mirror of
https://gitlab.freedesktop.org/libfprint/libfprint.git
synced 2025-11-15 07:38:12 +00:00
sdcp: Make sure to always set error when failing and use UNTRUSTED error for SDCP failures
This commit is contained in:
Joshua Grisham
@@ -831,7 +831,7 @@ egismoc_enroll_commit_cb (FpDevice *device,
|
|||||||
rsp_commit_success_suffix,
|
rsp_commit_success_suffix,
|
||||||
rsp_commit_success_suffix_len))
|
rsp_commit_success_suffix_len))
|
||||||
{
|
{
|
||||||
g_propagate_error (&error, fpi_device_error_new_msg (FP_DEVICE_ERROR_DATA_INVALID,
|
g_propagate_error (&error, fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"Enrollment was rejected by the device"));
|
"Enrollment was rejected by the device"));
|
||||||
fpi_ssm_mark_failed (self->task_ssm, error);
|
fpi_ssm_mark_failed (self->task_ssm, error);
|
||||||
fpi_sdcp_device_enroll_commit_complete (sdcp_device, error);
|
fpi_sdcp_device_enroll_commit_complete (sdcp_device, error);
|
||||||
|
|||||||
@@ -36,7 +36,6 @@ void fpi_sdcp_device_get_application_secret (FpSdcpDevice *self,
|
|||||||
GBytes **application_secret);
|
GBytes **application_secret);
|
||||||
void fpi_sdcp_device_set_application_secret (FpSdcpDevice *self,
|
void fpi_sdcp_device_set_application_secret (FpSdcpDevice *self,
|
||||||
GBytes *application_secret);
|
GBytes *application_secret);
|
||||||
void fpi_sdcp_device_unset_application_secret (FpSdcpDevice *self);
|
|
||||||
|
|
||||||
void fpi_sdcp_device_open (FpSdcpDevice *self);
|
void fpi_sdcp_device_open (FpSdcpDevice *self);
|
||||||
void fpi_sdcp_device_connect (FpSdcpDevice *self);
|
void fpi_sdcp_device_connect (FpSdcpDevice *self);
|
||||||
|
|||||||
@@ -196,12 +196,6 @@ fpi_sdcp_device_set_application_secret (FpSdcpDevice *self,
|
|||||||
g_object_set (G_OBJECT (self), "sdcp-data", data, NULL);
|
g_object_set (G_OBJECT (self), "sdcp-data", data, NULL);
|
||||||
}
|
}
|
||||||
|
|
||||||
void
|
|
||||||
fpi_sdcp_device_unset_application_secret (FpSdcpDevice *self)
|
|
||||||
{
|
|
||||||
g_object_set (G_OBJECT (self), "sdcp-data", NULL);
|
|
||||||
}
|
|
||||||
|
|
||||||
void
|
void
|
||||||
fpi_sdcp_device_open (FpSdcpDevice *self)
|
fpi_sdcp_device_open (FpSdcpDevice *self)
|
||||||
{
|
{
|
||||||
@@ -562,7 +556,10 @@ fpi_sdcp_device_connect_complete (FpSdcpDevice *self,
|
|||||||
&application_secret,
|
&application_secret,
|
||||||
&error))
|
&error))
|
||||||
{
|
{
|
||||||
fpi_device_open_complete (FP_DEVICE (self), error);
|
fpi_device_open_complete (FP_DEVICE (self),
|
||||||
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
|
"SDCP Connect verification failed: %s",
|
||||||
|
error->message));
|
||||||
return;
|
return;
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -729,10 +726,6 @@ fpi_sdcp_device_enroll_commit (FpSdcpDevice *self,
|
|||||||
if (!id || error)
|
if (!id || error)
|
||||||
{
|
{
|
||||||
fp_warn ("Could not generate SDCP enrollment ID");
|
fp_warn ("Could not generate SDCP enrollment ID");
|
||||||
|
|
||||||
/* clear potentially non-functioning application_secret */
|
|
||||||
fpi_sdcp_device_unset_application_secret (self);
|
|
||||||
|
|
||||||
fpi_device_enroll_complete (FP_DEVICE (self), NULL, error);
|
fpi_device_enroll_complete (FP_DEVICE (self), NULL, error);
|
||||||
g_object_set (print, "fpi-data", NULL, NULL);
|
g_object_set (print, "fpi-data", NULL, NULL);
|
||||||
return;
|
return;
|
||||||
@@ -875,15 +868,7 @@ fpi_sdcp_device_identify_complete (FpSdcpDevice *self,
|
|||||||
