+++ This bug was initially created as a clone of Bug #1459971 +++ Description of problem: Similar to system.posix_acl_* xattrs, all users should be able to read virtual acl xattrs too (glusterfs.posix-acl-*). Otherwise it shall result in EACCESS error when any non-root user is trying to ACL of any file created under gluster volume. Version-Release number of selected component (if applicable): How reproducible: Always Steps to Reproduce: 1. Start NFS-ganesha using a non-root user 2. Export a volume via NFS-Ganesha 3. Mount the volume using NFSv4 4. Try to read/get acl. Actual results: It results in "Permission denied" error. Expected results: All users should be able to read POSIX ACLs for any file. Additional info: --- Additional comment from Worker Ant on 2017-06-08 13:28:48 EDT --- REVIEW: https://review.gluster.org/17493 (posix-acl: Whitelist virtual ACL xattrs) posted (#1) for review on master by soumya k (skoduri) --- Additional comment from Worker Ant on 2017-06-09 07:10:05 EDT --- COMMIT: https://review.gluster.org/17493 committed in master by Niels de Vos (ndevos) ------ commit 68f2192df570b5ee615d440c2e0c88d49a75a34f Author: Soumya Koduri <skoduri> Date: Thu Jun 8 22:19:17 2017 +0530 posix-acl: Whitelist virtual ACL xattrs Similar to system.posix_acl_* xattrs, all users should get permission to be able to read glusterfs.posix.acl* xattrs too. Change-Id: I1fc2b67c8a12113910e4ec57cd114e4baefe0d38 BUG: 1459971 Signed-off-by: Soumya Koduri <skoduri> Reviewed-on: https://review.gluster.org/17493 Smoke: Gluster Build System <jenkins.org> Reviewed-by: jiffin tony Thottan <jthottan> NetBSD-regression: NetBSD Build System <jenkins.org> CentOS-regression: Gluster Build System <jenkins.org> Reviewed-by: Raghavendra Talur <rtalur> Reviewed-by: Niels de Vos <ndevos>
REVIEW: https://review.gluster.org/17514 (posix-acl: Whitelist virtual ACL xattrs) posted (#1) for review on release-3.8 by soumya k (skoduri)
COMMIT: https://review.gluster.org/17514 committed in release-3.8 by jiffin tony Thottan (jthottan) ------ commit 5a48cf93a0383d79b6525268cee93158dbee8132 Author: Soumya Koduri <skoduri> Date: Thu Jun 8 22:19:17 2017 +0530 posix-acl: Whitelist virtual ACL xattrs Similar to system.posix_acl_* xattrs, all users should get permission to be able to read glusterfs.posix.acl* xattrs too. This is backport of below mainline patch - https://review.gluster.org/17493 >BUG: 1459971 >Signed-off-by: Soumya Koduri <skoduri> >Reviewed-on: https://review.gluster.org/17493 >Smoke: Gluster Build System <jenkins.org> >Reviewed-by: jiffin tony Thottan <jthottan> >NetBSD-regression: NetBSD Build System <jenkins.org> >CentOS-regression: Gluster Build System <jenkins.org> >Reviewed-by: Raghavendra Talur <rtalur> >Reviewed-by: Niels de Vos <ndevos> >(cherry picked from commit 68f2192df570b5ee615d440c2e0c88d49a75a34f) BUG: 1460650 Change-Id: I1fc2b67c8a12113910e4ec57cd114e4baefe0d38 Signed-off-by: Soumya Koduri <skoduri> Reviewed-on: https://review.gluster.org/17514 Smoke: Gluster Build System <jenkins.org> CentOS-regression: Gluster Build System <jenkins.org> NetBSD-regression: NetBSD Build System <jenkins.org> Reviewed-by: jiffin tony Thottan <jthottan>
This bug is getting closed because a release has been made available that should address the reported issue. In case the problem is still not fixed with glusterfs-3.8.13, please open a new bug report. glusterfs-3.8.13 has been announced on the Gluster mailinglists [1], packages for several distributions should become available in the near future. Keep an eye on the Gluster Users mailinglist [2] and the update infrastructure for your distribution. [1] https://lists.gluster.org/pipermail/announce/2017-June/000075.html [2] https://www.gluster.org/pipermail/gluster-users/