1 files changed, 124 insertions, 134 deletions
diff --git a/fs/cifs/asn1.c b/fs/cifs/asn1.c
index 6bb440b257b0..5fabd2caf93c 100644
--- a/fs/cifs/asn1.c
+++ b/fs/cifs/asn1.c
@@ -483,6 +483,7 @@ decode_negTokenInit(unsigned char *security_blob, int length,
        asn1_open(&ctx, security_blob, length);
+        /* GSSAPI header */
        if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
                cFYI(1, ("Error decoding negTokenInit header"));
                return 0;
@@ -490,153 +491,142 @@ decode_negTokenInit(unsigned char *security_blob, int length,
                   || (tag != ASN1_EOC)) {
                cFYI(1, ("cls = %d con = %d tag = %d", cls, con, tag));
                return 0;
-        } else {
+        }
-                /*      remember to free obj->oid */
-                rc = asn1_header_decode(&ctx, &end, &cls, &con, &tag);
-                if (rc) {
-                        if ((tag == ASN1_OJI) && (con == ASN1_PRI)) {
-                                rc = asn1_oid_decode(&ctx, end, &oid, &oidlen);
-                                if (rc) {
-                                        rc = compare_oid(oid, oidlen,
-                                                         SPNEGO_OID,
-                                                         SPNEGO_OID_LEN);
-                                        kfree(oid);
-                                }
-                        } else
-                                rc = 0;
-                }
-                if (!rc) {
+        /* Check for SPNEGO OID -- remember to free obj->oid */
-                        cFYI(1, ("Error decoding negTokenInit header"));
+        rc = asn1_header_decode(&ctx, &end, &cls, &con, &tag);
-                        return 0;
+        if (rc) {
-                }
+                if ((tag == ASN1_OJI) && (con == ASN1_PRI) &&
+                    (cls == ASN1_UNI)) {
+                        rc = asn1_oid_decode(&ctx, end, &oid, &oidlen);
+                        if (rc) {
+                                rc = compare_oid(oid, oidlen, SPNEGO_OID,
+                                                 SPNEGO_OID_LEN);
+                                kfree(oid);
+                        }
+                } else
+                        rc = 0;
+        }
-                if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
+        /* SPNEGO OID not present or garbled -- bail out */
-                        cFYI(1, ("Error decoding negTokenInit"));
+        if (!rc) {
-                        return 0;
+                cFYI(1, ("Error decoding negTokenInit header"));
-                } else if ((cls != ASN1_CTX) || (con != ASN1_CON)
+                return 0;
-                           || (tag != ASN1_EOC)) {
+        }
-                        cFYI(1,
-                             ("cls = %d con = %d tag = %d end = %p (%d) exit 0",
-                              cls, con, tag, end, *end));
-                        return 0;
-                }
-                if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
+        if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
-                        cFYI(1, ("Error decoding negTokenInit"));
+                cFYI(1, ("Error decoding negTokenInit"));
-                        return 0;
+                return 0;
-                } else if ((cls != ASN1_UNI) || (con != ASN1_CON)
+        } else if ((cls != ASN1_CTX) || (con != ASN1_CON)
-                           || (tag != ASN1_SEQ)) {
+                   || (tag != ASN1_EOC)) {
-                        cFYI(1,
+                cFYI(1,
-                             ("cls = %d con = %d tag = %d end = %p (%d) exit 1",
+                     ("cls = %d con = %d tag = %d end = %p (%d) exit 0",
-                              cls, con, tag, end, *end));
+                      cls, con, tag, end, *end));
-                        return 0;
