On Wed, 14 May 2025 at 23:51, Martin Wege <martin.l.wege@xxxxxxxxx> wrote: > Interoperability is also a big problem (nay, it's ZERO > interoperability), as this is basically a Linux kernel client/kernel server only > solution. > libtirpc doesn't support TLS, Ganesha doesn't support TLS, so yeah, > this is an issue, and not a solution. > > Fazit: Supporting your argumentation with Kerberos5 or TLS is not gonna fly. I tried to add TLS support to libtirpc, but I think it's simply not possible. The APIs are just not compatible. Ganesha folks also tried the same, and failed - their ntirpc would require a major redesign to support TLS. So, why do the NFS folks even bother with NFS over TLS, if it is this kind of mismatch? Dan -- Dan Shelton - Cluster Specialist Win/Lin/Bsd
