2 * Copyright (c) 2011, JANET(UK)
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of JANET(UK) nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 * Attribute provider mechanism.
37 #include "gssapiP_eap.h"
44 /* lazy initialisation */
45 static GSSEAP_THREAD_ONCE gssEapAttrProvidersInitOnce = GSSEAP_ONCE_INITIALIZER;
46 static OM_uint32 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
49 gssEapAttrProvidersInitInternal(void)
51 OM_uint32 major, minor;
53 assert(gssEapAttrProvidersInitStatus == GSS_S_UNAVAILABLE);
55 major = gssEapRadiusAttrProviderInit(&minor);
56 if (major == GSS_S_COMPLETE)
57 major = gssEapSamlAttrProvidersInit(&minor);
58 if (major == GSS_S_COMPLETE)
59 major = gssEapLocalAttrProviderInit(&minor);
62 assert(major == GSS_S_COMPLETE);
65 gssEapAttrProvidersInitStatus = major;
69 gssEapAttrProvidersInit(OM_uint32 *minor)
71 GSSEAP_ONCE(&gssEapAttrProvidersInitOnce, gssEapAttrProvidersInitInternal);
73 if (GSS_ERROR(gssEapAttrProvidersInitStatus))
74 *minor = GSSEAP_NO_ATTR_PROVIDERS;
76 return gssEapAttrProvidersInitStatus;
80 gssEapAttrProvidersFinalize(OM_uint32 *minor)
82 OM_uint32 major = GSS_S_COMPLETE;
84 if (gssEapAttrProvidersInitStatus == GSS_S_COMPLETE) {
85 major = gssEapLocalAttrProviderFinalize(minor);
86 if (major == GSS_S_COMPLETE)
87 major = gssEapSamlAttrProvidersFinalize(minor);
88 if (major == GSS_S_COMPLETE)
89 major = gssEapRadiusAttrProviderFinalize(minor);
91 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
97 static gss_eap_attr_create_provider gssEapAttrFactories[ATTR_TYPE_MAX + 1];
98 static gss_buffer_desc gssEapAttrPrefixes[ATTR_TYPE_MAX + 1];
101 * Register a provider for a particular type and prefix
104 gss_eap_attr_ctx::registerProvider(unsigned int type,
106 gss_eap_attr_create_provider factory)
108 assert(type <= ATTR_TYPE_MAX);
110 assert(gssEapAttrFactories[type] == NULL);
112 gssEapAttrFactories[type] = factory;
113 if (prefix != NULL) {
114 gssEapAttrPrefixes[type].value = (void *)prefix;
115 gssEapAttrPrefixes[type].length = strlen(prefix);
117 gssEapAttrPrefixes[type].value = NULL;
118 gssEapAttrPrefixes[type].length = 0;
123 * Unregister a provider
126 gss_eap_attr_ctx::unregisterProvider(unsigned int type)
128 assert(type <= ATTR_TYPE_MAX);
130 gssEapAttrFactories[type] = NULL;
131 gssEapAttrPrefixes[type].value = NULL;
132 gssEapAttrPrefixes[type].length = 0;
136 * Create an attribute context, that manages instances of providers
138 gss_eap_attr_ctx::gss_eap_attr_ctx(void)
142 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
143 gss_eap_attr_provider *provider;
145 if (gssEapAttrFactories[i] != NULL) {
146 provider = (gssEapAttrFactories[i])();
151 m_providers[i] = provider;
156 * Convert an attribute prefix to a type
159 gss_eap_attr_ctx::attributePrefixToType(const gss_buffer_t prefix)
163 for (i = ATTR_TYPE_MIN; i < ATTR_TYPE_MAX; i++) {
164 if (bufferEqual(&gssEapAttrPrefixes[i], prefix))
168 return ATTR_TYPE_LOCAL;
172 * Convert a type to an attribute prefix
175 gss_eap_attr_ctx::attributeTypeToPrefix(unsigned int type)
177 if (type < ATTR_TYPE_MIN || type >= ATTR_TYPE_MAX)
178 return GSS_C_NO_BUFFER;
180 return &gssEapAttrPrefixes[type];
184 gss_eap_attr_ctx::providerEnabled(unsigned int type) const
186 if (type == ATTR_TYPE_LOCAL &&
187 (m_flags & ATTR_FLAG_DISABLE_LOCAL))
190 if (m_providers[type] == NULL)
197 gss_eap_attr_ctx::releaseProvider(unsigned int type)
199 delete m_providers[type];
200 m_providers[type] = NULL;
204 * Initialize a context from an existing context.
