1 /* SASL client API implementation
4 * $Id: client.c,v 1.67 2006/04/26 15:33:41 mel Exp $
7 * Copyright (c) 1998-2003 Carnegie Mellon University. All rights reserved.
9 * Redistribution and use in source and binary forms, with or without
10 * modification, are permitted provided that the following conditions
13 * 1. Redistributions of source code must retain the above copyright
14 * notice, this list of conditions and the following disclaimer.
16 * 2. Redistributions in binary form must reproduce the above copyright
17 * notice, this list of conditions and the following disclaimer in
18 * the documentation and/or other materials provided with the
21 * 3. The name "Carnegie Mellon University" must not be used to
22 * endorse or promote products derived from this software without
23 * prior written permission. For permission or any other legal
24 * details, please contact
25 * Office of Technology Transfer
26 * Carnegie Mellon University
28 * Pittsburgh, PA 15213-3890
29 * (412) 268-4387, fax: (412) 268-7395
30 * tech-transfer@andrew.cmu.edu
32 * 4. Redistributions of any form whatsoever must retain the following
34 * "This product includes software developed by Computing Services
35 * at Carnegie Mellon University (http://www.cmu.edu/computing/)."
37 * CARNEGIE MELLON UNIVERSITY DISCLAIMS ALL WARRANTIES WITH REGARD TO
38 * THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
39 * AND FITNESS, IN NO EVENT SHALL CARNEGIE MELLON UNIVERSITY BE LIABLE
40 * FOR ANY SPECIAL, INDIRECT OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
41 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN
42 * AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING
43 * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
62 static cmech_list_t *cmechlist; /* global var which holds the list */
63 sasl_global_callbacks_t global_callbacks_client;
64 static int _sasl_client_active = 0;
66 static int init_mechlist()
68 cmechlist->mutex = sasl_MUTEX_ALLOC();
69 if(!cmechlist->mutex) return SASL_FAIL;
71 cmechlist->utils=_sasl_alloc_utils(NULL, &global_callbacks_client);
72 if (cmechlist->utils==NULL)
75 cmechlist->mech_list=NULL;
76 cmechlist->mech_length=0;
81 static int client_done(void) {
85 if(!_sasl_client_active)
88 _sasl_client_active--;
90 if(_sasl_client_active) {
91 /* Don't de-init yet! Our refcount is nonzero. */
95 cm=cmechlist->mech_list; /* m point to begging of the list */
101 if (cprevm->m.plug->mech_free) {
102 cprevm->m.plug->mech_free(cprevm->m.plug->glob_context,
106 sasl_FREE(cprevm->m.plugname);
109 sasl_MUTEX_FREE(cmechlist->mutex);
110 _sasl_free_utils(&cmechlist->utils);
111 sasl_FREE(cmechlist);
118 int sasl_client_add_plugin(const char *plugname,
119 sasl_client_plug_init_t *entry_point)
122 sasl_client_plug_t *pluglist;
128 if(!plugname || !entry_point) return SASL_BADPARAM;
130 result = entry_point(cmechlist->utils, SASL_CLIENT_PLUG_VERSION, &version,
131 &pluglist, &plugcount);
133 if (result != SASL_OK)
135 _sasl_log(NULL, SASL_LOG_WARN,
136 "entry_point failed in sasl_client_add_plugin for %s",
141 if (version != SASL_CLIENT_PLUG_VERSION)
143 _sasl_log(NULL, SASL_LOG_WARN,
144 "version conflict in sasl_client_add_plugin for %s", plugname);
148 for (lupe=0;lupe< plugcount ;lupe++)
150 mech = sasl_ALLOC(sizeof(cmechanism_t));
151 if (! mech) return SASL_NOMEM;
153 mech->m.plug=pluglist++;
154 if(_sasl_strdup(plugname, &mech->m.plugname, NULL) != SASL_OK) {
158 mech->m.version = version;
159 mech->next = cmechlist->mech_list;
160 cmechlist->mech_list = mech;
161 cmechlist->mech_length++;
168 client_idle(sasl_conn_t *conn)
174 for (m = cmechlist->mech_list;
178 && m->m.plug->idle(m->m.plug->glob_context,
180 conn ? ((sasl_client_conn_t *)conn)->cparams : NULL))
185 /* initialize the SASL client drivers
186 * callbacks -- base callbacks for all client connections
189 * SASL_NOMEM -- Not enough memory
190 * SASL_BADVERS -- Mechanism version mismatch
191 * SASL_BADPARAM -- error in config file
192 * SASL_NOMECH -- No mechanisms available
196 int sasl_client_init(const sasl_callback_t *callbacks)
199 const add_plugin_list_t ep_list[] = {
200 { "sasl_client_plug_init", (add_plugin_t *)sasl_client_add_plugin },
201 { "sasl_canonuser_init", (add_plugin_t *)sasl_canonuser_add_plugin },
205 if(_sasl_client_active) {
206 /* We're already active, just increase our refcount */
207 /* xxx do something with the callback structure? */
208 _sasl_client_active++;
212 global_callbacks_client.callbacks = callbacks;
213 global_callbacks_client.appname = NULL;
215 cmechlist=sasl_ALLOC(sizeof(cmech_list_t));
216 if (cmechlist==NULL) return SASL_NOMEM;
218 /* We need to call client_done if we fail now */
219 _sasl_client_active = 1;
228 sasl_client_add_plugin("EXTERNAL", &external_client_plug_init);
230 ret = _sasl_common_init(&global_callbacks_client);
233 ret = _sasl_load_plugins(ep_list,
234 _sasl_find_getpath_callback(callbacks),
235 _sasl_find_verifyfile_callback(callbacks));
237 if (ret == SASL_OK) {
238 _sasl_client_cleanup_hook = &client_done;
239 _sasl_client_idle_hook = &client_idle;
241 ret = _sasl_build_mechlist();
249 static void client_dispose(sasl_conn_t *pconn)
251 sasl_client_conn_t *c_conn=(sasl_client_conn_t *) pconn;
253 if (c_conn->mech && c_conn->mech->m.plug->mech_dispose) {
254 c_conn->mech->m.plug->mech_dispose(pconn->context,
255 c_conn->cparams->utils);
258 pconn->context = NULL;
260 if (c_conn->clientFQDN)
261 sasl_FREE(c_conn->clientFQDN);
263 if (c_conn->cparams) {
264 _sasl_free_utils(&(c_conn->cparams->utils));
265 sasl_FREE(c_conn->cparams);
268 _sasl_conn_dispose(pconn);
271 /* initialize a client exchange based on the specified mechanism
272 * service -- registered name of the service using SASL (e.g. "imap")
273 * serverFQDN -- the fully qualified domain name of the server
274 * iplocalport -- client IPv4/IPv6 domain literal string with port
275 * (if NULL, then mechanisms requiring IPaddr are disabled)
276 * ipremoteport -- server IPv4/IPv6 domain literal string with port
277 * (if NULL, then mechanisms requiring IPaddr are disabled)
278 * prompt_supp -- list of client interactions supported
279 * may also include sasl_getopt_t context & call
280 * NULL prompt_supp = user/pass via SASL_INTERACT only
281 * NULL proc = interaction supported via SASL_INTERACT
282 * secflags -- security flags (see above)
284 * pconn -- connection negotiation structure
285 * pointer to NULL => allocate new
286 * non-NULL => recycle storage and go for next available mech
290 * SASL_NOMECH -- no mechanism meets requested properties
