PreviousNext

pkc_init_trustbase(3sec)

Initializes a trust base

Synopsis

#include <pkc_api.h>

unsigned32 pkc_init_trustbase(

trustlist_t ** tr_list,

gss_OID policy_oid,

utc_t time,

selection_t * sel,

trustbase_t ** base);

Parameters

Input

tr_list
Specifies trust list on the basis of which the trust base is to be initialized.

policy_oid
Specifies policy to use.

time
Specifies time at which the public key is to be valid. Can be 0.

sel
Must be set to 0.

Output

base
Initialized trust base.

Description

pkc_init_trustbase(3sec) initializes the initial trust base to include all the certificates initially trusted, given the initial set of trusted certificates. This routine will also store the cross-certificate pair certificates found during the creation of the trust base.

Upon successful return, base will contain a PKC-allocated trust base structure, which should be released with pkc_free_trustbase(3sec) when the application has finished with it.

Users will normally call the pkc_ routines in the following order:

1. pkc_get_registered_policies(3sec)
Called once for the lifetime of the application.

2. pkc_init_trustlist(3sec)

3. pkc_append_to_trustlist(3sec)
Called one or more times.
Note that steps 2 and 3 together build up an initial trust list.

4. pkc_init_trustbase(3sec)
A trust base is computed, given an initial trust list.

5. pkc_retrieve_keylist(3sec)
Called one or more times, for each individual's public key that needs to be looked up.

6. pkc_free_trustlist(3sec)

7. pkc_free_trustbase(3sec)

Return Values

pkc_s_success
Operation successfully completed.

Errors

Refer to the OSF DCE Problem Determination Guide for complete descriptions of all error messages.

Related Information

Functions:
pkc_intro(3sec)
pkc_append_to_trustlist(3sec)
pkc_free(3sec)
pkc_free_keyinfo(3sec)
pkc_free_trustbase(3sec)
pkc_free_trustlist(3sec)
pkc_get_key_certifier_count(3sec)
pkc_get_key_certifier_info(3sec)
pkc_get_key_count(3sec)
pkc_get_key_data(3sec)
pkc_get_key_trust_info(3sec)
pkc_get_registered_policies(3sec)
pkc_init_trustlist(3sec)
pkc_retrieve_keyinfo(3sec)
pkc_retrieve_keylist(3sec)