f4401cd869
alter des.h to be friendly with openssl/des.h (you can include both in the same file) make libkrb to depend on libdes. bump major. massage various portioin of heimdal to be friendly with openssl 0.9.7b.
344 lines
13 KiB
Groff
344 lines
13 KiB
Groff
.\" $NetBSD: openssl_ui.3,v 1.1 2003/07/24 14:16:53 itojun Exp $
|
|
.\"
|
|
.\" Automatically generated by Pod::Man version 1.02
|
|
.\" Thu Jul 24 13:08:09 2003
|
|
.\"
|
|
.\" Standard preamble:
|
|
.\" ======================================================================
|
|
.de Sh \" Subsection heading
|
|
.br
|
|
.if t .Sp
|
|
.ne 5
|
|
.PP
|
|
\fB\\$1\fR
|
|
.PP
|
|
..
|
|
.de Sp \" Vertical space (when we can't use .PP)
|
|
.if t .sp .5v
|
|
.if n .sp
|
|
..
|
|
.de Ip \" List item
|
|
.br
|
|
.ie \\n(.$>=3 .ne \\$3
|
|
.el .ne 3
|
|
.IP "\\$1" \\$2
|
|
..
|
|
.de Vb \" Begin verbatim text
|
|
.ft CW
|
|
.nf
|
|
.ne \\$1
|
|
..
|
|
.de Ve \" End verbatim text
|
|
.ft R
|
|
|
|
.fi
|
|
..
|
|
.\" Set up some character translations and predefined strings. \*(-- will
|
|
.\" give an unbreakable dash, \*(PI will give pi, \*(L" will give a left
|
|
.\" double quote, and \*(R" will give a right double quote. | will give a
|
|
.\" real vertical bar. \*(C+ will give a nicer C++. Capital omega is used
|
|
.\" to do unbreakable dashes and therefore won't be available. \*(C` and
|
|
.\" \*(C' expand to `' in nroff, nothing in troff, for use with C<>
|
|
.tr \(*W-|\(bv\*(Tr
|
|
.ds C+ C\v'-.1v'\h'-1p'\s-2+\h'-1p'+\s0\v'.1v'\h'-1p'
|
|
.ie n \{\
|
|
. ds -- \(*W-
|
|
. ds PI pi
|
|
. if (\n(.H=4u)&(1m=24u) .ds -- \(*W\h'-12u'\(*W\h'-12u'-\" diablo 10 pitch
|
|
. if (\n(.H=4u)&(1m=20u) .ds -- \(*W\h'-12u'\(*W\h'-8u'-\" diablo 12 pitch
|
|
. ds L" ""
|
|
. ds R" ""
|
|
. ds C` `
|
|
. ds C' '
|
|
'br\}
|
|
.el\{\
|
|
. ds -- \|\(em\|
|
|
. ds PI \(*p
|
|
. ds L" ``
|
|
. ds R" ''
|
|
'br\}
|
|
.\"
|
|
.\" If the F register is turned on, we'll generate index entries on stderr
|
|
.\" for titles (.TH), headers (.SH), subsections (.Sh), items (.Ip), and
|
|
.\" index entries marked with X<> in POD. Of course, you'll have to process
|
|
.\" the output yourself in some meaningful fashion.
|
|
.if \nF \{\
|
|
. de IX
|
|
. tm Index:\\$1\t\\n%\t"\\$2"
|
|
. .
|
|
. nr % 0
|
|
. rr F
|
|
.\}
|
|
.\"
|
|
.\" For nroff, turn off justification. Always turn off hyphenation; it
|
|
.\" makes way too many mistakes in technical documents.
|
|
.hy 0
|
|
.if n .na
|
|
.\"
|
|
.\" Accent mark definitions (@(#)ms.acc 1.5 88/02/08 SMI; from UCB 4.2).
|
|
.\" Fear. Run. Save yourself. No user-serviceable parts.
