178 lines
6.4 KiB
C
178 lines
6.4 KiB
C
/*
|
|
* linux/include/sunrpc/gss_err.h
|
|
*
|
|
* Adapted from MIT Kerberos 5-1.2.1 include/gssapi/gssapi.h
|
|
*
|
|
* Copyright (c) 2002 The Regents of the University of Michigan.
|
|
* All rights reserved.
|
|
*
|
|
* Andy Adamson <andros@umich.edu>
|
|
*/
|
|
|
|
/*
|
|
* Copyright 1993 by OpenVision Technologies, Inc.
|
|
*
|
|
* Permission to use, copy, modify, distribute, and sell this software
|
|
* and its documentation for any purpose is hereby granted without fee,
|
|
* provided that the above copyright notice appears in all copies and
|
|
* that both that copyright notice and this permission notice appear in
|
|
* supporting documentation, and that the name of OpenVision not be used
|
|
* in advertising or publicity pertaining to distribution of the software
|
|
* without specific, written prior permission. OpenVision makes no
|
|
* representations about the suitability of this software for any
|
|
* purpose. It is provided "as is" without express or implied warranty.
|
|
*
|
|
* OPENVISION DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE,
|
|
* INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS, IN NO
|
|
* EVENT SHALL OPENVISION BE LIABLE FOR ANY SPECIAL, INDIRECT OR
|
|
* CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF
|
|
* USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR
|
|
* OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
|
|
* PERFORMANCE OF THIS SOFTWARE.
|
|
*/
|
|
|
|
#ifndef _LINUX_SUNRPC_GSS_ERR_H
|
|
#define _LINUX_SUNRPC_GSS_ERR_H
|
|
|
|
#ifdef __KERNEL__
|
|
|
|
typedef unsigned int OM_uint32;
|
|
|
|
/*
|
|
* Flag bits for context-level services.
|
|
*/
|
|
#define GSS_C_DELEG_FLAG 1
|
|
#define GSS_C_MUTUAL_FLAG 2
|
|
#define GSS_C_REPLAY_FLAG 4
|
|
#define GSS_C_SEQUENCE_FLAG 8
|
|
#define GSS_C_CONF_FLAG 16
|
|
#define GSS_C_INTEG_FLAG 32
|
|
#define GSS_C_ANON_FLAG 64
|
|
#define GSS_C_PROT_READY_FLAG 128
|
|
#define GSS_C_TRANS_FLAG 256
|
|
|
|
/*
|
|
* Credential usage options
|
|
*/
|
|
#define GSS_C_BOTH 0
|
|
#define GSS_C_INITIATE 1
|
|
#define GSS_C_ACCEPT 2
|
|
|
|
/*
|
|
* Status code types for gss_display_status
|
|
*/
|
|
#define GSS_C_GSS_CODE 1
|
|
#define GSS_C_MECH_CODE 2
|
|
|
|
|
|
/*
|
|
* Define the default Quality of Protection for per-message services. Note
|
|
* that an implementation that offers multiple levels of QOP may either reserve
|
|
* a value (for example zero, as assumed here) to mean "default protection", or
|
|
* alternatively may simply equate GSS_C_QOP_DEFAULT to a specific explicit
|
|
* QOP value. However a value of 0 should always be interpreted by a GSSAPI
|
|
* implementation as a request for the default protection level.
|
|
*/
|
|
#define GSS_C_QOP_DEFAULT 0
|
|
|
|
/*
|
|
* Expiration time of 2^32-1 seconds means infinite lifetime for a
|
|
* credential or security context
|
|
*/
|
|
#define GSS_C_INDEFINITE ((OM_uint32) 0xfffffffful)
|
|
|
|
|
|
/* Major status codes */
|
|
|
|
#define GSS_S_COMPLETE 0
|
|
|
|
/*
|
|
* Some "helper" definitions to make the status code macros obvious.
|
|
*/
|
|
#define GSS_C_CALLING_ERROR_OFFSET 24
|
|
#define GSS_C_ROUTINE_ERROR_OFFSET 16
|
|
#define GSS_C_SUPPLEMENTARY_OFFSET 0
|
|
#define GSS_C_CALLING_ERROR_MASK ((OM_uint32) 0377ul)
|
|
#define GSS_C_ROUTINE_ERROR_MASK ((OM_uint32) 0377ul)
|
|
#define GSS_C_SUPPLEMENTARY_MASK ((OM_uint32) 0177777ul)
|
|
|
|
/*
|
|
* The macros that test status codes for error conditions. Note that the
|
|
* GSS_ERROR() macro has changed slightly from the V1 GSSAPI so that it now
|
|
* evaluates its argument only once.
