1/* 2 * CDDL HEADER START 3 * 4 * The contents of this file are subject to the terms of the 5 * Common Development and Distribution License, Version 1.0 only 6 * (the "License"). You may not use this file except in compliance 7 * with the License. 8 * 9 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 10 * or http://www.opensolaris.org/os/licensing. 11 * See the License for the specific language governing permissions 12 * and limitations under the License. 13 * 14 * When distributing Covered Code, include this CDDL HEADER in each 15 * file and include the License file at usr/src/OPENSOLARIS.LICENSE. 16 * If applicable, add the following below this CDDL HEADER, with the 17 * fields enclosed by brackets "[]" replaced with your own identifying 18 * information: Portions Copyright [yyyy] [name of copyright owner] 19 * 20 * CDDL HEADER END 21 */ 22/* 23 * Copyright 2005 Sun Microsystems, Inc. All rights reserved. 24 * Use is subject to license terms. 25 */ 26/* Copyright (c) 1983, 1984, 1985, 1986, 1987, 1988, 1989 AT&T */ 27/* All Rights Reserved */ 28/* 29 * Portions of this source code were derived from Berkeley 30 * 4.3 BSD under license from the Regents of the University of 31 * California. 32 */ 33 34#ifndef _RPC_SVC_AUTH_H 35#define _RPC_SVC_AUTH_H 36 37#pragma ident "%Z%%M% %I% %E% SMI" 38 39/* 40 * svc_auth.h, Service side of rpc authentication. 41 */ 42#include <rpc/rpcsec_gss.h> 43#include <rpc/rpc_msg.h> 44 45#ifdef __cplusplus 46extern "C" { 47#endif 48 49/* 50 * Server side authenticator 51 */ 52#ifdef _KERNEL 53/* 54 * Copy of GSS parameters, needed for MT operation 55 */ 56typedef struct { 57 bool_t established; 58 rpc_gss_service_t service; 59 uint_t qop_rcvd; 60 void *context; 61 uint_t seq_num; 62} svc_rpc_gss_parms_t; 63 64/* 65 * sec_svc_control() commands 66 */ 67#define RPC_SVC_SET_GSS_CALLBACK 1 /* set rpcsec_gss callback routine */ 68extern bool_t sec_svc_control(); 69 70/* 71 * Interface to server-side authentication flavors, may change on 72 * each request. 73 */ 74typedef struct { 75 struct svc_auth_ops { 76 int (*svc_ah_wrap)(); 77 int (*svc_ah_unwrap)(); 78 } svc_ah_ops; 79 caddr_t svc_ah_private; 80 svc_rpc_gss_parms_t svc_gss_parms; 81 rpc_gss_rawcred_t raw_cred; 82} SVCAUTH; 83 84#define SVCAUTH_GSSPARMS(auth) ((svc_rpc_gss_parms_t *)&(auth)->svc_gss_parms) 85 86/* 87 * Auth flavors can now apply a transformation in addition to simple XDR 88 * on the body of a call/response in ways that depend on the flavor being 89 * used. These interfaces provide a generic interface between the 90 * internal RPC frame and the auth flavor specific code to allow the 91 * auth flavor to encode (WRAP) or decode (UNWRAP) the body. 92 */ 93#define SVCAUTH_WRAP(auth, xdrs, xfunc, xwhere) \ 94 ((*((auth)->svc_ah_ops.svc_ah_wrap))(auth, xdrs, xfunc, xwhere)) 95#define SVCAUTH_UNWRAP(auth, xdrs, xfunc, xwhere) \ 96 ((*((auth)->svc_ah_ops.svc_ah_unwrap))(auth, xdrs, xfunc, xwhere)) 97 98/* 99 * Server side authenticator 100 */ 101#ifdef __STDC__ 102extern enum auth_stat sec_svc_msg(struct svc_req *, struct rpc_msg *, 103 bool_t *); 104#else 105extern enum auth_stat sec_svc_msg(); 106#endif /* __STDC__ */ 107 108#else 109 110#ifdef __STDC__ 111extern enum auth_stat __gss_authenticate(struct svc_req *, struct rpc_msg *, 112 bool_t *); 113extern enum auth_stat __authenticate(struct svc_req *, struct rpc_msg *); 114#else 115extern enum auth_stat __gss_authenticate(); 116extern enum auth_stat __authenticate(); 117#endif /* __STDC__ */ 118 119#endif /* _KERNEL */ 120 121#ifdef __cplusplus 122} 123#endif 124 125#endif /* _RPC_SVC_AUTH_H */ 126