2009-09-26 19:41:59 +02:00
/*
Unix SMB / CIFS implementation .
Copyright ( C ) Jelmer Vernooij < jelmer @ samba . org > 2009
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 3 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program . If not , see < http : //www.gnu.org/licenses/>.
*/
# include <Python.h>
2009-10-23 16:23:01 +11:00
# include "includes.h"
2009-10-02 18:50:59 +10:00
# include "param/pyparam.h"
2009-09-26 19:41:59 +02:00
# include "auth/gensec/gensec.h"
2013-08-05 07:12:01 +02:00
# include "auth/gensec/gensec_internal.h" /* TODO: remove this */
2011-01-18 19:14:45 +11:00
# include "auth/credentials/pycredentials.h"
2009-09-26 19:41:59 +02:00
# include "libcli/util/pyerrors.h"
2012-12-28 15:37:14 +01:00
# include "python/modules.h"
2011-08-14 15:34:08 +02:00
# include <pytalloc.h>
2009-09-26 19:41:59 +02:00
# include <tevent.h>
2011-01-17 16:21:28 +11:00
# include "librpc/rpc/pyrpc_util.h"
2009-09-26 19:41:59 +02:00
static PyObject * py_get_name_by_authtype ( PyObject * self , PyObject * args )
{
int type ;
const char * name ;
struct gensec_security * security ;
if ( ! PyArg_ParseTuple ( args , " i " , & type ) )
return NULL ;
2011-08-10 15:15:18 +02:00
security = pytalloc_get_type ( self , struct gensec_security ) ;
2009-09-26 19:41:59 +02:00
name = gensec_get_name_by_authtype ( security , type ) ;
if ( name = = NULL )
Py_RETURN_NONE ;
return PyString_FromString ( name ) ;
}
2009-10-02 18:50:59 +10:00
static struct gensec_settings * settings_from_object ( TALLOC_CTX * mem_ctx , PyObject * object )
2009-09-26 19:41:59 +02:00
{
2009-10-02 18:50:59 +10:00
struct gensec_settings * s ;
PyObject * py_hostname , * py_lp_ctx ;
if ( ! PyDict_Check ( object ) ) {
PyErr_SetString ( PyExc_ValueError , " settings should be a dictionary " ) ;
return NULL ;
}
s = talloc_zero ( mem_ctx , struct gensec_settings ) ;
if ( ! s ) return NULL ;
py_hostname = PyDict_GetItemString ( object , " target_hostname " ) ;
if ( ! py_hostname ) {
PyErr_SetString ( PyExc_ValueError , " settings.target_hostname not found " ) ;
return NULL ;
}
py_lp_ctx = PyDict_GetItemString ( object , " lp_ctx " ) ;
if ( ! py_lp_ctx ) {
PyErr_SetString ( PyExc_ValueError , " settings.lp_ctx not found " ) ;
return NULL ;
}
2010-09-22 13:57:07 -07:00
2009-10-02 18:50:59 +10:00
s - > target_hostname = PyString_AsString ( py_hostname ) ;
2010-07-16 14:32:42 +10:00
s - > lp_ctx = lpcfg_from_py_object ( s , py_lp_ctx ) ;
2009-10-02 18:50:59 +10:00
return s ;
2009-09-26 19:41:59 +02:00
}
static PyObject * py_gensec_start_client ( PyTypeObject * type , PyObject * args , PyObject * kwargs )
{
NTSTATUS status ;
2011-08-10 15:15:18 +02:00
pytalloc_Object * self ;
2009-09-26 19:41:59 +02:00
struct gensec_settings * settings ;
const char * kwnames [ ] = { " settings " , NULL } ;
2012-05-17 23:48:26 +02:00
PyObject * py_settings = Py_None ;
2010-09-22 13:57:07 -07:00
struct gensec_security * gensec ;
2009-09-26 19:41:59 +02:00
2011-01-18 19:14:45 +11:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " |O " , discard_const_p ( char * , kwnames ) , & py_settings ) )
2009-09-26 19:41:59 +02:00
