2 * Copyright (c) 2011, JANET(UK)
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of JANET(UK) nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 * Attribute provider mechanism.
37 #include "gssapiP_eap.h"
46 /* lazy initialisation */
47 static GSSEAP_THREAD_ONCE gssEapAttrProvidersInitOnce = GSSEAP_ONCE_INITIALIZER;
48 static OM_uint32 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
51 gssEapAttrProvidersInitInternal(void)
53 OM_uint32 major, minor;
55 assert(gssEapAttrProvidersInitStatus == GSS_S_UNAVAILABLE);
57 major = gssEapRadiusAttrProviderInit(&minor);
58 if (major == GSS_S_COMPLETE)
59 major = gssEapSamlAttrProvidersInit(&minor);
60 if (major == GSS_S_COMPLETE)
61 major = gssEapLocalAttrProviderInit(&minor);
64 assert(major == GSS_S_COMPLETE);
67 gssEapAttrProvidersInitStatus = major;
71 gssEapAttrProvidersInit(OM_uint32 *minor)
73 GSSEAP_ONCE(&gssEapAttrProvidersInitOnce, gssEapAttrProvidersInitInternal);
75 if (GSS_ERROR(gssEapAttrProvidersInitStatus))
76 *minor = GSSEAP_NO_ATTR_PROVIDERS;
78 return gssEapAttrProvidersInitStatus;
82 gssEapAttrProvidersFinalize(OM_uint32 *minor)
84 OM_uint32 major = GSS_S_COMPLETE;
86 if (gssEapAttrProvidersInitStatus == GSS_S_COMPLETE) {
87 major = gssEapLocalAttrProviderFinalize(minor);
88 if (major == GSS_S_COMPLETE)
89 major = gssEapSamlAttrProvidersFinalize(minor);
90 if (major == GSS_S_COMPLETE)
91 major = gssEapRadiusAttrProviderFinalize(minor);
93 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
99 static gss_eap_attr_create_provider gssEapAttrFactories[ATTR_TYPE_MAX + 1];
102 * Register a provider for a particular type and prefix
105 gss_eap_attr_ctx::registerProvider(unsigned int type,
106 gss_eap_attr_create_provider factory)
108 assert(type <= ATTR_TYPE_MAX);
110 assert(gssEapAttrFactories[type] == NULL);
112 gssEapAttrFactories[type] = factory;
116 * Unregister a provider
119 gss_eap_attr_ctx::unregisterProvider(unsigned int type)
121 assert(type <= ATTR_TYPE_MAX);
123 gssEapAttrFactories[type] = NULL;
127 * Create an attribute context, that manages instances of providers
129 gss_eap_attr_ctx::gss_eap_attr_ctx(void)
133 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
134 gss_eap_attr_provider *provider;
136 if (gssEapAttrFactories[i] != NULL) {
137 provider = (gssEapAttrFactories[i])();
142 m_providers[i] = provider;
147 * Convert an attribute prefix to a type
150 gss_eap_attr_ctx::attributePrefixToType(const gss_buffer_t prefix) const
154 for (i = ATTR_TYPE_MIN; i < ATTR_TYPE_MAX; i++) {
157 if (!providerEnabled(i))
160 pprefix = m_providers[i]->prefix();
164 if (strlen(pprefix) == prefix->length &&
165 memcmp(pprefix, prefix->value, prefix->length) == 0)
169 return ATTR_TYPE_LOCAL;
173 * Convert a type to an attribute prefix
176 gss_eap_attr_ctx::attributeTypeToPrefix(unsigned int type) const
178 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
180 if (type < ATTR_TYPE_MIN || type >= ATTR_TYPE_MAX)
183 if (!providerEnabled(type))
186 prefix.value = (void *)m_providers[type]->prefix();
187 if (prefix.value != NULL)
188 prefix.length = strlen((char *)prefix.value);
194 gss_eap_attr_ctx::providerEnabled(unsigned int type) const
196 if (type == ATTR_TYPE_LOCAL &&
197 (m_flags & ATTR_FLAG_DISABLE_LOCAL))
200 if (m_providers[type] == NULL)
207 gss_eap_attr_ctx::releaseProvider(unsigned int type)
209 delete m_providers[type];
210 m_providers[type] = NULL;
214 * Initialize a context from an existing context.
217 gss_eap_attr_ctx::initFromExistingContext(const gss_eap_attr_ctx *manager)
221 m_flags = manager->m_flags;
223 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
224 gss_eap_attr_provider *provider;
226 if (!providerEnabled(i)) {
231 provider = m_providers[i];
233 ret = provider->initFromExistingContext(this,
234 manager->m_providers[i]);
245 * Initialize a context from a GSS credential and context.
