gss_inquire_context(3)gss_inquire_context(3)NAMEgss_inquire_context() - obtain information about a security context
SYNOPSISDESCRIPTION
The routine provides information about the security context to the
calling application. The calling application must first have called
the routine for a handle for the credential.
Input Parameters
context_handle A handle that refers to the security context.
Output Parameters
src_name The name of the context initiator. If the con‐
text was established using anonymous authentica‐
tion, and if the application invoking is the con‐
text acceptor, an anonymous name will be
returned. Specify NULL if not required.
context_handle The name of the context acceptor. If the context
acceptor did not authenticate itself, and if the
initiator did not specify a target name in its
call to the value will be returned. Specify NULL
if not required.
lifetime_rec Returns the number of seconds for which the cre‐
dential will remain valid. If the credential
expired, the parameter returns a 0 (zero). If
there is no credential expiration, the parameter
returns the value If an expiration time is not
required, specify NULL.
targ_name The name of the context acceptor. Storage asso‐
ciated with this name must be freed by the appli‐
cation after use with a call to
mech_type The security mechanism providing the context.
Specify NULL if not required
ctx_flags Specifies independent flags, each of which
requests that the context support a service
option. The following symbolic names are pro‐
vided to correspond to each flag. The symbolic
names should be logically ORed to form a bit-mask
value.
The True/False values are:
True Credentials were delegated to the
context acceptor.
False No credentials were delegated.
The True/False values are:
True The context acceptor has been asked
to authenticate itself.
False The context initiator has not been
asked to authenticates itself.
The True/False values are:
True Replayed signed or sealed messages
will be detected.
False Replayed messages will not be
detected.
The True/False values are:
True Out-of-sequence signed or sealed
messages will be detected.
False Out-of-sequence signed or sealed
messages will not be detected.
The True/False values are:
True Request that confidentiality service
be made available
False No per-message confidentiality ser‐
vice is required.
The True/False values are:
True Request that integrity service be be
made available
False No per-message integrity service is
required.
The True/False values are:
True Do not reveal the initiator's iden‐
tity to the acceptor.
False Authenticate normally.
cred_usage Returns one of the following values describing
how the application can use the credential:
If no usage information is required, specify
NULL.
mechs returns a set of security mechanisms supported by
the credential. Specify NULL if not required.
minor_status Returns a status code from the security mecha‐
nism.
STATUS CODES
The following status codes can be returned:
The routine was completed successfully.
The referenced context could not be accessed.
The credentials were invalid.
The routine failed. Check the
minor_status parameter for details.
The routine could not access the credentials.
AUTHOR
was developed by Sun Microsystems, Inc.
SEE ALSOgss_acquire_cred(3).
The manpages for DCE-GSSAPI are included with the DCE-CoreTools prod‐
uct. To see those manpages add to
gss_inquire_context(3)