diff options
author | Jeff Layton <jlayton@redhat.com> | 2011-01-11 10:33:24 -0500 |
---|---|---|
committer | Steve French <sfrench@us.ibm.com> | 2011-01-14 18:51:11 +0000 |
commit | bd7633195581c7665ce9dd80c665ec93466d1b64 (patch) | |
tree | a3a82eff9b960c59a07d3bc9b8145d6bac24c02c /security/selinux/netnode.c | |
parent | 56c24305d1494a7e345c75669dc60e8b231b735b (diff) |
cifs: add cruid= mount option
In commit 3e4b3e1f we separated the "uid" mount option such that it
no longer determined the owner of the credential cache by default. When
we did this, we added a new option to cifs.upcall (--legacy-uid) to
try to make it so that it would behave the same was as it did before.
This ignored a rather important point -- the kernel has no way to know
what options are being passed to cifs.upcall, so it doesn't know what
uid it should use to determine whether to match an existing krb5 session.
The simplest solution is to simply add a new "cruid=" mount option that
only governs the uid owner of the credential cache for the mount.
Unfortunately, this means that the --legacy-uid option in cifs.upcall was
ill-considered and is now useless, but I don't see a better way to deal
with this.
A patch for the mount.cifs manpage will follow once this patch has been
accepted.
Signed-off-by: Jeff Layton <jlayton@redhat.com>
Signed-off-by: Steve French <sfrench@us.ibm.com>
Diffstat (limited to 'security/selinux/netnode.c')
0 files changed, 0 insertions, 0 deletions