+                return 0;
-                }
+        }
-                if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
+        if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
-                        cFYI(1, ("Error decoding 2nd part of negTokenInit"));
+                cFYI(1, ("Error decoding negTokenInit"));
-                        return 0;
+                return 0;
-                } else if ((cls != ASN1_CTX) || (con != ASN1_CON)
+        } else if ((cls != ASN1_UNI) || (con != ASN1_CON)
-                           || (tag != ASN1_EOC)) {
+                   || (tag != ASN1_SEQ)) {
-                        cFYI(1,
+                cFYI(1,
-                             ("cls = %d con = %d tag = %d end = %p (%d) exit 0",
+                     ("cls = %d con = %d tag = %d end = %p (%d) exit 1",
-                              cls, con, tag, end, *end));
+                      cls, con, tag, end, *end));
-                        return 0;
+                return 0;
-                }
+        }
-                if (asn1_header_decode
+        if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
-                    (&ctx, &sequence_end, &cls, &con, &tag) == 0) {
+                cFYI(1, ("Error decoding 2nd part of negTokenInit"));
-                        cFYI(1, ("Error decoding 2nd part of negTokenInit"));
+                return 0;
-                        return 0;
+        } else if ((cls != ASN1_CTX) || (con != ASN1_CON)
-                } else if ((cls != ASN1_UNI) || (con != ASN1_CON)
+                   || (tag != ASN1_EOC)) {
-                           || (tag != ASN1_SEQ)) {
+                cFYI(1,
-                        cFYI(1,
+                     ("cls = %d con = %d tag = %d end = %p (%d) exit 0",
-                             ("cls = %d con = %d tag = %d end = %p (%d) exit 1",
+                      cls, con, tag, end, *end));
-                              cls, con, tag, end, *end));
+                return 0;
-                        return 0;
+        }
-                }
-                while (!asn1_eoc_decode(&ctx, sequence_end)) {
+        if (asn1_header_decode
-                        rc = asn1_header_decode(&ctx, &end, &cls, &con, &tag);
+            (&ctx, &sequence_end, &cls, &con, &tag) == 0) {
-                        if (!rc) {
+                cFYI(1, ("Error decoding 2nd part of negTokenInit"));
-                                cFYI(1,
+                return 0;
-                                     ("Error decoding negTokenInit hdr exit2"));
+        } else if ((cls != ASN1_UNI) || (con != ASN1_CON)
-                                return 0;
+                   || (tag != ASN1_SEQ)) {
-                        }
+                cFYI(1,
-                        if ((tag == ASN1_OJI) && (con == ASN1_PRI)) {
+                     ("cls = %d con = %d tag = %d end = %p (%d) exit 1",
-                                if (asn1_oid_decode(&ctx, end, &oid, &oidlen)) {
+                      cls, con, tag, end, *end));
+                return 0;
-                                        cFYI(1,
+        }
-                                          ("OID len = %d oid = 0x%lx 0x%lx "
-                                           "0x%lx 0x%lx",
-                                           oidlen, *oid, *(oid + 1),
-                                           *(oid + 2), *(oid + 3)));
-                                        if (compare_oid(oid, oidlen,
-                                                        MSKRB5_OID,
-                                                        MSKRB5_OID_LEN))
-                                                use_kerberos = true;
-                                        else if (compare_oid(oid, oidlen,
-                                                             KRB5_OID,
-                                                             KRB5_OID_LEN))
