RPCSEC_GSS Routines
Table 4-8 summarizes RPCSEC_GSS commands. It is intended as a general overview of RPCSEC_GSS functions, rather than a specific description of each one. For more information on each function, see its man page, or check the rpcsec_gss(3N) man page for an overview, including a list of RPCSEC_GSS data structures.
Table 4-8 RPCSEC_GSS Functions| Action | Function | Input | Output |
|---|---|---|---|
| Create a security context | rpc_gss_seccreate() | CLIENT handle, principal name, mechanism, QOP, service type | AUTH handle |
| Change QOP, service type for context | rpc_gss_set_defaults() | Old QOP, service | New QOP, service |
| Show maximum size for data before security transformation | rpc_gss_max_data_length() | Maximum data size allowed by transport | Maximum pre-transformation data size |
| Show maximum size for data before security transformation | rpc_gss_svc_max_data_length() | Maximum data size allowed by transport | Maximum pre-transformation data size |
| Set name of principal(s) for server to represent | rpc_gss_set_svc_name() | Principal name, RPC program, version #s | TRUE if successful |
| Fetch credentials of caller (client) | rpc_gss_getcred() | Pointer to svc_req structure | UNIX credentials, RPCSEC_GSS credentials, cookie |
| Specify (user-writen) callback function | rpc_gss_set_callback() | Pointer to callback function | TRUE if successful |
| Create RPCSEC_GSS structure for principal names from unique parameters | rpc_gss_get_principal_name() | Mechanism, user name, machine name, domain name | RPCSEC_GSS principal name structure |
| Fetch an error code when an RPCSEC_GSS routine fails | rpc_gss_get_error() |
| RPCSEC_GSS error number, errno if applicable |
| Get strings for installed mechanisms | rpc_gss_get_mechanisms() |
| List of valid mechanisms |
| Get valid QOP strings | rpc_gss_get_mech_info() | Mechanism | Valid QOPs for that mechanism |
| Get the highest, lowest version numbers of RPCSEC_GSS supported | rpc_gss_get_versions() |
| Highest, lowest versions |
| Check to see if a mechanism is installed | rpc_gss_is_installed() | Mechanism | TRUE if installed |
| Convert ASCII mechanism to RPC object identifier | rpc_gss_mech_to_oid() | Mechanism (as string) | Mechanism (as OID) |
| Convert ASCII QOP to integer | rpc_gss_qop_to_num() | QOP (as string) | QOP (as integer) |
- © 2010, Oracle Corporation and/or its affiliates