IETF Logo Mail Archive

[nfsv4] [FedFS] Meeting Minutes, 10/29/2009

James Lentini <jlentini@netapp.com> Thu, 29 October 2009 18:52 UTC

Return-Path: <jlentini@netapp.com>
X-Original-To: nfsv4@core3.amsl.com
Delivered-To: nfsv4@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9012C3A69A7 for <nfsv4@core3.amsl.com>; Thu, 29 Oct 2009 11:52:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.58
X-Spam-Level:
X-Spam-Status: No, score=-6.58 tagged_above=-999 required=5 tests=[AWL=0.019, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id B-bSWIYyLBPd for <nfsv4@core3.amsl.com>; Thu, 29 Oct 2009 11:52:46 -0700 (PDT)
Received: from mx2.netapp.com (mx2.netapp.com [216.240.18.37]) by core3.amsl.com (Postfix) with ESMTP id 61C1B3A68D5 for <nfsv4@ietf.org>; Thu, 29 Oct 2009 11:52:46 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="4.44,647,1249282800"; d="scan'208";a="266238216"
Received: from smtp1.corp.netapp.com ([10.57.156.124]) by mx2-out.netapp.com with ESMTP; 29 Oct 2009 11:53:02 -0700
Received: from jlentini-linux.hq.netapp.com (jlentini-linux.hq.netapp.com [10.97.16.21]) by smtp1.corp.netapp.com (8.13.1/8.13.1/NTAP-1.6) with ESMTP id n9TIr2mV029360 for <nfsv4@ietf.org>; Thu, 29 Oct 2009 11:53:02 -0700 (PDT)
Date: Thu, 29 Oct 2009 14:53:01 -0400
From: James Lentini <jlentini@netapp.com>
X-X-Sender: jlentini@jlentini-linux.nane.netapp.com
To: nfsv4@ietf.org
Message-ID: <alpine.LFD.2.00.0910291452020.11932@jlentini-linux.nane.netapp.com>
User-Agent: Alpine 2.00 (LFD 1167 2008-08-23)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"
Subject: [nfsv4] [FedFS] Meeting Minutes, 10/29/2009
X-BeenThere: nfsv4@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/nfsv4>
List-Post: <mailto:nfsv4@ietf.org>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Oct 2009 18:52:47 -0000

FedFS Meeting Minutes, 10/29/2009
---------------------------------

Attendees
---------

Andy Adamson (NetApp)
Craig Everhart (NetApp)
Sorin Faibish (EMC) 
Paul LeMahieu (EMC)
James Lentini (NetApp)
Trond Myklebust (NetApp) 
Robert Thurlow (Sun)
Chris Stacey (EMC)

Minutes
-------

+ IETF Note Well Agreement

  This is a reminder that our discussions are governed by the 
  IETF Note Well Agreement. See:

    http://www.ietf.org/NOTEWELL.html

  We will start each week's meeting with this announcement.

+ Requirements Draft Status

  Approved for publication as an RFC:

  http://www.rfc-editor.org/queue2.html#draft-ietf-nfsv4-federated-fs-reqts

+ DNS SRV Draft Update

  Review new version:

  http://tools.ietf.org/id/draft-ietf-nfsv4-federated-fs-dns-srv-namespace-02.txt

  Diff:

  http://tinyurl.com/yfjhjbz

  Craig didn't have too much to comment on beyond what had been discussed on 
  the NFSv4 wg mailing list. He coalesced the comments that he received and 
  updated the draft on Monday.

+ Multi-Domain Draft Update

  Review new version:

  http://tools.ietf.org/id/draft-adamson-nfsv4-multi-domain-access-02.txt

  Andy reviewed a set of slides that he put together. This draft has
  substantial updates from the -00 version. 

  The draft addresses the following two types of mappings:

  - Authentication identity <-> Authorization Context
  - On the wire authorization identity <-> On disk authorization identity

  We discussed how authorization context information is shared between domains. 

  Trond suggested that for authorization information from a remote domain, 
  a fileserver is likely to only trust the remote domain to provide
  information about itself. 

  As an example, we discussed how sample.com and university.edu might be 
  two domains. Andy explained that name@domain (e.g. foo@sample.com) might 
  have one GID in sample.com and a different one in university.com.

  Andy described extensions to the posixAccount object class defined in 
  RFC2307. He mentioned that an RFC2307bis is under preparation.

  We discussed some questions about local and remote mapping.

  Andy listed these next steps for the draft:

  - Drill into NFSv4 Authorization Context definition
  - Complete LDAP extensions
           - ID mapping (remoteID <-> localID)
  - Additional text on remote groups

+ NSDB and Admin Draft Updates

  The updates discussed last week were posted.   

+ Admin resolve FSN before completion of FEDFS_CREATE_JUNCTION?

  We discussed some of the ordering implications of this.

  A warning might be appropriate, but there was consensus 
  that it should not generate a hard error.

  We discussed if a fileserver should be required/recommended/optional
  to do this.

  Paul suggested that there be a second RPC to test the status of a 
  junction. This would kill two birds with one stone. Work for both testing
  a newly created junction and diagnosis down the road.

  James suggested that the existing FEDFS_LOOKUP_FSN procedure be extended 
  to include a parameter to indicate if a junction be resolved.

  To determine if a newly created junction is resolvable, an 
  admin program would perform a FEDFS_CREATE_JUNCTION followed 
  by a FEDFS_LOOKUP_FSN.

  The draft should also discuss the advantages and disadvantages of 
  performing the test at junction create time.

  What errors should be returned if junction resolution fails? 
  There may be many different types of errors. Some will be implementation 
  specific. Some may be pretty standard: there is no junction, the NSDB is 
  not responding, the NSDB does not have a record for the FSN, ...). We 
  will define errors for the common cases and have a catchall for the 
  implementation specific ones.

+ Admin STAT command

  We discussed proposal from the mailing list.

  There were concerns about the scalability. There were also concerns about
  storing the extra information in a log. 

  There didn't seem to be support for this.

  We did not have time to fully discuss this topic. We will return to 
  it next week.

v2.23.0 | Report a Bug | By Email