Commit 074b1d12 authored by Trond Myklebust's avatar Trond Myklebust
Browse files

NFSv4: Change the default setting of the nfs4_disable_idmapping parameter 



Now that the use of numeric uids/gids is officially sanctioned in
RFC3530bis, it is time to change the default here to 'enabled'.

By doing so, we ensure that NFSv4 copies the behaviour of NFSv3 when we're
using the default AUTH_SYS authentication (i.e. when the client uses the
numeric uids/gids as authentication tokens), so that when new files are
created, they will appear to have the correct user/group.
It also fixes a number of backward compatibility issues when migrating
from NFSv3 to NFSv4 on a platform where the server uses different uid/gid
mappings than the client.

Note also that this setting has been successfully tested against servers
that do not support numeric uids/gids at several Connectathon/Bakeathon
events at this point, and the fall back to using string names/groups has
been shown to work well in all those test cases.

Signed-off-by: default avatarTrond Myklebust <Trond.Myklebust@netapp.com>
parent 6926afd1

Documentation/kernel-parameters.txt

+11 −6
Original line number Diff line number Diff line
@@ -1630,12 +1630,17 @@ bytes respectively. Such letter suffixes can also be entirely omitted. 
			The default is to return 64-bit inode numbers.



	nfs.nfs4_disable_idmapping=

			[NFSv4] When set, this option disables the NFSv4

			idmapper on the client, but only if the mount

			is using the 'sec=sys' security flavour. This may

			make migration from legacy NFSv2/v3 systems easier

			provided that the server has the appropriate support.

			The default is to always enable NFSv4 idmapping.

			[NFSv4] When set to the default of '1', this option

			ensures that both the RPC level authentication

			scheme and the NFS level operations agree to use

			numeric uids/gids if the mount is using the

			'sec=sys' security flavour. In effect it is

			disabling idmapping, which can make migration from

			legacy NFSv2/v3 systems to NFSv4 easier.

			Servers that do not support this mode of operation

			will be autodetected by the client, and it will fall

			back to using the idmapper.

			To turn off this behaviour, set the value to '0'.



	nmi_debug=	[KNL,AVR32,SH] Specify one or more actions to take

			when a NMI is triggered.

fs/nfs/client.c

+1 −1
Original line number Diff line number Diff line
@@ -84,7 +84,7 @@ retry: 
/*

 * Turn off NFSv4 uid/gid mapping when using AUTH_SYS

 */

static int nfs4_disable_idmapping = 0;

static int nfs4_disable_idmapping = 1;



/*

 * RPC cruft for NFS

CRA Git | Maintained and supported by SUSTech CRA and CCSE