[39192] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: appl/simple/client/sim_client.c uses internal APIs

daemon@ATHENA.MIT.EDU (Nico Williams)
Fri Feb 24 17:21:06 2023

Date: Fri, 24 Feb 2023 16:16:10 -0600
From: Nico Williams <nico@cryptonector.com>
To: Benjamin Kaduk <kaduk@mit.edu>
Message-ID: <Y/k3KkAqmBFds8VD@gmail.com>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <Y/kmiP1HdqAgJjYd@kduck.mit.edu>
Cc: kerberos@mit.edu, Ken Hornstein <kenh@cmf.nrl.navy.mil>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

On Fri, Feb 24, 2023 at 01:07:01PM -0800, Benjamin Kaduk wrote:
> > RFC 7546 exists.
> 
> And https://github.com/kaduk/gssdoc/blob/master/gss-sample.c has the
> un-processed version of the sample code from the RFC; I did compile and run
> it during development of the RFC.

Maybe we should update it with code that uses gss_acquire_cred_from() /
gss_store_cred_into().  Which, yeah, I could send you a PR for.  How
well that works depends on what keys the GSS implementation supports.
In a PR for Heimdal I've support for all sorts of keys, including ones
for PKINIT (you even get to specify a PKCS#11 provider/slot).

Nico
-- 
________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[39192] in Kerberos

Re: appl/simple/client/sim_client.c uses internal APIs

daemon@ATHENA.MIT.EDU (Nico Williams)Fri Feb 24 17:21:06 2023

daemon@ATHENA.MIT.EDU (Nico Williams)
Fri Feb 24 17:21:06 2023