git.samba.org / samba.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
auth/gensec: Use gnutls_error_to_ntstatus() in netsec_do_seal()
[samba.git] / auth / gensec / schannel.c
diff --git a/auth/gensec/schannel.c b/auth/gensec/schannel.c
index 18e2ed6cd366c90fef34413d3eb0f01958e22acb..18ed92b703b08bc955d36d573aeb4b828e331b11 100644 (file)
--- a/auth/gensec/schannel.c
+++ b/auth/gensec/schannel.c
@@ -302,10 +302,8 @@ static NTSTATUS netsec_do_seal(struct schannel_state *state,
                                                   confounder,
                                                   8);
                        if (rc < 0) {
-                               DBG_ERR("ERROR: gnutls_cipher_encrypt: %s\n",
-                                       gnutls_strerror(errno));
                                gnutls_cipher_deinit(cipher_hnd);
-                               return NT_STATUS_INTERNAL_ERROR;
+                               return gnutls_error_to_ntstatus(rc, NT_STATUS_CRYPTO_SYSTEM_INVALID);
                        }
 
                        /*
@@ -317,20 +315,16 @@ static NTSTATUS netsec_do_seal(struct schannel_state *state,
                                                   data,
                                                   length);
                        if (rc < 0) {
-                               DBG_ERR("ERROR: gnutls_cipher_encrypt: %s\n",
-                                       gnutls_strerror(errno));
                                gnutls_cipher_deinit(cipher_hnd);
-                               return NT_STATUS_INTERNAL_ERROR;
+                               return gnutls_error_to_ntstatus(rc, NT_STATUS_CRYPTO_SYSTEM_INVALID);
                        }
                } else {
                        rc = gnutls_cipher_decrypt(cipher_hnd,
                                                   confounder,
                                                   8);
                        if (rc < 0) {
-                               DBG_ERR("ERROR: gnutls_cipher_decrypt: %s\n",
-                                       gnutls_strerror(errno));
                                gnutls_cipher_deinit(cipher_hnd);
-                               return NT_STATUS_INTERNAL_ERROR;
+                               return gnutls_error_to_ntstatus(rc, NT_STATUS_CRYPTO_SYSTEM_INVALID);
                        }
 
                        /*
@@ -342,10 +336,8 @@ static NTSTATUS netsec_do_seal(struct schannel_state *state,
                                                   data,
                                                   length);
                        if (rc < 0) {
-                               DBG_ERR("ERROR: gnutls_cipher_decrypt: %s\n",
-                                       gnutls_strerror(errno));
                                gnutls_cipher_deinit(cipher_hnd);
-                               return NT_STATUS_INTERNAL_ERROR;
+                               return gnutls_error_to_ntstatus(rc, NT_STATUS_CRYPTO_SYSTEM_INVALID);
                        }
                }
                gnutls_cipher_deinit(cipher_hnd);
Samba Shared Repository