2 * Copyright (c) 2011, JANET(UK)
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of JANET(UK) nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 * Attribute provider mechanism.
37 #include "gssapiP_eap.h"
44 /* lazy initialisation */
45 static GSSEAP_THREAD_ONCE gssEapAttrProvidersInitOnce = GSSEAP_ONCE_INITIALIZER;
46 static OM_uint32 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
49 gssEapAttrProvidersInitInternal(void)
51 OM_uint32 major, minor;
53 assert(gssEapAttrProvidersInitStatus == GSS_S_UNAVAILABLE);
55 major = gssEapRadiusAttrProviderInit(&minor);
56 if (major == GSS_S_COMPLETE)
57 major = gssEapSamlAttrProvidersInit(&minor);
58 if (major == GSS_S_COMPLETE)
59 major = gssEapLocalAttrProviderInit(&minor);
62 assert(major == GSS_S_COMPLETE);
65 gssEapAttrProvidersInitStatus = major;
69 gssEapAttrProvidersInit(OM_uint32 *minor)
71 GSSEAP_ONCE(&gssEapAttrProvidersInitOnce, gssEapAttrProvidersInitInternal);
73 if (GSS_ERROR(gssEapAttrProvidersInitStatus))
74 *minor = GSSEAP_NO_ATTR_PROVIDERS;
76 return gssEapAttrProvidersInitStatus;
80 gssEapAttrProvidersFinalize(OM_uint32 *minor)
82 OM_uint32 major = GSS_S_COMPLETE;
84 if (gssEapAttrProvidersInitStatus == GSS_S_COMPLETE) {
85 major = gssEapLocalAttrProviderFinalize(minor);
86 if (major == GSS_S_COMPLETE)
87 major = gssEapSamlAttrProvidersFinalize(minor);
88 if (major == GSS_S_COMPLETE)
89 major = gssEapRadiusAttrProviderFinalize(minor);
91 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
97 static gss_eap_attr_create_provider gssEapAttrFactories[ATTR_TYPE_MAX + 1];
98 static gss_buffer_desc gssEapAttrPrefixes[ATTR_TYPE_MAX + 1];
101 * Register a provider for a particular type and prefix
104 gss_eap_attr_ctx::registerProvider(unsigned int type,
106 gss_eap_attr_create_provider factory)
108 assert(type <= ATTR_TYPE_MAX);
110 assert(gssEapAttrFactories[type] == NULL);
112 gssEapAttrFactories[type] = factory;
113 if (prefix != NULL) {
114 gssEapAttrPrefixes[type].value = (void *)prefix;
115 gssEapAttrPrefixes[type].length = strlen(prefix);
117 gssEapAttrPrefixes[type].value = NULL;
118 gssEapAttrPrefixes[type].length = 0;
123 * Unregister a provider
126 gss_eap_attr_ctx::unregisterProvider(unsigned int type)
128 assert(type <= ATTR_TYPE_MAX);
130 gssEapAttrFactories[type] = NULL;
131 gssEapAttrPrefixes[type].value = NULL;
132 gssEapAttrPrefixes[type].length = 0;
136 * Create an attribute context, that manages instances of providers
138 gss_eap_attr_ctx::gss_eap_attr_ctx(void)
142 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
143 gss_eap_attr_provider *provider;
145 if (gssEapAttrFactories[i] != NULL) {
146 provider = (gssEapAttrFactories[i])();
151 m_providers[i] = provider;
156 * Convert an attribute prefix to a type
159 gss_eap_attr_ctx::attributePrefixToType(const gss_buffer_t prefix)
163 for (i = ATTR_TYPE_MIN; i < ATTR_TYPE_MAX; i++) {
164 if (bufferEqual(&gssEapAttrPrefixes[i], prefix))
168 return ATTR_TYPE_LOCAL;
172 * Convert a type to an attribute prefix
175 gss_eap_attr_ctx::attributeTypeToPrefix(unsigned int type)
177 if (type < ATTR_TYPE_MIN || type >= ATTR_TYPE_MAX)
178 return GSS_C_NO_BUFFER;
180 return &gssEapAttrPrefixes[type];
184 gss_eap_attr_ctx::providerEnabled(unsigned int type) const
186 if (type == ATTR_TYPE_LOCAL &&
187 (m_flags & ATTR_FLAG_DISABLE_LOCAL))
190 if (m_providers[type] == NULL)
197 gss_eap_attr_ctx::releaseProvider(unsigned int type)
199 delete m_providers[type];
200 m_providers[type] = NULL;
204 * Initialize a context from an existing context.