207 gss_eap_attr_ctx::initFromExistingContext(const gss_eap_attr_ctx *manager)
211 m_flags = manager->m_flags;
213 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
214 gss_eap_attr_provider *provider;
216 if (!providerEnabled(i)) {
221 provider = m_providers[i];
223 ret = provider->initFromExistingContext(this,
224 manager->m_providers[i]);
235 * Initialize a context from a GSS credential and context.
238 gss_eap_attr_ctx::initFromGssContext(const gss_cred_id_t cred,
239 const gss_ctx_id_t ctx)
243 if (cred != GSS_C_NO_CREDENTIAL &&
244 (cred->flags & GSS_EAP_DISABLE_LOCAL_ATTRS_FLAG)) {
245 m_flags |= ATTR_FLAG_DISABLE_LOCAL;
248 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
249 gss_eap_attr_provider *provider;
251 if (!providerEnabled(i)) {
256 provider = m_providers[i];
258 ret = provider->initFromGssContext(this, cred, ctx);
268 #define UPDATE_REMAIN(n) do { \
273 #define CHECK_REMAIN(n) do { \
274 if (remain < (n)) { \
280 * Initialize a context from an exported context or name token
283 gss_eap_attr_ctx::initFromBuffer(const gss_buffer_t buffer)
286 size_t remain = buffer->length;
287 unsigned char *p = (unsigned char *)buffer->value;
288 bool didInit[ATTR_TYPE_MAX + 1];
290 memset(didInit, 0, sizeof(didInit));
294 m_flags = load_uint32_be(p);
299 gss_buffer_desc providerToken;
300 gss_eap_attr_provider *provider;
302 /* TLV encoding of provider type, length, value */
304 type = load_uint32_be(p);
308 providerToken.length = load_uint32_be(p);
311 CHECK_REMAIN(providerToken.length);
312 providerToken.value = p;
313 UPDATE_REMAIN(providerToken.length);
315 if (type < ATTR_TYPE_MIN || type > ATTR_TYPE_MAX ||
319 if (!providerEnabled(type)) {
320 releaseProvider(type);
324 provider = m_providers[type];
326 ret = provider->initFromBuffer(this, &providerToken);
328 releaseProvider(type);
331 didInit[type] = true;
335 * The call the initFromGssContext methods for attribute
336 * providers that can initialize themselves from other
339 for (size_t type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
340 gss_eap_attr_provider *provider;
345 provider = m_providers[type];
347 ret = provider->initFromGssContext(this,
351 releaseProvider(type);
359 gss_eap_attr_ctx::~gss_eap_attr_ctx(void)
361 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++)
362 delete m_providers[i];
366 * Locate provider for a given type
368 gss_eap_attr_provider *
369 gss_eap_attr_ctx::getProvider(unsigned int type) const
371 assert(type >= ATTR_TYPE_MIN && type <= ATTR_TYPE_MAX);
372 return m_providers[type];
376 * Locate provider for a given prefix
378 gss_eap_attr_provider *
379 gss_eap_attr_ctx::getProvider(const gss_buffer_t prefix) const
383 type = attributePrefixToType(prefix);
385 return m_providers[type];
389 * Get primary provider. Only the primary provider is serialised when
390 * gss_export_sec_context() or gss_export_name_composite() is called.
392 gss_eap_attr_provider *
393 gss_eap_attr_ctx::getPrimaryProvider(void) const
395 return m_providers[ATTR_TYPE_MIN];
402 gss_eap_attr_ctx::setAttribute(int complete,
403 const gss_buffer_t attr,
404 const gss_buffer_t value)
406 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
408 gss_eap_attr_provider *provider;
411 decomposeAttributeName(attr, &type, &suffix);
413 provider = m_providers[type];
414 if (provider != NULL) {
415 ret = provider->setAttribute(complete,
416 (type == ATTR_TYPE_LOCAL) ? attr : &suffix,
424 * Delete an attrbiute
427 gss_eap_attr_ctx::deleteAttribute(const gss_buffer_t attr)
429 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
431 gss_eap_attr_provider *provider;
434 decomposeAttributeName(attr, &type, &suffix);
436 provider = m_providers[type];
437 if (provider != NULL) {
438 ret = provider->deleteAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix);
445 * Enumerate attribute types with callback
448 gss_eap_attr_ctx::getAttributeTypes(gss_eap_attr_enumeration_cb cb, void *data) const
453 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
454 gss_eap_attr_provider *provider = m_providers[i];
456 if (provider == NULL)
459 ret = provider->getAttributeTypes(cb, data);
467 struct eap_gss_get_attr_types_args {
469 gss_buffer_set_t attrs;
473 addAttribute(const gss_eap_attr_provider *provider GSSEAP_UNUSED,
474 const gss_buffer_t attribute,
477 eap_gss_get_attr_types_args *args = (eap_gss_get_attr_types_args *)data;
478 gss_buffer_desc qualified;
479 OM_uint32 major, minor;
481 if (args->type != ATTR_TYPE_LOCAL) {
482 gss_eap_attr_ctx::composeAttributeName(args->type, attribute, &qualified);
483 major = gss_add_buffer_set_member(&minor, &qualified, &args->attrs);
484 gss_release_buffer(&minor, &qualified);
486 major = gss_add_buffer_set_member(&minor, attribute, &args->attrs);
489 return GSS_ERROR(major) == false;
493 * Enumerate attribute types, output is buffer set
496 gss_eap_attr_ctx::getAttributeTypes(gss_buffer_set_t *attrs)
498 eap_gss_get_attr_types_args args;
499 OM_uint32 major, minor;
503 major = gss_create_empty_buffer_set(&minor, attrs);
504 if (GSS_ERROR(major)) {
505 throw new std::bad_alloc;
511 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
512 gss_eap_attr_provider *provider = m_providers[i];
516 if (provider == NULL)
519 ret = provider->getAttributeTypes(addAttribute, (void *)&args);
525 gss_release_buffer_set(&minor, attrs);
531 * Get attribute with given name
534 gss_eap_attr_ctx::getAttribute(const gss_buffer_t attr,
538 gss_buffer_t display_value,
541 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
543 gss_eap_attr_provider *provider;
546 decomposeAttributeName(attr, &type, &suffix);
548 provider = m_providers[type];
549 if (provider == NULL)
552 ret = provider->getAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix,
553 authenticated, complete,
554 value, display_value, more);
560 * Map attribute context to C++ object
563 gss_eap_attr_ctx::mapToAny(int authenticated,
564 gss_buffer_t type_id) const
567 gss_eap_attr_provider *provider;
568 gss_buffer_desc suffix;
570 decomposeAttributeName(type_id, &type, &suffix);
572 provider = m_providers[type];
573 if (provider == NULL)
574 return (gss_any_t)NULL;
576 return provider->mapToAny(authenticated, &suffix);
580 * Release mapped context
583 gss_eap_attr_ctx::releaseAnyNameMapping(gss_buffer_t type_id,
584 gss_any_t input) const
587 gss_eap_attr_provider *provider;
