2 * Copyright (c) 2011, JANET(UK)
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of JANET(UK) nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 * Attribute provider mechanism.
37 #include "gssapiP_eap.h"
46 /* lazy initialisation */
47 static GSSEAP_THREAD_ONCE gssEapAttrProvidersInitOnce = GSSEAP_ONCE_INITIALIZER;
48 static OM_uint32 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
51 gssEapAttrProvidersInitInternal(void)
53 OM_uint32 major, minor;
55 assert(gssEapAttrProvidersInitStatus == GSS_S_UNAVAILABLE);
57 major = gssEapRadiusAttrProviderInit(&minor);
58 if (major == GSS_S_COMPLETE)
59 major = gssEapSamlAttrProvidersInit(&minor);
60 if (major == GSS_S_COMPLETE)
61 major = gssEapLocalAttrProviderInit(&minor);
64 assert(major == GSS_S_COMPLETE);
67 gssEapAttrProvidersInitStatus = major;
71 gssEapAttrProvidersInit(OM_uint32 *minor)
73 GSSEAP_ONCE(&gssEapAttrProvidersInitOnce, gssEapAttrProvidersInitInternal);
75 if (GSS_ERROR(gssEapAttrProvidersInitStatus))
76 *minor = GSSEAP_NO_ATTR_PROVIDERS;
78 return gssEapAttrProvidersInitStatus;
82 gssEapAttrProvidersFinalize(OM_uint32 *minor)
84 OM_uint32 major = GSS_S_COMPLETE;
86 if (gssEapAttrProvidersInitStatus == GSS_S_COMPLETE) {
87 major = gssEapLocalAttrProviderFinalize(minor);
88 if (major == GSS_S_COMPLETE)
89 major = gssEapSamlAttrProvidersFinalize(minor);
90 if (major == GSS_S_COMPLETE)
91 major = gssEapRadiusAttrProviderFinalize(minor);
93 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
99 static gss_eap_attr_create_provider gssEapAttrFactories[ATTR_TYPE_MAX + 1];
102 * Register a provider for a particular type and prefix
105 gss_eap_attr_ctx::registerProvider(unsigned int type,
106 gss_eap_attr_create_provider factory)
108 assert(type <= ATTR_TYPE_MAX);
110 assert(gssEapAttrFactories[type] == NULL);
112 gssEapAttrFactories[type] = factory;
116 * Unregister a provider
119 gss_eap_attr_ctx::unregisterProvider(unsigned int type)
121 assert(type <= ATTR_TYPE_MAX);
123 gssEapAttrFactories[type] = NULL;
127 * Create an attribute context, that manages instances of providers
129 gss_eap_attr_ctx::gss_eap_attr_ctx(void)
133 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
134 gss_eap_attr_provider *provider;
136 if (gssEapAttrFactories[i] != NULL) {
137 provider = (gssEapAttrFactories[i])();
142 m_providers[i] = provider;
147 * Convert an attribute prefix to a type
150 gss_eap_attr_ctx::attributePrefixToType(const gss_buffer_t prefix) const
154 for (i = ATTR_TYPE_MIN; i < ATTR_TYPE_MAX; i++) {
157 if (!providerEnabled(i))
160 pprefix = m_providers[i]->prefix();
164 if (strlen(pprefix) == prefix->length &&
165 memcmp(pprefix, prefix->value, prefix->length) == 0)
169 return ATTR_TYPE_LOCAL;
173 * Convert a type to an attribute prefix
176 gss_eap_attr_ctx::attributeTypeToPrefix(unsigned int type) const
178 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
180 if (type < ATTR_TYPE_MIN || type >= ATTR_TYPE_MAX)
183 if (!providerEnabled(type))
186 prefix.value = (void *)m_providers[type]->prefix();
187 if (prefix.value != NULL)
188 prefix.length = strlen((char *)prefix.value);
194 gss_eap_attr_ctx::providerEnabled(unsigned int type) const
196 if (type == ATTR_TYPE_LOCAL &&
197 (m_flags & ATTR_FLAG_DISABLE_LOCAL))
200 if (m_providers[type] == NULL)
207 gss_eap_attr_ctx::releaseProvider(unsigned int type)
209 delete m_providers[type];
210 m_providers[type] = NULL;
214 * Initialize a context from an existing context.
217 gss_eap_attr_ctx::initFromExistingContext(const gss_eap_attr_ctx *manager)
221 m_flags = manager->m_flags;
223 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
224 gss_eap_attr_provider *provider;
226 if (!providerEnabled(i)) {
231 provider = m_providers[i];
233 ret = provider->initFromExistingContext(this,
234 manager->m_providers[i]);
245 * Initialize a context from a GSS credential and context.