248 gss_eap_attr_ctx::initFromGssContext(const gss_cred_id_t cred,
249 const gss_ctx_id_t ctx)
253 if (cred != GSS_C_NO_CREDENTIAL &&
254 (cred->flags & GSS_EAP_DISABLE_LOCAL_ATTRS_FLAG)) {
255 m_flags |= ATTR_FLAG_DISABLE_LOCAL;
258 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
259 gss_eap_attr_provider *provider;
261 if (!providerEnabled(i)) {
266 provider = m_providers[i];
268 ret = provider->initFromGssContext(this, cred, ctx);
279 gss_eap_attr_ctx::initWithJsonObject(JSONObject &obj)
282 bool foundSource[ATTR_TYPE_MAX + 1];
285 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++)
286 foundSource[type] = false;
288 if (obj["version"].integer() != 1)
291 m_flags = obj["flags"].integer();
293 JSONObject sources = obj["sources"];
295 /* Initialize providers from serialized state */
296 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
297 gss_eap_attr_provider *provider;
300 if (!providerEnabled(type)) {
301 releaseProvider(type);
305 provider = m_providers[type];
306 key = provider->name();
310 JSONObject source = sources.get(key);
311 if (!source.isnull() &&
312 !provider->initWithJsonObject(this, source)) {
313 releaseProvider(type);
317 foundSource[type] = true;
320 /* Initialize remaining providers from initialized providers */
321 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
322 gss_eap_attr_provider *provider;
324 if (foundSource[type] || !providerEnabled(type))
327 provider = m_providers[type];
329 ret = provider->initFromGssContext(this,
333 releaseProvider(type);
342 gss_eap_attr_ctx::jsonRepresentation(void) const
344 JSONObject obj, sources;
347 obj.set("version", 1);
348 obj.set("flags", m_flags);
350 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
351 gss_eap_attr_provider *provider;
354 provider = m_providers[i];
355 if (provider == NULL)
356 continue; /* provider not initialised */
358 key = provider->name();
360 continue; /* provider does not have state */
362 JSONObject source = provider->jsonRepresentation();
363 sources.set(key, source);
366 obj.set("sources", sources);
372 * Initialize a context from an exported context or name token
375 gss_eap_attr_ctx::initFromBuffer(const gss_buffer_t buffer)
377 OM_uint32 major, minor;
382 major = bufferToString(&minor, buffer, &s);
383 if (GSS_ERROR(major))
386 JSONObject obj = JSONObject::load(s, 0, &error);
388 ret = initWithJsonObject(obj);
397 gss_eap_attr_ctx::~gss_eap_attr_ctx(void)
399 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++)
400 delete m_providers[i];
404 * Locate provider for a given type
406 gss_eap_attr_provider *
407 gss_eap_attr_ctx::getProvider(unsigned int type) const
409 assert(type >= ATTR_TYPE_MIN && type <= ATTR_TYPE_MAX);
410 return m_providers[type];
414 * Get primary provider. Only the primary provider is serialised when
415 * gss_export_sec_context() or gss_export_name_composite() is called.
417 gss_eap_attr_provider *
418 gss_eap_attr_ctx::getPrimaryProvider(void) const
420 return m_providers[ATTR_TYPE_MIN];
427 gss_eap_attr_ctx::setAttribute(int complete,
428 const gss_buffer_t attr,
429 const gss_buffer_t value)
431 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
433 gss_eap_attr_provider *provider;
436 decomposeAttributeName(attr, &type, &suffix);
438 provider = m_providers[type];
439 if (provider != NULL) {
440 ret = provider->setAttribute(complete,
441 (type == ATTR_TYPE_LOCAL) ? attr : &suffix,
449 * Delete an attrbiute
452 gss_eap_attr_ctx::deleteAttribute(const gss_buffer_t attr)
454 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
456 gss_eap_attr_provider *provider;
459 decomposeAttributeName(attr, &type, &suffix);
461 provider = m_providers[type];
462 if (provider != NULL) {
463 ret = provider->deleteAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix);
470 * Enumerate attribute types with callback
473 gss_eap_attr_ctx::getAttributeTypes(gss_eap_attr_enumeration_cb cb, void *data) const
478 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
