table of contents
GSSAPI Extensions(3) | globus_gssapi_gsi | GSSAPI Extensions(3) |
NAME¶
GSSAPI Extensions - extensionsModules¶
Buffer Set Utilities
Functions¶
OM_uint32 GSS_CALLCONV gss_export_cred (OM_uint32 *minor_status, const gss_cred_id_t cred_handle, const gss_OID desired_mech, OM_uint32 option_req, gss_buffer_t export_buffer)
Detailed Description¶
extensions Experimental GSSAPI routines are defined here. These may change, and we will be looking at adding these to Kerberos as mods, and submitting them to the IETF. These extensions are more fully documented in GSS-API ExtensionsFunction Documentation¶
OM_uint32 GSS_CALLCONV gss_export_cred (OM_uint32 *minor_status, const gss_cred_id_tcred_handle, const gss_OIDdesired_mech, OM_uint32option_req, gss_buffer_texport_buffer)¶
Export a GSSAPI credential. Saves the credential so it can be checkpointed and imported by gss_import_cred Parameters:minor_status
cred_handle
desired_mech Should either be gss_mech_globus_gssapi_openssl or NULL (in
which case gss_mech_globus_gssapi_openssl is assumed).
option_req
export_buffer
Returns:
OM_uint32 GSS_CALLCONV gss_import_cred (OM_uint32 *minor_status, gss_cred_id_t *output_cred_handle, const gss_OIDdesired_mech, OM_uint32option_req, const gss_buffer_timport_buffer, OM_uint32time_req, OM_uint32 *time_rec)¶
Import a credential. This function will import credentials exported by gss_export_cred(). It is intended to allow a multiple use application to checkpoint delegated credentials. Parameters:minor_status The minor status returned by this
function. This parameter will be 0 upon success.
output_cred_handle Upon success, this parameter will contain the imported
credential. When no longer needed this credential should be freed using
gss_release_cred().
desired_mech This parameter may be used to specify the desired security
mechanism. May be GSS_C_NO_OID.
option_req This parameter indicates which option_req value was used to
produce the import_buffer.
import_buffer A buffer produced by gss_export_credential().
time_req The requested period of validity (seconds) for the imported
credential. May be NULL.
time_rec This parameter will contain the received period of validity of
the imported credential upon success. May be NULL.
Return values:
GSS_S_COMPLETE Success
GSS_S_BAD_MECH Requested security mechanism is unavailable
GSS_S_DEFECTIVE_TOKEN import_buffer is defective
GSS_S_FAILURE General failure
OM_uint32 GSS_CALLCONV gss_inquire_cred_by_oid (OM_uint32 *minor_status, const gss_cred_id_tcred_handle, const gss_OIDdesired_object, gss_buffer_set_t *data_set)¶
Inquire Cred By OID. NOTE: Checks both the cert in the credential and the certs in the cert chain for a valid extension that matches the desired OID. The first one found is used, starting with the endpoint cert, and then searching the cert chain. Parameters:minor_status
cred_handle
desired_object
data_set
Returns:
OM_uint32 GSS_CALLCONV gss_set_sec_context_option (OM_uint32 *minor_status, gss_ctx_id_t *context_handle, const gss_OIDoption, const gss_buffer_tvalue)¶
Set Security Context Option. GSSAPI routine to initiate the sending of a security context See: <draft-ietf-cat-gssv2-cbind-04.txt> Parameters:minor_status
context_handle
option
value
Returns:
Author¶
Generated automatically by Doxygen for globus_gssapi_gsi from the source code.Sun Nov 9 2014 | Version 11.13 |