2 * Copyright (c) 2011, JANET(UK)
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of JANET(UK) nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 * Attribute provider mechanism.
37 #include "gssapiP_eap.h"
45 /* lazy initialisation */
46 static GSSEAP_THREAD_ONCE gssEapAttrProvidersInitOnce = GSSEAP_ONCE_INITIALIZER;
47 static OM_uint32 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
50 gssEapAttrProvidersInitInternal(void)
52 OM_uint32 major, minor;
54 assert(gssEapAttrProvidersInitStatus == GSS_S_UNAVAILABLE);
56 major = gssEapRadiusAttrProviderInit(&minor);
57 if (major == GSS_S_COMPLETE)
58 major = gssEapSamlAttrProvidersInit(&minor);
59 if (major == GSS_S_COMPLETE)
60 major = gssEapLocalAttrProviderInit(&minor);
63 assert(major == GSS_S_COMPLETE);
66 gssEapAttrProvidersInitStatus = major;
70 gssEapAttrProvidersInit(OM_uint32 *minor)
72 GSSEAP_ONCE(&gssEapAttrProvidersInitOnce, gssEapAttrProvidersInitInternal);
74 if (GSS_ERROR(gssEapAttrProvidersInitStatus))
75 *minor = GSSEAP_NO_ATTR_PROVIDERS;
77 return gssEapAttrProvidersInitStatus;
81 gssEapAttrProvidersFinalize(OM_uint32 *minor)
83 OM_uint32 major = GSS_S_COMPLETE;
85 if (gssEapAttrProvidersInitStatus == GSS_S_COMPLETE) {
86 major = gssEapLocalAttrProviderFinalize(minor);
87 if (major == GSS_S_COMPLETE)
88 major = gssEapSamlAttrProvidersFinalize(minor);
89 if (major == GSS_S_COMPLETE)
90 major = gssEapRadiusAttrProviderFinalize(minor);
92 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
98 static gss_eap_attr_create_provider gssEapAttrFactories[ATTR_TYPE_MAX + 1];
101 * Register a provider for a particular type and prefix
104 gss_eap_attr_ctx::registerProvider(unsigned int type,
105 gss_eap_attr_create_provider factory)
107 assert(type <= ATTR_TYPE_MAX);
109 assert(gssEapAttrFactories[type] == NULL);
111 gssEapAttrFactories[type] = factory;
115 * Unregister a provider
118 gss_eap_attr_ctx::unregisterProvider(unsigned int type)
120 assert(type <= ATTR_TYPE_MAX);
122 gssEapAttrFactories[type] = NULL;
126 * Create an attribute context, that manages instances of providers
128 gss_eap_attr_ctx::gss_eap_attr_ctx(void)
132 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
133 gss_eap_attr_provider *provider;
135 if (gssEapAttrFactories[i] != NULL) {
136 provider = (gssEapAttrFactories[i])();
141 m_providers[i] = provider;
146 * Convert an attribute prefix to a type
149 gss_eap_attr_ctx::attributePrefixToType(const gss_buffer_t prefix) const
153 for (i = ATTR_TYPE_MIN; i < ATTR_TYPE_MAX; i++) {
156 if (!providerEnabled(i))
159 pprefix = m_providers[i]->prefix();
163 if (strlen(pprefix) == prefix->length &&
164 memcmp(pprefix, prefix->value, prefix->length) == 0)
168 return ATTR_TYPE_LOCAL;
172 * Convert a type to an attribute prefix
175 gss_eap_attr_ctx::attributeTypeToPrefix(unsigned int type) const
177 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
179 if (type < ATTR_TYPE_MIN || type >= ATTR_TYPE_MAX)
182 if (!providerEnabled(type))
185 prefix.value = (void *)m_providers[type]->prefix();
186 if (prefix.value != NULL)
187 prefix.length = strlen((char *)prefix.value);
193 gss_eap_attr_ctx::providerEnabled(unsigned int type) const
195 if (type == ATTR_TYPE_LOCAL &&
196 (m_flags & ATTR_FLAG_DISABLE_LOCAL))
199 if (m_providers[type] == NULL)
206 gss_eap_attr_ctx::releaseProvider(unsigned int type)
208 delete m_providers[type];
209 m_providers[type] = NULL;
213 * Initialize a context from an existing context.
216 gss_eap_attr_ctx::initFromExistingContext(const gss_eap_attr_ctx *manager)
220 m_flags = manager->m_flags;
222 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
223 gss_eap_attr_provider *provider;
225 if (!providerEnabled(i)) {
230 provider = m_providers[i];
232 ret = provider->initFromExistingContext(this,
233 manager->m_providers[i]);
244 * Initialize a context from a GSS credential and context.