291 * SASL_NOMEM -- not enough memory
293 int sasl_client_new(const char *service,
294 const char *serverFQDN,
295 const char *iplocalport,
296 const char *ipremoteport,
297 const sasl_callback_t *prompt_supp,
302 char name[MAXHOSTNAMELEN];
303 sasl_client_conn_t *conn;
306 if(_sasl_client_active==0) return SASL_NOTINIT;
308 /* Remember, serverFQDN, iplocalport and ipremoteport can be NULL and be valid! */
309 if (!pconn || !service)
310 return SASL_BADPARAM;
312 *pconn=sasl_ALLOC(sizeof(sasl_client_conn_t));
314 _sasl_log(NULL, SASL_LOG_ERR,
315 "Out of memory allocating connection context");
318 memset(*pconn, 0, sizeof(sasl_client_conn_t));
320 (*pconn)->destroy_conn = &client_dispose;
322 conn = (sasl_client_conn_t *)*pconn;
326 conn->cparams=sasl_ALLOC(sizeof(sasl_client_params_t));
327 if (conn->cparams==NULL)
329 memset(conn->cparams,0,sizeof(sasl_client_params_t));
331 result = _sasl_conn_init(*pconn, service, flags, SASL_CONN_CLIENT,
332 &client_idle, serverFQDN,
333 iplocalport, ipremoteport,
334 prompt_supp, &global_callbacks_client);
335 if (result != SASL_OK) RETURN(*pconn, result);
337 utils=_sasl_alloc_utils(*pconn, &global_callbacks_client);
343 /* Setup the non-lazy parts of cparams, the rest is done in
344 * sasl_client_start */
345 conn->cparams->utils = utils;
346 conn->cparams->canon_user = &_sasl_canon_user;
347 conn->cparams->flags = flags;
348 conn->cparams->prompt_supp = (*pconn)->callbacks;
350 /* get the clientFQDN (serverFQDN was set in _sasl_conn_init) */
351 memset(name, 0, sizeof(name));
352 gethostname(name, MAXHOSTNAMELEN);
354 result = _sasl_strdup(name, &conn->clientFQDN, NULL);
356 if(result == SASL_OK) return SASL_OK;
358 /* result isn't SASL_OK */
359 _sasl_conn_dispose(*pconn);
362 _sasl_log(NULL, SASL_LOG_ERR, "Out of memory in sasl_client_new");
366 static int have_prompts(sasl_conn_t *conn,
367 const sasl_client_plug_t *mech)
369 static const unsigned long default_prompts[] = {
375 const unsigned long *prompt;
380 for (prompt = (mech->required_prompts
381 ? mech->required_prompts :
383 *prompt != SASL_CB_LIST_END;
385 result = _sasl_getcallback(conn, *prompt, &pproc, &pcontext);
386 if (result != SASL_OK && result != SASL_INTERACT)
387 return 0; /* we don't have this required prompt */
390 return 1; /* we have all the prompts */
394 _mech_plus_p(const char *mech, size_t len)
396 return (len > 5 && strncasecmp(&mech[len - 5], "-PLUS", 5) == 0);
400 * Order PLUS mechanisms first. Returns NUL separated list of
404 _sasl_client_order_mechs(const sasl_utils_t *utils,
407 char **ordered_mechs,
412 size_t i, mechslen, start;
417 if (mechs == NULL || mechs[0] == '\0')
420 mechslen = strlen(mechs);
422 listp = list = utils->malloc(mechslen + 1);
426 /* xxx confirm this with rfc 2222
427 * SASL mechanism allowable characters are "AZaz-_"
428 * seperators can be any other characters and of any length
429 * even variable lengths between
431 * Apps should be encouraged to simply use space or comma space
434 #define ismechchar(c) (isalnum((c)) || (c) == '_' || (c) == '-')
436 for (i = start = 0; i <= mechslen; i++) {
437 if (!ismechchar(mechs[i])) {
438 const char *mechp = &mechs[start];
439 size_t len = i - start;
442 _mech_plus_p(mechp, len) == has_cb_data) {
443 memcpy(listp, mechp, len);