return NULL ;
2011-08-10 15:15:18 +02:00
self = ( pytalloc_Object * ) type - > tp_alloc ( type , 0 ) ;
2009-09-26 19:41:59 +02:00
if ( self = = NULL ) {
PyErr_NoMemory ( ) ;
return NULL ;
}
self - > talloc_ctx = talloc_new ( NULL ) ;
if ( self - > talloc_ctx = = NULL ) {
PyErr_NoMemory ( ) ;
return NULL ;
}
2009-10-02 18:50:59 +10:00
2011-01-18 19:14:45 +11:00
if ( py_settings ! = Py_None ) {
settings = settings_from_object ( self - > talloc_ctx , py_settings ) ;
if ( settings = = NULL ) {
PyObject_DEL ( self ) ;
return NULL ;
}
} else {
settings = talloc_zero ( self - > talloc_ctx , struct gensec_settings ) ;
if ( settings = = NULL ) {
PyObject_DEL ( self ) ;
return NULL ;
}
settings - > lp_ctx = loadparm_init_global ( true ) ;
2011-03-21 10:32:24 +01:00
if ( settings - > lp_ctx = = NULL ) {
PyErr_NoMemory ( ) ;
PyObject_DEL ( self ) ;
return NULL ;
}
2009-10-02 18:50:59 +10:00
}
2010-09-22 13:57:07 -07:00
2011-06-06 14:58:28 +10:00
status = gensec_init ( ) ;
2009-10-02 18:50:59 +10:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
PyErr_SetNTSTATUS ( status ) ;
PyObject_DEL ( self ) ;
return NULL ;
}
2011-10-17 09:22:33 +02:00
status = gensec_client_start ( self - > talloc_ctx , & gensec , settings ) ;
2009-09-26 19:41:59 +02:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
PyErr_SetNTSTATUS ( status ) ;
PyObject_DEL ( self ) ;
return NULL ;
}
2010-09-22 13:57:07 -07:00
self - > ptr = gensec ;
2009-09-26 19:41:59 +02:00
return ( PyObject * ) self ;
}
2011-01-17 16:23:02 +11:00
static PyObject * py_gensec_start_server ( PyTypeObject * type , PyObject * args , PyObject * kwargs )
{
NTSTATUS status ;
2011-08-10 15:15:18 +02:00
pytalloc_Object * self ;
2011-01-18 19:14:45 +11:00
struct gensec_settings * settings = NULL ;
const char * kwnames [ ] = { " settings " , " auth_context " , NULL } ;
PyObject * py_settings = Py_None ;
PyObject * py_auth_context = Py_None ;
2011-01-17 16:23:02 +11:00
struct gensec_security * gensec ;
2011-05-07 08:14:06 +02:00
struct auth4_context * auth_context = NULL ;
2011-01-17 16:23:02 +11:00
2011-01-18 19:14:45 +11:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " |OO " , discard_const_p ( char * , kwnames ) , & py_settings , & py_auth_context ) )
2011-01-17 16:23:02 +11:00
return NULL ;
2011-08-10 15:15:18 +02:00
self = ( pytalloc_Object * ) type - > tp_alloc ( type , 0 ) ;
2011-01-17 16:23:02 +11:00
if ( self = = NULL ) {
PyErr_NoMemory ( ) ;
return NULL ;
}
self - > talloc_ctx = talloc_new ( NULL ) ;
if ( self - > talloc_ctx = = NULL ) {
PyErr_NoMemory ( ) ;
return NULL ;
}
2011-01-18 19:14:45 +11:00
if ( py_settings ! = Py_None ) {
settings = settings_from_object ( self - > talloc_ctx , py_settings ) ;
if ( settings = = NULL ) {
PyObject_DEL ( self ) ;
return NULL ;
}
} else {
settings = talloc_zero ( self - > talloc_ctx , struct gensec_settings ) ;
if ( settings = = NULL ) {
PyObject_DEL ( self ) ;
return NULL ;
}
settings - > lp_ctx = loadparm_init_global ( true ) ;
2011-03-21 10:32:24 +01:00
if ( settings - > lp_ctx = = NULL ) {
PyErr_NoMemory ( ) ;
PyObject_DEL ( self ) ;
return NULL ;
}
2011-01-17 16:23:02 +11:00
