curl/lib/curl_sasl.h

#ifndef HEADER_CURL_SASL_H
#define HEADER_CURL_SASL_H
/***************************************************************************
 *                                  _   _ ____  _
 *  Project                     ___| | | |  _ \| |
 *                             / __| | | | |_) | |
 *                            | (__| |_| |  _ <| |___
 *                             \___|\___/|_| \_\_____|
 *
 * Copyright (C) 2012 - 2013, Daniel Stenberg, <daniel@haxx.se>, et al.
 *
 * This software is licensed as described in the file COPYING, which
 * you should have received as part of this distribution. The terms
 * are also available at http://curl.haxx.se/docs/copyright.html.
 *
 * You may opt to use, copy, modify, merge, publish, distribute and/or sell
 * copies of the Software, and permit persons to whom the Software is
 * furnished to do so, under the terms of the COPYING file.
 *
 * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
 * KIND, either express or implied.
 *
 ***************************************************************************/

#include "pingpong.h"

/* Authentication mechanism values */
#define SASL_AUTH_NONE          0
#define SASL_AUTH_ANY           ~0U

/* Authentication mechanism flags */
#define SASL_MECH_LOGIN             (1 << 0)
#define SASL_MECH_PLAIN             (1 << 1)
#define SASL_MECH_CRAM_MD5          (1 << 2)
#define SASL_MECH_DIGEST_MD5        (1 << 3)
#define SASL_MECH_GSSAPI            (1 << 4)
#define SASL_MECH_EXTERNAL          (1 << 5)
#define SASL_MECH_NTLM              (1 << 6)
#define SASL_MECH_XOAUTH2           (1 << 7)

/* Authentication mechanism strings */
#define SASL_MECH_STRING_LOGIN      "LOGIN"
#define SASL_MECH_STRING_PLAIN      "PLAIN"
#define SASL_MECH_STRING_CRAM_MD5   "CRAM-MD5"
#define SASL_MECH_STRING_DIGEST_MD5 "DIGEST-MD5"
#define SASL_MECH_STRING_GSSAPI     "GSSAPI"
#define SASL_MECH_STRING_EXTERNAL   "EXTERNAL"
#define SASL_MECH_STRING_NTLM       "NTLM"
#define SASL_MECH_STRING_XOAUTH2    "XOAUTH2"

/* This is used to test whether the line starts with the given mechanism */
#define sasl_mech_equal(line, wordlen, mech) \
  (wordlen == (sizeof(mech) - 1) / sizeof(char) && \
   !memcmp(line, mech, wordlen))

/* This is used to generate a base64 encoded PLAIN authentication message */
CURLcode Curl_sasl_create_plain_message(struct SessionHandle *data,
                                        const char *userp,
                                        const char *passwdp,
                                        char **outptr, size_t *outlen);

/* This is used to generate a base64 encoded LOGIN authentication message
   containing either the user name or password details */
CURLcode Curl_sasl_create_login_message(struct SessionHandle *data,
                                        const char *valuep, char **outptr,
                                        size_t *outlen);

#ifndef CURL_DISABLE_CRYPTO_AUTH
/* This is used to generate a base64 encoded CRAM-MD5 response message */
CURLcode Curl_sasl_create_cram_md5_message(struct SessionHandle *data,
                                           const char *chlg64,
                                           const char *user,
                                           const char *passwdp,
                                           char **outptr, size_t *outlen);

/* This is used to generate a base64 encoded DIGEST-MD5 response message */
CURLcode Curl_sasl_create_digest_md5_message(struct SessionHandle *data,
                                             const char *chlg64,
                                             const char *user,
                                             const char *passwdp,
                                             const char *service,
                                             char **outptr, size_t *outlen);
#endif

#ifdef USE_NTLM
/* This is used to generate a base64 encoded NTLM type-1 message */
CURLcode Curl_sasl_create_ntlm_type1_message(const char *userp,
                                             const char *passwdp,
                                             struct ntlmdata *ntlm,
                                             char **outptr,
                                             size_t *outlen);

/* This is used to decode an incoming NTLM type-2 message and generate a
   base64 encoded type-3 response */
CURLcode Curl_sasl_create_ntlm_type3_message(struct SessionHandle *data,
                                             const char *header,
                                             const char *userp,
                                             const char *passwdp,
                                             struct ntlmdata *ntlm,
                                             char **outptr, size_t *outlen);