248 gss_eap_attr_ctx::initFromGssContext(const gss_cred_id_t cred,
249 const gss_ctx_id_t ctx)
253 if (cred != GSS_C_NO_CREDENTIAL &&
254 (cred->flags & GSS_EAP_DISABLE_LOCAL_ATTRS_FLAG)) {
255 m_flags |= ATTR_FLAG_DISABLE_LOCAL;
258 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
259 gss_eap_attr_provider *provider;
261 if (!providerEnabled(i)) {
266 provider = m_providers[i];
268 ret = provider->initFromGssContext(this, cred, ctx);
279 gss_eap_attr_ctx::initWithJsonObject(JSONObject &obj)
282 bool foundSource[ATTR_TYPE_MAX + 1];
285 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++)
286 foundSource[type] = false;
288 if (obj["version"].integer() != 1)
291 m_flags = obj["flags"].integer();
293 JSONObject sources = obj["sources"];
295 /* Initialize providers from serialized state */
296 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
297 gss_eap_attr_provider *provider;
300 if (!providerEnabled(type)) {
301 releaseProvider(type);
305 provider = m_providers[type];
306 key = provider->name();
310 JSONObject source = sources.get(key);
311 if (!source.isnull() &&
312 !provider->initWithJsonObject(this, source)) {
313 releaseProvider(type);
317 foundSource[type] = true;
320 /* Initialize remaining providers from initialized providers */
321 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
322 gss_eap_attr_provider *provider;
324 if (foundSource[type] || !providerEnabled(type))
327 provider = m_providers[type];
329 ret = provider->initFromGssContext(this,
333 releaseProvider(type);
342 gss_eap_attr_ctx::jsonRepresentation(void) const
344 JSONObject obj, sources;
347 obj.set("version", 1);
348 obj.set("flags", m_flags);
350 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
351 gss_eap_attr_provider *provider;
354 provider = m_providers[i];
355 if (provider == NULL)
356 continue; /* provider not initialised */
358 key = provider->name();
360 continue; /* provider does not have state */
362 JSONObject source = provider->jsonRepresentation();
363 sources.set(key, source);
366 obj.set("sources", sources);
372 * Initialize a context from an exported context or name token
375 gss_eap_attr_ctx::initFromBuffer(const gss_buffer_t buffer)
377 OM_uint32 major, minor;
382 major = bufferToString(&minor, buffer, &s);
383 if (GSS_ERROR(major))
386 JSONObject obj = JSONObject::load(s, 0, &error);
388 ret = initWithJsonObject(obj);
397 gss_eap_attr_ctx::~gss_eap_attr_ctx(void)
399 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++)
400 delete m_providers[i];
404 * Locate provider for a given type
406 gss_eap_attr_provider *
407 gss_eap_attr_ctx::getProvider(unsigned int type) const
409 assert(type >= ATTR_TYPE_MIN && type <= ATTR_TYPE_MAX);
410 return m_providers[type];
414 * Get primary provider. Only the primary provider is serialised when
415 * gss_export_sec_context() or gss_export_name_composite() is called.
417 gss_eap_attr_provider *
418 gss_eap_attr_ctx::getPrimaryProvider(void) const
420 return m_providers[ATTR_TYPE_MIN];
427 gss_eap_attr_ctx::setAttribute(int complete,
428 const gss_buffer_t attr,
429 const gss_buffer_t value)
431 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
433 gss_eap_attr_provider *provider;
436 decomposeAttributeName(attr, &type, &suffix);
438 provider = m_providers[type];
439 if (provider != NULL) {
440 ret = provider->setAttribute(complete,
441 (type == ATTR_TYPE_LOCAL) ? attr : &suffix,
449 * Delete an attrbiute
452 gss_eap_attr_ctx::deleteAttribute(const gss_buffer_t attr)
454 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
456 gss_eap_attr_provider *provider;
459 decomposeAttributeName(attr, &type, &suffix);
461 provider = m_providers[type];
462 if (provider != NULL) {
463 ret = provider->deleteAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix);
470 * Enumerate attribute types with callback
473 gss_eap_attr_ctx::getAttributeTypes(gss_eap_attr_enumeration_cb cb, void *data) const
478 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
