[krbdev.mit.edu #8205] gss_acquire_cred_with_password() fails to acquire multiple creds by default
Simo Sorce via RT
rt-comment at krbdev.mit.edu
Sat Jun 20 16:19:46 EDT 2015
The code in gss_acquire_cred_with_password() limits itself to only
acquire creds for the "default" mechanism if no desires odi_set is
provided. This prevents cases where multiple mechanism are available to
work in the default case where no preference is desired.
A workaround is to use gss_indicate_mechs() and pass the output to
gss_acquire_cred_with_password() but it seem just a gratuitous
limitation.
gss_acquire_cred_with_password() (or a better successor) should not
prevent a multi-mechanism negotiation by default.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the krb5-bugs
mailing list