/usr/include/libinfinity-0.7/libinfinity/common/inf-xmpp-connection.h is in libinfinity-0.7-dev 0.7.1-1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 383 384 385 386 387 | /* libinfinity - a GObject-based infinote implementation
* Copyright (C) 2007-2015 Armin Burgmeier <armin@arbur.net>
*
* This library is free software; you can redistribute it and/or
* modify it under the terms of the GNU Lesser General Public
* License as published by the Free Software Foundation; either
* version 2 of the License, or (at your option) any later version.
*
* This library is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public
* License along with this library; if not, write to the Free
* Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,
* MA 02110-1301, USA.
*/
#ifndef __INF_XMPP_CONNECTION_H__
#define __INF_XMPP_CONNECTION_H__
#include <libinfinity/common/inf-tcp-connection.h>
#include <libinfinity/common/inf-certificate-chain.h>
#include <libinfinity/common/inf-certificate-credentials.h>
#include <libinfinity/common/inf-sasl-context.h>
#include <unistd.h> /* Get ssize_t on MSVC, required by gnutls.h */
#include <gnutls/gnutls.h>
/*#include <gsasl.h>*/
#include <glib-object.h>
G_BEGIN_DECLS
#define INF_TYPE_XMPP_CONNECTION (inf_xmpp_connection_get_type())
#define INF_XMPP_CONNECTION(obj) (G_TYPE_CHECK_INSTANCE_CAST((obj), INF_TYPE_XMPP_CONNECTION, InfXmppConnection))
#define INF_XMPP_CONNECTION_CLASS(klass) (G_TYPE_CHECK_CLASS_CAST((klass), INF_TYPE_XMPP_CONNECTION, InfXmppConnectionClass))
#define INF_IS_XMPP_CONNECTION(obj) (G_TYPE_CHECK_INSTANCE_TYPE((obj), INF_TYPE_XMPP_CONNECTION))
#define INF_IS_XMPP_CONNECTION_CLASS(klass) (G_TYPE_CHECK_CLASS_TYPE((klass), INF_TYPE_XMPP_CONNECTION))
#define INF_XMPP_CONNECTION_GET_CLASS(obj) (G_TYPE_INSTANCE_GET_CLASS((obj), INF_TYPE_XMPP_CONNECTION, InfXmppConnectionClass))
#define INF_TYPE_XMPP_CONNECTION_SITE (inf_xmpp_connection_site_get_type())
#define INF_TYPE_XMPP_CONNECTION_SECURITY_POLICY (inf_xmpp_connection_security_policy_get_type())
typedef struct _InfXmppConnection InfXmppConnection;
typedef struct _InfXmppConnectionClass InfXmppConnectionClass;
/**
* InfXmppConnectionSite:
* @INF_XMPP_CONNECTION_SERVER: The local site of this connection is an
* XMPP server and the remote counterpart is a client.
* @INF_XMPP_CONNECTION_CLIENT: The local site of this connection is a
* XMPP client and the remote counterpart is a server.
*
* Specifies whether the local site of the connection is a client or a
* server.
*/
typedef enum _InfXmppConnectionSite {
INF_XMPP_CONNECTION_SERVER,
INF_XMPP_CONNECTION_CLIENT
} InfXmppConnectionSite;
/**
* InfXmppConnectionSecurityPolicy:
* @INF_XMPP_CONNECTION_SECURITY_ONLY_UNSECURED: In the case of a server, do
* not offer TLS to the client. As a client, only connect if the server does
* not require TLS.
* @INF_XMPP_CONNECTION_SECURITY_ONLY_TLS: In the case of a server, require
* all connections to be TLS-secured. As a client, only connect if the server
* supports TLS.
* @INF_XMPP_CONNECTION_SECURITY_BOTH_PREFER_UNSECURED: In the case of a
* server, offer both unsecured and secured messaging to the client. As a
* client, use unsecured communication unless TLS is required by the server.
* @INF_XMPP_CONNECTION_SECURITY_BOTH_PREFER_TLS: In the case of a server,
* offer both unsecured and secured messaging to the client. As a client,
* use TLS unless not supported by the server.