479 gss_eap_attr_provider *provider = m_providers[i];
481 if (provider == NULL)
484 ret = provider->getAttributeTypes(cb, data);
492 struct eap_gss_get_attr_types_args {
494 gss_buffer_set_t attrs;
498 addAttribute(const gss_eap_attr_ctx *manager,
499 const gss_eap_attr_provider *provider GSSEAP_UNUSED,
500 const gss_buffer_t attribute,
503 eap_gss_get_attr_types_args *args = (eap_gss_get_attr_types_args *)data;
504 gss_buffer_desc qualified;
505 OM_uint32 major, minor;
507 if (args->type != ATTR_TYPE_LOCAL) {
508 manager->composeAttributeName(args->type, attribute, &qualified);
509 major = gss_add_buffer_set_member(&minor, &qualified, &args->attrs);
510 gss_release_buffer(&minor, &qualified);
512 major = gss_add_buffer_set_member(&minor, attribute, &args->attrs);
515 return GSS_ERROR(major) == false;
519 * Enumerate attribute types, output is buffer set
522 gss_eap_attr_ctx::getAttributeTypes(gss_buffer_set_t *attrs)
524 eap_gss_get_attr_types_args args;
525 OM_uint32 major, minor;
529 major = gss_create_empty_buffer_set(&minor, attrs);
530 if (GSS_ERROR(major))
531 throw new std::bad_alloc;
535 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
536 gss_eap_attr_provider *provider = m_providers[i];
540 if (provider == NULL)
543 ret = provider->getAttributeTypes(addAttribute, (void *)&args);
549 gss_release_buffer_set(&minor, attrs);
555 * Get attribute with given name
558 gss_eap_attr_ctx::getAttribute(const gss_buffer_t attr,
562 gss_buffer_t display_value,
565 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
567 gss_eap_attr_provider *provider;
570 decomposeAttributeName(attr, &type, &suffix);
572 provider = m_providers[type];
573 if (provider == NULL)
576 ret = provider->getAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix,
577 authenticated, complete,
578 value, display_value, more);
584 * Map attribute context to C++ object
587 gss_eap_attr_ctx::mapToAny(int authenticated,
588 gss_buffer_t type_id) const
591 gss_eap_attr_provider *provider;
592 gss_buffer_desc suffix;
594 decomposeAttributeName(type_id, &type, &suffix);
596 provider = m_providers[type];
597 if (provider == NULL)
598 return (gss_any_t)NULL;
600 return provider->mapToAny(authenticated, &suffix);
604 * Release mapped context
607 gss_eap_attr_ctx::releaseAnyNameMapping(gss_buffer_t type_id,
608 gss_any_t input) const
611 gss_eap_attr_provider *provider;
612 gss_buffer_desc suffix;
614 decomposeAttributeName(type_id, &type, &suffix);
616 provider = m_providers[type];
617 if (provider != NULL)
618 provider->releaseAnyNameMapping(&suffix, input);
622 * Export attribute context to buffer
625 gss_eap_attr_ctx::exportToBuffer(gss_buffer_t buffer) const
630 JSONObject obj = jsonRepresentation();
632 obj.dump(stdout, JSON_INDENT(3));
634 s = obj.dump(JSON_COMPACT);
636 if (GSS_ERROR(makeStringBuffer(&minor, s, buffer)))
637 throw new std::bad_alloc;
641 * Return soonest expiry time of providers
644 gss_eap_attr_ctx::getExpiryTime(void) const
647 time_t expiryTime = 0;
649 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
650 gss_eap_attr_provider *provider = m_providers[i];
651 time_t providerExpiryTime;
653 if (provider == NULL)
656 providerExpiryTime = provider->getExpiryTime();
657 if (providerExpiryTime == 0)
660 if (expiryTime == 0 || providerExpiryTime < expiryTime)
661 expiryTime = providerExpiryTime;
668 gss_eap_attr_ctx::mapException(OM_uint32 *minor, std::exception &e) const
673 /* Errors we handle ourselves */
674 major = GSS_S_FAILURE;
676 if (typeid(e) == typeid(std::bad_alloc)) {
681 /* Errors we delegate to providers */
682 major = GSS_S_CONTINUE_NEEDED;
684 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
685 gss_eap_attr_provider *provider = m_providers[i];
687 if (provider == NULL)
690 major = provider->mapException(minor, e);
691 if (major != GSS_S_CONTINUE_NEEDED)
695 if (major == GSS_S_CONTINUE_NEEDED) {
696 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
697 major = GSS_S_FAILURE;
702 /* rethrow for now for debugging */
