gss_inquire_context(3) Library Functions Manual gss_inquire_context(3)
NAME
gss_inquire_context() - obtain information about a security context
SYNOPSIS
DESCRIPTION
The routine provides information about the security context to the calling application. The calling application must first have called the
routine for a handle for the credential.
Input Parameters
context_handle A handle that refers to the security context.
Output Parameters
src_name The name of the context initiator. If the context was established using anonymous authentication, and if the appli-
cation invoking is the context acceptor, an anonymous name will be returned. Specify NULL if not required.
context_handle The name of the context acceptor. If the context acceptor did not authenticate itself, and if the initiator did not
specify a target name in its call to the value will be returned. Specify NULL if not required.
lifetime_rec Returns the number of seconds for which the credential will remain valid. If the credential expired, the parameter
returns a 0 (zero). If there is no credential expiration, the parameter returns the value If an expiration time is
not required, specify NULL.
targ_name The name of the context acceptor. Storage associated with this name must be freed by the application after use with
a call to
mech_type The security mechanism providing the context. Specify NULL if not required
ctx_flags Specifies independent flags, each of which requests that the context support a service option. The following sym-
bolic names are provided to correspond to each flag. The symbolic names should be logically ORed to form a bit-mask
value.
The True/False values are:
True Credentials were delegated to the context acceptor.
False No credentials were delegated.
The True/False values are:
True The context acceptor has been asked to authenticate itself.
False The context initiator has not been asked to authenticates itself.
The True/False values are:
True Replayed signed or sealed messages will be detected.
False Replayed messages will not be detected.
The True/False values are:
True Out-of-sequence signed or sealed messages will be detected.
False Out-of-sequence signed or sealed messages will not be detected.
The True/False values are:
True Request that confidentiality service be made available
False No per-message confidentiality service is required.
The True/False values are:
True Request that integrity service be be made available
False No per-message integrity service is required.
The True/False values are:
True Do not reveal the initiator's identity to the acceptor.
False Authenticate normally.
cred_usage Returns one of the following values describing how the application can use the credential:
If no usage information is required, specify NULL.
mechs returns a set of security mechanisms supported by the credential. Specify NULL if not required.
minor_status Returns a status code from the security mechanism.
STATUS CODES
The following status codes can be returned:
The routine was completed successfully.
The referenced context could not be accessed.
The credentials were invalid.
The routine failed. Check the
minor_status parameter for details.
The routine could not access the credentials.
AUTHOR
was developed by Sun Microsystems, Inc.
SEE ALSO
gss_acquire_cred(3).
The manpages for DCE-GSSAPI are included with the DCE-CoreTools product. To see those manpages add to
gss_inquire_context(3)
