2 * Copyright (c) 2011, JANET(UK)
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of JANET(UK) nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 * Attribute provider mechanism.
37 #include "gssapiP_eap.h"
46 /* lazy initialisation */
47 static GSSEAP_THREAD_ONCE gssEapAttrProvidersInitOnce = GSSEAP_ONCE_INITIALIZER;
48 static OM_uint32 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
51 gssEapAttrProvidersInitInternal(void)
53 OM_uint32 major, minor;
55 assert(gssEapAttrProvidersInitStatus == GSS_S_UNAVAILABLE);
57 major = gssEapRadiusAttrProviderInit(&minor);
58 if (major == GSS_S_COMPLETE)
59 major = gssEapSamlAttrProvidersInit(&minor);
60 if (major == GSS_S_COMPLETE)
61 major = gssEapLocalAttrProviderInit(&minor);
64 assert(major == GSS_S_COMPLETE);
67 gssEapAttrProvidersInitStatus = major;
71 gssEapAttrProvidersInit(OM_uint32 *minor)
73 GSSEAP_ONCE(&gssEapAttrProvidersInitOnce, gssEapAttrProvidersInitInternal);
75 if (GSS_ERROR(gssEapAttrProvidersInitStatus))
76 *minor = GSSEAP_NO_ATTR_PROVIDERS;
78 return gssEapAttrProvidersInitStatus;
82 gssEapAttrProvidersFinalize(OM_uint32 *minor)
84 OM_uint32 major = GSS_S_COMPLETE;
86 if (gssEapAttrProvidersInitStatus == GSS_S_COMPLETE) {
87 major = gssEapLocalAttrProviderFinalize(minor);
88 if (major == GSS_S_COMPLETE)
89 major = gssEapSamlAttrProvidersFinalize(minor);
90 if (major == GSS_S_COMPLETE)
91 major = gssEapRadiusAttrProviderFinalize(minor);
93 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
99 static gss_eap_attr_create_provider gssEapAttrFactories[ATTR_TYPE_MAX + 1];
102 * Register a provider for a particular type and prefix
105 gss_eap_attr_ctx::registerProvider(unsigned int type,
106 gss_eap_attr_create_provider factory)
108 assert(type <= ATTR_TYPE_MAX);
110 assert(gssEapAttrFactories[type] == NULL);
112 gssEapAttrFactories[type] = factory;
116 * Unregister a provider
119 gss_eap_attr_ctx::unregisterProvider(unsigned int type)
121 assert(type <= ATTR_TYPE_MAX);
123 gssEapAttrFactories[type] = NULL;
127 * Create an attribute context, that manages instances of providers
129 gss_eap_attr_ctx::gss_eap_attr_ctx(void)
133 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
134 gss_eap_attr_provider *provider;
136 if (gssEapAttrFactories[i] != NULL) {
137 provider = (gssEapAttrFactories[i])();
142 m_providers[i] = provider;
147 * Convert an attribute prefix to a type
150 gss_eap_attr_ctx::attributePrefixToType(const gss_buffer_t prefix) const
154 for (i = ATTR_TYPE_MIN; i < ATTR_TYPE_MAX; i++) {
157 if (!providerEnabled(i))
160 pprefix = m_providers[i]->prefix();
164 if (strlen(pprefix) == prefix->length &&
165 memcmp(pprefix, prefix->value, prefix->length) == 0)
169 return ATTR_TYPE_LOCAL;
173 * Convert a type to an attribute prefix
176 gss_eap_attr_ctx::attributeTypeToPrefix(unsigned int type) const
178 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
180 if (type < ATTR_TYPE_MIN || type >= ATTR_TYPE_MAX)
183 if (!providerEnabled(type))
186 prefix.value = (void *)m_providers[type]->prefix();
187 if (prefix.value != NULL)
188 prefix.length = strlen((char *)prefix.value);
194 gss_eap_attr_ctx::providerEnabled(unsigned int type) const
196 if (type == ATTR_TYPE_LOCAL &&
197 (m_flags & ATTR_FLAG_DISABLE_LOCAL))
200 if (m_providers[type] == NULL)
207 gss_eap_attr_ctx::releaseProvider(unsigned int type)
209 delete m_providers[type];
210 m_providers[type] = NULL;
214 * Initialize a context from an existing context.
