[LU-15656] Deprecate legacy root squash mechanism Created: 17/Mar/22  Updated: 01/May/23

Status: Open
Project: Lustre
Component/s: None
Affects Version/s: Lustre 2.15.0
Fix Version/s: None

Type: Bug Priority: Minor
Reporter: Sebastien Buisson Assignee: Sebastien Buisson
Resolution: Unresolved Votes: 0
Labels: sec

Issue Links:
Duplicate
is duplicated by LU-4990 nodemap: replace existing root squash... Resolved
Related
is related to LUDOC-505 set_param must not be used to set roo... Resolved
Severity: 3
Rank (Obsolete): 9223372036854775807

 Description   

The legacy root squash mechanism relies on 2 parameters:

  • the root_squash parameter specifies the UID and GID to which the root user is squashed when accessing the Lustre file system;
  • the nosquash_nids parameter specifies the set of clients to which root squash does not apply.

This legacy mechanism has become redundant with the ability provided by the nodemap feature to implement root squash, in a much more flexible way.

So for newer Lustre versions, we would like to prevent setting the root_squash and nosquash_nids parameters on newly formatted file systems. On upgraded file systems, it would still be possible to change the already set values.

 Comments   
Comment by Gerrit Updater [ 17/Mar/22 ]

"Sebastien Buisson <sbuisson@ddn.com>" uploaded a new patch: https://review.whamcloud.com/46857
Subject: LU-15656 sec: deprecate legacy root squash
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 4a8c518b177dc9b517f7a04da8f00f2f66bb9569

Comment by Andreas Dilger [ 21/Oct/22 ]

I've linked LUDOC-505 here to track updating the LOM to describe how to change a system with root_squash and nosquash_nids to use a nodemap to do the same thing.

Generated at Sat Feb 10 03:20:12 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.