Project

General

Profile

Bug #43362

client: disallow changing fuse_default_permissions option at runtime

Added by Zhi Zhang 7 months ago. Updated about 2 months ago.

Status:
Resolved
Priority:
Normal
Assignee:
Category:
Correctness/Safety
Target version:
% Done:

0%

Source:
Community (dev)
Tags:
Backport:
nautilus,mimic
Regression:
No
Severity:
2 - major
Reviewed:
Affected Versions:
ceph-qa-suite:
Component(FS):
ceph-fuse
Labels (FS):
Pull request ID:
Crash signature:

Description

If fuse_default_permissions is false when initializing fuse, then ceph-fuse will use its own permission check. If changig this option to true at runtime, there will be no permission check at both fuse side and ceph-fuse side. Any user can write other user's file even if the file permission is not allowed.


Related issues

Copied to fs - Backport #43627: mimic: client: disallow changing fuse_default_permissions option at runtime Rejected
Copied to fs - Backport #43628: nautilus: client: disallow changing fuse_default_permissions option at runtime Resolved

History

#1 Updated by Zhi Zhang 7 months ago

  • Pull request ID set to 32315

#2 Updated by Patrick Donnelly 7 months ago

  • Status changed from New to Fix Under Review
  • Assignee set to Zhi Zhang
  • Target version set to v15.0.0

#3 Updated by Patrick Donnelly 6 months ago

  • Status changed from Fix Under Review to Pending Backport
  • Backport set to nautilus,mimic

#4 Updated by Nathan Cutler 6 months ago

  • Copied to Backport #43627: mimic: client: disallow changing fuse_default_permissions option at runtime added

#5 Updated by Nathan Cutler 6 months ago

  • Copied to Backport #43628: nautilus: client: disallow changing fuse_default_permissions option at runtime added

#6 Updated by Nathan Cutler about 2 months ago

  • Status changed from Pending Backport to Resolved

While running with --resolve-parent, the script "backport-create-issue" noticed that all backports of this issue are in status "Resolved" or "Rejected".

Also available in: Atom PDF