2 * Copyright (c) 2011, JANET(UK)
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of JANET(UK) nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 * Attribute provider mechanism.
37 #include "gssapiP_eap.h"
44 /* lazy initialisation */
45 static GSSEAP_THREAD_ONCE gssEapAttrProvidersInitOnce = GSSEAP_ONCE_INITIALIZER;
46 static OM_uint32 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
49 gssEapAttrProvidersInitInternal(void)
51 OM_uint32 major, minor;
53 assert(gssEapAttrProvidersInitStatus == GSS_S_UNAVAILABLE);
55 major = gssEapRadiusAttrProviderInit(&minor);
56 if (major == GSS_S_COMPLETE)
57 major = gssEapSamlAttrProvidersInit(&minor);
58 if (major == GSS_S_COMPLETE)
59 major = gssEapLocalAttrProviderInit(&minor);
62 assert(major == GSS_S_COMPLETE);
65 gssEapAttrProvidersInitStatus = major;
69 gssEapAttrProvidersInit(OM_uint32 *minor)
71 GSSEAP_ONCE(&gssEapAttrProvidersInitOnce, gssEapAttrProvidersInitInternal);
73 if (GSS_ERROR(gssEapAttrProvidersInitStatus))
74 *minor = GSSEAP_NO_ATTR_PROVIDERS;
76 return gssEapAttrProvidersInitStatus;
80 gssEapAttrProvidersFinalize(OM_uint32 *minor)
82 OM_uint32 major = GSS_S_COMPLETE;
84 if (gssEapAttrProvidersInitStatus == GSS_S_COMPLETE) {
85 major = gssEapLocalAttrProviderFinalize(minor);
86 if (major == GSS_S_COMPLETE)
87 major = gssEapSamlAttrProvidersFinalize(minor);
88 if (major == GSS_S_COMPLETE)
89 major = gssEapRadiusAttrProviderFinalize(minor);
91 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
97 static gss_eap_attr_create_provider gssEapAttrFactories[ATTR_TYPE_MAX + 1];
100 * Register a provider for a particular type and prefix
103 gss_eap_attr_ctx::registerProvider(unsigned int type,
104 gss_eap_attr_create_provider factory)
106 assert(type <= ATTR_TYPE_MAX);
108 assert(gssEapAttrFactories[type] == NULL);
110 gssEapAttrFactories[type] = factory;
114 * Unregister a provider
117 gss_eap_attr_ctx::unregisterProvider(unsigned int type)
119 assert(type <= ATTR_TYPE_MAX);
121 gssEapAttrFactories[type] = NULL;
125 * Create an attribute context, that manages instances of providers
127 gss_eap_attr_ctx::gss_eap_attr_ctx(void)
131 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
132 gss_eap_attr_provider *provider;
134 if (gssEapAttrFactories[i] != NULL) {
135 provider = (gssEapAttrFactories[i])();
140 m_providers[i] = provider;
145 * Convert an attribute prefix to a type
148 gss_eap_attr_ctx::attributePrefixToType(const gss_buffer_t prefix) const
152 for (i = ATTR_TYPE_MIN; i < ATTR_TYPE_MAX; i++) {
155 if (!providerEnabled(i))
158 pprefix = m_providers[i]->prefix();
162 if (strlen(pprefix) == prefix->length &&
163 memcmp(pprefix, prefix->value, prefix->length) == 0)
167 return ATTR_TYPE_LOCAL;
171 * Convert a type to an attribute prefix
174 gss_eap_attr_ctx::attributeTypeToPrefix(unsigned int type) const
176 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
178 if (type < ATTR_TYPE_MIN || type >= ATTR_TYPE_MAX)
181 if (!providerEnabled(type))
184 prefix.value = (void *)m_providers[type]->prefix();
185 if (prefix.value != NULL)
186 prefix.length = strlen((char *)prefix.value);
192 gss_eap_attr_ctx::providerEnabled(unsigned int type) const
194 if (type == ATTR_TYPE_LOCAL &&
195 (m_flags & ATTR_FLAG_DISABLE_LOCAL))
198 if (m_providers[type] == NULL)
205 gss_eap_attr_ctx::releaseProvider(unsigned int type)
207 delete m_providers[type];
208 m_providers[type] = NULL;
212 * Initialize a context from an existing context.