-                                                use_kerberos = true;
-                                        else if (compare_oid(oid, oidlen,
-                                                             NTLMSSP_OID,
-                                                             NTLMSSP_OID_LEN))
-                                                use_ntlmssp = true;
-                                        kfree(oid);
-                                }
-                        } else {
-                                cFYI(1, ("Should be an oid what is going on?"));
-                        }
-                }
-                if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
+        while (!asn1_eoc_decode(&ctx, sequence_end)) {
-                        cFYI(1,
+                rc = asn1_header_decode(&ctx, &end, &cls, &con, &tag);
-                             ("Error decoding last part negTokenInit exit3"));
+                if (!rc) {
-                        return 0;
-                } else if ((cls != ASN1_CTX) || (con != ASN1_CON)) {
-                        /* tag = 3 indicating mechListMIC */
                        cFYI(1,
-                             ("Exit 4 cls = %d con = %d tag = %d end = %p (%d)",
+                             ("Error decoding negTokenInit hdr exit2"));
-                              cls, con, tag, end, *end));
                        return 0;
                }
-                if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
+                if ((tag == ASN1_OJI) && (con == ASN1_PRI)) {
-                        cFYI(1,
+                        if (asn1_oid_decode(&ctx, end, &oid, &oidlen)) {
-                             ("Error decoding last part negTokenInit exit5"));
-                        return 0;
+                                cFYI(1, ("OID len = %d oid = 0x%lx 0x%lx "
-                } else if ((cls != ASN1_UNI) || (con != ASN1_CON)
+                                         "0x%lx 0x%lx", oidlen, *oid,
-                           || (tag != ASN1_SEQ)) {
+                                         *(oid + 1), *(oid + 2), *(oid + 3)));
-                        cFYI(1, ("cls = %d con = %d tag = %d end = %p (%d)",
-                                cls, con, tag, end, *end));
+                                if (compare_oid(oid, oidlen, MSKRB5_OID,
+                                                MSKRB5_OID_LEN))
+                                        use_kerberos = true;
+                                else if (compare_oid(oid, oidlen, KRB5_OID,
+                                                     KRB5_OID_LEN))
+                                        use_kerberos = true;
+                                else if (compare_oid(oid, oidlen, NTLMSSP_OID,
+                                                     NTLMSSP_OID_LEN))
+                                        use_ntlmssp = true;
+                                kfree(oid);
+                        }
+                } else {
+                        cFYI(1, ("Should be an oid what is going on?"));
                }
+        }
-                if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
+        if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
-                        cFYI(1,
+                cFYI(1, ("Error decoding last part negTokenInit exit3"));
-                             ("Error decoding last part negTokenInit exit 7"));
+                return 0;
-                        return 0;
+        } else if ((cls != ASN1_CTX) || (con != ASN1_CON)) {
-                } else if ((cls != ASN1_CTX) || (con != ASN1_CON)) {
+                /* tag = 3 indicating mechListMIC */
-                        cFYI(1,
+                cFYI(1, ("Exit 4 cls = %d con = %d tag = %d end = %p (%d)",
-                             ("Exit 8 cls = %d con = %d tag = %d end = %p (%d)",
+                         cls, con, tag, end, *end));