479 gss_eap_attr_provider *provider = m_providers[i];
481 if (provider == NULL)
484 ret = provider->getAttributeTypes(cb, data);
492 struct eap_gss_get_attr_types_args {
494 gss_buffer_set_t attrs;
498 addAttribute(const gss_eap_attr_ctx *manager,
499 const gss_eap_attr_provider *provider GSSEAP_UNUSED,
500 const gss_buffer_t attribute,
503 eap_gss_get_attr_types_args *args = (eap_gss_get_attr_types_args *)data;
504 gss_buffer_desc qualified;
505 OM_uint32 major, minor;
507 if (args->type != ATTR_TYPE_LOCAL) {
508 manager->composeAttributeName(args->type, attribute, &qualified);
509 major = gss_add_buffer_set_member(&minor, &qualified, &args->attrs);
510 gss_release_buffer(&minor, &qualified);
512 major = gss_add_buffer_set_member(&minor, attribute, &args->attrs);
515 return GSS_ERROR(major) == false;
519 * Enumerate attribute types, output is buffer set
522 gss_eap_attr_ctx::getAttributeTypes(gss_buffer_set_t *attrs)
524 eap_gss_get_attr_types_args args;
525 OM_uint32 major, minor;
529 major = gss_create_empty_buffer_set(&minor, attrs);
530 if (GSS_ERROR(major))
531 throw new std::bad_alloc;
535 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
536 gss_eap_attr_provider *provider = m_providers[i];
540 if (provider == NULL)
543 ret = provider->getAttributeTypes(addAttribute, (void *)&args);
549 gss_release_buffer_set(&minor, attrs);
555 * Get attribute with given name
558 gss_eap_attr_ctx::getAttribute(const gss_buffer_t attr,
562 gss_buffer_t display_value,
565 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
567 gss_eap_attr_provider *provider;
570 decomposeAttributeName(attr, &type, &suffix);
572 provider = m_providers[type];
573 if (provider == NULL)
576 ret = provider->getAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix,
577 authenticated, complete,
578 value, display_value, more);
584 * Map attribute context to C++ object
587 gss_eap_attr_ctx::mapToAny(int authenticated,
588 gss_buffer_t type_id) const
591 gss_eap_attr_provider *provider;
592 gss_buffer_desc suffix;
594 decomposeAttributeName(type_id, &type, &suffix);
596 provider = m_providers[type];
597 if (provider == NULL)
598 return (gss_any_t)NULL;
600 return provider->mapToAny(authenticated, &suffix);
604 * Release mapped context
607 gss_eap_attr_ctx::releaseAnyNameMapping(gss_buffer_t type_id,
608 gss_any_t input) const
611 gss_eap_attr_provider *provider;
612 gss_buffer_desc suffix;
614 decomposeAttributeName(type_id, &type, &suffix);
616 provider = m_providers[type];
617 if (provider != NULL)
618 provider->releaseAnyNameMapping(&suffix, input);
622 * Export attribute context to buffer
625 gss_eap_attr_ctx::exportToBuffer(gss_buffer_t buffer) const
630 JSONObject obj = jsonRepresentation();
633 obj.dump(stdout, JSON_INDENT(3));
636 s = obj.dump(JSON_COMPACT);
638 if (GSS_ERROR(makeStringBuffer(&minor, s, buffer)))
639 throw new std::bad_alloc;
643 * Return soonest expiry time of providers
646 gss_eap_attr_ctx::getExpiryTime(void) const
649 time_t expiryTime = 0;
651 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
652 gss_eap_attr_provider *provider = m_providers[i];
653 time_t providerExpiryTime;
655 if (provider == NULL)
658 providerExpiryTime = provider->getExpiryTime();
659 if (providerExpiryTime == 0)
662 if (expiryTime == 0 || providerExpiryTime < expiryTime)
663 expiryTime = providerExpiryTime;
670 gss_eap_attr_ctx::mapException(OM_uint32 *minor, std::exception &e) const
675 /* Errors we handle ourselves */
676 major = GSS_S_FAILURE;
678 if (typeid(e) == typeid(std::bad_alloc)) {
683 /* Errors we delegate to providers */
684 major = GSS_S_CONTINUE_NEEDED;
686 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
687 gss_eap_attr_provider *provider = m_providers[i];
689 if (provider == NULL)
692 major = provider->mapException(minor, e);
693 if (major != GSS_S_CONTINUE_NEEDED)
697 if (major == GSS_S_CONTINUE_NEEDED) {
698 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
699 major = GSS_S_FAILURE;
704 /* rethrow for now for debugging */