706 assert(GSS_ERROR(major));
712 * Decompose attribute name into prefix and suffix
715 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
722 for (i = 0; i < attribute->length; i++) {
723 if (((char *)attribute->value)[i] == ' ') {
724 p = (char *)attribute->value + i + 1;
729 prefix->value = attribute->value;
732 if (p != NULL && *p != '\0') {
733 suffix->length = attribute->length - 1 - prefix->length;
737 suffix->value = NULL;
742 * Decompose attribute name into type and suffix
745 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
747 gss_buffer_t suffix) const
749 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
751 decomposeAttributeName(attribute, &prefix, suffix);
752 *type = attributePrefixToType(&prefix);
756 * Compose attribute name from prefix, suffix; returns C++ string
759 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
760 const gss_buffer_t suffix)
764 if (prefix == GSS_C_NO_BUFFER || prefix->length == 0)
767 str.append((const char *)prefix->value, prefix->length);
769 if (suffix != GSS_C_NO_BUFFER) {
771 str.append((const char *)suffix->value, suffix->length);
778 * Compose attribute name from type, suffix; returns C++ string
781 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
782 const gss_buffer_t suffix)
784 gss_buffer_desc prefix = attributeTypeToPrefix(type);
786 return composeAttributeName(&prefix, suffix);
790 * Compose attribute name from prefix, suffix; returns GSS buffer
793 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
794 const gss_buffer_t suffix,
795 gss_buffer_t attribute)
797 std::string str = composeAttributeName(prefix, suffix);
799 if (str.length() != 0) {
800 return duplicateBuffer(str, attribute);
802 attribute->length = 0;
803 attribute->value = NULL;
808 * Compose attribute name from type, suffix; returns GSS buffer
811 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
812 const gss_buffer_t suffix,
813 gss_buffer_t attribute) const
815 gss_buffer_desc prefix = attributeTypeToPrefix(type);
817 return composeAttributeName(&prefix, suffix, attribute);
824 gssEapInquireName(OM_uint32 *minor,
828 gss_buffer_set_t *attrs)
832 if (name_is_MN != NULL)
833 *name_is_MN = (name->mechanismUsed != GSS_C_NULL_OID);
835 if (MN_mech != NULL) {
836 major = gssEapCanonicalizeOid(minor, name->mechanismUsed,
837 OID_FLAG_NULL_VALID, MN_mech);
838 if (GSS_ERROR(major))
842 if (name->attrCtx == NULL) {
843 *minor = GSSEAP_NO_ATTR_CONTEXT;
844 return GSS_S_UNAVAILABLE;
847 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
848 return GSS_S_UNAVAILABLE;
852 if (!name->attrCtx->getAttributeTypes(attrs)) {
853 *minor = GSSEAP_NO_ATTR_CONTEXT;
854 return GSS_S_UNAVAILABLE;
856 } catch (std::exception &e) {
857 return name->attrCtx->mapException(minor, e);
860 return GSS_S_COMPLETE;
864 gssEapGetNameAttribute(OM_uint32 *minor,
870 gss_buffer_t display_value,
881 if (display_value != NULL) {
882 display_value->length = 0;
883 display_value->value = NULL;
886 if (name->attrCtx == NULL) {
887 *minor = GSSEAP_NO_ATTR_CONTEXT;
888 return GSS_S_UNAVAILABLE;
891 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
892 return GSS_S_UNAVAILABLE;
896 if (!name->attrCtx->getAttribute(attr, authenticated, complete,
897 value, display_value, more)) {
898 *minor = GSSEAP_NO_SUCH_ATTR;
899 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
900 (int)attr->length, (char *)attr->value);
901 return GSS_S_UNAVAILABLE;
903 } catch (std::exception &e) {
904 return name->attrCtx->mapException(minor, e);
907 return GSS_S_COMPLETE;
911 gssEapDeleteNameAttribute(OM_uint32 *minor,
915 if (name->attrCtx == NULL) {
916 *minor = GSSEAP_NO_ATTR_CONTEXT;
917 return GSS_S_UNAVAILABLE;
920 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
921 return GSS_S_UNAVAILABLE;
924 if (!name->attrCtx->deleteAttribute(attr)) {
925 *minor = GSSEAP_NO_SUCH_ATTR;
926 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
927 (int)attr->length, (char *)attr->value);
928 return GSS_S_UNAVAILABLE;
