From owner-freebsd-arch@FreeBSD.ORG  Sat Nov 12 11:25:53 2005
Return-Path: <owner-freebsd-arch@FreeBSD.ORG>
X-Original-To: arch@freebsd.org
Delivered-To: freebsd-arch@FreeBSD.ORG
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id C5E1716A41F
	for <arch@freebsd.org>; Sat, 12 Nov 2005 11:25:53 +0000 (GMT)
	(envelope-from rwatson@FreeBSD.org)
Received: from cyrus.watson.org (cyrus.watson.org [209.31.154.42])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 6C93A43D46
	for <arch@freebsd.org>; Sat, 12 Nov 2005 11:25:53 +0000 (GMT)
	(envelope-from rwatson@FreeBSD.org)
Received: from fledge.watson.org (fledge.watson.org [209.31.154.41])
	by cyrus.watson.org (Postfix) with ESMTP id 0B4B746BAB;
	Sat, 12 Nov 2005 06:25:53 -0500 (EST)
Date: Sat, 12 Nov 2005 11:25:52 +0000 (GMT)
From: Robert Watson <rwatson@FreeBSD.org>
X-X-Sender: robert@fledge.watson.org
To: Doug Rabson <dfr@nlsystems.com>
In-Reply-To: <200511121115.38732.dfr@nlsystems.com>
Message-ID: <20051112112234.H33260@fledge.watson.org>
References: <200511121042.42425.dfr@nlsystems.com>
	<20051112110504.X33260@fledge.watson.org>
	<200511121115.38732.dfr@nlsystems.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Cc: arch@freebsd.org
Subject: Re: New extensible GSSAPI implementation
X-BeenThere: freebsd-arch@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussion related to FreeBSD architecture <freebsd-arch.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
	<mailto:freebsd-arch-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-arch>
List-Post: <mailto:freebsd-arch@freebsd.org>
List-Help: <mailto:freebsd-arch-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
	<mailto:freebsd-arch-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 12 Nov 2005 11:25:53 -0000


On Sat, 12 Nov 2005, Doug Rabson wrote:

> I have looked at the Solaris kernel GSS-API code. As far as I can see on 
> a first reading, they defer the context establishment out to userland 
> and once the context is up, they do the actual crypto for signing etc. 
> in the kernel, via a plugin model.
>
> Doing all the crypto in userland isn't really a good idea because even 
> when you aren't using message privacy and integrity, parts of the RPC 
> header are still signed for basic replay detection. Flipping all that 
> out to userland would be devastating for performance. Rick Macklem's 
> NFSv4 server code does its crypto in the kernel in a similar way to 
> Solaris but it is hard-wired to kerberosv5.

I agree entirely with the above sentiments.  Are you sure you can't make 
it to EuroBSDCon to talk about NFSv4 there? :-)

Robert N M Watson