|
|
*/
|
|
#define GSS_CALLING_ERROR(x) \
|
|
((x) & (GSS_C_CALLING_ERROR_MASK << GSS_C_CALLING_ERROR_OFFSET))
|
|
#define GSS_ROUTINE_ERROR(x) \
|
|
((x) & (GSS_C_ROUTINE_ERROR_MASK << GSS_C_ROUTINE_ERROR_OFFSET))
|
|
#define GSS_SUPPLEMENTARY_INFO(x) \
|
|
((x) & (GSS_C_SUPPLEMENTARY_MASK << GSS_C_SUPPLEMENTARY_OFFSET))
|
|
#define GSS_ERROR(x) \
|
|
((x) & ((GSS_C_CALLING_ERROR_MASK << GSS_C_CALLING_ERROR_OFFSET) | \
|
|
(GSS_C_ROUTINE_ERROR_MASK << GSS_C_ROUTINE_ERROR_OFFSET)))
|
|
|
|
/*
|
|
* Now the actual status code definitions
|
|
*/
|
|
|
|
/*
|
|
* Calling errors:
|
|
*/
|
|
#define GSS_S_CALL_INACCESSIBLE_READ \
|
|
(((OM_uint32) 1ul) << GSS_C_CALLING_ERROR_OFFSET)
|
|
#define GSS_S_CALL_INACCESSIBLE_WRITE \
|
|
(((OM_uint32) 2ul) << GSS_C_CALLING_ERROR_OFFSET)
|
|
#define GSS_S_CALL_BAD_STRUCTURE \
|
|
(((OM_uint32) 3ul) << GSS_C_CALLING_ERROR_OFFSET)
|
|
|
|
/*
|
|
* Routine errors:
|
|
*/
|
|
#define GSS_S_BAD_MECH (((OM_uint32) 1ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_BAD_NAME (((OM_uint32) 2ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_BAD_NAMETYPE (((OM_uint32) 3ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_BAD_BINDINGS (((OM_uint32) 4ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_BAD_STATUS (((OM_uint32) 5ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_BAD_SIG (((OM_uint32) 6ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_NO_CRED (((OM_uint32) 7ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_NO_CONTEXT (((OM_uint32) 8ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_DEFECTIVE_TOKEN (((OM_uint32) 9ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_DEFECTIVE_CREDENTIAL \
|
|
(((OM_uint32) 10ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_CREDENTIALS_EXPIRED \
|
|
(((OM_uint32) 11ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_CONTEXT_EXPIRED \
|
|
(((OM_uint32) 12ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_FAILURE (((OM_uint32) 13ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_BAD_QOP (((OM_uint32) 14ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_UNAUTHORIZED (((OM_uint32) 15ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_UNAVAILABLE (((OM_uint32) 16ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_DUPLICATE_ELEMENT \
|
|
(((OM_uint32) 17ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
#define GSS_S_NAME_NOT_MN \
|
|
(((OM_uint32) 18ul) << GSS_C_ROUTINE_ERROR_OFFSET)
|
|
|
|
/*
|
|
* Supplementary info bits:
|
|
*/
|
|
#define GSS_S_CONTINUE_NEEDED (1 << (GSS_C_SUPPLEMENTARY_OFFSET + 0))
|
|
#define GSS_S_DUPLICATE_TOKEN (1 << (GSS_C_SUPPLEMENTARY_OFFSET + 1))
|
|
#define GSS_S_OLD_TOKEN (1 << (GSS_C_SUPPLEMENTARY_OFFSET + 2))
|
|
#define GSS_S_UNSEQ_TOKEN (1 << (GSS_C_SUPPLEMENTARY_OFFSET + 3))
|
|
#define GSS_S_GAP_TOKEN (1 << (GSS_C_SUPPLEMENTARY_OFFSET + 4))
|
|
|
|
/* XXXX these are not part of the GSSAPI C bindings! (but should be) */
|
|
|
|
#define GSS_CALLING_ERROR_FIELD(x) \
|
|
(((x) >> GSS_C_CALLING_ERROR_OFFSET) & GSS_C_CALLING_ERROR_MASK)
|
|
#define GSS_ROUTINE_ERROR_FIELD(x) \
|
|
(((x) >> GSS_C_ROUTINE_ERROR_OFFSET) & GSS_C_ROUTINE_ERROR_MASK)
|
|
#define GSS_SUPPLEMENTARY_INFO_FIELD(x) \
|
|
(((x) >> GSS_C_SUPPLEMENTARY_OFFSET) & GSS_C_SUPPLEMENTARY_MASK)
|
|
|
|
/* XXXX This is a necessary evil until the spec is fixed */
|
|
#define GSS_S_CRED_UNAVAIL GSS_S_FAILURE
|
|
|
|
#endif /* __KERNEL__ */
|
|
#endif /* __LINUX_SUNRPC_GSS_ERR_H */
|