TE_verify_unreg Kernel Service

Purpose

Unregisters a previously registered callout handler for trusted execution.

Syntax

#include <sys/file.h>
typedef int (*TE_verify)(char *, int, struct file *);

int TE_verify_unreg(TE_verify verify_fn, uint_64 options)

Parameters

verify_fn

Specifies the callout function that must be used when you register the handler by using the TE_verify_reg() kernel service.

options

Specifies a bit mask of registration options. The options parameter is not defined currently. The caller must set the options parameter to 0.

Description

The TE_verify_unreg kernel service unregisters a callout handler for the AIX® Trusted Execution (TE) framework. The verify_fn parameter must match with the currently registered TE callout handler. Otherwise, the TE_verify_unreg kernel service returns an error code of EPERM.

After a callout handler is unregistered, the default AIX trusted execution logic is applied based on the configured AIX trusted execution policies.

The caller of the TE_verify_unreg kernel service must have root authority.

Return values

On successful completion, the TE_verify_unreg kernel service returns a value of 0.

The following error codes are returned on failure:

EPERM

The caller does not have permission to start this function. Or, the registered callout handler is not same as the verify_fn parameter.

EINVAL

No callout handler is registered or the options parameters are invalid.

Execution environment

The TE_verify_unreg kernel service can be called only from the process environment.