215 gss_eap_attr_ctx::initFromExistingContext(const gss_eap_attr_ctx *manager)
219 m_flags = manager->m_flags;
221 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
222 gss_eap_attr_provider *provider;
224 if (!providerEnabled(i)) {
229 provider = m_providers[i];
231 ret = provider->initFromExistingContext(this,
232 manager->m_providers[i]);
243 * Initialize a context from a GSS credential and context.
246 gss_eap_attr_ctx::initFromGssContext(const gss_cred_id_t cred,
247 const gss_ctx_id_t ctx)
251 if (cred != GSS_C_NO_CREDENTIAL &&
252 (cred->flags & GSS_EAP_DISABLE_LOCAL_ATTRS_FLAG)) {
253 m_flags |= ATTR_FLAG_DISABLE_LOCAL;
256 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
257 gss_eap_attr_provider *provider;
259 if (!providerEnabled(i)) {
264 provider = m_providers[i];
266 ret = provider->initFromGssContext(this, cred, ctx);
276 #define UPDATE_REMAIN(n) do { \
281 #define CHECK_REMAIN(n) do { \
282 if (remain < (n)) { \
288 * Initialize a context from an exported context or name token
291 gss_eap_attr_ctx::initFromBuffer(const gss_buffer_t buffer)
294 size_t remain = buffer->length;
295 unsigned char *p = (unsigned char *)buffer->value;
296 bool didInit[ATTR_TYPE_MAX + 1];
299 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++)
300 didInit[type] = false;
304 m_flags = load_uint32_be(p);
309 gss_buffer_desc providerToken;
310 gss_eap_attr_provider *provider;
312 /* TLV encoding of provider type, length, value */
314 type = load_uint32_be(p);
318 providerToken.length = load_uint32_be(p);
321 CHECK_REMAIN(providerToken.length);
322 providerToken.value = p;
323 UPDATE_REMAIN(providerToken.length);
325 if (type < ATTR_TYPE_MIN || type > ATTR_TYPE_MAX ||
329 if (!providerEnabled(type)) {
330 releaseProvider(type);
334 provider = m_providers[type];
336 ret = provider->initFromBuffer(this, &providerToken);
338 releaseProvider(type);
341 didInit[type] = true;
348 * The call the initFromGssContext methods for attribute
349 * providers that can initialize themselves from other
352 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
353 gss_eap_attr_provider *provider;
355 if (didInit[type] || !providerEnabled(type))
358 provider = m_providers[type];
360 ret = provider->initFromGssContext(this,
364 releaseProvider(type);
372 gss_eap_attr_ctx::~gss_eap_attr_ctx(void)
374 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++)
375 delete m_providers[i];
379 * Locate provider for a given type
381 gss_eap_attr_provider *
382 gss_eap_attr_ctx::getProvider(unsigned int type) const
384 assert(type >= ATTR_TYPE_MIN && type <= ATTR_TYPE_MAX);
385 return m_providers[type];
389 * Get primary provider. Only the primary provider is serialised when
390 * gss_export_sec_context() or gss_export_name_composite() is called.
