![]() | Sun System Handbook - ISO 4.1 October 2012 Internal/Partner Edition | ||
|
|
![]() |
||||||||||||||||
Solution Type Problem Resolution Sure Solution 1426454.1 : Sun Storage 7000 Unified Storage System: Shadow Migration/NFS copy of data from source system results in ACLs that contain Deny entries
In this Document
Created from <SR 3-4857983481> Applies to:Sun ZFS Storage 7320 - Version Not Applicable to Not Applicable [Release N/A]Sun ZFS Storage 7420 - Version Not Applicable to Not Applicable [Release N/A] Sun ZFS Storage 7120 - Version Not Applicable to Not Applicable [Release N/A] Sun Storage 7110 Unified Storage System - Version Not Applicable to Not Applicable [Release N/A] Sun Storage 7210 Unified Storage System - Version Not Applicable to Not Applicable [Release N/A] 7000 Appliance OS (Fishworks) SymptomsSource data has POSIX-draft style ACLs, when they're copied over via NFSv4 shadow migration, ACLs are converted to ZFS ACLs, but two deny entries are created for each POSIX ACL in addition to the expected allow entry. CauseAfter researching this issue, we found that the deny access control entries (ACEs) are not being created by the appliance. The conversion from POSIX-draft ACLs is taking place, but they are first converted to NFSv4 ACLs rather than ZFS ACLs. The deny ACEs are correctly applied in this case according to the best available specification, an internet draft on how POSIX ACLs should map to NFSv4 ACLs which can be found here: http://tools.ietf.org/id/draft-ietf-nfsv4-acl-mapping-03.txt. SolutionThere are no current plans to change this in the software, as it would be a very difficult task to change the NFSv4 specification at this point. Attachments This solution has no attachment |
||||||||||||||||
|