Actions
Bug #20340
closedcephfs permission denied until second client accesses file
% Done:
0%
Source:
Community (user)
Tags:
Backport:
jewel, kraken
Regression:
No
Severity:
2 - major
Reviewed:
Affected Versions:
ceph-qa-suite:
Component(FS):
ceph-fuse
Labels (FS):
Pull request ID:
Crash signature (v1):
Crash signature (v2):
Description
Here is a file that client A gets permission denied during stat:
[root@aijens151 ~]# stat /mnt/puppet/aijens151.cern.ch/clone/hostgroups/paas/fix_lint/.git/objects/47/0442815e1ce9e96d66f49369877aeedd24db50 stat: cannot stat ‘/mnt/puppet/aijens151.cern.ch/clone/hostgroups/paas/fix_lint/.git/objects/47/0442815e1ce9e96d66f49369877aeedd24db50’: Permission denied
On the (single active) MDS, the permission denied looks like this:
2017-06-19 14:27:53.225362 7f5d7e9a6700 20 Session check_access stray_prior_path #100017975f1/tmp_obj_rFEkRh 2017-06-19 14:27:53.225363 7f5d7e9a6700 10 MDSAuthCap is_capable inode(path /100017975f1/tmp_obj_rFEkRh owner 993:991 mode 0100444) by caller 0:0 mask 1 new 0:0 cap: MDSAuthCaps[allow rw path="/volumes/_nogroup/4722edf2-a761-4189-b925-dbf2d44c5345"] 2017-06-19 14:27:53.225367 7f5d7e9a6700 10 mds.0.server reply_client_request -13 ((13) Permission denied) client_request(client.366267909:39615913 lookup #100017975f1/0442815e1ce9e96d66f49369877aeedd24db50 2017-06-19 14:27:53.224716) v3
Full log with debug_mds=20 is attached.
The client has path restricted mds caps, so we initially suspected #17858. But even with unrestricted mds caps the permission denied persists.
However, if we stat from a second host (which succeeds), then the original client A is able to stat the file without permission denied.
ceph-fuse and ceph-mds are version 10.2.7.
Happy to provide more logs if needed.
Files
Actions