447 if (*server_can_cb == 0 && has_cb_data)
459 *ordered_mechs = list;
464 /* select a mechanism for a connection
465 * mechlist -- mechanisms server has available (punctuation ignored)
466 * secret -- optional secret from previous session
468 * prompt_need -- on SASL_INTERACT, list of prompts needed to continue
469 * clientout -- the initial client response to send to the server
470 * mech -- set to mechanism name
474 * SASL_NOMEM -- not enough memory
475 * SASL_NOMECH -- no mechanism meets requested properties
476 * SASL_INTERACT -- user interaction needed to fill in prompt_need list
479 int sasl_client_start(sasl_conn_t *conn,
480 const char *mechlist,
481 sasl_interact_t **prompt_need,
482 const char **clientout,
483 unsigned *clientoutlen,
486 sasl_client_conn_t *c_conn= (sasl_client_conn_t *) conn;
487 char *ordered_mechs = NULL, *name;
488 cmechanism_t *m=NULL,*bestm=NULL;
490 sasl_ssf_t bestssf = 0, minssf = 0;
491 int result, server_can_cb = 0;
492 unsigned int cbindingdisp;
494 if(_sasl_client_active==0) return SASL_NOTINIT;
496 if (!conn) return SASL_BADPARAM;
498 /* verify parameters */
499 if (mechlist == NULL)
502 /* if prompt_need != NULL we've already been here
503 and just need to do the continue step again */
506 /* FIXME: Hopefully they only give us our own prompt_need back */
507 if (prompt_need && *prompt_need != NULL) {
511 if(conn->props.min_ssf < conn->external.ssf) {
514 minssf = conn->props.min_ssf - conn->external.ssf;
517 result = _sasl_client_order_mechs(c_conn->cparams->utils,
519 SASL_CB_PRESENT(c_conn->cparams),
526 if (SASL_CB_PRESENT(c_conn->cparams)) {
527 if (server_can_cb == 0 && SASL_CB_CRITICAL(c_conn->cparams)) {
528 result = SASL_BADBINDING;
531 cbindingdisp = SASL_CB_DISP_WANT;
534 cbindingdisp = SASL_CB_DISP_NONE;
537 for (i = 0, name = ordered_mechs; i < list_len; i++) {
538 /* foreach in client list */
539 for (m = cmechlist->mech_list; m != NULL; m = m->next) {
542 if (!_sasl_is_equal_mech(name, m->m.plug->mech_name, &plus))
545 /* Do we have the prompts for it? */
546 if (!have_prompts(conn, m->m.plug))
549 /* Is it strong enough? */
550 if (minssf > m->m.plug->max_ssf)
553 /* Does it meet our security properties? */
554 myflags = conn->props.security_flags;
556 /* if there's an external layer this is no longer plaintext */
557 if ((conn->props.min_ssf <= conn->external.ssf) &&
558 (conn->external.ssf > 1)) {
559 myflags &= ~SASL_SEC_NOPLAINTEXT;
562 if (((myflags ^ m->m.plug->security_flags) & myflags) != 0) {
566 /* Can we meet it's features? */
567 if (SASL_CB_PRESENT(c_conn->cparams) &&
568 !(m->m.plug->features & SASL_FEAT_CHANNEL_BINDING)) {
572 if ((m->m.plug->features & SASL_FEAT_NEEDSERVERFQDN)
573 && !conn->serverFQDN) {
577 /* Can it meet our features? */
578 if ((conn->flags & SASL_NEED_PROXY) &&
579 !(m->m.plug->features & SASL_FEAT_ALLOWS_PROXY)) {
584 if (strcasecmp(m->m.plug->mech_name, PREFER_MECH) &&
585 bestm && m->m.plug->max_ssf <= bestssf) {
586 /* this mechanism isn't our favorite, and it's no better
587 than what we already have! */
591 if (bestm && m->m.plug->max_ssf <= bestssf) {
592 /* this mechanism is no better than what we already have! */
597 /* compare security flags, only take new mechanism if it has
598 * all the security flags of the previous one.
