Red Hat Bugzilla – Bug 130914
RHEL4: keyring support (OpenAFS enabler)
Last modified: 2008-08-19 07:10:22 EDT
An enabler for OpenAFS support is David Howells keyring patch. We have a
contract obligation to MSDW to enable them to use OpenAFS.
My key management patches are in Andrew Morton's tree. Various people have
looked at it (including NFS, CIFS, OpenAFS and cryptfs maintainers) and I've
had some useful feedback which I've incorporated.
Hopefully Andrew will bump it up to Linus soon, though he may decide to wait
for something to go in first that uses it.
I've settled on the user interface now. There are three new syscalls which will
always be available, and an optional filesystem. There are also four new error
CERN (IT # 45981) needs this feature because they make use of OpenAFS
This feature was unfortunately not mature enough to make it into RHEL4. We have
closed B2, and the code has not had a chance to be used in the community, and
the community is still working towards a solution. Therefore, we'll defer until
RHEL4 U1. We have no bandwidth for interim fixes for maturing (albeit
important) software, unfortunately. I asssume that someone in support will
communicate this back to the customers.
My key management patches are now in the Linus's Linux tree.
However, since this involves new error codes and syscalls, it's going to
require additions to glibc.
It will also require utility programs. I should see about getting these into
kabi buster, moving to U2 release bucket for consideration there
This needs to be on the U2 MUSTFIX list as this has been promised to Morgan
Stanley in U2.
PM ACK for U2.
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.