[OpenAFS] File ownership oddness

Tom Cocagne tom.cocagne@gmail.com
Sat, 30 Aug 2008 11:13:12 -0700


------=_Part_21255_15793115.1220119992746
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

    I recently noticed a problem where all files in OpenAFS appear to be
owned by most recently added user. An "ls -l" in user A's home directory
will show all files being owned by user B, immediately after creating user
B's account and home directory. The AFS security isn't broken, all
permissions appear to be enforced correctly, but normal unix utilities that
check file ownership are complaining. The user IDs in the pts database are
correct and each user has a unique user id. Also, if user A does a touch
"~/test_file", a subsequent "ls -l" shows the file is (correctly) owned by A
even though the rest appear as if they were owned by B. The problem persists
through reboots of both the servers and clients and is present even on new
client machines added to AFS after all the accounts are created.

   Has anyone seen this problem before? I'm not really sure where to begin
in tracking this down.

   Brief system description:

      Gentoo Linux
      Kernel 2.6.24
      OpenAFS 1.4.7
      MIT Kerberos 5 authentication
      User accounts stored in OpenLDAP

   -- Tom

------=_Part_21255_15793115.1220119992746
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

<div dir="ltr">&nbsp;&nbsp;&nbsp; I recently noticed a problem where all files in OpenAFS appear to be owned by most recently added user. An &quot;ls -l&quot; in user A&#39;s home directory will show all files being owned by user B, immediately after creating user B&#39;s account and home directory. The AFS security isn&#39;t broken, all permissions appear to be enforced correctly, but normal unix utilities that check file ownership are complaining. The user IDs in the pts database are correct and each user has a unique user id. Also, if user A does a touch &quot;~/test_file&quot;, a subsequent &quot;ls -l&quot; shows the file is (correctly) owned by A even though the rest appear as if they were owned by B. The problem persists through reboots of both the servers and clients and is present even on new client machines added to AFS after all the accounts are created. <br>
<br>&nbsp;&nbsp; Has anyone seen this problem before? I&#39;m not really sure where to begin in tracking this down.<br><br>&nbsp;&nbsp; Brief system description:<br><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Gentoo Linux<br>
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Kernel 2.6.24<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; OpenAFS 1.4.7<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; MIT Kerberos 5 authentication<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; User accounts stored in OpenLDAP<br><br>&nbsp;&nbsp; -- Tom<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <br></div>

------=_Part_21255_15793115.1220119992746--