diff options
Diffstat (limited to '')
| -rw-r--r-- | lib/anon_cred.c | 199 |
1 files changed, 199 insertions, 0 deletions
diff --git a/lib/anon_cred.c b/lib/anon_cred.c new file mode 100644 index 0000000..49c273a --- /dev/null +++ b/lib/anon_cred.c @@ -0,0 +1,199 @@ +/* + * Copyright (C) 2001-2012 Free Software Foundation, Inc. + * + * Author: Nikos Mavrogiannopoulos + * + * This file is part of GnuTLS. + * + * The GnuTLS is free software; you can redistribute it and/or + * modify it under the terms of the GNU Lesser General Public License + * as published by the Free Software Foundation; either version 2.1 of + * the License, or (at your option) any later version. + * + * This library is distributed in the hope that it will be useful, but + * WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + * Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General Public License + * along with this program. If not, see <https://www.gnu.org/licenses/> + * + */ + +#include "gnutls_int.h" + +#ifdef ENABLE_ANON + +#include "errors.h" +#include <auth/anon.h> +#include "auth.h" +#include "dh.h" +#include "num.h" +#include "mpi.h" + +/** + * gnutls_anon_free_server_credentials: + * @sc: is a #gnutls_anon_server_credentials_t type. + * + * Free a gnutls_anon_server_credentials_t structure. + **/ +void +gnutls_anon_free_server_credentials(gnutls_anon_server_credentials_t sc) +{ + if (sc->deinit_dh_params) { + gnutls_dh_params_deinit(sc->dh_params); + } + gnutls_free(sc); +} + +/** + * gnutls_anon_allocate_server_credentials: + * @sc: is a pointer to a #gnutls_anon_server_credentials_t type. + * + * Allocate a gnutls_anon_server_credentials_t structure. + * + * Returns: %GNUTLS_E_SUCCESS on success, or an error code. + **/ +int +gnutls_anon_allocate_server_credentials(gnutls_anon_server_credentials_t * + sc) +{ + + *sc = gnutls_calloc(1, sizeof(anon_server_credentials_st)); + + return 0; +} + + +/** + * gnutls_anon_free_client_credentials: + * @sc: is a #gnutls_anon_client_credentials_t type. + * + * Free a gnutls_anon_client_credentials_t structure. + **/ +void +gnutls_anon_free_client_credentials(gnutls_anon_client_credentials_t sc) +{ +} + +static struct gnutls_anon_client_credentials_st anon_dummy_struct; +static const gnutls_anon_client_credentials_t anon_dummy = + &anon_dummy_struct; + +/** + * gnutls_anon_allocate_client_credentials: + * @sc: is a pointer to a #gnutls_anon_client_credentials_t type. + * + * Allocate a gnutls_anon_client_credentials_t structure. + * + * Returns: %GNUTLS_E_SUCCESS on success, or an error code. + **/ +int +gnutls_anon_allocate_client_credentials(gnutls_anon_client_credentials_t * + sc) +{ + /* anon_dummy is only there for *sc not to be null. + * it is not used at all; + */ + *sc = anon_dummy; + + return 0; +} + +/** + * gnutls_anon_set_server_dh_params: + * @res: is a gnutls_anon_server_credentials_t type + * @dh_params: The Diffie-Hellman parameters. + * + * This function will set the Diffie-Hellman parameters for an + * anonymous server to use. These parameters will be used in + * Anonymous Diffie-Hellman cipher suites. + * + * Deprecated: This function is unnecessary and discouraged on GnuTLS 3.6.0 + * or later. Since 3.6.0, DH parameters are negotiated + * following RFC7919. + **/ +void +gnutls_anon_set_server_dh_params(gnutls_anon_server_credentials_t res, + gnutls_dh_params_t dh_params) +{ + if (res->deinit_dh_params) { + res->deinit_dh_params = 0; + gnutls_dh_params_deinit(res->dh_params); + res->dh_params = NULL; + } + + res->dh_params = dh_params; + res->dh_sec_param = gnutls_pk_bits_to_sec_param(GNUTLS_PK_DH, _gnutls_mpi_get_nbits(dh_params->params[0])); +} + +/** + * gnutls_anon_set_server_known_dh_params: + * @res: is a gnutls_anon_server_credentials_t type + * @sec_param: is an option of the %gnutls_sec_param_t enumeration + * + * This function will set the Diffie-Hellman parameters for an + * anonymous server to use. These parameters will be used in + * Anonymous Diffie-Hellman cipher suites and will be selected from + * the FFDHE set of RFC7919 according to the security level provided. + * + * Deprecated: This function is unnecessary and discouraged on GnuTLS 3.6.0 + * or later. Since 3.6.0, DH parameters are negotiated + * following RFC7919. + * + * Returns: On success, %GNUTLS_E_SUCCESS (0) is returned, otherwise a + * negative error value. + * + * Since: 3.5.6 + **/ +int +gnutls_anon_set_server_known_dh_params(gnutls_anon_server_credentials_t res, + gnutls_sec_param_t sec_param) +{ + res->dh_sec_param = sec_param; + + return 0; +} + +/** + * gnutls_anon_set_server_params_function: + * @res: is a gnutls_certificate_credentials_t type + * @func: is the function to be called + * + * This function will set a callback in order for the server to get + * the Diffie-Hellman parameters for anonymous authentication. The + * callback should return %GNUTLS_E_SUCCESS (0) on success. + * + * Deprecated: This function is unnecessary and discouraged on GnuTLS 3.6.0 + * or later. Since 3.6.0, DH parameters are negotiated + * following RFC7919. + * + **/ +void +gnutls_anon_set_server_params_function(gnutls_anon_server_credentials_t + res, gnutls_params_function * func) +{ + res->params_func = func; +} + +/** + * gnutls_anon_set_params_function: + * @res: is a gnutls_anon_server_credentials_t type + * @func: is the function to be called + * + * This function will set a callback in order for the server to get + * the Diffie-Hellman or RSA parameters for anonymous authentication. + * The callback should return %GNUTLS_E_SUCCESS (0) on success. + * + * Deprecated: This function is unnecessary and discouraged on GnuTLS 3.6.0 + * or later. Since 3.6.0, DH parameters are negotiated + * following RFC7919. + * + **/ +void +gnutls_anon_set_params_function(gnutls_anon_server_credentials_t res, + gnutls_params_function * func) +{ + res->params_func = func; +} +#endif |