HP-UX Reference (11i v2 04/09) - 3 Library Functions A-M (vol 6)

ManualsBrandsHP ManualsSoftwareHP-UX Reference Manuals

521

522

523

524

525

526

527

528

529

530

gss_accept_sec_context(3) gss_accept_sec_context(3)

actual_mech_type Actual mechanism used. Specify NULL if not required.

output_token Returns a token to pass to the context acceptor. If no token is to be passed to the

context acceptor, the routine sets the length ﬁeld of the returned token buffer to 0

(zero).

ret_flags Returns a bitmask containing six independent ﬂags, each of which requests that

the context support a service option. The following symbolic names are provided

to correspond to each ﬂag. The symbolic names should be logically ANDed with

the value of ret_ﬂags to test whether the context supports the service option.

GSS_C_DELEG_FLAG

. The True/False values are:

True Delegated credentials are available from the delegated_cred_handle

parameter.

False No credentials were delegated.

GSS_C_MUTUAL_FLAG

. The True/False values are:

True The context acceptor requested mutual authentication.

False The context acceptor did not request mutual authentication.

GSS_C_REPLAY_FLAG

. The True/False values are:

True Replayed signed or sealed messages will be detected.

False Replayed messages will not be detected.

GSS_C_SEQUENCE_FLAG

. The True/False values are:

True Out-of-sequence signed or sealed messages will be detected.

False Out-of-sequence signed or sealed messages will not be detected.

GSS_C_CONF_FLAG. The True/False values are:

True Conﬁdentiality services are available by calling the

gss_seal()

routine.

False Conﬁdentiality services are not available. However, the application

can call the

gss_seal() routine to provide message encapsula-

tion, data-origin authentication, and integrity services.

GSS_C_INTEG_FLAG. The True/False values are:

True Integrity services can be invoked by calling either the

gss_sign() or gss_seal() routine.

False Integrity services for individual messages are not available.

GSS_C_ANON_FLAG. The True/False values are:

True The initiator’s identity has not been revealed, and will not be

revealed if any emitted token is passed to the acceptor.

False The initiator’s identity has been or will be authenticated normally.

GSS_C_PROT_READY_FLAG. The True/False values are:

True Protection services (as speciﬁed by the states of the

GSS_C_CONF_FLAG and GSS_C_INTEG_FLAG) are available for

use if the accompanying major status return value is either

GSS_S_COMPLETE or GSS_S_CONTINUE_NEEDED

False Protection services (as speciﬁed by the states of the

GSS_C_CONF_FLAG and GSS_C_INTEG_FLAG) are available

only if the accompanying major status return value is

GSS_S_COMPLETE.

GSS_C_TRANS_FLAG. The True/False values are:

True The resultant security context may be transferred to other

processes via a call to

gss_export_sec_context().

HP-UX 11i Version 2: September 2004 − 2 − Hewlett-Packard Company Section 3−−465