From: | Idan Freiberg <speidy@gmail.com> |
Date: | Sat, 14 May 2016 08:48:27 +0000 |
Subject: | GSSAPI: External mechanism library loading issues |
To: | krb5-bugs@mit.edu |
CC: | Simo <simo@samba.org> |
Hello,
Iv'e noticed 2 issues regarding the way GSSAPI is loading external mech library, while testing the gss-ntlmssp extrenal mechanism library.
1. When GSSAPI is fails to load an external mechanism library ponted in /etc/gss/mech.d/some_mech.conf, it doesn't throw any indicative error when the library file doesn't exists or dlopen() fails.
2. GSSAPI says it recognizes the external mechanism as supported by using gss_indicate_mechs() even if the mech library doesn't really exist or dlopen() fails. means it only looking for the mech OID in external mech .conf file in /etc/gss/mech.d/.
Those 2 issues can make a confusion for users/developers.
Thanks for your efforts,
Idan.