On Fri, 7 Jan 2011 09:11:40 -0500 Jeff Layton <jlayton@xxxxxxxxx> wrote: > This patchset is based on one originally proposed by Igor Mammedov back > in 2008. For some reason (maybe my fault?) his patch was never committed > and cifs.upcall has been unable to use keytabs for mounting since then. > > The first few patches in the series clean up the key description parser > and some of the other code. The last patch adds the actual keytab > support. For now, the code is only able to use the systemwide default > keytab. Eventually, we could extend that to point to other keytabs, but > we need to think about the right way to pass that location to the upcall > program. > > Also, I've only tested this against MIT kerberos. If Heimdal or other > krb5 implementations need special casing, I'd appreciate review that > points that out. > > Lightly tested on my own test rig and it seems to work correctly. > > Jeff Layton (5): > cifs.upcall: consolidate find_krb5_cc calls > cifs.upcall: clean up key description decoding routine > cifs.upcall: save off username field from key description > cifs.upcall: debug logging for the key description parser > cifs.upcall: add keytab support for unattended mounts > > cifs.upcall.c | 161 ++++++++++++++++++++++++++++++++++++++++++++++---------- > 1 files changed, 132 insertions(+), 29 deletions(-) > Entire set committed. I had hoped to get someone with knowledge of heimdal to review this, but I guess if it breaks something they'll let us know... ;) -- Jeff Layton <jlayton@xxxxxxxxx> -- To unsubscribe from this list: send the line "unsubscribe linux-cifs" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
