git: b82144e708d6 - stable/14 - exports(5): -maproot, -mapall: Explain the fallback on no group
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Thu, 16 Jan 2025 18:08:23 UTC
The branch stable/14 has been updated by olce:
URL: https://cgit.FreeBSD.org/src/commit/?id=b82144e708d6c302e70d609a301b99795674cf69
commit b82144e708d6c302e70d609a301b99795674cf69
Author: Olivier Certner <olce@FreeBSD.org>
AuthorDate: 2024-10-08 09:34:44 +0000
Commit: Olivier Certner <olce@FreeBSD.org>
CommitDate: 2025-01-16 18:06:57 +0000
exports(5): -maproot, -mapall: Explain the fallback on no group
Reviewed by: rmacklem (older version)
Approved by: markj (mentor)
MFC after: 2 weeks
Sponsored by: The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D47012
(cherry picked from commit 2ef608de90629df37c29043afc638f8ff99ecfc4)
---
usr.sbin/mountd/exports.5 | 21 ++++++++++++++++++---
1 file changed, 18 insertions(+), 3 deletions(-)
diff --git a/usr.sbin/mountd/exports.5 b/usr.sbin/mountd/exports.5
index c3a6af5a9f0e..6c18e910c116 100644
--- a/usr.sbin/mountd/exports.5
+++ b/usr.sbin/mountd/exports.5
@@ -27,7 +27,7 @@
.\"
.\" @(#)exports.5 8.3 (Berkeley) 3/29/95
.\"
-.Dd April 16, 2024
+.Dd October 08, 2024
.Dt EXPORTS 5
.Os
.Sh NAME
@@ -172,8 +172,23 @@ The user string may be quoted, or use backslash escaping.
The colon separated list is used to specify the precise credential
to be used for remote access by root.
The elements of the list may be either names or numbers.
-Note that user: should be used to distinguish a credential containing
-no groups from a complete credential for that user.
+Note that
+.Cm user:
+should be used to specify a credential containing no groups, in which case the
+established credential will use
+.Ql nogroup ,
+else 65533
+.Pq Dv GID_NOGROUP ,
+as the fallback group
+.Pq a credential object must have at least one group internally .
+Using just
+.Cm user
+.Pq without colon at end
+falls into the
+.Sm off
+.Fl maproot Li = Sy user
+.Sm on
+case described above.
The group names may be quoted, or use backslash escaping.
.Pp
.Sm off