|  |  |  | GNU SASL API Reference Manual | 
|---|
#define GSASL_VERSION extern const char *GSASL_VALID_MECHANISM_CHARACTERS; enum Gsasl_rc; enum Gsasl_qop; enum Gsasl_cipher; int gsasl_init (Gsasl **ctx); void gsasl_done (Gsasl *ctx); const char* gsasl_check_version (const char *req_version); char* gsasl_stringprep_nfkc (const char *in, ssize_t len); char* gsasl_stringprep_saslprep (const char *in, int *stringprep_rc); char* gsasl_stringprep_trace (const char *in, int *stringprep_rc); Gsasl* gsasl_ctx_get (Gsasl_session *sctx); void gsasl_application_data_set (Gsasl *ctx, void *appdata); void* gsasl_application_data_get (Gsasl *ctx); void gsasl_appinfo_set (Gsasl_session *sctx, void *appdata); void* gsasl_appinfo_get (Gsasl_session *sctx); int gsasl_client_mechlist (Gsasl *ctx, char **out); int gsasl_client_support_p (Gsasl *ctx, const char *name); const char* gsasl_client_suggest_mechanism (Gsasl *ctx, const char *mechlist); int gsasl_server_mechlist (Gsasl *ctx, char **out); int gsasl_server_support_p (Gsasl *ctx, const char *name); const char* gsasl_server_suggest_mechanism (Gsasl *ctx, const char *mechlist); int gsasl_client_start (Gsasl *ctx, const char *mech, Gsasl_session **sctx); int gsasl_server_start (Gsasl *ctx, const char *mech, Gsasl_session **sctx); int gsasl_step (Gsasl_session *sctx, const char *input, size_t input_len, char **output, size_t *output_len); int gsasl_step64 (Gsasl_session *sctx, const char *b64input, char **b64output); void gsasl_finish (Gsasl_session *sctx); int gsasl_encode (Gsasl_session *sctx, const char *input, size_t input_len, char *output, size_t *output_len); int gsasl_decode (Gsasl_session *sctx, const char *input, size_t input_len, char *output, size_t *output_len); const char* gsasl_strerror (int err); int gsasl_base64_encode (char const *src, size_t srclength, char *target, size_t targsize); int gsasl_base64_decode (char const *src, char *target, size_t targsize); int gsasl_md5pwd_get_password (const char *filename, const char *username, char *key, size_t *keylen); int gsasl_nonce (char *data, size_t datalen); int gsasl_random (char *data, size_t datalen); int gsasl_md5 (const char *in, size_t inlen, char *out[16]); int gsasl_hmac_md5 (const char *key, size_t keylen, const char *in, size_t inlen, char *outhash[16]); int (*Gsasl_client_callback_anonymous) (Gsasl_session *sctx, char *out, size_t *outlen); int (*Gsasl_client_callback_authentication_id) (Gsasl_session *sctx, char *out, size_t *outlen); int (*Gsasl_client_callback_authorization_id) (Gsasl_session *sctx, char *out, size_t *outlen); int (*Gsasl_client_callback_password) (Gsasl_session *sctx, char *out, size_t *outlen); int (*Gsasl_client_callback_passcode) (Gsasl_session *sctx, char *out, size_t *outlen); int (*Gsasl_client_callback_pin) (Gsasl_session *sctx, char *suggestion, char *out, size_t *outlen); int (*Gsasl_client_callback_service) (Gsasl_session *sctx, char *service, size_t *servicelen, char *hostname, size_t *hostnamelen, char *servicename, size_t *servicenamelen); Gsasl_qop (*Gsasl_client_callback_qop) (Gsasl_session *sctx, Gsasl_qop serverqops); size_t (*Gsasl_client_callback_maxbuf) (Gsasl_session *sctx, size_t servermaxbuf); int (*Gsasl_client_callback_realm) (Gsasl_session *sctx, char *out, size_t *outlen); int (*Gsasl_server_callback_retrieve) (Gsasl_session *sctx, const char *authentication_id, const char *authorization_id, const char *realm, char *key, size_t *keylen); int (*Gsasl_server_callback_validate) (Gsasl_session *sctx, const char *authorization_id, const char *authentication_id, const char *password); int (*Gsasl_server_callback_gssapi) (Gsasl_session *sctx, const char *clientname, const char *authentication_id); int (*Gsasl_server_callback_securid) (Gsasl_session *sctx, const char *authentication_id, const char *authorization_id, const char *passcode, char *pin, char *suggestpin, size_t *suggestpinlen); int (*Gsasl_server_callback_cram_md5) (Gsasl_session *sctx, char *username, char *challenge, char *response); int (*Gsasl_server_callback_digest_md5) (Gsasl_session *sctx, char *username, char *realm, char *secrethash); int (*Gsasl_server_callback_service) (Gsasl_session *sctx, char *service, size_t *servicelen, char *hostname, size_t *hostnamelen); int (*Gsasl_server_callback_external) (Gsasl_session *sctx); int (*Gsasl_server_callback_anonymous) (Gsasl_session *sctx, const char *token); int (*Gsasl_server_callback_realm) (Gsasl_session *sctx, char *out, size_t *outlen, size_t nth); Gsasl_qop (*Gsasl_server_callback_qop) (Gsasl_session *sctx); size_t (*Gsasl_server_callback_maxbuf) (Gsasl_session *sctx); Gsasl_cipher (*Gsasl_server_callback_cipher) (Gsasl_session *sctx); void gsasl_client_callback_authorization_id_set (Gsasl *ctx, Gsasl_client_callback_authorization_id cb); Gsasl_client_callback_authorization_id gsasl_client_callback_authorization_id_get (Gsasl *ctx); void gsasl_client_callback_authentication_id_set (Gsasl *ctx, Gsasl_client_callback_authentication_id cb); Gsasl_client_callback_authentication_id gsasl_client_callback_authentication_id_get (Gsasl *ctx); void gsasl_client_callback_anonymous_set (Gsasl *ctx, Gsasl_client_callback_anonymous cb); Gsasl_client_callback_anonymous gsasl_client_callback_anonymous_get (Gsasl *ctx); void gsasl_client_callback_password_set (Gsasl *ctx, Gsasl_client_callback_password cb); Gsasl_client_callback_password gsasl_client_callback_password_get (Gsasl *ctx); void gsasl_client_callback_passcode_set (Gsasl *ctx, Gsasl_client_callback_passcode cb); Gsasl_client_callback_passcode