2 * Copyright (c) 2011, JANET(UK)
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of JANET(UK) nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 * Attribute provider mechanism.
37 #include "gssapiP_eap.h"
44 /* lazy initialisation */
45 static GSSEAP_THREAD_ONCE gssEapAttrProvidersInitOnce = GSSEAP_ONCE_INITIALIZER;
46 static OM_uint32 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
49 gssEapAttrProvidersInitInternal(void)
51 OM_uint32 major, minor;
53 assert(gssEapAttrProvidersInitStatus == GSS_S_UNAVAILABLE);
55 major = gssEapRadiusAttrProviderInit(&minor);
56 if (major == GSS_S_COMPLETE)
57 major = gssEapSamlAttrProvidersInit(&minor);
58 if (major == GSS_S_COMPLETE)
59 major = gssEapLocalAttrProviderInit(&minor);
62 assert(major == GSS_S_COMPLETE);
65 gssEapAttrProvidersInitStatus = major;
69 gssEapAttrProvidersInit(OM_uint32 *minor)
71 GSSEAP_ONCE(&gssEapAttrProvidersInitOnce, gssEapAttrProvidersInitInternal);
73 if (GSS_ERROR(gssEapAttrProvidersInitStatus))
74 *minor = GSSEAP_NO_ATTR_PROVIDERS;
76 return gssEapAttrProvidersInitStatus;
80 gssEapAttrProvidersFinalize(OM_uint32 *minor)
82 OM_uint32 major = GSS_S_COMPLETE;
84 if (gssEapAttrProvidersInitStatus == GSS_S_COMPLETE) {
85 major = gssEapLocalAttrProviderFinalize(minor);
86 if (major == GSS_S_COMPLETE)
87 major = gssEapSamlAttrProvidersFinalize(minor);
88 if (major == GSS_S_COMPLETE)
89 major = gssEapRadiusAttrProviderFinalize(minor);
91 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
97 static gss_eap_attr_create_provider gssEapAttrFactories[ATTR_TYPE_MAX + 1];
98 static gss_buffer_desc gssEapAttrPrefixes[ATTR_TYPE_MAX + 1];
101 * Register a provider for a particular type and prefix
104 gss_eap_attr_ctx::registerProvider(unsigned int type,
106 gss_eap_attr_create_provider factory)
108 assert(type <= ATTR_TYPE_MAX);
110 assert(gssEapAttrFactories[type] == NULL);
112 gssEapAttrFactories[type] = factory;
113 if (prefix != NULL) {
114 gssEapAttrPrefixes[type].value = (void *)prefix;
115 gssEapAttrPrefixes[type].length = strlen(prefix);
117 gssEapAttrPrefixes[type].value = NULL;
118 gssEapAttrPrefixes[type].length = 0;
123 * Unregister a provider
126 gss_eap_attr_ctx::unregisterProvider(unsigned int type)
128 assert(type <= ATTR_TYPE_MAX);
130 gssEapAttrFactories[type] = NULL;
131 gssEapAttrPrefixes[type].value = NULL;
132 gssEapAttrPrefixes[type].length = 0;
136 * Create an attribute context, that manages instances of providers
138 gss_eap_attr_ctx::gss_eap_attr_ctx(void)
142 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
143 gss_eap_attr_provider *provider;
145 if (gssEapAttrFactories[i] != NULL) {
146 provider = (gssEapAttrFactories[i])();
151 m_providers[i] = provider;
156 * Convert an attribute prefix to a type
159 gss_eap_attr_ctx::attributePrefixToType(const gss_buffer_t prefix)
163 for (i = ATTR_TYPE_MIN; i < ATTR_TYPE_MAX; i++) {
164 if (bufferEqual(&gssEapAttrPrefixes[i], prefix))
168 return ATTR_TYPE_LOCAL;
172 * Convert a type to an attribute prefix
175 gss_eap_attr_ctx::attributeTypeToPrefix(unsigned int type)
177 if (type < ATTR_TYPE_MIN || type >= ATTR_TYPE_MAX)
178 return GSS_C_NO_BUFFER;
180 return &gssEapAttrPrefixes[type];
184 gss_eap_attr_ctx::providerEnabled(unsigned int type) const
186 if (type == ATTR_TYPE_LOCAL &&
187 (m_flags & ATTR_FLAG_DISABLE_LOCAL))
190 if (m_providers[type] == NULL)
197 gss_eap_attr_ctx::releaseProvider(unsigned int type)
199 delete m_providers[type];
200 m_providers[type] = NULL;
204 * Initialize a context from an existing context.
