Project

General

Profile

Bug #54049

ceph-fuse: If nonroot user runs ceph-fuse mount on then path is not expected to add in /proc/self/mounts and command should return failure

Added by Nikhilkumar Shelke 10 months ago. Updated 5 months ago.

Status:
Resolved
Priority:
Normal
Category:
Administration/Usability
Target version:
% Done:

0%

Source:
Community (dev)
Tags:
Backport:
quincy, pacific
Regression:
No
Severity:
2 - major
Reviewed:
Affected Versions:
ceph-qa-suite:
Component(FS):
ceph-fuse
Labels (FS):
task(medium)
Pull request ID:
Crash signature (v1):
Crash signature (v2):

Description

As per documentation, ceph-fuse command requires superuser privileges to mount cephFS.
If nonroot user try to mount cephFS using ceph-fuse then command expected to fail (No entry should add in mount database)

Steps to reproduce issue:
1. run following command using nonroot user
  1. ceph-fuse /home/myuser/mnt/mycephfs
2. check mount database using mount command
  1. mount
    /dev/nvme0n1p3 on /home type btrfs (rw,relatime,seclabel,compress=zstd:1,ssd,space_cache,subvolid=256,subvol=/home)
    /dev/nvme0n1p2 on /boot type ext4 (rw,relatime,seclabel)
    /dev/nvme0n1p1 on /boot/efi type vfat (rw,relatime,fmask=0077,dmask=0077,codepage=437,iocharset=ascii,shortname=winnt,errors=remount-ro)
    sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw,relatime)
    tmpfs on /run/user/1000 type tmpfs (rw,nosuid,nodev,relatime,seclabel,size=3261548k,nr_inodes=815387,mode=700,uid=1000,gid=1000,inode64)
    gvfsd-fuse on /run/user/1000/gvfs type fuse.gvfsd-fuse (rw,nosuid,nodev,relatime,user_id=1000,group_id=1000)
    portal on /run/user/1000/doc type fuse.portal (rw,nosuid,nodev,relatime,user_id=1000,group_id=1000)
    *ceph-fuse on /home/myuser/mnt/mycephfs type fuse.ceph-fuse (rw,nosuid,nodev,relatime,user_id=1000,group_id=1000,allow_other) *

Expectations:
/home/myuser/mnt/mycephfs shold not be there in mount command output


Related issues

Copied to CephFS - Backport #54477: quincy: ceph-fuse: If nonroot user runs ceph-fuse mount on then path is not expected to add in /proc/self/mounts and command should return failure Resolved
Copied to CephFS - Backport #54478: pacific: ceph-fuse: If nonroot user runs ceph-fuse mount on then path is not expected to add in /proc/self/mounts and command should return failure Resolved

History

#1 Updated by Venky Shankar 10 months ago

  • Subject changed from If nonroot user runs ceph-fuse mount on then path is not expected to add in /proc/self/mounts and command should return failure to ceph-fuse: If nonroot user runs ceph-fuse mount on then path is not expected to add in /proc/self/mounts and command should return failure
  • Target version set to v18.0.0
  • Source set to Community (dev)
  • Backport set to quincy, pacific
  • Severity changed from 3 - minor to 2 - major

#2 Updated by Nikhilkumar Shelke 10 months ago

  • Status changed from New to Fix Under Review

#3 Updated by Kotresh Hiremath Ravishankar 10 months ago

  • Pull request ID set to 44863

#4 Updated by Venky Shankar 9 months ago

  • Status changed from Fix Under Review to Pending Backport

#5 Updated by Backport Bot 9 months ago

  • Copied to Backport #54477: quincy: ceph-fuse: If nonroot user runs ceph-fuse mount on then path is not expected to add in /proc/self/mounts and command should return failure added

#6 Updated by Backport Bot 9 months ago

  • Copied to Backport #54478: pacific: ceph-fuse: If nonroot user runs ceph-fuse mount on then path is not expected to add in /proc/self/mounts and command should return failure added

#7 Updated by Nikhilkumar Shelke 5 months ago

  • Status changed from Pending Backport to Resolved

Also available in: Atom PDF