1/*	$KAME: gssapi.h,v 1.4 2001/01/29 23:18:52 thorpej Exp $	*/
2
3/*
4 * Copyright 2000 Wasabi Systems, Inc.
5 * All rights reserved.
6 *
7 * This software was written by Frank van der Linden of Wasabi Systems
8 * for Zembu Labs, Inc. http://www.zembu.com/
9 *
10 * Redistribution and use in source and binary forms, with or without
11 * modification, are permitted provided that the following conditions
12 * are met:
13 * 1. Redistributions of source code must retain the above copyright
14 *    notice, this list of conditions and the following disclaimer.
15 * 2. Redistributions in binary form must reproduce the above copyright
16 *    notice, this list of conditions and the following disclaimer in the
17 *    documentation and/or other materials provided with the distribution.
18 * 3. All advertising materials mentioning features or use of this software
19 *    must display the following acknowledgement:
20 *	This product includes software developed by Wasabi Systems for
21 *	Zembu Labs, Inc. http://www.zembu.com/
22 * 4. The name of Wasabi Systems, Inc. may not be used to endorse
23 *    or promote products derived from this software without specific prior
24 *    written permission.
25 *
26 * THIS SOFTWARE IS PROVIDED BY WASABI SYSTEMS, INC. ``AS IS'' AND
27 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
28 * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
29 * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL WASABI SYSTEMS, INC
30 * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
31 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
32 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
33 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
34 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
35 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
36 * POSSIBILITY OF SUCH DAMAGE.
37 */
38
39#include <gssapi/gssapi.h>
40
41#define GSSAPI_DEF_NAME         "ike"
42
43struct ph1handle;
44struct isakmpsa;
45
46struct gssapi_ph1_state {
47	int gsscnt;			/* # of token we're working on */
48	int gsscnt_p;			/* # of token we're working on */
49
50	gss_buffer_desc gss[3];		/* gss-api tokens. */
51					/* to 3. More should never happen */
52
53	gss_buffer_desc gss_p[3];
54
55	gss_ctx_id_t gss_context;	/* context for gss_init_sec_context */
56
57	OM_uint32 gss_status;		/* retval from gss_init_sec_context */
58	gss_cred_id_t gss_cred;		/* acquired credentials */
59
60	int gss_flags;
61#define GSSFLAG_ID_SENT		0x0001
62#define GSSFLAG_ID_RCVD		0x0001
63};
64
65#define	gssapi_get_state(ph)						\
66	((struct gssapi_ph1_state *)((ph)->gssapi_state))
67
68#define	gssapi_set_state(ph, st)					\
69	(ph)->gssapi_state = (st)
70
71#define	gssapi_more_tokens(ph)						\
72	((gssapi_get_state(ph)->gss_status & GSS_S_CONTINUE_NEEDED) != 0)
73
74int gssapi_get_itoken __P((struct ph1handle *, int *));
75int gssapi_get_rtoken __P((struct ph1handle *, int *));
76int gssapi_save_received_token __P((struct ph1handle *, vchar_t *));
77int gssapi_get_token_to_send __P((struct ph1handle *, vchar_t **));
78int gssapi_get_itokens __P((struct ph1handle *, vchar_t **));
79int gssapi_get_rtokens __P((struct ph1handle *, vchar_t **));
80vchar_t *gssapi_wraphash __P((struct ph1handle *));
81vchar_t *gssapi_unwraphash __P((struct ph1handle *));
82void gssapi_set_id_sent __P((struct ph1handle *));
83int gssapi_id_sent __P((struct ph1handle *));
84void gssapi_set_id_rcvd __P((struct ph1handle *));
85int gssapi_id_rcvd __P((struct ph1handle *));
86void gssapi_free_state __P((struct ph1handle *));
87vchar_t *gssapi_get_default_id __P((struct ph1handle *));
88