708 assert(GSS_ERROR(major));
714 * Decompose attribute name into prefix and suffix
717 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
724 for (i = 0; i < attribute->length; i++) {
725 if (((char *)attribute->value)[i] == ' ') {
726 p = (char *)attribute->value + i + 1;
731 prefix->value = attribute->value;
734 if (p != NULL && *p != '\0') {
735 suffix->length = attribute->length - 1 - prefix->length;
739 suffix->value = NULL;
744 * Decompose attribute name into type and suffix
747 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
749 gss_buffer_t suffix) const
751 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
753 decomposeAttributeName(attribute, &prefix, suffix);
754 *type = attributePrefixToType(&prefix);
758 * Compose attribute name from prefix, suffix; returns C++ string
761 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
762 const gss_buffer_t suffix)
766 if (prefix == GSS_C_NO_BUFFER || prefix->length == 0)
769 str.append((const char *)prefix->value, prefix->length);
771 if (suffix != GSS_C_NO_BUFFER) {
773 str.append((const char *)suffix->value, suffix->length);
780 * Compose attribute name from type, suffix; returns C++ string
783 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
784 const gss_buffer_t suffix)
786 gss_buffer_desc prefix = attributeTypeToPrefix(type);
788 return composeAttributeName(&prefix, suffix);
792 * Compose attribute name from prefix, suffix; returns GSS buffer
795 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
796 const gss_buffer_t suffix,
797 gss_buffer_t attribute)
799 std::string str = composeAttributeName(prefix, suffix);
801 if (str.length() != 0) {
802 return duplicateBuffer(str, attribute);
804 attribute->length = 0;
805 attribute->value = NULL;
810 * Compose attribute name from type, suffix; returns GSS buffer
813 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
814 const gss_buffer_t suffix,
815 gss_buffer_t attribute) const
817 gss_buffer_desc prefix = attributeTypeToPrefix(type);
819 return composeAttributeName(&prefix, suffix, attribute);
826 gssEapInquireName(OM_uint32 *minor,
830 gss_buffer_set_t *attrs)
834 if (name_is_MN != NULL)
835 *name_is_MN = (name->mechanismUsed != GSS_C_NULL_OID);
837 if (MN_mech != NULL) {
838 major = gssEapCanonicalizeOid(minor, name->mechanismUsed,
839 OID_FLAG_NULL_VALID, MN_mech);
840 if (GSS_ERROR(major))
844 if (name->attrCtx == NULL) {
845 *minor = GSSEAP_NO_ATTR_CONTEXT;
846 return GSS_S_UNAVAILABLE;
849 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
850 return GSS_S_UNAVAILABLE;
854 if (!name->attrCtx->getAttributeTypes(attrs)) {
855 *minor = GSSEAP_NO_ATTR_CONTEXT;
856 return GSS_S_UNAVAILABLE;
858 } catch (std::exception &e) {
859 return name->attrCtx->mapException(minor, e);
862 return GSS_S_COMPLETE;
866 gssEapGetNameAttribute(OM_uint32 *minor,
872 gss_buffer_t display_value,
883 if (display_value != NULL) {
884 display_value->length = 0;
885 display_value->value = NULL;
888 if (name->attrCtx == NULL) {
889 *minor = GSSEAP_NO_ATTR_CONTEXT;
890 return GSS_S_UNAVAILABLE;
893 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
894 return GSS_S_UNAVAILABLE;
898 if (!name->attrCtx->getAttribute(attr, authenticated, complete,
899 value, display_value, more)) {
900 *minor = GSSEAP_NO_SUCH_ATTR;
901 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
902 (int)attr->length, (char *)attr->value);
903 return GSS_S_UNAVAILABLE;
905 } catch (std::exception &e) {
906 return name->attrCtx->mapException(minor, e);
909 return GSS_S_COMPLETE;
913 gssEapDeleteNameAttribute(OM_uint32 *minor,
917 if (name->attrCtx == NULL) {
918 *minor = GSSEAP_NO_ATTR_CONTEXT;
919 return GSS_S_UNAVAILABLE;
922 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
923 return GSS_S_UNAVAILABLE;
926 if (!name->attrCtx->deleteAttribute(attr)) {
927 *minor = GSSEAP_NO_SUCH_ATTR;
928 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
929 (int)attr->length, (char *)attr->value);