}
2011-01-18 19:14:45 +11:00
if ( py_auth_context ! = Py_None ) {
2011-08-10 15:15:18 +02:00
auth_context = pytalloc_get_type ( py_auth_context , struct auth4_context ) ;
2011-01-18 19:14:45 +11:00
if ( ! auth_context ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth.AuthContext for auth_context argument, got %s " ,
2011-08-10 15:15:18 +02:00
talloc_get_name ( pytalloc_get_ptr ( py_auth_context ) ) ) ;
2011-01-18 19:14:45 +11:00
return NULL ;
}
}
2011-01-17 16:23:02 +11:00
2011-06-06 14:58:28 +10:00
status = gensec_init ( ) ;
2011-01-17 16:23:02 +11:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
PyErr_SetNTSTATUS ( status ) ;
PyObject_DEL ( self ) ;
return NULL ;
}
2011-10-17 09:22:33 +02:00
status = gensec_server_start ( self - > talloc_ctx , settings , auth_context , & gensec ) ;
2011-01-17 16:23:02 +11:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
PyErr_SetNTSTATUS ( status ) ;
PyObject_DEL ( self ) ;
return NULL ;
}
self - > ptr = gensec ;
return ( PyObject * ) self ;
}
2011-01-18 19:14:45 +11:00
static PyObject * py_gensec_set_credentials ( PyObject * self , PyObject * args )
{
PyObject * py_creds = Py_None ;
struct cli_credentials * creds ;
2011-08-10 15:15:18 +02:00
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
2011-01-18 19:14:45 +11:00
NTSTATUS status ;
if ( ! PyArg_ParseTuple ( args , " O " , & py_creds ) )
return NULL ;
creds = PyCredentials_AsCliCredentials ( py_creds ) ;
if ( ! creds ) {
PyErr_Format ( PyExc_TypeError ,
" Expected samba.credentaials for credentials argument got %s " ,
2011-08-10 15:15:18 +02:00
talloc_get_name ( pytalloc_get_ptr ( py_creds ) ) ) ;
2011-01-18 19:14:45 +11:00
}
status = gensec_set_credentials ( security , creds ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
PyErr_SetNTSTATUS ( status ) ;
return NULL ;
}
Py_RETURN_NONE ;
}
2009-09-26 19:41:59 +02:00
static PyObject * py_gensec_session_info ( PyObject * self )
{
2011-08-01 15:39:01 +10:00
TALLOC_CTX * mem_ctx ;
2009-09-26 19:41:59 +02:00
NTSTATUS status ;
2011-01-17 16:21:28 +11:00
PyObject * py_session_info ;
2011-08-10 15:15:18 +02:00
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
2009-09-26 19:41:59 +02:00
struct auth_session_info * info ;
2009-10-02 18:50:59 +10:00
if ( security - > ops = = NULL ) {
2010-09-22 13:57:07 -07:00
PyErr_SetString ( PyExc_RuntimeError , " no mechanism selected " ) ;
2009-10-02 18:50:59 +10:00
return NULL ;
}
2011-08-01 15:39:01 +10:00
mem_ctx = talloc_new ( NULL ) ;
status = gensec_session_info ( security , mem_ctx , & info ) ;
2009-09-26 19:41:59 +02:00
if ( NT_STATUS_IS_ERR ( status ) ) {
PyErr_SetNTSTATUS ( status ) ;
return NULL ;
}
2011-04-05 16:15:27 +10:00
py_session_info = py_return_ndr_struct ( " samba.dcerpc.auth " , " session_info " ,
2011-01-17 16:21:28 +11:00
info , info ) ;
2011-08-01 15:39:01 +10:00
talloc_free ( mem_ctx ) ;
2011-01-17 16:21:28 +11:00
return py_session_info ;
2009-09-26 19:41:59 +02:00
}
2011-12-16 10:37:51 +01:00
static PyObject * py_gensec_session_key ( PyObject * self )
{
TALLOC_CTX * mem_ctx ;
NTSTATUS status ;
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
