From owner-freebsd-fs@FreeBSD.ORG Sun Aug 1 01:07:47 2010 Return-Path: Delivered-To: freebsd-fs@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AA13B1065674 for ; Sun, 1 Aug 2010 01:07:47 +0000 (UTC) (envelope-from joe@netmusician.org) Received: from mail.netmusician.org (dorian.netmusician.org [66.244.95.101]) by mx1.freebsd.org (Postfix) with ESMTP id 6E8818FC0C for ; Sun, 1 Aug 2010 01:07:47 +0000 (UTC) Received: from localhost (unknown [127.0.0.1]) by mail.netmusician.org (Postfix) with ESMTP id 9AE6EB8A6; Sat, 31 Jul 2010 21:07:46 -0400 (EDT) X-Virus-Scanned: amavisd-new at netmusician.org Received: from mail.netmusician.org ([127.0.0.1]) by localhost (dorian.netmusician.org [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 5y-GDoxZskjh; Sat, 31 Jul 2010 21:07:46 -0400 (EDT) Received: from Shakti.local (c-67-176-145-181.hsd1.in.comcast.net [67.176.145.181]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by mail.netmusician.org (Postfix) with ESMTPSA id B816EB8A5; Sat, 31 Jul 2010 21:07:45 -0400 (EDT) Message-ID: <4C54C8E0.8020504@netmusician.org> Date: Sat, 31 Jul 2010 21:07:44 -0400 From: Joe Auty User-Agent: Postbox 1.1.5 (Macintosh/20100613) MIME-Version: 1.0 To: Rick Macklem References: <763314735.215468.1280622736448.JavaMail.root@erie.cs.uoguelph.ca> In-Reply-To: <763314735.215468.1280622736448.JavaMail.root@erie.cs.uoguelph.ca> X-Enigmail-Version: 0.96.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-fs@freebsd.org Subject: Re: NFSv4 permissions issues X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Aug 2010 01:07:47 -0000 Rick Macklem wrote: > From: "Joe Auty" > >> To: freebsd-fs@freebsd.org >> Sent: Wednesday, July 28, 2010 3:31:25 AM >> Subject: NFSv4 permissions issues >> >> Hello, >> >> In FreeBSD 8.1 when mounting an NFSv4 share (hosted by Solaris 10/ZFS) I >> cannot create or alter any files on this share nor any other share >> mounted from this same ZFS server. When I try to do so I get permission >> denied error messages. This same share does not give me any problems >> when mounted with identical mount options except for specifying NFSv3 >> rather than NFSv4... i.e. >> >> mount -t nfs -o rw,tcp,intr,noatime,nfsv3 myip:/path /path >> >> works fine, and: >> >> mount -t nfs -o rw,tcp,intr,noatime,nfsv4 myip:/path /path >> >> exhibits the above problems... >> >> >> Any idea why this is so and what I ought to do to test using NFSv4 on >> this machine? >> > > 1 - look to see if the username/groupname mappings are working. (NFSv4 > uses name and not#s.) > - just do an "ls -lg" on some NFSv4 mounted dir. to see if they > look ok. (lotsa "nobdy"'s --> busted) If it's busted, look at > the setup of nfsuserd and the "domain" specified, which is > usually the domain part of the host's name, but can be overridden > by a flag option on nfsuserd and in a config file on Solaris10. > > 2 - Make sure you user/group names and uid/gid numbers are consistent > between client and server. NFSv4 always specifies the groupname > of a newly created file object, so those groups/gids must be > correct. > > If the above doesn't resolve it, look at a snoop trace for the failed > access and see what the user/group names (and uid/gid #s in the RPC > header) look like. > > This is most likely something related to the user/group name and > number mapping, rick > At the time the user/groups were showing up as root:joe. Doing a chown as root would not generate an error message, it just simply did not work. There are no numbers appearing the user/group assignments, and these same permissions work fine when the share is mounted as NFSv3, for whatever reason. Because I gave root read and write permissions, I should be able to change the permissions to whatever I want on the client end, right? Is snoop trace an strace? -- Joe Auty, NetMusician NetMusician helps musicians, bands and artists create beautiful, professional, custom designed, career-essential websites that are easy to maintain and to integrate with popular social networks. www.netmusician.org joe@netmusician.org