930 return GSS_S_UNAVAILABLE;
932 } catch (std::exception &e) {
933 return name->attrCtx->mapException(minor, e);
936 return GSS_S_COMPLETE;
940 gssEapSetNameAttribute(OM_uint32 *minor,
946 if (name->attrCtx == NULL) {
947 *minor = GSSEAP_NO_ATTR_CONTEXT;
948 return GSS_S_UNAVAILABLE;
951 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
952 return GSS_S_UNAVAILABLE;
955 if (!name->attrCtx->setAttribute(complete, attr, value)) {
956 *minor = GSSEAP_NO_SUCH_ATTR;
957 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
958 (int)attr->length, (char *)attr->value);
959 return GSS_S_UNAVAILABLE;
961 } catch (std::exception &e) {
962 return name->attrCtx->mapException(minor, e);
965 return GSS_S_COMPLETE;
969 gssEapExportAttrContext(OM_uint32 *minor,
973 if (name->attrCtx == NULL) {
975 buffer->value = NULL;
977 return GSS_S_COMPLETE;
980 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
981 return GSS_S_UNAVAILABLE;
984 name->attrCtx->exportToBuffer(buffer);
985 } catch (std::exception &e) {
986 return name->attrCtx->mapException(minor, e);
989 return GSS_S_COMPLETE;
993 gssEapImportAttrContext(OM_uint32 *minor,
997 gss_eap_attr_ctx *ctx = NULL;
999 assert(name->attrCtx == NULL);
1001 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1002 return GSS_S_UNAVAILABLE;
1004 if (buffer->length != 0) {
1006 ctx = new gss_eap_attr_ctx();
1008 if (!ctx->initFromBuffer(buffer)) {
1010 *minor = GSSEAP_BAD_ATTR_TOKEN;
1011 return GSS_S_DEFECTIVE_TOKEN;
1013 name->attrCtx = ctx;
1014 } catch (std::exception &e) {
1016 return name->attrCtx->mapException(minor, e);
1020 return GSS_S_COMPLETE;
1024 gssEapDuplicateAttrContext(OM_uint32 *minor,
1028 gss_eap_attr_ctx *ctx = NULL;
1030 assert(out->attrCtx == NULL);
1032 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1033 return GSS_S_UNAVAILABLE;
1036 if (in->attrCtx != NULL) {
1037 ctx = new gss_eap_attr_ctx();
1038 if (!ctx->initFromExistingContext(in->attrCtx)) {
1040 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1041 return GSS_S_FAILURE;
1045 } catch (std::exception &e) {
1047 return in->attrCtx->mapException(minor, e);
1050 return GSS_S_COMPLETE;
1054 gssEapMapNameToAny(OM_uint32 *minor,
1057 gss_buffer_t type_id,
1060 if (name->attrCtx == NULL) {
1061 *minor = GSSEAP_NO_ATTR_CONTEXT;
1062 return GSS_S_UNAVAILABLE;
1065 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1066 return GSS_S_UNAVAILABLE;
1069 *output = name->attrCtx->mapToAny(authenticated, type_id);
1070 } catch (std::exception &e) {
1071 return name->attrCtx->mapException(minor, e);
1074 return GSS_S_COMPLETE;
1078 gssEapReleaseAnyNameMapping(OM_uint32 *minor,
1080 gss_buffer_t type_id,
1083 if (name->attrCtx == NULL) {
1084 *minor = GSSEAP_NO_ATTR_CONTEXT;
1085 return GSS_S_UNAVAILABLE;
1088 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1089 return GSS_S_UNAVAILABLE;
1093 name->attrCtx->releaseAnyNameMapping(type_id, *input);
1095 } catch (std::exception &e) {
1096 return name->attrCtx->mapException(minor, e);
1099 return GSS_S_COMPLETE;
1103 gssEapReleaseAttrContext(OM_uint32 *minor,
1106 if (name->attrCtx != NULL)
1107 delete name->attrCtx;
1110 return GSS_S_COMPLETE;
1114 * Public accessor for initialisng a context from a GSS context. Also
1115 * sets expiry time on GSS context as a side-effect.
1118 gssEapCreateAttrContext(OM_uint32 *minor,
1119 gss_cred_id_t gssCred,
1120 gss_ctx_id_t gssCtx,
1121 struct gss_eap_attr_ctx **pAttrContext,
1122 time_t *pExpiryTime)
1124 gss_eap_attr_ctx *ctx = NULL;
1127 assert(gssCtx != GSS_C_NO_CONTEXT);
1129 major = gssEapAttrProvidersInit(minor);
1130 if (GSS_ERROR(major))
1133 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1134 major = GSS_S_FAILURE;
1137 ctx = new gss_eap_attr_ctx();
1138 if (ctx->initFromGssContext(gssCred, gssCtx)) {
1140 major = GSS_S_COMPLETE;
1144 } catch (std::exception &e) {
1146 major = ctx->mapException(minor, e);
1149 if (major == GSS_S_COMPLETE) {
1150 *pAttrContext = ctx;
1151 *pExpiryTime = ctx->getExpiryTime();