Kerberos CCACHE

Ken Raeburn raeburn at MIT.EDU
Fri Mar 28 19:24:00 EST 2003


Lun <ylhuang at csie.nctu.edu.tw> writes:

> I am trying to port Kerberos to an embedded system... there is no file system.
> Can I replace the fcc_* functions with mcc_* ? How ? Is there any flags define
> about this?

There are no flags to support this, but it shouldn't be too tough.
This should help get you started:

 - lib/krb5/os/ccdefname.c specifies "FILE:/tmp/krb5cc_...." as the
   default ccache name; it should be changed to use MEMORY:
 - lib/krb5/ccache/ccdefops.c specifies the default table of ccache
   operator functions to use in certain cases, currently the file
   operations; the pointer should be changed to use the memory
   operators
 - lib/krb5/ccache/Makefile.in, lib/krb5/Makefile.in and
   lib/krb5/configure.in make references to subdirectories and files
   in subdirectories; the file and stdio references should probably be
   removed

There are also file system references in:

 - replay cache code (only needed for application servers)
 - keytab code (only needed for application servers or clients with
   stored keys) 
 - krb4 code (which you probably should turn off anyways)
 - db2 and kdb libraries (only needed for a KDC)
 - various client and server programs

The krb4 support is easy to turn off with a configure option.  The
rest require changing some code or makefiles to get rid of the file
system references.

Ken


More information about the Kerberos mailing list