Bug 503142
Summary: | NFSv4+krb5. Group write access denied client-side until NFS-share is remounted. | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 5 | Reporter: | Espen Braastad <espen> |
Component: | nfs-utils | Assignee: | Steve Dickson <steved> |
Status: | CLOSED NOTABUG | QA Contact: | yanfu,wang <yanwang> |
Severity: | high | Docs Contact: | |
Priority: | low | ||
Version: | 5.3 | CC: | bfields |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2011-01-22 15:10:34 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Espen Braastad
2009-05-29 08:43:52 UTC
The server looks up the group membership, and passes that information down to the kernel, just once--at the time that the client and server initially negotiate a new rpcsec_gss context for that user. I suspect that's the cause of the failure to update. If so, date +%s >/proc/net/rpc/auth.rpcsec.context/flush instead of unmounting and remounting on the client, should clear the problem. Does date +%s >/proc/net/rpc/auth.rpcsec.context/flush Clear up the problem? Yes, it does! Thanks. |