DATA_BLOB session_key = data_blob_null ;
static PyObject * session_key_obj = NULL ;
if ( security - > ops = = NULL ) {
PyErr_SetString ( PyExc_RuntimeError , " no mechanism selected " ) ;
return NULL ;
}
mem_ctx = talloc_new ( NULL ) ;
status = gensec_session_key ( security , mem_ctx , & session_key ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
talloc_free ( mem_ctx ) ;
PyErr_SetNTSTATUS ( status ) ;
return NULL ;
}
session_key_obj = PyString_FromStringAndSize ( ( const char * ) session_key . data ,
session_key . length ) ;
talloc_free ( mem_ctx ) ;
return session_key_obj ;
}
2010-09-22 13:57:07 -07:00
static PyObject * py_gensec_start_mech_by_name ( PyObject * self , PyObject * args )
{
2011-01-17 16:26:21 +11:00
char * name ;
2011-08-10 15:15:18 +02:00
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
2011-01-17 16:26:21 +11:00
NTSTATUS status ;
2010-09-22 13:57:07 -07:00
2011-01-17 16:26:21 +11:00
if ( ! PyArg_ParseTuple ( args , " s " , & name ) )
return NULL ;
2010-09-22 13:57:07 -07:00
2011-01-17 16:26:21 +11:00
status = gensec_start_mech_by_name ( security , name ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
PyErr_SetNTSTATUS ( status ) ;
return NULL ;
}
2010-09-22 13:57:07 -07:00
2011-01-17 16:26:21 +11:00
Py_RETURN_NONE ;
2010-09-22 13:57:07 -07:00
}
2011-01-18 19:14:45 +11:00
static PyObject * py_gensec_start_mech_by_sasl_name ( PyObject * self , PyObject * args )
{
char * sasl_name ;
2011-08-10 15:15:18 +02:00
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
2011-01-18 19:14:45 +11:00
NTSTATUS status ;
if ( ! PyArg_ParseTuple ( args , " s " , & sasl_name ) )
return NULL ;
status = gensec_start_mech_by_sasl_name ( security , sasl_name ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
PyErr_SetNTSTATUS ( status ) ;
return NULL ;
}
Py_RETURN_NONE ;
}
2010-09-22 15:35:36 -07:00
static PyObject * py_gensec_start_mech_by_authtype ( PyObject * self , PyObject * args )
{
int authtype , level ;
2011-08-10 15:15:18 +02:00
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
2010-09-22 15:35:36 -07:00
NTSTATUS status ;
if ( ! PyArg_ParseTuple ( args , " ii " , & authtype , & level ) )
return NULL ;
status = gensec_start_mech_by_authtype ( security , authtype , level ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
PyErr_SetNTSTATUS ( status ) ;
return NULL ;
}
Py_RETURN_NONE ;
}
2011-01-18 19:14:45 +11:00
static PyObject * py_gensec_want_feature ( PyObject * self , PyObject * args )
{
int feature ;
2011-08-10 15:15:18 +02:00
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
2011-01-18 19:14:45 +11:00
/* This is i (and declared as an int above) by design, as they are handled as an integer in python */
if ( ! PyArg_ParseTuple ( args , " i " , & feature ) )
return NULL ;
gensec_want_feature ( security , feature ) ;
Py_RETURN_NONE ;
}
static PyObject * py_gensec_have_feature ( PyObject * self , PyObject * args )
{
int feature ;
2011-08-10 15:15:18 +02:00
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
2011-01-18 19:14:45 +11:00
/* This is i (and declared as an int above) by design, as they are handled as an integer in python */
