HP-UX Reference (11i v1 05/09) - 3 Library Functions A-M (vol 6)

ManualsBrandsHP ManualsSoftwareHP-UX Reference Manuals

451

452

453

454

455

456

457

458

459

460

gss_accept_sec_context(3) gss_accept_sec_context(3)

actual_mech_type Actual mechanism used. Specify NULL if not required.

output_token Returns a token to pass to the context acceptor. If no token is to be passed to the

context acceptor, the routine sets the length ﬁeld of the returned token buffer to 0

(zero).

ret_flags Returns a bitmask containing six independent ﬂags, each of which requests that the

context support a service option. The following symbolic names are provided to

correspond to each ﬂag. The symbolic names should be logically ANDed with the

value of ret_ﬂags to test whether the context supports the service option.

GSS_C_DELEG_FLAG

. The True/False values are:

True Delegated credentials are available from the delegated_cred_handle

parameter.

False No credentials were delegated.

GSS_C_MUTUAL_FLAG

. The True/False values are:

True The context acceptor requested mutual authentication.

False The context acceptor did not request mutual authentication.

GSS_C_REPLAY_FLAG

. The True/False values are:

True Replayed signed or sealed messages will be detected.

False Replayed messages will not be detected.

GSS_C_SEQUENCE_FLAG

. The True/False values are:

True Out-of-sequence signed or sealed messages will be detected.

False Out-of-sequence signed or sealed messages will not be detected.

GSS_C_CONF_FLAG. The True/False values are:

True Conﬁdentiality services are available by calling the

gss_seal()

routine.

False Conﬁdentiality services are not available. However, the application

can call the gss_seal() routine to provide message encapsulation,

data-origin authentication, and integrity services.

GSS_C_INTEG_FLAG. The True/False values are:

True Integrity services can be invoked by calling either the

gss_sign()

or gss_seal() routine.

False Integrity services for individual messages are not available.

GSS_C_ANON_FLAG. The True/False values are:

True The initiator’s identity has not been revealed, and will not be revealed

if any emitted token is passed to the acceptor.

False The initiator’s identity has been or will be authenticated normally.

GSS_C_PROT_READY_FLAG. The True/False values are:

True Protection services (as speciﬁed by the states of the

GSS_C_CONF_FLAG and GSS_C_INTEG_FLAG) are available for

use if the accompanying major status return value is either

GSS_S_COMPLETE or GSS_S_CONTINUE_NEEDED

False Protection services (as speciﬁed by the states of the

GSS_C_CONF_FLAG and GSS_C_INTEG_FLAG) are available only

if the accompanying major status return value is

GSS_S_COMPLETE.

GSS_C_TRANS_FLAG. The True/False values are:

True The resultant security context may be transferred to other processes

via a call to gss_export_sec_context().

HP-UX 11i Version 1: September 2005 − 2 − Hewlett-Packard Company Section 3−−407