Bug 1879578

Summary: [RFE] mgr/volumes: evict clients based on auth ID and subvolume mounted
Product: [Red Hat Storage] Red Hat Ceph Storage Reporter: Victoria Martinez de la Cruz <vimartin>
Component: CephFSAssignee: Kotresh HR <khiremat>
Status: CLOSED CURRENTRELEASE QA Contact: Yogesh Mane <ymane>
Severity: high Docs Contact:
Priority: high    
Version: 5.0CC: anharris, ceph-eng-bugs, gfidente, gouthamr, khiremat, pdonnell, sostapov, sweil, tserlin
Target Milestone: ---Keywords: FutureFeature
Target Release: 4.2z3Flags: khiremat: needinfo-
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-08-23 22:27:36 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1760354    

Description Victoria Martinez de la Cruz 2020-09-16 14:39:39 UTC 
In some cephfs consumers, when an auth ID is denied access to a subvolume, the auth ID's caps are suitably removed and the clients that have mounted the subvolume using the auth ID are immediately evicted denying access to the subvolume. An example of this use case, is openstack manila.

See https://github.com/ceph/ceph/blob/octopus/src/pybind/ceph_volume_client.py#L405

The mgr-volumes CLI could look like,

`fs subvolume evict <volname> <subvolname> <auth name> [--group_name <group_name>]`

e.g.,
$ ceph fs subvolume evict cephfs manila-share-00 client.bob --group_name manila-share-group-00
Comment 2 Hemanth Kumar 2020-10-06 09:29:25 UTC 
Do we have any update on this? Can we expect the fix to be part of 4.2 ?
Comment 3 Yaniv Kaul 2020-11-10 20:41:36 UTC 
It's unclear to me if it's 4.2 or 5.0 material.
Comment 14 Patrick Donnelly 2021-08-23 22:27:36 UTC 
closed based on comment #13