Re: Preliminary Linux Key Infrastructure 0.01-alpha1

From: Kyle Moffett
Date: Thu Jul 29 2004 - 16:10:15 EST

Next message: Andrew Morton: "Re: dentry cache leak? Re: rsync out of memory 2.6.8-rc2"
Previous message: Pavel Machek: "Re: [linux-audio-dev] Re: [announce] [patch] Voluntary Kernel Preemption Patch"
In reply to: J. Bruce Fields: "Re: Preliminary Linux Key Infrastructure 0.01-alpha1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Jul 29, 2004, at 10:25, J. Bruce Fields wrote:

Could you summarize the differences?

- David Howells' patch has a lot of special cases, a keyring isn't just
another registered keytype, whereas I use a flexible enough keytype
system that "keyrings" are normal keys with a key->type pointer to
struct key_type keyring_type = { ... };

- David Howells' patch isn't built to really allow processes to safely
share keys with each other, whereas I have a separate type called
"struct key_handle" that can be copied and still properly revoked.
(All the copies of the handle are revoked when the handle itself is
revoked, but not the one that created said handle)

I'd really like to start looking at these patches and figure out how
we'd use them for NFS/rpcsec_gss, but this is made more difficult by
the fact that there are now 2 or 3 different pieces of code floating
around now that all claim to do PAG/keyring stuff.

Right now it's still kind of like the scheduler stuff, it's easy to write
your own version, so there are a couple people maintaining their
own code to try out new ideas. Personally I am not quite happy
with the architecture of some parts of David Howells' code, and I
wanted more architectural freedom so I started my own patch. In
a couple weeks or so I'll be done fooling around in my own little
world trying out ideas and maybe have some reasonably decent
patches.

I'll be gone next week, but I hope to continue this discussion
when I get back.

Cheers,
Kyle Moffett

-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GCM/CS/IT/U d- s++: a17 C++++>$ UB/L/X/*++++(+)>$ P+++(++++)>$
L++++(+++) E W++(+) N+++(++) o? K? w--- O? M++ V? PS+() PE+(-) Y+
PGP+++ t+(+++) 5 X R? tv-(--) b++++(++) DI+ D+ G e->++++$ h!*()>++$ r !y?(-)
------END GEEK CODE BLOCK------

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andrew Morton: "Re: dentry cache leak? Re: rsync out of memory 2.6.8-rc2"
Previous message: Pavel Machek: "Re: [linux-audio-dev] Re: [announce] [patch] Voluntary Kernel Preemption Patch"
In reply to: J. Bruce Fields: "Re: Preliminary Linux Key Infrastructure 0.01-alpha1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]