if (!fpi_sdcp_verify_identify (application_secret, priv->identify_nonce, id, mac, &error))
|
if (!fpi_sdcp_verify_identify (application_secret, priv->identify_nonce, id, mac, &error))
|
||||||
{
|
{
|
||||||
g_clear_pointer (&priv->identify_nonce, g_bytes_unref);
|
g_clear_pointer (&priv->identify_nonce, g_bytes_unref);
|
||||||
|
fpi_device_action_error (FP_DEVICE (self), error);
|
||||||
/* clear potentially non-functioning application_secret */
|
|
||||||
fpi_sdcp_device_unset_application_secret (self);
|
|
||||||
|
|
||||||
fpi_device_action_error (FP_DEVICE (self),
|
|
||||||
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
|
||||||
"SDCP AuthorizedIdentity verification "
|
|
||||||
"failed: %s",
|
|
||||||
error->message));
|
|
||||||
return;
|
return;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
@@ -113,7 +113,7 @@ fpi_sdcp_verify_signature (EVP_PKEY *pkey,
|
|||||||
|
|
||||||
out_error:
|
out_error:
|
||||||
g_propagate_error (error,
|
g_propagate_error (error,
|
||||||
fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"OpenSSL error verifying signature for label '%s'",
|
"OpenSSL error verifying signature for label '%s'",
|
||||||
label));
|
label));
|
||||||
print_openssl_errors ();
|
print_openssl_errors ();
|
||||||
@@ -143,8 +143,10 @@ fpi_sdcp_get_truststore (GError **error)
|
|||||||
truststore = X509_STORE_new ();
|
truststore = X509_STORE_new ();
|
||||||
if (!truststore)
|
if (!truststore)
|
||||||
{
|
{
|
||||||
fp_dbg ("Failed initializing SDCP X509 certificate store");
|
g_propagate_error (error,
|
||||||
goto out_error;
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
|
"Failed initializing SDCP X509 certificate store"));
|
||||||
|
goto out;
|
||||||
}
|
}
|
||||||
|
|
||||||
fpi_sdcp_truststore_register_resource ();
|
fpi_sdcp_truststore_register_resource ();
|
||||||
@@ -153,7 +155,10 @@ fpi_sdcp_get_truststore (GError **error)
|
|||||||
G_RESOURCE_LOOKUP_FLAGS_NONE, error);
|
G_RESOURCE_LOOKUP_FLAGS_NONE, error);
|
||||||
if (*error)
|
if (*error)
|
||||||
{
|
{
|
||||||
fp_dbg ("Error loading SDCP truststore certificates: %s", (*error)->message);
|
g_propagate_error (error,
|
||||||
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
|
"Error loading SDCP truststore certificates: %s",
|
||||||
|
(*error)->message));
|
||||||
goto out;
|
goto out;
|
||||||
}
|
}
|
||||||
for (int i = 0; trustcert_names[i]; i++)
|
for (int i = 0; trustcert_names[i]; i++)
|
||||||
@@ -163,8 +168,11 @@ fpi_sdcp_get_truststore (GError **error)
|
|||||||
trustcert_gb = g_resource_lookup_data (truststore_resource, trustcert_path, 0, error);
|
trustcert_gb = g_resource_lookup_data (truststore_resource, trustcert_path, 0, error);
|
||||||
if (*error)
|
if (*error)
|
||||||
{
|
{
|
||||||
fp_dbg ("Error loading SDCP truststore certificate '%s': %s",
|
g_propagate_error (error,
|
||||||
trustcert_names[i], (*error)->message);
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
|
"Error loading SDCP truststore "
|
||||||
|
"certificate '%s': %s",
|
||||||
|
trustcert_names[i], (*error)->message));
|
||||||
goto out;
|
goto out;
|
||||||
}
|
}
|
||||||
g_free (trustcert_path);
|
g_free (trustcert_path);
|
||||||
@@ -175,16 +183,22 @@ fpi_sdcp_get_truststore (GError **error)
|
|||||||
bio = BIO_new (BIO_s_mem ());
|
bio = BIO_new (BIO_s_mem ());
|
||||||
if (BIO_write (bio, trustcert_ptr, trustcert_len) != trustcert_len)
|
if (BIO_write (bio, trustcert_ptr, trustcert_len) != trustcert_len)
|
||||||
{
|
{
|
||||||
fp_dbg ("Failed reading '%s' to buffer", trustcert_names[i]);
|
g_propagate_error (error,
|
||||||
goto out_error;
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
|
"Failed reading '%s' to buffer",
|
||||||
|
trustcert_names[i]));
|
||||||
|
goto out;
|
||||||
}
|
}
|
||||||
g_bytes_unref (trustcert_gb);
|
g_bytes_unref (trustcert_gb);
|
||||||
trustcert = PEM_read_bio_X509 (bio, NULL, NULL, NULL);
|
trustcert = PEM_read_bio_X509 (bio, NULL, NULL, NULL);
|
||||||
//print_certificate (trustcert);
|
//print_certificate (trustcert);
|
||||||
if (!X509_STORE_add_cert (truststore, trustcert))
|
if (!X509_STORE_add_cert (truststore, trustcert))
|
||||||
{
|
{
|
||||||
fp_dbg ("Failed adding '%s' to X509 store", trustcert_names[i]);
|
g_propagate_error (error,
|
||||||
goto out_error;
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
|
"Failed adding '%s' to X509 store",
|
||||||
|
trustcert_names[i]));
|
||||||
|
goto out;
|
||||||
}
|
}
|
||||||
BIO_free (bio);
|
BIO_free (bio);
|
||||||
X509_free (trustcert);
|
X509_free (trustcert);
|
||||||
@@ -195,13 +209,8 @@ fpi_sdcp_get_truststore (GError **error)
|
|||||||
|
|
||||||
return truststore;
|
return truststore;
|
||||||
|
|
||||||
out_error:
|
|
||||||
g_propagate_error (error,
|
|
||||||
fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
|
||||||
"OpenSSL error setting up certificate verification"));
|
|
||||||
print_openssl_errors ();
|
|
||||||
goto out;
|
|
||||||
out:
|
out:
|
||||||
|
print_openssl_errors ();
|
||||||
g_clear_pointer (&trustcert_names, g_strfreev);
|
g_clear_pointer (&trustcert_names, g_strfreev);
|
||||||
g_clear_pointer (&trustcert, X509_free);
|
g_clear_pointer (&trustcert, X509_free);
|
||||||
return NULL;
|
return NULL;
|
||||||
@@ -258,16 +267,15 @@ fpi_sdcp_verify_certificate (X509 *certificate,
|
|||||||
|
|
||||||
out_error:
|
out_error:
|
||||||
g_propagate_error (error,
|
g_propagate_error (error,
|
||||||
fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"OpenSSL error setting up certificate verification"));
|
"OpenSSL error setting up certificate verification"));
|
||||||
print_openssl_errors ();
|
print_openssl_errors ();
|
||||||
goto out;
|
goto out;
|
||||||
out_verify_error:
|
out_verify_error:
|
||||||
g_propagate_error (error,
|
g_propagate_error (error,
|
||||||
fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"OpenSSL error verifying model certificate"));
|
"OpenSSL error verifying model certificate: %s",
|
||||||
fp_dbg ("OpenSSL verification error: %s",
|
X509_verify_cert_error_string (X509_STORE_CTX_get_error (ctx))));
|
||||||
X509_verify_cert_error_string (X509_STORE_CTX_get_error (ctx)));
|
|
||||||
out:
|
out:
|
||||||
g_clear_pointer (¶m, X509_VERIFY_PARAM_free);
|
g_clear_pointer (¶m, X509_VERIFY_PARAM_free);
|
||||||
g_clear_pointer (&ctx, X509_STORE_CTX_free);
|
g_clear_pointer (&ctx, X509_STORE_CTX_free);
|
||||||
@@ -323,7 +331,7 @@ fpi_sdcp_kdf (GBytes *key,
|
|||||||
secret = g_malloc0 (length);
|
secret = g_malloc0 (length);
|
||||||
if (!EVP_KDF_derive (kdf_ctx, secret, length, params))
|
if (!EVP_KDF_derive (kdf_ctx, secret, length, params))
|
||||||
{
|
{
|
||||||
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"OpenSSL error during key derivation "
|
"OpenSSL error during key derivation "
|
||||||
"for label '%s'", label));
|
"for label '%s'", label));
|
||||||
g_free (secret);
|
g_free (secret);
|
||||||
@@ -395,7 +403,7 @@ fpi_sdcp_mac (GBytes *application_secret,
|
|||||||
return g_steal_pointer (&res);
