#include <cat/boks.h>
int catboks_certtouser(cat_session *sess, char **user, int maxlen);
If *user is null, it will be allocated and must be freed by the caller, otherwise it should point to at least maxlen bytes of memory.