gsasl_client_callback_passcode_get (Gsasl *ctx); void gsasl_client_callback_pin_set (Gsasl *ctx, Gsasl_client_callback_pin cb); Gsasl_client_callback_pin gsasl_client_callback_pin_get (Gsasl *ctx); void gsasl_client_callback_service_set (Gsasl *ctx, Gsasl_client_callback_service cb); Gsasl_client_callback_service gsasl_client_callback_service_get (Gsasl *ctx); void gsasl_client_callback_qop_set (Gsasl *ctx, Gsasl_client_callback_qop cb); Gsasl_client_callback_qop gsasl_client_callback_qop_get (Gsasl *ctx); void gsasl_client_callback_maxbuf_set (Gsasl *ctx, Gsasl_client_callback_maxbuf cb); Gsasl_client_callback_maxbuf gsasl_client_callback_maxbuf_get (Gsasl *ctx); void gsasl_client_callback_realm_set (Gsasl *ctx, Gsasl_client_callback_realm cb); Gsasl_client_callback_realm gsasl_client_callback_realm_get (Gsasl *ctx); void gsasl_server_callback_validate_set (Gsasl *ctx, Gsasl_server_callback_validate cb); Gsasl_server_callback_validate gsasl_server_callback_validate_get (Gsasl *ctx); void gsasl_server_callback_retrieve_set (Gsasl *ctx, Gsasl_server_callback_retrieve cb); Gsasl_server_callback_retrieve gsasl_server_callback_retrieve_get (Gsasl *ctx); void gsasl_server_callback_cram_md5_set (Gsasl *ctx, Gsasl_server_callback_cram_md5 cb); Gsasl_server_callback_cram_md5 gsasl_server_callback_cram_md5_get (Gsasl *ctx); void gsasl_server_callback_digest_md5_set (Gsasl *ctx, Gsasl_server_callback_digest_md5 cb); Gsasl_server_callback_digest_md5 gsasl_server_callback_digest_md5_get (Gsasl *ctx); void gsasl_server_callback_external_set (Gsasl *ctx, Gsasl_server_callback_external cb); Gsasl_server_callback_external gsasl_server_callback_external_get (Gsasl *ctx); void gsasl_server_callback_anonymous_set (Gsasl *ctx, Gsasl_server_callback_anonymous cb); Gsasl_server_callback_anonymous gsasl_server_callback_anonymous_get (Gsasl *ctx); void gsasl_server_callback_realm_set (Gsasl *ctx, Gsasl_server_callback_realm cb); Gsasl_server_callback_realm gsasl_server_callback_realm_get (Gsasl *ctx); void gsasl_server_callback_qop_set (Gsasl *ctx, Gsasl_server_callback_qop cb); Gsasl_server_callback_qop gsasl_server_callback_qop_get (Gsasl *ctx); void gsasl_server_callback_maxbuf_set (Gsasl *ctx, Gsasl_server_callback_maxbuf cb); Gsasl_server_callback_maxbuf gsasl_server_callback_maxbuf_get (Gsasl *ctx); void gsasl_server_callback_cipher_set (Gsasl *ctx, Gsasl_server_callback_cipher cb); Gsasl_server_callback_cipher gsasl_server_callback_cipher_get (Gsasl *ctx); void gsasl_server_callback_securid_set (Gsasl *ctx, Gsasl_server_callback_securid cb); Gsasl_server_callback_securid gsasl_server_callback_securid_get (Gsasl *ctx); void gsasl_server_callback_gssapi_set (Gsasl *ctx, Gsasl_server_callback_gssapi cb); Gsasl_server_callback_gssapi gsasl_server_callback_gssapi_get (Gsasl *ctx); void gsasl_server_callback_service_set (Gsasl *ctx, Gsasl_server_callback_service cb); Gsasl_server_callback_service gsasl_server_callback_service_get (Gsasl *ctx); #define Gsasl_ctx #define Gsasl_session_ctx int gsasl_client_listmech (Gsasl_ctx *ctx, char *out, size_t *outlen); int gsasl_server_listmech (Gsasl_ctx *ctx, char *out, size_t *outlen); int gsasl_client_step (Gsasl_session_ctx *sctx, const char *input, size_t input_len, char *output, size_t *output_len); int gsasl_client_step_base64 (Gsasl_session_ctx *sctx, const char *b64input, char *b64output, size_t b64output_len); int gsasl_server_step (Gsasl_session_ctx *sctx, const char *input, size_t input_len, char *output, size_t *output_len); int gsasl_server_step_base64 (Gsasl_session_ctx *sctx, const char *b64input, char *b64output, size_t b64output_len); void gsasl_client_finish (Gsasl_session_ctx *sctx); void gsasl_server_finish (Gsasl_session_ctx *sctx); Gsasl_ctx* gsasl_client_ctx_get (Gsasl_session_ctx *sctx); Gsasl_ctx* gsasl_server_ctx_get (Gsasl_session_ctx *sctx); void gsasl_client_application_data_set (Gsasl_session_ctx *sctx, void *application_data); void* gsasl_client_application_data_get (Gsasl_session_ctx *sctx); void gsasl_server_application_data_set (Gsasl_session_ctx *sctx, void *application_data); void* gsasl_server_application_data_get (Gsasl_session_ctx *sctx); int gsasl_randomize (int strong, char *data, size_t datalen);
  typedef enum
  {
    GSASL_OK = 0,
    GSASL_NEEDS_MORE,
    GSASL_UNKNOWN_MECHANISM,
    GSASL_MECHANISM_CALLED_TOO_MANY_TIMES,
    GSASL_TOO_SMALL_BUFFER,
    GSASL_FOPEN_ERROR,
    GSASL_FCLOSE_ERROR,
    GSASL_MALLOC_ERROR,
    GSASL_BASE64_ERROR,
    GSASL_CRYPTO_ERROR,
    GSASL_GCRYPT_ERROR = GSASL_CRYPTO_ERROR,
    GSASL_NEED_CLIENT_ANONYMOUS_CALLBACK,
    GSASL_NEED_CLIENT_PASSWORD_CALLBACK,
    GSASL_NEED_CLIENT_PASSCODE_CALLBACK,
    GSASL_NEED_CLIENT_PIN_CALLBACK,
    GSASL_NEED_CLIENT_AUTHORIZATION_ID_CALLBACK,
    GSASL_NEED_CLIENT_AUTHENTICATION_ID_CALLBACK,
    GSASL_NEED_CLIENT_SERVICE_CALLBACK,
    GSASL_NEED_SERVER_VALIDATE_CALLBACK,
    GSASL_NEED_SERVER_CRAM_MD5_CALLBACK,
    GSASL_NEED_SERVER_DIGEST_MD5_CALLBACK,
    GSASL_NEED_SERVER_EXTERNAL_CALLBACK,
    GSASL_NEED_SERVER_ANONYMOUS_CALLBACK,
    GSASL_NEED_SERVER_REALM_CALLBACK,
    GSASL_NEED_SERVER_SECURID_CALLBACK,
    GSASL_NEED_SERVER_SERVICE_CALLBACK,
    GSASL_NEED_SERVER_GSSAPI_CALLBACK,
    GSASL_NEED_SERVER_RETRIEVE_CALLBACK,
    GSASL_UNICODE_NORMALIZATION_ERROR,
    GSASL_SASLPREP_ERROR,
    GSASL_MECHANISM_PARSE_ERROR,
    GSASL_AUTHENTICATION_ERROR,
    GSASL_CANNOT_GET_CTX,
    GSASL_INTEGRITY_ERROR,
    GSASL_NO_MORE_REALMS,
    GSASL_NO_CLIENT_CODE,
    GSASL_NO_SERVER_CODE,
    /* Mechanism specific errors. */
    GSASL_GSSAPI_RELEASE_BUFFER_ERROR,
