2 * Copyright (c) 2011, JANET(UK)
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of JANET(UK) nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 * Attribute provider mechanism.
37 #include "gssapiP_eap.h"
45 /* lazy initialisation */
46 static GSSEAP_THREAD_ONCE gssEapAttrProvidersInitOnce = GSSEAP_ONCE_INITIALIZER;
47 static OM_uint32 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
50 gssEapAttrProvidersInitInternal(void)
52 OM_uint32 major, minor;
54 assert(gssEapAttrProvidersInitStatus == GSS_S_UNAVAILABLE);
56 major = gssEapRadiusAttrProviderInit(&minor);
57 if (major == GSS_S_COMPLETE)
58 major = gssEapSamlAttrProvidersInit(&minor);
59 if (major == GSS_S_COMPLETE)
60 major = gssEapLocalAttrProviderInit(&minor);
63 assert(major == GSS_S_COMPLETE);
66 gssEapAttrProvidersInitStatus = major;
70 gssEapAttrProvidersInit(OM_uint32 *minor)
72 GSSEAP_ONCE(&gssEapAttrProvidersInitOnce, gssEapAttrProvidersInitInternal);
74 if (GSS_ERROR(gssEapAttrProvidersInitStatus))
75 *minor = GSSEAP_NO_ATTR_PROVIDERS;
77 return gssEapAttrProvidersInitStatus;
81 gssEapAttrProvidersFinalize(OM_uint32 *minor)
83 OM_uint32 major = GSS_S_COMPLETE;
85 if (gssEapAttrProvidersInitStatus == GSS_S_COMPLETE) {
86 major = gssEapLocalAttrProviderFinalize(minor);
87 if (major == GSS_S_COMPLETE)
88 major = gssEapSamlAttrProvidersFinalize(minor);
89 if (major == GSS_S_COMPLETE)
90 major = gssEapRadiusAttrProviderFinalize(minor);
92 gssEapAttrProvidersInitStatus = GSS_S_UNAVAILABLE;
98 static gss_eap_attr_create_provider gssEapAttrFactories[ATTR_TYPE_MAX + 1];
99 static gss_buffer_desc gssEapAttrPrefixes[ATTR_TYPE_MAX + 1];
102 * Register a provider for a particular type and prefix
105 gss_eap_attr_ctx::registerProvider(unsigned int type,
107 gss_eap_attr_create_provider factory)
109 assert(type <= ATTR_TYPE_MAX);
111 assert(gssEapAttrFactories[type] == NULL);
113 gssEapAttrFactories[type] = factory;
114 if (prefix != NULL) {
115 gssEapAttrPrefixes[type].value = (void *)prefix;
116 gssEapAttrPrefixes[type].length = strlen(prefix);
118 gssEapAttrPrefixes[type].value = NULL;
119 gssEapAttrPrefixes[type].length = 0;
124 * Unregister a provider
127 gss_eap_attr_ctx::unregisterProvider(unsigned int type)
129 assert(type <= ATTR_TYPE_MAX);
131 gssEapAttrFactories[type] = NULL;
132 gssEapAttrPrefixes[type].value = NULL;
133 gssEapAttrPrefixes[type].length = 0;
137 * Create an attribute context, that manages instances of providers
139 gss_eap_attr_ctx::gss_eap_attr_ctx(void)
143 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
144 gss_eap_attr_provider *provider;
146 if (gssEapAttrFactories[i] != NULL) {
147 provider = (gssEapAttrFactories[i])();
152 m_providers[i] = provider;
157 * Convert an attribute prefix to a type
160 gss_eap_attr_ctx::attributePrefixToType(const gss_buffer_t prefix)
164 for (i = ATTR_TYPE_MIN; i < ATTR_TYPE_MAX; i++) {
165 if (bufferEqual(&gssEapAttrPrefixes[i], prefix))
169 return ATTR_TYPE_LOCAL;
173 * Convert a type to an attribute prefix
176 gss_eap_attr_ctx::attributeTypeToPrefix(unsigned int type)
178 if (type < ATTR_TYPE_MIN || type >= ATTR_TYPE_MAX)
179 return GSS_C_NO_BUFFER;
181 return &gssEapAttrPrefixes[type];
185 gss_eap_attr_ctx::providerEnabled(unsigned int type) const
187 if (type == ATTR_TYPE_LOCAL &&
188 (m_flags & ATTR_FLAG_DISABLE_LOCAL))
191 if (m_providers[type] == NULL)
198 gss_eap_attr_ctx::releaseProvider(unsigned int type)
200 delete m_providers[type];
201 m_providers[type] = NULL;
205 * Initialize a context from an existing context.