247 gss_eap_attr_ctx::initFromGssContext(const gss_cred_id_t cred,
248 const gss_ctx_id_t ctx)
252 if (cred != GSS_C_NO_CREDENTIAL &&
253 (cred->flags & GSS_EAP_DISABLE_LOCAL_ATTRS_FLAG)) {
254 m_flags |= ATTR_FLAG_DISABLE_LOCAL;
257 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
258 gss_eap_attr_provider *provider;
260 if (!providerEnabled(i)) {
265 provider = m_providers[i];
267 ret = provider->initFromGssContext(this, cred, ctx);
278 findSourceForProvider(DDF &sources, const char *key)
280 DDF source = sources.first();
282 while (!source.isnull()) {
283 DDF obj = source.getmember(key);
285 if (strcmp(key, source.name()) == 0)
288 source = sources.next();
295 gss_eap_attr_ctx::unmarshallAndInit(DDF &obj)
298 bool foundSource[ATTR_TYPE_MAX + 1];
301 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++)
302 foundSource[type] = false;
304 if (obj["version"].integer() != 1)
307 m_flags = obj["flags"].integer();
309 DDF sources = obj["sources"];
311 /* Initialize providers from serialized state */
312 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
313 if (!providerEnabled(type)) {
314 releaseProvider(type);
318 gss_eap_attr_provider *provider = m_providers[type];
319 const char *key = provider->marshallingKey();
323 DDF source = findSourceForProvider(sources, key);
324 if (source.isnull() ||
325 !provider->unmarshallAndInit(this, source)) {
326 releaseProvider(type);
330 foundSource[type] = true;
333 /* Initialize remaining providers from initialized providers */
334 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
335 gss_eap_attr_provider *provider;
337 if (foundSource[type] || !providerEnabled(type))
340 provider = m_providers[type];
342 ret = provider->initFromGssContext(this,
346 releaseProvider(type);
355 gss_eap_attr_ctx::marshall(void) const
360 obj.addmember("version").integer(1);
361 obj.addmember("flags").integer(m_flags);
363 DDF sources = obj.addmember("sources").list();
365 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
366 gss_eap_attr_provider *provider = m_providers[i];
368 if (provider == NULL)
369 continue; /* provider not initialised */
371 const char *key = provider->marshallingKey();
373 continue; /* provider does not have state */
375 DDF source = provider->marshall();
376 sources.add(source.name(key));
383 * Initialize a context from an exported context or name token
386 gss_eap_attr_ctx::initFromBuffer(const gss_buffer_t buffer)
390 if (buffer->length == 0)
394 std::string str((const char *)buffer->value, buffer->length);
395 std::istringstream source(str);
399 ret = unmarshallAndInit(obj);
406 gss_eap_attr_ctx::~gss_eap_attr_ctx(void)
408 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++)
409 delete m_providers[i];
413 * Locate provider for a given type
415 gss_eap_attr_provider *
416 gss_eap_attr_ctx::getProvider(unsigned int type) const
418 assert(type >= ATTR_TYPE_MIN && type <= ATTR_TYPE_MAX);
419 return m_providers[type];
423 * Get primary provider. Only the primary provider is serialised when
424 * gss_export_sec_context() or gss_export_name_composite() is called.
