Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Minor
Fix Version/s: Lustre 2.16.0
Affects Version/s: None
Labels:
None

Severity:
3
Rank (Obsolete):
9223372036854775807

Description

vfs_getxattr() is not suitable for osd. To get security xattr it goes
via:

    vfs_getxattr
      xattr_getsecurity
        security_inode_getsecurity
          cap_inode_getsecurity
            dentry = d_find_any_alias(inode)
              if (!dentry)
                return -EINVAL;

and returns -EINVAL because osd object inodes have empty alias list.

So that on RHEL9 the following sequence of commands

touch /mnt/lustre/file
setcap CAP_CHOWN=ep /mnt/lustre/file
getfattr -d -n security.capability /mnt/lustre/file

fails with:

/mnt/lustre/file: security.capability: Invalid argument

Should be fixed by patch https://review.whamcloud.com/54072 "~~LU-17546~~ osd: use __vfs_removexattr".
However, there are still failures being hit with el9.2 and el9.3 servers during "full" test sessions with the latest master, so I don't think this is totally fixed.

This is because ~~LU-17546~~ does not touch ll_vfs_getxattr, only ll_vfs_setxattr and ll_vfs_removexattr.

Attachments

Issue Links

is related to

LU-16915 sanity-sec test_51: Error: 'chown f51.sanity-sec'

Resolved

LU-17546 using vfs_setxattr() and vfs_removexattr() from within osd leads to a deadlock

Resolved

Activity

People

Assignee:: Vladimir Saveliev

Reporter:: Vladimir Saveliev

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 02/Aug/24 3:07 PM

Updated:: 23/Aug/24 10:23 PM

Resolved:: 23/Aug/24 10:23 PM