208 gss_eap_attr_ctx::initFromExistingContext(const gss_eap_attr_ctx *manager)
212 m_flags = manager->m_flags;
214 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
215 gss_eap_attr_provider *provider;
217 if (!providerEnabled(i)) {
222 provider = m_providers[i];
224 ret = provider->initFromExistingContext(this,
225 manager->m_providers[i]);
236 * Initialize a context from a GSS credential and context.
239 gss_eap_attr_ctx::initFromGssContext(const gss_cred_id_t cred,
240 const gss_ctx_id_t ctx)
244 if (cred != GSS_C_NO_CREDENTIAL &&
245 (cred->flags & GSS_EAP_DISABLE_LOCAL_ATTRS_FLAG)) {
246 m_flags |= ATTR_FLAG_DISABLE_LOCAL;
249 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
250 gss_eap_attr_provider *provider;
252 if (!providerEnabled(i)) {
257 provider = m_providers[i];
259 ret = provider->initFromGssContext(this, cred, ctx);
270 gssEapDdfAttrTypes[ATTR_TYPE_MAX + 1] = {
278 gss_eap_attr_ctx::unmarshallAndInit(DDF &obj)
281 bool foundSource[ATTR_TYPE_MAX + 1];
284 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++)
285 foundSource[type] = false;
287 if (obj["version"].integer() != 1)
290 m_flags = obj["flags"].integer();
292 DDF sources = obj["sources"];
294 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
295 if (!providerEnabled(type)) {
296 releaseProvider(type);
300 DDF providerObj = sources[gssEapDdfAttrTypes[type]];
301 if (providerObj.isempty())
304 gss_eap_attr_provider *provider = m_providers[type];
306 ret = provider->unmarshallAndInit(this, providerObj);
308 releaseProvider(type);
312 foundSource[type] = true;
318 for (type = ATTR_TYPE_MIN; type <= ATTR_TYPE_MAX; type++) {
319 gss_eap_attr_provider *provider;
321 if (foundSource[type])
324 provider = m_providers[type];
326 ret = provider->initFromGssContext(this,
330 releaseProvider(type);
339 gss_eap_attr_ctx::marshall(void) const
344 obj.addmember("version").integer(1);
345 obj.addmember("flags").integer(m_flags);
347 DDF sources = obj.addmember("sources");
349 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
350 gss_eap_attr_provider *provider = m_providers[i];
352 if (provider == NULL)
355 DDF providerObj = provider->marshall();
356 if (!providerObj.isempty()) {
357 const char *type = gssEapDdfAttrTypes[i];
359 sources.addmember(type).structure().swap(providerObj);
361 providerObj.destroy();
368 * Initialize a context from an exported context or name token
371 gss_eap_attr_ctx::initFromBuffer(const gss_buffer_t buffer)
375 if (buffer->length == 0)
379 std::string str((const char *)buffer->value, buffer->length);
380 std::istringstream source(str);
384 ret = unmarshallAndInit(obj);
391 gss_eap_attr_ctx::~gss_eap_attr_ctx(void)
393 for (unsigned int i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++)
394 delete m_providers[i];
398 * Locate provider for a given type
400 gss_eap_attr_provider *
401 gss_eap_attr_ctx::getProvider(unsigned int type) const
403 assert(type >= ATTR_TYPE_MIN && type <= ATTR_TYPE_MAX);
404 return m_providers[type];
408 * Locate provider for a given prefix
410 gss_eap_attr_provider *
411 gss_eap_attr_ctx::getProvider(const gss_buffer_t prefix) const
415 type = attributePrefixToType(prefix);
417 return m_providers[type];
421 * Get primary provider. Only the primary provider is serialised when
422 * gss_export_sec_context() or gss_export_name_composite() is called.
