From owner-freebsd-hackers@freebsd.org Sat Feb 20 16:13:25 2021 Return-Path: Delivered-To: freebsd-hackers@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 415C654C5EC for ; Sat, 20 Feb 2021 16:13:25 +0000 (UTC) (envelope-from rmacklem@uoguelph.ca) Received: from CAN01-TO1-obe.outbound.protection.outlook.com (mail-eopbgr670076.outbound.protection.outlook.com [40.107.67.76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.protection.outlook.com", Issuer "GlobalSign Organization Validation CA - SHA256 - G3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4DjYQX1q1zz3rNv for ; Sat, 20 Feb 2021 16:13:23 +0000 (UTC) (envelope-from rmacklem@uoguelph.ca) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=GRJIbLQAFsza9q9QLzTKP0GVp0X7l73PosSwfV7uUBteHKeP1jKUNpPwALMzTB4GFI05EDzIpzPyyiJB/LZlu8OOe34ZHXczvcxV3G5xB9zXF3XX03kXlWGdqbV7d/fFCWZZk7gw97KuK5iYG8ECVsy+y+fX5JNb+3VGawBewqre/lclzJEop/8q5VYG68L8MNOcWVIIu1jYi+u62DjH9nHOd5BB8NsxVsLJCmFj3MR7UpCP45d+fGW3JTtZGmytd8qQEdDiYEfQkM0J+GmwTlFaWX+8diOjAfjBU5GDKSSlXmZDo50g7ajVMyXtXQmN+gvmsiag9kgpn0ZssmYCmw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ggUUCBmhFu4awxiterlWpJiTm2bzw1FHMrJ/ZhDuKPo=; b=bKw5ob2siNRujhDWAeagHBAOi6P9/tTVi7P1VDc5XYI8wHpnuO2UkuKKIhKMzMWHRygbJPyuw/wGWLt2qZ6sG9OPteAjUp0vEmCKyyx4He24ErSMFQIP6mLcyweFBTKJOb/5X2rEwBQPiph3IIApCoQcBHl3J+AdAZ+tM+C0JzJJV0ZaYluaQnCTiDviP423qcIHPHEo6xr84ZBM/WnT+55hUaveQ4h99FqPELIFEoJwHfXfi7aGnqqsVNICXuB+k3o0r5wGNMuHA4PcbcW6tdOn8dLFysChTcgr7OA6+b5X8dZMPN5gkUpfKJR/xVmnOXkh3SEYNlw3+O5645XsTg== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=uoguelph.ca; dmarc=pass action=none header.from=uoguelph.ca; dkim=pass header.d=uoguelph.ca; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=uoguelph.ca; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ggUUCBmhFu4awxiterlWpJiTm2bzw1FHMrJ/ZhDuKPo=; b=KTPSgkcU+qKVG/6mukpDrrLldmQdHWpCbmD0UpspnxkLpJDIjEyrmrc0hiouxQMAfCYYvebpgXb6HjDyoaO/No6SU7LW6glvtPaNrS92DmZ8odJGILOPPQ8l4At+9w/qqxdG1z5+m+RxNkArfrsfh4tR+rj4qsLnyuUAtgglmkkvThiMMbiy2LwD6NhV/QASM2cablf4q8uHbcXPyVmO792Kpqz/lbsDmBGS/rRdFcEWsx0prsSoT9NPnNq4NV25zJksgtX2y3N31EHDZ7AFew8TzqlXzh874tMht5W1XKYHNE0LvmKSBnOje51YopnEimYfC+ZdNxT41OjJ1w5tNA== Received: from YQXPR0101MB0968.CANPRD01.PROD.OUTLOOK.COM (2603:10b6:c00:19::29) by YQXPR0101MB2310.CANPRD01.PROD.OUTLOOK.COM (2603:10b6:c00:24::33) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3825.19; Sat, 20 Feb 2021 16:13:22 +0000 Received: from YQXPR0101MB0968.CANPRD01.PROD.OUTLOOK.COM ([fe80::6073:6fc0:5ddf:dc8a]) by YQXPR0101MB0968.CANPRD01.PROD.OUTLOOK.COM ([fe80::6073:6fc0:5ddf:dc8a%7]) with mapi id 15.20.3846.039; Sat, 20 Feb 2021 16:13:21 +0000 From: Rick Macklem To: Chris Johns , "freebsd-hackers@freebsd.org" Subject: Re: sys/fs/nfsclient ACCESS attributes with RTEMS Thread-Topic: sys/fs/nfsclient