|
|
.bd B 3
|
|
. \" fudge factors for nroff and troff
|
|
.if n \{\
|
|
. ds #H 0
|
|
. ds #V .8m
|
|
. ds #F .3m
|
|
. ds #[ \f1
|
|
. ds #] \fP
|
|
.\}
|
|
.if t \{\
|
|
. ds #H ((1u-(\\\\n(.fu%2u))*.13m)
|
|
. ds #V .6m
|
|
. ds #F 0
|
|
. ds #[ \&
|
|
. ds #] \&
|
|
.\}
|
|
. \" simple accents for nroff and troff
|
|
.if n \{\
|
|
. ds ' \&
|
|
. ds ` \&
|
|
. ds ^ \&
|
|
. ds , \&
|
|
. ds ~ ~
|
|
. ds /
|
|
.\}
|
|
.if t \{\
|
|
. ds ' \\k:\h'-(\\n(.wu*8/10-\*(#H)'\'\h"|\\n:u"
|
|
. ds ` \\k:\h'-(\\n(.wu*8/10-\*(#H)'\`\h'|\\n:u'
|
|
. ds ^ \\k:\h'-(\\n(.wu*10/11-\*(#H)'^\h'|\\n:u'
|
|
. ds , \\k:\h'-(\\n(.wu*8/10)',\h'|\\n:u'
|
|
. ds ~ \\k:\h'-(\\n(.wu-\*(#H-.1m)'~\h'|\\n:u'
|
|
. ds / \\k:\h'-(\\n(.wu*8/10-\*(#H)'\z\(sl\h'|\\n:u'
|
|
.\}
|
|
. \" troff and (daisy-wheel) nroff accents
|
|
.ds : \\k:\h'-(\\n(.wu*8/10-\*(#H+.1m+\*(#F)'\v'-\*(#V'\z.\h'.2m+\*(#F'.\h'|\\n:u'\v'\*(#V'
|
|
.ds 8 \h'\*(#H'\(*b\h'-\*(#H'
|
|
.ds o \\k:\h'-(\\n(.wu+\w'\(de'u-\*(#H)/2u'\v'-.3n'\*(#[\z\(de\v'.3n'\h'|\\n:u'\*(#]
|
|
.ds d- \h'\*(#H'\(pd\h'-\w'~'u'\v'-.25m'\f2\(hy\fP\v'.25m'\h'-\*(#H'
|
|
.ds D- D\\k:\h'-\w'D'u'\v'-.11m'\z\(hy\v'.11m'\h'|\\n:u'
|
|
.ds th \*(#[\v'.3m'\s+1I\s-1\v'-.3m'\h'-(\w'I'u*2/3)'\s-1o\s+1\*(#]
|
|
.ds Th \*(#[\s+2I\s-2\h'-\w'I'u*3/5'\v'-.3m'o\v'.3m'\*(#]
|
|
.ds ae a\h'-(\w'a'u*4/10)'e
|
|
.ds Ae A\h'-(\w'A'u*4/10)'E
|
|
. \" corrections for vroff
|
|
.if v .ds ~ \\k:\h'-(\\n(.wu*9/10-\*(#H)'\s-2\u~\d\s+2\h'|\\n:u'
|
|
.if v .ds ^ \\k:\h'-(\\n(.wu*10/11-\*(#H)'\v'-.4m'^\v'.4m'\h'|\\n:u'
|
|
. \" for low resolution devices (crt and lpr)
|
|
.if \n(.H>23 .if \n(.V>19 \
|
|
\{\
|
|
. ds : e
|
|
. ds 8 ss
|
|
. ds o a
|
|
. ds d- d\h'-1'\(ga
|
|
. ds D- D\h'-1'\(hy
|
|
. ds th \o'bp'
|
|
. ds Th \o'LP'
|
|
. ds ae ae
|
|
. ds Ae AE
|
|
.\}
|
|
.rm #[ #] #H #V #F C
|
|
.\" ======================================================================
|
|
.\"
|
|
.IX Title "ui 3"
|
|
.TH ui 3 "0.9.7b" "2001-10-26" "OpenSSL"
|
|
.UC
|
|
.SH "NAME"
|
|
UI_new, UI_new_method, UI_free, UI_add_input_string, UI_dup_input_string,
|
|
UI_add_verify_string, UI_dup_verify_string, UI_add_input_boolean,
|
|
UI_dup_input_boolean, UI_add_info_string, UI_dup_info_string,
|
|
UI_add_error_string, UI_dup_error_string, UI_construct_prompt
|
|
UI_add_user_data, UI_get0_user_data, UI_get0_result, UI_process,
|
|
UI_ctrl, UI_set_default_method, UI_get_default_method, UI_get_method,
|
|
UI_set_method, UI_OpenSSL, ERR_load_UI_strings \- New User Interface
|
|
.SH "LIBRARY"
|
|
libcrypto, -lcrypto
|
|
.SH "SYNOPSIS"
|
|
.IX Header "SYNOPSIS"
|
|
.Vb 1
|
|
\& #include <openssl/ui.h>
|
|
.Ve
|
|
.Vb 2
|
|
\& typedef struct ui_st UI;
|
|
