pkc_plcy_establish_trustbase(3sec)

Synopsis

#include <pkc_plcy.h>

unsigned32 pkc_plcy_establish_trustbase(

gss_OID policy,

const pkc_trust_list_t & initial_trust,

const utc_t * date,

char initial_explicit_policy_required,

void ** trust_base_handle);

Parameters

Input

policy
Specifies policy to use.

initial_trust
Specifies the initial set of trusted keys.

date
Specifies time for which information is to be returned.

initial_explicit_policy_required
Specifies whether the initial certificate must explicitly contain the active policy in its policies field.

Output

trust_base_handle
The initialized trust base.

Description

*Lpkc_plcy_establish_trustbase(3sec) searches the list of registered policies for implementations of the specified policy. If found, the implementation is opened, if necessary, and its (establish_trustbase( ) function is invoked. Necessary mutex protection around non-thread safe policy implementations is provided.

This is a one-time call made by an application to initialize a trust base. It returns an extended trust list. After this call is made, the application can call pkc_retrieve_keyinfo(3sec) to obtain the public keys of any particular principal.

Return Values

pkc_s_success
Operation successfully completed.

Errors

Refer to the OSF DCE Problem Determination Guide for complete descriptions of all error messages.

Related Information

Functions:
pkc_plcy_intro(3sec)
pkc_plcy_delete_keyinfo(3sec)
pkc_plcy_delete_trustbase(3sec)
pkc_plcy_get_key_certifier_count(3sec)
pkc_plcy_get_key_certifier_info(3sec)
pkc_plcy_get_key_count(3sec)
pkc_plcy_get_key_data(3sec)
pkc_plcy_get_key_trust(3sec)
pkc_plcy_get_registered_policies(3sec)
pkc_plcy_lookup_policy(3sec)
pkc_plcy_register_policy(3sec)
pkc_plcy_retrieve_keyinfo(3sec)