|
|
gss_inquire_context(3) Library Functions Manual gss_inquire_context(3) NAME
gss_inquire_context() - obtain information about a security context SYNOPSIS
DESCRIPTION
The routine provides information about the security context to the calling application. The calling application must first have called the routine for a handle for the credential. Input Parameters context_handle A handle that refers to the security context. Output Parameters src_name The name of the context initiator. If the context was established using anonymous authentication, and if the appli- cation invoking is the context acceptor, an anonymous name will be returned. Specify NULL if not required. context_handle The name of the context acceptor. If the context acceptor did not authenticate itself, and if the initiator did not specify a target name in its call to the value will be returned. Specify NULL if not required. lifetime_rec Returns the number of seconds for which the credential will remain valid. If the credential expired, the parameter returns a 0 (zero). If there is no credential expiration, the parameter returns the value If an expiration time is not required, specify NULL. targ_name The name of the context acceptor. Storage associated with this name must be freed by the application after use with a call to mech_type The security mechanism providing the context. Specify NULL if not required ctx_flags Specifies independent flags, each of which requests that the context support a service option. The following sym- bolic names are provided to correspond to each flag. The symbolic names should be logically ORed to form a bit-mask value. The True/False values are: True Credentials were delegated to the context acceptor. False No credentials were delegated. The True/False values are: True The context acceptor has been asked to authenticate itself. False The context initiator has not been asked to authenticates itself. The True/False values are: True Replayed signed or sealed messages will be detected. False Replayed messages will not be detected. The True/False values are: True Out-of-sequence signed or sealed messages will be detected. False Out-of-sequence signed or sealed messages will not be detected. The True/False values are: True Request that confidentiality service be made available False No per-message confidentiality service is required. The True/False values are: True Request that integrity service be be made available False No per-message integrity service is required. The True/False values are: True Do not reveal the initiator's identity to the acceptor. False Authenticate normally. cred_usage Returns one of the following values describing how the application can use the credential: If no usage information is required, specify NULL. mechs returns a set of security mechanisms supported by the credential. Specify NULL if not required. minor_status Returns a status code from the security mechanism. STATUS CODES
The following status codes can be returned: The routine was completed successfully. The referenced context could not be accessed. The credentials were invalid. The routine failed. Check the minor_status parameter for details. The routine could not access the credentials. AUTHOR
was developed by Sun Microsystems, Inc. SEE ALSO
gss_acquire_cred(3). The manpages for DCE-GSSAPI are included with the DCE-CoreTools product. To see those manpages add to gss_inquire_context(3)