Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-84056

idmapd static plugin does not work properly with GSS-Method

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Normal Normal
    • None
    • CentOS Stream 10
    • libnfsidmap
    • None
    • No
    • None
    • rhel-se-kernel
    • 5
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • CentOS Stream
    • None
    • None
    • None
    • Unspecified
    • Unspecified
    • Unspecified
    • x86_64
    • None

      What were you trying to do that didn't work?

      I attempted to mount an NFS volume with Kerberos authentication, but the user ID mapping failed.

      I believe this is the same issue with this one.

      https://www.mail-archive.com/debian-kernel@lists.debian.org/msg140774.html

      What is the impact of this issue to you?

      This issue prevents me from using the NFS volume due to incorrect permissions.

      Please provide the package NVR for which the bug is seen:

      libnfsidmap-2.8.2-0.el10.x86_64.rpm

      libnfsidmap-2.8.2-3.el10.x86_64.rpm

      How reproducible is this bug?:

      Steps to reproduce

      1. Configure Kerberos for both the NFS server and client.
      2. Set the idmapd.conf file to use the 'static' plugin.
      3. Mount the NFS volume using Kerberos authentication with the GSS-Method.

      Expected results

      The owner of the mounted volume should be set to the user ID configured in idmapd.conf.

      Actual results

      The owner of the mounted volume is assigned a random integer user ID.

              stevedatrhn Steve Dickson
              routis0617 인상 류
              Steve Dickson Steve Dickson
              Yongcheng Yang Yongcheng Yang
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: