Re: GSS-APIv3 sketch
"Stefan (metze) Metzmacher" <metze@samba.org> Thu, 12 November 2009 12:03 UTC
Return-Path: <metze@samba.org>
X-Original-To: kitten@core3.amsl.com
Delivered-To: kitten@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 666343A681D for <kitten@core3.amsl.com>; Thu, 12 Nov 2009 04:03:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.384
X-Spam-Level:
X-Spam-Status: No, score=-1.384 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FH_HOST_EQ_D_D_D_D=0.765, HELO_EQ_DE=0.35, RDNS_DYNAMIC=0.1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NkdI49wrp83f for <kitten@core3.amsl.com>; Thu, 12 Nov 2009 04:03:37 -0800 (PST)
Received: from mail.mx-netz.de (ip-217-172-181-76.mx-netz.de [217.172.181.76]) by core3.amsl.com (Postfix) with ESMTP id 6133E3A6818 for <kitten@ietf.org>; Thu, 12 Nov 2009 04:03:36 -0800 (PST)
Received: from [172.30.76.9] (unknown [172.30.76.9]) (using TLSv1 with cipher RC4-MD5 (128/128 bits)) (No client certificate requested) (SASL METHOD:[PLAIN] USERNAME:[metze]) by mail.mx-netz.de (SMTP-MAIL-SERVER) with ESMTP id 1C9B720C554; Thu, 12 Nov 2009 13:04:01 +0100 (CET)
Message-ID: <4AFBF9A5.7040209@samba.org>
Date: Thu, 12 Nov 2009 13:03:49 +0100
From: "Stefan (metze) Metzmacher" <metze@samba.org>
User-Agent: Thunderbird 2.0.0.23 (X11/20090817)
MIME-Version: 1.0
To: Nicolas Williams <Nicolas.Williams@Sun.COM>
Subject: Re: GSS-APIv3 sketch
References: <20091111181140.GC10501@Sun.COM> <C111F570-A844-4782-B561-08B6685D7E09@apple.com> <20091111184244.GN1105@Sun.COM> <20091111184726.GD10501@Sun.COM> <1257980366.2759.41.camel@naomi.s4.naomi.abartlet.net> <20091111230044.GW1105@Sun.COM> <20091111232007.GI10501@Sun.COM>
In-Reply-To: <20091111232007.GI10501@Sun.COM>
X-Enigmail-Version: 0.95.7
OpenPGP: id=0E53083F
Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="------------enigA682073F2BB7555BEF76C324"
Cc: "kitten@ietf.org" <kitten@ietf.org>, vl <vl@samba.org>, Love Hörnqui st Åstrand <lha@apple.com>
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Nov 2009 12:03:38 -0000
Nicolas Williams schrieb: > On Wed, Nov 11, 2009 at 05:00:45PM -0600, Nicolas Williams wrote: >> I think implementations could certainly have such interfaces, but I >> think we'd not standardize them here. > > On second thought, I think we could do non-threaded async APIs as > separate RFCs, one for each event interface. We might end up with only > one: libevent. > > One sketch: > > - app calls set_async_XYZ() on a call context handle to register > XYZ-specific event loops > - init/accept_sec_context() return S_ASYNC_CONTINUE_NEEDED > - app calls init/accept_sec_context() again when a related event is > posted > > Another: > > - app calls set_async_XYZ() on a call context handle to indicate the > desire to do XYZ-specific async calls > - init/accept_sec_context() return S_ASYNC_CONTINUE_NEEDED > - app calls get_async_XYZ() on the call context handle to get > XYZ-specific event descriptions that the app then handles in an > XYZ-specific way > - app calls init/accept_sec_context() again when a related event is > posted I think such models could nicely work from the callers view. But init/accept_sec_context() should only return A_ASYNC_CONTINUE_NEEDED once! And the caller gets only notified when the function has completed, so that the caller can get the result. The main remaining problem has to do with the mech implementations, they need an api to register different types of events. Think about this: A system has a libgssv3.so with mechglue code and a few mech implementations by different vendors. Then some application wants to use libevent with the libgssv3.so. On the same box samba wants to use it's tevent library with libgssv3.so. And a third application wants to use the glib event code with libgssv3.so. The mech implementations should work in all 3 cases without knowledge about the specific event system. metze
- GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Love Hörnquist Åstrand
- Re: GSS-APIv3 sketch Love Hörnquist Åstrand
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Jeffrey Hutzelman
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Andrew Bartlett
- Re: GSS-APIv3 sketch Volker Lendecke
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Volker Lendecke
- Re: GSS-APIv3 sketch Stefan (metze) Metzmacher
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Love Hörnquist Åstrand
- Re: GSS-APIv3 sketch Volker Lendecke
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Volker Lendecke
- Re: GSS-APIv3 sketch Volker Lendecke
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Volker Lendecke
- Re: GSS-APIv3 sketch Nicolas Williams
- Re: GSS-APIv3 sketch Tom Yu