gss_delete_sec_context()--Delete Security Context


  Syntax 
 #include <gssapi.h>

 OM_uint32 gss_delete_sec_context (
     OM_uint32 *    minor_status,
     gss_ctx_id_t *   context_handle,  
     gss_buffer_t   output_token);
  Service Program Name: QSYS/QKRBGSS

  Default public authority: *USE

  Threadsafe: Yes

The gss_delete_sec_context() function deletes one end of a security context. It also deletes the local data structures associated with the security context. When it deletes the context, the routine can generate a token. The application must then pass this token to the partner application. The partner application calls the gss_process_context_token() routine to process the token and complete the process of deleting the security context.


Parameters

minor_status  (Output)
A status code from the security mechanism.

context_handle  (Input/Output)
The context to be deleted. Upon successful completion, the context_handle value is set to GSS_C_NO_CONTEXT.

output_token  (Output)
A token to be sent to the partner application. The partner application then passes this token to the gss_process_context_token() routine to delete the other end of the security context. The gss_delete_sec_context() routine sets the output_token length field to zero if no token needs to be sent to the partner application.

GSS_C_NO_BUFFER may be specified for the output_token parameter. In this case, no token is returned by the gss_delete_sec_context() routine. Both of the communicating applications must call gss_delete_sec_context() to delete both ends of the security context.


Return Value

The return value is one of the following status codes:

GSS_S_COMPLETE
The routine completed successfully.

GSS_S_FAILURE
The routine failed for reasons that are not defined at the GSS level. The minor_status return parameter contains a mechanism-dependent error code describing the reason for the failure.

GSS_S_NO_CONTEXT
The context identifier provided by the caller does not refer to a valid security context.

Authorities

Object Referred to Data Authority Required
Each directory in the path name preceding the configuration file *X
Configuration file *R


Error Messages

Message ID Error Message Text
CPE3418 E Possible APAR condition or hardware failure.

Usage Notes

  1. This call can be made by either peer in a security context to flush context-specific information. Both communicating applications must call the gss_delete_sec_context() routine if GSS_C_NO_BUFFER is specified for the output_token parameter.

  2. The context_handle may not be used for additional security services once the gss_delete_sec_context() routine has completed successfully.

API introduced: V5R1

[ Back to top | Security APIs | UNIX-Type APIs | APIs by category ]