588 gss_buffer_desc suffix;
590 decomposeAttributeName(type_id, &type, &suffix);
592 provider = m_providers[type];
593 if (provider != NULL)
594 provider->releaseAnyNameMapping(&suffix, input);
598 * Export attribute context to buffer
601 gss_eap_attr_ctx::exportToBuffer(gss_buffer_t buffer) const
604 gss_buffer_desc providerTokens[ATTR_TYPE_MAX + 1];
605 size_t length = 4; /* m_flags */
608 memset(providerTokens, 0, sizeof(providerTokens));
610 for (size_t i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
611 gss_eap_attr_provider *provider = m_providers[i];
613 if (provider == NULL)
616 provider->exportToBuffer(&providerTokens[i]);
618 if (providerTokens[i].value != NULL)
619 length += 8 + providerTokens[i].length;
622 buffer->length = length;
623 buffer->value = GSSEAP_MALLOC(length);
624 if (buffer->value == NULL)
625 throw new std::bad_alloc;
627 p = (unsigned char *)buffer->value;
628 store_uint32_be(m_flags, p);
631 for (size_t i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
632 if (providerTokens[i].value == NULL)
635 store_uint32_be(i, p);
637 store_uint32_be(providerTokens[i].length, p);
639 memcpy(p, providerTokens[i].value, providerTokens[i].length);
640 p += providerTokens[i].length;
642 gss_release_buffer(&tmpMinor, &providerTokens[i]);
647 * Return soonest expiry time of providers
650 gss_eap_attr_ctx::getExpiryTime(void) const
653 time_t expiryTime = 0;
655 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
656 gss_eap_attr_provider *provider = m_providers[i];
657 time_t providerExpiryTime;
659 if (provider == NULL)
662 providerExpiryTime = provider->getExpiryTime();
663 if (providerExpiryTime == 0)
666 if (expiryTime == 0 || providerExpiryTime < expiryTime)
667 expiryTime = providerExpiryTime;
674 gss_eap_attr_ctx::mapException(OM_uint32 *minor, std::exception &e) const
679 /* Errors we handle ourselves */
680 major = GSS_S_FAILURE;
682 if (typeid(e) == typeid(std::bad_alloc)) {
687 /* Errors we delegate to providers */
688 major = GSS_S_CONTINUE_NEEDED;
690 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
691 gss_eap_attr_provider *provider = m_providers[i];
693 if (provider == NULL)
696 major = provider->mapException(minor, e);
697 if (major != GSS_S_CONTINUE_NEEDED)
701 if (major == GSS_S_CONTINUE_NEEDED) {
702 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
703 major = GSS_S_FAILURE;
708 /* rethrow for now for debugging */
712 assert(GSS_ERROR(major));
718 * Decompose attribute name into prefix and suffix
721 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
728 for (i = 0; i < attribute->length; i++) {
729 if (((char *)attribute->value)[i] == ' ') {
730 p = (char *)attribute->value + i + 1;
735 prefix->value = attribute->value;
738 if (p != NULL && *p != '\0') {
739 suffix->length = attribute->length - 1 - prefix->length;
743 suffix->value = NULL;
748 * Decompose attribute name into type and suffix
751 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
755 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
757 decomposeAttributeName(attribute, &prefix, suffix);
758 *type = attributePrefixToType(&prefix);
762 * Compose attribute name from prefix, suffix; returns C++ string
765 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
766 const gss_buffer_t suffix)
770 if (prefix == GSS_C_NO_BUFFER || prefix->length == 0)
773 str.append((const char *)prefix->value, prefix->length);
775 if (suffix != GSS_C_NO_BUFFER) {