207 gss_eap_attr_ctx::initFromExistingContext(const gss_eap_attr_ctx *manager)
211 m_flags = manager->m_flags;
213 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
214 gss_eap_attr_provider *provider;
216 if (!providerEnabled(i)) {
221 provider = m_providers[i];
223 ret = provider->initFromExistingContext(this,
224 manager->m_providers[i]);
235 * Initialize a context from a GSS credential and context.
238 gss_eap_attr_ctx::initFromGssContext(const gss_cred_id_t cred,
239 const gss_ctx_id_t ctx)
243 if (cred != GSS_C_NO_CREDENTIAL &&
244 (cred->flags & GSS_EAP_DISABLE_LOCAL_ATTRS_FLAG)) {
245 m_flags |= ATTR_FLAG_DISABLE_LOCAL;
248 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
249 gss_eap_attr_provider *provider;
251 if (!providerEnabled(i)) {
256 provider = m_providers[i];
258 ret = provider->initFromGssContext(this, cred, ctx);
268 #define UPDATE_REMAIN(n) do { \
273 #define CHECK_REMAIN(n) do { \
274 if (remain < (n)) { \
280 * Initialize a context from an exported context or name token
283 gss_eap_attr_ctx::initFromBuffer(const gss_buffer_t buffer)
286 size_t remain = buffer->length;
287 unsigned char *p = (unsigned char *)buffer->value;
288 bool didInit[ATTR_TYPE_MAX + 1];
290 memset(didInit, 0, sizeof(didInit));
294 m_flags = load_uint32_be(p);
299 gss_buffer_desc providerToken;
300 gss_eap_attr_provider *provider;
302 /* TLV encoding of provider type, length, value */
304 type = load_uint32_be(p);
308 providerToken.length = load_uint32_be(p);
311 CHECK_REMAIN(providerToken.length);
312 providerToken.value = p;
313 UPDATE_REMAIN(providerToken.length);
315 if (type < ATTR_TYPE_MIN || type > ATTR_TYPE_MAX ||
319 if (!providerEnabled(type)) {
320 releaseProvider(type);
324 provider = m_providers[type];
326 ret = provider->initFromBuffer(this, &providerToken);
328 releaseProvider(type);
331 didInit[type] = true;
334 for (size_t i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
335 gss_eap_attr_provider *provider;
340 provider = m_providers[i];
342 ret = provider->initFromGssContext(this,
354 gss_eap_attr_ctx::~gss_eap_attr_ctx(void)
356 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++)
357 delete m_providers[i];
361 * Locate provider for a given type
363 gss_eap_attr_provider *
364 gss_eap_attr_ctx::getProvider(unsigned int type) const
366 assert(type >= ATTR_TYPE_MIN && type <= ATTR_TYPE_MAX);
367 return m_providers[type];
371 * Locate provider for a given prefix
373 gss_eap_attr_provider *
374 gss_eap_attr_ctx::getProvider(const gss_buffer_t prefix) const
378 type = attributePrefixToType(prefix);
380 return m_providers[type];
384 * Get primary provider. Only the primary provider is serialised when
385 * gss_export_sec_context() or gss_export_name_composite() is called.