    GSASL_GSSAPI_IMPORT_NAME_ERROR,
    GSASL_GSSAPI_INIT_SEC_CONTEXT_ERROR,
    GSASL_GSSAPI_ACCEPT_SEC_CONTEXT_ERROR,
    GSASL_GSSAPI_UNWRAP_ERROR,
    GSASL_GSSAPI_WRAP_ERROR,
    GSASL_GSSAPI_ACQUIRE_CRED_ERROR,
    GSASL_GSSAPI_DISPLAY_NAME_ERROR,
    GSASL_GSSAPI_UNSUPPORTED_PROTECTION_ERROR,
    GSASL_KERBEROS_V5_INIT_ERROR,
    GSASL_KERBEROS_V5_INTERNAL_ERROR,
    GSASL_SHISHI_ERROR = GSASL_KERBEROS_V5_INTERNAL_ERROR,
    GSASL_SECURID_SERVER_NEED_ADDITIONAL_PASSCODE,
    GSASL_SECURID_SERVER_NEED_NEW_PIN,
    GSASL_INVALID_HANDLE
  } Gsasl_rc;  typedef enum
  {
    GSASL_QOP_AUTH = 1,
    GSASL_QOP_AUTH_INT = 2,
    GSASL_QOP_AUTH_CONF = 4
  } Gsasl_qop;  typedef enum
  {
    GSASL_CIPHER_DES = 1,
    GSASL_CIPHER_3DES = 2,
    GSASL_CIPHER_RC4 = 4,
    GSASL_CIPHER_RC4_40 = 8,
    GSASL_CIPHER_RC4_56 = 16,
    GSASL_CIPHER_AES = 32
  } Gsasl_cipher;int gsasl_init (Gsasl **ctx);
This functions initializes libgsasl. The handle pointed to by ctx is valid for use with other libgsasl functions iff this function is successful.
| ctx : | pointer to libgsasl handle. | 
| Returns : | GSASL_OK iff successful, otherwise GSASL_MALLOC_ERROR. | 
void gsasl_done (Gsasl *ctx);
This function destroys a libgsasl handle. The handle must not be used with other libgsasl functions after this call.
| ctx : | libgsasl handle. | 
const char* gsasl_check_version (const char *req_version);
Check library version.
| req_version : | version string to compare with, or NULL | 
| Returns : | Check that the the version of the library is at minimum the one given as a string in req_version and return the actual version string of the library; return NULL if the condition is not met. If NULL is passed to this function no check is done and only the version string is returned. It is a pretty good idea to run this function as soon as possible, because it may also intializes some subsystems. In a multithreaded environment if should be called before any more threads are created. | 
char*       gsasl_stringprep_nfkc           (const char *in,
                                             ssize_t len);Converts a string into canonical form, standardizing such issues as whether a character with an accent is represented as a base character and combining accent or as a single precomposed character.
The normalization mode is NFKC (ALL COMPOSE). It standardizes differences that do not affect the text content, such as the above-mentioned accent representation. It standardizes the "compatibility" characters in Unicode, such as SUPERSCRIPT THREE to the standard forms (in this case DIGIT THREE). Formatting information may be lost but for most text operations such characters should be considered the same. It returns a result with composed forms rather than a maximally decomposed form.
| in : | a UTF-8 encoded string. | 
| len : | length of str, in bytes, or -1 if str is nul-terminated. | 
| Returns : | Return a newly allocated string, that is the NFKC normalized form of str, o NULL on error. | 
char*       gsasl_stringprep_saslprep       (const char *in,
                                             int *stringprep_rc);Process a Unicode string for comparison, according to the "SASLprep" stringprep profile. This function is intended to be used by Simple Authentication and Security Layer (SASL) mechanisms (such as PLAIN, CRAM-MD5, and DIGEST-MD5) as well as other protocols exchanging user names and/or passwords.
| in : | input ASCII or UTF-8 string with data to prepare according to SASLprep. | 
| stringprep_rc : | pointer to output variable with stringprep error code, or NULL to indicate that you don't care about it. | 
| Returns : | Return a newly allocated string that is the "SASLprep" processed form of the input string, or NULL on error, in which case stringprep_rc contain the stringprep library error code. | 
char*       gsasl_stringprep_trace          (const char *in,
                                             int *stringprep_rc);Process a Unicode string for use as trace information, according to the "trace" stringprep profile. The profile is designed for use with the SASL ANONYMOUS Mechanism.
| in : | input ASCII or UTF-8 string with data to prepare according to "trace". | 
| stringprep_rc : | pointer to output variable with stringprep error code, or NULL to indicate that you don't care about it. | 
| Returns : | Return a newly allocated string that is the "trace" processed form of the input string, or NULL on error, in which case stringprep_rc contain the stringprep library error code. | 
Gsasl* gsasl_ctx_get (Gsasl_session *sctx);
| sctx : | libgsasl session handle | 
| Returns : | Returns the libgsasl handle given a libgsasl session handle. | 
void        gsasl_application_data_set      (Gsasl *ctx,
                                             void *appdata);Store application specific data in the libgsasl handle.  The
application data can be later (for instance, inside a callback) be
retrieved by calling gsasl_application_data_get().  It is normally
used by the application to maintain state between the main program
and the callback.
| ctx : | libgsasl handle. | 
| appdata : | opaque pointer to application specific data. | 
void* gsasl_application_data_get (Gsasl *ctx);
Retrieve application specific data from libgsasl handle. The
application data is set using gsasl_appdata_set()
| ctx : | libgsasl handle. | 
void        gsasl_appinfo_set               (Gsasl_session *sctx,
                                             void *appdata);Store application specific data in the libgsasl session handle.
