From: Chuck Lever <chuck.lever@oracle.com>
Subject: Re: Bug in server's export -- List of security flavors
Date: Mon, 3 Aug 2009 09:11:40 -0400
Message-ID: <A9BCDC08-CFB1-4A90-AD20-F46251CFA56C@oracle.com>
References: <4A5F5C4C.3070308@excfb.com> <20090716185642.GB2495@fieldses.org> <4A5F7EA9.9050309@excfb.com>
Mime-Version: 1.0 (Apple Message framework v935.3)
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Cc: "J. Bruce Fields" <bfields@fieldses.org>, linux-nfs@vger.kernel.org
To: Tom Haynes <tdh-8AdZ+HgO7noAvxtiuMwx3w@public.gmane.org>
Return-path: <linux-nfs-owner@vger.kernel.org>
Received: from rcsinet11.oracle.com ([148.87.113.123]:39384 "EHLO
	rgminet11.oracle.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1754995AbZHCNLz (ORCPT
	<rfc822;linux-nfs@vger.kernel.org>); Mon, 3 Aug 2009 09:11:55 -0400
In-Reply-To: <4A5F7EA9.9050309-8AdZ+HgO7noAvxtiuMwx3w@public.gmane.org>
Sender: linux-nfs-owner@vger.kernel.org
List-ID: <linux-nfs.vger.kernel.org>

On Jul 16, 2009, at 3:25 PM, Tom Haynes wrote:
> J. Bruce Fields wrote:
>> I don't see how it could be a problem for the client to try an
>> unadvertised flavor.  The server has to enforce the choice of flavor
>> anyway.
>
> Yes, the server needs to enforce it, but why is the client trying a  
> flavor that the server
> says it does not support?

If this mount request is generated by the kernel (kernels after 2.6.23  
or so) and not by the mount command, the kernel's mount client does  
not have support for reading the authlist returned by the server.  I  
sent patches to Trond for 2.6.32 to address this.

--
Chuck Lever
chuck[dot]lever[at]oracle[dot]com