[LU-6415] Deny non-root users for 'lfs changelog & changelog_clear' Created: 31/Mar/15  Updated: 14/Jun/18  Resolved: 08/Jul/15

Status: Resolved
Project: Lustre
Component/s: None
Affects Version/s: None
Fix Version/s: Lustre 2.8.0

Type: Bug Priority: Critical
Reporter: Niu Yawei (Inactive) Assignee: Niu Yawei (Inactive)
Resolution: Fixed Votes: 0
Labels: None

Issue Links:
Related
Severity: 3
Rank (Obsolete): 9223372036854775807

 Description   

Non-root users have the ability to read changelog entries (which contain filenames and FIDs). More importantly, non-root users have the ability to clear changelogs regardless of permissions on the mountpoint.

This has potential security implications, in that non-privileged users gain the ability to see information in directories to which they shouldn't have access, and there is also potential for deliberate or accidental DOS by clearing changelogs before the intended reader gets to them (e.g. Robinhood, etc.)

 Comments   
Comment by Gerrit Updater [ 31/Mar/15 ]

Niu Yawei (yawei.niu@intel.com) uploaded a new patch: http://review.whamcloud.com/14280
Subject: LU-6415 utils: deny non-root user for changelog operations
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 8c7bf7b5b4b81c22e81ba3b2a628c68e7ea74347

Comment by Gerrit Updater [ 08/Jul/15 ]

Oleg Drokin (oleg.drokin@intel.com) merged in patch http://review.whamcloud.com/14280/
Subject: LU-6415 utils: deny non-root user for changelog operations
Project: fs/lustre-release
Branch: master
Current Patch Set:
Commit: c12d91242909536de340b4f3363f5b1588f5c013

Comment by Peter Jones [ 08/Jul/15 ]

Landed for 2.8

Generated at Sat Feb 10 02:00:02 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.