207 gss_eap_attr_ctx::initFromExistingContext(const gss_eap_attr_ctx *manager)
211 m_flags = manager->m_flags;
213 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
214 gss_eap_attr_provider *provider;
216 if (!providerEnabled(i)) {
221 provider = m_providers[i];
223 ret = provider->initFromExistingContext(this,
224 manager->m_providers[i]);
235 * Initialize a context from a GSS credential and context.
238 gss_eap_attr_ctx::initFromGssContext(const gss_cred_id_t cred,
239 const gss_ctx_id_t ctx)
243 if (cred != GSS_C_NO_CREDENTIAL &&
244 (cred->flags & GSS_EAP_DISABLE_LOCAL_ATTRS_FLAG)) {
245 m_flags |= ATTR_FLAG_DISABLE_LOCAL;
248 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
249 gss_eap_attr_provider *provider;
251 if (!providerEnabled(i)) {
256 provider = m_providers[i];
258 ret = provider->initFromGssContext(this, cred, ctx);
268 #define UPDATE_REMAIN(n) do { \
273 #define CHECK_REMAIN(n) do { \
274 if (remain < (n)) { \
280 * Initialize a context from an exported context or name token
283 gss_eap_attr_ctx::initFromBuffer(const gss_buffer_t buffer)
286 size_t remain = buffer->length;
287 unsigned char *p = (unsigned char *)buffer->value;
288 bool didInit[ATTR_TYPE_MAX + 1];
291 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++)
292 didInit[type] = false;
296 m_flags = load_uint32_be(p);
301 gss_buffer_desc providerToken;
302 gss_eap_attr_provider *provider;
304 /* TLV encoding of provider type, length, value */
306 type = load_uint32_be(p);
310 providerToken.length = load_uint32_be(p);
313 CHECK_REMAIN(providerToken.length);
314 providerToken.value = p;
315 UPDATE_REMAIN(providerToken.length);
317 if (type < ATTR_TYPE_MIN || type > ATTR_TYPE_MAX ||
321 if (!providerEnabled(type)) {
322 releaseProvider(type);
326 provider = m_providers[type];
328 ret = provider->initFromBuffer(this, &providerToken);
330 releaseProvider(type);
333 didInit[type] = true;
337 * The call the initFromGssContext methods for attribute
338 * providers that can initialize themselves from other
341 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
342 gss_eap_attr_provider *provider;
347 provider = m_providers[type];
349 ret = provider->initFromGssContext(this,
353 releaseProvider(type);
361 gss_eap_attr_ctx::~gss_eap_attr_ctx(void)
363 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++)
364 delete m_providers[i];
368 * Locate provider for a given type
370 gss_eap_attr_provider *
371 gss_eap_attr_ctx::getProvider(unsigned int type) const
373 assert(type >= ATTR_TYPE_MIN && type <= ATTR_TYPE_MAX);
374 return m_providers[type];
378 * Locate provider for a given prefix
380 gss_eap_attr_provider *
381 gss_eap_attr_ctx::getProvider(const gss_buffer_t prefix) const
385 type = attributePrefixToType(prefix);
387 return m_providers[type];
391 * Get primary provider. Only the primary provider is serialised when
392 * gss_export_sec_context() or gss_export_name_composite() is called.