600 * From the mechanisms we ship with, this yields the order:
603 * GSSAPI + KERBEROS_V4
606 * PLAIN + LOGIN + ANONYMOUS
608 * This might be improved on by comparing the numeric value of
609 * the bitwise-or'd security flags, which splits DIGEST/OTP,
610 * CRAM/EXTERNAL, and PLAIN/LOGIN from ANONYMOUS, but then we
611 * are depending on the numeric values of the flags (which may
612 * change, and their ordering could be considered dumb luck.
616 ((m->m.plug->security_flags ^ bestm->m.plug->security_flags) &
617 bestm->m.plug->security_flags)) {
621 /* Prefer server advertised CB mechanisms */
622 if (SASL_CB_PRESENT(c_conn->cparams) && plus) {
623 cbindingdisp = SASL_CB_DISP_USED;
627 *mech = m->m.plug->mech_name;
629 bestssf = m->m.plug->max_ssf;
633 name += strlen(name) + 1;
637 sasl_seterror(conn, 0, "No worthy mechs found");
638 result = SASL_NOMECH;
642 /* make (the rest of) cparams */
643 c_conn->cparams->service = conn->service;
644 c_conn->cparams->servicelen = (unsigned) strlen(conn->service);
646 if (conn->serverFQDN) {
647 c_conn->cparams->serverFQDN = conn->serverFQDN;
648 c_conn->cparams->slen = (unsigned) strlen(conn->serverFQDN);
651 c_conn->cparams->clientFQDN = c_conn->clientFQDN;
652 c_conn->cparams->clen = (unsigned) strlen(c_conn->clientFQDN);
654 c_conn->cparams->external_ssf = conn->external.ssf;
655 c_conn->cparams->props = conn->props;
656 c_conn->cparams->cbindingdisp = cbindingdisp;
657 c_conn->mech = bestm;
659 /* init that plugin */
660 result = c_conn->mech->m.plug->mech_new(c_conn->mech->m.plug->glob_context,
663 if(result != SASL_OK) goto done;
665 /* do a step -- but only if we can do a client-send-first */
668 if(c_conn->mech->m.plug->features & SASL_FEAT_SERVER_FIRST) {
671 result = SASL_CONTINUE;
673 result = sasl_client_step(conn, NULL, 0, prompt_need,
674 clientout, clientoutlen);
678 result = SASL_CONTINUE;
681 if (ordered_mechs != NULL)
682 c_conn->cparams->utils->free(ordered_mechs);
683 RETURN(conn, result);
686 /* do a single authentication step.
687 * serverin -- the server message received by the client, MUST have a NUL
688 * sentinel, not counted by serverinlen
690 * prompt_need -- on SASL_INTERACT, list of prompts needed to continue
691 * clientout -- the client response to send to the server
695 * SASL_INTERACT -- user interaction needed to fill in prompt_need list
696 * SASL_BADPROT -- server protocol incorrect/cancelled
697 * SASL_BADSERV -- server failed mutual auth
700 int sasl_client_step(sasl_conn_t *conn,
701 const char *serverin,
702 unsigned serverinlen,
703 sasl_interact_t **prompt_need,
704 const char **clientout,
705 unsigned *clientoutlen)
707 sasl_client_conn_t *c_conn= (sasl_client_conn_t *) conn;
710 if(_sasl_client_active==0) return SASL_NOTINIT;
711 if(!conn) return SASL_BADPARAM;
713 /* check parameters */
714 if ((serverin==NULL) && (serverinlen>0))
717 /* Don't do another step if the plugin told us that we're done */
718 if (conn->oparams.doneflag) {
719 _sasl_log(conn, SASL_LOG_ERR, "attempting client step after doneflag");
723 if(clientout) *clientout = NULL;
724 if(clientoutlen) *clientoutlen = 0;
