An object of this class implements the functionality of a GSSContext
for a specific mechanism.
A C018FE95 object can be thought of having 3 states:
-before initialization
-during initialization with its peer
-after it is established
The context options can only be requested in state 1. In state 3,
the per message operations are available to the callers. The get
methods for the context options will return the requested options
while in state 1 and 2, and the established values in state 3.
Some mechanisms may allow the access to the per-message operations
and the context flags before the context is fully established. The
isProtReady method is used to indicate that these services are
available.
_S00027C3
public int _S00027C3()
Retrieves the mechanism options.
- int GSSContext options ORed together
_S00256CF
public void _S00256CF(InputStream is,
InputStream msgStr,
MessageProp mProp)
throws GSSException
Checks the integrity of the supplied tokens.
This token was previously generated by getMIC.
is
- token generated by getMICmsgStr
- the message to check integrity for
_S011CEF9
public GSSNameSpi _S011CEF9()
throws GSSException
Returns the context acceptor name.
- context acceptor(target) name
_S0200735
public Oid _S0200735()
Returns the mechanism oid.
_S020B957
public void _S020B957()
throws GSSException
Releases context resources and terminates the
context between 2 peer.
_S0293FFA
public GSSCredSpi _S0293FFA()
throws GSSException
Returns the delegated credential for the context. This
is an optional feature of contexts which not all
mechanisms will support. A context can be requested to
support credential delegation by using the CRED_DELEG.
This is only valid on the acceptor side of the context.
- GSSCredSpi object for the delegated credential
_S0AC8F9E
public void _S0AC8F9E(byte[] token)
throws GSSException
Imports a previously exported context. This will be called
for newly created objects.
_S0E039DB
public int _S0E039DB(InputStream is,
OutputStream os)
throws GSSException
Initiator context establishment call. This method may be
required to be called several times. A CONTINUE_NEEDED return
call indicates that more calls are needed after the next token
is received from the peer.
is
- contains the token received from the peer. On the
first call it will be ignored.os
- to which any tokens required to be sent to the peer
will be written. It is responsibility of the caller
to send the token to its peer for processing.
- integer indicating if more calls are needed. Possible
values are COMPLETE and CONTINUE_NEEDED.
_S1116FAA
public boolean _S1116FAA()
Tests if the context can be used for per-message service.
Context may allow the calls to the per-message service
functions before being fully established.
- boolean indicating if per-message methods can
be called.
_S123049E
public boolean _S123049E()
Tests if this is the initiator side of the context.
- boolean indicating if this is initiator (true)
or target (false)
_S1309AFD
public void _S1309AFD(InputStream is,
OutputStream os,
MessageProp msgProp)
throws GSSException
Provides per-message token encapsulation.
is
- the user-provided message to be protectedos
- the token to be sent to the peer. It includes
the message from is with the requested protection.
_S1513DBA
public void _S1513DBA(InputStream is,
OutputStream os,
MessageProp msgProp)
throws GSSException
Applies per-message integrity services.
is
- the user-provided messageos
- the token to be sent to the peer along with the
message token. The message token is not encapsulated.msgProp
- on input the desired QOP and output the applied QOP
_S1576D09
public void _S1576D09(InputStream is,
OutputStream os,
MessageProp msgProp)
throws GSSException
Retrieves the message token previously encapsulated in the wrap
call.
is
- the token from the peeros
- unprotected message datamsgProp
- will contain the applied qop and confidentiality
of the input token and any informatory status values
_S235D9C1
public void _S235D9C1(GSSCredSpi myCred,
GSSNameSpi targName,
int desLifetime,
int ctxtOptions)
throws GSSException
Sets the mechanism options to be used during context
creation on the initiator's side. This is used to
initialize a new C018FE95 object.
myCred
- the principal's credentials; may be nulltargName
- the context peerdesLifetime
- the requested lifetime; 0 indicates use
default
_S4080EED
public int _S4080EED()
Inquire the remaining lifetime.
- the lifetime in seconds. May return reserved
value GSSContext.INDEFINITE for an indefinite lifetime.
_S725B2DA
public byte[] _S725B2DA()
throws GSSException
Produces a token representing this context. After this call
the context will no longer be usable until an import is
performed on the returned token.
_S808028B
public int _S808028B(int qop,
boolean confReq,
int maxTokSize)
throws GSSException
Queries the context for largest data size to accomodate
the specified protection and for the token to remain less then
maxTokSize.
qop
- the quality of protection that the context will be
asked to provide.confReq
- a flag indicating whether confidentiality will be
requested or not
- the maximum size for the input message that can be
provided to the wrap() method in order to guarantee that these
requirements are met.
_S80A2F2C
public int _S80A2F2C(InputStream is,
OutputStream os)
throws GSSException
Acceptor's context establishment call. This method may be
required to be called several times. A CONTINUE_NEEDED return
call indicates that more calls are needed after the next token
is received from the peer.
is
- contains the token received from the peer.os
- to which any tokens required to be sent to the peer
will be written. It is responsibility of the caller
to send the token to its peer for processing.
- integer indicating if more calls are needed. Possible
values are COMPLETE and CONTINUE_NEEDED.
_S90010CC
public void _S90010CC(GSSCredSpi myCred)
throws GSSException
Sets the mechanism options to be used during context
creation on the acceptor's side. This is used to initialize
a new C018FE95 object.
myCred
- the principal's credentials; may be null
_S9B00AB2
public void _S9B00AB2(ChannelBinding chb)
throws GSSException
Sets the channel bindings to be used during context
establishment. This method is only called if the application
wishes to use channel bindings with this context.
chb
- channel bindings to be set