Our PHP ebuilds support both the MIT and Heimdal implementations of Kerberos through virtual/krb5. We have some dark magic to allow this, src_prepare() { .... # Patch PHP to support heimdal instead of mit-krb5 if has_version "app-crypt/heimdal" ; then sed -e 's|gssapi_krb5|gssapi|g' -i acinclude.m4 \ || die "Failed to fix heimdal libname" sed -e 's|PHP_ADD_LIBRARY(k5crypto, 1, $1)||g' -i acinclude.m4 \ || die "Failed to fix heimdal crypt library reference" fi but upstream should support it out-of-the-box. The fact that it doesn't is just a bug, that I've fixed in $URL and reported as PHP bug #73214. Once that fix (or something like it) goes in, we can remove the acinclude.m4 hacks.
This fix was just merged into the master and 7.0 branches, so the next 7.0.x release will probably contain it.
Done in the new v7.1.0.
Fixed in 7.0.15, too. Not gonna happen in 5.6.x so this is done.