\& typedef struct ui_method_st UI_METHOD;
|
|
.Ve
|
|
.Vb 3
|
|
\& UI *UI_new(void);
|
|
\& UI *UI_new_method(const UI_METHOD *method);
|
|
\& void UI_free(UI *ui);
|
|
.Ve
|
|
.Vb 18
|
|
\& int UI_add_input_string(UI *ui, const char *prompt, int flags,
|
|
\& char *result_buf, int minsize, int maxsize);
|
|
\& int UI_dup_input_string(UI *ui, const char *prompt, int flags,
|
|
\& char *result_buf, int minsize, int maxsize);
|
|
\& int UI_add_verify_string(UI *ui, const char *prompt, int flags,
|
|
\& char *result_buf, int minsize, int maxsize, const char *test_buf);
|
|
\& int UI_dup_verify_string(UI *ui, const char *prompt, int flags,
|
|
\& char *result_buf, int minsize, int maxsize, const char *test_buf);
|
|
\& int UI_add_input_boolean(UI *ui, const char *prompt, const char *action_desc,
|
|
\& const char *ok_chars, const char *cancel_chars,
|
|
\& int flags, char *result_buf);
|
|
\& int UI_dup_input_boolean(UI *ui, const char *prompt, const char *action_desc,
|
|
\& const char *ok_chars, const char *cancel_chars,
|
|
\& int flags, char *result_buf);
|
|
\& int UI_add_info_string(UI *ui, const char *text);
|
|
\& int UI_dup_info_string(UI *ui, const char *text);
|
|
\& int UI_add_error_string(UI *ui, const char *text);
|
|
\& int UI_dup_error_string(UI *ui, const char *text);
|
|
.Ve
|
|
.Vb 3
|
|
\& /* These are the possible flags. They can be or'ed together. */
|
|
\& #define UI_INPUT_FLAG_ECHO 0x01
|
|
\& #define UI_INPUT_FLAG_DEFAULT_PWD 0x02
|
|
.Ve
|
|
.Vb 2
|
|
\& char *UI_construct_prompt(UI *ui_method,
|
|
\& const char *object_desc, const char *object_name);
|
|
.Ve
|
|
.Vb 2
|
|
\& void *UI_add_user_data(UI *ui, void *user_data);
|
|
\& void *UI_get0_user_data(UI *ui);
|
|
.Ve
|
|
.Vb 1
|
|
\& const char *UI_get0_result(UI *ui, int i);
|
|
.Ve
|
|
.Vb 1
|
|
\& int UI_process(UI *ui);
|
|
.Ve
|
|
.Vb 3
|
|
\& int UI_ctrl(UI *ui, int cmd, long i, void *p, void (*f)());
|
|
\& #define UI_CTRL_PRINT_ERRORS 1
|
|
\& #define UI_CTRL_IS_REDOABLE 2
|
|
.Ve
|
|
.Vb 4
|
|
\& void UI_set_default_method(const UI_METHOD *meth);
|
|
\& const UI_METHOD *UI_get_default_method(void);
|
|
\& const UI_METHOD *UI_get_method(UI *ui);
|
|
\& const UI_METHOD *UI_set_method(UI *ui, const UI_METHOD *meth);
|
|
.Ve
|
|
.Vb 1
|
|
\& UI_METHOD *UI_OpenSSL(void);
|
|
.Ve
|
|
.SH "DESCRIPTION"
|
|
.IX Header "DESCRIPTION"
|
|
\&\s-1UI\s0 stands for User Interface, and is general purpose set of routines to
|
|
prompt the user for text-based information. Through user-written methods
|
|
(see ui_create(3)), prompting can be done in any way
|
|
imaginable, be it plain text prompting, through dialog boxes or from a
|
|
cell phone.
