* SUCH DAMAGE.
*/
+/*
+ * Establish a security context on the acceptor (server). These functions
+ * wrap around libradsec and (thus) talk to a RADIUS server or proxy.
+ */
+
#include "gssapiP_eap.h"
#ifdef GSSEAP_ENABLE_REAUTH
* SUCH DAMAGE.
*/
+/*
+ * Wrapper for acquiring a credential handle.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Wrapper for acquiring a credential handle using a password.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Wrapper for acquiring a credential handle.
+ */
+
#include "gssapiP_eap.h"
/*
* SUCH DAMAGE.
*/
+/*
+ * Wrapper for acquiring a credential handle using a password.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Function for canonicalizing a name; presently just duplicates it.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Compare two names.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Determine remaining lifetime of a context handle.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Wrapper for removing a name attribute.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Release a context handle.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Wrapper for "displaying" (returning string representation of) a name.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Parameterized version of gss_display_name(), currently unimplemented.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Function for converting mechanism error codes to strings.
+ */
+
#include "gssapiP_eap.h"
static GSSEAP_THREAD_ONCE gssEapStatusInfoKeyOnce = GSSEAP_ONCE_INITIALIZER;
* SUCH DAMAGE.
*/
+/*
+ * Duplicate a name.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Initialisation and finalise functions.
+ */
+
#include "gssapiP_eap.h"
static OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Serialise a name.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Serialise a name and its attributes.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
-#include "gssapiP_eap.h"
-
/*
- * Export a partially established acceptor context.
+ * Serialise a security context. On the acceptor, this may be partially
+ * established.
*/
+
+#include "gssapiP_eap.h"
+
static OM_uint32
gssEapExportPartialContext(OM_uint32 *minor,
gss_ctx_id_t ctx,
* SUCH DAMAGE.
*/
+/*
+ * Message protection services: make a message integerity check.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
gss_get_mic(OM_uint32 *minor,
gss_ctx_id_t ctx,
- gss_qop_t qop_req __attribute__((__unused__)),
+ gss_qop_t qop_req,
gss_buffer_t message_buffer,
gss_buffer_t message_token)
{
return GSS_S_NO_CONTEXT;
}
+ if (qop_req != GSS_C_QOP_DEFAULT) {
+ *minor = GSSEAP_UNKNOWN_QOP;
+ return GSS_S_UNAVAILABLE;
+ }
+
*minor = 0;
message_token->value = NULL;
#include "gssapiP_eap.h"
+/*
+ * Wrapper for retrieving a naming attribute.
+ */
+
OM_uint32
gss_get_name_attribute(OM_uint32 *minor,
gss_name_t name,
* SUCH DAMAGE.
*/
+/*
+ * Deserialise a name.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Deserialise a context handle.
+ */
+
#include "gssapiP_eap.h"
#define UPDATE_REMAIN(n) do { \
* SUCH DAMAGE.
*/
+/*
+ * Enumerate the supported mechanism OIDs.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Establish a security context on the initiator (client). These functions
+ * wrap around libeap.
+ */
+
#include "gssapiP_eap.h"
#ifdef GSSEAP_ENABLE_REAUTH
* SUCH DAMAGE.
*/
+/*
+ * Enumerate the features supported by the GSS EAP mechanism.
+ */
+
#include "gssapiP_eap.h"
#define MA_ADD(ma, set) do { \
* SUCH DAMAGE.
*/
+/*
+ * Return context handle properties.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Return credential handle properties.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Return extended credential handle properties.
+ */
+
#include "gssapiP_eap.h"
static struct {
* SUCH DAMAGE.
*/
+/*
+ * Map mechanism OID to a SASL mechanism name.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Determine mechanism OIDs supported by name.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Enumerate name attributes.
+ */
+
#include "gssapiP_eap.h"
OM_uint32 gss_inquire_name(OM_uint32 *minor,
* SUCH DAMAGE.
*/
+/*
+ * Return supported name OID types.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Map SASL mechanism name to a mechanism OID.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Return extended properties of a context handle.
+ */
+
#include "gssapiP_eap.h"
static OM_uint32
* or implied warranty.
*/
+/*
+ * PRF
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Release a credential handle.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Release a name.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Mark an internalized OID as not required to be released.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Set an extended property on a credential handle.
+ */
+
#include "gssapiP_eap.h"
static OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Set an attribute on a name.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Set an extended property on a context handle.
+ */
+
#include "gssapiP_eap.h"
static struct {
* SUCH DAMAGE.
*/
+/*
+ * Message protection services: unwrap.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* or implied warranty.
*/
+/*
+ * Message protection services: unwrap with scatter-gather API.
+ */
+
#include "gssapiP_eap.h"
/*
*
*/
+/*
+ * Utility functions.
+ */
+
#ifndef _UTIL_H_
#define _UTIL_H_ 1
* SUCH DAMAGE.
*/
+/*
+ * Attribute provider mechanism.
+ */
+
#include "gssapiP_eap.h"
#include <typeinfo>
* SUCH DAMAGE.
*/
+/*
+ * Attribute provider interface.
+ */
+
#ifndef _UTIL_ATTR_H_
#define _UTIL_ATTR_H_ 1
* SUCH DAMAGE.