#endif /* USE_NTLM */

/* This is used to generate a base64 encoded XOAUTH2 authentication message
   containing the user name and bearer token */
CURLcode Curl_sasl_create_xoauth2_message(struct SessionHandle *data,
                                          const char *user,
                                          const char *bearer,
                                          char **outptr, size_t *outlen);

/* This is used to cleanup any libraries or curl modules used by the sasl
   functions */
void Curl_sasl_cleanup(struct connectdata *conn, unsigned int authused);

#endif /* HEADER_CURL_SASL_H */
smtp: Moved auth-mechanism constants into a separate header file Move the SMTP_AUTH constants into a separate header file in preparation for adding SASL based authentication to POP3 as the two protocols will need to share them. 2012-05-25 16:49:25 -04:00			`#ifndef HEADER_CURL_SASL_H`
			`#define HEADER_CURL_SASL_H`
			`/***************************************************************************`
			`* _ _ ____ _`
			`* Project ___\| \| \| \| _ \\| \|`
			`* / __\| \| \| \| \|_) \| \|`
			`* \| (__\| \|_\| \| _ <\| \|___`
			`* \___\|\___/\|_\| \_\_____\|`
			`*`
sasl: Corrected a few violations of the curl coding standards Corrected some incorrectly positioned pointer variable declarations to be "char " rather than "char ". 2013-03-21 18:21:22 -04:00			`* Copyright (C) 2012 - 2013, Daniel Stenberg, <daniel@haxx.se>, et al.`
smtp: Moved auth-mechanism constants into a separate header file Move the SMTP_AUTH constants into a separate header file in preparation for adding SASL based authentication to POP3 as the two protocols will need to share them. 2012-05-25 16:49:25 -04:00			`*`
			`* This software is licensed as described in the file COPYING, which`
			`* you should have received as part of this distribution. The terms`
			`* are also available at http://curl.haxx.se/docs/copyright.html.`
			`*`
			`* You may opt to use, copy, modify, merge, publish, distribute and/or sell`
			`* copies of the Software, and permit persons to whom the Software is`
			`* furnished to do so, under the terms of the COPYING file.`
			`*`
			`* This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY`
			`* KIND, either express or implied.`
			`*`
			`***************************************************************************/`

Revert changes relative to lib/.[ch] recent renaming This reverts renaming and usage of lib/.h header files done 28-12-2012, reverting 2 commits: f871de0... build: make use of 76 lib/.h renamed files ffd8e12... build: rename 76 lib/.h files This also reverts removal of redundant include guard (redundant thanks to changes in above commits) done 2-12-2013, reverting 1 commit: c087374... curl_setup.h: remove redundant include guard This also reverts renaming and usage of lib/.c source files done 3-12-2013, reverting 3 commits: 13606bb... build: make use of 93 lib/.c renamed files 5b6e792... build: rename 93 lib/*.c files 7d83dff... build: commit 13606bbfde follow-up 1 Start of related discussion thread: http://curl.haxx.se/mail/lib-2013-01/0012.html Asking for confirmation on pushing this revertion commit: http://curl.haxx.se/mail/lib-2013-01/0048.html Confirmation summary: http://curl.haxx.se/mail/lib-2013-01/0079.html NOTICE: The list of 2 files that have been modified by other intermixed commits, while renamed, and also by at least one of the 6 commits this one reverts follows below. These 2 files will exhibit a hole in history unless git's '--follow' option is used when viewing logs. lib/curl_imap.h lib/curl_smtp.h 2013-01-03 20:50:28 -05:00			`#include "pingpong.h"`
smtp: Moved auth-mechanism constants into a separate header file Move the SMTP_AUTH constants into a separate header file in preparation for adding SASL based authentication to POP3 as the two protocols will need to share them. 2012-05-25 16:49:25 -04:00
sasl: Added predefined preferred mechanism values In preparation for the upcoming changes to IMAP, POP3 and SMTP added preferred mechanism values. 2013-04-13 08:11:37 -04:00			`/* Authentication mechanism values */`
			`#define SASL_AUTH_NONE 0`
SASL: fix compiler warnings comparison between signed and unsigned integer expressions suggest parentheses around '&&' within '\|\|' (twice) 2013-09-04 16:32:57 -04:00			`#define SASL_AUTH_ANY ~0U`
sasl: Added predefined preferred mechanism values In preparation for the upcoming changes to IMAP, POP3 and SMTP added preferred mechanism values. 2013-04-13 08:11:37 -04:00
sasl: Centralised the authentication mechanism strings Moved the standard SASL mechanism strings into curl_sasl.h rather than hard coding the same values over and over again in the protocols that use SASL authentication. For more information about the mechanism strings see: http://www.iana.org/assignments/sasl-mechanisms 2013-09-24 15:12:48 -04:00			`/* Authentication mechanism flags */`
			`#define SASL_MECH_LOGIN (1 << 0)`
			`#define SASL_MECH_PLAIN (1 << 1)`
			`#define SASL_MECH_CRAM_MD5 (1 << 2)`
			`#define SASL_MECH_DIGEST_MD5 (1 << 3)`
			`#define SASL_MECH_GSSAPI (1 << 4)`
			`#define SASL_MECH_EXTERNAL (1 << 5)`
			`#define SASL_MECH_NTLM (1 << 6)`
			`#define SASL_MECH_XOAUTH2 (1 << 7)`