387 gss_eap_attr_provider *
388 gss_eap_attr_ctx::getPrimaryProvider(void) const
390 return m_providers[ATTR_TYPE_MIN];
397 gss_eap_attr_ctx::setAttribute(int complete,
398 const gss_buffer_t attr,
399 const gss_buffer_t value)
401 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
403 gss_eap_attr_provider *provider;
406 decomposeAttributeName(attr, &type, &suffix);
408 provider = m_providers[type];
409 if (provider != NULL) {
410 ret = provider->setAttribute(complete,
411 (type == ATTR_TYPE_LOCAL) ? attr : &suffix,
419 * Delete an attrbiute
422 gss_eap_attr_ctx::deleteAttribute(const gss_buffer_t attr)
424 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
426 gss_eap_attr_provider *provider;
429 decomposeAttributeName(attr, &type, &suffix);
431 provider = m_providers[type];
432 if (provider != NULL) {
433 ret = provider->deleteAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix);
440 * Enumerate attribute types with callback
443 gss_eap_attr_ctx::getAttributeTypes(gss_eap_attr_enumeration_cb cb, void *data) const
448 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
449 gss_eap_attr_provider *provider = m_providers[i];
451 if (provider == NULL)
454 ret = provider->getAttributeTypes(cb, data);
462 struct eap_gss_get_attr_types_args {
464 gss_buffer_set_t attrs;
468 addAttribute(const gss_eap_attr_provider *provider GSSEAP_UNUSED,
469 const gss_buffer_t attribute,
472 eap_gss_get_attr_types_args *args = (eap_gss_get_attr_types_args *)data;
473 gss_buffer_desc qualified;
474 OM_uint32 major, minor;
476 if (args->type != ATTR_TYPE_LOCAL) {
477 gss_eap_attr_ctx::composeAttributeName(args->type, attribute, &qualified);
478 major = gss_add_buffer_set_member(&minor, &qualified, &args->attrs);
479 gss_release_buffer(&minor, &qualified);
481 major = gss_add_buffer_set_member(&minor, attribute, &args->attrs);
484 return GSS_ERROR(major) == false;
488 * Enumerate attribute types, output is buffer set
491 gss_eap_attr_ctx::getAttributeTypes(gss_buffer_set_t *attrs)
493 eap_gss_get_attr_types_args args;
494 OM_uint32 major, minor;
498 major = gss_create_empty_buffer_set(&minor, attrs);
499 if (GSS_ERROR(major)) {
500 throw new std::bad_alloc;
506 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
507 gss_eap_attr_provider *provider = m_providers[i];
511 if (provider == NULL)
514 ret = provider->getAttributeTypes(addAttribute, (void *)&args);
520 gss_release_buffer_set(&minor, attrs);
526 * Get attribute with given name
529 gss_eap_attr_ctx::getAttribute(const gss_buffer_t attr,
533 gss_buffer_t display_value,
536 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
538 gss_eap_attr_provider *provider;
541 decomposeAttributeName(attr, &type, &suffix);
543 provider = m_providers[type];
544 if (provider == NULL)
547 ret = provider->getAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix,
548 authenticated, complete,
549 value, display_value, more);
555 * Map attribute context to C++ object
558 gss_eap_attr_ctx::mapToAny(int authenticated,
559 gss_buffer_t type_id) const
562 gss_eap_attr_provider *provider;
563 gss_buffer_desc suffix;
565 decomposeAttributeName(type_id, &type, &suffix);
567 provider = m_providers[type];
568 if (provider == NULL)
569 return (gss_any_t)NULL;
571 return provider->mapToAny(authenticated, &suffix);
575 * Release mapped context
578 gss_eap_attr_ctx::releaseAnyNameMapping(gss_buffer_t type_id,
579 gss_any_t input) const
582 gss_eap_attr_provider *provider;
