[OpenAFS] Re: retaining AFS-specific nameless group IDs (PAG) in `id' and `groups'

Russ Allbery rra@stanford.edu
Fri, 25 Apr 2008 09:19:38 -0700

"Chas Williams (CONTRACTOR)" <chas@cmf.nrl.navy.mil> writes:

> with the keyring code, PAG's are no longer exposed to the user
> as a number.

This is not entirely correct.  The PAG is still exposed to the user as a
supplemental group even when keyrings are in use; the code just no longer
relies on it existing and will recreate the group when needed.

> however, in the older group based PAG support, the PAG id is encoded as:
> 	('A' << 24) + (pagCounter++ & 0xffffff));
> but this is split across two groups, given that most gids are still 16
> bits in most places.

Linux now uses a single GID for the PAG.

Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>