392 gss_eap_attr_provider *
393 gss_eap_attr_ctx::getPrimaryProvider(void) const
395 return m_providers[ATTR_TYPE_MIN];
402 gss_eap_attr_ctx::setAttribute(int complete,
403 const gss_buffer_t attr,
404 const gss_buffer_t value)
406 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
408 gss_eap_attr_provider *provider;
411 decomposeAttributeName(attr, &type, &suffix);
413 provider = m_providers[type];
414 if (provider != NULL) {
415 ret = provider->setAttribute(complete,
416 (type == ATTR_TYPE_LOCAL) ? attr : &suffix,
424 * Delete an attrbiute
427 gss_eap_attr_ctx::deleteAttribute(const gss_buffer_t attr)
429 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
431 gss_eap_attr_provider *provider;
434 decomposeAttributeName(attr, &type, &suffix);
436 provider = m_providers[type];
437 if (provider != NULL) {
438 ret = provider->deleteAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix);
445 * Enumerate attribute types with callback
448 gss_eap_attr_ctx::getAttributeTypes(gss_eap_attr_enumeration_cb cb, void *data) const
453 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
454 gss_eap_attr_provider *provider = m_providers[i];
456 if (provider == NULL)
459 ret = provider->getAttributeTypes(cb, data);
467 struct eap_gss_get_attr_types_args {
469 gss_buffer_set_t attrs;
473 addAttribute(const gss_eap_attr_ctx *manager,
474 const gss_eap_attr_provider *provider GSSEAP_UNUSED,
475 const gss_buffer_t attribute,
478 eap_gss_get_attr_types_args *args = (eap_gss_get_attr_types_args *)data;
479 gss_buffer_desc qualified;
480 OM_uint32 major, minor;
482 if (args->type != ATTR_TYPE_LOCAL) {
483 manager->composeAttributeName(args->type, attribute, &qualified);
484 major = gss_add_buffer_set_member(&minor, &qualified, &args->attrs);
485 gss_release_buffer(&minor, &qualified);
487 major = gss_add_buffer_set_member(&minor, attribute, &args->attrs);
490 return GSS_ERROR(major) == false;
494 * Enumerate attribute types, output is buffer set
497 gss_eap_attr_ctx::getAttributeTypes(gss_buffer_set_t *attrs)
499 eap_gss_get_attr_types_args args;
500 OM_uint32 major, minor;
504 major = gss_create_empty_buffer_set(&minor, attrs);
505 if (GSS_ERROR(major)) {
506 throw new std::bad_alloc;
512 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
513 gss_eap_attr_provider *provider = m_providers[i];
517 if (provider == NULL)
520 ret = provider->getAttributeTypes(addAttribute, (void *)&args);
526 gss_release_buffer_set(&minor, attrs);
532 * Get attribute with given name
535 gss_eap_attr_ctx::getAttribute(const gss_buffer_t attr,
539 gss_buffer_t display_value,
542 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
544 gss_eap_attr_provider *provider;
547 decomposeAttributeName(attr, &type, &suffix);
549 provider = m_providers[type];
550 if (provider == NULL)
553 ret = provider->getAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix,
554 authenticated, complete,
555 value, display_value, more);
561 * Map attribute context to C++ object
564 gss_eap_attr_ctx::mapToAny(int authenticated,
565 gss_buffer_t type_id) const
568 gss_eap_attr_provider *provider;
569 gss_buffer_desc suffix;
571 decomposeAttributeName(type_id, &type, &suffix);
573 provider = m_providers[type];
574 if (provider == NULL)
575 return (gss_any_t)NULL;
577 return provider->mapToAny(authenticated, &suffix);
581 * Release mapped context
584 gss_eap_attr_ctx::releaseAnyNameMapping(gss_buffer_t type_id,
585 gss_any_t input) const
588 gss_eap_attr_provider *provider;