The application data can be later (for instance, inside a callback)
be retrieved by calling gsasl_application_session_data_get()
| sctx : | libgsasl session handle. | 
| appdata : | opaque pointer to application specific data. | 
void* gsasl_appinfo_get (Gsasl_session *sctx);
Retrieve application specific data from libgsasl session
handle. The application data is set using
gsasl_application_session_data_set()
| sctx : | libgsasl client handle. | 
int         gsasl_client_mechlist           (Gsasl *ctx,
                                             char **out);Return a newly allocated string containing SASL names, separated by space, of mechanisms supported by the libgsasl client. out is allocated by this function, and it is the responsibility of caller to deallocate it.
| ctx : | libgsasl handle. | 
| out : | newly allocated output character array. | 
| Returns : | Returns GSASL_OK if successful, or error code. | 
int         gsasl_client_support_p          (Gsasl *ctx,
                                             const char *name);| ctx : | libgsasl handle. | 
| name : | name of SASL mechanism. | 
| Returns : | Returns 1 if the libgsasl client supports the named mechanism, otherwise 0. | 
const char* gsasl_client_suggest_mechanism  (Gsasl *ctx,
                                             const char *mechlist);| ctx : | libgsasl handle. | 
| mechlist : | input character array with SASL mechanism names, separated by invalid characters (e.g. SPC). | 
| Returns : | Returns name of "best" SASL mechanism supported by the libgsasl client which is present in the input string. | 
int         gsasl_server_mechlist           (Gsasl *ctx,
                                             char **out);Return a newly allocated string containing SASL names, separated by space, of mechanisms supported by the libgsasl server. out is allocated by this function, and it is the responsibility of caller to deallocate it.
| ctx : | libgsasl handle. | 
| out : | newly allocated output character array. | 
| Returns : | Returns GSASL_OK if successful, or error code. | 
int         gsasl_server_support_p          (Gsasl *ctx,
                                             const char *name);| ctx : | libgsasl handle. | 
| name : | name of SASL mechanism. | 
| Returns : | Returns 1 if the libgsasl server supports the named mechanism, otherwise 0. | 
const char* gsasl_server_suggest_mechanism  (Gsasl *ctx,
                                             const char *mechlist);| ctx : | libgsasl handle. | 
| mechlist : | input character array with SASL mechanism names, separated by invalid characters (e.g. SPC). | 
| Returns : | Returns name of "best" SASL mechanism supported by the libgsasl server which is present in the input string. | 
int         gsasl_client_start              (Gsasl *ctx,
                                             const char *mech,
                                             Gsasl_session **sctx);This functions initiates a client SASL authentication. This function must be called before any other gsasl_client_*() function is called.
| ctx : | libgsasl handle. | 
| mech : | name of SASL mechanism. | 
| sctx : | pointer to client handle. | 
| Returns : | Returns GSASL_OK if successful, or error code. | 
int         gsasl_server_start              (Gsasl *ctx,
                                             const char *mech,
                                             Gsasl_session **sctx);This functions initiates a server SASL authentication. This function must be called before any other gsasl_server_*() function is called.
| ctx : | libgsasl handle. | 
| mech : | name of SASL mechanism. | 
| sctx : | pointer to server handle. | 
| Returns : | Returns GSASL_OK if successful, or error code. | 
int         gsasl_step                      (Gsasl_session *sctx,
                                             const char *input,
                                             size_t input_len,
                                             char **output,
                                             size_t *output_len);Perform one step of SASL authentication. This reads data from the other end (from input and input_len), processes it (potentially invoking callbacks to the application), and writes data to server (into newly allocated variable output and output_len that indicate the length of output).
The contents of the output buffer is unspecified if this functions returns anything other than GSASL_OK or GSASL_NEEDS_MORE. If this function return GSASL_OK or GSASL_NEEDS_MORE, however, the output buffer is allocated by this function, and it is the responsibility of caller to deallocate it by calling free (output).
| sctx : | libgsasl session handle. | 
| input : | input byte array. | 
| input_len : | size of input byte array. | 
| output : | newly allocated output byte array. | 
| output_len : | pointer to output variable with size of output byte array. | 
| Returns : | Returns GSASL_OK if authenticated terminated successfully, GSASL_NEEDS_MORE if more data is needed, or error code. | 
int         gsasl_step64                    (Gsasl_session *sctx,
                                             const char *b64input,
                                             char **b64output);This is a simple wrapper around gsasl_step() that base64 decodes
the input and base64 encodes the output.
The contents of the b64output buffer is unspecified if this functions returns anything other than GSASL_OK or GSASL_NEEDS_MORE. If this function return GSASL_OK or GSASL_NEEDS_MORE, however, the b64output buffer is allocated by this function, and it is the responsibility of caller to deallocate it by calling free (b64output).
| sctx : | libgsasl client handle. | 
| b64input : | input base64 encoded byte array. | 
| b64output : | newly allocated output base64 encoded byte array. | 
| Returns : | Returns GSASL_OK if authenticated terminated successfully, GSASL_NEEDS_MORE if more data is needed, or error code. | 
void gsasl_finish (Gsasl_session *sctx);
Destroy a libgsasl client or server handle. The handle must not be used with other libgsasl functions after this call.
| sctx : | libgsasl session handle. | 
int         gsasl_encode                    (Gsasl_session *sctx,
                                             const char *input,
                                             size_t input_len,
                                             char *output,
                                             size_t *output_len);Encode data according to negotiated SASL mechanism. This might mean that data is integrity or privacy protected.
