From 0247be58c86a92b1bd6935339df38ff1255696a8 Mon Sep 17 00:00:00 2001
From: =?utf8?q?Zden=C4=9Bk=20=C5=A0ustr?= <sustr4@cesnet.cz>
Date: Fri, 3 Aug 2012 09:18:32 +0000
Subject: [PATCH] Workaround for failing GSS connections (reload server creds
 on every connection).

---
 org.glite.lb.server/src/bkserverd.c | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/org.glite.lb.server/src/bkserverd.c b/org.glite.lb.server/src/bkserverd.c
index bfa0191..916e39a 100644
--- a/org.glite.lb.server/src/bkserverd.c
+++ b/org.glite.lb.server/src/bkserverd.c
@@ -1025,7 +1025,7 @@ int bk_handle_connection(int conn, struct timeval *timeout, void *data)
 	int			npref, totpref;
 
 
-
+#if 0
 	switch ( edg_wll_gss_watch_creds(server_cert, &cert_mtime) ) {
 	case 0: break;
 	case 1:
@@ -1041,6 +1041,15 @@ int bk_handle_connection(int conn, struct timeval *timeout, void *data)
 		glite_common_log(LOG_CATEGORY_SECURITY, LOG_PRIORITY_ERROR, "[%d] edg_wll_gss_watch_creds failed, unable to access credentials", getpid());
 		break;
 	}
+#else
+		if ( !edg_wll_gss_acquire_cred_gsi(server_cert, server_key, &newcred, &gss_code) ) {
+			glite_common_log(LOG_CATEGORY_SECURITY, LOG_PRIORITY_INFO, "[%d] reloading credentials successful", getpid());
+			edg_wll_gss_release_cred(&mycred, NULL);
+			mycred = newcred;
+		} else { 
+			glite_common_log(LOG_CATEGORY_SECURITY, LOG_PRIORITY_WARN, "[%d] reloading credentials failed, using old ones", getpid());
+		}
+#endif
 
 	if ( edg_wll_InitContext(&ctx) )
 	{
-- 
1.8.2.3