gss context cache - Michael Gliwinski

linux-nfs.vger.kernel.org archive mirror
 help / color / mirror / Atom feed

From: Michael Gliwinski <Michael.Gliwinski@henderson-group.com>
To: Linux NFS Mailing list <linux-nfs@vger.kernel.org>
Subject: gss context cache
Date: Mon, 30 Sep 2013 13:06:47 +0100	[thread overview]
Message-ID: <1702585.AG7n1MCr0K@hgis96> (raw)

Hi all,

On RHEL6 nfs-utils-1.2.3-36

man rpc.gssd says it -t wasn't specified then kernel gss contexts will be 
cached for the lifettime of the Kerberos service ticket used in its creation.  
Is there a way to see the contexts + service tickets in that cache?

Also, is there any way short of rebooting the client to evict one entry from 
that cache, or even clear the cache entirely?

(looking for this as I had situations where access was denied by the NFS 
server and I could see the principal was getting mapped to nfsnobody, etc. and 
was suspecting the account was changed on the KDC and the old context/ticket 
may have been causing problems)

Thanks,
Michael

**********************************************************************************************
The information in this email is confidential and may be legally privileged.  It is intended solely for the addressee and access to the email by anyone else is unauthorised.
If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful.
When addressed to our clients, any opinions or advice contained in this e-mail are subject to the terms and conditions expressed  in the governing client engagement leter or contract.
If you have received this email in error please notify support@henderson-group.com

John Henderson (Holdings) Ltd
Registered office: 9 Hightown Avenue, Mallusk, County Antrim, Northern Ireland, BT36 4RT.
Registered in Northern Ireland
Registration Number NI010588
Vat No.: 814 6399 12
*********************************************************************************

next             reply	other threads:[~2013-09-30 12:23 UTC|newest]

Thread overview: 5+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2013-09-30 12:06 Michael Gliwinski [this message]
2013-09-30 14:00 ` gss context cache Jeff Layton
2013-09-30 15:00   ` J. Bruce Fields
2013-09-30 15:53     ` Jeff Layton
2013-09-30 18:04     ` Jeff Layton

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1702585.AG7n1MCr0K@hgis96 \
    --to=michael.gliwinski@henderson-group.com \
    --cc=linux-nfs@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).