ACCESS attributes with RTEMS Thread-Index: AQHXBxWSJXQ11tExfU+3X4zvGlTGM6phNaHw Date: Sat, 20 Feb 2021 16:13:21 +0000 Message-ID: References: <0e14503a-ca7b-cd0f-6472-289fc9ac301b@rtems.org> In-Reply-To: <0e14503a-ca7b-cd0f-6472-289fc9ac301b@rtems.org> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 93110ccf-7448-4a49-ad39-08d8d5ba71a0 x-ms-traffictypediagnostic: YQXPR0101MB2310: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:10000; x-ms-exchange-senderadcheck: 1 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:YQXPR0101MB0968.CANPRD01.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(376002)(396003)(366004)(346002)(39860400002)(136003)(86362001)(966005)(33656002)(66476007)(6506007)(186003)(8676002)(2906002)(71200400001)(478600001)(8936002)(7696005)(9686003)(5660300002)(110136005)(55016002)(76116006)(83380400001)(316002)(91956017)(66446008)(786003)(64756008)(66556008)(66946007)(52536014); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata: =?iso-8859-1?Q?GJvgIMfvMtKJ+Xal96bMu/W2kP3L1IcjlEfFaodfJYP0whxjQLI30bhicC?= =?iso-8859-1?Q?TaAu0X1iOSiJRNLcLwlYjvMmrkJjKk191+XIeaSiN+ZTPgwS2D++5/CZ5B?= =?iso-8859-1?Q?TcvPT3cSIB4UzUPUVMfLPfdhKusnIYMaSis21dhx0c5cVep2KRqwlixnml?= =?iso-8859-1?Q?vFeD3UtJUzxJLM0Kc8Nu50ZDDqZMZe9w5eQhdH6z928zrMu2jtpYr/lPD0?= =?iso-8859-1?Q?ggW1dWcqpYbdwkU10LvF7FX6B5LtKZPkKjU0DlmnwMDk3OIX8UXs2QF090?= =?iso-8859-1?Q?krHvhhszNChoVYiOx8yn0y7N9gBPUypFij8y7btxJBkVOgk9qhEESSYglQ?= =?iso-8859-1?Q?PJNjdGeDzDYIFJJwq3VrArlDR0mKbtn5rKOGnNKiS0gxo7Lk90asTF3QIe?= =?iso-8859-1?Q?X3j5Gylbo9nJOodr2rhqzAE1Dbwf1k3uLp+kDjxr3lz1W3TFyZLrGvG1Vo?= =?iso-8859-1?Q?LPE1Wz0djEBLfx2ojJGcqPhPfO+JS50A+whX+ra3Hv6mo34ZhE8VHL2n5w?= =?iso-8859-1?Q?ISgqcm4FPnymQherI1wh2L2o/Fe2x24l3w16JzSHW8aK4L7Wkzl/mTanCu?= =?iso-8859-1?Q?ZF9LP6bl1Sf3M9Ml52D577NGvIQ4V2DPb/bJFFIfz+1KEveG4D/C+nEpBB?= =?iso-8859-1?Q?IeEYgvEQBjwEvsroJL4T4eYag62T2bWekVVV17FdDMA6fPLOTksbr6q4l1?= =?iso-8859-1?Q?3TdRqs+F1SeDC0i/EegPdjLLBm35scqUKeGia9iB3iU7IvAaq9hjbW0NFp?= =?iso-8859-1?Q?AxzHmW7WsInJXf+UWCNzO/zkPrP5u7koG2pF0w3Zphg5YFV4O+lzLY98IT?= =?iso-8859-1?Q?kLdQ8mYmNcdtP1TZnhlTCsfh/oSDg843vuhK/oSrkI/pTP6CdIg5z03NOP?= =?iso-8859-1?Q?V3O4DHnpHvplZ+4l4G5dyrjAcpzbwUxfIZP56BdvXiLDHpDaody6Xianfz?= =?iso-8859-1?Q?XbubEhqv5t2fpto7ld0Q5/aMRzAGuw+o9+FMgKDVNACb6cwYYRCM9KD8Sa?= =?iso-8859-1?Q?4x9vz8KIKX2RXIhISTC0CuMBI61bs/clkWC4TKyW38XmZC5Gc70JHADHNC?= =?iso-8859-1?Q?6TbbSmwL8KHj6Dfu+PuFJAB2TDt1X8/Z9If2KQ4VkP4Hk8ECbKybY8ITQD?= =?iso-8859-1?Q?+0He748EM4deeiKZSPnmCOstUsRWer2h6KMJuoO8DVli/EdYvUUv7VC3Ip?= =?iso-8859-1?Q?VE3UKARvC72U4ksMVM1h5R4BJ4SU362/ZTyzYVK1/ahdK6VtKVC45SG+jp?= =?iso-8859-1?Q?mJDrRkHxKqstP9zSB+cW2tO9I7He9rymArVAfn5D9WnvLFGZxzs2SqoEMR?= =?iso-8859-1?Q?vw39YF5owqwUg1SNkKfw6YOmhLcNPLRsLdlZ2eMIxwdX25wUNy91PtKo8z?= =?iso-8859-1?Q?jtFk4yqVELKyHySwt7tPACE+0zgLq1oBo6l5lzJLkkfSN5b6P+kHk=3D?