Red Hat Bugzilla – Bug 146703
NLM (NFSv3) problems when mounting with "sec=krb5"
Last modified: 2015-01-04 17:16:21 EST
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.5)
Description of problem:
When mounting an NFS server with NFS version 3 and Kerberos security,
a variety of bad things happen when any application tries to lock or
unlock files on sec=krb5 mounts, such as application hangs and kernel
The problem is that kernel NLM tries to use a GSS credential when it
should be using an AUTH_SYS credential.
Note this is also a problem for RHEL 4.0.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Mount a NetApp filer with the sec=krb5 option
2. kinit yourself
3. Run the Connectathon locking tests on that mount
Actual Results: Kernel oops or application hangs (sorry, i don't have
the oops output
any more, but you should be able to reproduce some misbehavior using
the steps listed above).
Expected Results: Connectathon tests should pass with only one warning.
I'll attach a patch that Trond created for 2.6.11-rc2 that fixes this
Created attachment 110459 [details]
Allow NLM to work when mounting with sec=krb5 option
This is an equivalent patch to Trond's linux-2.6.11-13-fixup_nlm_auth.dif.
fixed in cvs, will be in the next kernel
Kernels with the fix in them are in:
If possible be give them try to ensure the problem is fixed.