[Bugs] [Bug 1459972] New: posix-acl: Whitelist virtual ACL xattrs

bugzilla at redhat.com bugzilla at redhat.com
Thu Jun 8 17:24:22 UTC 2017


https://bugzilla.redhat.com/show_bug.cgi?id=1459972

            Bug ID: 1459972
           Summary: posix-acl: Whitelist virtual ACL xattrs
           Product: Red Hat Gluster Storage
           Version: 3.3
         Component: libgfapi
          Keywords: Triaged
          Severity: high
          Assignee: ndevos at redhat.com
          Reporter: skoduri at redhat.com
        QA Contact: sbhaloth at redhat.com
                CC: bugs at gluster.org, rhs-bugs at redhat.com,
                    storage-qa-internal at redhat.com
        Depends On: 1459971



+++ This bug was initially created as a clone of Bug #1459971 +++

Description of problem:

Similar to system.posix_acl_* xattrs, all users should be able to read virtual
acl xattrs too (glusterfs.posix-acl-*). 

Otherwise it shall result in EACCESS error when any non-root user is trying to
ACL of any file created under gluster volume.

Version-Release number of selected component (if applicable):


How reproducible:
Always


Steps to Reproduce:
1. Start NFS-ganesha using a non-root user
2. Export a volume via NFS-Ganesha
3. Mount the volume using NFSv4
4. Try to read/get acl.


Actual results:
It results in "Permission denied" error.

Expected results:
All users should be able to read POSIX ACLs for any file.

Additional info:


Referenced Bugs:

https://bugzilla.redhat.com/show_bug.cgi?id=1459971
[Bug 1459971] posix-acl: Whitelist virtual ACL xattrs
-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=a5Xuw6akYX&a=cc_unsubscribe


More information about the Bugs mailing list