Package: nfs-kernel-server
Version: 1:1.1.2-6lenny1
Severity: important
Hi!
on trying to set up a NFS4 server, I found that the server respects
options which are defined for the export _root_ directory (fsid=0),
but it seems to happily ignore deviating options that are specified
for any of the exported subdirectories (i.e., the settings for the
root dir are used instead).
In particular:
/etc/exports contains the following:
/srv/nfs4 131.220.xx.xx(rw,sync,no_subtree_check,fsid=0,crossmnt)
/srv/nfs4/nfs4test 131.220.xx.xx(rw,sync,no_subtree_check,no_root_squash)
/srv/nfs4/otherdir 131.220.xx.xx(rw,sync,no_subtree_check)
(131.220.xx.xx being a single ip for the nfs client)
Now, if I mount nfsserver:/ to /mnt on the client, I do not get root
permissions when writing to /mnt/nfs4test, i.e. (as root)
# cd /mnt/nfs4test
# touch x
# ls -al
drwxrwxrwx 6 root root 4096 Jan 29 18:11 .
drwxr-xr-x 4 root root 4096 Jan 29 12:13 ..
-rw-r--r-- 1 nobody nogroup 0 Jan 29 18:11 x
Writing as user results in the correct ownership, username:users, though.
On the other hand, when I change server exports into
/srv/nfs4
131.220.xx.xx(ro,sync,no_root_squash,no_subtree_check,fsid=0,crossmnt)
/srv/nfs4/nfs4test 131.220.xx.xx(rw,sync,no_subtree_check)
/srv/nfs4/otherdir 131.220.xx.xx(rw,sync,no_subtree_check,root_squash)
and restart nfs-kernel-server (or do exportfs -r, or even reboot),
I have full root permissions on _both_ subdirs, even on the one
explicitely set as "root_squash".
Which, as you may understand, is something that makes me feel a bit
uneasy about.
Actually, I get the same behaviour if I set "ro" for the exports root,
and "rw" for the subdirectories: I do not get write permissions for any
of them. ("Read-only file system") Same vice-versa.
So, I would be glad if you could point me to some silly configuration
problem on my side, but currently, I do not see what that could be.
Cheers,
Ole
-- Additional info:
[Client is sid/amd64, nfs* 1:1.2.1-3, Kernel self-built 2.6.32.3]
-- System Information:
Debian Release: 5.0.3
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.26-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages nfs-kernel-server depends on:
ii libblkid1 2.16.2-0 block device id library
ii libc6 2.7-18lenny2 GNU C Library: Shared libraries
ii libcomerr2 1.41.3-1 common error description library
ii libgssglue1 0.1-2 mechanism-switch gssapi library
ii libkrb53 1.6.dfsg.4~beta1-5lenny2 MIT Kerberos runtime libraries
ii libnfsidmap2 0.20-1 An nfs idmapping library
ii librpcsecgss3 0.18-1 allows secure rpc communication us
ii libwrap0 7.6.q-16 Wietse Venema's TCP wrappers libra
ii lsb-base 3.2-20 Linux Standard Base 3.2 init scrip
ii nfs-common 1:1.1.2-6lenny1 NFS support files common to client
ii ucf 3.0016 Update Configuration File: preserv
nfs-kernel-server recommends no packages.
nfs-kernel-server suggests no packages.
-- no debconf information
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