589 gss_buffer_desc suffix;
591 decomposeAttributeName(type_id, &type, &suffix);
593 provider = m_providers[type];
594 if (provider != NULL)
595 provider->releaseAnyNameMapping(&suffix, input);
599 * Export attribute context to buffer
602 gss_eap_attr_ctx::exportToBuffer(gss_buffer_t buffer) const
605 gss_buffer_desc providerTokens[ATTR_TYPE_MAX + 1];
606 size_t length = 4; /* m_flags */
610 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
611 providerTokens[i].length = 0;
612 providerTokens[i].value = NULL;
615 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
616 gss_eap_attr_provider *provider = m_providers[i];
618 if (provider == NULL)
621 provider->exportToBuffer(&providerTokens[i]);
623 if (providerTokens[i].value != NULL)
624 length += 8 + providerTokens[i].length;
627 buffer->length = length;
628 buffer->value = GSSEAP_MALLOC(length);
629 if (buffer->value == NULL)
630 throw new std::bad_alloc;
632 p = (unsigned char *)buffer->value;
633 store_uint32_be(m_flags, p);
636 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
637 if (providerTokens[i].value == NULL)
640 store_uint32_be(i, p);
642 store_uint32_be(providerTokens[i].length, p);
644 memcpy(p, providerTokens[i].value, providerTokens[i].length);
645 p += providerTokens[i].length;
647 gss_release_buffer(&tmpMinor, &providerTokens[i]);
652 * Return soonest expiry time of providers
655 gss_eap_attr_ctx::getExpiryTime(void) const
658 time_t expiryTime = 0;
660 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
661 gss_eap_attr_provider *provider = m_providers[i];
662 time_t providerExpiryTime;
664 if (provider == NULL)
667 providerExpiryTime = provider->getExpiryTime();
668 if (providerExpiryTime == 0)
671 if (expiryTime == 0 || providerExpiryTime < expiryTime)
672 expiryTime = providerExpiryTime;
679 gss_eap_attr_ctx::mapException(OM_uint32 *minor, std::exception &e) const
684 /* Errors we handle ourselves */
685 major = GSS_S_FAILURE;
687 if (typeid(e) == typeid(std::bad_alloc)) {
692 /* Errors we delegate to providers */
693 major = GSS_S_CONTINUE_NEEDED;
695 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
696 gss_eap_attr_provider *provider = m_providers[i];
698 if (provider == NULL)
701 major = provider->mapException(minor, e);
702 if (major != GSS_S_CONTINUE_NEEDED)
706 if (major == GSS_S_CONTINUE_NEEDED) {
707 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
708 major = GSS_S_FAILURE;
713 /* rethrow for now for debugging */
717 assert(GSS_ERROR(major));
723 * Decompose attribute name into prefix and suffix
726 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
733 for (i = 0; i < attribute->length; i++) {
734 if (((char *)attribute->value)[i] == ' ') {
735 p = (char *)attribute->value + i + 1;
740 prefix->value = attribute->value;
743 if (p != NULL && *p != '\0') {
744 suffix->length = attribute->length - 1 - prefix->length;
748 suffix->value = NULL;
753 * Decompose attribute name into type and suffix
756 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
758 gss_buffer_t suffix) const
760 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
762 decomposeAttributeName(attribute, &prefix, suffix);
763 *type = attributePrefixToType(&prefix);
767 * Compose attribute name from prefix, suffix; returns C++ string
770 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
771 const gss_buffer_t suffix)
775 if (prefix == GSS_C_NO_BUFFER || prefix->length == 0)
778 str.append((const char *)prefix->value, prefix->length);
