2 * Copyright (c) 1998 - 2005 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 #include "krb5/gsskrb5_locl.h"
36 RCSID("$Id: display_status.c,v 1.16 2006/10/07 22:14:33 lha Exp $");
39 calling_error(OM_uint32 v)
41 static const char *msgs[] = {
43 "A required input parameter could not be read.", /* */
44 "A required output parameter could not be written.", /* */
45 "A parameter was malformed"
48 v >>= GSS_C_CALLING_ERROR_OFFSET;
52 else if (v >= sizeof(msgs)/sizeof(*msgs))
53 return "unknown calling error";
59 routine_error(OM_uint32 v)
61 static const char *msgs[] = {
63 "An unsupported mechanism was requested",
64 "An invalid name was supplied",
65 "A supplied name was of an unsupported type",
66 "Incorrect channel bindings were supplied",
67 "An invalid status code was supplied",
68 "A token had an invalid MIC",
69 "No credentials were supplied, "
70 "or the credentials were unavailable or inaccessible.",
71 "No context has been established",
72 "A token was invalid",
73 "A credential was invalid",
74 "The referenced credentials have expired",
75 "The context has expired",
76 "Miscellaneous failure (see text)",
77 "The quality-of-protection requested could not be provide",
78 "The operation is forbidden by local security policy",
79 "The operation or option is not available",
80 "The requested credential element already exists",
81 "The provided name was not a mechanism name.",
84 v >>= GSS_C_ROUTINE_ERROR_OFFSET;
88 else if (v >= sizeof(msgs)/sizeof(*msgs))
89 return "unknown routine error";
95 supplementary_error(OM_uint32 v)
97 static const char *msgs[] = {
99 "continuation call to routine required",
100 "duplicate per-message token detected",
101 "timed-out per-message token detected",
102 "reordered (early) per-message token detected",
103 "skipped predecessor token(s) detected"
106 v >>= GSS_C_SUPPLEMENTARY_OFFSET;
108 if (v >= sizeof(msgs)/sizeof(*msgs))
109 return "unknown routine error";
115 _gsskrb5_clear_status (void)
117 struct gssapi_thr_context *ctx = _gsskrb5_get_thread_context(1);
120 HEIMDAL_MUTEX_lock(&ctx->mutex);
121 if (ctx->error_string)
122 free(ctx->error_string);
123 ctx->error_string = NULL;
124 HEIMDAL_MUTEX_unlock(&ctx->mutex);
128 _gsskrb5_set_status (const char *fmt, ...)
130 struct gssapi_thr_context *ctx = _gsskrb5_get_thread_context(1);
135 HEIMDAL_MUTEX_lock(&ctx->mutex);
137 if (ctx->error_string)
138 free(ctx->error_string);
139 /* ignore failures, will use status code instead */
140 vasprintf(&ctx->error_string, fmt, args);
142 HEIMDAL_MUTEX_unlock(&ctx->mutex);
146 _gsskrb5_set_error_string (void)
150 e = krb5_get_error_string(_gsskrb5_context);
152 _gsskrb5_set_status("%s", e);
153 krb5_free_error_string(_gsskrb5_context, e);
155 _gsskrb5_clear_status();
159 _gsskrb5_get_error_string (void)
161 struct gssapi_thr_context *ctx = _gsskrb5_get_thread_context(0);
166 HEIMDAL_MUTEX_lock(&ctx->mutex);
167 ret = ctx->error_string;
168 ctx->error_string = NULL;
169 HEIMDAL_MUTEX_unlock(&ctx->mutex);
173 OM_uint32 _gsskrb5_display_status
174 (OM_uint32 *minor_status,
175 OM_uint32 status_value,
177 const gss_OID mech_type,
178 OM_uint32 *message_context,
179 gss_buffer_t status_string)
185 status_string->length = 0;
186 status_string->value = NULL;
188 if (gss_oid_equal(mech_type, GSS_C_NO_OID) == 0 &&
189 gss_oid_equal(mech_type, GSS_KRB5_MECHANISM) == 0) {
191 return GSS_C_GSS_CODE;
194 if (status_type == GSS_C_GSS_CODE) {
195 if (GSS_SUPPLEMENTARY_INFO(status_value))
197 supplementary_error(GSS_SUPPLEMENTARY_INFO(status_value)));
199 asprintf (&buf, "%s %s",
200 calling_error(GSS_CALLING_ERROR(status_value)),
201 routine_error(GSS_ROUTINE_ERROR(status_value)));
202 } else if (status_type == GSS_C_MECH_CODE) {
203 buf = _gsskrb5_get_error_string ();
205 const char *tmp = krb5_get_err_text (_gsskrb5_context,
208 asprintf(&buf, "unknown mech error-code %u",
209 (unsigned)status_value);
214 *minor_status = EINVAL;
215 return GSS_S_BAD_STATUS;
219 *minor_status = ENOMEM;
220 return GSS_S_FAILURE;
223 *message_context = 0;
226 status_string->length = strlen(buf);
227 status_string->value = buf;
229 return GSS_S_COMPLETE;