217 gss_eap_attr_ctx::initFromExistingContext(const gss_eap_attr_ctx *manager)
221 m_flags = manager->m_flags;
223 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
224 gss_eap_attr_provider *provider;
226 if (!providerEnabled(i)) {
231 provider = m_providers[i];
233 ret = provider->initFromExistingContext(this,
234 manager->m_providers[i]);
245 * Initialize a context from a GSS credential and context.
248 gss_eap_attr_ctx::initFromGssContext(const gss_cred_id_t cred,
249 const gss_ctx_id_t ctx)
253 if (cred != GSS_C_NO_CREDENTIAL &&
254 (cred->flags & GSS_EAP_DISABLE_LOCAL_ATTRS_FLAG)) {
255 m_flags |= ATTR_FLAG_DISABLE_LOCAL;
258 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
259 gss_eap_attr_provider *provider;
261 if (!providerEnabled(i)) {
266 provider = m_providers[i];
268 ret = provider->initFromGssContext(this, cred, ctx);
279 gss_eap_attr_ctx::initWithJsonObject(JSONObject &obj)
282 bool foundSource[ATTR_TYPE_MAX + 1];
285 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++)
286 foundSource[type] = false;
288 if (obj["version"].integer() != 1)
291 m_flags = obj["flags"].integer();
293 JSONObject sources = obj["sources"];
295 /* Initialize providers from serialized state */
296 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
297 gss_eap_attr_provider *provider;
300 if (!providerEnabled(type)) {
301 releaseProvider(type);
305 provider = m_providers[type];
306 key = provider->name();
310 JSONObject source = sources.get(key);
311 if (!source.isnull() &&
312 !provider->initWithJsonObject(this, source)) {
313 releaseProvider(type);
317 foundSource[type] = true;
320 /* Initialize remaining providers from initialized providers */
321 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
322 gss_eap_attr_provider *provider;
324 if (foundSource[type] || !providerEnabled(type))
327 provider = m_providers[type];
329 ret = provider->initFromGssContext(this,
333 releaseProvider(type);
342 gss_eap_attr_ctx::jsonRepresentation(uint32_t flags) const
344 JSONObject obj, sources;
347 obj.set("version", 1);
348 obj.set("flags", m_flags);
350 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
351 gss_eap_attr_provider *provider;
354 if (i == ATTR_TYPE_LOCAL &&
355 (flags & ATTR_FLAG_DISABLE_LOCAL))
356 continue; /* reentrancy workaround */
358 provider = m_providers[i];
359 if (provider == NULL)
360 continue; /* provider not initialised */
362 key = provider->name();
364 continue; /* provider does not have state */
366 JSONObject source = provider->jsonRepresentation();
367 sources.set(key, source);
370 obj.set("sources", sources);
376 * Initialize a context from an exported context or name token
379 gss_eap_attr_ctx::initFromBuffer(const gss_buffer_t buffer)
381 OM_uint32 major, minor;
386 major = bufferToString(&minor, buffer, &s);
387 if (GSS_ERROR(major))
390 JSONObject obj = JSONObject::load(s, 0, &error);
392 ret = initWithJsonObject(obj);
401 gss_eap_attr_ctx::~gss_eap_attr_ctx(void)
403 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++)
404 delete m_providers[i];
408 * Locate provider for a given type
410 gss_eap_attr_provider *
411 gss_eap_attr_ctx::getProvider(unsigned int type) const
413 assert(type >= ATTR_TYPE_MIN && type <= ATTR_TYPE_MAX);
414 return m_providers[type];
418 * Get primary provider. Only the primary provider is serialised when
419 * gss_export_sec_context() or gss_export_name_composite() is called.
