|From:||Idan Freiberg <firstname.lastname@example.org>|
|Date:||Sat, 14 May 2016 08:48:27 +0000|
|Subject:||GSSAPI: External mechanism library loading issues|
Iv'e noticed 2 issues regarding the way GSSAPI is loading external mech library, while testing the gss-ntlmssp extrenal mechanism library.
1. When GSSAPI is fails to load an external mechanism library ponted in /etc/gss/mech.d/some_mech.conf, it doesn't throw any indicative error when the library file doesn't exists or dlopen() fails.
2. GSSAPI says it recognizes the external mechanism as supported by using gss_indicate_mechs() even if the mech library doesn't really exist or dlopen() fails. means it only looking for the mech OID in external mech .conf file in /etc/gss/mech.d/.
Those 2 issues can make a confusion for users/developers.
Thanks for your efforts,