if ( ! PyArg_ParseTuple ( args , " i " , & feature ) )
return NULL ;
if ( gensec_have_feature ( security , feature ) ) {
return Py_True ;
}
return Py_False ;
}
2012-01-11 14:53:52 +01:00
static PyObject * py_gensec_set_max_update_size ( PyObject * self , PyObject * args )
{
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
unsigned int max_update_size = 0 ;
if ( ! PyArg_ParseTuple ( args , " I " , & max_update_size ) )
return NULL ;
gensec_set_max_update_size ( security , max_update_size ) ;
Py_RETURN_NONE ;
}
static PyObject * py_gensec_max_update_size ( PyObject * self )
{
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
unsigned int max_update_size = gensec_max_update_size ( security ) ;
return PyInt_FromLong ( max_update_size ) ;
}
2011-01-17 16:23:02 +11:00
static PyObject * py_gensec_update ( PyObject * self , PyObject * args )
{
NTSTATUS status ;
TALLOC_CTX * mem_ctx ;
DATA_BLOB in , out ;
PyObject * ret , * py_in ;
2011-08-10 15:15:18 +02:00
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
2011-01-19 10:31:28 +11:00
PyObject * finished_processing ;
2011-01-17 16:23:02 +11:00
if ( ! PyArg_ParseTuple ( args , " O " , & py_in ) )
return NULL ;
mem_ctx = talloc_new ( NULL ) ;
2011-01-19 10:31:28 +11:00
if ( ! PyString_Check ( py_in ) ) {
PyErr_Format ( PyExc_TypeError , " expected a string " ) ;
return NULL ;
2011-01-18 19:14:45 +11:00
}
2011-01-17 16:23:02 +11:00
2011-01-19 10:31:28 +11:00
in . data = ( uint8_t * ) PyString_AsString ( py_in ) ;
in . length = PyString_Size ( py_in ) ;
2013-12-13 19:56:13 +01:00
status = gensec_update ( security , mem_ctx , in , & out ) ;
2011-01-17 16:23:02 +11:00
2011-01-18 19:14:45 +11:00
if ( ! NT_STATUS_EQUAL ( status , NT_STATUS_MORE_PROCESSING_REQUIRED )
& & ! NT_STATUS_IS_OK ( status ) ) {
PyErr_SetNTSTATUS ( status ) ;
talloc_free ( mem_ctx ) ;
return NULL ;
}
2011-01-19 10:31:28 +11:00
ret = PyString_FromStringAndSize ( ( const char * ) out . data , out . length ) ;
2011-01-18 19:14:45 +11:00
talloc_free ( mem_ctx ) ;
2011-01-19 10:31:28 +11:00
if ( NT_STATUS_EQUAL ( status , NT_STATUS_MORE_PROCESSING_REQUIRED ) ) {
finished_processing = Py_False ;
2011-01-18 19:14:45 +11:00
} else {
2011-01-19 10:31:28 +11:00
finished_processing = Py_True ;
2011-01-18 19:14:45 +11:00
}
2011-01-19 10:31:28 +11:00
return PyTuple_Pack ( 2 , finished_processing , ret ) ;
2011-01-18 19:14:45 +11:00
}
static PyObject * py_gensec_wrap ( PyObject * self , PyObject * args )
{
NTSTATUS status ;
TALLOC_CTX * mem_ctx ;
DATA_BLOB in , out ;
PyObject * ret , * py_in ;
2011-08-10 15:15:18 +02:00
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
2011-01-18 19:14:45 +11:00
if ( ! PyArg_ParseTuple ( args , " O " , & py_in ) )
return NULL ;
mem_ctx = talloc_new ( NULL ) ;
2011-01-19 10:31:28 +11:00
if ( ! PyString_Check ( py_in ) ) {
PyErr_Format ( PyExc_TypeError , " expected a string " ) ;
return NULL ;
2011-01-18 19:14:45 +11:00
}
2011-01-19 10:31:28 +11:00
in . data = ( uint8_t * ) PyString_AsString ( py_in ) ;
in . length = PyString_Size ( py_in ) ;
2011-01-18 19:14:45 +11:00