421 gss_eap_attr_provider *
422 gss_eap_attr_ctx::getPrimaryProvider(void) const
424 return m_providers[ATTR_TYPE_MIN];
431 gss_eap_attr_ctx::setAttribute(int complete,
432 const gss_buffer_t attr,
433 const gss_buffer_t value)
435 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
437 gss_eap_attr_provider *provider;
440 decomposeAttributeName(attr, &type, &suffix);
442 provider = m_providers[type];
443 if (provider != NULL) {
444 ret = provider->setAttribute(complete,
445 (type == ATTR_TYPE_LOCAL) ? attr : &suffix,
453 * Delete an attrbiute
456 gss_eap_attr_ctx::deleteAttribute(const gss_buffer_t attr)
458 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
460 gss_eap_attr_provider *provider;
463 decomposeAttributeName(attr, &type, &suffix);
465 provider = m_providers[type];
466 if (provider != NULL) {
467 ret = provider->deleteAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix);
474 * Enumerate attribute types with callback
477 gss_eap_attr_ctx::getAttributeTypes(gss_eap_attr_enumeration_cb cb, void *data) const
482 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
483 gss_eap_attr_provider *provider = m_providers[i];
485 if (provider == NULL)
488 ret = provider->getAttributeTypes(cb, data);
496 struct eap_gss_get_attr_types_args {
498 gss_buffer_set_t attrs;
502 addAttribute(const gss_eap_attr_ctx *manager,
503 const gss_eap_attr_provider *provider GSSEAP_UNUSED,
504 const gss_buffer_t attribute,
507 eap_gss_get_attr_types_args *args = (eap_gss_get_attr_types_args *)data;
508 gss_buffer_desc qualified;
509 OM_uint32 major, minor;
511 if (args->type != ATTR_TYPE_LOCAL) {
512 manager->composeAttributeName(args->type, attribute, &qualified);
513 major = gss_add_buffer_set_member(&minor, &qualified, &args->attrs);
514 gss_release_buffer(&minor, &qualified);
516 major = gss_add_buffer_set_member(&minor, attribute, &args->attrs);
519 return GSS_ERROR(major) == false;
523 * Enumerate attribute types, output is buffer set
526 gss_eap_attr_ctx::getAttributeTypes(gss_buffer_set_t *attrs)
528 eap_gss_get_attr_types_args args;
529 OM_uint32 major, minor;
533 major = gss_create_empty_buffer_set(&minor, attrs);
534 if (GSS_ERROR(major))
535 throw new std::bad_alloc;
539 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
540 gss_eap_attr_provider *provider = m_providers[i];
544 if (provider == NULL)
547 ret = provider->getAttributeTypes(addAttribute, (void *)&args);
553 gss_release_buffer_set(&minor, attrs);
559 * Get attribute with given name
562 gss_eap_attr_ctx::getAttribute(const gss_buffer_t attr,
566 gss_buffer_t display_value,
569 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
571 gss_eap_attr_provider *provider;
574 decomposeAttributeName(attr, &type, &suffix);
576 provider = m_providers[type];
577 if (provider == NULL)
580 ret = provider->getAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix,
581 authenticated, complete,
582 value, display_value, more);
588 * Map attribute context to C++ object
591 gss_eap_attr_ctx::mapToAny(int authenticated,
592 gss_buffer_t type_id) const
595 gss_eap_attr_provider *provider;
596 gss_buffer_desc suffix;
598 decomposeAttributeName(type_id, &type, &suffix);
600 provider = m_providers[type];
601 if (provider == NULL)
602 return (gss_any_t)NULL;