-                              cls, con, tag, end, *end));
+                return 0;
-                        return 0;
+        }
-                }
+        if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
-                if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
+                cFYI(1, ("Error decoding last part negTokenInit exit5"));
-                        cFYI(1,
+                return 0;
-                             ("Error decoding last part negTokenInit exit9"));
+        } else if ((cls != ASN1_UNI) || (con != ASN1_CON)
-                        return 0;
+                   || (tag != ASN1_SEQ)) {
-                } else if ((cls != ASN1_UNI) || (con != ASN1_PRI)
+                cFYI(1, ("cls = %d con = %d tag = %d end = %p (%d)",
-                           || (tag != ASN1_GENSTR)) {
+                        cls, con, tag, end, *end));
-                        cFYI(1,
+        }
-                             ("Exit10 cls = %d con = %d tag = %d end = %p (%d)",
-                              cls, con, tag, end, *end));
+        if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
-                        return 0;
+                cFYI(1, ("Error decoding last part negTokenInit exit 7"));
-                }
+                return 0;
-                cFYI(1, ("Need to call asn1_octets_decode() function for %s",
+        } else if ((cls != ASN1_CTX) || (con != ASN1_CON)) {
-                         ctx.pointer)); /* is this UTF-8 or ASCII? */
+                cFYI(1, ("Exit 8 cls = %d con = %d tag = %d end = %p (%d)",
+                         cls, con, tag, end, *end));
+                return 0;
+        }
+        if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
+                cFYI(1, ("Error decoding last part negTokenInit exit9"));
+                return 0;
+        } else if ((cls != ASN1_UNI) || (con != ASN1_PRI)
+                   || (tag != ASN1_GENSTR)) {
+                cFYI(1, ("Exit10 cls = %d con = %d tag = %d end = %p (%d)",
+                         cls, con, tag, end, *end));
+                return 0;
        }
+        cFYI(1, ("Need to call asn1_octets_decode() function for %s",
+                 ctx.pointer)); /* is this UTF-8 or ASCII? */
        if (use_kerberos)
                *secType = Kerberos;

diff --git a/fs/cifs/asn1.c b/fs/cifs/asn1.c index 6bb440b257b0..5fabd2caf93c 100644 --- a/fs/cifs/asn1.c +++ b/fs/cifs/asn1.c
@@ -483,6 +483,7 @@ decode_negTokenInit(unsigned char *security_blob, int length,
483		483
484	asn1_open(&ctx, security_blob, length);	484	asn1_open(&ctx, security_blob, length);
485		485
		486	/* GSSAPI header */
486	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {	487	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
487	cFYI(1, ("Error decoding negTokenInit header"));	488	cFYI(1, ("Error decoding negTokenInit header"));
488	return 0;	489	return 0;
@@ -490,153 +491,142 @@ decode_negTokenInit(unsigned char *security_blob, int length,
490	\|\| (tag != ASN1_EOC)) {	491	\|\| (tag != ASN1_EOC)) {
491	cFYI(1, ("cls = %d con = %d tag = %d", cls, con, tag));	492	cFYI(1, ("cls = %d con = %d tag = %d", cls, con, tag));
492	return 0;	493	return 0;
493	} else {	494	}
494	/* remember to free obj->oid */
495	rc = asn1_header_decode(&ctx, &end, &cls, &con, &tag);
496	if (rc) {
497	if ((tag == ASN1_OJI) && (con == ASN1_PRI)) {
498	rc = asn1_oid_decode(&ctx, end, &oid, &oidlen);
499	if (rc) {
500	rc = compare_oid(oid, oidlen,
501	SPNEGO_OID,
502	SPNEGO_OID_LEN);
503	kfree(oid);
504	}
505	} else
506	rc = 0;
507	}
508		495
509	if (!rc) {	496	/* Check for SPNEGO OID -- remember to free obj->oid */
510	cFYI(1, ("Error decoding negTokenInit header"));	497	rc = asn1_header_decode(&ctx, &end, &cls, &con, &tag);
511	return 0;	498	if (rc) {
512	}	499	if ((tag == ASN1_OJI) && (con == ASN1_PRI) &&
		500	(cls == ASN1_UNI)) {
