[Bugs] [Bug 1245380] New: [RFE] Render all mounts of a volume defunct upon access revocation

[bugzilla at redhat.com]

https://bugzilla.redhat.com/show_bug.cgi?id=1245380

            Bug ID: 1245380
           Summary: [RFE] Render all mounts of a volume defunct upon
                    access revocation
           Product: GlusterFS
           Version: mainline
         Component: core
          Assignee: bugs at gluster.org
          Reporter: csaba at redhat.com
                CC: bugs at gluster.org, gluster-bugs at redhat.com



The auth.ssl-allow volume option -- and most likely, auth.allow as well,
although we haven't yet confirmed that -- operates along the access logic of
files in Unix: that is , one who once got a handle to a file through
successfully opening it, can happily use that handle to do I/O on the file, no
matter how the permission of the file changes later. So in our case, once one
has mounted the volume, she'll have a functional mount no matter if her accces
to the volume is revoked in the meantime.

However, the cloud industry consensual behavior is the opposite: if access is
revoked, that should take effect immediately, and further on all syscalls done
against existing mounts should fail (preferably with EACCESS) if they reach the
GlusterFS server (ie. not served from local buffer cache).

The new behavior could either be optional (along the old one) or take over
exclusively.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
You are the assignee for the bug.