727 result = c_conn->mech->m.plug->mech_step(conn->context,
732 clientout, clientoutlen,
735 if (result == SASL_OK) {
736 /* So we're done on this end, but if both
737 * 1. the mech does server-send-last
738 * 2. the protocol does not
739 * we need to return no data */
740 if(!*clientout && !(conn->flags & SASL_SUCCESS_DATA)) {
745 if(!conn->oparams.maxoutbuf) {
746 conn->oparams.maxoutbuf = conn->props.maxbufsize;
749 if(conn->oparams.user == NULL || conn->oparams.authid == NULL) {
750 sasl_seterror(conn, 0,
751 "mech did not call canon_user for both authzid and authid");
752 result = SASL_BADPROT;
759 /* returns the length of all the mechanisms
763 static unsigned mech_names_len()
765 cmechanism_t *listptr;
768 for (listptr = cmechlist->mech_list;
770 listptr = listptr->next)
771 result += (unsigned) strlen(listptr->m.plug->mech_name);
777 int _sasl_client_listmech(sasl_conn_t *conn,
785 cmechanism_t *m=NULL;
786 sasl_ssf_t minssf = 0;
792 if(_sasl_client_active == 0) return SASL_NOTINIT;
793 if (!conn) return SASL_BADPARAM;
794 if(conn->type != SASL_CONN_CLIENT) PARAMERROR(conn);
810 if(conn->props.min_ssf < conn->external.ssf) {
813 minssf = conn->props.min_ssf - conn->external.ssf;
816 if (! cmechlist || cmechlist->mech_length <= 0)
817 INTERROR(conn, SASL_NOMECH);
819 resultlen = (prefix ? strlen(prefix) : 0)
820 + (strlen(mysep) * (cmechlist->mech_length - 1))
822 + (suffix ? strlen(suffix) : 0)
824 ret = _buf_alloc(&conn->mechlist_buf,
825 &conn->mechlist_buf_len, resultlen);
826 if(ret != SASL_OK) MEMERROR(conn);
829 strcpy (conn->mechlist_buf,prefix);
831 *(conn->mechlist_buf) = '\0';
834 for (m = cmechlist->mech_list; m != NULL; m = m->next) {
835 /* do we have the prompts for it? */
836 if (!have_prompts(conn, m->m.plug))
839 /* is it strong enough? */
840 if (minssf > m->m.plug->max_ssf)
843 /* does it meet our security properties? */
844 if (((conn->props.security_flags ^ m->m.plug->security_flags)
845 & conn->props.security_flags) != 0) {
849 /* Can we meet it's features? */
850 if ((m->m.plug->features & SASL_FEAT_NEEDSERVERFQDN)
851 && !conn->serverFQDN) {
855 /* Can it meet our features? */
856 if ((conn->flags & SASL_NEED_PROXY) &&
857 !(m->m.plug->features & SASL_FEAT_ALLOWS_PROXY)) {
861 /* Okay, we like it, add it to the list! */
866 /* print seperator */
868 strcat(conn->mechlist_buf, mysep);
873 /* now print the mechanism name */
874 strcat(conn->mechlist_buf, m->m.plug->mech_name);
878 strcat(conn->mechlist_buf,suffix);
881 *plen = (unsigned) strlen(conn->mechlist_buf);
883 *result = conn->mechlist_buf;
888 sasl_string_list_t *_sasl_client_mechs(void)
890 cmechanism_t *listptr;
891 sasl_string_list_t *retval = NULL, *next=NULL;
893 if(!_sasl_client_active) return NULL;
896 for (listptr = cmechlist->mech_list; listptr; listptr = listptr->next) {
897 next = sasl_ALLOC(sizeof(sasl_string_list_t));
899 if(!next && !retval) return NULL;
910 next->d = listptr->m.plug->mech_name;
927 /* It would be nice if we can show other information like Author, Company, Year, plugin version */
929 _sasl_print_mechanism (
930 client_sasl_mechanism_t *m,
