Bug #54049
ceph-fuse: If nonroot user runs ceph-fuse mount on then path is not expected to add in /proc/self/mounts and command should return failure
Status:
Resolved
Priority:
Normal
Assignee:
Category:
Administration/Usability
Target version:
% Done:
0%
Source:
Community (dev)
Tags:
Backport:
quincy, pacific
Regression:
No
Severity:
2 - major
Reviewed:
Affected Versions:
ceph-qa-suite:
Component(FS):
ceph-fuse
Labels (FS):
task(medium)
Pull request ID:
Crash signature (v1):
Crash signature (v2):
Description
As per documentation, ceph-fuse command requires superuser privileges to mount cephFS.
If nonroot user try to mount cephFS using ceph-fuse then command expected to fail (No entry should add in mount database)
1. run following command using nonroot user
- ceph-fuse /home/myuser/mnt/mycephfs
- mount
/dev/nvme0n1p3 on /home type btrfs (rw,relatime,seclabel,compress=zstd:1,ssd,space_cache,subvolid=256,subvol=/home)
/dev/nvme0n1p2 on /boot type ext4 (rw,relatime,seclabel)
/dev/nvme0n1p1 on /boot/efi type vfat (rw,relatime,fmask=0077,dmask=0077,codepage=437,iocharset=ascii,shortname=winnt,errors=remount-ro)
sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw,relatime)
tmpfs on /run/user/1000 type tmpfs (rw,nosuid,nodev,relatime,seclabel,size=3261548k,nr_inodes=815387,mode=700,uid=1000,gid=1000,inode64)
gvfsd-fuse on /run/user/1000/gvfs type fuse.gvfsd-fuse (rw,nosuid,nodev,relatime,user_id=1000,group_id=1000)
portal on /run/user/1000/doc type fuse.portal (rw,nosuid,nodev,relatime,user_id=1000,group_id=1000)
*ceph-fuse on /home/myuser/mnt/mycephfs type fuse.ceph-fuse (rw,nosuid,nodev,relatime,user_id=1000,group_id=1000,allow_other) *
Expectations:
/home/myuser/mnt/mycephfs shold not be there in mount command output
Related issues
History
#1 Updated by Venky Shankar about 2 years ago
- Subject changed from If nonroot user runs ceph-fuse mount on then path is not expected to add in /proc/self/mounts and command should return failure to ceph-fuse: If nonroot user runs ceph-fuse mount on then path is not expected to add in /proc/self/mounts and command should return failure
- Target version set to v18.0.0
- Source set to Community (dev)
- Backport set to quincy, pacific
- Severity changed from 3 - minor to 2 - major
#2 Updated by Nikhilkumar Shelke about 2 years ago
- Status changed from New to Fix Under Review
#3 Updated by Kotresh Hiremath Ravishankar about 2 years ago
- Pull request ID set to 44863
#4 Updated by Venky Shankar about 2 years ago
- Status changed from Fix Under Review to Pending Backport
#5 Updated by Backport Bot about 2 years ago
- Copied to Backport #54477: quincy: ceph-fuse: If nonroot user runs ceph-fuse mount on then path is not expected to add in /proc/self/mounts and command should return failure added
#6 Updated by Backport Bot about 2 years ago
- Copied to Backport #54478: pacific: ceph-fuse: If nonroot user runs ceph-fuse mount on then path is not expected to add in /proc/self/mounts and command should return failure added
#7 Updated by Nikhilkumar Shelke almost 2 years ago
- Status changed from Pending Backport to Resolved