[Bug 904717] New: NFS idmap losing GID on files - default maximum mumber of keys (200) too small
http://bugzilla.opensuse.org/show_bug.cgi?id=904717 Bug ID: 904717 Summary: NFS idmap losing GID on files - default maximum mumber of keys (200) too small Classification: openSUSE Product: openSUSE Distribution Version: 13.2 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Kernel Assignee: kernel-maintainers@forge.provo.novell.com Reporter: joschibrauchle@gmx.de QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- Some of my NFS clients running openSUSE 13.2 and nfs-client=1.3.0 seem to be losing the 'group name <-> GID' mapping on files on an NFS share. See this example: --------------- $ l -d SOME_NFS_FOLDER drwxrwxr-x 17 root 4294967294 4096 Nov 6 15:31 SOME_NFS_FOLDER/ $ stat SOME_NFS_FOLDER File: ‘SOME_NFS_FOLDER’ Size: 4096 Blocks: 8 IO Block: 65536 directory Device: 26h/38d Inode: 27258 Links: 17 Access: (0775/drwxrwxr-x) Uid: ( 0/ root) Gid: (4294967294/ UNKNOWN) ... --------------- Also all files SOME_NFS_FOLDER/* are affected. Restarting NFS services does not resolv the issue. The problem looks very much like https://bugzilla.redhat.com/show_bug.cgi?id=876705 and https://bugs.mageia.org/show_bug.cgi?id=11120. It appears that --------------- # cat /proc/sys/kernel/keys/root_maxkeys 200 --------------- seems to be too low. Running --------------- # echo 400000 > /proc/sys/kernel/keys/root_maxbytes # echo 10000 > /proc/sys/kernel/keys/root_maxkeys --------------- fixes the problem! On a side note: Trying to clear the cache of NFSIDMAP like so --------------- # nfsidmap -c nfsidmap: fopen(/proc/keys) failed: No such file or directory --------------- also fails. This seems to be another bug, as reported here: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1344405 -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=904717
Joschi Brauchle
http://bugzilla.opensuse.org/show_bug.cgi?id=904717
lynn wilson
http://bugzilla.opensuse.org/show_bug.cgi?id=904717
--- Comment #3 from Joschi Brauchle
On a side note: Trying to clear the cache of NFSIDMAP like so --------------- # nfsidmap -c nfsidmap: fopen(/proc/keys) failed: No such file or directory --------------- also fails. This seems to be another bug, as reported here: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1344405
Is there a fix for this? It looks like exposing /proc/keys might be a security risk, as stated here http://cateee.net/lkddb/web-lkddb/KEYS_DEBUG_PROC_KEYS.html -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=904717
Joschi Brauchle
http://bugzilla.opensuse.org/show_bug.cgi?id=904717
Joschi Brauchle
http://bugzilla.opensuse.org/show_bug.cgi?id=904717
--- Comment #4 from Joschi Brauchle
http://bugzilla.opensuse.org/show_bug.cgi?id=904717
Neil Brown
http://bugzilla.opensuse.org/show_bug.cgi?id=904717
--- Comment #6 from Joschi Brauchle
http://bugzilla.opensuse.org/show_bug.cgi?id=904717
--- Comment #7 from Neil Brown
participants (1)
-
bugzilla_noreply@novell.com