583 gss_buffer_desc suffix;
585 decomposeAttributeName(type_id, &type, &suffix);
587 provider = m_providers[type];
588 if (provider != NULL)
589 provider->releaseAnyNameMapping(&suffix, input);
593 * Export attribute context to buffer
596 gss_eap_attr_ctx::exportToBuffer(gss_buffer_t buffer) const
599 gss_buffer_desc providerTokens[ATTR_TYPE_MAX + 1];
600 size_t length = 4; /* m_flags */
603 memset(providerTokens, 0, sizeof(providerTokens));
605 for (size_t i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
606 gss_eap_attr_provider *provider = m_providers[i];
608 if (provider == NULL)
611 provider->exportToBuffer(&providerTokens[i]);
613 if (providerTokens[i].value != NULL)
614 length += 8 + providerTokens[i].length;
617 buffer->length = length;
618 buffer->value = GSSEAP_MALLOC(length);
619 if (buffer->value == NULL)
620 throw new std::bad_alloc;
622 p = (unsigned char *)buffer->value;
623 store_uint32_be(m_flags, p);
626 for (size_t i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
627 if (providerTokens[i].value == NULL)
630 store_uint32_be(i, p);
632 store_uint32_be(providerTokens[i].length, p);
634 memcpy(p, providerTokens[i].value, providerTokens[i].length);
635 p += providerTokens[i].length;
637 gss_release_buffer(&tmpMinor, &providerTokens[i]);
642 * Return soonest expiry time of providers
645 gss_eap_attr_ctx::getExpiryTime(void) const
648 time_t expiryTime = 0;
650 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
651 gss_eap_attr_provider *provider = m_providers[i];
652 time_t providerExpiryTime;
654 if (provider == NULL)
657 providerExpiryTime = provider->getExpiryTime();
658 if (providerExpiryTime == 0)
661 if (expiryTime == 0 || providerExpiryTime < expiryTime)
662 expiryTime = providerExpiryTime;
669 gss_eap_attr_ctx::mapException(OM_uint32 *minor, std::exception &e) const
674 /* Errors we handle ourselves */
675 major = GSS_S_FAILURE;
677 if (typeid(e) == typeid(std::bad_alloc)) {
682 /* Errors we delegate to providers */
683 major = GSS_S_CONTINUE_NEEDED;
685 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
686 gss_eap_attr_provider *provider = m_providers[i];
688 if (provider == NULL)
691 major = provider->mapException(minor, e);
692 if (major != GSS_S_CONTINUE_NEEDED)
696 if (major == GSS_S_CONTINUE_NEEDED) {
697 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
698 major = GSS_S_FAILURE;
703 /* rethrow for now for debugging */
707 assert(GSS_ERROR(major));
713 * Decompose attribute name into prefix and suffix
716 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
723 for (i = 0; i < attribute->length; i++) {
724 if (((char *)attribute->value)[i] == ' ') {
725 p = (char *)attribute->value + i + 1;
730 prefix->value = attribute->value;
733 if (p != NULL && *p != '\0') {
734 suffix->length = attribute->length - 1 - prefix->length;
738 suffix->value = NULL;
743 * Decompose attribute name into type and suffix
746 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
750 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
752 decomposeAttributeName(attribute, &prefix, suffix);
753 *type = attributePrefixToType(&prefix);
757 * Compose attribute name from prefix, suffix; returns C++ string
760 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
761 const gss_buffer_t suffix)
765 if (prefix == GSS_C_NO_BUFFER || prefix->length == 0)
768 str.append((const char *)prefix->value, prefix->length);
770 if (suffix != GSS_C_NO_BUFFER) {
