Skip Menu |
 

From: "Дилян Палаузов" <dilyan.palauzov@aegee.org>
Subject: kinit - reuse the TCP/HTTPS connection
Date: Fri, 04 Oct 2019 06:56:20 +0000
To: "krb5-bugs" <krb5-bugs@mit.edu>
Hello,

using 1.17 with kdc.conf containing
[realms]
AEGEE.ORG = {
kdc = https://mail.aegee.org/KdcProxy
kpasswd_server = https://mail.aegee.org/KdcProxy/
dns_lookup_kdc = no
}

this
echo abc | KRB5_TRACE=/dev/stdout kinit aaa@AEGEE.ORG

sends three POST requests and prints three times
Terminating TCP connection to https 144.76.142.78:443

kinit shall reuse the TCP connection for all HTTP POST calls and terminate it only once.

Likewise, when the communication is done over TCP (not HTTPS), with udp_preference_limit=1 in [libdefaults], without the
AEGEE.ORG in [realms],

echo abc | KRB5_TRACE=/dev/stdout kinit aaa@AEGEE.ORG

prints three times “Terminating TCP connection to stream 144.76.142.78:88”. It shall reuse the TCP connection.

Regards
Дилян