|
return g_steal_pointer (&res);
|
||||||
|
|
||||||
out_error:
|
out_error:
|
||||||
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"OpenSSL error generating MAC for label '%s'",
|
"OpenSSL error generating MAC for label '%s'",
|
||||||
label));
|
label));
|
||||||
print_openssl_errors ();
|
print_openssl_errors ();
|
||||||
@@ -434,7 +442,7 @@ fpi_sdcp_get_private_key (EVP_PKEY *pkey,
|
|||||||
return g_steal_pointer (&res);
|
return g_steal_pointer (&res);
|
||||||
|
|
||||||
out_error:
|
out_error:
|
||||||
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"OpenSSL error getting private key bytes"));
|
"OpenSSL error getting private key bytes"));
|
||||||
print_openssl_errors ();
|
print_openssl_errors ();
|
||||||
g_clear_pointer (&priv, g_free);
|
g_clear_pointer (&priv, g_free);
|
||||||
@@ -465,7 +473,7 @@ fpi_sdcp_get_public_key (EVP_PKEY *pkey,
|
|||||||
return g_steal_pointer (&res);
|
return g_steal_pointer (&res);
|
||||||
|
|
||||||
out_error:
|
out_error:
|
||||||
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"OpenSSL error getting public key bytes"));
|
"OpenSSL error getting public key bytes"));
|
||||||
print_openssl_errors ();
|
print_openssl_errors ();
|
||||||
g_clear_pointer (&pub, g_free);
|
g_clear_pointer (&pub, g_free);
|
||||||
@@ -533,7 +541,7 @@ fpi_sdcp_get_private_pkey (GBytes *private_key,
|
|||||||
return g_steal_pointer (&key);
|
return g_steal_pointer (&key);
|
||||||
|
|
||||||
out_error:
|
out_error:
|
||||||
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"OpenSSL error getting private key"));
|
"OpenSSL error getting private key"));
|
||||||
print_openssl_errors ();
|
print_openssl_errors ();
|
||||||
g_clear_pointer (&key, EVP_PKEY_free);
|
g_clear_pointer (&key, EVP_PKEY_free);
|
||||||
@@ -577,7 +585,7 @@ fpi_sdcp_get_public_pkey (GBytes *public_key,
|
|||||||
return g_steal_pointer (&key);
|
return g_steal_pointer (&key);
|
||||||
|
|
||||||
out_error:
|
out_error:
|
||||||
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"OpenSSL error getting public key"));
|
"OpenSSL error getting public key"));
|
||||||
print_openssl_errors ();
|
print_openssl_errors ();
|
||||||
g_clear_pointer (&key, EVP_PKEY_free);
|
g_clear_pointer (&key, EVP_PKEY_free);
|
||||||
@@ -641,7 +649,7 @@ fpi_sdcp_hash_claim (FpiSdcpClaim *claim,
|
|||||||
return g_steal_pointer (&res);
|
return g_steal_pointer (&res);
|
||||||
|
|
||||||
out_error:
|
out_error:
|
||||||
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"OpenSSL error hashing the SDCP claim"));
|
"OpenSSL error hashing the SDCP claim"));
|
||||||
print_openssl_errors ();
|
print_openssl_errors ();
|
||||||
g_clear_pointer (&sh256_ctx, EVP_MD_CTX_free);
|
g_clear_pointer (&sh256_ctx, EVP_MD_CTX_free);
|
||||||
@@ -699,7 +707,7 @@ fpi_sdcp_key_agreement (GBytes *host_private_key,
|
|||||||
return g_steal_pointer (&res);
|
return g_steal_pointer (&res);
|
||||||
|
|
||||||
out_error:
|
out_error:
|
||||||
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
g_propagate_error (error, fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"OpenSSL error deriving key agreement"));
|
"OpenSSL error deriving key agreement"));
|
||||||
print_openssl_errors ();
|
print_openssl_errors ();
|
||||||
out:
|
out:
|
||||||
@@ -750,7 +758,7 @@ fpi_sdcp_generate_random (GError **error)
|
|||||||
if (!RAND_bytes (random, SDCP_RANDOM_SIZE))
|
if (!RAND_bytes (random, SDCP_RANDOM_SIZE))
|
||||||
{
|
{
|
||||||
g_propagate_error (error,
