[16026] in Kerberos-V5-bugs
Re: [krbdev.mit.edu #8672] KFW 4.1 credential cache issue
daemon@ATHENA.MIT.EDU (Hong Ye via RT)
Thu May 31 12:12:39 2018
Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Hong Ye via RT" <rt-comment@KRBDEV-PROD-APP-1.mit.edu>
In-Reply-To: <rt-8672@krbdev.mit.edu>
Message-ID: <rt-8672-48576.10.9310493062693@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #8672'":;
Date: Thu, 31 May 2018 12:11:19 -0400 (EDT)
Reply-To: rt-comment@KRBDEV-PROD-APP-1.mit.edu
Content-Type: multipart/mixed; boundary="===============2237768071423920877=="
Errors-To: krb5-bugs-bounces@mit.edu
--===============2237768071423920877==
Hi Greg,
Any update on this issue? We have the same code in a module developed for Apache on Linux and never had any issue.
Thanks,
Hong
On 5/11/18, 1:49 PM, "Hong Ye" <hy93@cornell.edu> wrote:
In my test cases, the value of delegate_cred is always null. I confirmed that in our log
[Fri May 11 09:34:40 2018] 10.94.4.17 5036|1144 kutil.c(1177),87C31F2EFF386F52,|7|cuwa.cred|init_sec_ctx: delegate cred = 0000000000000000
[Fri May 11 09:34:40 2018] 10.94.4.8 5036|880 kutil.c(1177),EB379309A62A546F,|7|cuwa.cred|init_sec_ctx: delegate cred = 0000000000000000
On 5/11/18, 1:30 PM, "Greg Hudson via RT" <rt-comment@krbdev.mit.edu> wrote:
Because gss_init_sec_context() is passed a claimant credential object
(delegate_cred), it uses the ccache associated with that credential
object, not the default ccache as set by gss_krb5_ccache_name().
--===============2237768071423920877==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
--===============2237768071423920877==--