|
|
.PP
|
|
All the functions work through a context of the type \s-1UI\s0. This context
|
|
contains all the information needed to prompt correctly as well as a
|
|
reference to a \s-1UI_METHOD\s0, which is an ordered vector of functions that
|
|
carry out the actual prompting.
|
|
.PP
|
|
The first thing to do is to create a \s-1UI\s0 with \fIUI_new()\fR or \fIUI_new_method()\fR,
|
|
then add information to it with the UI_add or UI_dup functions. Also,
|
|
user-defined random data can be passed down to the underlying method
|
|
through calls to UI_add_user_data. The default \s-1UI\s0 method doesn't care
|
|
about these data, but other methods might. Finally, use \fIUI_process()\fR
|
|
to actually perform the prompting and \fIUI_get0_result()\fR to find the result
|
|
to the prompt.
|
|
.PP
|
|
A \s-1UI\s0 can contain more than one prompt, which are performed in the given
|
|
sequence. Each prompt gets an index number which is returned by the
|
|
UI_add and UI_dup functions, and has to be used to get the corresponding
|
|
result with \fIUI_get0_result()\fR.
|
|
.PP
|
|
The functions are as follows:
|
|
.PP
|
|
\&\fIUI_new()\fR creates a new \s-1UI\s0 using the default \s-1UI\s0 method. When done with
|
|
this \s-1UI\s0, it should be freed using \fIUI_free()\fR.
|
|
.PP
|
|
\&\fIUI_new_method()\fR creates a new \s-1UI\s0 using the given \s-1UI\s0 method. When done with
|
|
this \s-1UI\s0, it should be freed using \fIUI_free()\fR.
|
|
.PP
|
|
\&\fIUI_OpenSSL()\fR returns the built-in \s-1UI\s0 method (note: not the default one,
|
|
since the default can be changed. See further on). This method is the
|
|
most machine/OS dependent part of OpenSSL and normally generates the
|
|
most problems when porting.
|
|
.PP
|
|
\&\fIUI_free()\fR removes a \s-1UI\s0 from memory, along with all other pieces of memory
|
|
that's connected to it, like duplicated input strings, results and others.
|
|
.PP
|
|
\&\fIUI_add_input_string()\fR and \fIUI_add_verify_string()\fR add a prompt to the \s-1UI\s0,
|
|
as well as flags and a result buffer and the desired minimum and maximum
|
|
sizes of the result. The given information is used to prompt for
|
|
information, for example a password, and to verify a password (i.e. having
|
|
the user enter it twice and check that the same string was entered twice).
|
|
\&\fIUI_add_verify_string()\fR takes and extra argument that should be a pointer
|
|
to the result buffer of the input string that it's supposed to verify, or
|
|
verification will fail.
|
|
.PP
|
|
\&\fIUI_add_input_boolean()\fR adds a prompt to the \s-1UI\s0 that's supposed to be answered
|
|
in a boolean way, with a single character for yes and a different character
|
|
for no. A set of characters that can be used to cancel the prompt is given
|
|
as well. The prompt itself is really divided in two, one part being the
|
|
descriptive text (given through the \fIprompt\fR argument) and one describing
|
|
the possible answers (given through the \fIaction_desc\fR argument).
