diff options
Diffstat (limited to 'src/lib/gssapi/dsp_status.c')
| -rw-r--r-- | src/lib/gssapi/dsp_status.c | 133 |
1 files changed, 133 insertions, 0 deletions
diff --git a/src/lib/gssapi/dsp_status.c b/src/lib/gssapi/dsp_status.c new file mode 100644 index 0000000000..433d1c151d --- /dev/null +++ b/src/lib/gssapi/dsp_status.c @@ -0,0 +1,133 @@ +/* + * dsp_status.c --- display_status + * + * $Source$ + * $Author$ + * $Header$ + * + * Copyright 1991 by the Massachusetts Institute of Technology. + * All Rights Reserved. + * + * For copying and distribution information, please see the file + * <krb5/copyright.h>. + * + */ + +#include <gssapi.h> + +#define GSS_CE_MASK 0xFF000000 +#define GSS_RE_MASK 0x00FF0000 +#define GSS_SS_MASK 0x0000FFFF + +#define GSS_CONTEXT_THIS(i) ((i) & 0xFFFF) +#define GSS_CONTEXT_NEXT(i) ((i) >> 16) + +struct gss_error_table { + int code; + int mask; + char *string; +}; + +static struct gss_error_table table[] = { + { GSS_S_CALL_INACCESSIBLE_READ, GSS_CE_MASK, + "GSSAPI Calling Error: Inaccessible read" }, + { GSS_S_CALL_INACCESSIBLE_WRITE, GSS_CE_MASK, + "GSSAPI Calling Error: Inaccessible write" }, + { GSS_S_CALL_BAD_STRUCTURE, GSS_CE_MASK, + "GSSAPI Calling Error: Bad Structure" }, + { GSS_S_BAD_MECH, GSS_RE_MASK, + "GSSAPI Routine Error: Bad Mechanism" }, + { GSS_S_BAD_NAME, GSS_RE_MASK, + "GSSAPI Routine Error: Bad Name" }, + { GSS_S_BAD_NAMETYPE, GSS_RE_MASK, + "GSSAPI Routine Error: Bad Nametype" }, + { GSS_S_BAD_BINDINGS, GSS_RE_MASK, + "GSSAPI Routine Error: Bad Bindings" }, + { GSS_S_BAD_STATUS, GSS_RE_MASK, + "GSSAPI Routine Error: Bad Status" }, + { GSS_S_BAD_SIG, GSS_RE_MASK, + "GSSAPI Routine Error: Invalid Signature" }, + { GSS_S_NO_CRED, GSS_RE_MASK, + "GSSAPI Routine Error: Missing Credentials" }, + { GSS_S_NO_CONTEXT, GSS_RE_MASK, + "GSSAPI Routine Error: Missing Context" }, + { GSS_S_DEFECTIVE_TOKEN, GSS_RE_MASK, + "GSSAPI Routine Error: Defective Token" }, + { GSS_S_DEFECTIVE_CREDENTIAL, GSS_RE_MASK, + "GSSAPI Routine Error: Defective Credential" }, + { GSS_S_CREDENTIALS_EXPIRED, GSS_RE_MASK, + "GSSAPI Routine Error: Credentials Expired" }, + { GSS_S_CONTEXT_EXPIRED, GSS_RE_MASK, + "GSSAPI Routine Error: Context expired" }, + { GSS_S_FAILURE, GSS_RE_MASK, + "GSSAPI Routine Error: Mechanism-specific failure" }, +}; +static int nentries = sizeof (struct gss_error_table) / sizeof (*table); + +OM_uint32 gss_display_status(minor_status, status_value, status_type, + mech_type, message_context, status_string) + OM_uint32 *minor_status; + int status_value; + int status_type; + gss_OID mech_type; + int *message_context; + gss_buffer_t status_string; +{ + const char *str; + int next; + int retval; + + *minor_status = 0; + + if (status_type == GSS_C_MECH_CODE) { + /* + * We only handle Kerberos V5... + */ + if ((mech_type != GSS_C_NULL_OID) && + !gss_compare_OID(mech_type, &gss_OID_krb5)) { + return(GSS_S_BAD_MECH); + } + str = error_message(status_value); + retval = GSS_S_COMPLETE; + goto return_message_found; + } else { + next = *message_context; + + if (next < 0 || next >= nentries) { + return(GSS_S_FAILURE); + } + if (next == 0) { + while (next < nentries) { + if ((status_value & table[next].mask) == + table[next].code) + break; + next++; + } + if (next >= nentries) + return(GSS_S_BAD_STATUS); + } + str = table[next].string; + next++; + while (next < nentries) { + if ((status_value & table[next].mask) == + table[next].code) + break; + next++; + } + if (next >= nentries) + retval = GSS_S_COMPLETE; + else + retval = GSS_S_CONTINUE_NEEDED; + *message_context = next; + } + +return_message_found: + status_string->length = strlen(str); + if (!(status_string->value = malloc(status_string->length))) { + *minor_status = ENOMEM; + return(GSS_S_FAILURE); + } + strcpy(status_string->value, str); + return(GSS_S_COMPLETE); +} + |