*
* The #InfXmppConnectionSecurityPolicy enumeration specifies various options
* of how to deal with the other site allowing or requiring TLS-secured
* connections. Note that if the local site is a server, then
* @INF_XMPP_CONNECTION_SECURITY_BOTH_PREFER_UNSECURED and
* @INF_XMPP_CONNECTION_SECURITY_BOTH_PREFER_TLS are equivalent.
*/
typedef enum _InfXmppConnectionSecurityPolicy {
INF_XMPP_CONNECTION_SECURITY_ONLY_UNSECURED,
INF_XMPP_CONNECTION_SECURITY_ONLY_TLS,
INF_XMPP_CONNECTION_SECURITY_BOTH_PREFER_UNSECURED,
INF_XMPP_CONNECTION_SECURITY_BOTH_PREFER_TLS
} InfXmppConnectionSecurityPolicy;
/**
* InfXmppConnectionError:
* @INF_XMPP_CONNECTION_ERROR_TLS_UNSUPPORTED: Server does not support TLS,
* but the security policy is set to %INF_XMPP_CONNECTION_SECURITY_ONLY_TLS.
* @INF_XMPP_CONNECTION_ERROR_TLS_REQUIRED: The server requires TLS, but the
* security policy is set to %INF_XMPP_CONNECTION_SECURITY_ONLY_UNSECURED.
* @INF_XMPP_CONNECTION_ERROR_TLS_FAILURE: Server cannot proceed with the TLS
* handshake.
* @INF_XMPP_CONNECTION_ERROR_NO_CERTIFICATE_PROVIDED: The server did not
* provide a certificate.
* @INF_XMPP_CONNECTION_ERROR_CERTIFICATE_NOT_TRUSTED: The server certificate
* is not trusted. Whether the server certificate is trusted or not is defined
* by the API user, by providing a certificate callback with
* inf_xmpp_connection_set_certificate_callback().
* @INF_XMPP_CONNECTION_ERROR_AUTHENTICATION_UNSUPPORTED: The server does not
* provide any authentication mechanisms.
* @INF_XMPP_CONNECTION_ERROR_NO_SUITABLE_MECHANISM: The server does not offer
* a suitable authentication mechanism that is accepted by the client.
* @INF_XMPP_CONNECTION_ERROR_FAILED: General error code for otherwise
* unknown errors.
*
* Specifies the error codes in the
* <literal>INF_XMPP_CONNECTION_ERROR</literal> error domain.
*/
typedef enum _InfXmppConnectionError {
INF_XMPP_CONNECTION_ERROR_TLS_UNSUPPORTED,
INF_XMPP_CONNECTION_ERROR_TLS_REQUIRED,
INF_XMPP_CONNECTION_ERROR_TLS_FAILURE,
INF_XMPP_CONNECTION_ERROR_NO_CERTIFICATE_PROVIDED,
INF_XMPP_CONNECTION_ERROR_CERTIFICATE_NOT_TRUSTED,
INF_XMPP_CONNECTION_ERROR_AUTHENTICATION_UNSUPPORTED,
INF_XMPP_CONNECTION_ERROR_NO_SUITABLE_MECHANISM,
INF_XMPP_CONNECTION_ERROR_FAILED
} InfXmppConnectionError;
/**
* InfXmppConnectionStreamError:
* @INF_XMPP_CONNECTION_STREAM_ERROR_BAD_FORMAT: The entity has sent XML that
* cannot be processed.
* @INF_XMPP_CONNECTION_STREAM_ERROR_BAD_NAMESPACE_PREFIX: The entity has sent
* a namespace prefix that is unsupported, or has sent no namespace prefix on
* an element that requires such a prefix.
* @INF_XMPP_CONNECTION_STREAM_ERROR_CONFLICT: The server is closing the
* active stream for this entity because a new stream has been initiated
* that conflicts with the existing stream.
* @INF_XMPP_CONNECTION_STREAM_ERROR_CONNECTION_TIMEOUT: The entity has not
* generated any traffic over the stream for some period of time.
* @INF_XMPP_CONNECTION_STREAM_ERROR_HOST_GONE: The value of the 'to'
* attribute provided by the initiating entity in the stream header
* corresponds to a hostname that is no longer hosted by the server.
* @INF_XMPP_CONNECTION_STREAM_ERROR_HOST_UNKNOWN: The value of the 'to'
* attribute provided by the initiating entity in the stream header does
* not correspond to a hostname that is hosted by the server.
