177 	const char *reason = NULL;  in auth_check_principals_line()  local
200 	if ((opts = sshauthopt_parse(line_opts, &reason)) == NULL) {  in auth_check_principals_line()
201 		debug("%s: bad principals options: %s", loc, reason);  in auth_check_principals_line()
202 		auth_debug_add("%s: bad principals options: %s", loc, reason);  in auth_check_principals_line()
272 	const char *reason = NULL;  in auth_check_authkey_line()  local
290 			reason = "invalid key option string";  in auth_check_authkey_line()
301 	if ((keyopts = sshauthopt_parse(key_options, &reason)) == NULL) {  in auth_check_authkey_line()
302 		debug("%s: bad key options: %s", loc, reason);  in auth_check_authkey_line()
303 		auth_debug_add("%s: bad key options: %s", loc, reason);  in auth_check_authkey_line()
328 		reason = "Refused by key options";  in auth_check_authkey_line()
346 		reason = "Invalid certificate options";  in auth_check_authkey_line()
351 		reason = "Refused by certificate options";  in auth_check_authkey_line()
354 	if ((finalopts = sshauthopt_merge(keyopts, certopts, &reason)) == NULL)  in auth_check_authkey_line()
364 		reason = "Certificate does not contain an authorized principal";  in auth_check_authkey_line()
369 	    &reason) != 0)  in auth_check_authkey_line()
390 	error("%s", reason);  in auth_check_authkey_line()
391 	auth_debug_add("%s", reason);  in auth_check_authkey_line()