Re: [RFC] Making mount_nfs to attempt NFSv4 before NFSv3 and NFSv2?

Reply: Rick Macklem : "Re: [RFC] Making mount_nfs to attempt NFSv4 before NFSv3 and NFSv2?"
In reply to: Tomoaki AOKI : "Re: [RFC] Making mount_nfs to attempt NFSv4 before NFSv3 and NFSv2?"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Konstantin Belousov <kostikbel_at_gmail.com>
Date: Tue, 04 Jan 2022 03:04:46 UTC

On Tue, Jan 04, 2022 at 09:07:47AM +0900, Tomoaki AOKI wrote:
> I myself never used NFS, but I don't think it a POLA violation,
> because...
>   *Keeping latest-stable (formerly, v3?) to oldest (v2) order.
> 
>   *Usually, once new version is considered stable, security fixes
>    are first done on the latest, then backported to older revs,
>    causing delay. It can cause fatal security incident for servers.
>    So always as newer as possible rev should be always preferred
>    unless no specific rev is specified.
> 
> But development versions would better not automatically selected.
> If v4 is already considered as production quality on FreeBSD,
> it would be best preferred first on automatic selection.
> 
> On Mon, 3 Jan 2022 10:51:31 -0800
> Xin Li via freebsd-current <freebsd-current@freebsd.org> wrote:
> 
> > Hi,
> > 
> > Currently, mount_nfs will attempt to use NFSv3 and fallback to NFSv2. 
> > The manual page says:
> > 
> >       nfsv2   Use the NFS Version 2 protocol (the default is to try
> >               version 3 first then version 2).  Note that NFS version 2
> >               has a file size limit of 2 gigabytes.
> > 
> > And the code agrees, too:
> > 
> > %%%%%%%%
> >          if (trymntmode == V4) {
> >                  nfsvers = 4;
> >                  mntvers = 3; /* Workaround for GCC. */
> >          } else if (trymntmode == V2) {
> >                  nfsvers = 2;
> >                  mntvers = 1;
> >          } else {
> >                  nfsvers = 3;
> >                  mntvers = 3;
> >          }
> > %%%%%%%%
> > 
> > When trymntmode == ANY, which is the default, mount_nfs would attempt 
> > NFSv3, and if rpcb_getaddr() returned RPC_PROGVERSMISMATCH, it would try 
> > again with trymntmode = V2.
> > 
> > Nowadays, it seems that NFSv4 is becoming more and more popular.  If a 
> > server is providing only NFSv4 service, when mounting without -o nfsv4, 
> > the user would receive message like:
> > 
> > 	RPCPROG_MNT: RPC:Timed out
> > 
> > A friend of mine who is using TrueNAS core hit this yesterday and his 
> > Linux client worked just fine.  It took me some time to figure out that 
> > the root cause.  It seems that modern Linux distributions have been 
> > using NFSv4 by default for some time.
> > 
> > So I think it makes sense to teach mount_nfs to attempt NFSv4, then 
> > NFSv3 and NFSv2.  However, this might be a POLA violation and we would 
> > like to know if there is any objections.
> > 
> > (I've attached a patch but I haven't actually tested it yet).

The v4 NFS is very different from v3, it is not an upgrade, it is rather
a different network filesystem with some (significant) similarities to v3.

That said, it should be fine changing the defaults, but you need to ensure
that reasonable scenarios, like the changed FreeBSD client mounting
from v3-only server, still work correctly.  The change should be made in a
way that only affects client that connects to the server that has both
v4 and v3.