williamr@2: /* ssl/kssl.h -*- mode: C; c-file-style: "eay" -*- */ williamr@2: /* Written by Vern Staats for the OpenSSL project 2000. williamr@2: * project 2000. williamr@2: */ williamr@2: /* ==================================================================== williamr@2: * Copyright (c) 2000 The OpenSSL Project. All rights reserved. williamr@2: * williamr@2: * Redistribution and use in source and binary forms, with or without williamr@2: * modification, are permitted provided that the following conditions williamr@2: * are met: williamr@2: * williamr@2: * 1. Redistributions of source code must retain the above copyright williamr@2: * notice, this list of conditions and the following disclaimer. williamr@2: * williamr@2: * 2. Redistributions in binary form must reproduce the above copyright williamr@2: * notice, this list of conditions and the following disclaimer in williamr@2: * the documentation and/or other materials provided with the williamr@2: * distribution. williamr@2: * williamr@2: * 3. All advertising materials mentioning features or use of this williamr@2: * software must display the following acknowledgment: williamr@2: * "This product includes software developed by the OpenSSL Project williamr@2: * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" williamr@2: * williamr@2: * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to williamr@2: * endorse or promote products derived from this software without williamr@2: * prior written permission. For written permission, please contact williamr@2: * licensing@OpenSSL.org. williamr@2: * williamr@2: * 5. Products derived from this software may not be called "OpenSSL" williamr@2: * nor may "OpenSSL" appear in their names without prior written williamr@2: * permission of the OpenSSL Project. williamr@2: * williamr@2: * 6. Redistributions of any form whatsoever must retain the following williamr@2: * acknowledgment: williamr@2: * "This product includes software developed by the OpenSSL Project williamr@2: * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" williamr@2: * williamr@2: * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY williamr@2: * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE williamr@2: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR williamr@2: * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR williamr@2: * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, williamr@2: * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT williamr@2: * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; williamr@2: * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) williamr@2: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, williamr@2: * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) williamr@2: * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED williamr@2: * OF THE POSSIBILITY OF SUCH DAMAGE. williamr@2: * ==================================================================== williamr@2: * williamr@2: * This product includes cryptographic software written by Eric Young williamr@2: * (eay@cryptsoft.com). This product includes software written by Tim williamr@2: * Hudson (tjh@cryptsoft.com). williamr@2: * williamr@2: */ williamr@2: williamr@2: /* williamr@2: ** 19990701 VRS Started. williamr@2: */ williamr@2: williamr@2: #ifndef KSSL_H williamr@2: #define KSSL_H williamr@2: williamr@2: #if (defined(__SYMBIAN32__) && !defined(SYMBIAN)) williamr@2: #define SYMBIAN williamr@2: #endif williamr@2: williamr@2: williamr@2: #include williamr@2: williamr@2: #ifndef OPENSSL_NO_KRB5 williamr@2: williamr@2: #include williamr@2: #include williamr@2: #include williamr@2: williamr@2: #ifdef __cplusplus williamr@2: extern "C" { williamr@2: #endif williamr@2: williamr@2: /* williamr@2: ** Depending on which KRB5 implementation used, some types from williamr@2: ** the other may be missing. Resolve that here and now williamr@2: */ williamr@2: #ifdef KRB5_HEIMDAL williamr@2: typedef unsigned char krb5_octet; williamr@2: #define FAR williamr@2: #else williamr@2: williamr@2: #ifndef FAR williamr@2: #define FAR williamr@2: #endif williamr@2: williamr@2: #endif williamr@2: williamr@2: /* Uncomment this to debug kssl problems or williamr@2: ** to trace usage of the Kerberos session key williamr@2: ** williamr@2: ** #define KSSL_DEBUG williamr@2: */ williamr@2: williamr@2: #ifndef KRB5SVC williamr@2: #define KRB5SVC "host" williamr@2: #endif williamr@2: williamr@2: #ifndef KRB5KEYTAB williamr@2: #define KRB5KEYTAB "/etc/krb5.keytab" williamr@2: #endif williamr@2: williamr@2: #ifndef KRB5SENDAUTH williamr@2: #define KRB5SENDAUTH 1 williamr@2: #endif williamr@2: williamr@2: #ifndef KRB5CHECKAUTH williamr@2: #define KRB5CHECKAUTH 1 williamr@2: #endif williamr@2: williamr@2: #ifndef KSSL_CLOCKSKEW williamr@2: #define KSSL_CLOCKSKEW 300; williamr@2: #endif williamr@2: williamr@2: #define KSSL_ERR_MAX 255 williamr@2: typedef struct kssl_err_st { williamr@2: int reason; williamr@2: char text[KSSL_ERR_MAX+1]; williamr@2: } KSSL_ERR; williamr@2: williamr@2: williamr@2: /* Context for passing williamr@2: ** (1) Kerberos session key to SSL, and williamr@2: ** (2) Config data between application and SSL lib williamr@2: */ williamr@2: typedef struct kssl_ctx_st williamr@2: { williamr@2: /* used by: disposition: */ williamr@2: char *service_name; /* C,S default ok (kssl) */ williamr@2: char *service_host; /* C input, REQUIRED */ williamr@2: char *client_princ; /* S output from krb5 ticket */ williamr@2: char *keytab_file; /* S NULL (/etc/krb5.keytab) */ williamr@2: char *cred_cache; /* C NULL (default) */ williamr@2: krb5_enctype enctype; williamr@2: int length; williamr@2: krb5_octet FAR *key; williamr@2: } KSSL_CTX; williamr@2: williamr@2: #define KSSL_CLIENT 1 williamr@2: #define KSSL_SERVER 2 williamr@2: #define KSSL_SERVICE 3 williamr@2: #define KSSL_KEYTAB 4 williamr@2: williamr@2: #define KSSL_CTX_OK 0 williamr@2: #define KSSL_CTX_ERR 1 williamr@2: #define KSSL_NOMEM 2 williamr@2: williamr@2: #ifdef __cplusplus williamr@2: } williamr@2: #endif williamr@2: #endif /* OPENSSL_NO_KRB5 */ williamr@2: #endif /* KSSL_H */