CSSM_QueryModulePrivilege

Purpose

The function returns the privileges available to the application. On z/OS, the privileges available depend upon whether only the OCSF base is installed or if the OCSF Security Level 3 feature is installed. When the OCSF Security Level 3 feature is installed, all privileges are available. When only the OCSF base is installed, no privileges are available. The application file name and application path name must be specified for compatability with other implementations of the interface, but are not used.

An application may invoke this function to determine privileges available to the application.

Format

CSSM_RETURN CSSM_QueryModulePrivilege (const char *AppFileName,
                                       const char *AppPathName,
                                       CSSM_EXEMPTION_MASK *PrivilegeSet)

Parameters

Input

AppFileName: The module file name for the application.
AppPathName: The path to the file that implements the module.

Output

PrivilegeSet: A bitmask specifying all the privileges that the module has.

Return Value

This function returns CSSM_OK if credential verification was successful and a privilege set was retrieved. On error CSSM_FAIL is returned. Use CSSM_GetError to obtain the error code.