|
g_propagate_error (error,
|
||||||
fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"OpenSSL error generating random"));
|
"OpenSSL error generating random"));
|
||||||
print_openssl_errors ();
|
print_openssl_errors ();
|
||||||
g_free (random);
|
g_free (random);
|
||||||
@@ -852,7 +860,9 @@ fpi_sdcp_verify_connect (GBytes *host_private_key,
|
|||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
fp_warn ("SDCP ConnectResponse claim validation failed");
|
g_propagate_error (error,
|
||||||
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
|
"SDCP ConnectResponse claim validation failed"));
|
||||||
goto out;
|
goto out;
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -869,8 +879,8 @@ fpi_sdcp_verify_connect (GBytes *host_private_key,
|
|||||||
if (!cert)
|
if (!cert)
|
||||||
{
|
{
|
||||||
g_propagate_error (error,
|
g_propagate_error (error,
|
||||||
fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"Error parsing model certificate"));
|
"Error parsing model certificate"));
|
||||||
goto out;
|
goto out;
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -894,8 +904,9 @@ fpi_sdcp_verify_connect (GBytes *host_private_key,
|
|||||||
if (!cert_public_pkey)
|
if (!cert_public_pkey)
|
||||||
{
|
{
|
||||||
g_propagate_error (error,
|
g_propagate_error (error,
|
||||||
fpi_device_error_new_msg (FP_DEVICE_ERROR_GENERAL,
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
"Error getting public key from model certificate"));
|
"Error getting public key from "
|
||||||
|
"model certificate"));
|
||||||
goto out;
|
goto out;
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -911,7 +922,10 @@ fpi_sdcp_verify_connect (GBytes *host_private_key,
|
|||||||
claim->model_signature,
|
claim->model_signature,
|
||||||
error))
|
error))
|
||||||
{
|
{
|
||||||
fp_warn ("SDCP model signature verification failed");
|
g_propagate_error (error,
|
||||||
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
|
"SDCP model signature verification "
|
||||||
|
"failed"));
|
||||||
goto out_error;
|
goto out_error;
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -940,7 +954,10 @@ fpi_sdcp_verify_connect (GBytes *host_private_key,
|
|||||||
claim->model_signature,
|
claim->model_signature,
|
||||||
error))
|
error))
|
||||||
{
|
{
|
||||||
fp_warn ("SDCP device signature verification failed");
|
g_propagate_error (error,
|
||||||
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
|
"SDCP device signature verification "
|
||||||
|
"failed"));
|
||||||
goto out_error;
|
goto out_error;
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -997,7 +1014,9 @@ fpi_sdcp_verify_reconnect (GBytes *application_secret,
|
|||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
fp_warn ("SDCP ReconnectResponse verification failed");
|
g_propagate_error (error,
|
||||||
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
|
"SDCP ReconnectResponse verification failed"));
|
||||||
return FALSE;
|
return FALSE;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@@ -1030,7 +1049,9 @@ fpi_sdcp_verify_identify (GBytes *application_secret,
|
|||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
fp_warn ("SDCP AuthorizedIdentity verification failed");
|
g_propagate_error (error,
|
||||||
|
fpi_device_error_new_msg (FP_DEVICE_ERROR_UNTRUSTED,
|
||||||
|
"SDCP AuthorizedIdentity verification failed"));
|
||||||
return FALSE;
|
return FALSE;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
Reference in New Issue
Block a user