777 str.append((const char *)suffix->value, suffix->length);
784 * Compose attribute name from type, suffix; returns C++ string
787 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
788 const gss_buffer_t suffix)
790 const gss_buffer_t prefix = attributeTypeToPrefix(type);
792 return composeAttributeName(prefix, suffix);
796 * Compose attribute name from prefix, suffix; returns GSS buffer
799 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
800 const gss_buffer_t suffix,
801 gss_buffer_t attribute)
803 std::string str = composeAttributeName(prefix, suffix);
805 if (str.length() != 0) {
806 return duplicateBuffer(str, attribute);
808 attribute->length = 0;
809 attribute->value = NULL;
814 * Compose attribute name from type, suffix; returns GSS buffer
817 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
818 const gss_buffer_t suffix,
819 gss_buffer_t attribute)
821 gss_buffer_t prefix = attributeTypeToPrefix(type);
823 return composeAttributeName(prefix, suffix, attribute);
830 gssEapInquireName(OM_uint32 *minor,
834 gss_buffer_set_t *attrs)
838 if (name_is_MN != NULL)
839 *name_is_MN = (name->mechanismUsed != GSS_C_NULL_OID);
841 if (MN_mech != NULL) {
842 major = gssEapCanonicalizeOid(minor, name->mechanismUsed,
843 OID_FLAG_NULL_VALID, MN_mech);
844 if (GSS_ERROR(major))
848 if (name->attrCtx == NULL) {
849 *minor = GSSEAP_NO_ATTR_CONTEXT;
850 return GSS_S_UNAVAILABLE;
853 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
854 return GSS_S_UNAVAILABLE;
858 if (!name->attrCtx->getAttributeTypes(attrs)) {
859 *minor = GSSEAP_NO_ATTR_CONTEXT;
860 return GSS_S_UNAVAILABLE;
862 } catch (std::exception &e) {
863 return name->attrCtx->mapException(minor, e);
866 return GSS_S_COMPLETE;
870 gssEapGetNameAttribute(OM_uint32 *minor,
876 gss_buffer_t display_value,
887 if (display_value != NULL) {
888 display_value->length = 0;
889 display_value->value = NULL;
892 if (name->attrCtx == NULL) {
893 *minor = GSSEAP_NO_ATTR_CONTEXT;
894 return GSS_S_UNAVAILABLE;
897 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
898 return GSS_S_UNAVAILABLE;
902 if (!name->attrCtx->getAttribute(attr, authenticated, complete,
903 value, display_value, more)) {
904 *minor = GSSEAP_NO_SUCH_ATTR;
905 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
906 (int)attr->length, (char *)attr->value);
907 return GSS_S_UNAVAILABLE;
909 } catch (std::exception &e) {
910 return name->attrCtx->mapException(minor, e);
913 return GSS_S_COMPLETE;
917 gssEapDeleteNameAttribute(OM_uint32 *minor,
921 if (name->attrCtx == NULL) {
922 *minor = GSSEAP_NO_ATTR_CONTEXT;
923 return GSS_S_UNAVAILABLE;
926 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
927 return GSS_S_UNAVAILABLE;
930 if (!name->attrCtx->deleteAttribute(attr)) {
931 *minor = GSSEAP_NO_SUCH_ATTR;
932 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
933 (int)attr->length, (char *)attr->value);
934 return GSS_S_UNAVAILABLE;
936 } catch (std::exception &e) {
937 return name->attrCtx->mapException(minor, e);
940 return GSS_S_COMPLETE;
944 gssEapSetNameAttribute(OM_uint32 *minor,
950 if (name->attrCtx == NULL) {
951 *minor = GSSEAP_NO_ATTR_CONTEXT;
952 return GSS_S_UNAVAILABLE;
955 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
956 return GSS_S_UNAVAILABLE;
959 if (!name->attrCtx->setAttribute(complete, attr, value)) {
960 *minor = GSSEAP_NO_SUCH_ATTR;
961 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
962 (int)attr->length, (char *)attr->value);