| sctx : | libgsasl session handle. | 
| input : | input byte array. | 
| input_len : | size of input byte array. | 
| output : | output byte array. | 
| output_len : | size of output byte array. | 
| Returns : | Returns GSASL_OK if encoding was successful, otherwise an error code. | 
int         gsasl_decode                    (Gsasl_session *sctx,
                                             const char *input,
                                             size_t input_len,
                                             char *output,
                                             size_t *output_len);Decode data according to negotiated SASL mechanism. This might mean that data is integrity or privacy protected.
| sctx : | libgsasl session handle. | 
| input : | input byte array. | 
| input_len : | size of input byte array. | 
| output : | output byte array. | 
| output_len : | size of output byte array. | 
| Returns : | Returns GSASL_OK if encoding was successful, otherwise an error code. | 
const char* gsasl_strerror (int err);
| err : | libgsasl error code | 
| Returns : | Returns a pointer to a statically allocated string containing a description of the error with the error value err. This string can be used to output a diagnostic message to the user. | 
int         gsasl_base64_encode             (char const *src,
                                             size_t srclength,
                                             char *target,
                                             size_t targsize);Encode data as base64. Converts characters, three at a time, starting at src into four base64 characters in the target area until the entire input buffer is encoded.
| src : | input byte array | 
| srclength : | size of input byte array | 
| target : | output byte array | 
| targsize : | size of output byte array | 
| Returns : | Returns the number of data bytes stored at the target, or -1 on error. | 
int         gsasl_base64_decode             (char const *src,
                                             char *target,
                                             size_t targsize);Decode Base64 data. Skips all whitespace anywhere. Converts characters, four at a time, starting at (or after) src from Base64 numbers into three 8 bit bytes in the target area.
| src : | input byte array | 
| target : | output byte array | 
| targsize : | size of output byte array | 
| Returns : | Returns the number of data bytes stored at the target, or -1 on error. | 
int         gsasl_md5pwd_get_password       (const char *filename,
                                             const char *username,
                                             char *key,
                                             size_t *keylen);Retrieve password for user from specified file. To find out how large the output array must be, call this function with out=NULL.
The file should be on the UoW "MD5 Based Authentication" format, which means it is in text format with comments denoted by # first on the line, with user entries looking as username\tpassword. This function removes \r and \n at the end of lines before processing.
| filename : | filename of file containing passwords. | 
| username : | username string. | 
| key : | output character array. | 
| keylen : | input maximum size of output character array, on output contains actual length of output array. | 
| Returns : | Return GSASL_OK if output buffer contains the password, GSASL_AUTHENTICATION_ERROR if the user could not be found, or other error code. | 
int         gsasl_nonce                     (char *data,
                                             size_t datalen);Store unpredictable data of given size in the provided buffer.
| data : | output array to be filled with unpredictable random data. | 
| datalen : | size of output array. | 
| Returns : | Returns GSASL_OK iff successful. | 
int         gsasl_random                    (char *data,
                                             size_t datalen);Store cryptographically strong random data of given size in the provided buffer.
| data : | output array to be filled with strong random data. | 
| datalen : | size of output array. | 
| Returns : | Returns GSASL_OK iff successful. | 
int         gsasl_md5                       (const char *in,
                                             size_t inlen,
                                             char *out[16]);Compute hash of data using MD5. The out buffer must be deallocated by the caller.
| in : | input character array of data to hash. | 
| inlen : | length of input character array of data to hash. | 
| out : | newly allocated character array with hash of data. | 
| Returns : | Returns GSASL_OK iff successful. | 
int         gsasl_hmac_md5                  (const char *key,
                                             size_t keylen,
                                             const char *in,
                                             size_t inlen,
                                             char *outhash[16]);Compute keyed checksum of data using HMAC-MD5. The outhash buffer must be deallocated by the caller.
| key : | input character array with key to use. | 
| keylen : | length of input character array with key to use. | 
| in : | input character array of data to hash. | 
| inlen : | length of input character array of data to hash. | 
| outhash : | newly allocated character array with keyed hash of data. | 
| Returns : | Returns GSASL_OK iff successful. | 
int         (*Gsasl_client_callback_anonymous)
                                            (Gsasl_session *sctx,
                                             char *out,
                                             size_t *outlen);| sctx : | |
| out : | |
| outlen : | |
| Returns : | 
 | 
int         (*Gsasl_client_callback_authentication_id)
                                            (Gsasl_session *sctx,
                                             char *out,
                                             size_t *outlen);| sctx : | |
| out : | |
| outlen : | |
| Returns : | 
 | 
int         (*Gsasl_client_callback_authorization_id)
                                            (Gsasl_session *sctx,
                                             char *out,
                                             size_t *outlen);| sctx : | |
| out : | |
| outlen : | |
| Returns : | 
 | 
int         (*Gsasl_client_callback_password)
                                            (Gsasl_session *sctx,
                                             char *out,
                                             size_t *outlen);| sctx : | |
| out : | |
| outlen : | |
| Returns : | 
 | 
int         (*Gsasl_client_callback_passcode)
                                            (Gsasl_session *sctx,
                                             char *out,
                                             size_t *outlen);| sctx : | |
| out : | |
| outlen : | |
| Returns : | 
 | 
int         (*Gsasl_client_callback_pin)    (Gsasl_session *sctx,
                                             char *suggestion,
                                             char *out,
                                             size_t *outlen);| sctx : | |
| suggestion : | |
| out : | |
| outlen : | |
| Returns : | 
 | 
int         (*Gsasl_client_callback_service)
                                            (Gsasl_session *sctx,
                                             char *service,
                                             size_t *servicelen,
                                             char *hostname,
                                             size_t *hostnamelen,
                                             char *servicename,
                                             size_t *servicenamelen);| sctx : | |
| service : | |
| servicelen : | |
| hostname : | |
| hostnamelen : | |
| servicename : | |
| servicenamelen : | |
| Returns : | 
 | 
Gsasl_qop (*Gsasl_client_callback_qop) (Gsasl_session *sctx, Gsasl_qop serverqops);
| sctx : | |
| serverqops : | |
| Returns : | 
 | 