* @INF_XMPP_CONNECTION_STREAM_ERROR_IMPROPER_ADDRESSING: A stanza sent
* between two servers lacks a 'to' or 'from' attribute.
* @INF_XMPP_CONNECTION_STREAM_ERROR_INTERNAL_SERVER_ERROR: The server has
* experienced a misconfiguration or an otherwise-undefined internal error
* that prevents it from servicing the stream.
* @INF_XMPP_CONNECTION_STREAM_ERROR_INVALID_FROM: The JID or hostname
* provided in a 'from' address does not match an authorized JID or
* validated domain negotiated between servers via SASL or dialback, or
* between a client and a server via authentication and resource binding.
* @INF_XMPP_CONNECTION_STREAM_ERROR_INVALID_ID: The stream ID or dialback
* ID is invalid or does not match an ID previously provided.
* @INF_XMPP_CONNECTION_STREAM_ERROR_INVALID_NAMESPACE: The streams namespace
* is something other than <literal>http://etherx.jabber.org/streams</literal>
* or the dialback namespace name is something other than
* <literal>jabber:server:dialback</literal>.
* @INF_XMPP_CONNECTION_STREAM_ERROR_INVALID_XML: The entity has sent invalid
* XML over the stream to a server that performs validation.
* @INF_XMPP_CONNECTION_STREAM_ERROR_NOT_AUTHORIZED: The entity has attempted
* to send data before the stream has been authenticated, or otherwise is not
* authorized to perform an action related to stream negotiation.
* @INF_XMPP_CONNECTION_STREAM_ERROR_POLICY_VIOLATION: The entity has violated
* some local service policy.
* @INF_XMPP_CONNECTION_STREAM_ERROR_REMOTE_CONNECTION_FAILED: The server is
* unable to properly connect to a remote entity that is required for
* authentication or authorization.
* @INF_XMPP_CONNECTION_STREAM_ERROR_RESOURCE_CONSTRAINT: The server lacks the
* system resources necessary to service the stream.
* @INF_XMPP_CONNECTION_STREAM_ERROR_RESTRICTED_XML: The entity has attempted
* to send restricted XML features.
* @INF_XMPP_CONNECTION_STREAM_ERROR_SEE_OTHER_HOST: The server will not
* provide service to the initiating entity but is redirecting traffic
* to another host.
* @INF_XMPP_CONNECTION_STREAM_ERROR_SYSTEM_SHUTDOWN: The server is being
* shut down and all active streams are being closed.
* @INF_XMPP_CONNECTION_STREAM_ERROR_UNDEFINED_CONDITION: The error condition
* is not one of those defined by the other conditions.
* @INF_XMPP_CONNECTION_STREAM_ERROR_UNSUPPORTED_ENCODING: The initiating
* entity has encoded the stream in an encoding that is not supported by
* the server.
* @INF_XMPP_CONNECTION_STREAM_ERROR_UNSUPPORTED_STANZA_TYPE: The initiating
* entity has sent a first-level child of the stream that is not supported
* by the server.
* @INF_XMPP_CONNECTION_STREAM_ERROR_UNSUPPORTED_VERSION: The value of the
* 'version' attribute provided by the initiating entity in the stream header
* specifies a version of XMPP that is not supported by the server.
* @INF_XMPP_CONNECTION_STREAM_ERROR_XML_NOT_WELL_FORMED: The initiating
* entity has sent XML that is not well-formed.
* @INF_XMPP_CONNECTION_STREAM_ERROR_FAILED: General error code for otherwise
* unknown errors.
*
* Specifies the error codes in the
* <literal>INF_XMPP_CONNECTION_STREAM_ERROR</literal> error domain. These
* errors correspond to the ones defined in RFC 3920, section 4.7.3.
