Home Explore Help
Sign In
SMusatov
/
ydb
mirror of https://github.com/ydb-platform/ydb.git
1
0
Fork 0
Files
Branch: mergelibs-240425-1630
Branches Tags
ydb
/
contrib
/
libs
/
sasl
/
plugins
/
plain.c

plain.c 14 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489 
  1. /* Plain SASL plugin
    2. 

  2.  * Rob Siemborski
    3. 

  3.  * Tim Martin 
    4. 

  4.  */
    5. 

  5. /* 
    6. 

  6.  * Copyright (c) 1998-2016 Carnegie Mellon University.  All rights reserved.
    7. 

  7.  *
    8. 

  8.  * Redistribution and use in source and binary forms, with or without
    9. 

  9.  * modification, are permitted provided that the following conditions
    10. 

  10.  * are met:
    11. 

  11.  *
    12. 

  12.  * 1. Redistributions of source code must retain the above copyright
    13. 

  13.  *    notice, this list of conditions and the following disclaimer. 
    14. 

  14.  *
    15. 

  15.  * 2. Redistributions in binary form must reproduce the above copyright
    16. 

  16.  *    notice, this list of conditions and the following disclaimer in
    17. 

  17.  *    the documentation and/or other materials provided with the
    18. 

  18.  *    distribution.
    19. 

  19.  *
    20. 

  20.  * 3. The name "Carnegie Mellon University" must not be used to
    21. 

  21.  *    endorse or promote products derived from this software without
    22. 

  22.  *    prior written permission. For permission or any other legal
    23. 

  23.  *    details, please contact  
    24. 

  24.  *      Carnegie Mellon University
    25. 

  25.  *      Center for Technology Transfer and Enterprise Creation
    26. 

  26.  *      4615 Forbes Avenue
    27. 

  27.  *      Suite 302
    28. 

  28.  *      Pittsburgh, PA  15213
    29. 

  29.  *      (412) 268-7393, fax: (412) 268-7395
    30. 

  30.  *      innovation@andrew.cmu.edu
    31. 

  31.  *
    32. 

  32.  * 4. Redistributions of any form whatsoever must retain the following
    33. 

  33.  *    acknowledgment:
    34. 

  34.  *    "This product includes software developed by Computing Services
    35. 

  35.  *     at Carnegie Mellon University (http://www.cmu.edu/computing/)."
    36. 

  36.  *
    37. 

  37.  * CARNEGIE MELLON UNIVERSITY DISCLAIMS ALL WARRANTIES WITH REGARD TO
    38. 

  38.  * THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
    39. 

  39.  * AND FITNESS, IN NO EVENT SHALL CARNEGIE MELLON UNIVERSITY BE LIABLE
    40. 

  40.  * FOR ANY SPECIAL, INDIRECT OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
    41. 

  41.  * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN
    42. 

  42.  * AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING
    43. 

  43.  * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
    44. 

  44.  */
    45. 

  45. 

  46. #include <config.h>
    47. 

  47. #include <stdio.h>
    48. 

  48. #include <string.h> 
    49. 

  49. #include <sasl.h>
    50. 

  50. #include <saslplug.h>
    51. 

  51. 

  52. #include "plugin_common.h"
    53. 

  53. 

  54. #ifdef macintosh 
    55. 

  55. #error #include <sasl_plain_plugin_decl.h> 
    56. 

  56. #endif 
    57. 

  57. 

  58. /*****************************  Common Section  *****************************/
    59. 

  59. 

  60. /*****************************  Server Section  *****************************/
    61. 

  61. 

  62. static int plain_server_mech_new(void *glob_context __attribute__((unused)), 
    63. 

  63. 				 sasl_server_params_t *sparams,
    64. 

  64. 				 const char *challenge __attribute__((unused)),
    65. 

  65. 				 unsigned challen __attribute__((unused)),
    66. 

  66. 				 void **conn_context)
    67. 

  67. {
    68. 

  68.     /* holds state are in */
    69. 

  69.     if (!conn_context) {
    70. 

  70. 	PARAMERROR( sparams->utils );
    71. 

  71. 	return SASL_BADPARAM;
    72. 

  72.     }
    73. 

  73.     
    74. 

  74.     *conn_context = NULL;
    75. 

  75.     
    76. 

  76.     return SASL_OK;
    77. 

  77. }
    78. 

  78. 

  79. static int plain_server_mech_step(void *conn_context __attribute__((unused)),
    80. 

  80. 				  sasl_server_params_t *params,
    81. 

  81. 				  const char *clientin,
    82. 

  82. 				  unsigned clientinlen,
    83. 

  83. 				  const char **serverout,
    84. 

  84. 				  unsigned *serveroutlen,
    85. 

  85. 				  sasl_out_params_t *oparams)
    86. 

  86. {
    87. 

  87.     const char *author;
    88. 

  88.     const char *authen;
    89. 

  89.     const char *password;
    90. 

  90.     unsigned password_len;
    91. 

  91.     unsigned lup = 0;
    92. 

  92.     int result;
    93. 

  93.     char *passcopy; 
    94. 

  94.     unsigned canon_flags = 0;
    95. 

  95. 

  96.     *serverout = NULL;
    97. 

  97.     *serveroutlen = 0;
    98. 

  98.     
    99. 

  99.     /* should have received author-id NUL authen-id NUL password */
    100. 

  100.     
    101. 

  101.     /* get author */
    102. 

  102.     author = clientin;
    103. 

  103.     while ((lup < clientinlen) && (clientin[lup] != 0)) ++lup;
    104. 

  104.     
    105. 

  105.     if (lup >= clientinlen) {
    106. 

  106. 	SETERROR(params->utils, "Can only find author (no password)");
    107. 

  107. 	return SASL_BADPROT;
    108. 

  108.     }
    109. 

  109.     
    110. 

  110.     /* get authen */
    111. 

  111.     ++lup;
    112. 

  112.     authen = clientin + lup;
    113. 

  113.     while ((lup < clientinlen) && (clientin[lup] != 0)) ++lup;
    114. 

  114.     
    115. 

  115.     if (lup >= clientinlen) {
    116. 

  116. 	params->utils->seterror(params->utils->conn, 0,
    117. 

  117. 				"Can only find author/en (no password)");
    118. 

  118. 	return SASL_BADPROT;
    119. 

  119.     }
    120. 

  120.     
    121. 

  121.     /* get password */
    122. 

  122.     lup++;
    123. 

  123.     password = clientin + lup;
    124. 

  124.     while ((lup < clientinlen) && (clientin[lup] != 0)) ++lup;
    125. 

  125.     
    126. 

  126.     password_len = (unsigned) (clientin + lup - password);
    127. 

  127.     
    128. 

  128.     if (lup != clientinlen) {
    129. 

  129. 	SETERROR(params->utils,
    130. 

  130. 		 "Got more data than we were expecting in the PLAIN plugin\n");
    131. 

  131. 	return SASL_BADPROT;
    132. 

  132.     }
    133. 

  133.     
    134. 

  134.     /* this kinda sucks. we need password to be null terminated
    135. 

  135.        but we can't assume there is an allocated byte at the end
    136. 

  136.        of password so we have to copy it */
    137. 

  137.     passcopy = params->utils->malloc(password_len + 1);    
    138. 

  138.     if (passcopy == NULL) {
    139. 

  139. 	MEMERROR(params->utils);
    140. 

  140. 	return SASL_NOMEM;
    141. 

  141.     }
    142. 

  142.     
    143. 

  143.     strncpy(passcopy, password, password_len);
    144. 

  144.     passcopy[password_len] = '\0';
    145. 

  145.    
    146. 

  146.     /* Canonicalize userid first, so that password verification is only
    147. 

  147.      * against the canonical id */
    148. 

  148.     if (!author || !*author) {
    149. 

  149. 	author = authen;
    150. 

  150. 	canon_flags = SASL_CU_AUTHZID;
    151. 

  151.     } else if (strcmp(author, authen) == 0) {
    152. 

  152. 	/* While this isn't going to find out that <user> and <user>@<defaultdomain>
    153. 

  153. 	   are the same thing, this is good enough for many cases */
    154. 

  154. 	canon_flags = SASL_CU_AUTHZID;
    155. 

  155.     }
    156. 

  156. 

  157.     result = params->canon_user(params->utils->conn,
    158. 

  158. 				authen,
    159. 

  159. 				0,
    160. 

  160. 				SASL_CU_AUTHID | canon_flags | SASL_CU_EXTERNALLY_VERIFIED,
    161. 

  161. 				oparams);
    162. 

  162.     if (result != SASL_OK) {
    163. 

  163. 	_plug_free_string(params->utils, &passcopy);
    164. 

  164. 	return result;
    165. 

  165.     }
    166. 

  166. 

  167.     /* verify password (and possibly fetch both authentication and
    168. 

  168.        authorization identity related properties) - return SASL_OK
    169. 

  169.        on success */
    170. 

  170.     result = params->utils->checkpass(params->utils->conn,
    171. 

  171. 				      oparams->authid,
    172. 

  172. 				      oparams->alen,
    173. 

  173. 				      passcopy,
    174. 

  174. 				      password_len);
    175. 

  175.     
    176. 

  176.     _plug_free_string(params->utils, &passcopy);
    177. 

  177.     
    178. 

  178.     if (result != SASL_OK) {
    179. 

  179. 	params->utils->seterror(params->utils->conn, 0,
    180. 

  180. 				"Password verification failed");
    181. 

  181. 	return result;
    182. 

  182.     }
    183. 

  183. 

  184.     /* Canonicalize and store the authorization ID */
    185. 

  185.     /* We need to do this after calling verify_user just in case verify_user
    186. 

  186.      * needed to get auxprops itself */
    187. 

  187.     if (canon_flags == 0) {
    188. 

  188. 	const struct propval *pr;
    189. 

  189. 	int i;
    190. 

  190. 

  191. 	pr = params->utils->prop_get(params->propctx);
    192. 

  192. 	if (!pr) {
    193. 

  193. 	    return SASL_FAIL;
    194. 

  194. 	}
    195. 

  195. 

  196. 	/* params->utils->checkpass() might have fetched authorization identity related properties
    197. 

  197. 	   for the wrong user name. Free these values. */
    198. 

  198. 	for (i = 0; pr[i].name; i++) {
    199. 

  199. 	    if (pr[i].name[0] == '*') {
    200. 

  200. 		continue;
    201. 

  201. 	    }
    202. 

  202. 

  203.             if (pr[i].values) {
    204. 

  204. 	    	params->utils->prop_erase(params->propctx, pr[i].name);
    205. 

  205.             }
    206. 

  206. 	}
    207. 

  207. 

  208. 	result = params->canon_user(params->utils->conn,
    209. 

  209. 				    author,
    210. 

  210. 				    0,
    211. 

  211. 				    SASL_CU_AUTHZID,
    212. 

  212. 				    oparams);
    213. 

  213. 	if (result != SASL_OK) {
    214. 

  214. 	    return result;
    215. 

  215. 	}
    216. 

  216.     }
    217. 

  217.     
    218. 

  218.     /* set oparams */
    219. 

  219.     oparams->doneflag = 1;
    220. 

  220.     oparams->mech_ssf = 0;
    221. 

  221.     oparams->maxoutbuf = 0;
    222. 

  222.     oparams->encode_context = NULL;
    223. 

  223.     oparams->encode = NULL;
    224. 

  224.     oparams->decode_context = NULL;
    225. 

  225.     oparams->decode = NULL;
    226. 

  226.     oparams->param_version = 0;
    227. 

  227.     
    228. 

  228.     return SASL_OK;
    229. 

  229. }
    230. 

  230. 

  231. static sasl_server_plug_t plain_server_plugins[] = 
    232. 

  232. {
    233. 

  233.     {
    234. 

  234. 	"PLAIN",			/* mech_name */
    235. 

  235. 	0,				/* max_ssf */
    236. 

  236. 	SASL_SEC_NOANONYMOUS
    237. 

  237. 	| SASL_SEC_PASS_CREDENTIALS,	/* security_flags */
    238. 

  238. 	SASL_FEAT_WANT_CLIENT_FIRST
    239. 

  239. 	| SASL_FEAT_ALLOWS_PROXY,	/* features */
    240. 

  240. 	NULL,				/* glob_context */
    241. 

  241. 	&plain_server_mech_new,		/* mech_new */
    242. 

  242. 	&plain_server_mech_step,	/* mech_step */
    243. 

  243. 	NULL,				/* mech_dispose */
    244. 

  244. 	NULL,				/* mech_free */
    245. 

  245. 	NULL,				/* setpass */
    246. 

  246. 	NULL,				/* user_query */
    247. 

  247. 	NULL,				/* idle */
    248. 

  248. 	NULL,				/* mech_avail */
    249. 

  249. 	NULL				/* spare */
    250. 

  250.     }
    251. 

  251. };
    252. 

  252. 

  253. int plain_server_plug_init(const sasl_utils_t *utils,
    254. 

  254. 			   int maxversion,
    255. 

  255. 			   int *out_version,
    256. 

  256. 			   sasl_server_plug_t **pluglist,
    257. 

  257. 			   int *plugcount)
    258. 

  258. {
    259. 

  259.     if (maxversion < SASL_SERVER_PLUG_VERSION) {
    260. 

  260. 	SETERROR(utils, "PLAIN version mismatch");
    261. 

  261. 	return SASL_BADVERS;
    262. 

  262.     }
    263. 

  263.     
    264. 

  264.     *out_version = SASL_SERVER_PLUG_VERSION;
    265. 

  265.     *pluglist = plain_server_plugins;
    266. 

  266.     *plugcount = 1;  
    267. 

  267.     
    268. 

  268.     return SASL_OK;
    269. 

  269. }
    270. 

  270. 

  271. /*****************************  Client Section  *****************************/
    272. 

  272. 

  273. typedef struct client_context {
    274. 

  274.     char *out_buf;
    275. 

  275.     unsigned out_buf_len;
    276. 

  276. } client_context_t;
    277. 

  277. 

  278. static int plain_client_mech_new(void *glob_context __attribute__((unused)),
    279. 

  279. 				 sasl_client_params_t *params,
    280. 

  280. 				 void **conn_context)
    281. 

  281. {
    282. 

  282.     client_context_t *text;
    283. 

  283.     
    284. 

  284.     /* holds state are in */
    285. 

  285.     text = params->utils->malloc(sizeof(client_context_t));
    286. 

  286.     if (text == NULL) {
    287. 

  287. 	MEMERROR( params->utils );
    288. 

  288. 	return SASL_NOMEM;
    289. 

  289.     }
    290. 

  290.     
    291. 

  291.     memset(text, 0, sizeof(client_context_t));
    292. 

  292.     
    293. 

  293.     *conn_context = text;
    294. 

  294.     
    295. 

  295.     return SASL_OK;
    296. 

  296. }
    297. 

  297. 

  298. static int plain_client_mech_step(void *conn_context,
    299. 

  299. 				  sasl_client_params_t *params,
    300. 

  300. 				  const char *serverin __attribute__((unused)),
    301. 

  301. 				  unsigned serverinlen __attribute__((unused)),
    302. 

  302. 				  sasl_interact_t **prompt_need,
    303. 

  303. 				  const char **clientout,
    304. 

  304. 				  unsigned *clientoutlen,
    305. 

  305. 				  sasl_out_params_t *oparams)
    306. 

  306. {
    307. 

  307.     client_context_t *text = (client_context_t *) conn_context;
    308. 

  308.     const char *user = NULL, *authid = NULL;
    309. 

  309.     sasl_secret_t *password = NULL;
    310. 

  310.     unsigned int free_password = 0; /* set if we need to free password */
    311. 

  311.     int user_result = SASL_OK;
    312. 

  312.     int auth_result = SASL_OK;
    313. 

  313.     int pass_result = SASL_OK;
    314. 

  314.     int result;
    315. 

  315.     char *p;
    316. 

  316.     
    317. 

  317.     *clientout = NULL;
    318. 

  318.     *clientoutlen = 0;
    319. 

  319.     
    320. 

  320.     /* doesn't really matter how the server responds */
    321. 

  321.     
    322. 

  322.     /* check if sec layer strong enough */
    323. 

  323.     if (params->props.min_ssf > params->external_ssf) {
    324. 

  324. 	SETERROR( params->utils, "SSF requested of PLAIN plugin");
    325. 

  325. 	return SASL_TOOWEAK;
    326. 

  326.     }
    327. 

  327.     
    328. 

  328.     /* try to get the authid */    
    329. 

  329.     if (oparams->authid == NULL) {
    330. 

  330. 	auth_result = _plug_get_authid(params->utils, &authid, prompt_need);
    331. 

  331. 	
    332. 

  332. 	if ((auth_result != SASL_OK) && (auth_result != SASL_INTERACT))
    333. 

  333. 	    return auth_result;
    334. 

  334.     }		
    335. 

  335.     
    336. 

  336.     /* try to get the userid */
    337. 

  337.     if (oparams->user == NULL) {
    338. 

  338. 	user_result = _plug_get_userid(params->utils, &user, prompt_need);
    339. 

  339. 	
    340. 

  340. 	if ((user_result != SASL_OK) && (user_result != SASL_INTERACT))
    341. 

  341. 	    return user_result;
    342. 

  342.     }
    343. 

  343.     
    344. 

  344.     /* try to get the password */
    345. 

  345.     if (password == NULL) {
    346. 

  346. 	pass_result = _plug_get_password(params->utils, &password,
    347. 

  347. 					 &free_password, prompt_need);
    348. 

  348. 	
    349. 

  349. 	if ((pass_result != SASL_OK) && (pass_result != SASL_INTERACT))
    350. 

  350. 	    return pass_result;
    351. 

  351.     }
    352. 

  352.     
    353. 

  353.     /* free prompts we got */
    354. 

  354.     if (prompt_need && *prompt_need) {
    355. 

  355. 	params->utils->free(*prompt_need);
    356. 

  356. 	*prompt_need = NULL;
    357. 

  357.     }
    358. 

  358.     
    359. 

  359.     /* if there are prompts not filled in */
    360. 

  360.     if ((user_result == SASL_INTERACT) || (auth_result == SASL_INTERACT) ||
    361. 

  361. 	(pass_result == SASL_INTERACT)) {
    362. 

  362. 	/* make the prompt list */
    363. 

  363. 	result =
    364. 

  364. 	    _plug_make_prompts(params->utils, prompt_need,
    365. 

  365. 			       user_result == SASL_INTERACT ?
    366. 

  366. 			       "Please enter your authorization name" : NULL,
    367. 

  367. 			       NULL,
    368. 

  368. 			       auth_result == SASL_INTERACT ?
    369. 

  369. 			       "Please enter your authentication name" : NULL,
    370. 

  370. 			       NULL,
    371. 

  371. 			       pass_result == SASL_INTERACT ?
    372. 

  372. 			       "Please enter your password" : NULL, NULL,
    373. 

  373. 			       NULL, NULL, NULL,
    374. 

  374. 			       NULL, NULL, NULL);
    375. 

  375. 	if (result != SASL_OK) goto cleanup;
    376. 

  376. 	
    377. 

  377. 	return SASL_INTERACT;
    378. 

  378.     }
    379. 

  379.     
    380. 

  380.     if (!password) {
    381. 

  381. 	PARAMERROR(params->utils);
    382. 

  382. 	return SASL_BADPARAM;
    383. 

  383.     }
    384. 

  384. 

  385.     if (!user || !*user) {
    386. 

  386. 	result = params->canon_user(params->utils->conn, authid, 0,
    387. 

  387. 				    SASL_CU_AUTHID | SASL_CU_AUTHZID, oparams);
    388. 

  388.     }
    389. 

  389.     else {
    390. 

  390. 	result = params->canon_user(params->utils->conn, user, 0,
    391. 

  391. 				    SASL_CU_AUTHZID, oparams);
    392. 

  392. 	if (result != SASL_OK) goto cleanup;
    393. 

  393. 	
    394. 

  394. 	result = params->canon_user(params->utils->conn, authid, 0,
    395. 

  395. 				    SASL_CU_AUTHID, oparams);
    396. 

  396.     }
    397. 

  397.     if (result != SASL_OK) goto cleanup;
    398. 

  398.     
    399. 

  399.     /* send authorized id NUL authentication id NUL password */
    400. 

  400.     *clientoutlen = ((user && *user ? oparams->ulen : 0) +
    401. 

  401. 		     1 + oparams->alen +
    402. 

  402. 		     1 + password->len);
    403. 

  403.     
    404. 

  404.     /* remember the extra NUL on the end for stupid clients */
    405. 

  405.     result = _plug_buf_alloc(params->utils, &(text->out_buf),
    406. 

  406. 			     &(text->out_buf_len), *clientoutlen + 1);
    407. 

