[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#985000: nfs-common: auth-rpcgss-module.service fails inside Linux containers (LXC)

Hi Joachim,

On Thu, Mar 11, 2021 at 07:37:17PM +0100, Joachim Falk wrote:
> Package: nfs-common
> Version: 1:1.3.4-5
> Severity: important
> Tags: patch
> X-Debbugs-Cc: joachim.falk@gmx.de, felix.lechner@lease-up.com
> 
> To fix this problem, the auth_rpcgss kernel module must only be loaded
> if it is not already loaded. Otherwise, the auth-rpcgss-module service
> will fail inside a Linux container as the loading of kernel modules is
> forbidden for the container. Thus, the "/sbin/modprobe -q auth_rpcgss"
> call will fail even if the auth_rpcgss kernel module was already loaded.
> This has been testesd with kmod up to version 28-1 (current in bullseye
> as of 2021-03-11). This situation occurs when the container host already
> loaded the auth_rpcgss kernel module to enable kerberized NFS service
> for its containers.

With the nfs-utils upload to experimental happened and rebasing to
2.5.4 we want to as less as needed diverge from upstream. Can you
please report your case upstream and make sure the patch is accepted
upstream?

1:1.3.4-6 in the end was too much with Debian keep it maintainable and
made it hard to upgrade.

Regards,
Salvatore
Reply to: