[OpenAFS] Re: [OpenAFS-devel] rxgk development has been funded

Troy Benjegerdes hozer@hozed.org
Thu, 25 Oct 2012 16:18:29 -0500


> As mentioned above, any "commitment" made at the present time may
> not be relevant in a year's time.  What I am able to do will depend
> on how much time I have available, what pieces are contributed by
> the community, and what features are needed by MIT and the community
> as a whole.  We plan to prioritize having a functional
> implementation that allows the use of GSSAPI with Kerberos 5 as a
> mechanism and AES256 as the key type, but other functionality will
> be implemented as time permits.  If some organization or individual
> were to, say, remove LWP dependencies from the source tree in favor
> of pthreads, then I would have more time to spend on new features
> such as you list here.

What are the roadblocks to standardizing an 'rxk5' transport that supports
any encryption mechanism(s) of the underlying kerberos implementation, but
does *not* use GSSAPI?

Obviously this does not provide everything a full GSSAPI implementation 
would, but it would provide some basic functionality.