Project

General

Profile

Actions
Copy link

Tasks #63295

open

Tasks #63293: Implement fscrypt in libcephfs and cephfs-fuse

Access semantics

Added by Christopher Hoffman 7 months ago. Updated 3 months ago.

Status:
In Progress
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
% Done:

0%

Tags:
Reviewed:
Affected Versions:
Component(FS):
Labels (FS):
Pull request ID:

Description

Operations may be not allowed based on dir lock state (unlocked by key or not).

Implement access semantics based on "With the key" and restrictions based on "Without the key".

See the two sections here: https://docs.kernel.org/filesystems/fscrypt.html#access-semantics

Actions
Copy link
 #1

Updated by Christopher Hoffman 3 months ago

  • Status changed from New to In Progress
Actions
Copy link
 #2

Updated by Christopher Hoffman 3 months ago

When locked: Cannot make dirs, files, links or read/write non dir inodes. Can traverse tree, see/set perms, rm/unlink, can see dir structure but not rename, move etc.

Tests for above cases implemented in fscrypt.cc.

TODO: Finish test for non regular files (i.e, non dir/regular file). See FSCrypt.SetPolicyNonDir.

Actions
Copy link

Also available in: Atom PDF