Ubuntu
linux-source-2.6.10 package

NFSv3 suplementary ACLs dont work with ub610

Bug #67175 reported by Ivan Arsenault
16
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
Expired
Undecided
Unassigned
linux-source-2.6.10 (Ubuntu)
Invalid
Undecided
Unassigned
linux-source-2.6.15 (Ubuntu)
Won't Fix
Medium
Unassigned
linux-source-2.6.22 (Ubuntu)
Won't Fix
Medium
Unassigned

Bug Description

    The NFS server was Redhat Enterprise 3.0. I use there ACL over
NFSv3 wihout problem. A lot of Linux distrib work with ACL over NFSv3 but
not ubuntu 6.10 beta. Thats posible to add ACL support over NFSv3
on ubuntu ??? I cant use ubuntu because this feature was necessary
for my compagnie.

How to reproduce : Install Redhat Enterprise 3.0 or CentOS 3.0 on a machine (this machine was the server).

  1) On fstab add acl support : Ex : /etc/fstab
        /dev/sdd1 /export/Depot ext3 rw,acl 1 2

  2) Setup a normal NFS share. Ex: /etc/exports
       /export/Depot *.spadz.com(rw,sync,root_squash)

  3) Re-boot or remount the partition

On the client mount the shared partition like this
     Ex : mount server:/export/Depot /mnt

Then test the permision with getfacl and setfacl...

 Ex: (From mandriva 2006 it work, suplementary ACL are visible)

[522] > cd /misc/Depot
arsenaiv@ptl-ariv1 [/misc/Depot]
[523] > getfacl Temp
# file: Temp
# owner: root
# group: sinf
user::rwx
group::rwx
group:sinf:rwx
mask::rwx
other::rwx
default:user::rwx
default:group::rwx
default:group:sinf:rwx
default:mask::rwx
default:other::rwx

[524] > ls -ld Temp
drwxrwsrwt+ 7 root sinf 4096 Oct 20 11:08 Temp

 Ex: (From ubuntu 6.10 dont work, no ACL)

arsenaiv@pvl-ubu1 [/misc/Depot]
[504] > cd /misc/Depot
arsenaiv@pvl-ubu1 [/misc/Depot]
[505] > getfacl Temp
# file: Temp
# owner: root
# group: sinf
user::rwx
group::rwx
other::rwx
[507] > ls -ld Temp
drwxrwsrwt 7 root sinf 4096 2006-10-20 11:08 Temp

If you have patch to Test let me know at : <email address hidden>

Thank you

Ivan

See original description
Tags: kj-expired
Revision history for this message
towsonu2003 (towsonu2003) wrote :

sorry, guessing the package

Revision history for this message
Ivan Arsenault (ivan-arsenault) wrote :

   I find the solution, I have rebuild the kernel with NFSv3 ACL support
enabled. This is possible to add this option by default on the generic kernel ???

ivan@pvl-ariv1:/usr/src/linux-source-2.6.17$ diff .config /boot/config-2.6.17-10-generic
3,4c3,4
< # Linux kernel version: 2.6.17.13-ubuntu1
< # Mon Oct 23 16:48:28 2006
---
> # Linux kernel version: 2.6.17-10-generic
> # Fri Oct 13 16:13:36 2006
 3443c3443
< CONFIG_NFS_V3_ACL=y
---
> # CONFIG_NFS_V3_ACL is not set
 3447d3446
< CONFIG_NFSD_V2_ACL=y
3449c3448
< CONFIG_NFSD_V3_ACL=y
---
> # CONFIG_NFSD_V3_ACL is not set
 3455d3453
< CONFIG_NFS_ACL_SUPPORT=m

description: updated
Revision history for this message
Andres Mujica (andres.mujica) wrote :

I can confirm this. I believe this is a serious showstoppper for multiuser / multiseat linux environments.

Please take this into account.

Revision history for this message
Andres Mujica (andres.mujica) wrote :

Hi please take this into account

Changed in linux-source-2.6.10:
assignee: nobody → ubuntu-kernel-server
status: Unconfirmed → Confirmed
Revision history for this message
Andres Mujica (andres.mujica) wrote :

Config Options for Feisty

cat /boot/config-2.6.20-15-generic | grep ACL
CONFIG_EXT2_FS_POSIX_ACL=y
CONFIG_EXT3_FS_POSIX_ACL=y
CONFIG_REISERFS_FS_POSIX_ACL=y
CONFIG_JFS_POSIX_ACL=y
CONFIG_FS_POSIX_ACL=y
CONFIG_XFS_POSIX_ACL=y
# CONFIG_TMPFS_POSIX_ACL is not set
# CONFIG_NFS_V3_ACL is not set
# CONFIG_NFSD_V3_ACL is not set

uname -r
2.6.20-15-generic

Revision history for this message
Andres Mujica (andres.mujica) wrote :