= x-ms-exchange-transport-forked: True Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-OriginatorOrg: uoguelph.ca X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: YQXPR0101MB0968.CANPRD01.PROD.OUTLOOK.COM X-MS-Exchange-CrossTenant-Network-Message-Id: 93110ccf-7448-4a49-ad39-08d8d5ba71a0 X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Feb 2021 16:13:21.9524 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: be62a12b-2cad-49a1-a5fa-85f4f3156a7d X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: V+/GKM3NirUGtTOXj6yO55evQ/RZzsuzNxiMHUAgkUlbnHTaP/2Ynb7vxLaxUFF/B7ObN+B2i6TM2Mm26kDckg== X-MS-Exchange-Transport-CrossTenantHeadersStamped: YQXPR0101MB2310 X-Rspamd-Queue-Id: 4DjYQX1q1zz3rNv X-Spamd-Bar: ------ Authentication-Results: mx1.freebsd.org; dkim=pass header.d=uoguelph.ca header.s=selector1 header.b=KTPSgkcU; arc=pass (microsoft.com:s=arcselector9901:i=1); dmarc=pass (policy=none) header.from=uoguelph.ca; spf=pass (mx1.freebsd.org: domain of rmacklem@uoguelph.ca designates 40.107.67.76 as permitted sender) smtp.mailfrom=rmacklem@uoguelph.ca X-Spamd-Result: default: False [-6.00 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:40.107.0.0/16]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[uoguelph.ca:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[uoguelph.ca,none]; NEURAL_HAM_SHORT(-1.00)[-1.000]; FROM_EQ_ENVFROM(0.00)[]; RCVD_TLS_LAST(0.00)[]; RBL_DBL_DONT_QUERY_IPS(0.00)[40.107.67.76:from]; ARC_ALLOW(-1.00)[microsoft.com:s=arcselector9901:i=1]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8075, ipnet:40.104.0.0/14, country:US]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_DKIM_ALLOW(-0.20)[uoguelph.ca:s=selector1]; FREEFALL_USER(0.00)[rmacklem]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; SPAMHAUS_ZRD(0.00)[40.107.67.76:from:127.0.2.255]; DWL_DNSWL_LOW(-1.00)[uoguelph.ca:dkim]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[40.107.67.76:from]; RWL_MAILSPIKE_POSSIBLE(0.00)[40.107.67.76:from]; MAILMAN_DEST(0.00)[freebsd-hackers] X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: Technical discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Feb 2021 16:13:25 -0000 Chris Johns wrote:=0A= >I have made some progress in porting the FreeBSD kernel NFS client file sy= stem=0A= >to RTEMS. The connection to an NVFv4 server is stable and I can change=0A= >directories, list directories and read files. I however cannot make a dire= ctory.=0A= >I get a permissions error. This is the fragment of traffic showing the err= or:=0A= >=0A= >10.10.5.45 -> 10.10.5.4 NFS 246 V4 Call Access ACCESS FH: 0xbb937afe, [Che= ck: RD=0A= >LU MD XT DL XE]=0A= >10.10.5.4 -> 10.10.5.45 NFS 350 V4 Reply (Call In 72) Access ACCESS, [NOT= =0A= >Supported: XE], [Access Denied: MD XT DL], [Allowed: RD LU]=0A= For whatever reason, the client only has read/lookup access to 0xbb937afe (= presumably=0A= a directory).