*/
+/*
+ * Buffer handling helpers.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* PERFORMANCE OF THIS SOFTWARE.
*/
+/*
+ * Message protection services: checksum helpers.
+ */
+
#include "gssapiP_eap.h"
static int
* SUCH DAMAGE.
*/
+/*
+ * Utility routines for context handles.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Utility routines for credential handles.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
*/
+/*
+ * Message protection services: cryptography helpers.
+ */
+
#include "gssapiP_eap.h"
/*
* SUCH DAMAGE.
*/
+/*
+ * Extension token support.
+ */
+
#include "gssapiP_eap.h"
static OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Kerberos 5 helpers.
+ */
+
#include "gssapiP_eap.h"
static GSSEAP_THREAD_ONCE krbContextKeyOnce = GSSEAP_ONCE_INITIALIZER;
* SUCH DAMAGE.
*/
+/*
+ * "Lucid" security context export routine (called by MIT Kerberos mechanism).
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * General mechanism utility routines.
+ */
+
#include "gssapiP_eap.h"
/*
* or implied warranty.
*/
+/*
+ * Name utility routines.
+ */
+
#include "gssapiP_eap.h"
static gss_OID_desc gssEapNtPrincipalName = {
*
*/
+/*
+ * OID utility routines.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
*/
/*
- * $Id: util_ordering.c 23457 2009-12-08 00:04:48Z tlyu $
- */
-
-/*
- * functions to check sequence numbers for replay and sequencing
+ * Functions to check sequence numbers for replay and sequencing
*/
#include "gssapiP_eap.h"
* SUCH DAMAGE.
*/
+/*
+ * RADIUS attribute provider implementation.
+ */
+
#include "gssapiP_eap.h"
/* stuff that should be provided by libradsec/libfreeradius-radius */
* SUCH DAMAGE.
*/
+/*
+ * RADIUS attribute provider.
+ */
+
#ifndef _UTIL_RADIUS_H_
#define _UTIL_RADIUS_H_ 1
* SUCH DAMAGE.
*/
+/*
+ * Fast reauthentication support.
+ */
+
#include "gssapiP_eap.h"
#include <dlfcn.h>
* SUCH DAMAGE.
*/
+/*
+ * Fast reauthentication support.
+ */
+
#include "gssapiP_eap.h"
#ifndef _UTIL_REAUTH_H_
#define _UTIL_REAUTH_H_ 1
+/* AD element containing serialised AVPs. */
#define KRB5_AUTHDATA_RADIUS_AVP 513
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * SAML attribute provider implementation.
+ */
+
#include "gssapiP_eap.h"
#include <sstream>
* SUCH DAMAGE.
*/
+/*
+ * SAML attribute provider.
+ */
+
#ifndef _UTIL_SAML_H_
#define _UTIL_SAML_H_ 1
* limitations under the License.
*/
+/*
+ * Local attribute provider implementation.
+ */
+
#include <shibsp/exceptions.h>
#include <shibsp/attribute/SimpleAttribute.h>
* SUCH DAMAGE.
*/
+/*
+ * Local attribute provider.
+ */
+
#ifndef _UTIL_SHIB_H_
#define _UTIL_SHIB_H_ 1
* PERFORMANCE OF THIS SOFTWARE.
*/
+/*
+ * Utility routines for GSS tokens.
+ */
+
#include "gssapiP_eap.h"
/*
* SUCH DAMAGE.
*/
+/*
+ * Message protection services: verify a message integrity check.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* SUCH DAMAGE.
*/
+/*
+ * Message protection services: wrap.
+ */
+
#include "gssapiP_eap.h"
OM_uint32
* or implied warranty.
*/
+/*
+ * Message protection services: wrap with scatter-gather API.
+ */
+
#include "gssapiP_eap.h"
unsigned char
return GSS_S_NO_CONTEXT;
}
+ if (qop_req != GSS_C_QOP_DEFAULT) {
+ *minor = GSSEAP_UNKNOWN_QOP;
+ return GSS_S_UNAVAILABLE;
+ }
+
*minor = 0;
GSSEAP_MUTEX_LOCK(&ctx->mutex);
* or implied warranty.
*/
+/*
+ * Message protection services: determine protected message size.
+ */
+
#include "gssapiP_eap.h"
#define INIT_IOV_DATA(_iov) do { (_iov)->buffer.value = NULL; \
int dce_style;
size_t ec;
- if (qop_req != GSS_C_QOP_DEFAULT)
- return GSS_S_FAILURE;
+ if (qop_req != GSS_C_QOP_DEFAULT) {
+ *minor = GSSEAP_UNKNOWN_QOP;
+ return GSS_S_UNAVAILABLE;
+ }
- if (ctx->encryptionType == ENCTYPE_NULL)
+ if (ctx->encryptionType == ENCTYPE_NULL) {
+ *minor = GSSEAP_KEY_UNAVAILABLE;
return GSS_S_UNAVAILABLE;
+ }
GSSEAP_KRB_INIT(&krbContext);
* SUCH DAMAGE.
*/
+/*
+ * Message protection services: determine maximum input size.
+ */
+
#include "gssapiP_eap.h"
OM_uint32