*/
typedef enum _InfXmppConnectionStreamError {
INF_XMPP_CONNECTION_STREAM_ERROR_BAD_FORMAT,
INF_XMPP_CONNECTION_STREAM_ERROR_BAD_NAMESPACE_PREFIX,
INF_XMPP_CONNECTION_STREAM_ERROR_CONFLICT,
INF_XMPP_CONNECTION_STREAM_ERROR_CONNECTION_TIMEOUT,
INF_XMPP_CONNECTION_STREAM_ERROR_HOST_GONE,
INF_XMPP_CONNECTION_STREAM_ERROR_HOST_UNKNOWN,
INF_XMPP_CONNECTION_STREAM_ERROR_IMPROPER_ADDRESSING,
INF_XMPP_CONNECTION_STREAM_ERROR_INTERNAL_SERVER_ERROR,
INF_XMPP_CONNECTION_STREAM_ERROR_INVALID_FROM,
INF_XMPP_CONNECTION_STREAM_ERROR_INVALID_ID,
INF_XMPP_CONNECTION_STREAM_ERROR_INVALID_NAMESPACE,
INF_XMPP_CONNECTION_STREAM_ERROR_INVALID_XML,
INF_XMPP_CONNECTION_STREAM_ERROR_NOT_AUTHORIZED,
INF_XMPP_CONNECTION_STREAM_ERROR_POLICY_VIOLATION,
INF_XMPP_CONNECTION_STREAM_ERROR_REMOTE_CONNECTION_FAILED,
INF_XMPP_CONNECTION_STREAM_ERROR_RESOURCE_CONSTRAINT,
INF_XMPP_CONNECTION_STREAM_ERROR_RESTRICTED_XML,
INF_XMPP_CONNECTION_STREAM_ERROR_SEE_OTHER_HOST,
INF_XMPP_CONNECTION_STREAM_ERROR_SYSTEM_SHUTDOWN,
INF_XMPP_CONNECTION_STREAM_ERROR_UNDEFINED_CONDITION,
INF_XMPP_CONNECTION_STREAM_ERROR_UNSUPPORTED_ENCODING,
INF_XMPP_CONNECTION_STREAM_ERROR_UNSUPPORTED_STANZA_TYPE,
INF_XMPP_CONNECTION_STREAM_ERROR_UNSUPPORTED_VERSION,
INF_XMPP_CONNECTION_STREAM_ERROR_XML_NOT_WELL_FORMED,
INF_XMPP_CONNECTION_STREAM_ERROR_FAILED
} InfXmppConnectionStreamError;
/**
* InfXmppConnectionAuthError:
* @INF_XMPP_CONNECTION_AUTH_ERROR_ABORTED: The receiving entity acknowledged
* an <literal><abort/></literal> element sent by the initiating entity.
* @INF_XMPP_CONNECTION_AUTH_ERROR_INCORRECT_ENCODING: The data provided by
* the initiating entity could not be processed because the Base64 encoding
* is incorrect.
* @INF_XMPP_CONNECTION_AUTH_ERROR_INVALID_AUTHZID: The authzid provided by
* the initiating entity is invalid, either because it is incorrectly
* formatted or because the initiating entity does not have permissions
* to authorize that ID.
* @INF_XMPP_CONNECTION_AUTH_ERROR_INVALID_MECHANISM: The initiating entity
* did not provide a mechanism or requested a mechanism that is not supported
* by the receiving entity.
* @INF_XMPP_CONNECTION_AUTH_ERROR_MECHANISM_TOO_WEAK: The mechanism requsted
* by the initiating entity is weaker than server policy permits for that
* initiating entity.
* @INF_XMPP_CONNECTION_AUTH_ERROR_NOT_AUTHORIZED: The authentication failed
* because the initiating entity did not provide valid credentials.
* @INF_XMPP_CONNECTION_AUTH_ERROR_TEMPORARY_AUTH_FAILURE: The authentication
* failed because of a temporary error condition within the receiving entity.
* @INF_XMPP_CONNECTION_AUTH_ERROR_FAILED: General error code for otherwise
* unknown errors.
*
* Specifies the error codes in the
* <literal>INF_XMPP_CONNECTION_AUTH_ERROR</literal> error domain. These
* errors correspond to the ones defined in RFC 3920, section 6.4.