		501	rc = asn1_oid_decode(&ctx, end, &oid, &oidlen);
		502	if (rc) {
		503	rc = compare_oid(oid, oidlen, SPNEGO_OID,
		504	SPNEGO_OID_LEN);
		505	kfree(oid);
		506	}
		507	} else
		508	rc = 0;
		509	}
513		510
514	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {	511	/* SPNEGO OID not present or garbled -- bail out */
515	cFYI(1, ("Error decoding negTokenInit"));	512	if (!rc) {
516	return 0;	513	cFYI(1, ("Error decoding negTokenInit header"));
517	} else if ((cls != ASN1_CTX) \|\| (con != ASN1_CON)	514	return 0;
518	\|\| (tag != ASN1_EOC)) {	515	}
519	cFYI(1,
520	("cls = %d con = %d tag = %d end = %p (%d) exit 0",
521	cls, con, tag, end, *end));
522	return 0;
523	}
524		516
525	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {	517	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
526	cFYI(1, ("Error decoding negTokenInit"));	518	cFYI(1, ("Error decoding negTokenInit"));
527	return 0;	519	return 0;
528	} else if ((cls != ASN1_UNI) \|\| (con != ASN1_CON)	520	} else if ((cls != ASN1_CTX) \|\| (con != ASN1_CON)
529	\|\| (tag != ASN1_SEQ)) {	521	\|\| (tag != ASN1_EOC)) {
530	cFYI(1,	522	cFYI(1,
531	("cls = %d con = %d tag = %d end = %p (%d) exit 1",	523	("cls = %d con = %d tag = %d end = %p (%d) exit 0",
532	cls, con, tag, end, *end));	524	cls, con, tag, end, *end));
533	return 0;	525	return 0;
534	}	526	}
535		527
536	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {	528	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
537	cFYI(1, ("Error decoding 2nd part of negTokenInit"));	529	cFYI(1, ("Error decoding negTokenInit"));
538	return 0;	530	return 0;
539	} else if ((cls != ASN1_CTX) \|\| (con != ASN1_CON)	531	} else if ((cls != ASN1_UNI) \|\| (con != ASN1_CON)
540	\|\| (tag != ASN1_EOC)) {	532	\|\| (tag != ASN1_SEQ)) {
541	cFYI(1,	533	cFYI(1,
542	("cls = %d con = %d tag = %d end = %p (%d) exit 0",	534	("cls = %d con = %d tag = %d end = %p (%d) exit 1",
543	cls, con, tag, end, *end));	535	cls, con, tag, end, *end));
544	return 0;	536	return 0;
545	}	537	}
546		538
547	if (asn1_header_decode	539	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
548	(&ctx, &sequence_end, &cls, &con, &tag) == 0) {	540	cFYI(1, ("Error decoding 2nd part of negTokenInit"));
549	cFYI(1, ("Error decoding 2nd part of negTokenInit"));	541	return 0;
550	return 0;	542	} else if ((cls != ASN1_CTX) \|\| (con != ASN1_CON)
551	} else if ((cls != ASN1_UNI) \|\| (con != ASN1_CON)	543	\|\| (tag != ASN1_EOC)) {
552	\|\| (tag != ASN1_SEQ)) {	544	cFYI(1,
553	cFYI(1,	545	("cls = %d con = %d tag = %d end = %p (%d) exit 0",
554	("cls = %d con = %d tag = %d end = %p (%d) exit 1",	546	cls, con, tag, end, *end));
555	cls, con, tag, end, *end));	547	return 0;
556	return 0;	548	}
557	}
558		549
559	while (!asn1_eoc_decode(&ctx, sequence_end)) {	550	if (asn1_header_decode
560	rc = asn1_header_decode(&ctx, &end, &cls, &con, &tag);	551	(&ctx, &sequence_end, &cls, &con, &tag) == 0) {
561	if (!rc) {	552	cFYI(1, ("Error decoding 2nd part of negTokenInit"));
562	cFYI(1,	553	return 0;
563	("Error decoding negTokenInit hdr exit2"));	554	} else if ((cls != ASN1_UNI) \|\| (con != ASN1_CON)
564	return 0;	555	\|\| (tag != ASN1_SEQ)) {
565	}	556	cFYI(1,
566	if ((tag == ASN1_OJI) && (con == ASN1_PRI)) {	557	("cls = %d con = %d tag = %d end = %p (%d) exit 1",
567	if (asn1_oid_decode(&ctx, end, &oid, &oidlen)) {	558	cls, con, tag, end, *end));
568		559	return 0;
569	cFYI(1,	560	}
570	("OID len = %d oid = 0x%lx 0x%lx "
571	"0x%lx 0x%lx",
572	oidlen, oid, (oid + 1),
573	(oid + 2), (oid + 3)));
574
575	if (compare_oid(oid, oidlen,
576	MSKRB5_OID,
577	MSKRB5_OID_LEN))
578	use_kerberos = true;
579	else if (compare_oid(oid, oidlen,
580	KRB5_OID,
581	KRB5_OID_LEN))
582	use_kerberos = true;
583	else if (compare_oid(oid, oidlen,
584	NTLMSSP_OID,
585	NTLMSSP_OID_LEN))
586	use_ntlmssp = true;
587
588	kfree(oid);
589	}
590	} else {
591	cFYI(1, ("Should be an oid what is going on?"));
592	}
593	}
