Generic Security Services API Library Functions
gsswrapsizelimit(3GS)
NAME
gsswrapsizelimit - allow application to determine maximum
message size with resulting output token of a specified max-
imum size
SYNOPSIS
cc [ flag... ] file... -lgss [ library... ]
#include
OMuint32 gssprocesscontexttoken(OMuint32 *minorstatus,
const gssctxidt contexthandle, int confreqflag,
gssqopt qopreq, OMuint32 reqoutputsize,
OMuint32 *maxinputsize);
DESCRIPTION
The gsswrapsizelimit() function allows an application to
determine the maximum message size that, if presented to
gsswrap() with the same confreqflag and qopreq parame-
ters, results in an output token containing no more than
reqoutputsize bytes. This call is intended for use by
applications that communicate over protocols that impose a
maximum message size. It enables the application to fragment
messages prior to applying protection. The GS-API detects
invalid QOP values when gsswrapsizelimit() is called.
This routine guarantees only a maximum message size, not the
availability of specific QOP values for message protection.
Successful completion of gsswrapsizelimit() does not
guarantee that gsswrap() will be able to protect a message
of length maxinputsize bytes, since this ability might
depend on the availability of system resources at the time
that gsswrap() is called.
PARAMETERS
The parameter descriptions for gsswrapsizelimit() are as
follows:
minorstatus A mechanism-specific status code.
contexthandle A handle that refers to the security over
which the messages will be sent.
confreqflag Indicates whether gsswrap() will be
asked to apply confidential protection in
addition to integrity protection. See
gsswrap(3GS) for more details.
SunOS 5.11 Last change: 15 Jan 2003 1
Generic Security Services API Library Functions
gsswrapsizelimit(3GS)
qopreq Indicates the level of protection that
gsswrap() will be asked to provide. See
gsswrap(3GS) for more details.
reqoutputsize The desired maximum size for tokens emit-
ted by gsswrap().
maxinputsize The maximum input message size that can
be presented to gsswrap() to guarantee
that the emitted token will be no larger
than reqoutputsize bytes.
ERORS
gsswrapsizelimit() returns one of the following status
codes:
GSCOMPLETE Successful completion.
GSNOCONTEXT The referenced context could not be
accessed.
GSCONTEXTEXPIRED The context has expired.
GSBADQOP The specified QOP is not supported
by the mechanism.
GSFAILURE The underlying mechanism detected
an error for which no specific GS
status code is defined. The
mechanism-specific status code
reported by means of the
minorstatus parameter details the
error condition.
ATRIBUTES
See attributes(5) for descriptions of the following attri-
butes:
SunOS 5.11 Last change: 15 Jan 2003 2
Generic Security Services API Library Functions
gsswrapsizelimit(3GS)
ATRIBUTE TYPE ATRIBUTE VALUE
Availability SUNWgss (32-bit)
SUNWgssx (64-bit)
MT Level Safe
SEE ALSO
gsswrap(3GS), attributes(5)
Solaris Security for Developers Guide
SunOS 5.11 Last change: 15 Jan 2003 3
Generic Security Services API Library Functions
gsswrapsizelimit(3GS)
SunOS 5.11 Last change: 15 Jan 2003 4
|