424 gss_eap_attr_provider *
425 gss_eap_attr_ctx::getPrimaryProvider(void) const
427 return m_providers[ATTR_TYPE_MIN];
434 gss_eap_attr_ctx::setAttribute(int complete,
435 const gss_buffer_t attr,
436 const gss_buffer_t value)
438 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
440 gss_eap_attr_provider *provider;
443 decomposeAttributeName(attr, &type, &suffix);
445 provider = m_providers[type];
446 if (provider != NULL) {
447 ret = provider->setAttribute(complete,
448 (type == ATTR_TYPE_LOCAL) ? attr : &suffix,
456 * Delete an attrbiute
459 gss_eap_attr_ctx::deleteAttribute(const gss_buffer_t attr)
461 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
463 gss_eap_attr_provider *provider;
466 decomposeAttributeName(attr, &type, &suffix);
468 provider = m_providers[type];
469 if (provider != NULL) {
470 ret = provider->deleteAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix);
477 * Enumerate attribute types with callback
480 gss_eap_attr_ctx::getAttributeTypes(gss_eap_attr_enumeration_cb cb, void *data) const
485 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
486 gss_eap_attr_provider *provider = m_providers[i];
488 if (provider == NULL)
491 ret = provider->getAttributeTypes(cb, data);
499 struct eap_gss_get_attr_types_args {
501 gss_buffer_set_t attrs;
505 addAttribute(const gss_eap_attr_provider *provider GSSEAP_UNUSED,
506 const gss_buffer_t attribute,
509 eap_gss_get_attr_types_args *args = (eap_gss_get_attr_types_args *)data;
510 gss_buffer_desc qualified;
511 OM_uint32 major, minor;
513 if (args->type != ATTR_TYPE_LOCAL) {
514 gss_eap_attr_ctx::composeAttributeName(args->type, attribute, &qualified);
515 major = gss_add_buffer_set_member(&minor, &qualified, &args->attrs);
516 gss_release_buffer(&minor, &qualified);
518 major = gss_add_buffer_set_member(&minor, attribute, &args->attrs);
521 return GSS_ERROR(major) == false;
525 * Enumerate attribute types, output is buffer set
528 gss_eap_attr_ctx::getAttributeTypes(gss_buffer_set_t *attrs)
530 eap_gss_get_attr_types_args args;
531 OM_uint32 major, minor;
535 major = gss_create_empty_buffer_set(&minor, attrs);
536 if (GSS_ERROR(major)) {
537 throw new std::bad_alloc;
543 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
544 gss_eap_attr_provider *provider = m_providers[i];
548 if (provider == NULL)
551 ret = provider->getAttributeTypes(addAttribute, (void *)&args);
557 gss_release_buffer_set(&minor, attrs);
563 * Get attribute with given name
566 gss_eap_attr_ctx::getAttribute(const gss_buffer_t attr,
570 gss_buffer_t display_value,
573 gss_buffer_desc suffix = GSS_C_EMPTY_BUFFER;
575 gss_eap_attr_provider *provider;
578 decomposeAttributeName(attr, &type, &suffix);
580 provider = m_providers[type];
581 if (provider == NULL)
584 ret = provider->getAttribute(type == ATTR_TYPE_LOCAL ? attr : &suffix,
585 authenticated, complete,
586 value, display_value, more);
592 * Map attribute context to C++ object
595 gss_eap_attr_ctx::mapToAny(int authenticated,
596 gss_buffer_t type_id) const
599 gss_eap_attr_provider *provider;
600 gss_buffer_desc suffix;
602 decomposeAttributeName(type_id, &type, &suffix);
604 provider = m_providers[type];
605 if (provider == NULL)
606 return (gss_any_t)NULL;