604 return provider->mapToAny(authenticated, &suffix);
608 * Release mapped context
611 gss_eap_attr_ctx::releaseAnyNameMapping(gss_buffer_t type_id,
612 gss_any_t input) const
615 gss_eap_attr_provider *provider;
616 gss_buffer_desc suffix;
618 decomposeAttributeName(type_id, &type, &suffix);
620 provider = m_providers[type];
621 if (provider != NULL)
622 provider->releaseAnyNameMapping(&suffix, input);
626 * Export attribute context to buffer
629 gss_eap_attr_ctx::exportToBuffer(gss_buffer_t buffer,
630 uint32_t flags) const
635 JSONObject obj = jsonRepresentation(flags);
638 obj.dump(stdout, JSON_INDENT(3));
641 s = obj.dump(JSON_COMPACT);
643 if (GSS_ERROR(makeStringBuffer(&minor, s, buffer)))
644 throw new std::bad_alloc;
648 * Return soonest expiry time of providers
651 gss_eap_attr_ctx::getExpiryTime(void) const
654 time_t expiryTime = 0;
656 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
657 gss_eap_attr_provider *provider = m_providers[i];
658 time_t providerExpiryTime;
660 if (provider == NULL)
663 providerExpiryTime = provider->getExpiryTime();
664 if (providerExpiryTime == 0)
667 if (expiryTime == 0 || providerExpiryTime < expiryTime)
668 expiryTime = providerExpiryTime;
675 gss_eap_attr_ctx::mapException(OM_uint32 *minor, std::exception &e) const
680 /* Errors we handle ourselves */
681 major = GSS_S_FAILURE;
683 if (typeid(e) == typeid(std::bad_alloc)) {
688 /* Errors we delegate to providers */
689 major = GSS_S_CONTINUE_NEEDED;
691 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
692 gss_eap_attr_provider *provider = m_providers[i];
694 if (provider == NULL)
697 major = provider->mapException(minor, e);
698 if (major != GSS_S_CONTINUE_NEEDED)
702 if (major == GSS_S_CONTINUE_NEEDED) {
703 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
704 major = GSS_S_FAILURE;
709 /* rethrow for now for debugging */
713 assert(GSS_ERROR(major));
719 * Decompose attribute name into prefix and suffix
722 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
729 for (i = 0; i < attribute->length; i++) {
730 if (((char *)attribute->value)[i] == ' ') {
731 p = (char *)attribute->value + i + 1;
736 prefix->value = attribute->value;
739 if (p != NULL && *p != '\0') {
740 suffix->length = attribute->length - 1 - prefix->length;
744 suffix->value = NULL;
749 * Decompose attribute name into type and suffix
752 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
754 gss_buffer_t suffix) const
756 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
758 decomposeAttributeName(attribute, &prefix, suffix);
759 *type = attributePrefixToType(&prefix);
763 * Compose attribute name from prefix, suffix; returns C++ string
766 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
767 const gss_buffer_t suffix)
771 if (prefix == GSS_C_NO_BUFFER || prefix->length == 0)
774 str.append((const char *)prefix->value, prefix->length);
776 if (suffix != GSS_C_NO_BUFFER) {
778 str.append((const char *)suffix->value, suffix->length);
785 * Compose attribute name from type, suffix; returns C++ string
788 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
789 const gss_buffer_t suffix)
791 gss_buffer_desc prefix = attributeTypeToPrefix(type);
793 return composeAttributeName(&prefix, suffix);
797 * Compose attribute name from prefix, suffix; returns GSS buffer