963 return GSS_S_UNAVAILABLE;
965 } catch (std::exception &e) {
966 return name->attrCtx->mapException(minor, e);
969 return GSS_S_COMPLETE;
973 gssEapExportAttrContext(OM_uint32 *minor,
977 if (name->attrCtx == NULL) {
979 buffer->value = NULL;
981 return GSS_S_COMPLETE;
984 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
985 return GSS_S_UNAVAILABLE;
988 name->attrCtx->exportToBuffer(buffer);
989 } catch (std::exception &e) {
990 return name->attrCtx->mapException(minor, e);
993 return GSS_S_COMPLETE;
997 gssEapImportAttrContext(OM_uint32 *minor,
1001 gss_eap_attr_ctx *ctx = NULL;
1003 assert(name->attrCtx == NULL);
1005 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1006 return GSS_S_UNAVAILABLE;
1008 if (buffer->length != 0) {
1010 ctx = new gss_eap_attr_ctx();
1012 if (!ctx->initFromBuffer(buffer)) {
1014 *minor = GSSEAP_BAD_ATTR_TOKEN;
1015 return GSS_S_DEFECTIVE_TOKEN;
1017 name->attrCtx = ctx;
1018 } catch (std::exception &e) {
1020 return name->attrCtx->mapException(minor, e);
1024 return GSS_S_COMPLETE;
1028 gssEapDuplicateAttrContext(OM_uint32 *minor,
1032 gss_eap_attr_ctx *ctx = NULL;
1034 assert(out->attrCtx == NULL);
1036 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1037 return GSS_S_UNAVAILABLE;
1040 if (in->attrCtx != NULL) {
1041 ctx = new gss_eap_attr_ctx();
1042 if (!ctx->initFromExistingContext(in->attrCtx)) {
1044 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1045 return GSS_S_FAILURE;
1049 } catch (std::exception &e) {
1051 return in->attrCtx->mapException(minor, e);
1054 return GSS_S_COMPLETE;
1058 gssEapMapNameToAny(OM_uint32 *minor,
1061 gss_buffer_t type_id,
1064 if (name->attrCtx == NULL) {
1065 *minor = GSSEAP_NO_ATTR_CONTEXT;
1066 return GSS_S_UNAVAILABLE;
1069 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1070 return GSS_S_UNAVAILABLE;
1073 *output = name->attrCtx->mapToAny(authenticated, type_id);
1074 } catch (std::exception &e) {
1075 return name->attrCtx->mapException(minor, e);
1078 return GSS_S_COMPLETE;
1082 gssEapReleaseAnyNameMapping(OM_uint32 *minor,
1084 gss_buffer_t type_id,
1087 if (name->attrCtx == NULL) {
1088 *minor = GSSEAP_NO_ATTR_CONTEXT;
1089 return GSS_S_UNAVAILABLE;
1092 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1093 return GSS_S_UNAVAILABLE;
1097 name->attrCtx->releaseAnyNameMapping(type_id, *input);
1099 } catch (std::exception &e) {
1100 return name->attrCtx->mapException(minor, e);
1103 return GSS_S_COMPLETE;
1107 gssEapReleaseAttrContext(OM_uint32 *minor,
1110 if (name->attrCtx != NULL)
1111 delete name->attrCtx;
1114 return GSS_S_COMPLETE;
1118 * Public accessor for initialisng a context from a GSS context. Also
1119 * sets expiry time on GSS context as a side-effect.
1122 gssEapCreateAttrContext(OM_uint32 *minor,
1123 gss_cred_id_t gssCred,
1124 gss_ctx_id_t gssCtx,
1125 struct gss_eap_attr_ctx **pAttrContext,
1126 time_t *pExpiryTime)
1128 gss_eap_attr_ctx *ctx = NULL;
1131 assert(gssCtx != GSS_C_NO_CONTEXT);
1133 major = gssEapAttrProvidersInit(minor);
1134 if (GSS_ERROR(major))
1137 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1138 major = GSS_S_FAILURE;
1141 ctx = new gss_eap_attr_ctx();
1142 if (ctx->initFromGssContext(gssCred, gssCtx)) {
1144 major = GSS_S_COMPLETE;
1148 } catch (std::exception &e) {
1150 major = ctx->mapException(minor, e);
1153 if (major == GSS_S_COMPLETE) {
1154 *pAttrContext = ctx;
1155 *pExpiryTime = ctx->getExpiryTime();