status = gensec_wrap ( security , mem_ctx , & in , & out ) ;
2011-01-17 16:23:02 +11:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
PyErr_SetNTSTATUS ( status ) ;
talloc_free ( mem_ctx ) ;
return NULL ;
}
2011-01-19 10:31:28 +11:00
ret = PyString_FromStringAndSize ( ( const char * ) out . data , out . length ) ;
2011-01-18 19:14:45 +11:00
talloc_free ( mem_ctx ) ;
return ret ;
}
static PyObject * py_gensec_unwrap ( PyObject * self , PyObject * args )
{
NTSTATUS status ;
TALLOC_CTX * mem_ctx ;
DATA_BLOB in , out ;
PyObject * ret , * py_in ;
2011-08-10 15:15:18 +02:00
struct gensec_security * security = pytalloc_get_type ( self , struct gensec_security ) ;
2011-01-18 19:14:45 +11:00
if ( ! PyArg_ParseTuple ( args , " O " , & py_in ) )
return NULL ;
mem_ctx = talloc_new ( NULL ) ;
2011-01-19 10:31:28 +11:00
if ( ! PyString_Check ( py_in ) ) {
PyErr_Format ( PyExc_TypeError , " expected a string " ) ;
return NULL ;
2011-01-18 19:14:45 +11:00
}
2011-01-19 10:31:28 +11:00
in . data = ( uint8_t * ) PyString_AsString ( py_in ) ;
in . length = PyString_Size ( py_in ) ;
2011-01-18 19:14:45 +11:00
status = gensec_unwrap ( security , mem_ctx , & in , & out ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
PyErr_SetNTSTATUS ( status ) ;
talloc_free ( mem_ctx ) ;
return NULL ;
}
2011-01-19 10:31:28 +11:00
ret = PyString_FromStringAndSize ( ( const char * ) out . data , out . length ) ;
2011-01-17 16:23:02 +11:00
talloc_free ( mem_ctx ) ;
return ret ;
}
2009-09-26 19:41:59 +02:00
static PyMethodDef py_gensec_security_methods [ ] = {
{ " start_client " , ( PyCFunction ) py_gensec_start_client , METH_VARARGS | METH_KEYWORDS | METH_CLASS ,
" S.start_client(settings) -> gensec " } ,
2011-01-17 16:23:02 +11:00
{ " start_server " , ( PyCFunction ) py_gensec_start_server , METH_VARARGS | METH_KEYWORDS | METH_CLASS ,
" S.start_server(auth_ctx, settings) -> gensec " } ,
2011-01-18 19:14:45 +11:00
{ " set_credentials " , ( PyCFunction ) py_gensec_set_credentials , METH_VARARGS ,
" S.start_client(credentials) " } ,
2009-09-26 19:41:59 +02:00
{ " session_info " , ( PyCFunction ) py_gensec_session_info , METH_NOARGS ,
2012-02-18 23:52:37 +01:00
" S.session_info() -> info " } ,
2011-12-16 10:37:51 +01:00
{ " session_key " , ( PyCFunction ) py_gensec_session_key , METH_NOARGS ,
2012-02-18 23:52:37 +01:00
" S.session_key() -> key " } ,
2011-01-17 16:23:02 +11:00
{ " start_mech_by_name " , ( PyCFunction ) py_gensec_start_mech_by_name , METH_VARARGS ,
2012-02-18 23:52:37 +01:00
" S.start_mech_by_name(name) " } ,
2011-01-18 19:14:45 +11:00
{ " start_mech_by_sasl_name " , ( PyCFunction ) py_gensec_start_mech_by_sasl_name , METH_VARARGS ,
2012-02-18 23:52:37 +01:00
" S.start_mech_by_sasl_name(name) " } ,
{ " start_mech_by_authtype " , ( PyCFunction ) py_gensec_start_mech_by_authtype , METH_VARARGS ,
" S.start_mech_by_authtype(authtype, level) " } ,
2009-09-26 19:41:59 +02:00
{ " get_name_by_authtype " , ( PyCFunction ) py_get_name_by_authtype , METH_VARARGS ,
" S.get_name_by_authtype(authtype) -> name \n Lookup an auth type. " } ,
2011-01-18 19:14:45 +11:00
{ " want_feature " , ( PyCFunction ) py_gensec_want_feature , METH_VARARGS ,
