Next: Utility Functions, Previous: Cryptographic Functions, Up: Programming Manual
The functions described in this section are used by the STARTTLS functionality, see Kerberos via TLS.
handle: Shishi library handle create by
shishi_init()
.Guesses the default X.509 client certificate filename; it is $HOME/.shishi/client.certs.
Return value: Returns default X.509 client certificate filename as a string that has to be deallocated with
free()
by the caller.
handle: Shishi library handle create by
shishi_init()
.x509certfile: string with new default x509 client certificate file name, or NULL to reset to default.
Set the default X.509 client certificate filename used in the library. The certificate is used during TLS connections with the KDC to authenticate the client. The string is copied into the library, so you can dispose of the variable immediately after calling this function.
handle: Shishi library handle create by
shishi_init()
.Get filename for default X.509 certificate.
Return value: Returns the default X.509 client certificate filename used in the library. The certificate is used during TLS connections with the KDC to authenticate the client. The string is not a copy, so don't modify or deallocate it.
handle: Shishi library handle create by
shishi_init()
.Guesses the default X.509 client key filename; it is $HOME/.shishi/client.key.
Return value: Returns default X.509 client key filename as a string that has to be deallocated with
free()
by the caller.
handle: Shishi library handle create by
shishi_init()
.x509keyfile: string with new default x509 client key file name, or NULL to reset to default.
Set the default X.509 client key filename used in the library. The key is used during TLS connections with the KDC to authenticate the client. The string is copied into the library, so you can dispose of the variable immediately after calling this function.
handle: Shishi library handle create by
shishi_init()
.Get filename for default X.509 key.
Return value: Returns the default X.509 client key filename used in the library. The key is used during TLS connections with the KDC to authenticate the client. The string is not a copy, so don't modify or deallocate it.