780 if (suffix != GSS_C_NO_BUFFER) {
782 str.append((const char *)suffix->value, suffix->length);
789 * Compose attribute name from type, suffix; returns C++ string
792 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
793 const gss_buffer_t suffix)
795 gss_buffer_desc prefix = attributeTypeToPrefix(type);
797 return composeAttributeName(&prefix, suffix);
801 * Compose attribute name from prefix, suffix; returns GSS buffer
804 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
805 const gss_buffer_t suffix,
806 gss_buffer_t attribute)
808 std::string str = composeAttributeName(prefix, suffix);
810 if (str.length() != 0) {
811 return duplicateBuffer(str, attribute);
813 attribute->length = 0;
814 attribute->value = NULL;
819 * Compose attribute name from type, suffix; returns GSS buffer
822 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
823 const gss_buffer_t suffix,
824 gss_buffer_t attribute) const
826 gss_buffer_desc prefix = attributeTypeToPrefix(type);
828 return composeAttributeName(&prefix, suffix, attribute);
835 gssEapInquireName(OM_uint32 *minor,
839 gss_buffer_set_t *attrs)
843 if (name_is_MN != NULL)
844 *name_is_MN = (name->mechanismUsed != GSS_C_NULL_OID);
846 if (MN_mech != NULL) {
847 major = gssEapCanonicalizeOid(minor, name->mechanismUsed,
848 OID_FLAG_NULL_VALID, MN_mech);
849 if (GSS_ERROR(major))
853 if (name->attrCtx == NULL) {
854 *minor = GSSEAP_NO_ATTR_CONTEXT;
855 return GSS_S_UNAVAILABLE;
858 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
859 return GSS_S_UNAVAILABLE;
863 if (!name->attrCtx->getAttributeTypes(attrs)) {
864 *minor = GSSEAP_NO_ATTR_CONTEXT;
865 return GSS_S_UNAVAILABLE;
867 } catch (std::exception &e) {
868 return name->attrCtx->mapException(minor, e);
871 return GSS_S_COMPLETE;
875 gssEapGetNameAttribute(OM_uint32 *minor,
881 gss_buffer_t display_value,
892 if (display_value != NULL) {
893 display_value->length = 0;
894 display_value->value = NULL;
897 if (name->attrCtx == NULL) {
898 *minor = GSSEAP_NO_ATTR_CONTEXT;
899 return GSS_S_UNAVAILABLE;
902 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
903 return GSS_S_UNAVAILABLE;
907 if (!name->attrCtx->getAttribute(attr, authenticated, complete,
908 value, display_value, more)) {
909 *minor = GSSEAP_NO_SUCH_ATTR;
910 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
911 (int)attr->length, (char *)attr->value);
912 return GSS_S_UNAVAILABLE;
914 } catch (std::exception &e) {
915 return name->attrCtx->mapException(minor, e);
918 return GSS_S_COMPLETE;
922 gssEapDeleteNameAttribute(OM_uint32 *minor,
926 if (name->attrCtx == NULL) {
927 *minor = GSSEAP_NO_ATTR_CONTEXT;
928 return GSS_S_UNAVAILABLE;
931 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
932 return GSS_S_UNAVAILABLE;
935 if (!name->attrCtx->deleteAttribute(attr)) {
936 *minor = GSSEAP_NO_SUCH_ATTR;
937 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
938 (int)attr->length, (char *)attr->value);
939 return GSS_S_UNAVAILABLE;
941 } catch (std::exception &e) {
942 return name->attrCtx->mapException(minor, e);
945 return GSS_S_COMPLETE;
949 gssEapSetNameAttribute(OM_uint32 *minor,
955 if (name->attrCtx == NULL) {
956 *minor = GSSEAP_NO_ATTR_CONTEXT;
957 return GSS_S_UNAVAILABLE;
960 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
961 return GSS_S_UNAVAILABLE;
964 if (!name->attrCtx->setAttribute(complete, attr, value)) {
965 *minor = GSSEAP_NO_SUCH_ATTR;
966 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
967 (int)attr->length, (char *)attr->value);
