> This looks OK, but instead of adding a bitfield to indicate a memory > ccache, use krb5_cc_get_type(). Wouldn't that do the wrong thing if the cred ccache is a pre-existing memory ccache which the caller still has interest in?