[16221] in Kerberos_V5_Development
Re: ANAME_DB re-enable with patch.
daemon@ATHENA.MIT.EDU (Roland C. Dowdeswell)
Wed Sep 1 17:02:29 2010
Date: Wed, 1 Sep 2010 22:03:03 +0100
From: "Roland C. Dowdeswell" <elric@imrryr.org>
To: Russ Allbery <rra@stanford.edu>
Message-ID: <20100901210303.GA20547@mournblade.imrryr.org>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <87mxs1uqvc.fsf@windlord.stanford.edu>
Cc: krbdev@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
On Wed, Sep 01, 2010 at 01:54:15PM -0700, Russ Allbery wrote:
>
> "Roland C. Dowdeswell" <elric@imrryr.org> writes:
>
> > I found ANAME_DB in the code but it appears to have been disabled, so I
> > revived it along with converting it to use the BDB code which is already
> > in the Kerberos libs rather than DBM.
>
> I hate to see that BDB code being used for anything new, since it's
> essentially a fork of something that's now completely unmaintained
> upstream. I don't know that I have a good alternative, though (although I
> bet a simple scan of a text file would be fast enough in many cases).
>
> Have folks considered embedding TDB? http://tdb.samba.org/
I wasn't incredibly excited by the use of that version of BDB,
either. But, it is already in the srcs which makes it attactive
for now.
Given the configuration file syntax, though, we could offer a few
options. Right now the BDB interface is:
REALM = {
...
auth_to_local = DB:/var/tmp/an2ln.db
}
It would be easy to provide a different one via TDB:/path/to/db or
perhaps it would make more sense for me to use KBDB:/path/to/db to
indicate that I'm using the Kerberos BDB implementation.
TDB or CDB would both be reasonable choices. Anything that I can
link into libkrb5.so statically so that I'm not at risk of accidentally
changing my ABI by requiring additional shared objects.
--
Roland Dowdeswell http://Imrryr.ORG/~elric/
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
