Project

General

Profile

Bug #13600

RadosGW can't bind to port below 1024 with Infernalis

Added by Alexandre Marangone about 7 years ago. Updated over 6 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Target version:
-
% Done:

0%

Source:
Community (user)
Tags:
Backport:
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature (v1):
Crash signature (v2):

Description

Since the RadosGW is running as ceph user, civetweb can't bind to a port below 1024 with 9.1.0.
There is a way to allow an unprivileged user to bind to port below 1024 - see setcap(8) and capabilities(7) - but I'm not sure whether that's something we want to do or not.

Associated revisions

Revision e3d8d65f (diff)
Added by Karol Mroz almost 7 years ago

rgw: instruct civetweb to drop permissions

Get uid set in g_ceph_context and pass to civetweb where setuid()/setgid()
will be invoked. This Allows for starting civetweb under privileged port
numbers.

Fixes: #13600

Signed-off-by: Karol Mroz <>

History

#1 Updated by Anonymous about 7 years ago

  • Assignee set to Anonymous

#2 Updated by Sage Weil over 6 years ago

  • Status changed from New to Resolved

#3 Updated by Vikhyat Umrao over 6 years ago

Patch which resolved this issue : https://github.com/ceph/ceph/pull/8019

Also available in: Atom PDF