[OpenAFS] Re: Authentication without aklog

[Andrew Deason]

On Fri, 1 Aug 2014 17:35:15 -0500
Troy Benjegerdes <hozer@hozed.org> wrote:

> So why don't we use the kernel keyring on Linux,

We don't decide what the user is using for a ccache; we get told what is
being used (or we guess) and we support it if we can. Kernel keyring
ccaches work well for this purpose, but they are still a bit new (in
terms of "actually appearing in stable systems"), and one option of
many.

Now, if you just mean, "just support kernel keyring ccaches on Linux,
and if you're not using them, then you lose", then okay. Right now I'm
sure I'd try to support at least FILE: ccaches as well, since they are
the easiest in some ways, but at some point we'd just say some ccaches
don't work with this, sure.

-- 
Andrew Deason
adeason@sinenomine.net