1. Forum
  2. Usenet
  3. COMP.PROTOCOLS.KERBEROS

  • Detecting Crypto backend

    From rachit chokshi@21:1/5 to =?utf-8?Q?kerberos=40mit.edu?= on Thu Jan 21 09:12:49 2021
    Hello Kerberos,
    We recently switched crypto backend to openssl in our Kerberos software, but having a hard time finding evidence of the new backend actually being used.

    Any pointers on how to find out current backend used by an installation?

    Thanks,
    Rachit

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Greg Hudson@21:1/5 to rachit chokshi on Thu Jan 21 15:12:18 2021
    To: kerberos@mit.edu (kerberos@mit.edu)

    On 1/21/21 12:12 PM, rachit chokshi wrote:
    Any pointers on how to find out current backend used by an installation?

    We don't have an interrogation mechanism and the runtime behavior is to
    mostly indistinguishable, but on Linux or similar you can use OS
    mechanisms. ldd on libk5crypto.so.3.1 should show a dependency on
    libcrypto, nm should show dependencies on EVP functions, and sotruss on
    kinit or kvno should show calls into libcrypto.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)