From 0ec5450147a480a1b791a46673da49acd95b84a4 Mon Sep 17 00:00:00 2001 From: Andy Adamson Date: Tue, 18 Nov 2014 16:17:23 -0500 Subject: [PATCH 2/3] Remove mention of the rpcsec_gssv3 critical bit The critical bit was removed from the GSSv3 protocol. Signed-off-by: Andy Adamson --- nfsv42_middle_copy.xml | 9 +++------ 1 file changed, 3 insertions(+), 6 deletions(-) diff --git a/nfsv42_middle_copy.xml b/nfsv42_middle_copy.xml index a66ed6e..8118b72 100644 --- a/nfsv42_middle_copy.xml +++ b/nfsv42_middle_copy.xml @@ -780,8 +780,7 @@ of the user principal and is placed in rpc_gss3_create_args assertions[0].assertion.privs.privilege. The string "copy_from_auth" is placed in - assertions[0].assertion.privs.name. The field - assertions[0].critical is set to TRUE. The source server + assertions[0].assertion.privs.name. The source server unwraps the rpc_gss_svc_privacy RPCSEC_GSS3_CREATE payload and verifies that the NFSv4 user id being asserted matches the source server's mapping of the user principal. If it @@ -801,8 +800,7 @@ instance is placed in rpc_gss3_create_args assertions[0].assertion.privs.privilege. The string "copy_to_auth" is placed in - assertions[0].assertion.privs.name. The field - assertions[0].critical is set to TRUE. The destination + assertions[0].assertion.privs.name. The destination server unwraps the rpc_gss_svc_privacy RPCSEC_GSS3_CREATE payload and verifies that the NFSv4 user id being asserted matches the destination server's mapping of the user @@ -895,8 +893,7 @@ instance is placed in rpc_gss3_create_args assertions[0].assertion.privs.privilege. The string "copy_confirm_auth" is placed in - assertions[0].assertion.privs.name. The field - assertions[0].critical is set to TRUE. + assertions[0].assertion.privs.name. -- 1.9.3 (Apple Git-50)