394 gss_eap_attr_provider *
395 gss_eap_attr_ctx::getPrimaryProvider(void) const
397 return m_providers[ATTR_TYPE_MIN];
404 gss_eap_attr_ctx::setAttribute(int complete,
405 const gss_buffer_t attr,
406 const gss_buffer_t value)
408 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
410 gss_eap_attr_provider *provider;
413 decomposeAttributeName(attr, &type, &suffix);
415 provider = m_providers[type];
416 if (provider != NULL) {
417 ret = provider->setAttribute(complete,
418 (type == ATTR_TYPE_LOCAL) ? attr : &suffix,
426 * Delete an attrbiute
429 gss_eap_attr_ctx::deleteAttribute(const gss_buffer_t attr)
431 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
433 gss_eap_attr_provider *provider;
436 decomposeAttributeName(attr, &type, &suffix);
438 provider = m_providers[type];
439 if (provider != NULL) {
440 ret = provider->deleteAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix);
447 * Enumerate attribute types with callback
450 gss_eap_attr_ctx::getAttributeTypes(gss_eap_attr_enumeration_cb cb, void *data) const
455 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
456 gss_eap_attr_provider *provider = m_providers[i];
458 if (provider == NULL)
461 ret = provider->getAttributeTypes(cb, data);
469 struct eap_gss_get_attr_types_args {
471 gss_buffer_set_t attrs;
475 addAttribute(const gss_eap_attr_provider *provider GSSEAP_UNUSED,
476 const gss_buffer_t attribute,
479 eap_gss_get_attr_types_args *args = (eap_gss_get_attr_types_args *)data;
480 gss_buffer_desc qualified;
481 OM_uint32 major, minor;
483 if (args->type != ATTR_TYPE_LOCAL) {
484 gss_eap_attr_ctx::composeAttributeName(args->type, attribute, &qualified);
485 major = gss_add_buffer_set_member(&minor, &qualified, &args->attrs);
486 gss_release_buffer(&minor, &qualified);
488 major = gss_add_buffer_set_member(&minor, attribute, &args->attrs);
491 return GSS_ERROR(major) == false;
495 * Enumerate attribute types, output is buffer set
498 gss_eap_attr_ctx::getAttributeTypes(gss_buffer_set_t *attrs)
500 eap_gss_get_attr_types_args args;
501 OM_uint32 major, minor;
505 major = gss_create_empty_buffer_set(&minor, attrs);
506 if (GSS_ERROR(major)) {
507 throw new std::bad_alloc;
513 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
514 gss_eap_attr_provider *provider = m_providers[i];
518 if (provider == NULL)
521 ret = provider->getAttributeTypes(addAttribute, (void *)&args);
527 gss_release_buffer_set(&minor, attrs);
533 * Get attribute with given name
536 gss_eap_attr_ctx::getAttribute(const gss_buffer_t attr,
540 gss_buffer_t display_value,
543 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
545 gss_eap_attr_provider *provider;
548 decomposeAttributeName(attr, &type, &suffix);
550 provider = m_providers[type];
551 if (provider == NULL)
554 ret = provider->getAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix,
555 authenticated, complete,
556 value, display_value, more);
562 * Map attribute context to C++ object
565 gss_eap_attr_ctx::mapToAny(int authenticated,
566 gss_buffer_t type_id) const
569 gss_eap_attr_provider *provider;
570 gss_buffer_desc suffix;
572 decomposeAttributeName(type_id, &type, &suffix);
574 provider = m_providers[type];
575 if (provider == NULL)
576 return (gss_any_t)NULL;
578 return provider->mapToAny(authenticated, &suffix);
582 * Release mapped context
585 gss_eap_attr_ctx::releaseAnyNameMapping(gss_buffer_t type_id,
586 gss_any_t input) const
589 gss_eap_attr_provider *provider;
590 gss_buffer_desc suffix;