*/
typedef enum _InfXmppConnectionAuthError {
INF_XMPP_CONNECTION_AUTH_ERROR_ABORTED,
INF_XMPP_CONNECTION_AUTH_ERROR_INCORRECT_ENCODING,
INF_XMPP_CONNECTION_AUTH_ERROR_INVALID_AUTHZID,
INF_XMPP_CONNECTION_AUTH_ERROR_INVALID_MECHANISM,
INF_XMPP_CONNECTION_AUTH_ERROR_MECHANISM_TOO_WEAK,
INF_XMPP_CONNECTION_AUTH_ERROR_NOT_AUTHORIZED,
INF_XMPP_CONNECTION_AUTH_ERROR_TEMPORARY_AUTH_FAILURE,
INF_XMPP_CONNECTION_AUTH_ERROR_FAILED
} InfXmppConnectionAuthError;
/**
* InfXmppConnectionClass:
*
* This structure does not contain any public fields.
*/
struct _InfXmppConnectionClass {
/*< private >*/
GObjectClass parent_class;
};
/**
* InfXmppConnection:
*
* #InfXmppConnection is an opaque data type. You should only access it via
* the public API functions.
*/
struct _InfXmppConnection {
/*< private >*/
GObject parent;
};
/**
* InfXmppConnectionCrtCallback:
* @xmpp: The #InfXmppConnection validating a certificate.
* @session: The underlying GnuTLS session.
* @chain: The certificate chain presented by the remote host.
* @user_data: Additional data supplied when
* inf_xmpp_connection_set_certificate_callback() was called.
*
* Specifies the callback signature for the certificate callback set with
* inf_xmpp_connection_set_certificate_callback(). The callback should decide
* whether to trust the certificate in @chain or not.
*/
typedef void(*InfXmppConnectionCrtCallback)(InfXmppConnection* xmpp,
gnutls_session_t session,
InfCertificateChain* chain,
gpointer user_data);
GType
inf_xmpp_connection_security_policy_get_type(void) G_GNUC_CONST;
GType
inf_xmpp_connection_site_get_type(void) G_GNUC_CONST;
GType
inf_xmpp_connection_get_type(void) G_GNUC_CONST;
GQuark
inf_xmpp_connection_error_quark(void);
InfXmppConnection*
inf_xmpp_connection_new(InfTcpConnection* tcp,
InfXmppConnectionSite site,
const gchar* local_hostname,
const gchar* remote_hostname,
InfXmppConnectionSecurityPolicy security_policy,
InfCertificateCredentials* creds,
InfSaslContext* sasl_context,
const gchar* sasl_mechanisms);
gboolean
inf_xmpp_connection_get_tls_enabled(InfXmppConnection* xmpp);
gnutls_x509_crt_t
inf_xmpp_connection_get_own_certificate(InfXmppConnection* xmpp);
InfCertificateChain*
inf_xmpp_connection_get_peer_certificate(InfXmppConnection* xmpp);
gnutls_kx_algorithm_t
inf_xmpp_connection_get_kx_algorithm(InfXmppConnection* xmpp);
gnutls_cipher_algorithm_t
inf_xmpp_connection_get_cipher_algorithm(InfXmppConnection* xmpp);
gnutls_mac_algorithm_t
inf_xmpp_connection_get_mac_algorithm(InfXmppConnection* xmpp);
gnutls_protocol_t
inf_xmpp_connection_get_tls_protocol(InfXmppConnection* xmpp);
guint
inf_xmpp_connection_get_dh_prime_bits(InfXmppConnection* xmpp);
void
inf_xmpp_connection_set_certificate_callback(InfXmppConnection* xmpp,
gnutls_certificate_request_t req,
InfXmppConnectionCrtCallback cb,
gpointer user_data,
GDestroyNotify notify);
void
inf_xmpp_connection_certificate_verify_continue(InfXmppConnection* xmpp);
void
inf_xmpp_connection_certificate_verify_cancel(InfXmppConnection* xmpp,
const GError* error);
void
inf_xmpp_connection_reset_sasl_authentication(InfXmppConnection* xmpp,
InfSaslContext* new_context,
const gchar* new_mechanisms);
gboolean
inf_xmpp_connection_retry_sasl_authentication(InfXmppConnection* xmpp,
GError** error);
void
inf_xmpp_connection_set_sasl_error(InfXmppConnection* xmpp,
const GError* error);
const GError*
inf_xmpp_connection_get_sasl_error(InfXmppConnection* xmpp);
G_END_DECLS
#endif /* __INF_XMPP_CONNECTION_H__ */
/* vim:set et sw=2 ts=2: */
|