2012-02-18 23:52:37 +01:00
" S.want_feature(feature) \n Request that GENSEC negotiate a particular feature. " } ,
2011-01-18 19:14:45 +11:00
{ " have_feature " , ( PyCFunction ) py_gensec_have_feature , METH_VARARGS ,
2012-02-18 23:52:37 +01:00
" S.have_feature() \n Return True if GENSEC negotiated a particular feature. " } ,
2012-01-11 14:53:52 +01:00
{ " set_max_update_size " , ( PyCFunction ) py_gensec_set_max_update_size , METH_VARARGS ,
" S.set_max_update_size(max_size) \n Some mechs can fragment update packets, needs to be use before the mech is started. " } ,
{ " max_update_size " , ( PyCFunction ) py_gensec_max_update_size , 0 ,
" S.max_update_size() \n Return the current max_update_size. " } ,
2011-01-17 16:23:02 +11:00
{ " update " , ( PyCFunction ) py_gensec_update , METH_VARARGS ,
2011-01-18 19:14:45 +11:00
" S.update(blob_in) -> (finished, blob_out) \n Perform one step in a GENSEC dance. Repeat with new packets until finished is true or exception. " } ,
{ " wrap " , ( PyCFunction ) py_gensec_wrap , METH_VARARGS ,
" S.wrap(blob_in) -> blob_out \n Package one clear packet into a wrapped GENSEC packet. " } ,
{ " unwrap " , ( PyCFunction ) py_gensec_unwrap , METH_VARARGS ,
" S.unwrap(blob_in) -> blob_out \n Perform one wrapped GENSEC packet into a clear packet. " } ,
2009-09-26 19:41:59 +02:00
{ NULL }
} ;
static PyTypeObject Py_Security = {
2011-07-20 14:50:05 +10:00
. tp_name = " gensec.Security " ,
2009-09-26 19:41:59 +02:00
. tp_flags = Py_TPFLAGS_DEFAULT ,
. tp_methods = py_gensec_security_methods ,
2011-08-10 15:15:18 +02:00
. tp_basicsize = sizeof ( pytalloc_Object ) ,
2009-09-26 19:41:59 +02:00
} ;
2011-01-19 10:31:28 +11:00
void initgensec ( void ) ;
2009-09-26 19:41:59 +02:00
void initgensec ( void )
{
PyObject * m ;
2011-08-10 15:15:18 +02:00
Py_Security . tp_base = pytalloc_GetObjectType ( ) ;
2010-12-01 01:13:20 +01:00
if ( Py_Security . tp_base = = NULL )
2010-12-01 00:02:53 +01:00
return ;
2009-09-26 19:41:59 +02:00
if ( PyType_Ready ( & Py_Security ) < 0 )
return ;
m = Py_InitModule3 ( " gensec " , NULL , " Generic Security Interface. " ) ;
if ( m = = NULL )
return ;
2010-02-25 20:22:52 +11:00
PyModule_AddObject ( m , " FEATURE_SESSION_KEY " , PyInt_FromLong ( GENSEC_FEATURE_SESSION_KEY ) ) ;
PyModule_AddObject ( m , " FEATURE_SIGN " , PyInt_FromLong ( GENSEC_FEATURE_SIGN ) ) ;
PyModule_AddObject ( m , " FEATURE_SEAL " , PyInt_FromLong ( GENSEC_FEATURE_SEAL ) ) ;
PyModule_AddObject ( m , " FEATURE_DCE_STYLE " , PyInt_FromLong ( GENSEC_FEATURE_DCE_STYLE ) ) ;
PyModule_AddObject ( m , " FEATURE_ASYNC_REPLIES " , PyInt_FromLong ( GENSEC_FEATURE_ASYNC_REPLIES ) ) ;
PyModule_AddObject ( m , " FEATURE_DATAGRAM_MODE " , PyInt_FromLong ( GENSEC_FEATURE_DATAGRAM_MODE ) ) ;
PyModule_AddObject ( m , " FEATURE_SIGN_PKT_HEADER " , PyInt_FromLong ( GENSEC_FEATURE_SIGN_PKT_HEADER ) ) ;
PyModule_AddObject ( m , " FEATURE_NEW_SPNEGO " , PyInt_FromLong ( GENSEC_FEATURE_NEW_SPNEGO ) ) ;
2009-09-26 19:41:59 +02:00
Py_INCREF ( & Py_Security ) ;
PyModule_AddObject ( m , " Security " , ( PyObject * ) & Py_Security ) ;
}