[#LU-13064] Check permissions when accessing changelogs

[LU-13064] Check permissions when accessing changelogs Created: 11/Dec/19 Updated: 22/Mar/23 Resolved: 07/May/20
Status:	Resolved
Project:	Lustre
Component/s:	None
Affects Version/s:	None
Fix Version/s:	Lustre 2.14.0

Type:

Bug

Priority:

Major

Reporter:

Sebastien Buisson

Assignee:

Sebastien Buisson

Resolution:

Fixed

Votes:

Labels:

LTS12, patch, sec

Severity:

Rank (Obsolete):

9223372036854775807

Description

root permissions should be checked when reading or clearing changelogs from clients. In particular, if root is squashed via a nodemap entry, it should not be allowed to access changelogs.

I will push a patch to implement this check.

Comments

Comment by Gerrit Updater [ 11/Dec/19 ]

Sebastien Buisson (sbuisson@ddn.com) uploaded a new patch: https://review.whamcloud.com/36989
Subject: ~~LU-13064~~ sec: reserve flag for changelogs permissions
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 9a559136555b7f016cf585d07bd447ccf751265d

Comment by Gerrit Updater [ 11/Dec/19 ]

Sebastien Buisson (sbuisson@ddn.com) uploaded a new patch: https://review.whamcloud.com/36990
Subject: ~~LU-13064~~ sec: check permissions for changelogs access
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: e43bcae1c1493bff1ffb21bd3c3c042288581512

Comment by Gerrit Updater [ 07/May/20 ]

Oleg Drokin (green@whamcloud.com) merged in patch https://review.whamcloud.com/36990/
Subject: ~~LU-13064~~ sec: check permissions for changelogs access
Project: fs/lustre-release
Branch: master
Current Patch Set:
Commit: 4e8fcee92d75102314f6c39c72b9c2cbce109bd4

Comment by Peter Jones [ 07/May/20 ]

Landed for 2.14

Generated at Sat Feb 10 02:58:03 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.

[LU-13064] Check permissions when accessing changelogs Created: 11/Dec/19 Updated: 22/Mar/23 Resolved: 07/May/20