			`/* Authentication mechanism strings */`
			`#define SASL_MECH_STRING_LOGIN "LOGIN"`
			`#define SASL_MECH_STRING_PLAIN "PLAIN"`
			`#define SASL_MECH_STRING_CRAM_MD5 "CRAM-MD5"`
			`#define SASL_MECH_STRING_DIGEST_MD5 "DIGEST-MD5"`
			`#define SASL_MECH_STRING_GSSAPI "GSSAPI"`
			`#define SASL_MECH_STRING_EXTERNAL "EXTERNAL"`
			`#define SASL_MECH_STRING_NTLM "NTLM"`
			`#define SASL_MECH_STRING_XOAUTH2 "XOAUTH2"`

			`/* This is used to test whether the line starts with the given mechanism */`
			`#define sasl_mech_equal(line, wordlen, mech) \`
			`(wordlen == (sizeof(mech) - 1) / sizeof(char) && \`
			`!memcmp(line, mech, wordlen))`

sasl: Small comment style tidy up following ntlm commit 2012-06-02 06:09:59 -04:00			`/* This is used to generate a base64 encoded PLAIN authentication message */`
sasl: Moved plain text authentication message creation from smtp.c Moved the plain text message creation from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-05-30 15:52:52 -04:00			`CURLcode Curl_sasl_create_plain_message(struct SessionHandle *data,`
sasl: Corrected a few violations of the curl coding standards Corrected some incorrectly positioned pointer variable declarations to be "char " rather than "char ". 2013-03-21 18:21:22 -04:00			`const char *userp,`
			`const char *passwdp,`
sasl: Moved plain text authentication message creation from smtp.c Moved the plain text message creation from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-05-30 15:52:52 -04:00			`char *outptr, size_t outlen);`

sasl: Small comment style tidy up following ntlm commit 2012-06-02 06:09:59 -04:00			`/* This is used to generate a base64 encoded LOGIN authentication message`
sasl: Moved login authentication message creation from smtp.c Moved the login message creation from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-05-31 18:11:54 -04:00			`containing either the user name or password details */`
			`CURLcode Curl_sasl_create_login_message(struct SessionHandle *data,`
sasl: Corrected a few violations of the curl coding standards Corrected some incorrectly positioned pointer variable declarations to be "char " rather than "char ". 2013-03-21 18:21:22 -04:00			`const char valuep, char *outptr,`
sasl: Moved login authentication message creation from smtp.c Moved the login message creation from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-05-31 18:11:54 -04:00			`size_t *outlen);`

