[Bugs] [Bug 1421649] When using a fuse mount for client, EC volumes do not mount.
bugzilla at redhat.com
bugzilla at redhat.com
Wed Mar 15 11:05:12 UTC 2017
https://bugzilla.redhat.com/show_bug.cgi?id=1421649
--- Comment #16 from Siddharth Sharma <sisharma at redhat.com> ---
(In reply to Xavier Hernandez from comment #15)
> After having seen some documentation, I like the dual mapping solution as it
> seems more robust and safe to me. This requires the creation of a file. This
> file is created and immediately deleted, so it only exists while the process
> keeps it open.
>
> If it's ok to create an selinux policy that allows the process to create
> that file in an already existing directory (this directory should be
> writable by the owner of the process, not necessarily root. Maybe /tmp ?),
> that's fine to me.
>
> If the best place to put that file is inside /run/usr/$gid (is it really gid
> or uid ?), I can write the necessary code. In this case, would we need to
> create a /run/usr/$gid/glusterfs ? or we can directly use /run/usr/$gid ?
>
> Does /run/usr/$gid exist in all distributions ?
/run/usr/$gid is created by pam, and it is not persistent. so the problem with
writing such file with predictable filename to /tmp is that it will become
vulnerable to symlink attack. So I am not in favor of it being written to /tmp.
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=BVA1L9r7D1&a=cc_unsubscribe
More information about the Bugs
mailing list