internal_v_smechname - Man Page

There are two name representations in GSS-API: Internal form and Contiguous string ('flat') form. Functions gss_export_name() and gss_import_name() can be used to convert between the two forms.

• The contiguous string form is described by an oid specificing the type and an octet string. A special form of the contiguous string form is the exported name object. The exported name defined for each mechanism, is something that can be stored and compared later. The exported name is what should be used for ACLs comparisons.
• The Internal form is opaque to the application programmer and is implementation-dependent.
• There is also a special form of the Internal Name (IN), and that is the Mechanism Name (MN). In the mechanism name all the generic information is stripped of and only contain the information for one mechanism. In GSS-API some function return MN and some require MN as input. Each of these function is marked up as such.

@FIXME Describe relationship between import_name, canonicalize_name, export_name and friends. Also, update for RFC2743 language ('contiguous' and 'flat' are gone, leaving just 'exported name token', 'internal', and 'MN').