  407.     if (result != SASL_OK) goto cleanup;
    408. 

  408.     
    409. 

  409.     memset(text->out_buf, 0, *clientoutlen + 1);
    410. 

  410.     p = text->out_buf;
    411. 

  411.     if (user && *user) {
    412. 

  412. 	memcpy(p, oparams->user, oparams->ulen);
    413. 

  413. 	p += oparams->ulen;
    414. 

  414.     }
    415. 

  415.     memcpy(++p, oparams->authid, oparams->alen);
    416. 

  416.     p += oparams->alen;
    417. 

  417.     memcpy(++p, password->data, password->len);
    418. 

  418.     
    419. 

  419.     *clientout = text->out_buf;
    420. 

  420.     
    421. 

  421.     /* set oparams */
    422. 

  422.     oparams->doneflag = 1;
    423. 

  423.     oparams->mech_ssf = 0;
    424. 

  424.     oparams->maxoutbuf = 0;
    425. 

  425.     oparams->encode_context = NULL;
    426. 

  426.     oparams->encode = NULL;
    427. 

  427.     oparams->decode_context = NULL;
    428. 

  428.     oparams->decode = NULL;
    429. 

  429.     oparams->param_version = 0;
    430. 

  430.     
    431. 

  431.     result = SASL_OK;
    432. 

  432. 

  433.   cleanup:
    434. 

  434.     /* free sensitive info */
    435. 

  435.     if (free_password) _plug_free_secret(params->utils, &password);
    436. 

  436.     
    437. 

  437.     return result;
    438. 

  438. }
    439. 

  439. 

  440. static void plain_client_mech_dispose(void *conn_context,
    441. 

  441. 				      const sasl_utils_t *utils)
    442. 

  442. {
    443. 

  443.     client_context_t *text = (client_context_t *) conn_context;
    444. 

  444.     
    445. 

  445.     if (!text) return;
    446. 

  446.     
    447. 

  447.     if (text->out_buf) utils->free(text->out_buf);
    448. 

  448.     
    449. 

  449.     utils->free(text);
    450. 

  450. }
    451. 

  451. 

  452. static sasl_client_plug_t plain_client_plugins[] = 
    453. 

  453. {
    454. 

  454.     {
    455. 

  455. 	"PLAIN",			/* mech_name */
    456. 

  456. 	0,				/* max_ssf */
    457. 

  457. 	SASL_SEC_NOANONYMOUS
    458. 

  458. 	| SASL_SEC_PASS_CREDENTIALS,	/* security_flags */
    459. 

  459. 	SASL_FEAT_WANT_CLIENT_FIRST
    460. 

  460. 	| SASL_FEAT_ALLOWS_PROXY,	/* features */
    461. 

  461. 	NULL,				/* required_prompts */
    462. 

  462. 	NULL,				/* glob_context */
    463. 

  463. 	&plain_client_mech_new,		/* mech_new */
    464. 

  464. 	&plain_client_mech_step,	/* mech_step */
    465. 

  465. 	&plain_client_mech_dispose,	/* mech_dispose */
    466. 

  466. 	NULL,				/* mech_free */
    467. 

  467. 	NULL,				/* idle */
    468. 

  468. 	NULL,				/* spare */
    469. 

  469. 	NULL				/* spare */
    470. 

  470.     }
    471. 

  471. };
    472. 

  472. 

  473. int plain_client_plug_init(sasl_utils_t *utils,
    474. 

  474. 			   int maxversion,
    475. 

  475. 			   int *out_version,
    476. 

  476. 			   sasl_client_plug_t **pluglist,
    477. 

  477. 			   int *plugcount)
    478. 

  478. {
    479. 

  479.     if (maxversion < SASL_CLIENT_PLUG_VERSION) {
    480. 

  480. 	SETERROR(utils, "PLAIN version mismatch");
    481. 

  481. 	return SASL_BADVERS;
    482. 

  482.     }
    483. 

  483.     
    484. 

  484.     *out_version = SASL_CLIENT_PLUG_VERSION;
    485. 

  485.     *pluglist = plain_client_plugins;
    486. 

  486.     *plugcount = 1;
    487. 

  487.     
    488. 

  488.     return SASL_OK;
    489. 

  489. }
    490.