426 gss_eap_attr_provider *
427 gss_eap_attr_ctx::getPrimaryProvider(void) const
429 return m_providers[ATTR_TYPE_MIN];
436 gss_eap_attr_ctx::setAttribute(int complete,
437 const gss_buffer_t attr,
438 const gss_buffer_t value)
440 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
442 gss_eap_attr_provider *provider;
445 decomposeAttributeName(attr, &type, &suffix);
447 provider = m_providers[type];
448 if (provider != NULL) {
449 ret = provider->setAttribute(complete,
450 (type == ATTR_TYPE_LOCAL) ? attr : &suffix,
458 * Delete an attrbiute
461 gss_eap_attr_ctx::deleteAttribute(const gss_buffer_t attr)
463 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
465 gss_eap_attr_provider *provider;
468 decomposeAttributeName(attr, &type, &suffix);
470 provider = m_providers[type];
471 if (provider != NULL) {
472 ret = provider->deleteAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix);
479 * Enumerate attribute types with callback
482 gss_eap_attr_ctx::getAttributeTypes(gss_eap_attr_enumeration_cb cb, void *data) const
487 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
488 gss_eap_attr_provider *provider = m_providers[i];
490 if (provider == NULL)
493 ret = provider->getAttributeTypes(cb, data);
501 struct eap_gss_get_attr_types_args {
503 gss_buffer_set_t attrs;
507 addAttribute(const gss_eap_attr_ctx *manager,
508 const gss_eap_attr_provider *provider GSSEAP_UNUSED,
509 const gss_buffer_t attribute,
512 eap_gss_get_attr_types_args *args = (eap_gss_get_attr_types_args *)data;
513 gss_buffer_desc qualified;
514 OM_uint32 major, minor;
516 if (args->type != ATTR_TYPE_LOCAL) {
517 manager->composeAttributeName(args->type, attribute, &qualified);
518 major = gss_add_buffer_set_member(&minor, &qualified, &args->attrs);
519 gss_release_buffer(&minor, &qualified);
521 major = gss_add_buffer_set_member(&minor, attribute, &args->attrs);
524 return GSS_ERROR(major) == false;
528 * Enumerate attribute types, output is buffer set
531 gss_eap_attr_ctx::getAttributeTypes(gss_buffer_set_t *attrs)
533 eap_gss_get_attr_types_args args;
534 OM_uint32 major, minor;
538 major = gss_create_empty_buffer_set(&minor, attrs);
539 if (GSS_ERROR(major)) {
540 throw new std::bad_alloc;
546 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
547 gss_eap_attr_provider *provider = m_providers[i];
551 if (provider == NULL)
554 ret = provider->getAttributeTypes(addAttribute, (void *)&args);
560 gss_release_buffer_set(&minor, attrs);
566 * Get attribute with given name
569 gss_eap_attr_ctx::getAttribute(const gss_buffer_t attr,
573 gss_buffer_t display_value,
576 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
578 gss_eap_attr_provider *provider;
581 decomposeAttributeName(attr, &type, &suffix);
583 provider = m_providers[type];
584 if (provider == NULL)
587 ret = provider->getAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix,
588 authenticated, complete,
589 value, display_value, more);
595 * Map attribute context to C++ object
598 gss_eap_attr_ctx::mapToAny(int authenticated,
599 gss_buffer_t type_id) const
602 gss_eap_attr_provider *provider;
603 gss_buffer_desc suffix;
605 decomposeAttributeName(type_id, &type, &suffix);
607 provider = m_providers[type];
608 if (provider == NULL)
609 return (gss_any_t)NULL;
611 return provider->mapToAny(authenticated, &suffix);
615 * Release mapped context
618 gss_eap_attr_ctx::releaseAnyNameMapping(gss_buffer_t type_id,
619 gss_any_t input) const
622 gss_eap_attr_provider *provider;
623 gss_buffer_desc suffix;
625 decomposeAttributeName(type_id, &type, &suffix);
627 provider = m_providers[type];
628 if (provider != NULL)
629 provider->releaseAnyNameMapping(&suffix, input);
633 * Export attribute context to buffer
636 gss_eap_attr_ctx::exportToBuffer(gss_buffer_t buffer) const
638 DDF obj = marshall();
639 std::ostringstream sink;
642 std::string str = sink.str();
644 duplicateBuffer(str, buffer);
650 * Return soonest expiry time of providers
653 gss_eap_attr_ctx::getExpiryTime(void) const
656 time_t expiryTime = 0;
658 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
659 gss_eap_attr_provider *provider = m_providers[i];
660 time_t providerExpiryTime;
662 if (provider == NULL)
665 providerExpiryTime = provider->getExpiryTime();
666 if (providerExpiryTime == 0)
669 if (expiryTime == 0 || providerExpiryTime < expiryTime)