592 decomposeAttributeName(type_id, &type, &suffix);
594 provider = m_providers[type];
595 if (provider != NULL)
596 provider->releaseAnyNameMapping(&suffix, input);
600 * Export attribute context to buffer
603 gss_eap_attr_ctx::exportToBuffer(gss_buffer_t buffer) const
606 gss_buffer_desc providerTokens[ATTR_TYPE_MAX + 1];
607 size_t length = 4; /* m_flags */
611 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
612 providerTokens[i].length = 0;
613 providerTokens[i].value = NULL;
616 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
617 gss_eap_attr_provider *provider = m_providers[i];
619 if (provider == NULL)
622 provider->exportToBuffer(&providerTokens[i]);
624 if (providerTokens[i].value != NULL)
625 length += 8 + providerTokens[i].length;
628 buffer->length = length;
629 buffer->value = GSSEAP_MALLOC(length);
630 if (buffer->value == NULL)
631 throw new std::bad_alloc;
633 p = (unsigned char *)buffer->value;
634 store_uint32_be(m_flags, p);
637 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
638 if (providerTokens[i].value == NULL)
641 store_uint32_be(i, p);
643 store_uint32_be(providerTokens[i].length, p);
645 memcpy(p, providerTokens[i].value, providerTokens[i].length);
646 p += providerTokens[i].length;
648 gss_release_buffer(&tmpMinor, &providerTokens[i]);
653 * Return soonest expiry time of providers
656 gss_eap_attr_ctx::getExpiryTime(void) const
659 time_t expiryTime = 0;
661 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
662 gss_eap_attr_provider *provider = m_providers[i];
663 time_t providerExpiryTime;
665 if (provider == NULL)
668 providerExpiryTime = provider->getExpiryTime();
669 if (providerExpiryTime == 0)
672 if (expiryTime == 0 || providerExpiryTime < expiryTime)
673 expiryTime = providerExpiryTime;
680 gss_eap_attr_ctx::mapException(OM_uint32 *minor, std::exception &e) const
685 /* Errors we handle ourselves */
686 major = GSS_S_FAILURE;
688 if (typeid(e) == typeid(std::bad_alloc)) {
693 /* Errors we delegate to providers */
694 major = GSS_S_CONTINUE_NEEDED;
696 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
697 gss_eap_attr_provider *provider = m_providers[i];
699 if (provider == NULL)
702 major = provider->mapException(minor, e);
703 if (major != GSS_S_CONTINUE_NEEDED)
707 if (major == GSS_S_CONTINUE_NEEDED) {
708 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
709 major = GSS_S_FAILURE;
714 /* rethrow for now for debugging */
718 assert(GSS_ERROR(major));
724 * Decompose attribute name into prefix and suffix
727 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
734 for (i = 0; i < attribute->length; i++) {
735 if (((char *)attribute->value)[i] == ' ') {
736 p = (char *)attribute->value + i + 1;
741 prefix->value = attribute->value;
744 if (p != NULL && *p != '\0') {
745 suffix->length = attribute->length - 1 - prefix->length;
749 suffix->value = NULL;
754 * Decompose attribute name into type and suffix
757 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
761 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
763 decomposeAttributeName(attribute, &prefix, suffix);
764 *type = attributePrefixToType(&prefix);
768 * Compose attribute name from prefix, suffix; returns C++ string
771 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
772 const gss_buffer_t suffix)
776 if (prefix == GSS_C_NO_BUFFER || prefix->length == 0)
779 str.append((const char *)prefix->value, prefix->length);
781 if (suffix != GSS_C_NO_BUFFER) {
