Previous section.

Common Security: CDSA and CSSM
Copyright © 1997 The Open Group

NAME

AddInAuthenticate

SYNOPSIS

CSSM_RETURN CSSMAPI  AddInAuthenticate 
    (const char *CssmCredentialPath,
    const char *CssmSection,
    const char *AppFileName,
    const char *AppPathName)

DESCRIPTION

This function should perform the add-in service module's half of the bilateral authentication procedure with CSSM. The CSSM credential path and section information is used to locate the CSSM's credentials to be verified. The credentials are a zipped, signed manifest.

If the application filename and pathname are provided, the add-in service has the option to perform an integrity and identity check of the attaching application. The filename and pathname can be used to locate the application's signed credentials. If this information is not provided and the add-in service module requires application verification, verification fails.

This function is the first module interface invoked by CSSM after loading and invoking the main entry point. In particular, the add-in service module's initialize function is invoked by CSSM after this function has successfully completed execution.

PARAMETERS

CssmCredentialPath (input)

A string containing the path name for locating the calling CSSM's credentials. These credentials are a zipped, signed manifest. The service module should verify these credentials as part of the bilateral authentication process.

CssmSection (input)

A string containing the section name for the manifest section containing a description and cryptographic digest of the calling CSSM's object code.

AppFileName (input/optional)

The name of the file that implements the application (containing its main entry point). This file name can be used to locate the application's credentials for purposes of application authentication by the add-in service module. The application provides this input to CSSM if the application has credentials it wishes to present for verification to CSSM or to the add-in service module. If application authentication is not required or the caller did not provide any file name information, this parameter is NULL.

AppPathName (input/optional)

The pathname to the file that implements the application (containing its main entry point). This pathname can be used to locate the application's credentials for purposes of application authentication by the add-in service module. The application provides this input to CSSM if the application has credentials it wishes to present for verification to CSSM or to the add-in service module. If application authentication is not required or the caller did not provide any file name information, this parameter is NULL.

RETURN VALUE

A CSSM return value. This function returns CSSM_OK if successful, and returns an error code if an error has occurred.

Why not acquire a nicely bound hard copy?
Click here to return to the publication details or order a copy of this publication.
You should also read the legal notice explaining the terms and conditions relating to the CDSA documentation.

Contents Next section Index