Skip Menu |
 

From: Idan Freiberg <speidy@gmail.com>
Date: Sat, 14 May 2016 08:48:27 +0000
Subject: GSSAPI: External mechanism library loading issues
To: krb5-bugs@mit.edu
CC: Simo <simo@samba.org>
Hello,

Iv'e noticed 2 issues regarding the way GSSAPI is loading external mech library, while testing the gss-ntlmssp extrenal mechanism library.

1. When GSSAPI is fails to load an external mechanism library ponted in /etc/gss/mech.d/some_mech.conf, it doesn't throw any indicative error when the library file doesn't exists or dlopen() fails.

2. GSSAPI says it recognizes the external mechanism as supported by using gss_indicate_mechs() even if the mech library doesn't really exist or dlopen() fails. means it only looking for the mech OID in external mech .conf file in /etc/gss/mech.d/. 

Those 2 issues can make a  confusion for users/developers.

Thanks for your efforts,
Idan.