HP-UX Reference (11i v1 00/12) - 3 Library Functions A-M (vol 6)
__________________________________________________________________________________________________________________________________________________________________________________________________
__________________________________________________________________________________________________________________________________________________________________________________________________
STANDARD Printed by: Nora Chuang [nchuang] STANDARD
/build/1111/BRICK/man3/!!!intro.3c
________________________________________________________________
___ ___
g
gss_init_sec_context(3) gss_init_sec_context(3)
True Replayed signed or sealed messages will be detected.
False Replayed messages will not be detected.
GSS_C_SEQUENCE_FLAG. The True/False values are:
True Out-of-sequence signed or sealed messages will be detected.
False Out-of-sequence signed or sealed messages will not be detected.
GSS_C_CONF_FLAG. The True/False values are:
True Confidentiality service can be invoked by calling the gss_seal()
routine.
False No confidentiality service is available. (Confidentiality can be pro-
vided using the gss_seal() routine, which provides only message
encapsulation, data-origin authentication, and integrity services.)
GSS_C_INTEG_FLAG. The True/False values are:
True Integrity service can be invoked by calling either the
gss_get_mic() or gss_wrap() routine.
False Integrity service for individualmessages is unavailable.
GSS_C_ANON_FLAG. The True/False values are:
True Do not reveal the initiator’s identity to the acceptor.
False Authenticate normally.
GSS_C_PROT_READY_FLAG
. The True/False values are:
True Protection services (as specified by the states of the
GSS_C_CONF_FLAG and GSS_C_INTEG_FLAG
) are available for
use if the accompanying major status is either
GSS_S_COMPLETE
or
GSS_S_CONTINUE_NEEDED
.
False Protection services(as specified by the states of the
GSS_C_CONF_FLAG and GSS_C_INTEG_FLAG
) are available for
use if the accompanying major status is either
GSS_S_COMPLETE
.
GSS_C_TRANS_FLAG. The True/False values are:
True The resultant security context may be transferred to other processes
False The security context is not is not transferable
time_rec Returns the number of seconds for which the context will be valid. If the mechan-
ism does not support credential expiration, the routine returns the value
GSS_C_INDEFINITE. If the credential expiration time is not required, specify
NULL.
minor_status Returns a status code from the security mechanism.
STATUS CODES
The following status codes can be returned:
GSS_S_COMPLETE The routine was completed successfully.
GSS_S_BAD_BINDINGS
The input_token parameter contains different channel bindings from those
specified with the input_chan_bindings parameter.
GSS_S_BAD_NAMETYPE
The target_name parameter contains an invalid or unsupported name type.
GSS_S_BAD_NAME The target_name parameter was incorrectly formed.
GSS_S_BAD_SIG Indicates either that the input_token parameter contains an invalid signature or
that the input_token parameter contains a signature that could not be verified.
GSS_S_CONTINUE_NEEDED
To complete the context, the gss_init_sec_context()
routine must be
called again with a token required from the context acceptor.
HP-UX Release 11i: December 2000 − 3 − Section 3−−403
___
___