Spaces:
Sleeping
Sleeping
| /* @(#)auth.h 2.3 88/08/07 4.0 RPCSRC; from 1.17 88/02/08 SMI */ | |
| /* | |
| * Copyright (c) 2010, Oracle America, Inc. | |
| * | |
| * All rights reserved. | |
| * | |
| * Redistribution and use in source and binary forms, with or without | |
| * modification, are permitted provided that the following conditions are met: | |
| * | |
| * * Redistributions of source code must retain the above copyright | |
| * notice, this list of conditions and the following disclaimer. | |
| * | |
| * * Redistributions in binary form must reproduce the above copyright | |
| * notice, this list of conditions and the following disclaimer in | |
| * the documentation and/or other materials provided with the | |
| * distribution. | |
| * | |
| * * Neither the name of the "Oracle America, Inc." nor the names of | |
| * its contributors may be used to endorse or promote products | |
| * derived from this software without specific prior written permission. | |
| * | |
| * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS | |
| * IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED | |
| * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A | |
| * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT | |
| * HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | |
| * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED | |
| * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR | |
| * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF | |
| * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING | |
| * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS | |
| * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | |
| */ | |
| /* | |
| * auth.h, Authentication interface. | |
| * | |
| * The data structures are completely opaque to the client. The client | |
| * is required to pass a AUTH * to routines that create rpc | |
| * "sessions". | |
| */ | |
| GSSRPC__BEGIN_DECLS | |
| /* | |
| * Status returned from authentication check | |
| */ | |
| enum auth_stat { | |
| AUTH_OK=0, | |
| /* | |
| * failed at remote end | |
| */ | |
| AUTH_BADCRED=1, /* bogus credentials (seal broken) */ | |
| AUTH_REJECTEDCRED=2, /* client should begin new session */ | |
| AUTH_BADVERF=3, /* bogus verifier (seal broken) */ | |
| AUTH_REJECTEDVERF=4, /* verifier expired or was replayed */ | |
| AUTH_TOOWEAK=5, /* rejected due to security reasons */ | |
| /* | |
| * failed locally | |
| */ | |
| AUTH_INVALIDRESP=6, /* bogus response verifier */ | |
| AUTH_FAILED=7, /* some unknown reason */ | |
| /* | |
| * RPCSEC_GSS errors | |
| */ | |
| RPCSEC_GSS_CREDPROBLEM = 13, | |
| RPCSEC_GSS_CTXPROBLEM = 14 | |
| }; | |
| union des_block { | |
| char c[8]; | |
| }; | |
| typedef union des_block des_block; | |
| extern bool_t xdr_des_block(XDR *, des_block *); | |
| /* | |
| * Authentication info. Opaque to client. | |
| */ | |
| struct opaque_auth { | |
| enum_t oa_flavor; /* flavor of auth */ | |
| caddr_t oa_base; /* address of more auth stuff */ | |
| u_int oa_length; /* not to exceed MAX_AUTH_BYTES */ | |
| }; | |
| /* | |
| * Auth handle, interface to client side authenticators. | |
| */ | |
| struct rpc_msg; | |
| typedef struct AUTH { | |
| struct opaque_auth ah_cred; | |
| struct opaque_auth ah_verf; | |
| union des_block ah_key; | |
| struct auth_ops { | |
| void (*ah_nextverf)(struct AUTH *); | |
| /* nextverf & serialize */ | |
| int (*ah_marshal)(struct AUTH *, XDR *); | |
| /* validate varifier */ | |
| int (*ah_validate)(struct AUTH *, | |
| struct opaque_auth *); | |
| /* refresh credentials */ | |
| int (*ah_refresh)(struct AUTH *, struct rpc_msg *); | |
| /* destroy this structure */ | |
| void (*ah_destroy)(struct AUTH *); | |
| /* encode data for wire */ | |
| int (*ah_wrap)(struct AUTH *, XDR *, | |
| xdrproc_t, caddr_t); | |
| /* decode data from wire */ | |
| int (*ah_unwrap)(struct AUTH *, XDR *, | |
| xdrproc_t, caddr_t); | |
| } *ah_ops; | |
| void *ah_private; | |
| } AUTH; | |
| /* | |
| * Authentication ops. | |
| * The ops and the auth handle provide the interface to the authenticators. | |
| * | |
| * AUTH *auth; | |
| * XDR *xdrs; | |
| * struct opaque_auth verf; | |
| */ | |
| /* RENAMED: should be _null_auth if we can use reserved namespace. */ | |
| extern struct opaque_auth gssrpc__null_auth; | |
| /* | |
| * These are the various implementations of client side authenticators. | |
| */ | |
| /* | |
| * Unix style authentication | |
| * AUTH *authunix_create(machname, uid, gid, len, aup_gids) | |
| * char *machname; | |
| * int uid; | |
| * int gid; | |
| * int len; | |
| * int *aup_gids; | |
| */ | |
| extern AUTH *authunix_create(char *machname, int uid, int gid, int len, | |
| int *aup_gids); | |
| extern AUTH *authunix_create_default(void); /* takes no parameters */ | |
| extern AUTH *authnone_create(void); /* takes no parameters */ | |
| extern bool_t xdr_opaque_auth(XDR *, struct opaque_auth *); | |
| GSSRPC__END_DECLS | |