git://git.whamcloud.com - fs/lustre-release.git/commit

author	Sebastien Buisson <sbuisson@ddn.com>
	Tue, 12 Mar 2024 10:32:59 +0000 (11:32 +0100)
committer	Andreas Dilger <adilger@whamcloud.com>
	Sat, 27 Apr 2024 22:28:52 +0000 (22:28 +0000)
commit	b952bcb620b7cd153477d547bcaf2de76a805a9e
tree	b1c81b92ea2f16f3adbe9122c9c64d537c9a49b4	tree \| snapshot
parent	7407d82ec5983bfe4fe8c74d9eb0f88d550696f9	commit \| diff

EX-9392 sec: add server_upcall rbac role

The purpose of the new server_upcall rbac role is to control whether
clients use the server side defined identity upcall. When set, clients
do comply with the server side identity upcall. When not set, clients
are leveraging the special INTERNAL identity upcall, which means
servers trust supplementary groups as provided by the clients.

Test-Parameters: trivial
Test-Parameters: testgroup=review-dne-part-2
Signed-off-by: Sebastien Buisson <sbuisson@ddn.com>
Change-Id: I01dcedad5da0e175aa7b8d187f2affd34d933e39
Reviewed-on: https://review.whamcloud.com/c/ex/lustre-release/+/54360
Tested-by: jenkins <devops@whamcloud.com>
Tested-by: Maloo <maloo@whamcloud.com>
Reviewed-by: Lai Siyao <lai.siyao@whamcloud.com>
Reviewed-by: Andreas Dilger <adilger@whamcloud.com>

lustre/doc/lctl-nodemap-modify.8		diff \| blob \| history
lustre/include/lustre_nodemap.h		diff \| blob \| history
lustre/include/md_object.h		diff \| blob \| history
lustre/include/uapi/linux/lustre/lustre_idl.h		diff \| blob \| history
lustre/mdt/mdt_coordinator.c		diff \| blob \| history
lustre/mdt/mdt_handler.c		diff \| blob \| history
lustre/mdt/mdt_lib.c		diff \| blob \| history
lustre/mdt/mdt_restripe.c		diff \| blob \| history
lustre/obdecho/echo_client.c		diff \| blob \| history
lustre/ptlrpc/wiretest.c		diff \| blob \| history
lustre/tests/sanity-sec.sh		diff \| blob \| history
lustre/utils/wirecheck.c		diff \| blob \| history
lustre/utils/wiretest.c		diff \| blob \| history