931 sasl_info_callback_stage_t stage,
937 if (stage == SASL_INFO_LIST_START) {
938 printf ("List of client plugins follows\n");
940 } else if (stage == SASL_INFO_LIST_END) {
944 /* Process the mechanism */
945 printf ("Plugin \"%s\" ", m->plugname);
947 /* There is no delay loading for client side plugins */
950 printf (", \tAPI version: %d\n", m->version);
952 if (m->plug != NULL) {
953 printf ("\tSASL mechanism: %s, best SSF: %d\n",
957 printf ("\tsecurity flags:");
960 if (m->plug->security_flags & SASL_SEC_NOANONYMOUS) {
961 printf ("%cNO_ANONYMOUS", delimiter);
965 if (m->plug->security_flags & SASL_SEC_NOPLAINTEXT) {
966 printf ("%cNO_PLAINTEXT", delimiter);
970 if (m->plug->security_flags & SASL_SEC_NOACTIVE) {
971 printf ("%cNO_ACTIVE", delimiter);
975 if (m->plug->security_flags & SASL_SEC_NODICTIONARY) {
976 printf ("%cNO_DICTIONARY", delimiter);
980 if (m->plug->security_flags & SASL_SEC_FORWARD_SECRECY) {
981 printf ("%cFORWARD_SECRECY", delimiter);
985 if (m->plug->security_flags & SASL_SEC_PASS_CREDENTIALS) {
986 printf ("%cPASS_CREDENTIALS", delimiter);
990 if (m->plug->security_flags & SASL_SEC_MUTUAL_AUTH) {
991 printf ("%cMUTUAL_AUTH", delimiter);
997 printf ("\n\tfeatures:");
1000 if (m->plug->features & SASL_FEAT_WANT_CLIENT_FIRST) {
1001 printf ("%cWANT_CLIENT_FIRST", delimiter);
1005 if (m->plug->features & SASL_FEAT_SERVER_FIRST) {
1006 printf ("%cSERVER_FIRST", delimiter);
1010 if (m->plug->features & SASL_FEAT_ALLOWS_PROXY) {
1011 printf ("%cPROXY_AUTHENTICATION", delimiter);
1015 if (m->plug->features & SASL_FEAT_NEEDSERVERFQDN) {
1016 printf ("%cNEED_SERVER_FQDN", delimiter);
1020 if (m->plug->features & SASL_FEAT_GSS_FRAMING) {
1021 printf ("%cGSS_FRAMING", delimiter);
1025 if (m->plug->features & SASL_FEAT_CHANNEL_BINDING) {
1026 printf ("%cCHANNEL_BINDING", delimiter);
1031 /* Delay loading is not supported for the client side plugins:
1033 printf ("\n\twill be loaded from \"%s\"", m->f);
1041 /* Dump information about available client plugins */
1042 int sasl_client_plugin_info (
1043 const char *c_mech_list, /* space separated mechanism list or NULL for ALL */
1044 sasl_client_info_callback_t *info_cb,
1049 client_sasl_mechanism_t plug_data;
1051 char * mech_list = NULL;
1054 if (info_cb == NULL) {
1055 info_cb = _sasl_print_mechanism;
1058 if (cmechlist != NULL) {
1059 info_cb (NULL, SASL_INFO_LIST_START, info_cb_rock);
1061 if (c_mech_list == NULL) {
1062 m = cmechlist->mech_list; /* m point to beginning of the list */
1065 memcpy (&plug_data, &m->m, sizeof(plug_data));
1067 info_cb (&plug_data, SASL_INFO_LIST_MECH, info_cb_rock);
1072 mech_list = strdup (c_mech_list);
1074 cur_mech = mech_list;
1076 while (cur_mech != NULL) {
1077 p = strchr (cur_mech, ' ');
1083 m = cmechlist->mech_list; /* m point to beginning of the list */
1086 if (strcasecmp (cur_mech, m->m.plug->mech_name) == 0) {
1087 memcpy (&plug_data, &m->m, sizeof(plug_data));
1089 info_cb (&plug_data, SASL_INFO_LIST_MECH, info_cb_rock);
1101 info_cb (NULL, SASL_INFO_LIST_END, info_cb_rock);
1106 return (SASL_NOTINIT);
projects / cyrus-sasl.git / blob