783 str.append((const char *)suffix->value, suffix->length);
790 * Compose attribute name from type, suffix; returns C++ string
793 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
794 const gss_buffer_t suffix)
796 const gss_buffer_t prefix = attributeTypeToPrefix(type);
798 return composeAttributeName(prefix, suffix);
802 * Compose attribute name from prefix, suffix; returns GSS buffer
805 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
806 const gss_buffer_t suffix,
807 gss_buffer_t attribute)
809 std::string str = composeAttributeName(prefix, suffix);
811 if (str.length() != 0) {
812 return duplicateBuffer(str, attribute);
814 attribute->length = 0;
815 attribute->value = NULL;
820 * Compose attribute name from type, suffix; returns GSS buffer
823 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
824 const gss_buffer_t suffix,
825 gss_buffer_t attribute)
827 gss_buffer_t prefix = attributeTypeToPrefix(type);
829 return composeAttributeName(prefix, suffix, attribute);
836 gssEapInquireName(OM_uint32 *minor,
840 gss_buffer_set_t *attrs)
844 if (name_is_MN != NULL)
845 *name_is_MN = (name->mechanismUsed != GSS_C_NULL_OID);
847 if (MN_mech != NULL) {
848 major = gssEapCanonicalizeOid(minor, name->mechanismUsed,
849 OID_FLAG_NULL_VALID, MN_mech);
850 if (GSS_ERROR(major))
854 if (name->attrCtx == NULL) {
855 *minor = GSSEAP_NO_ATTR_CONTEXT;
856 return GSS_S_UNAVAILABLE;
859 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
860 return GSS_S_UNAVAILABLE;
864 if (!name->attrCtx->getAttributeTypes(attrs)) {
865 *minor = GSSEAP_NO_ATTR_CONTEXT;
866 return GSS_S_UNAVAILABLE;
868 } catch (std::exception &e) {
869 return name->attrCtx->mapException(minor, e);
872 return GSS_S_COMPLETE;
876 gssEapGetNameAttribute(OM_uint32 *minor,
882 gss_buffer_t display_value,
893 if (display_value != NULL) {
894 display_value->length = 0;
895 display_value->value = NULL;
898 if (name->attrCtx == NULL) {
899 *minor = GSSEAP_NO_ATTR_CONTEXT;
900 return GSS_S_UNAVAILABLE;
903 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
904 return GSS_S_UNAVAILABLE;
908 if (!name->attrCtx->getAttribute(attr, authenticated, complete,
909 value, display_value, more)) {
910 *minor = GSSEAP_NO_SUCH_ATTR;
911 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
912 (int)attr->length, (char *)attr->value);
913 return GSS_S_UNAVAILABLE;
915 } catch (std::exception &e) {
916 return name->attrCtx->mapException(minor, e);
919 return GSS_S_COMPLETE;
923 gssEapDeleteNameAttribute(OM_uint32 *minor,
927 if (name->attrCtx == NULL) {
928 *minor = GSSEAP_NO_ATTR_CONTEXT;
929 return GSS_S_UNAVAILABLE;
932 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
933 return GSS_S_UNAVAILABLE;
936 if (!name->attrCtx->deleteAttribute(attr)) {
937 *minor = GSSEAP_NO_SUCH_ATTR;
938 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
939 (int)attr->length, (char *)attr->value);
940 return GSS_S_UNAVAILABLE;
942 } catch (std::exception &e) {
943 return name->attrCtx->mapException(minor, e);
946 return GSS_S_COMPLETE;
950 gssEapSetNameAttribute(OM_uint32 *minor,
956 if (name->attrCtx == NULL) {
957 *minor = GSSEAP_NO_ATTR_CONTEXT;
958 return GSS_S_UNAVAILABLE;
961 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
962 return GSS_S_UNAVAILABLE;
965 if (!name->attrCtx->setAttribute(complete, attr, value)) {
966 *minor = GSSEAP_NO_SUCH_ATTR;
967 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
968 (int)attr->length, (char *)attr->value);
