Proposal to export gssapi context

Kevin Coffman kwc at
Tue Mar 9 18:00:42 EST 2004

Brought to krbdev...

The kernel implementation of rpcsec_gss used for NFSv4 requires context
information be negotiated in user-land and then passed down for use in the
kernel.  gss_export_context() exports the context as an opaque object which
cannot be used for this purpose.  We are proposing three new APIs.  One is
to restrict the encryption types negotiated in user-land to the set that the
kernel can use.  The other two are to export context information into a
usable structure, and then free that structure.

Comments, suggestions, welcome.

-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: krb5_gss_context-01.txt

More information about the krbdev mailing list