670 expiryTime = providerExpiryTime;
677 gss_eap_attr_ctx::mapException(OM_uint32 *minor, std::exception &e) const
682 /* Errors we handle ourselves */
683 major = GSS_S_FAILURE;
685 if (typeid(e) == typeid(std::bad_alloc)) {
690 /* Errors we delegate to providers */
691 major = GSS_S_CONTINUE_NEEDED;
693 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
694 gss_eap_attr_provider *provider = m_providers[i];
696 if (provider == NULL)
699 major = provider->mapException(minor, e);
700 if (major != GSS_S_CONTINUE_NEEDED)
704 if (major == GSS_S_CONTINUE_NEEDED) {
705 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
706 major = GSS_S_FAILURE;
711 /* rethrow for now for debugging */
715 assert(GSS_ERROR(major));
721 * Decompose attribute name into prefix and suffix
724 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
731 for (i = 0; i < attribute->length; i++) {
732 if (((char *)attribute->value)[i] == ' ') {
733 p = (char *)attribute->value + i + 1;
738 prefix->value = attribute->value;
741 if (p != NULL && *p != '\0') {
742 suffix->length = attribute->length - 1 - prefix->length;
746 suffix->value = NULL;
751 * Decompose attribute name into type and suffix
754 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
756 gss_buffer_t suffix) const
758 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
760 decomposeAttributeName(attribute, &prefix, suffix);
761 *type = attributePrefixToType(&prefix);
765 * Compose attribute name from prefix, suffix; returns C++ string
768 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
769 const gss_buffer_t suffix)
773 if (prefix == GSS_C_NO_BUFFER || prefix->length == 0)
776 str.append((const char *)prefix->value, prefix->length);
778 if (suffix != GSS_C_NO_BUFFER) {
780 str.append((const char *)suffix->value, suffix->length);
787 * Compose attribute name from type, suffix; returns C++ string
790 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
791 const gss_buffer_t suffix)
793 gss_buffer_desc prefix = attributeTypeToPrefix(type);
795 return composeAttributeName(&prefix, suffix);
799 * Compose attribute name from prefix, suffix; returns GSS buffer
802 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
803 const gss_buffer_t suffix,
804 gss_buffer_t attribute)
806 std::string str = composeAttributeName(prefix, suffix);
808 if (str.length() != 0) {
809 return duplicateBuffer(str, attribute);
811 attribute->length = 0;
812 attribute->value = NULL;
817 * Compose attribute name from type, suffix; returns GSS buffer
820 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
821 const gss_buffer_t suffix,
822 gss_buffer_t attribute) const
824 gss_buffer_desc prefix = attributeTypeToPrefix(type);
826 return composeAttributeName(&prefix, suffix, attribute);
833 gssEapInquireName(OM_uint32 *minor,
837 gss_buffer_set_t *attrs)
841 if (name_is_MN != NULL)
842 *name_is_MN = (name->mechanismUsed != GSS_C_NULL_OID);
844 if (MN_mech != NULL) {
845 major = gssEapCanonicalizeOid(minor, name->mechanismUsed,
846 OID_FLAG_NULL_VALID, MN_mech);
847 if (GSS_ERROR(major))
851 if (name->attrCtx == NULL) {
852 *minor = GSSEAP_NO_ATTR_CONTEXT;
853 return GSS_S_UNAVAILABLE;
856 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
857 return GSS_S_UNAVAILABLE;
861 if (!name->attrCtx->getAttributeTypes(attrs)) {
862 *minor = GSSEAP_NO_ATTR_CONTEXT;
863 return GSS_S_UNAVAILABLE;
865 } catch (std::exception &e) {
866 return name->attrCtx->mapException(minor, e);
869 return GSS_S_COMPLETE;
873 gssEapGetNameAttribute(OM_uint32 *minor,
879 gss_buffer_t display_value,
890 if (display_value != NULL) {
891 display_value->length = 0;
892 display_value->value = NULL;
895 if (name->attrCtx == NULL) {
896 *minor = GSSEAP_NO_ATTR_CONTEXT;
897 return GSS_S_UNAVAILABLE;
900 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
901 return GSS_S_UNAVAILABLE;
905 if (!name->attrCtx->getAttribute(attr, authenticated, complete,
906 value, display_value, more)) {
907 *minor = GSSEAP_NO_SUCH_ATTR;
908 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
909 (int)attr->length, (char *)attr->value);
910 return GSS_S_UNAVAILABLE;
912 } catch (std::exception &e) {
913 return name->attrCtx->mapException(minor, e);
916 return GSS_S_COMPLETE;
920 gssEapDeleteNameAttribute(OM_uint32 *minor,
924 if (name->attrCtx == NULL) {
925 *minor = GSSEAP_NO_ATTR_CONTEXT;