=0A= =0A= >10.10.5.45 -> 10.10.5.4 NFS 282 V4 Call Lookup LOOKUP DH: 0xbb937afe/read_= write_test=0A= >10.10.5.4 -> 10.10.5.45 NFS 342 V4 Reply (Call In 74) Lookup LOOKUP Status= :=0A= >NFS4ERR_NOENT=0A= >10.10.5.45 -> 10.10.5.4 NFS 282 V4 Call Lookup LOOKUP DH: 0xbb937afe/read_= write_test=0A= >10.10.5.4 -> 10.10.5.45 NFS 342 V4 Reply (Call In 76) Lookup LOOKUP Status= :=0A= >NFS4ERR_NOENT=0A= >10.10.5.45 -> 10.10.5.4 NFS 358 V4 Call Create CREATE=0A= >10.10.5.4 -> 10.10.5.45 NFS 210 V4 Reply (Call In 78) Create CREATE Status= :=0A= >NFS4ERR_ACCESS=0A= >=0A= >The server is set up for an NFSv4 export and I have `no_squash_root` set f= or=0A= >testing. There is no security enabled (nfs@...). The RTEMS client mount op= tions are:=0A= Since "no_quash_root" doesn't exist on FreeBSD NFS servers (implemented wit= h the=0A= -maproot export option on FreeBSD), I'll assume a non-FreeBSD server.=0A= --> As such, I have no idea why the access is limited. (mode bits, ACL,...?= ).=0A= =0A= If you test against a FreeBSD server, you can "sysctl vfs.nfsd.debuglevel= =3D4" and=0A= make it pretty chatty to help figure out what is going on.=0A= =0A= rick=0A= =0A= ma =3D mount_arg(ma, "rw", NULL, 0);=0A= ma =3D mount_arg(ma, "nfsv4", NULL, 0);=0A= ma =3D mount_arg(ma, "minorversion", "1", -1);=0A= ma =3D mount_arg(ma, "nolockd", NULL, 0);=0A= error =3D kernel_mount(ma, MNT_VERIFIED);=0A= =0A= The mount seems OK. The cred used in all the calls is the same and has uid= =3D0, gid=3D0.=0A= =0A= The fragment of code I am using to test with runs fine from a FreeBSD shell= as=0A= root. The ACCESS attributes for the FreeBSD test executable is:=0A= =0A= 10.10.5.2 -> 10.10.5.4 NFS 210 V4 Call Access ACCESS FH: 0x18096ab3, [Check= : RD=0A= LU MD XT DL XE]=0A= 10.10.5.4 -> 10.10.5.2 NFS 302 V4 Reply (Call In 67) Access ACCESS, [NOT=0A= Supported: XE], [Allowed: RD LU MD XT DL]=0A= =0A= The same ACCESS attributes for the RTEMS client is:=0A= =0A= 10.10.5.45 -> 10.10.5.4 NFS 246 V4 Call Access ACCESS FH: 0xbb937afe, [Chec= k: RD=0A= LU MD XT DL XE]=0A= 10.10.5.4 -> 10.10.5.45 NFS 350 V4 Reply (Call In 72) Access ACCESS, [NOT= =0A= Supported: XE], [Access Denied: MD XT DL], [Allowed: RD LU]=0A= =0A= I do not know what or where in the connection or mount triggers this behavi= our=0A= in the server. What is the reason for this and where could I take a look to= see=0A= what I have not set up in my client?=0A= =0A= Thanks=0A= Chris=0A= _______________________________________________=0A= freebsd-hackers@freebsd.org mailing list=0A= https://lists.freebsd.org/mailman/listinfo/freebsd-hackers=0A= To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org"= =0A= =0A=