sasl: Moved cram-md5 authentication message creation from smtp.c Moved the cram-md5 message creation from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-06-03 12:21:49 -04:00			`#ifndef CURL_DISABLE_CRYPTO_AUTH`
sasl: Small code tidy up before moving digest-md5 over Correction of comments and variable names. 2012-06-04 05:49:55 -04:00			`/* This is used to generate a base64 encoded CRAM-MD5 response message */`
sasl: Moved cram-md5 authentication message creation from smtp.c Moved the cram-md5 message creation from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-06-03 12:21:49 -04:00			`CURLcode Curl_sasl_create_cram_md5_message(struct SessionHandle *data,`
sasl: Corrected a few violations of the curl coding standards Corrected some incorrectly positioned pointer variable declarations to be "char " rather than "char ". 2013-03-21 18:21:22 -04:00			`const char *chlg64,`
			`const char *user,`
			`const char *passwdp,`
sasl: Moved cram-md5 authentication message creation from smtp.c Moved the cram-md5 message creation from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-06-03 12:21:49 -04:00			`char *outptr, size_t outlen);`
sasl: Moved digest-md5 authentication message creation from smtp.c Moved the digest-md5 message creation from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-06-04 05:53:18 -04:00
			`/* This is used to generate a base64 encoded DIGEST-MD5 response message */`
			`CURLcode Curl_sasl_create_digest_md5_message(struct SessionHandle *data,`
sasl: Corrected a few violations of the curl coding standards Corrected some incorrectly positioned pointer variable declarations to be "char " rather than "char ". 2013-03-21 18:21:22 -04:00			`const char *chlg64,`
			`const char *user,`
			`const char *passwdp,`
			`const char *service,`
sasl: Moved digest-md5 authentication message creation from smtp.c Moved the digest-md5 message creation from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-06-04 05:53:18 -04:00			`char *outptr, size_t outlen);`
sasl: Moved cram-md5 authentication message creation from smtp.c Moved the cram-md5 message creation from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-06-03 12:21:49 -04:00			`#endif`

sasl: Moved ntlm authentication message handling from smtp.c Moved the ntlm message creation and decoding from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-06-02 06:07:58 -04:00			`#ifdef USE_NTLM`
			`/* This is used to generate a base64 encoded NTLM type-1 message */`
			`CURLcode Curl_sasl_create_ntlm_type1_message(const char *userp,`
			`const char *passwdp,`
			`struct ntlmdata *ntlm,`
			`char **outptr,`
			`size_t *outlen);`

			`/* This is used to decode an incoming NTLM type-2 message and generate a`
			`base64 encoded type-3 response */`
sasl: Renamed Curl_sasl_decode_ntlm_type2_message() For consistency with other SASL based functions renamed this function to Curl_sasl_create_ntlm_type3_message() which better describes its usage. 2012-06-04 17:25:45 -04:00			`CURLcode Curl_sasl_create_ntlm_type3_message(struct SessionHandle *data,`
sasl: Corrected variable names in comments and parameters 2012-06-02 09:03:55 -04:00			`const char *header,`
sasl: Moved ntlm authentication message handling from smtp.c Moved the ntlm message creation and decoding from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-06-02 06:07:58 -04:00			`const char *userp,`
			`const char *passwdp,`
			`struct ntlmdata *ntlm,`
			`char *outptr, size_t outlen);`

			`#endif /* USE_NTLM */`

sasl: added basic SASL XOAUTH2 support Added the ability to generated a base64 encoded XOAUTH2 token containing: "user=<username>^Aauth=Bearer <bearer token>^A^A" as per RFC6749 "OAuth 2.0 Authorization Framework". 2013-08-25 13:17:01 -04:00			`/* This is used to generate a base64 encoded XOAUTH2 authentication message`
			`containing the user name and bearer token */`
			`CURLcode Curl_sasl_create_xoauth2_message(struct SessionHandle *data,`
			`const char *user,`
			`const char *bearer,`
			`char *outptr, size_t outlen);`

sasl: Moved ntlm authentication message handling from smtp.c Moved the ntlm message creation and decoding from smtp.c into the sasl module to allow for use by other modules such as pop3. 2012-06-02 06:07:58 -04:00			`/* This is used to cleanup any libraries or curl modules used by the sasl`
			`functions */`
			`void Curl_sasl_cleanup(struct connectdata *conn, unsigned int authused);`

smtp: Moved auth-mechanism constants into a separate header file Move the SMTP_AUTH constants into a separate header file in preparation for adding SASL based authentication to POP3 as the two protocols will need to share them. 2012-05-25 16:49:25 -04:00			`#endif /* HEADER_CURL_SASL_H */`