Config options for DAPPER

cat /boot/config-2.6.15-28-686 | grep ACL
CONFIG_EXT2_FS_POSIX_ACL=y
CONFIG_EXT3_FS_POSIX_ACL=y
CONFIG_REISERFS_FS_POSIX_ACL=y
CONFIG_JFS_POSIX_ACL=y
CONFIG_FS_POSIX_ACL=y
CONFIG_XFS_POSIX_ACL=y
# CONFIG_NFS_V3_ACL is not set
# CONFIG_NFSD_V3_ACL is not set

 uname -r
2.6.15-28-686

Andres Mujica (andres.mujica)
Changed in linux-source-2.6.15:
assignee: nobody → ubuntu-kernel-team
Changed in linux-source-2.6.10:
assignee: ubuntu-kernel-server → ubuntu-kernel-team
Changed in linux-source-2.6.20:
assignee: nobody → ubuntu-kernel-team
assignee: ubuntu-kernel-team → nobody
Changed in linux-source-2.6.15:
assignee: ubuntu-kernel-team → nobody
Changed in linux-source-2.6.10:
assignee: ubuntu-kernel-team → nobody
Changed in linux-source-2.6.15:
status: Unconfirmed → Confirmed
Changed in linux-source-2.6.20:
status: Unconfirmed → Confirmed
Revision history for this message
Andres Mujica (andres.mujica) wrote :

Hi some threads at ubuntuforums related to this

http://ubuntuforums.org/showthread.php?t=339867&highlight=nfs%20acl#0.3290169355124337

http://ubuntuforums.org/showthread.php?t=428512&highlight=nfs%20acl#0.64162506203136

Revision history for this message
Henrik Nilsen Omma (henrik) wrote :

Ubuntu 5.04 is no longer supported.

Changed in linux-source-2.6.10:
status: Confirmed → Rejected
Brian Murray (brian-murray)
Changed in linux-source-2.6.15:
assignee: nobody → ubuntu-kernel-team
importance: Undecided → Medium
Changed in linux-source-2.6.20:
assignee: nobody → ubuntu-kernel-team
importance: Undecided → Medium
status: Confirmed → Triaged
Changed in linux-source-2.6.15:
status: Confirmed → Triaged
Revision history for this message
Martin Pitt (pitti) wrote :

BenC, can we enable this for the dapper point release kernel without potentially breaking existing setups?

Changed in linux-source-2.6.15:
status: Triaged → Incomplete
Revision history for this message
Henrik Nilsen Omma (henrik) wrote :

As a new feature request we will not backport this to dapper.

Changed in linux-source-2.6.15:
status: Incomplete → Won't Fix
Revision history for this message
Henrik Nilsen Omma (henrik) wrote :

Targeting development release.

Revision history for this message
Andres Mujica (andres.mujica) wrote :

is it possible or there's a procedure for taking this to dapper.

Is not necessary a new feature, but a lack of it instead. I mean Dapper was our first LTS release, so is MOSTLY used in servers enviroment, And in a lot of that kind of enviroments there's not only one but several servers, so with this bug, you won't have a correct way to share filesystems between systems.

Also if you take into account that possibly several corporate desktops (not millions but at least a few) use dapper, it would be a needed fix.

So please take this into account. Thanks.

Revision history for this message
Launchpad Janitor (janitor) wrote : Kernel team bugs

Per a decision made by the Ubuntu Kernel Team, bugs will longer be assigned to the ubuntu-kernel-team in Launchpad as part of the bug triage process. The ubuntu-kernel-team is being unassigned from this bug report. Refer to https://wiki.ubuntu.com/KernelTeamBugPolicies for more information. Thanks.

Revision history for this message
Sergio Zanchetta (primes2h) wrote :

The 18 month support period for Gutsy Gibbon 7.10 has reached its end of life -
http://www.ubuntu.com/news/ubuntu-7.10-eol . As a result, we are closing the
linux-source-2.6.22 kernel task. It would be helpful if you could test the
new Jaunty Jackalope 9.04 release and confirm if this issue remains -
http://www.ubuntu.com/getubuntu/releasenotes/904overview. If the issue still exists with the Jaunty
release, please update this report by changing the Status of the "linux (Ubuntu)"
task from "Incomplete" to "New". Also please be sure to run the command below
which will automatically gather and attach updated debug information to this
report. Thanks in advance.

apport-collect -p linux-image-2.6.28-11-generic <bug#>

Changed in linux-source-2.6.22 (Ubuntu):
status: Triaged → Won't Fix
Changed in linux (Ubuntu):
status: New → Incomplete
Revision history for this message
Sergio Zanchetta (primes2h) wrote :

I just want to specify that the specific command for this bug would be:

apport-collect -p linux-image-2.6.28-11-generic 67175

Revision history for this message
Jeremy Foshee (jeremyfoshee) wrote :

This bug report was marked as Incomplete and has not had any updated comments for quite some time. As a result this bug is being closed. Please reopen if this is still an issue in the current Ubuntu release http://www.ubuntu.com/getubuntu/download . Also, please be sure to provide any requested information that may have been missing. To reopen the bug, click on the current status under the Status column and change the status back to "New". Thanks.

[This is an automated message. Apologies if it has reached you inappropriately; please just reply to this message indicating so.]

tags: added: kj-expired
Changed in linux (Ubuntu):
status: Incomplete → Expired
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Duplicates of this bug

Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.