772 str.append((const char *)suffix->value, suffix->length);
779 * Compose attribute name from type, suffix; returns C++ string
782 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
783 const gss_buffer_t suffix)
785 const gss_buffer_t prefix = attributeTypeToPrefix(type);
787 return composeAttributeName(prefix, suffix);
791 * Compose attribute name from prefix, suffix; returns GSS buffer
794 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
795 const gss_buffer_t suffix,
796 gss_buffer_t attribute)
798 std::string str = composeAttributeName(prefix, suffix);
800 if (str.length() != 0) {
801 return duplicateBuffer(str, attribute);
803 attribute->length = 0;
804 attribute->value = NULL;
809 * Compose attribute name from type, suffix; returns GSS buffer
812 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
813 const gss_buffer_t suffix,
814 gss_buffer_t attribute)
816 gss_buffer_t prefix = attributeTypeToPrefix(type);
818 return composeAttributeName(prefix, suffix, attribute);
825 gssEapInquireName(OM_uint32 *minor,
829 gss_buffer_set_t *attrs)
833 if (name_is_MN != NULL)
834 *name_is_MN = (name->mechanismUsed != GSS_C_NULL_OID);
836 if (MN_mech != NULL) {
837 major = gssEapCanonicalizeOid(minor, name->mechanismUsed,
838 OID_FLAG_NULL_VALID, MN_mech);
839 if (GSS_ERROR(major))
843 if (name->attrCtx == NULL) {
844 *minor = GSSEAP_NO_ATTR_CONTEXT;
845 return GSS_S_UNAVAILABLE;
848 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
849 return GSS_S_UNAVAILABLE;
853 if (!name->attrCtx->getAttributeTypes(attrs)) {
854 *minor = GSSEAP_NO_ATTR_CONTEXT;
855 return GSS_S_UNAVAILABLE;
857 } catch (std::exception &e) {
858 return name->attrCtx->mapException(minor, e);
861 return GSS_S_COMPLETE;
865 gssEapGetNameAttribute(OM_uint32 *minor,
871 gss_buffer_t display_value,
882 if (display_value != NULL) {
883 display_value->length = 0;
884 display_value->value = NULL;
887 if (name->attrCtx == NULL) {
888 *minor = GSSEAP_NO_ATTR_CONTEXT;
889 return GSS_S_UNAVAILABLE;
892 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
893 return GSS_S_UNAVAILABLE;
897 if (!name->attrCtx->getAttribute(attr, authenticated, complete,
898 value, display_value, more)) {
899 *minor = GSSEAP_NO_SUCH_ATTR;
900 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
901 (int)attr->length, (char *)attr->value);
902 return GSS_S_UNAVAILABLE;
904 } catch (std::exception &e) {
905 return name->attrCtx->mapException(minor, e);
908 return GSS_S_COMPLETE;
912 gssEapDeleteNameAttribute(OM_uint32 *minor,
916 if (name->attrCtx == NULL) {
917 *minor = GSSEAP_NO_ATTR_CONTEXT;
918 return GSS_S_UNAVAILABLE;
921 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
922 return GSS_S_UNAVAILABLE;
925 if (!name->attrCtx->deleteAttribute(attr)) {
926 *minor = GSSEAP_NO_SUCH_ATTR;
927 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
928 (int)attr->length, (char *)attr->value);
929 return GSS_S_UNAVAILABLE;
931 } catch (std::exception &e) {
932 return name->attrCtx->mapException(minor, e);
935 return GSS_S_COMPLETE;
939 gssEapSetNameAttribute(OM_uint32 *minor,
945 if (name->attrCtx == NULL) {
946 *minor = GSSEAP_NO_ATTR_CONTEXT;
947 return GSS_S_UNAVAILABLE;
950 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
951 return GSS_S_UNAVAILABLE;
954 if (!name->attrCtx->setAttribute(complete, attr, value)) {
955 *minor = GSSEAP_NO_SUCH_ATTR;
956 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
957 (int)attr->length, (char *)attr->value);
958 return GSS_S_UNAVAILABLE;
960 } catch (std::exception &e) {
961 return name->attrCtx->mapException(minor, e);
964 return GSS_S_COMPLETE;
968 gssEapExportAttrContext(OM_uint32 *minor,
972 if (name->attrCtx == NULL) {
974 buffer->value = NULL;
976 return GSS_S_COMPLETE;
979 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
980 return GSS_S_UNAVAILABLE;
983 name->attrCtx->exportToBuffer(buffer);
984 } catch (std::exception &e) {
985 return name->attrCtx->mapException(minor, e);
988 return GSS_S_COMPLETE;
992 gssEapImportAttrContext(OM_uint32 *minor,
996 gss_eap_attr_ctx *ctx = NULL;
998 assert(name->attrCtx == NULL);
1000 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1001 return GSS_S_UNAVAILABLE;
1003 if (buffer->length != 0) {
1005 ctx = new gss_eap_attr_ctx();
1007 if (!ctx->initFromBuffer(buffer)) {
1009 *minor = GSSEAP_BAD_ATTR_TOKEN;
1010 return GSS_S_DEFECTIVE_TOKEN;
1012 name->attrCtx = ctx;
1013 } catch (std::exception &e) {
1015 return name->attrCtx->mapException(minor, e);
1019 return GSS_S_COMPLETE;
1023 gssEapDuplicateAttrContext(OM_uint32 *minor,
1027 gss_eap_attr_ctx *ctx = NULL;
1029 assert(out->attrCtx == NULL);
1031 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1032 return GSS_S_UNAVAILABLE;
1035 if (in->attrCtx != NULL) {
1036 ctx = new gss_eap_attr_ctx();
1037 if (!ctx->initFromExistingContext(in->attrCtx)) {
1039 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1040 return GSS_S_FAILURE;
1044 } catch (std::exception &e) {
1046 return in->attrCtx->mapException(minor, e);
1049 return GSS_S_COMPLETE;
1053 gssEapMapNameToAny(OM_uint32 *minor,
1056 gss_buffer_t type_id,
1059 if (name->attrCtx == NULL) {
1060 *minor = GSSEAP_NO_ATTR_CONTEXT;
1061 return GSS_S_UNAVAILABLE;
1064 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1065 return GSS_S_UNAVAILABLE;
1068 *output = name->attrCtx->mapToAny(authenticated, type_id);
1069 } catch (std::exception &e) {
1070 return name->attrCtx->mapException(minor, e);
1073 return GSS_S_COMPLETE;
1077 gssEapReleaseAnyNameMapping(OM_uint32 *minor,
1079 gss_buffer_t type_id,
1082 if (name->attrCtx == NULL) {
1083 *minor = GSSEAP_NO_ATTR_CONTEXT;
1084 return GSS_S_UNAVAILABLE;
1087 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1088 return GSS_S_UNAVAILABLE;
1092 name->attrCtx->releaseAnyNameMapping(type_id, *input);
1094 } catch (std::exception &e) {
1095 return name->attrCtx->mapException(minor, e);
1098 return GSS_S_COMPLETE;
1102 gssEapReleaseAttrContext(OM_uint32 *minor,
1105 if (name->attrCtx != NULL)
1106 delete name->attrCtx;
1109 return GSS_S_COMPLETE;
1113 * Public accessor for initialisng a context from a GSS context. Also
1114 * sets expiry time on GSS context as a side-effect.
1117 gssEapCreateAttrContext(OM_uint32 *minor,
1118 gss_cred_id_t gssCred,
1119 gss_ctx_id_t gssCtx,
1120 struct gss_eap_attr_ctx **pAttrContext,
1121 time_t *pExpiryTime)
1123 gss_eap_attr_ctx *ctx = NULL;
1126 assert(gssCtx != GSS_C_NO_CONTEXT);
1128 major = gssEapAttrProvidersInit(minor);
1129 if (GSS_ERROR(major))
1132 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1133 major = GSS_S_FAILURE;
1136 ctx = new gss_eap_attr_ctx();
1137 if (ctx->initFromGssContext(gssCred, gssCtx)) {
1139 major = GSS_S_COMPLETE;
1143 } catch (std::exception &e) {
1145 major = ctx->mapException(minor, e);
1148 if (major == GSS_S_COMPLETE) {
1149 *pAttrContext = ctx;
1150 *pExpiryTime = ctx->getExpiryTime();