krb5_auth_con_getkey()--Get Current Encryption Key

Syntax

 #include <krb5.h>

 krb5_error_code krb5_auth_con_getkey(
     krb5_context     context,
     krb5_auth_context      auth_context,  
     krb5_keyblock **     keyblock);

  Service Program Name: QSYS/QKRBGSS

  Default Public Authority: *USE

  Threadsafe: Conditional. See Usage Notes.

The krb5_auth_con_getkey() routine retrieves the current encryption key stored in the authentication context. Normally, this is the session key that was obtained from an application request message.

Authorities

No authorities are required.

Parameters

context (Input): The Kerberos context.
auth_context (Input): The authentication context.
keyblock (Output): A keyblock containing the encryption key. The krb5_free_keyblock() routine should be called to release the keyblock when it is no longer needed.

Return Value

If no errors occur, the return value is 0. Otherwise, a Kerberos error code is returned.

Error Messages

CPE3418 E

Possible APAR condition or hardware failure.

Usage Notes

The Kerberos protocol runtime provides no concurrency control for the authentication context. If the application wants to use the same authentication context in multiple threads, it is the responsibility of the application to serialize access to the authentication context so that only a single thread is accessing the authentication context at any time.

API introduced: V5R1

[ Back to top | Security APIs | UNIX-Type APIs | APIs by category ]