969 return GSS_S_UNAVAILABLE;
971 } catch (std::exception &e) {
972 return name->attrCtx->mapException(minor, e);
975 return GSS_S_COMPLETE;
979 gssEapExportAttrContext(OM_uint32 *minor,
983 if (name->attrCtx == NULL) {
985 buffer->value = NULL;
987 return GSS_S_COMPLETE;
990 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
991 return GSS_S_UNAVAILABLE;
994 name->attrCtx->exportToBuffer(buffer);
995 } catch (std::exception &e) {
996 return name->attrCtx->mapException(minor, e);
999 return GSS_S_COMPLETE;
1003 gssEapImportAttrContext(OM_uint32 *minor,
1004 gss_buffer_t buffer,
1007 gss_eap_attr_ctx *ctx = NULL;
1009 assert(name->attrCtx == NULL);
1011 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1012 return GSS_S_UNAVAILABLE;
1014 if (buffer->length != 0) {
1016 ctx = new gss_eap_attr_ctx();
1018 if (!ctx->initFromBuffer(buffer)) {
1020 *minor = GSSEAP_BAD_ATTR_TOKEN;
1021 return GSS_S_DEFECTIVE_TOKEN;
1023 name->attrCtx = ctx;
1024 } catch (std::exception &e) {
1026 return name->attrCtx->mapException(minor, e);
1030 return GSS_S_COMPLETE;
1034 gssEapDuplicateAttrContext(OM_uint32 *minor,
1038 gss_eap_attr_ctx *ctx = NULL;
1040 assert(out->attrCtx == NULL);
1042 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1043 return GSS_S_UNAVAILABLE;
1046 if (in->attrCtx != NULL) {
1047 ctx = new gss_eap_attr_ctx();
1048 if (!ctx->initFromExistingContext(in->attrCtx)) {
1050 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1051 return GSS_S_FAILURE;
1055 } catch (std::exception &e) {
1057 return in->attrCtx->mapException(minor, e);
1060 return GSS_S_COMPLETE;
1064 gssEapMapNameToAny(OM_uint32 *minor,
1067 gss_buffer_t type_id,
1070 if (name->attrCtx == NULL) {
1071 *minor = GSSEAP_NO_ATTR_CONTEXT;
1072 return GSS_S_UNAVAILABLE;
1075 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1076 return GSS_S_UNAVAILABLE;
1079 *output = name->attrCtx->mapToAny(authenticated, type_id);
1080 } catch (std::exception &e) {
1081 return name->attrCtx->mapException(minor, e);
1084 return GSS_S_COMPLETE;
1088 gssEapReleaseAnyNameMapping(OM_uint32 *minor,
1090 gss_buffer_t type_id,
1093 if (name->attrCtx == NULL) {
1094 *minor = GSSEAP_NO_ATTR_CONTEXT;
1095 return GSS_S_UNAVAILABLE;
1098 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1099 return GSS_S_UNAVAILABLE;
1103 name->attrCtx->releaseAnyNameMapping(type_id, *input);
1105 } catch (std::exception &e) {
1106 return name->attrCtx->mapException(minor, e);
1109 return GSS_S_COMPLETE;
1113 gssEapReleaseAttrContext(OM_uint32 *minor,
1116 if (name->attrCtx != NULL)
1117 delete name->attrCtx;
1120 return GSS_S_COMPLETE;
1124 * Public accessor for initialisng a context from a GSS context. Also
1125 * sets expiry time on GSS context as a side-effect.
1128 gssEapCreateAttrContext(OM_uint32 *minor,
1129 gss_cred_id_t gssCred,
1130 gss_ctx_id_t gssCtx,
1131 struct gss_eap_attr_ctx **pAttrContext,
1132 time_t *pExpiryTime)
1134 gss_eap_attr_ctx *ctx = NULL;
1137 assert(gssCtx != GSS_C_NO_CONTEXT);
1139 major = gssEapAttrProvidersInit(minor);
1140 if (GSS_ERROR(major))
1143 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1144 major = GSS_S_FAILURE;
1147 ctx = new gss_eap_attr_ctx();
1148 if (ctx->initFromGssContext(gssCred, gssCtx)) {
1150 major = GSS_S_COMPLETE;
1154 } catch (std::exception &e) {
1156 major = ctx->mapException(minor, e);
1159 if (major == GSS_S_COMPLETE) {
1160 *pAttrContext = ctx;
1161 *pExpiryTime = ctx->getExpiryTime();
projects / mech_eap.orig / blob