594		561
595	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {	562	while (!asn1_eoc_decode(&ctx, sequence_end)) {
596	cFYI(1,	563	rc = asn1_header_decode(&ctx, &end, &cls, &con, &tag);
597	("Error decoding last part negTokenInit exit3"));	564	if (!rc) {
598	return 0;
599	} else if ((cls != ASN1_CTX) \|\| (con != ASN1_CON)) {
600	/* tag = 3 indicating mechListMIC */
601	cFYI(1,	565	cFYI(1,
602	("Exit 4 cls = %d con = %d tag = %d end = %p (%d)",	566	("Error decoding negTokenInit hdr exit2"));
603	cls, con, tag, end, *end));
604	return 0;	567	return 0;
605	}	568	}
606	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {	569	if ((tag == ASN1_OJI) && (con == ASN1_PRI)) {
607	cFYI(1,	570	if (asn1_oid_decode(&ctx, end, &oid, &oidlen)) {
608	("Error decoding last part negTokenInit exit5"));	571
609	return 0;	572	cFYI(1, ("OID len = %d oid = 0x%lx 0x%lx "
610	} else if ((cls != ASN1_UNI) \|\| (con != ASN1_CON)	573	"0x%lx 0x%lx", oidlen, *oid,
611	\|\| (tag != ASN1_SEQ)) {	574	(oid + 1), (oid + 2), *(oid + 3)));
612	cFYI(1, ("cls = %d con = %d tag = %d end = %p (%d)",	575
613	cls, con, tag, end, *end));	576	if (compare_oid(oid, oidlen, MSKRB5_OID,
		577	MSKRB5_OID_LEN))
		578	use_kerberos = true;
		579	else if (compare_oid(oid, oidlen, KRB5_OID,
		580	KRB5_OID_LEN))
		581	use_kerberos = true;
		582	else if (compare_oid(oid, oidlen, NTLMSSP_OID,
		583	NTLMSSP_OID_LEN))
		584	use_ntlmssp = true;
		585
		586	kfree(oid);
		587	}
		588	} else {
		589	cFYI(1, ("Should be an oid what is going on?"));
614	}	590	}
		591	}
615		592
616	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {	593	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
617	cFYI(1,	594	cFYI(1, ("Error decoding last part negTokenInit exit3"));
618	("Error decoding last part negTokenInit exit 7"));	595	return 0;
619	return 0;	596	} else if ((cls != ASN1_CTX) \|\| (con != ASN1_CON)) {
620	} else if ((cls != ASN1_CTX) \|\| (con != ASN1_CON)) {	597	/* tag = 3 indicating mechListMIC */
621	cFYI(1,	598	cFYI(1, ("Exit 4 cls = %d con = %d tag = %d end = %p (%d)",
622	("Exit 8 cls = %d con = %d tag = %d end = %p (%d)",	599	cls, con, tag, end, *end));
623	cls, con, tag, end, *end));	600	return 0;
624	return 0;	601	}
625	}	602	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
626	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {	603	cFYI(1, ("Error decoding last part negTokenInit exit5"));
627	cFYI(1,	604	return 0;
628	("Error decoding last part negTokenInit exit9"));	605	} else if ((cls != ASN1_UNI) \|\| (con != ASN1_CON)
629	return 0;	606	\|\| (tag != ASN1_SEQ)) {
630	} else if ((cls != ASN1_UNI) \|\| (con != ASN1_PRI)	607	cFYI(1, ("cls = %d con = %d tag = %d end = %p (%d)",
631	\|\| (tag != ASN1_GENSTR)) {	608	cls, con, tag, end, *end));
632	cFYI(1,	609	}
633	("Exit10 cls = %d con = %d tag = %d end = %p (%d)",	610
634	cls, con, tag, end, *end));	611	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
635	return 0;	612	cFYI(1, ("Error decoding last part negTokenInit exit 7"));
636	}	613	return 0;
637	cFYI(1, ("Need to call asn1_octets_decode() function for %s",	614	} else if ((cls != ASN1_CTX) \|\| (con != ASN1_CON)) {
638	ctx.pointer)); /* is this UTF-8 or ASCII? */	615	cFYI(1, ("Exit 8 cls = %d con = %d tag = %d end = %p (%d)",
		616	cls, con, tag, end, *end));
		617	return 0;
		618	}
		619	if (asn1_header_decode(&ctx, &end, &cls, &con, &tag) == 0) {
		620	cFYI(1, ("Error decoding last part negTokenInit exit9"));
		621	return 0;
		622	} else if ((cls != ASN1_UNI) \|\| (con != ASN1_PRI)
		623	\|\| (tag != ASN1_GENSTR)) {
		624	cFYI(1, ("Exit10 cls = %d con = %d tag = %d end = %p (%d)",
		625	cls, con, tag, end, *end));
		626	return 0;
639	}	627	}
		628	cFYI(1, ("Need to call asn1_octets_decode() function for %s",
		629	ctx.pointer)); /* is this UTF-8 or ASCII? */
640		630
641	if (use_kerberos)	631	if (use_kerberos)
642	*secType = Kerberos;	632	*secType = Kerberos;