800 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
801 const gss_buffer_t suffix,
802 gss_buffer_t attribute)
804 std::string str = composeAttributeName(prefix, suffix);
806 if (str.length() != 0) {
807 return duplicateBuffer(str, attribute);
809 attribute->length = 0;
810 attribute->value = NULL;
815 * Compose attribute name from type, suffix; returns GSS buffer
818 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
819 const gss_buffer_t suffix,
820 gss_buffer_t attribute) const
822 gss_buffer_desc prefix = attributeTypeToPrefix(type);
824 return composeAttributeName(&prefix, suffix, attribute);
831 gssEapInquireName(OM_uint32 *minor,
835 gss_buffer_set_t *attrs)
839 if (name_is_MN != NULL)
840 *name_is_MN = (name->mechanismUsed != GSS_C_NULL_OID);
842 if (MN_mech != NULL) {
843 major = gssEapCanonicalizeOid(minor, name->mechanismUsed,
844 OID_FLAG_NULL_VALID, MN_mech);
845 if (GSS_ERROR(major))
849 if (name->attrCtx == NULL) {
850 *minor = GSSEAP_NO_ATTR_CONTEXT;
851 return GSS_S_UNAVAILABLE;
854 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
855 return GSS_S_UNAVAILABLE;
859 if (!name->attrCtx->getAttributeTypes(attrs)) {
860 *minor = GSSEAP_NO_ATTR_CONTEXT;
861 return GSS_S_UNAVAILABLE;
863 } catch (std::exception &e) {
864 return name->attrCtx->mapException(minor, e);
867 return GSS_S_COMPLETE;
871 gssEapGetNameAttribute(OM_uint32 *minor,
877 gss_buffer_t display_value,
888 if (display_value != NULL) {
889 display_value->length = 0;
890 display_value->value = NULL;
893 if (name->attrCtx == NULL) {
894 *minor = GSSEAP_NO_ATTR_CONTEXT;
895 return GSS_S_UNAVAILABLE;
898 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
899 return GSS_S_UNAVAILABLE;
903 if (!name->attrCtx->getAttribute(attr, authenticated, complete,
904 value, display_value, more)) {
905 *minor = GSSEAP_NO_SUCH_ATTR;
906 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
907 (int)attr->length, (char *)attr->value);
908 return GSS_S_UNAVAILABLE;
910 } catch (std::exception &e) {
911 return name->attrCtx->mapException(minor, e);
914 return GSS_S_COMPLETE;
918 gssEapDeleteNameAttribute(OM_uint32 *minor,
922 if (name->attrCtx == NULL) {
923 *minor = GSSEAP_NO_ATTR_CONTEXT;
924 return GSS_S_UNAVAILABLE;
927 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
928 return GSS_S_UNAVAILABLE;
931 if (!name->attrCtx->deleteAttribute(attr)) {
932 *minor = GSSEAP_NO_SUCH_ATTR;
933 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
934 (int)attr->length, (char *)attr->value);
935 return GSS_S_UNAVAILABLE;
937 } catch (std::exception &e) {
938 return name->attrCtx->mapException(minor, e);
941 return GSS_S_COMPLETE;
945 gssEapSetNameAttribute(OM_uint32 *minor,
951 if (name->attrCtx == NULL) {
952 *minor = GSSEAP_NO_ATTR_CONTEXT;
953 return GSS_S_UNAVAILABLE;
956 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
957 return GSS_S_UNAVAILABLE;
960 if (!name->attrCtx->setAttribute(complete, attr, value)) {
961 *minor = GSSEAP_NO_SUCH_ATTR;
962 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
963 (int)attr->length, (char *)attr->value);
964 return GSS_S_UNAVAILABLE;
966 } catch (std::exception &e) {
967 return name->attrCtx->mapException(minor, e);
970 return GSS_S_COMPLETE;
974 gssEapExportAttrContext(OM_uint32 *minor,
979 if (name->attrCtx == NULL) {