size_t      (*Gsasl_client_callback_maxbuf) (Gsasl_session *sctx,
                                             size_t servermaxbuf);| sctx : | |
| servermaxbuf : | |
| Returns : | 
 | 
int         (*Gsasl_client_callback_realm)  (Gsasl_session *sctx,
                                             char *out,
                                             size_t *outlen);| sctx : | |
| out : | |
| outlen : | |
| Returns : | 
 | 
int         (*Gsasl_server_callback_retrieve)
                                            (Gsasl_session *sctx,
                                             const char *authentication_id,
                                             const char *authorization_id,
                                             const char *realm,
                                             char *key,
                                             size_t *keylen);| sctx : | |
| authentication_id : | |
| authorization_id : | |
| realm : | |
| key : | |
| keylen : | |
| Returns : | 
 | 
int         (*Gsasl_server_callback_validate)
                                            (Gsasl_session *sctx,
                                             const char *authorization_id,
                                             const char *authentication_id,
                                             const char *password);| sctx : | |
| authorization_id : | |
| authentication_id : | |
| password : | |
| Returns : | 
 | 
int         (*Gsasl_server_callback_gssapi) (Gsasl_session *sctx,
                                             const char *clientname,
                                             const char *authentication_id);| sctx : | |
| clientname : | |
| authentication_id : | |
| Returns : | 
 | 
int         (*Gsasl_server_callback_securid)
                                            (Gsasl_session *sctx,
                                             const char *authentication_id,
                                             const char *authorization_id,
                                             const char *passcode,
                                             char *pin,
                                             char *suggestpin,
                                             size_t *suggestpinlen);| sctx : | |
| authentication_id : | |
| authorization_id : | |
| passcode : | |
| pin : | |
| suggestpin : | |
| suggestpinlen : | |
| Returns : | 
 | 
int         (*Gsasl_server_callback_cram_md5)
                                            (Gsasl_session *sctx,
                                             char *username,
                                             char *challenge,
                                             char *response);| sctx : | |
| username : | |
| challenge : | |
| response : | |
| Returns : | 
 | 
int         (*Gsasl_server_callback_digest_md5)
                                            (Gsasl_session *sctx,
                                             char *username,
                                             char *realm,
                                             char *secrethash);| sctx : | |
| username : | |
| realm : | |
| secrethash : | |
| Returns : | 
 | 
int         (*Gsasl_server_callback_service)
                                            (Gsasl_session *sctx,
                                             char *service,
                                             size_t *servicelen,
                                             char *hostname,
                                             size_t *hostnamelen);| sctx : | |
| service : | |
| servicelen : | |
| hostname : | |
| hostnamelen : | |
| Returns : | 
 | 
int         (*Gsasl_server_callback_external)
                                            (Gsasl_session *sctx);| sctx : | |
| Returns : | 
 | 
int         (*Gsasl_server_callback_anonymous)
                                            (Gsasl_session *sctx,
                                             const char *token);| sctx : | |
| token : | |
| Returns : | 
 | 
int         (*Gsasl_server_callback_realm)  (Gsasl_session *sctx,
                                             char *out,
                                             size_t *outlen,
                                             size_t nth);| sctx : | |
| out : | |
| outlen : | |
| nth : | |
| Returns : | 
 | 
Gsasl_qop (*Gsasl_server_callback_qop) (Gsasl_session *sctx);
| sctx : | |
| Returns : | 
 | 
size_t (*Gsasl_server_callback_maxbuf) (Gsasl_session *sctx);
| sctx : | |
| Returns : | 
 | 
Gsasl_cipher (*Gsasl_server_callback_cipher) (Gsasl_session *sctx);
| sctx : | |
| Returns : | 
 | 
void        gsasl_client_callback_authorization_id_set
                                            (Gsasl *ctx,
                                             Gsasl_client_callback_authorization_id cb);Specify the callback function to use in the client to set the
authorization identity.  The function can be later retrieved using
gsasl_client_callback_authorization_id_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_client_callback_authorization_id gsasl_client_callback_authorization_id_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_client_callback_authentication_id_set
                                            (Gsasl *ctx,
                                             Gsasl_client_callback_authentication_id cb);Specify the callback function to use in the client to set the
authentication identity.  The function can be later retrieved using
gsasl_client_callback_authentication_id_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_client_callback_authentication_id gsasl_client_callback_authentication_id_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_client_callback_anonymous_set
                                            (Gsasl *ctx,
                                             Gsasl_client_callback_anonymous cb);Specify the callback function to use in the client to set the
anonymous token, which usually is the users email address.  The
function can be later retrieved using
gsasl_client_callback_anonymous_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_client_callback_anonymous gsasl_client_callback_anonymous_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_client_callback_password_set
                                            (Gsasl *ctx,
                                             Gsasl_client_callback_password cb);Specify the callback function to use in the client to set the
password.  The function can be later retrieved using
gsasl_client_callback_password_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_client_callback_password gsasl_client_callback_password_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_client_callback_passcode_set
                                            (Gsasl *ctx,
                                             Gsasl_client_callback_passcode cb);Specify the callback function to use in the client to set the
passcode.  The function can be later retrieved using
gsasl_client_callback_passcode_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_client_callback_passcode gsasl_client_callback_passcode_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_client_callback_pin_set   (Gsasl *ctx,
                                             Gsasl_client_callback_pin cb);Specify the callback function to use in the client to chose a new
pin, possibly suggested by the server, for the SECURID mechanism.
This is not normally invoked, but only when the server requests it.
The function can be later retrieved using
gsasl_client_callback_pin_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_client_callback_pin gsasl_client_callback_pin_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_client_callback_service_set
                                            (Gsasl *ctx,
                                             Gsasl_client_callback_service cb);Specify the callback function to use in the client to set the name
of the service.  The service buffer should be a registered GSSAPI
host-based service name, hostname the name of the server.
