From owner-freebsd-fs@FreeBSD.ORG Mon Dec 6 23:21:17 2010 Return-Path: Delivered-To: freebsd-fs@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B8C801065679; Mon, 6 Dec 2010 23:21:17 +0000 (UTC) (envelope-from joe@netmusician.org) Received: from mail.netmusician.org (dorian.netmusician.org [66.244.95.101]) by mx1.freebsd.org (Postfix) with ESMTP id 88C798FC1A; Mon, 6 Dec 2010 23:21:17 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netmusician.org (Postfix) with ESMTP id E0970B87C; Mon, 6 Dec 2010 18:21:16 -0500 (EST) X-Virus-Scanned: amavisd-new at netmusician.org Received: from mail.netmusician.org ([127.0.0.1]) by localhost (dorian.netmusician.org [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id oiA3KgzDXbaP; Mon, 6 Dec 2010 18:21:16 -0500 (EST) Received: from Shakti.local (c-71-201-100-167.hsd1.in.comcast.net [71.201.100.167]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by mail.netmusician.org (Postfix) with ESMTPSA id 485B9B87A; Mon, 6 Dec 2010 18:21:16 -0500 (EST) Message-ID: <4CFD6FE9.4020406@netmusician.org> Date: Mon, 06 Dec 2010 18:21:13 -0500 From: Joe Auty User-Agent: Postbox 2.0.2 (Macintosh/20101025) MIME-Version: 1.0 To: Rick Macklem References: <1515785960.1261915.1291677440081.JavaMail.root@erie.cs.uoguelph.ca> In-Reply-To: <1515785960.1261915.1291677440081.JavaMail.root@erie.cs.uoguelph.ca> X-Enigmail-Version: 1.1.2 Content-Type: text/plain; charset=ISO-8859-2 Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-fs@freebsd.org, =?ISO-8859-2?Q?Edward_Tomasz_Napiera=B3a?= Subject: Re: Migrating from NFSv3 to v4 - NFSv4 ACL/permission confusion X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Dec 2010 23:21:17 -0000 Rick Macklem wrote: >> I might be misunderstanding you, but ZFS definitely supports NFSv3 >> because I've been mounting and using NFS volumes via this protocol >> version for quite some time now without incident. >> > Yep, but you couldn't do a getfacl or setfacl in the client to > manipulate the ACLs. On an NFSv4 mount, you should be able to do > a getfacl or setfacl if the volume on the server supports NFSv4 ACLs. > > I suspect the failing "chown" doesn't have anything to do with ACLs. > (It might be that the server doesn't know "joe" as a user, for example. > In NFSv3, it would have sent "joe's" uid to the server, which is just > a number it always trusts. For NFSv4, it will have sent "joe@" > to the server and the NFS server must then know "joe" so it can turn > that into "joe's" uid.) > > It just hit me that you said "joe" was a local user in the client? > (For NFSv4 to work, the user names must be in the server's passwd > database as well. Usually all the clients and servers share the > same user and group databases via LDAP or NIS, but you can just > copy /etc/passwd and /etc/group entries around, if you like. > After updating the server's /etc/passwd or /etc/group, I don't > know what you need to do to get Solaris's NFSv4 server to see the > update. I always just reboot it. For a FreeBSD server, it should > find additions. For deletions or changes to an entry, you can > either wait for it to time out the cache or kill/restart the nfsuserd.) > > rick > Aha! Progress... This requirement is problematic for me right now for a variety of reasons including that I'm not using LDAP or NIS (although I will in the future). Is there anyway to get NFSv4 to behave like v3 in this respect so that these users don't need to exist on the NFS server side? -- Joe Auty, NetMusician NetMusician helps musicians, bands and artists create beautiful, professional, custom designed, career-essential websites that are easy to maintain and to integrate with popular social networks. www.netmusician.org joe@netmusician.org