2 * Copyright 2004 Sun Microsystems, Inc. All rights reserved.
3 * Use is subject to license terms.
6 /* #pragma ident "@(#)g_store_cred.c 1.2 04/04/05 SMI" */
9 * glue routine for gss_store_cred
16 OM_uint32 *minor_status,
17 const gss_cred_id_t input_cred_handle,
18 gss_cred_usage_t cred_usage,
19 const gss_OID desired_mech,
20 OM_uint32 overwrite_cred,
21 OM_uint32 default_cred,
22 gss_OID_set *elements_stored,
23 gss_cred_usage_t *cred_usage_stored)
26 /* Initialize outputs. */
28 if (minor_status != NULL)
31 if (elements_stored != NULL)
32 *elements_stored = GSS_C_NULL_OID_SET;
34 /* Validate arguments. */
36 if (minor_status == NULL)
37 return (GSS_S_CALL_INACCESSIBLE_WRITE);
39 if (input_cred_handle == GSS_C_NO_CREDENTIAL)
40 return (GSS_S_CALL_INACCESSIBLE_READ | GSS_S_NO_CRED);
42 if (cred_usage != GSS_C_ACCEPT
43 && cred_usage != GSS_C_INITIATE
44 && cred_usage != GSS_C_BOTH) {
46 *minor_status = EINVAL;
47 map_errcode(minor_status);
52 return (GSS_S_COMPLETE);
56 OM_uint32 KRB5_CALLCONV
57 gss_store_cred(minor_status,
66 OM_uint32 *minor_status;
67 gss_cred_id_t input_cred_handle;
68 gss_cred_usage_t cred_usage;
69 const gss_OID desired_mech;
70 OM_uint32 overwrite_cred;
71 OM_uint32 default_cred;
72 gss_OID_set *elements_stored;
73 gss_cred_usage_t *cred_usage_stored;
76 OM_uint32 major_status = GSS_S_FAILURE;
77 gss_union_cred_t union_cred;
78 gss_cred_id_t mech_cred;
83 major_status = val_store_cred_args(minor_status,
91 if (major_status != GSS_S_COMPLETE)
92 return (major_status);
94 /* Initial value needed below. */
95 major_status = GSS_S_FAILURE;
97 if (cred_usage_stored != NULL)
98 *cred_usage_stored = GSS_C_BOTH; /* there's no GSS_C_NEITHER */
100 union_cred = (gss_union_cred_t)input_cred_handle;
102 /* desired_mech != GSS_C_NULL_OID -> store one element */
103 if (desired_mech != GSS_C_NULL_OID) {
104 mech = gssint_get_mechanism(desired_mech);
106 return (GSS_S_BAD_MECH);
108 if (mech->gss_store_cred == NULL)
109 return (major_status);
111 mech_cred = gssint_get_mechanism_cred(union_cred, desired_mech);
112 if (mech_cred == GSS_C_NO_CREDENTIAL)
113 return (GSS_S_NO_CRED);
115 major_status = mech->gss_store_cred(
117 (gss_cred_id_t)mech_cred,
124 if (major_status != GSS_S_COMPLETE)
125 map_error(minor_status, mech);
129 /* desired_mech == GSS_C_NULL_OID -> store all elements */
133 for (i = 0; i < union_cred->count; i++) {
134 /* Get mech and cred element */
135 dmech = &union_cred->mechs_array[i];
136 mech = gssint_get_mechanism(dmech);
140 if (mech->gss_store_cred == NULL)
143 mech_cred = gssint_get_mechanism_cred(union_cred, dmech);
144 if (mech_cred == GSS_C_NO_CREDENTIAL)
145 continue; /* can't happen, but safe to ignore */
147 major_status = mech->gss_store_cred(
149 (gss_cred_id_t)mech_cred,
156 if (major_status != GSS_S_COMPLETE) {
157 map_error(minor_status, mech);
161 /* Succeeded for at least one mech */
163 if (elements_stored == NULL)
166 if (*elements_stored == GSS_C_NULL_OID_SET) {
167 major_status = gss_create_empty_oid_set(minor_status,
170 if (GSS_ERROR(major_status))
171 return (major_status);
174 major_status = gss_add_oid_set_member(minor_status, dmech,
177 /* The caller should clean up elements_stored */
178 if (GSS_ERROR(major_status))
179 return (major_status);
183 * Success with some mechs may mask failure with others, but
184 * that's what elements_stored is for.
186 return (major_status);