From owner-freebsd-fs@FreeBSD.ORG  Wed Feb 15 02:35:11 2012
Return-Path: <owner-freebsd-fs@FreeBSD.ORG>
Delivered-To: freebsd-fs@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 6C2F11065680
	for <freebsd-fs@freebsd.org>; Wed, 15 Feb 2012 02:35:11 +0000 (UTC)
	(envelope-from jwd@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id 570458FC21
	for <freebsd-fs@freebsd.org>; Wed, 15 Feb 2012 02:35:11 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1F2ZBtL046750
	for <freebsd-fs@freebsd.org>; Wed, 15 Feb 2012 02:35:11 GMT
	(envelope-from jwd@freefall.freebsd.org)
Received: (from jwd@localhost)
	by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1F2ZBFS046749
	for freebsd-fs@freebsd.org; Wed, 15 Feb 2012 02:35:11 GMT
	(envelope-from jwd)
Date: Wed, 15 Feb 2012 02:35:11 +0000
From: John <jwd@freebsd.org>
To: freebsd-fs@freebsd.org
Message-ID: <20120215023511.GA7613@FreeBSD.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.4.2.3i
Subject: Enable chown by non-root users over NFS
X-BeenThere: freebsd-fs@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Filesystems <freebsd-fs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-fs>,
	<mailto:freebsd-fs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-fs>
List-Post: <mailto:freebsd-fs@freebsd.org>
List-Help: <mailto:freebsd-fs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-fs>,
	<mailto:freebsd-fs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Feb 2012 02:35:11 -0000

Hi Folks,

   We have a $NFS_FILESERVER we're trying to replace with a ZFS based
system. Everything works quite well except for some processes which fail
trying to give away ownership of a file.

   In this instance, $NFS_FILESERVER has a system level option, root_only_chown,
which is disabled, which allows the chown ownership giveaways to work.
(Yes, it's a security issue. No, I can't change the process). Note, this is
not a maproot issue. Wrong rabbit hole :-)

   I've started poking through the code. Also thought I'd ask here if
anyone has run into this issue and how they solved it, or if anyone
has any suggestions. Feel free to tell me I'm missing something obvious
also...

Thanks,
John