I took a second stab at this since it looks like fixing the keyrings is probably the way to go. This time through, the nfsidmap creates the keyrings ad-hoc as they fill up instead of taking new command-line parameters. It also explicitly sets the permissions on the new keyrings, so they should be able to be cleaned up in later kernels - though I haven't tested that myself. Ben Benjamin Coddington (2): nfsidmap: Match names with kernel default keyring nfsidmap: Create id_resolver child keyrings utils/nfsidmap/nfsidmap.c | 76 ++++++++++++++++++++++++++++++++++++--------- 1 files changed, 61 insertions(+), 15 deletions(-) -- To unsubscribe from this list: send the line "unsubscribe linux-nfs" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