608 return provider->mapToAny(authenticated, &suffix);
612 * Release mapped context
615 gss_eap_attr_ctx::releaseAnyNameMapping(gss_buffer_t type_id,
616 gss_any_t input) const
619 gss_eap_attr_provider *provider;
620 gss_buffer_desc suffix;
622 decomposeAttributeName(type_id, &type, &suffix);
624 provider = m_providers[type];
625 if (provider != NULL)
626 provider->releaseAnyNameMapping(&suffix, input);
630 * Export attribute context to buffer
633 gss_eap_attr_ctx::exportToBuffer(gss_buffer_t buffer) const
635 DDF obj = marshall();
636 std::ostringstream sink;
639 std::string str = sink.str();
641 printf("%s\n", str.c_str());
643 duplicateBuffer(str, buffer);
649 * Return soonest expiry time of providers
652 gss_eap_attr_ctx::getExpiryTime(void) const
655 time_t expiryTime = 0;
657 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
658 gss_eap_attr_provider *provider = m_providers[i];
659 time_t providerExpiryTime;
661 if (provider == NULL)
664 providerExpiryTime = provider->getExpiryTime();
665 if (providerExpiryTime == 0)
668 if (expiryTime == 0 || providerExpiryTime < expiryTime)
669 expiryTime = providerExpiryTime;
676 gss_eap_attr_ctx::mapException(OM_uint32 *minor, std::exception &e) const
681 /* Errors we handle ourselves */
682 major = GSS_S_FAILURE;
684 if (typeid(e) == typeid(std::bad_alloc)) {
689 /* Errors we delegate to providers */
690 major = GSS_S_CONTINUE_NEEDED;
692 for (i = ATTR_TYPE_MIN; i <= ATTR_TYPE_MAX; i++) {
693 gss_eap_attr_provider *provider = m_providers[i];
695 if (provider == NULL)
698 major = provider->mapException(minor, e);
699 if (major != GSS_S_CONTINUE_NEEDED)
703 if (major == GSS_S_CONTINUE_NEEDED) {
704 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
705 major = GSS_S_FAILURE;
710 /* rethrow for now for debugging */
714 assert(GSS_ERROR(major));
720 * Decompose attribute name into prefix and suffix
723 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
730 for (i = 0; i < attribute->length; i++) {
731 if (((char *)attribute->value)[i] == ' ') {
732 p = (char *)attribute->value + i + 1;
737 prefix->value = attribute->value;
740 if (p != NULL && *p != '\0') {
741 suffix->length = attribute->length - 1 - prefix->length;
745 suffix->value = NULL;
750 * Decompose attribute name into type and suffix
753 gss_eap_attr_ctx::decomposeAttributeName(const gss_buffer_t attribute,
757 gss_buffer_desc prefix = GSS_C_EMPTY_BUFFER;
759 decomposeAttributeName(attribute, &prefix, suffix);
760 *type = attributePrefixToType(&prefix);
764 * Compose attribute name from prefix, suffix; returns C++ string
767 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
768 const gss_buffer_t suffix)
772 if (prefix == GSS_C_NO_BUFFER || prefix->length == 0)
775 str.append((const char *)prefix->value, prefix->length);
777 if (suffix != GSS_C_NO_BUFFER) {
779 str.append((const char *)suffix->value, suffix->length);
786 * Compose attribute name from type, suffix; returns C++ string
789 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
790 const gss_buffer_t suffix)
792 const gss_buffer_t prefix = attributeTypeToPrefix(type);
794 return composeAttributeName(prefix, suffix);
798 * Compose attribute name from prefix, suffix; returns GSS buffer
801 gss_eap_attr_ctx::composeAttributeName(const gss_buffer_t prefix,
