Add vfs.nfsd.nfsd_disable_uidtostring
ClosedPublic
Actions

Authored by trasz on Jun 23 2017, 3:25 PM.

Details

Reviewers

Commits

rS320359: Add vfs.nfsd.nfsd_enable_uidtostring, which works just like

Summary

Add vfs.nfsd.nfsd_disable_uidtostring, which works just like
vfs.nfsd.nfsd_disable_stringtouid, but in reverse - when set to 1,
it forces the NFSv4 server to return numeric UIDs and GIDs instead
of "user@domain" strings. This helps with clients that can't
translate returned identifiers, eg when rerooting.

Diff Detail

Repository

rS FreeBSD src repository - subversion

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

trasz created this revision.Jun 23 2017, 3:25 PM

Herald added a subscriber: imp. · View Herald TranscriptJun 23 2017, 3:25 PM

Harbormaster completed remote builds in B10086: Diff 29999.Jun 23 2017, 3:25 PM

trasz added a reviewer: rmacklem.Jun 23 2017, 3:25 PM

Patch looks fine. I will note that not running the nfsuserd daemon achieves the same
result (that is what the nfsrv_dnsnamelen > 0 is for), but if there is a case where
someone wants to run nfsuserd but doesn't want it to do "outbound" mapping,
I can see this as useful.

This revision is now accepted and ready to land.Jun 23 2017, 9:02 PM

Closed by commit rS320359: Add vfs.nfsd.nfsd_enable_uidtostring, which works just like (authored by trasz). · Explain WhyJun 26 2017, 1:11 PM

This revision was automatically updated to reflect the committed changes.

Btw, another reason to do this is that, if someone wishes to stop using the
nfsuserd and just put uid/gid numbers in the strings, this would allow
them to kill the nfsuserd daemon off and set this sysctl.

Without this sysctl, the sysadmin must reboot the machine to disable use
of the nfsuserd daemon. (The kernel code still tries to use cached mappings
when the daemon has gone away, under the assumption that it has crashed and
will be restarted.)

fabian.freyer_physik.tu-berlin.de added a subscriber: fabian.freyer_physik.tu-berlin.de.Jun 30 2017, 10:20 PM