981 buffer->value = NULL;
983 return GSS_S_COMPLETE;
986 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
987 return GSS_S_UNAVAILABLE;
990 name->attrCtx->exportToBuffer(buffer, flags);
991 } catch (std::exception &e) {
992 return name->attrCtx->mapException(minor, e);
995 return GSS_S_COMPLETE;
999 gssEapImportAttrContext(OM_uint32 *minor,
1000 gss_buffer_t buffer,
1003 gss_eap_attr_ctx *ctx = NULL;
1005 assert(name->attrCtx == NULL);
1007 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1008 return GSS_S_UNAVAILABLE;
1010 if (buffer->length != 0) {
1012 ctx = new gss_eap_attr_ctx();
1014 if (!ctx->initFromBuffer(buffer)) {
1016 *minor = GSSEAP_BAD_ATTR_TOKEN;
1017 return GSS_S_DEFECTIVE_TOKEN;
1019 name->attrCtx = ctx;
1020 } catch (std::exception &e) {
1022 return name->attrCtx->mapException(minor, e);
1026 return GSS_S_COMPLETE;
1030 gssEapDuplicateAttrContext(OM_uint32 *minor,
1034 gss_eap_attr_ctx *ctx = NULL;
1036 assert(out->attrCtx == NULL);
1038 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1039 return GSS_S_UNAVAILABLE;
1042 if (in->attrCtx != NULL) {
1043 ctx = new gss_eap_attr_ctx();
1044 if (!ctx->initFromExistingContext(in->attrCtx)) {
1046 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1047 return GSS_S_FAILURE;
1051 } catch (std::exception &e) {
1053 return in->attrCtx->mapException(minor, e);
1056 return GSS_S_COMPLETE;
1060 gssEapMapNameToAny(OM_uint32 *minor,
1063 gss_buffer_t type_id,
1066 if (name->attrCtx == NULL) {
1067 *minor = GSSEAP_NO_ATTR_CONTEXT;
1068 return GSS_S_UNAVAILABLE;
1071 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1072 return GSS_S_UNAVAILABLE;
1075 *output = name->attrCtx->mapToAny(authenticated, type_id);
1076 } catch (std::exception &e) {
1077 return name->attrCtx->mapException(minor, e);
1080 return GSS_S_COMPLETE;
1084 gssEapReleaseAnyNameMapping(OM_uint32 *minor,
1086 gss_buffer_t type_id,
1089 if (name->attrCtx == NULL) {
1090 *minor = GSSEAP_NO_ATTR_CONTEXT;
1091 return GSS_S_UNAVAILABLE;
1094 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1095 return GSS_S_UNAVAILABLE;
1099 name->attrCtx->releaseAnyNameMapping(type_id, *input);
1101 } catch (std::exception &e) {
1102 return name->attrCtx->mapException(minor, e);
1105 return GSS_S_COMPLETE;
1109 gssEapReleaseAttrContext(OM_uint32 *minor,
1112 if (name->attrCtx != NULL)
1113 delete name->attrCtx;
1116 return GSS_S_COMPLETE;
1120 * Public accessor for initialisng a context from a GSS context. Also
1121 * sets expiry time on GSS context as a side-effect.
1124 gssEapCreateAttrContext(OM_uint32 *minor,
1125 gss_cred_id_t gssCred,
1126 gss_ctx_id_t gssCtx,
1127 struct gss_eap_attr_ctx **pAttrContext,
1128 time_t *pExpiryTime)
1130 gss_eap_attr_ctx *ctx = NULL;
1133 assert(gssCtx != GSS_C_NO_CONTEXT);
1135 major = gssEapAttrProvidersInit(minor);
1136 if (GSS_ERROR(major))
1139 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1140 major = GSS_S_FAILURE;
1143 *pAttrContext = ctx = new gss_eap_attr_ctx();
1144 if (ctx->initFromGssContext(gssCred, gssCtx)) {
1146 major = GSS_S_COMPLETE;
1148 } catch (std::exception &e) {
1150 major = ctx->mapException(minor, e);
1153 if (major == GSS_S_COMPLETE) {
1154 *pExpiryTime = ctx->getExpiryTime();
1157 *pAttrContext = NULL;
projects / mech_eap.git / blob