802 const gss_buffer_t suffix,
803 gss_buffer_t attribute)
805 std::string str = composeAttributeName(prefix, suffix);
807 if (str.length() != 0) {
808 return duplicateBuffer(str, attribute);
810 attribute->length = 0;
811 attribute->value = NULL;
816 * Compose attribute name from type, suffix; returns GSS buffer
819 gss_eap_attr_ctx::composeAttributeName(unsigned int type,
820 const gss_buffer_t suffix,
821 gss_buffer_t attribute)
823 gss_buffer_t prefix = attributeTypeToPrefix(type);
825 return composeAttributeName(prefix, suffix, attribute);
832 gssEapInquireName(OM_uint32 *minor,
836 gss_buffer_set_t *attrs)
840 if (name_is_MN != NULL)
841 *name_is_MN = (name->mechanismUsed != GSS_C_NULL_OID);
843 if (MN_mech != NULL) {
844 major = gssEapCanonicalizeOid(minor, name->mechanismUsed,
845 OID_FLAG_NULL_VALID, MN_mech);
846 if (GSS_ERROR(major))
850 if (name->attrCtx == NULL) {
851 *minor = GSSEAP_NO_ATTR_CONTEXT;
852 return GSS_S_UNAVAILABLE;
855 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
856 return GSS_S_UNAVAILABLE;
860 if (!name->attrCtx->getAttributeTypes(attrs)) {
861 *minor = GSSEAP_NO_ATTR_CONTEXT;
862 return GSS_S_UNAVAILABLE;
864 } catch (std::exception &e) {
865 return name->attrCtx->mapException(minor, e);
868 return GSS_S_COMPLETE;
872 gssEapGetNameAttribute(OM_uint32 *minor,
878 gss_buffer_t display_value,
889 if (display_value != NULL) {
890 display_value->length = 0;
891 display_value->value = NULL;
894 if (name->attrCtx == NULL) {
895 *minor = GSSEAP_NO_ATTR_CONTEXT;
896 return GSS_S_UNAVAILABLE;
899 if (GSS_ERROR(gssEapAttrProvidersInit(minor))) {
900 return GSS_S_UNAVAILABLE;
904 if (!name->attrCtx->getAttribute(attr, authenticated, complete,
905 value, display_value, more)) {
906 *minor = GSSEAP_NO_SUCH_ATTR;
907 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
908 (int)attr->length, (char *)attr->value);
909 return GSS_S_UNAVAILABLE;
911 } catch (std::exception &e) {
912 return name->attrCtx->mapException(minor, e);
915 return GSS_S_COMPLETE;
919 gssEapDeleteNameAttribute(OM_uint32 *minor,
923 if (name->attrCtx == NULL) {
924 *minor = GSSEAP_NO_ATTR_CONTEXT;
925 return GSS_S_UNAVAILABLE;
928 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
929 return GSS_S_UNAVAILABLE;
932 if (!name->attrCtx->deleteAttribute(attr)) {
933 *minor = GSSEAP_NO_SUCH_ATTR;
934 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
935 (int)attr->length, (char *)attr->value);
936 return GSS_S_UNAVAILABLE;
938 } catch (std::exception &e) {
939 return name->attrCtx->mapException(minor, e);
942 return GSS_S_COMPLETE;
946 gssEapSetNameAttribute(OM_uint32 *minor,
952 if (name->attrCtx == NULL) {
953 *minor = GSSEAP_NO_ATTR_CONTEXT;
954 return GSS_S_UNAVAILABLE;
957 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
958 return GSS_S_UNAVAILABLE;
961 if (!name->attrCtx->setAttribute(complete, attr, value)) {
962 *minor = GSSEAP_NO_SUCH_ATTR;
963 gssEapSaveStatusInfo(*minor, "Unknown naming attribute %.*s",
964 (int)attr->length, (char *)attr->value);
965 return GSS_S_UNAVAILABLE;
967 } catch (std::exception &e) {
968 return name->attrCtx->mapException(minor, e);
971 return GSS_S_COMPLETE;
975 gssEapExportAttrContext(OM_uint32 *minor,
979 if (name->attrCtx == NULL) {
981 buffer->value = NULL;
983 return GSS_S_COMPLETE;
986 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
987 return GSS_S_UNAVAILABLE;
990 name->attrCtx->exportToBuffer(buffer);
991 } catch (std::exception &e) {
992 return name->attrCtx->mapException(minor, e);
995 return GSS_S_COMPLETE;
999 gssEapImportAttrContext(OM_uint32 *minor,
1000 gss_buffer_t buffer,
1003 gss_eap_attr_ctx *ctx = NULL;
1005 assert(name->attrCtx == NULL);
1007 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1008 return GSS_S_UNAVAILABLE;
1010 if (buffer->length != 0) {
1012 ctx = new gss_eap_attr_ctx();
1014 if (!ctx->initFromBuffer(buffer)) {
1016 *minor = GSSEAP_BAD_ATTR_TOKEN;
1017 return GSS_S_DEFECTIVE_TOKEN;
1019 name->attrCtx = ctx;
1020 } catch (std::exception &e) {
1022 return name->attrCtx->mapException(minor, e);
1026 return GSS_S_COMPLETE;
1030 gssEapDuplicateAttrContext(OM_uint32 *minor,
1034 gss_eap_attr_ctx *ctx = NULL;
1036 assert(out->attrCtx == NULL);
1038 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1039 return GSS_S_UNAVAILABLE;
1042 if (in->attrCtx != NULL) {
1043 ctx = new gss_eap_attr_ctx();
1044 if (!ctx->initFromExistingContext(in->attrCtx)) {
1046 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1047 return GSS_S_FAILURE;
1051 } catch (std::exception &e) {
1053 return in->attrCtx->mapException(minor, e);
1056 return GSS_S_COMPLETE;
1060 gssEapMapNameToAny(OM_uint32 *minor,
1063 gss_buffer_t type_id,
1066 if (name->attrCtx == NULL) {
1067 *minor = GSSEAP_NO_ATTR_CONTEXT;
1068 return GSS_S_UNAVAILABLE;
1071 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1072 return GSS_S_UNAVAILABLE;
1075 *output = name->attrCtx->mapToAny(authenticated, type_id);
1076 } catch (std::exception &e) {
1077 return name->attrCtx->mapException(minor, e);
1080 return GSS_S_COMPLETE;
1084 gssEapReleaseAnyNameMapping(OM_uint32 *minor,
1086 gss_buffer_t type_id,
1089 if (name->attrCtx == NULL) {
1090 *minor = GSSEAP_NO_ATTR_CONTEXT;
1091 return GSS_S_UNAVAILABLE;
1094 if (GSS_ERROR(gssEapAttrProvidersInit(minor)))
1095 return GSS_S_UNAVAILABLE;
1099 name->attrCtx->releaseAnyNameMapping(type_id, *input);
1101 } catch (std::exception &e) {
1102 return name->attrCtx->mapException(minor, e);
1105 return GSS_S_COMPLETE;
1109 gssEapReleaseAttrContext(OM_uint32 *minor,
1112 if (name->attrCtx != NULL)
1113 delete name->attrCtx;
1116 return GSS_S_COMPLETE;
1120 * Public accessor for initialisng a context from a GSS context. Also
1121 * sets expiry time on GSS context as a side-effect.
1124 gssEapCreateAttrContext(OM_uint32 *minor,
1125 gss_cred_id_t gssCred,
1126 gss_ctx_id_t gssCtx,
1127 struct gss_eap_attr_ctx **pAttrContext,
1128 time_t *pExpiryTime)
1130 gss_eap_attr_ctx *ctx = NULL;
1133 assert(gssCtx != GSS_C_NO_CONTEXT);
1135 major = gssEapAttrProvidersInit(minor);
1136 if (GSS_ERROR(major))
1139 *minor = GSSEAP_ATTR_CONTEXT_FAILURE;
1140 major = GSS_S_FAILURE;
1143 ctx = new gss_eap_attr_ctx();
1144 if (ctx->initFromGssContext(gssCred, gssCtx)) {
1146 major = GSS_S_COMPLETE;
1150 } catch (std::exception &e) {
1152 major = ctx->mapException(minor, e);
1155 if (major == GSS_S_COMPLETE) {
1156 *pAttrContext = ctx;
1157 *pExpiryTime = ctx->getExpiryTime();
projects / moonshot.git / blob