968 return GSS_S_UNAVAILABLE;
970 } catch (std::exception &e) {
971 return name->attrCtx->mapException(minor, e);
974 return GSS_S_COMPLETE;
978 gssEapExportAttrContext(OM_uint32 *minor,
982 if (name->attrCtx == NULL) {
984 buffer->value = NULL;
986 return GSS_S_COMPLETE;
989 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
990 return GSS_S_UNAVAILABLE;
993 name->attrCtx->exportToBuffer(buffer);
994 } catch (std::exception &e) {
995 return name->attrCtx->mapException(minor, e);
998 return GSS_S_COMPLETE;
1002 gssEapImportAttrContext(OM_uint32 *minor,
1003 gss_buffer_t buffer,
1006 gss_eap_attr_ctx *ctx = NULL;
1008 assert(name->attrCtx == NULL);
1010 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1011 return GSS_S_UNAVAILABLE;
1013 if (buffer->length != 0) {
1015 ctx = new gss_eap_attr_ctx();
1017 if (!ctx->initFromBuffer(buffer)) {
1019 *minor = GSSEAP_BAD_ATTR_TOKEN;
1020 return GSS_S_DEFECTIVE_TOKEN;
1022 name->attrCtx = ctx;
1023 } catch (std::exception &e) {
1025 return name->attrCtx->mapException(minor, e);
1029 return GSS_S_COMPLETE;
1033 gssEapDuplicateAttrContext(OM_uint32 *minor,
1037 gss_eap_attr_ctx *ctx = NULL;
1039 assert(out->attrCtx == NULL);
1041 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1042 return GSS_S_UNAVAILABLE;
1045 if (in->attrCtx != NULL) {
1046 ctx = new gss_eap_attr_ctx();
1047 if (!ctx->initFromExistingContext(in->attrCtx)) {
1049 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1050 return GSS_S_FAILURE;
1054 } catch (std::exception &e) {
1056 return in->attrCtx->mapException(minor, e);
1059 return GSS_S_COMPLETE;
1063 gssEapMapNameToAny(OM_uint32 *minor,
1066 gss_buffer_t type_id,
1069 if (name->attrCtx == NULL) {
1070 *minor = GSSEAP_NO_ATTR_CONTEXT;
1071 return GSS_S_UNAVAILABLE;
1074 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1075 return GSS_S_UNAVAILABLE;
1078 *output = name->attrCtx->mapToAny(authenticated, type_id);
1079 } catch (std::exception &e) {
1080 return name->attrCtx->mapException(minor, e);
1083 return GSS_S_COMPLETE;
1087 gssEapReleaseAnyNameMapping(OM_uint32 *minor,
1089 gss_buffer_t type_id,
1092 if (name->attrCtx == NULL) {
1093 *minor = GSSEAP_NO_ATTR_CONTEXT;
1094 return GSS_S_UNAVAILABLE;
1097 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1098 return GSS_S_UNAVAILABLE;
1102 name->attrCtx->releaseAnyNameMapping(type_id, *input);
1104 } catch (std::exception &e) {
1105 return name->attrCtx->mapException(minor, e);
1108 return GSS_S_COMPLETE;
1112 gssEapReleaseAttrContext(OM_uint32 *minor,
1115 if (name->attrCtx != NULL)
1116 delete name->attrCtx;
1119 return GSS_S_COMPLETE;
1123 * Public accessor for initialisng a context from a GSS context. Also
1124 * sets expiry time on GSS context as a side-effect.
1127 gssEapCreateAttrContext(OM_uint32 *minor,
1128 gss_cred_id_t gssCred,
1129 gss_ctx_id_t gssCtx,
1130 struct gss_eap_attr_ctx **pAttrContext,
1131 time_t *pExpiryTime)
1133 gss_eap_attr_ctx *ctx = NULL;
1136 assert(gssCtx != GSS_C_NO_CONTEXT);
1138 major = gssEapAttrProvidersInit(minor);
1139 if (GSS_ERROR(major))
1142 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1143 major = GSS_S_FAILURE;
1146 ctx = new gss_eap_attr_ctx();
1147 if (ctx->initFromGssContext(gssCred, gssCtx)) {
1149 major = GSS_S_COMPLETE;
1153 } catch (std::exception &e) {
1155 major = ctx->mapException(minor, e);
1158 if (major == GSS_S_COMPLETE) {
1159 *pAttrContext = ctx;
1160 *pExpiryTime = ctx->getExpiryTime();
projects / moonshot.git / blob