /* input_message_buffer */ gss_buffer_t, /* output_message_buffer */ int*, /* conf_state */ gss_qop_t* /* qop_state */ ); OM_uint32 (KRB5_CALLCONV *gss_display_status) ( OM_uint32*, /* minor_status */ OM_uint32, /* status_value */ int, /* status_type */ gss_OID, /* mech_type */ OM_uint32*, /* message_context */ gss_buffer_t /* status_string */ ); OM_uint32 (KRB5_CALLCONV *gss_indicate_mechs) ( OM_uint32*, /* minor_status */ gss_OID_set* /* mech_set */ ); OM_uint32 (KRB5_CALLCONV *gss_compare_name) ( OM_uint32*, /* minor_status */ gss_name_t, /* name1 */ gss_name_t, /* name2 */ int* /* name_equal */ ); OM_uint32 (KRB5_CALLCONV *gss_display_name) ( OM_uint32*, /* minor_status */ gss_name_t, /* input_name */ gss_buffer_t, /* output_name_buffer */ gss_OID* /* output_name_type */ ); OM_uint32 (KRB5_CALLCONV *gss_import_name) ( OM_uint32*, /* minor_status */ gss_buffer_t, /* input_name_buffer */ gss_OID, /* input_name_type */ gss_name_t* /* output_name */ ); OM_uint32 (KRB5_CALLCONV *gss_release_name) ( OM_uint32*, /* minor_status */ gss_name_t* /* input_name */ ); OM_uint32 (KRB5_CALLCONV *gss_inquire_cred) ( OM_uint32 *, /* minor_status */ gss_cred_id_t, /* cred_handle */ gss_name_t *, /* name */ OM_uint32 *, /* lifetime */ int *, /* cred_usage */ gss_OID_set * /* mechanisms */ ); OM_uint32 (KRB5_CALLCONV *gss_add_cred) ( OM_uint32 *, /* minor_status */ gss_cred_id_t, /* input_cred_handle */ gss_name_t, /* desired_name */ gss_OID, /* desired_mech */ gss_cred_usage_t, /* cred_usage */ OM_uint32, /* initiator_time_req */ OM_uint32, /* acceptor_time_req */ gss_cred_id_t *, /* output_cred_handle */ gss_OID_set *, /* actual_mechs */ OM_uint32 *, /* initiator_time_rec */ OM_uint32 * /* acceptor_time_rec */ ); OM_uint32 (KRB5_CALLCONV *gss_export_sec_context) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t *, /* context_handle */ gss_buffer_t /* interprocess_token */ ); OM_uint32 (KRB5_CALLCONV *gss_import_sec_context) ( OM_uint32 *, /* minor_status */ gss_buffer_t, /* interprocess_token */ gss_ctx_id_t * /* context_handle */ ); OM_uint32 (KRB5_CALLCONV *gss_inquire_cred_by_mech) ( OM_uint32 *, /* minor_status */ gss_cred_id_t, /* cred_handle */ gss_OID, /* mech_type */ gss_name_t *, /* name */ OM_uint32 *, /* initiator_lifetime */ OM_uint32 *, /* acceptor_lifetime */ gss_cred_usage_t * /* cred_usage */ ); OM_uint32 (KRB5_CALLCONV *gss_inquire_names_for_mech) ( OM_uint32 *, /* minor_status */ gss_OID, /* mechanism */ gss_OID_set * /* name_types */ ); OM_uint32 (KRB5_CALLCONV *gss_inquire_context) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t, /* context_handle */ gss_name_t *, /* src_name */ gss_name_t *, /* targ_name */ OM_uint32 *, /* lifetime_rec */ gss_OID *, /* mech_type */ OM_uint32 *, /* ctx_flags */ int *, /* locally_initiated */ int * /* open */ ); OM_uint32 (KRB5_CALLCONV *gss_internal_release_oid) ( OM_uint32 *, /* minor_status */ gss_OID * /* OID */ ); OM_uint32 (KRB5_CALLCONV *gss_wrap_size_limit) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t, /* context_handle */ int, /* conf_req_flag */ gss_qop_t, /* qop_req */ OM_uint32, /* req_output_size */ OM_uint32 * /* max_input_size */ ); OM_uint32 (KRB5_CALLCONV *gss_localname) ( OM_uint32 *, /* minor */ const gss_name_t, /* name */ gss_const_OID, /* mech_type */ gss_buffer_t /* localname */ ); OM_uint32 (KRB5_CALLCONV *gssspi_authorize_localname) ( OM_uint32 *, /* minor_status */ const gss_name_t, /* pname */ gss_const_buffer_t, /* local user */ gss_const_OID /* local nametype */ /* */); OM_uint32 (KRB5_CALLCONV *gss_export_name) ( OM_uint32 *, /* minor_status */ const gss_name_t, /* input_name */ gss_buffer_t /* exported_name */ /* */); OM_uint32 (KRB5_CALLCONV *gss_duplicate_name) ( OM_uint32*, /* minor_status */ const gss_name_t, /* input_name */ gss_name_t * /* output_name */ /* */); OM_uint32 (KRB5_CALLCONV *gss_store_cred) ( OM_uint32 *, /* minor_status */ const gss_cred_id_t, /* input_cred */ gss_cred_usage_t, /* cred_usage */ const gss_OID, /* desired_mech */ OM_uint32, /* overwrite_cred */ OM_uint32, /* default_cred */ gss_OID_set *, /* elements_stored */ gss_cred_usage_t * /* cred_usage_stored */ /* */); /* GGF extensions */ OM_uint32 (KRB5_CALLCONV *gss_inquire_sec_context_by_oid) ( OM_uint32 *, /* minor_status */ const gss_ctx_id_t, /* context_handle */ const gss_OID, /* OID */ gss_buffer_set_t * /* data_set */ ); OM_uint32 (KRB5_CALLCONV *gss_inquire_cred_by_oid) ( OM_uint32 *, /* minor_status */ const gss_cred_id_t, /* cred_handle */ const gss_OID, /* OID */ gss_buffer_set_t * /* data_set */ ); OM_uint32 (KRB5_CALLCONV *gss_set_sec_context_option) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t *, /* context_handle */ const gss_OID, /* OID */ const gss_buffer_t /* value */ ); OM_uint32 (KRB5_CALLCONV *gssspi_set_cred_option) ( OM_uint32 *, /* minor_status */ gss_cred_id_t *, /* cred_handle */ const gss_OID, /* OID */ const gss_buffer_t /* value */ ); OM_uint32 (KRB5_CALLCONV *gssspi_mech_invoke) ( OM_uint32*, /* minor_status */ const gss_OID, /* mech OID */ const gss_OID, /* OID */ gss_buffer_t /* value */ ); /* AEAD extensions */ OM_uint32 (KRB5_CALLCONV *gss_wrap_aead) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t, /* context_handle */ int, /* conf_req_flag */ gss_qop_t, /* qop_req */ gss_buffer_t, /* input_assoc_buffer */ gss_buffer_t, /* input_payload_buffer */ int *, /* conf_state */ gss_buffer_t /* output_message_buffer */ /* */); OM_uint32 (KRB5_CALLCONV *gss_unwrap_aead) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t, /* context_handle */ gss_buffer_t, /* input_message_buffer */ gss_buffer_t, /* input_assoc_buffer */ gss_buffer_t, /* output_payload_buffer */ int *, /* conf_state */ gss_qop_t * /* qop_state */ /* */); /* SSPI extensions */ OM_uint32 (KRB5_CALLCONV *gss_wrap_iov) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t, /* context_handle */ int, /* conf_req_flag */ gss_qop_t, /* qop_req */ int *, /* conf_state */ gss_iov_buffer_desc *, /* iov */ int /* iov_count */ /* */); OM_uint32 (KRB5_CALLCONV *gss_unwrap_iov) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t, /* context_handle */ int *, /* conf_state */ gss_qop_t *, /* qop_state */ gss_iov_buffer_desc *, /* iov */ int /* iov_count */ /* */); OM_uint32 (KRB5_CALLCONV *gss_wrap_iov_length) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t, /* context_handle */ int, /* conf_req_flag*/ gss_qop_t, /* qop_req */ int *, /* conf_state */ gss_iov_buffer_desc *, /* iov */ int /* iov_count */ /* */); OM_uint32 (KRB5_CALLCONV *gss_complete_auth_token) ( OM_uint32*, /* minor_status */ const gss_ctx_id_t, /* context_handle */ gss_buffer_t /* input_message_buffer */ ); /* New for 1.8 */ OM_uint32 (KRB5_CALLCONV *gss_acquire_cred_impersonate_name) ( OM_uint32 *, /* minor_status */ const gss_cred_id_t, /* impersonator_cred_handle */ const gss_name_t, /* desired_name */ OM_uint32, /* time_req */ const gss_OID_set, /* desired_mechs */ gss_cred_usage_t, /* cred_usage */ gss_cred_id_t *, /* output_cred_handle */ gss_OID_set *, /* actual_mechs */ OM_uint32 * /* time_rec */ /* */); OM_uint32 (KRB5_CALLCONV *gss_add_cred_impersonate_name) ( OM_uint32 *, /* minor_status */ gss_cred_id_t, /* input_cred_handle */ const gss_cred_id_t, /* impersonator_cred_handle */ const gss_name_t, /* desired_name */ const gss_OID, /* desired_mech */ gss_cred_usage_t, /* cred_usage */ OM_uint32, /* initiator_time_req */ OM_uint32, /* acceptor_time_req */ gss_cred_id_t *, /* output_cred_handle */ gss_OID_set *, /* actual_mechs */ OM_uint32 *, /* initiator_time_rec */ OM_uint32 * /* acceptor_time_rec */ /* */); OM_uint32 (KRB5_CALLCONV *gss_display_name_ext) ( OM_uint32 *, /* minor_status */ gss_name_t, /* name */ gss_OID, /* display_as_name_type */ gss_buffer_t /* display_name */ /* */); OM_uint32 (KRB5_CALLCONV *gss_inquire_name) ( OM_uint32 *, /* minor_status */ gss_name_t, /* name */ int *, /* name_is_MN */ gss_OID *, /* MN_mech */ gss_buffer_set_t * /* attrs */ /* */); OM_uint32 (KRB5_CALLCONV *gss_get_name_attribute) ( OM_uint32 *, /* minor_status */ gss_name_t, /* name */ gss_buffer_t, /* attr */ int *, /* authenticated */ int *, /* complete */ gss_buffer_t, /* value */ gss_buffer_t, /* display_value */ int * /* more */ /* */); OM_uint32 (KRB5_CALLCONV *gss_set_name_attribute) ( OM_uint32 *, /* minor_status */ gss_name_t, /* name */ int, /* complete */ gss_buffer_t, /* attr */ gss_buffer_t /* value */ /* */); OM_uint32 (KRB5_CALLCONV *gss_delete_name_attribute) ( OM_uint32 *, /* minor_status */ gss_name_t, /* name */ gss_buffer_t /* attr */ /* */); OM_uint32 (KRB5_CALLCONV *gss_export_name_composite) ( OM_uint32 *, /* minor_status */ gss_name_t, /* name */ gss_buffer_t /* exp_composite_name */ /* */); OM_uint32 (KRB5_CALLCONV *gss_map_name_to_any) ( OM_uint32 *, /* minor_status */ gss_name_t, /* name */ int, /* authenticated */ gss_buffer_t, /* type_id */ gss_any_t * /* output */ /* */); OM_uint32 (KRB5_CALLCONV *gss_release_any_name_mapping) ( OM_uint32 *, /* minor_status */ gss_name_t, /* name */ gss_buffer_t, /* type_id */ gss_any_t * /* input */ /* */); OM_uint32 (KRB5_CALLCONV *gss_pseudo_random) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t, /* context */ int, /* prf_key */ const gss_buffer_t, /* prf_in */ ssize_t, /* desired_output_len */ gss_buffer_t /* prf_out */ /* */); OM_uint32 (KRB5_CALLCONV *gss_set_neg_mechs) ( OM_uint32 *, /* minor_status */ gss_cred_id_t, /* cred_handle */ const gss_OID_set /* mech_set */ /* */); OM_uint32 (KRB5_CALLCONV *gss_inquire_saslname_for_mech) ( OM_uint32 *, /* minor_status */ const gss_OID, /* desired_mech */ gss_buffer_t, /* sasl_mech_name */ gss_buffer_t, /* mech_name */ gss_buffer_t /* mech_description */ /* */); OM_uint32 (KRB5_CALLCONV *gss_inquire_mech_for_saslname) ( OM_uint32 *, /* minor_status */ const gss_buffer_t, /* sasl_mech_name */ gss_OID * /* mech_type */ /* */); OM_uint32 (KRB5_CALLCONV *gss_inquire_attrs_for_mech) ( OM_uint32 *, /* minor_status */ gss_const_OID, /* mech */ gss_OID_set *, /* mech_attrs */ gss_OID_set * /* known_mech_attrs */ /* */); /* Credential store extensions */ OM_uint32 (KRB5_CALLCONV *gss_acquire_cred_from) ( OM_uint32 *, /* minor_status */ gss_name_t, /* desired_name */ OM_uint32, /* time_req */ gss_OID_set, /* desired_mechs */ gss_cred_usage_t, /* cred_usage */ gss_const_key_value_set_t, /* cred_store */ gss_cred_id_t *, /* output_cred_handle */ gss_OID_set *, /* actual_mechs */ OM_uint32 * /* time_rec */ /* */); OM_uint32 (KRB5_CALLCONV *gss_store_cred_into) ( OM_uint32 *, /* minor_status */ gss_cred_id_t, /* input_cred_handle */ gss_cred_usage_t, /* input_usage */ gss_OID, /* desired_mech */ OM_uint32, /* overwrite_cred */ OM_uint32, /* default_cred */ gss_const_key_value_set_t, /* cred_store */ gss_OID_set *, /* elements_stored */ gss_cred_usage_t * /* cred_usage_stored */ /* */); OM_uint32 (KRB5_CALLCONV *gssspi_acquire_cred_with_password) ( OM_uint32 *, /* minor_status */ const gss_name_t, /* desired_name */ const gss_buffer_t, /* password */ OM_uint32, /* time_req */ const gss_OID_set, /* desired_mechs */ int, /* cred_usage */ gss_cred_id_t *, /* output_cred_handle */ gss_OID_set *, /* actual_mechs */ OM_uint32 * /* time_rec */ /* */); OM_uint32 (KRB5_CALLCONV *gss_export_cred) ( OM_uint32 *, /* minor_status */ gss_cred_id_t, /* cred_handle */ gss_buffer_t /* token */ /* */); OM_uint32 (KRB5_CALLCONV *gss_import_cred) ( OM_uint32 *, /* minor_status */ gss_buffer_t, /* token */ gss_cred_id_t * /* cred_handle */ /* */); OM_uint32 (KRB5_CALLCONV *gssspi_import_sec_context_by_mech) ( OM_uint32 *, /* minor_status */ gss_OID, /* desired_mech */ gss_buffer_t, /* interprocess_token */ gss_ctx_id_t * /* context_handle */ /* */); OM_uint32 (KRB5_CALLCONV *gssspi_import_name_by_mech) ( OM_uint32 *, /* minor_status */ gss_OID, /* mech_type */ gss_buffer_t, /* input_name_buffer */ gss_OID, /* input_name_type */ gss_name_t* /* output_name */ /* */); OM_uint32 (KRB5_CALLCONV *gssspi_import_cred_by_mech) ( OM_uint32 *, /* minor_status */ gss_OID, /* mech_type */ gss_buffer_t, /* token */ gss_cred_id_t * /* cred_handle */ /* */); /* get_mic_iov extensions, added in 1.12 */ OM_uint32 (KRB5_CALLCONV *gss_get_mic_iov) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t, /* context_handle */ gss_qop_t, /* qop_req */ gss_iov_buffer_desc *, /* iov */ int /* iov_count */ ); OM_uint32 (KRB5_CALLCONV *gss_verify_mic_iov) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t, /* context_handle */ gss_qop_t *, /* qop_state */ gss_iov_buffer_desc *, /* iov */ int /* iov_count */ ); OM_uint32 (KRB5_CALLCONV *gss_get_mic_iov_length) ( OM_uint32 *, /* minor_status */ gss_ctx_id_t, /* context_handle */ gss_qop_t, /* qop_req */ gss_iov_buffer_desc *, /* iov */ int /* iov_count */ ); /* NegoEx extensions added in 1.18 */ OM_uint32 (KRB5_CALLCONV *gssspi_query_meta_data) ( OM_uint32 *, /* minor_status */ gss_const_OID, /* mech_oid */ gss_cred_id_t, /* cred_handle */ gss_ctx_id_t *, /* context_handle */ const gss_name_t, /* targ_name */ OM_uint32, /* req_flags */ gss_buffer_t /* meta_data */ /* */); OM_uint32 (KRB5_CALLCONV *gssspi_exchange_meta_data) ( OM_uint32 *, /* minor_status */ gss_const_OID, /* mech_oid */ gss_cred_id_t, /* cred_handle */ gss_ctx_id_t *, /* context_handle */ const gss_name_t, /* targ_name */ OM_uint32, /* req_flags */ gss_const_buffer_t /* meta_data */ /* */); OM_uint32 (KRB5_CALLCONV *gssspi_query_mechanism_info) ( OM_uint32 *, /* minor_status */ gss_const_OID, /* mech_oid */ unsigned char[16] /* auth_scheme */ /* */); } *gss_mechanism; /* * In the user space we use a wrapper structure to encompass the * mechanism entry points. The wrapper contain the mechanism * entry points and other data which is only relevant to the gss-api * layer. In the kernel we use only the gss_config structure because * the kernel does not cantain any of the extra gss-api specific data. */ typedef struct gss_mech_config { char *kmodName; /* kernel module name */ char *uLibName; /* user library name */ char *mechNameStr; /* mechanism string name */ char *optionStr; /* optional mech parameters */ void *dl_handle; /* RTLD object handle for the mech */ gss_OID mech_type; /* mechanism oid */ gss_mechanism mech; /* mechanism initialization struct */ int priority; /* mechanism preference order */ int freeMech; /* free mech table */ int is_interposer; /* interposer mechanism flag */ gss_OID int_mech_type; /* points to the interposer OID */ gss_mechanism int_mech; /* points to the interposer mech */ struct gss_mech_config *next; /* next element in the list */ } *gss_mech_info; /********************************************************/ /* Internal mechglue routines */ OM_uint32 gssint_select_mech_type(OM_uint32 *minor, gss_const_OID in_oid, gss_OID *selected_oid); gss_OID gssint_get_public_oid(gss_const_OID internal_oid); OM_uint32 gssint_make_public_oid_set(OM_uint32 *minor_status, gss_OID oids, int count, gss_OID_set *public_set); gss_mechanism gssint_get_mechanism (gss_const_OID); OM_uint32 gssint_get_mech_type (gss_OID, gss_buffer_t); char *gssint_get_kmodName(const gss_OID); char *gssint_get_modOptions(const gss_OID); OM_uint32 gssint_import_internal_name (OM_uint32 *, gss_OID, gss_union_name_t, gss_name_t *); OM_uint32 gssint_export_internal_name(OM_uint32 *, const gss_OID, const gss_name_t, gss_buffer_t); OM_uint32 gssint_display_internal_name (OM_uint32 *, gss_OID, gss_name_t, gss_buffer_t, gss_OID *); OM_uint32 gssint_release_internal_name (OM_uint32 *, gss_OID, gss_name_t *); OM_uint32 gssint_delete_internal_sec_context (OM_uint32 *, gss_OID, gss_ctx_id_t *, gss_buffer_t); #ifdef _GSS_STATIC_LINK int gssint_register_mechinfo(gss_mech_info template); #endif OM_uint32 gssint_convert_name_to_union_name (OM_uint32 *, /* minor_status */ gss_mechanism, /* mech */ gss_name_t, /* internal_name */ gss_name_t * /* external_name */ ); gss_cred_id_t gssint_get_mechanism_cred (gss_union_cred_t, /* union_cred */ gss_OID /* mech_type */ ); OM_uint32 gssint_create_copy_buffer( const gss_buffer_t, /* src buffer */ gss_buffer_t *, /* destination buffer */ int /* NULL terminate buffer ? */ ); OM_uint32 gssint_create_union_context( OM_uint32 *minor, /* minor_status */ gss_const_OID, /* mech_oid */ gss_union_ctx_id_t * /* ctx_out */ ); OM_uint32 gssint_copy_oid_set( OM_uint32 *, /* minor_status */ const gss_OID_set_desc * const, /* oid set */ gss_OID_set * /* new oid set */ ); gss_OID gss_find_mechanism_from_name_type (gss_OID); /* name_type */ OM_uint32 gss_add_mech_name_type (OM_uint32 *, /* minor_status */ gss_OID, /* name_type */ gss_OID /* mech */ ); /* * Sun extensions to GSS-API v2 */ int gssint_get_der_length( unsigned char **, /* buf */ unsigned int, /* buf_len */ unsigned int * /* bytes */ ); unsigned int gssint_der_length_size(unsigned int /* len */); int gssint_put_der_length( unsigned int, /* length */ unsigned char **, /* buf */ unsigned int /* max_len */ ); OM_uint32 gssint_wrap_aead (gss_mechanism, /* mech */ OM_uint32 *, /* minor_status */ gss_union_ctx_id_t, /* ctx */ int, /* conf_req_flag */ gss_qop_t, /* qop_req_flag */ gss_buffer_t, /* input_assoc_buffer */ gss_buffer_t, /* input_payload_buffer */ int *, /* conf_state */ gss_buffer_t); /* output_message_buffer */ OM_uint32 gssint_unwrap_aead (gss_mechanism, /* mech */ OM_uint32 *, /* minor_status */ gss_union_ctx_id_t, /* ctx */ gss_buffer_t, /* input_message_buffer */ gss_buffer_t, /* input_assoc_buffer */ gss_buffer_t, /* output_payload_buffer */ int *, /* conf_state */ gss_qop_t *); /* qop_state */ /* Use this to map an error code that was returned from a mech operation; the mech will be asked to produce the associated error messages. Remember that if the minor status code cannot be returned to the caller (e.g., if it's stuffed in an automatic variable and then ignored), then we don't care about producing a mapping. */ #define map_error(MINORP, MECH) \ (*(MINORP) = gssint_mecherrmap_map(*(MINORP), &(MECH)->mech_type)) #define map_error_oid(MINORP, MECHOID) \ (*(MINORP) = gssint_mecherrmap_map(*(MINORP), (MECHOID))) /* Use this to map an errno value or com_err error code being generated within the mechglue code (e.g., by calling generic oid ops). Any errno or com_err values produced by mech operations should be processed with map_error. This means they'll be stored separately even if the mech uses com_err, because we can't assume that it will use com_err. */ #define map_errcode(MINORP) \ (*(MINORP) = gssint_mecherrmap_map_errcode(*(MINORP))) #endif /* _GSS_MECHGLUEP_H */