Feature #12445: improved path enforcement for hard links - CephFS - Ceph

Actions

Copy link

Feature #12445

open

improved path enforcement for hard links

Added by Sage Weil almost 9 years ago. Updated almost 8 years ago.

Status:

New

Priority:

Normal

Assignee:

Category:

Security Model

Target version:

% Done:

Source:

Development

Tags:

Backport:

Reviewed:

Affected Versions:

Component(FS):

Client, Common/Protocol, MDS

Labels (FS):

Pull request ID:

Description

The initial path restriction will not work properly for remote links inside the security domain that link to a primary outside the restricted path.

We could improve this by inferring from the client which path was used to lookup the file. This could be done by associating the CDentry* with the Capability* for files. (For directories, the path is unambiguous.)

History
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Ceph » CephFS

Custom queries

Feature #12445

improved path enforcement for hard links

Updated by Sage Weil almost 9 years ago

Updated by Greg Farnum almost 8 years ago

Updated by Greg Farnum almost 8 years ago