926 return GSS_S_UNAVAILABLE;
929 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
930 return GSS_S_UNAVAILABLE;
933 if (!name->attrCtx->deleteAttribute(attr)) {
934 *minor = GSSEAP_NO_SUCH_ATTR;
935 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
936 (int)attr->length, (char *)attr->value);
937 return GSS_S_UNAVAILABLE;
939 } catch (std::exception &e) {
940 return name->attrCtx->mapException(minor, e);
943 return GSS_S_COMPLETE;
947 gssEapSetNameAttribute(OM_uint32 *minor,
953 if (name->attrCtx == NULL) {
954 *minor = GSSEAP_NO_ATTR_CONTEXT;
955 return GSS_S_UNAVAILABLE;
958 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
959 return GSS_S_UNAVAILABLE;
962 if (!name->attrCtx->setAttribute(complete, attr, value)) {
963 *minor = GSSEAP_NO_SUCH_ATTR;
964 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
965 (int)attr->length, (char *)attr->value);
966 return GSS_S_UNAVAILABLE;
968 } catch (std::exception &e) {
969 return name->attrCtx->mapException(minor, e);
972 return GSS_S_COMPLETE;
976 gssEapExportAttrContext(OM_uint32 *minor,
980 if (name->attrCtx == NULL) {
982 buffer->value = NULL;
984 return GSS_S_COMPLETE;
987 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
988 return GSS_S_UNAVAILABLE;
991 name->attrCtx->exportToBuffer(buffer);
992 } catch (std::exception &e) {
993 return name->attrCtx->mapException(minor, e);
996 return GSS_S_COMPLETE;
1000 gssEapImportAttrContext(OM_uint32 *minor,
1001 gss_buffer_t buffer,
1004 gss_eap_attr_ctx *ctx = NULL;
1006 assert(name->attrCtx == NULL);
1008 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1009 return GSS_S_UNAVAILABLE;
1011 if (buffer->length != 0) {
1013 ctx = new gss_eap_attr_ctx();
1015 if (!ctx->initFromBuffer(buffer)) {
1017 *minor = GSSEAP_BAD_ATTR_TOKEN;
1018 return GSS_S_DEFECTIVE_TOKEN;
1020 name->attrCtx = ctx;
1021 } catch (std::exception &e) {
1023 return name->attrCtx->mapException(minor, e);
1027 return GSS_S_COMPLETE;
1031 gssEapDuplicateAttrContext(OM_uint32 *minor,
1035 gss_eap_attr_ctx *ctx = NULL;
1037 assert(out->attrCtx == NULL);
1039 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1040 return GSS_S_UNAVAILABLE;
1043 if (in->attrCtx != NULL) {
1044 ctx = new gss_eap_attr_ctx();
1045 if (!ctx->initFromExistingContext(in->attrCtx)) {
1047 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1048 return GSS_S_FAILURE;
1052 } catch (std::exception &e) {
1054 return in->attrCtx->mapException(minor, e);
1057 return GSS_S_COMPLETE;
1061 gssEapMapNameToAny(OM_uint32 *minor,
1064 gss_buffer_t type_id,
1067 if (name->attrCtx == NULL) {
1068 *minor = GSSEAP_NO_ATTR_CONTEXT;
1069 return GSS_S_UNAVAILABLE;
1072 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1073 return GSS_S_UNAVAILABLE;
1076 *output = name->attrCtx->mapToAny(authenticated, type_id);
1077 } catch (std::exception &e) {
1078 return name->attrCtx->mapException(minor, e);
1081 return GSS_S_COMPLETE;
1085 gssEapReleaseAnyNameMapping(OM_uint32 *minor,
1087 gss_buffer_t type_id,
1090 if (name->attrCtx == NULL) {
1091 *minor = GSSEAP_NO_ATTR_CONTEXT;
1092 return GSS_S_UNAVAILABLE;
1095 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1096 return GSS_S_UNAVAILABLE;
1100 name->attrCtx->releaseAnyNameMapping(type_id, *input);
1102 } catch (std::exception &e) {
1103 return name->attrCtx->mapException(minor, e);
1106 return GSS_S_COMPLETE;
1110 gssEapReleaseAttrContext(OM_uint32 *minor,
1113 if (name->attrCtx != NULL)
1114 delete name->attrCtx;
1117 return GSS_S_COMPLETE;
1121 * Public accessor for initialisng a context from a GSS context. Also
1122 * sets expiry time on GSS context as a side-effect.
1125 gssEapCreateAttrContext(OM_uint32 *minor,
1126 gss_cred_id_t gssCred,
1127 gss_ctx_id_t gssCtx,
1128 struct gss_eap_attr_ctx **pAttrContext,
1129 time_t *pExpiryTime)
1131 gss_eap_attr_ctx *ctx = NULL;
1134 assert(gssCtx != GSS_C_NO_CONTEXT);
1136 major = gssEapAttrProvidersInit(minor);
1137 if (GSS_ERROR(major))
1140 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1141 major = GSS_S_FAILURE;
1144 ctx = new gss_eap_attr_ctx();
1145 if (ctx->initFromGssContext(gssCred, gssCtx)) {
1147 major = GSS_S_COMPLETE;
1151 } catch (std::exception &e) {
1153 major = ctx->mapException(minor, e);
1156 if (major == GSS_S_COMPLETE) {
1157 *pAttrContext = ctx;
1158 *pExpiryTime = ctx->getExpiryTime();