2 * Copyright (c) 2011, JANET(UK)
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of JANET(UK) nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 * Fast reauthentication support.
37 #include "gssapiP_eap.h"
39 #ifndef _UTIL_REAUTH_H_
40 #define _UTIL_REAUTH_H_ 1
42 /* AD element containing serialised AVPs. */
43 #define KRB5_AUTHDATA_RADIUS_AVP 513
46 gssInitSecContext(OM_uint32 *minor,
48 gss_ctx_id_t *context_handle,
49 gss_name_t target_name,
53 gss_channel_bindings_t input_chan_bindings,
54 gss_buffer_t input_token,
55 gss_OID *actual_mech_type,
56 gss_buffer_t output_token,
61 gssAcceptSecContext(OM_uint32 *minor,
62 gss_ctx_id_t *context_handle,
64 gss_buffer_t input_token,
65 gss_channel_bindings_t input_chan_bindings,
68 gss_buffer_t output_token,
71 gss_cred_id_t *delegated_cred_handle);
74 gssReleaseCred(OM_uint32 *minor,
75 gss_cred_id_t *cred_handle);
78 gssReleaseName(OM_uint32 *minor,
82 gssDeleteSecContext(OM_uint32 *minor,
83 gss_ctx_id_t *context_handle,
84 gss_buffer_t output_token);
87 gssInquireSecContextByOid(OM_uint32 *minor,
88 const gss_ctx_id_t context_handle,
89 const gss_OID desired_object,
90 gss_buffer_set_t *data_set);
93 gssStoreCred(OM_uint32 *minor,
94 const gss_cred_id_t input_cred_handle,
95 gss_cred_usage_t input_usage,
96 const gss_OID desired_mech,
97 OM_uint32 overwrite_cred,
98 OM_uint32 default_cred,
99 gss_OID_set *elements_stored,
100 gss_cred_usage_t *cred_usage_stored);
103 gssGetNameAttribute(OM_uint32 *minor,
109 gss_buffer_t display_value,
113 gssEapMakeReauthCreds(OM_uint32 *minor,
116 gss_buffer_t credBuf);
119 gssEapStoreReauthCreds(OM_uint32 *minor,
122 gss_buffer_t credBuf);
126 gssEapGlueToMechName(OM_uint32 *minor,
127 gss_ctx_id_t glueContext,
129 gss_name_t *pMechName);
132 gssEapMechToGlueName(OM_uint32 *minor,
134 gss_name_t *pGlueName);
137 gssEapReauthComplete(OM_uint32 *minor,
144 gssEapReauthInitialize(OM_uint32 *minor);
147 gssEapCanReauthP(gss_cred_id_t cred,
151 #endif /* _UTIL_REAUTH_H_ */