Date: Fri, 28 Jul 2017 21:07:57 +0000 (UTC) From: Rick Macklem <rmacklem@FreeBSD.org> To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org Subject: svn commit: r321665 - head/etc/rc.d Message-ID: <201707282107.v6SL7vtk071572@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: rmacklem Date: Fri Jul 28 21:07:57 2017 New Revision: 321665 URL: https://svnweb.freebsd.org/changeset/base/321665 Log: Modify /etc/rc.d/nfsd so it doesn't force a startup of nfsuserd for NFSv4. Given that RFC7530 allows uid/gids to be placed in owner/owner_group strings directly, many NFSv4 environments don't need the nfsuserd. This small patch modified /etc/rc.d/nfsd so that it does not force startup of the nfsuserd daemon unless nfs_server_managegids is enabled. This implies that nfsuserd_enable="YES" must be added to /etc/rc.conf for NFSv4 server environments that use Kerberos mounts or clients that do not support the uid/gid in string capability. Since this could be considered a POLA violation, it will not be MFC'd. Discussed on: freebsd-current Modified: head/etc/rc.d/nfsd Modified: head/etc/rc.d/nfsd ============================================================================== --- head/etc/rc.d/nfsd Fri Jul 28 20:13:25 2017 (r321664) +++ head/etc/rc.d/nfsd Fri Jul 28 21:07:57 2017 (r321665) @@ -33,8 +33,7 @@ nfsd_precmd() sysctl vfs.nfsd.nfs_privport=0 > /dev/null fi - if checkyesno nfsv4_server_enable || \ - checkyesno nfs_server_managegids; then + if checkyesno nfs_server_managegids; then force_depend nfsuserd || err 1 "Cannot run nfsuserd" fi
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201707282107.v6SL7vtk071572>