Re: GSS-APIv3 sketch

Nicolas Williams <> Thu, 12 November 2009 20:24 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 122343A6825 for <>; Thu, 12 Nov 2009 12:24:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -5.87
X-Spam-Status: No, score=-5.87 tagged_above=-999 required=5 tests=[AWL=-0.124, BAYES_00=-2.599, HELO_MISMATCH_COM=0.553, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_MED=-4]
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id mGG7Uue1wtks for <>; Thu, 12 Nov 2009 12:24:50 -0800 (PST)
Received: from (brmea-mail-4.Sun.COM []) by (Postfix) with ESMTP id D0B673A67D8 for <>; Thu, 12 Nov 2009 12:24:49 -0800 (PST)
Received: from ([]) by (8.13.6+Sun/8.12.9) with ESMTP id nACKPIff021516 for <>; Thu, 12 Nov 2009 20:25:18 GMT
Received: from binky.Central.Sun.COM (binky.Central.Sun.COM []) by (8.13.8+Sun/8.13.8/ENSMAIL, v2.2) with ESMTP id nACKPIO7025818 for <>; Thu, 12 Nov 2009 13:25:18 -0700 (MST)
Received: from binky.Central.Sun.COM (localhost []) by binky.Central.Sun.COM (8.14.3+Sun/8.14.3) with ESMTP id nACK6Dod018519; Thu, 12 Nov 2009 14:06:13 -0600 (CST)
Received: (from nw141292@localhost) by binky.Central.Sun.COM (8.14.3+Sun/8.14.3/Submit) id nACK6CJF018518; Thu, 12 Nov 2009 14:06:12 -0600 (CST)
X-Authentication-Warning: binky.Central.Sun.COM: nw141292 set sender to using -f
Date: Thu, 12 Nov 2009 14:06:12 -0600
From: Nicolas Williams <>
To: Love Hörnquist Åstrand <>
Subject: Re: GSS-APIv3 sketch
Message-ID: <20091112200612.GH1105@Sun.COM>
References: <> <20091111184244.GN1105@Sun.COM> <20091111184726.GD10501@Sun.COM> <> <E1N8MHF-004jYm-T7@intern.SerNet.DE> <20091111230442.GY1105@Sun.COM> <E1N8Twh-0057MW-SY@intern.SerNet.DE> <20091112170403.GB1105@Sun.COM> <> <20091112194133.GF1105@Sun.COM>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <20091112194133.GF1105@Sun.COM>
User-Agent: Mutt/1.5.7i
Cc: "" <>, Volker Lendecke <Volker.Lendecke@SerNet.DE>
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Thu, 12 Nov 2009 20:24:51 -0000

On Thu, Nov 12, 2009 at 01:41:33PM -0600, Nicolas Williams wrote:
> If there are libraries in OpenSolaris that use threads but don't clean
> up their synchronization state in fork() children via pthread_atfork(),
> then that's _BUG_.  I'll grant that some such libraries may not be part

Also, to be fair, I'd consider such behavior to be a BUG in Linux, *BSD,
...  pthread_atfork() and atexit() are standard interfaces, and they
exist to avoid the problems that you fear will crop up.  If those
interfaces are not used properly, or not used at all, where they should
be, then that has to be considered a bug.

For a _standard_ GSS-API async extension I'd like the REQUIRED to
implement to be one that encodes the least OS-specific detail.  The
callback API is that extension (it can be implemented on any OS that
provides for either threads or a global event loop -- that's Windows,
Linux, Solaris, *BSD, and probably a great many others).  I don't mind,
and will help design, specify and implement alternatives that are
RECOMMENDED or OPTIONAL to implement; such alternatives will be less
portable than the callback design since details of async I/O event
systems vary greatly (though with libevent we can get most
Unix/Unix-like OSes as well as Windows).

Do you agree?