930 } catch (std::exception &e) {
931 return name->attrCtx->mapException(minor, e);
934 return GSS_S_COMPLETE;
938 gssEapSetNameAttribute(OM_uint32 *minor,
944 if (name->attrCtx == NULL) {
945 *minor = GSSEAP_NO_ATTR_CONTEXT;
946 return GSS_S_UNAVAILABLE;
949 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
950 return GSS_S_UNAVAILABLE;
953 if (!name->attrCtx->setAttribute(complete, attr, value)) {
954 *minor = GSSEAP_NO_SUCH_ATTR;
955 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
956 (int)attr->length, (char *)attr->value);
957 return GSS_S_UNAVAILABLE;
959 } catch (std::exception &e) {
960 return name->attrCtx->mapException(minor, e);
963 return GSS_S_COMPLETE;
967 gssEapExportAttrContext(OM_uint32 *minor,
971 if (name->attrCtx == NULL) {
973 buffer->value = NULL;
975 return GSS_S_COMPLETE;
978 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
979 return GSS_S_UNAVAILABLE;
982 name->attrCtx->exportToBuffer(buffer);
983 } catch (std::exception &e) {
984 return name->attrCtx->mapException(minor, e);
987 return GSS_S_COMPLETE;
991 gssEapImportAttrContext(OM_uint32 *minor,
995 gss_eap_attr_ctx *ctx = NULL;
997 assert(name->attrCtx == NULL);
999 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1000 return GSS_S_UNAVAILABLE;
1002 if (buffer->length != 0) {
1004 ctx = new gss_eap_attr_ctx();
1006 if (!ctx->initFromBuffer(buffer)) {
1008 *minor = GSSEAP_BAD_ATTR_TOKEN;
1009 return GSS_S_DEFECTIVE_TOKEN;
1011 name->attrCtx = ctx;
1012 } catch (std::exception &e) {
1014 return name->attrCtx->mapException(minor, e);
1018 return GSS_S_COMPLETE;
1022 gssEapDuplicateAttrContext(OM_uint32 *minor,
1026 gss_eap_attr_ctx *ctx = NULL;
1028 assert(out->attrCtx == NULL);
1030 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1031 return GSS_S_UNAVAILABLE;
1034 if (in->attrCtx != NULL) {
1035 ctx = new gss_eap_attr_ctx();
1036 if (!ctx->initFromExistingContext(in->attrCtx)) {
1038 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1039 return GSS_S_FAILURE;
1043 } catch (std::exception &e) {
1045 return in->attrCtx->mapException(minor, e);
1048 return GSS_S_COMPLETE;
1052 gssEapMapNameToAny(OM_uint32 *minor,
1055 gss_buffer_t type_id,
1058 if (name->attrCtx == NULL) {
1059 *minor = GSSEAP_NO_ATTR_CONTEXT;
1060 return GSS_S_UNAVAILABLE;
1063 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1064 return GSS_S_UNAVAILABLE;
1067 *output = name->attrCtx->mapToAny(authenticated, type_id);
1068 } catch (std::exception &e) {
1069 return name->attrCtx->mapException(minor, e);
1072 return GSS_S_COMPLETE;
1076 gssEapReleaseAnyNameMapping(OM_uint32 *minor,
1078 gss_buffer_t type_id,
1081 if (name->attrCtx == NULL) {
1082 *minor = GSSEAP_NO_ATTR_CONTEXT;
1083 return GSS_S_UNAVAILABLE;
1086 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1087 return GSS_S_UNAVAILABLE;
1091 name->attrCtx->releaseAnyNameMapping(type_id, *input);
1093 } catch (std::exception &e) {
1094 return name->attrCtx->mapException(minor, e);
1097 return GSS_S_COMPLETE;
1101 gssEapReleaseAttrContext(OM_uint32 *minor,
1104 if (name->attrCtx != NULL)
1105 delete name->attrCtx;
1108 return GSS_S_COMPLETE;
1112 * Public accessor for initialisng a context from a GSS context. Also
1113 * sets expiry time on GSS context as a side-effect.
1116 gssEapCreateAttrContext(OM_uint32 *minor,
1117 gss_cred_id_t gssCred,
1118 gss_ctx_id_t gssCtx,
1119 struct gss_eap_attr_ctx **pAttrContext,
1120 time_t *pExpiryTime)
1122 gss_eap_attr_ctx *ctx = NULL;
1125 assert(gssCtx != GSS_C_NO_CONTEXT);
1127 major = gssEapAttrProvidersInit(minor);
1128 if (GSS_ERROR(major))
1131 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1132 major = GSS_S_FAILURE;
1135 ctx = new gss_eap_attr_ctx();
1136 if (ctx->initFromGssContext(gssCred, gssCtx)) {
1138 major = GSS_S_COMPLETE;
1142 } catch (std::exception &e) {
1144 major = ctx->mapException(minor, e);
1147 if (major == GSS_S_COMPLETE) {
1148 *pAttrContext = ctx;
1149 *pExpiryTime = ctx->getExpiryTime();
projects / mech_eap.git / blob