[17405] in Kerberos_V5_Development
Re: [PATCH 2/2] pass the verto_ctx into preauth plugins
daemon@ATHENA.MIT.EDU (Greg Hudson)
Thu Nov 10 10:55:02 2011
Message-ID: <4EBBF3CF.9090808@mit.edu>
Date: Thu, 10 Nov 2011 10:54:55 -0500
From: Greg Hudson <ghudson@mit.edu>
MIME-Version: 1.0
To: Sam Hartman <hartmans@mit.edu>
In-Reply-To: <tsl7h388ecu.fsf@mit.edu>
Cc: krbdev@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
On 11/10/2011 05:24 AM, Sam Hartman wrote:
> I wonder whether providing the verto context as part of the KDC rock
> would be a better idea. I think we definitely want to avoid a
> dependency on the kernel lib on verto.
I kind of like the idea of getting the loop via callback, but it doesn't
solve the stated problem, since we'd have to declare the callback in
preauth_plugin.h. Either we (1) somehow make the kernel lib not depend
on preauth_plugin.h, (2) supply the verto context as a void pointer, or
(3) accept the dependency for the moment.
> I also think that since most preauth plugins and most entry points
> do not need a verto context it should come from the rock if needed.
That's a reasonable argument.
> Regardless, I think the krb5_context should come before the
> verto_context.
Yes.
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