|
|
.PP
|
|
\&\fIUI_add_info_string()\fR and \fIUI_add_error_string()\fR add strings that are shown at
|
|
the same time as the prompt for extra information or to show an error string.
|
|
The difference between the two is only conceptual. With the builtin method,
|
|
there's no technical difference between them. Other methods may make a
|
|
difference between them, however.
|
|
.PP
|
|
The flags currently supported are \s-1UI_INPUT_FLAG_ECHO\s0, which is relevant for
|
|
\&\fIUI_add_input_string()\fR and will have the users response be echoed (when
|
|
prompting for a password, this flag should obviously not be used, and
|
|
\&\s-1UI_INPUT_FLAG_DEFAULT_PWD\s0, which means that a default password of some
|
|
sort will be used (completely depending on the application and the \s-1UI\s0
|
|
method).
|
|
.PP
|
|
\&\fIUI_dup_input_string()\fR, \fIUI_dup_verify_string()\fR, \fIUI_dup_input_boolean()\fR,
|
|
\&\fIUI_dup_info_string()\fR and \fIUI_dup_error_string()\fR are basically the same
|
|
as their UI_add counterparts, except that they make their own copies
|
|
of all strings.
|
|
.PP
|
|
\&\fIUI_construct_prompt()\fR is a helper function that can be used to create
|
|
a prompt from two pieces of information: an description and a name.
|
|
The default constructor (if there is none provided by the method used)
|
|
creates a string "Enter \fIdescription\fR for \fIname\fR:\*(L". With the
|
|
description \*(R"pass phrase\*(L" and the file name \*(R"foo.key\*(L", that becomes
|
|
\&\*(R"Enter pass phrase for foo.key:". Other methods may create whatever
|
|
string and may include encodings that will be processed by the other
|
|
method functions.
|
|
.PP
|
|
\&\fIUI_add_user_data()\fR adds a piece of memory for the method to use at any
|
|
time. The builtin \s-1UI\s0 method doesn't care about this info. Note that several
|
|
calls to this function doesn't add data, it replaces the previous blob
|
|
with the one given as argument.
|
|
.PP
|
|
\&\fIUI_get0_user_data()\fR retrieves the data that has last been given to the
|
|
\&\s-1UI\s0 with \fIUI_add_user_data()\fR.
|
|
.PP
|
|
\&\fIUI_get0_result()\fR returns a pointer to the result buffer associated with
|
|
the information indexed by \fIi\fR.
|
|
.PP
|
|
\&\fIUI_process()\fR goes through the information given so far, does all the printing
|
|
and prompting and returns.
|
|
.PP
|
|
\&\fIUI_ctrl()\fR adds extra control for the application author. For now, it
|
|
understands two commands: \s-1UI_CTRL_PRINT_ERRORS\s0, which makes \fIUI_process()\fR
|
|
print the OpenSSL error stack as part of processing the \s-1UI\s0, and
|
|
\&\s-1UI_CTRL_IS_REDOABLE\s0, which returns a flag saying if the used \s-1UI\s0 can
|
|
be used again or not.
|
|
.PP
|
|
\&\fIUI_set_default_method()\fR changes the default \s-1UI\s0 method to the one given.
|
|
.PP
|
|
\&\fIUI_get_default_method()\fR returns a pointer to the current default \s-1UI\s0 method.
|
|
.PP
|
|
\&\fIUI_get_method()\fR returns the \s-1UI\s0 method associated with a given \s-1UI\s0.
|
|
.PP
|
|
\&\fIUI_set_method()\fR changes the \s-1UI\s0 method associated with a given \s-1UI\s0.
|
|
.SH "SEE ALSO"
|
|
.IX Header "SEE ALSO"
|
|
ui_create(3), ui_compat(3)
|
|
.SH "HISTORY"
|
|
.IX Header "HISTORY"
|
|
The \s-1UI\s0 section was first introduced in OpenSSL 0.9.7.
|
|
.SH "AUTHOR"
|
|
.IX Header "AUTHOR"
|
|
Richard Levitte (richard@levitte.org) for the OpenSSL project
|
|
(http://www.openssl.org).
|