Hello OpenAFS experts,
is there any way to run an AFS client with both the -dynroot and -afsdb
options, but still limit the /afs mount point to known cells
(specifically: only my home cell)?
Longer explanation of my problem:
When I run "git status" somewhere inside the AFS hierarchy it freezes
On 8/26/2022 5:13 PM, Ingo van Lil (ing...@gmx.de) wrote:
Hello OpenAFS experts,
is there any way to run an AFS client with both the -dynroot and -afsdb
options, but still limit the /afs mount point to known cells
(specifically: only my home cell)?
There is no explicit support for this behavio
Hi,
There was a thread about /afs/.git hanging back in 2014 which ended up
with a work around from Jonathan Billings:
https://lists.openafs.org/pipermail/openafs-info/2014-August/040888.html
Basically, he suggested setting GIT_CEILING_DIRECTORIES (
https://git-scm.com/docs/git/2.35.2#Documen
> In the same thread, a blacklist (or whitelist) of cell names was
> suggested to prevent afsdb queries for troublesome domains but it
> seems it never got implemented.
If the blacklist specification is visible and not hidden
in some new magic file, I think that would be good.
My suggestion would
I have faced similar issues at times. If you like everything about the
current behavior of AFS aside from the impact it can have on git you might
attack it from the git side. Maybe there is a way to stop git from
recursing all the way to /afs/ ? Similar solutions have worked for me with
things othe
On 8/27/2022 4:34 AM, Harald Barth (h...@kth.se) wrote:
But wait a moment... Can't we assume that all cell names that we
ask in DNS contain at least one dot "." in the middle? I doubt
that there are AFS cells named without dot that we need to
resolve with DNS. What do you think about that?
Ple
Ingo van Lil:
git tries to access the directory /afs/.git, and I
see that afsd sends multiple DNS requests to the loopback address
127.0.0.53. Not sure why it does that, it seems to be somehow related to
systemd-resolved in Fedora Linux.
Yes, systemd-resolved provides a local caching DNS serve
> I seem to remember seeing many paths of the form /afs/cs/ or /afs/ece/
> where the full cell names were cs.cmu.edu or ece.cmu.edu.
But probably "ece" was entered into CellServDB and not into DNS.
Harald.
___
OpenAFS-info mailing list
OpenAFS-info@open
On 8/27/22 17:46, Ed Rude wrote:
I have faced similar issues at times. If you like everything about the
current behavior of AFS aside from the impact it can have on git you
might attack it from the git side. Maybe there is a way to stop git from
recursing all the way to /afs/ ?
As Kostas sugge
On 8/28/22 09:54, Dirk Heinrichs wrote:
Yes, systemd-resolved provides a local caching DNS server on that
address and configures /etc/resolv.conf (by symlinking it to its own
file in /run) to use it.
Yep, that's it. Still not sure where the delay comes from, though.
With tcpdump I see that mo
I would look for the AFSDB RR DNS lookup in the code and somehow
prevent that names without dot in the middle are looked up - just fail
it.
But there are folks who are much more familiar with the code that me.
Harald.
___
OpenAFS-info mailing list
Ope
11 matches
Mail list logo