Servicename is used by DIGEST-MD5 and should be the name of generic
server in case of a replicated service. The function can be later
retrieved using gsasl_client_callback_service_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_client_callback_service gsasl_client_callback_service_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_client_callback_qop_set   (Gsasl *ctx,
                                             Gsasl_client_callback_qop cb);Specify the callback function to use in the client to determine the
qop to use after looking at what the server offered.  The function
can be later retrieved using gsasl_client_callback_qop_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_client_callback_qop gsasl_client_callback_qop_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_client_callback_maxbuf_set
                                            (Gsasl *ctx,
                                             Gsasl_client_callback_maxbuf cb);Specify the callback function to use in the client to inform the
server of the largest buffer the client is able to receive when
using the DIGEST-MD5 "auth-int" or "auth-conf" Quality of
Protection (qop). If this directive is missing, the default value
65536 will be assumed.  The function can be later retrieved using
gsasl_client_callback_maxbuf_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_client_callback_maxbuf gsasl_client_callback_maxbuf_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_client_callback_realm_set (Gsasl *ctx,
                                             Gsasl_client_callback_realm cb);Specify the callback function to use in the client to know which
realm it belongs to.  The realm is used by the server to determine
which username and password to use.  The function can be later
retrieved using gsasl_client_callback_realm_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_client_callback_realm gsasl_client_callback_realm_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_server_callback_validate_set
                                            (Gsasl *ctx,
                                             Gsasl_server_callback_validate cb);Specify the callback function to use in the server for deciding if
user is authenticated using authentication identity, authorization
identity and password.  The function can be later retrieved using
gsasl_server_callback_validate_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_validate gsasl_server_callback_validate_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_server_callback_retrieve_set
                                            (Gsasl *ctx,
                                             Gsasl_server_callback_retrieve cb);Specify the callback function to use in the server for deciding if
user is authenticated using authentication identity, authorization
identity and password.  The function can be later retrieved using
gsasl_server_callback_retrieve_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_retrieve gsasl_server_callback_retrieve_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_server_callback_cram_md5_set
                                            (Gsasl *ctx,
                                             Gsasl_server_callback_cram_md5 cb);Specify the callback function to use in the server for deciding if
user is authenticated using CRAM-MD5 challenge and response.  The
function can be later retrieved using
gsasl_server_callback_cram_md5_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_cram_md5 gsasl_server_callback_cram_md5_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_server_callback_digest_md5_set
                                            (Gsasl *ctx,
                                             Gsasl_server_callback_digest_md5 cb);Specify the callback function to use in the server for retrieving
the secret hash of the username, realm and password for use in the
DIGEST-MD5 mechanism.  The function can be later retrieved using
gsasl_server_callback_digest_md5_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_digest_md5 gsasl_server_callback_digest_md5_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Return the callback earlier set by calling
 | 
void        gsasl_server_callback_external_set
                                            (Gsasl *ctx,
                                             Gsasl_server_callback_external cb);Specify the callback function to use in the server for deciding if
user is authenticated out of band.  The function can be later
retrieved using gsasl_server_callback_external_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_external gsasl_server_callback_external_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_server_callback_anonymous_set
                                            (Gsasl *ctx,
                                             Gsasl_server_callback_anonymous cb);Specify the callback function to use in the server for deciding if
user is permitted anonymous access.  The function can be later
retrieved using gsasl_server_callback_anonymous_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_anonymous gsasl_server_callback_anonymous_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_server_callback_realm_set (Gsasl *ctx,
                                             Gsasl_server_callback_realm cb);Specify the callback function to use in the server to know which
realm it serves.  The realm is used by the user to determine which
username and password to use.  The function can be later retrieved
using gsasl_server_callback_realm_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_realm gsasl_server_callback_realm_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_server_callback_qop_set   (Gsasl *ctx,
                                             Gsasl_server_callback_qop cb);Specify the callback function to use in the server to know which
quality of protection it accepts.  The quality of protection
eventually used is selected by the client though.  It is currently
used by the DIGEST-MD5 mechanism. The function can be later
retrieved using gsasl_server_callback_qop_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_qop gsasl_server_callback_qop_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_server_callback_maxbuf_set
                                            (Gsasl *ctx,
                                             Gsasl_server_callback_maxbuf cb);Specify the callback function to use in the server to inform the
client of the largest buffer the server is able to receive when
using the DIGEST-MD5 "auth-int" or "auth-conf" Quality of
Protection (qop). If this directive is missing, the default value
65536 will be assumed.  The function can be later retrieved using
gsasl_server_callback_maxbuf_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_maxbuf gsasl_server_callback_maxbuf_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_server_callback_cipher_set
                                            (Gsasl *ctx,
                                             Gsasl_server_callback_cipher cb);Specify the callback function to use in the server to inform the
client of the cipher suites supported.  The DES and 3DES ciphers
must be supported for interoperability.  It is currently used by
the DIGEST-MD5 mechanism.  The function can be later retrieved
using gsasl_server_callback_cipher_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_cipher gsasl_server_callback_cipher_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_server_callback_securid_set
                                            (Gsasl *ctx,
                                             Gsasl_server_callback_securid cb);Specify the callback function to use in the server for validating a
user via the SECURID mechanism.  The function should return
GSASL_OK if user authenticated successfully,
GSASL_SECURID_SERVER_NEED_ADDITIONAL_PASSCODE if it wants another
passcode, GSASL_SECURID_SERVER_NEED_NEW_PIN if it wants a PIN
change, or an error.  When (and only when)
GSASL_SECURID_SERVER_NEED_NEW_PIN is returned, suggestpin can be
populated with a PIN code the server suggests, and suggestpinlen
set to the length of the PIN.  The function can be later retrieved
using gsasl_server_callback_securid_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_securid gsasl_server_callback_securid_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_server_callback_gssapi_set
                                            (Gsasl *ctx,
                                             Gsasl_server_callback_gssapi cb);Specify the callback function to use in the server for checking if
a GSSAPI user is authorized for username (by, e.g., calling
krb5_userok()gsasl_server_callback_gssapi_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_gssapi gsasl_server_callback_gssapi_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
void        gsasl_server_callback_service_set
                                            (Gsasl *ctx,
                                             Gsasl_server_callback_service cb);Specify the callback function to use in the server to set the name
of the service.  The service buffer should be a registered GSSAPI
host-based service name, hostname the name of the server.  The
function can be later retrieved using
gsasl_server_callback_service_get().
| ctx : | libgsasl handle. | 
| cb : | callback function | 
Gsasl_server_callback_service gsasl_server_callback_service_get (Gsasl *ctx);
| ctx : | libgsasl handle. | 
| Returns : |  Returns the callback earlier set by calling
 | 
int gsasl_client_listmech (Gsasl_ctx *ctx, char *out, size_t *outlen);
Write SASL names, separated by space, of mechanisms supported by the libgsasl client to the output array. To find out how large the output array must be, call this function with out=NULL.
Note that this function is obsolete and may be removed in the future.
| ctx : | libgsasl handle. | 
| out : | output character array. | 
| outlen : | input maximum size of output character array, on output contains actual length of output array. | 
| Returns : | Returns GSASL_OK if successful, or error code. | 
int gsasl_server_listmech (Gsasl_ctx *ctx, char *out, size_t *outlen);
Write SASL names, separated by space, of mechanisms supported by the libgsasl server to the output array. To find out how large the output array must be, call this function with out=NULL.
Note that this function is obsolete and may be removed in the future.
| ctx : | libgsasl handle. | 
| out : | output character array. | 
| outlen : | input maximum size of output character array, on output contains actual length of output array. | 
| Returns : | Returns GSASL_OK if successful, or error code. | 
int gsasl_client_step (Gsasl_session_ctx *sctx, const char *input, size_t input_len, char *output, size_t *output_len);
Perform one step of SASL authentication in client. This reads data from server (specified with input and input_len), processes it (potentially invoking callbacks to the application), and writes data to server (into variables output and output_len).
The contents of the output buffer is unspecified if this functions returns anything other than GSASL_NEEDS_MORE.
Note that this function is obsolete and may be removed in the future.
| sctx : | libgsasl client handle. | 
| input : | input byte array. | 
| input_len : | size of input byte array. | 
| output : | output byte array. | 
| output_len : | size of output byte array. | 
| Returns : | Returns GSASL_OK if authenticated terminated successfully, GSASL_NEEDS_MORE if more data is needed, or error code. | 
int gsasl_client_step_base64 (Gsasl_session_ctx *sctx, const char *b64input, char *b64output, size_t b64output_len);
This is a simple wrapper around gsasl_client_step() that base64
decodes the input and base64 encodes the output.
Note that this function is obsolete and may be removed in the future.
| sctx : | libgsasl client handle. | 
| b64input : | input base64 encoded byte array. | 
| b64output : | output base64 encoded byte array. | 
| b64output_len : | size of output base64 encoded byte array. | 
| Returns : |  See  | 
int gsasl_server_step (Gsasl_session_ctx *sctx, const char *input, size_t input_len, char *output, size_t *output_len);
Perform one step of SASL authentication in server. This reads data from client (specified with input and input_len), processes it (potentially invoking callbacks to the application), and writes data to client (into variables output and output_len).
The contents of the output buffer is unspecified if this functions returns anything other than GSASL_NEEDS_MORE.
Note that this function is obsolete and may be removed in the future.
| sctx : | libgsasl server handle. | 
| input : | input byte array. | 
| input_len : | size of input byte array. | 
| output : | output byte array. | 
| output_len : | size of output byte array. | 
| Returns : | Returns GSASL_OK if authenticated terminated successfully, GSASL_NEEDS_MORE if more data is needed, or error code. | 
int gsasl_server_step_base64 (Gsasl_session_ctx *sctx, const char *b64input, char *b64output, size_t b64output_len);
This is a simple wrapper around gsasl_server_step() that base64
decodes the input and base64 encodes the output.
Note that this function is obsolete and may be removed in the future.
| sctx : | libgsasl server handle. | 
| b64input : | input base64 encoded byte array. | 
| b64output : | output base64 encoded byte array. | 
| b64output_len : | size of output base64 encoded byte array. | 
| Returns : |  See  | 
void gsasl_client_finish (Gsasl_session_ctx *sctx);
Destroy a libgsasl client handle. The handle must not be used with other libgsasl functions after this call.
Note that this function is obsolete and may be removed in the future.
| sctx : | libgsasl client handle. | 
void gsasl_server_finish (Gsasl_session_ctx *sctx);
Destroy a libgsasl server handle. The handle must not be used with other libgsasl functions after this call.
Note that this function is obsolete and may be removed in the future.
| sctx : | libgsasl server handle. | 
Gsasl_ctx* gsasl_client_ctx_get (Gsasl_session_ctx *sctx);
Note that this function is obsolete and may be removed in the future.
| sctx : | libgsasl client handle | 
| Returns : | Returns the libgsasl handle given a libgsasl client handle. | 
Gsasl_ctx* gsasl_server_ctx_get (Gsasl_session_ctx *sctx);
Note that this function is obsolete and may be removed in the future.
| sctx : | libgsasl server handle | 
| Returns : | Returns the libgsasl handle given a libgsasl server handle. | 
void        gsasl_client_application_data_set
                                            (Gsasl_session_ctx *sctx,
                                             void *application_data);Store application specific data in the libgsasl client handle.  The
application data can be later (for instance, inside a callback) be
retrieved by calling gsasl_client_application_data_get().  It is
normally used by the application to maintain state between the main
program and the callback.
Note that this function is obsolete and may be removed in the future.
| sctx : | libgsasl client handle. | 
| application_data : | opaque pointer to application specific data. | 
void*       gsasl_client_application_data_get
                                            (Gsasl_session_ctx *sctx);Retrieve application specific data from libgsasl client handle. The
application data is set using gsasl_client_application_data_set().
It is normally used by the application to maintain state between
the main program and the callback.
Note that this function is obsolete and may be removed in the future.
| sctx : | libgsasl client handle. | 
void        gsasl_server_application_data_set
                                            (Gsasl_session_ctx *sctx,
                                             void *application_data);Store application specific data in the libgsasl server handle.  The
application data can be later (for instance, inside a callback) be
retrieved by calling gsasl_server_application_data_get().  It is
normally used by the application to maintain state between the main
program and the callback.
Note that this function is obsolete and may be removed in the future.
| sctx : | libgsasl server handle. | 
| application_data : | opaque pointer to application specific data. | 
void*       gsasl_server_application_data_get
                                            (Gsasl_session_ctx *sctx);Retrieve application specific data from libgsasl server handle. The
application data is set using gsasl_server_application_data_set().
It is normally used by the application to maintain state between
the main program and the callback.
Note that this function is obsolete and may be removed in the future.
| sctx : | libgsasl server handle. | 
int         gsasl_randomize                 (int strong,
                                             char *data,
                                             size_t datalen);Store cryptographically random data of given size in the provided buffer.
| strong : | 0 iff operation should not block, non-0 for very strong randomness. | 
| data : | output array to be filled with random data. | 
| datalen : | size of output array. | 
| Returns : | Returns GSASL_OK iff successful. | 
| <<< GNU SASL API Reference Manual |