Bug 1601031
| Summary: | changing file mode on cifs mounted share is not reflected properly | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | Red Hat Enterprise Linux 7 | Reporter: | Niranjan Mallapadi Raghavender <mniranja> | ||||||
| Component: | cifs-utils | Assignee: | Ronnie Sahlberg <lsahlber> | ||||||
| Status: | CLOSED DUPLICATE | QA Contact: | xiaoli feng <xifeng> | ||||||
| Severity: | high | Docs Contact: | |||||||
| Priority: | unspecified | ||||||||
| Version: | 7.6 | CC: | adzilsky, gdeschner, jarrpa, jstephen, lsahlber, mniranja, swhiteho, xzhou | ||||||
| Target Milestone: | rc | ||||||||
| Target Release: | --- | ||||||||
| Hardware: | x86_64 | ||||||||
| OS: | Unspecified | ||||||||
| Whiteboard: | |||||||||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |||||||
| Doc Text: | Story Points: | --- | |||||||
| Clone Of: | Environment: | ||||||||
| Last Closed: | 2018-08-09 23:19:56 UTC | Type: | Bug | ||||||
| Regression: | --- | Mount Type: | --- | ||||||
| Documentation: | --- | CRM: | |||||||
| Verified Versions: | Category: | --- | |||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||||
| Embargoed: | |||||||||
| Bug Depends On: | 1611101 | ||||||||
| Bug Blocks: | |||||||||
| Attachments: |
|
||||||||
|
Description
Niranjan Mallapadi Raghavender
2018-07-13 15:59:30 UTC
Created attachment 1458765 [details]
samba client logs.
Created attachment 1458767 [details]
smbd server logs
On RHEL7.5 systems the above issue is not seen.
RHEL7.5 Samba server configured as below:
[root@smbserver02 mnt]# cat /etc/redhat-release
Red Hat Enterprise Linux Server release 7.5 (Maipo)
smb.conf:
[global]
workgroup = JUNO
security = ads
realm = JUNO.TEST
kerberos method = system keytab
netbios name = smbserver02
ntlm auth = no
load printers = no
printing = bsd
log file = /var/log/samba/log.%m
max log size = 500
log level = 10
map acl inherit = Yes
store dos attributes = Yes
[share1]
path = /mnt/samba/share1
comment = test share1
writable = yes
printable = no
On RHEL7.5 Samba client mount the share1 using cifs
$ klist
[root@client share1]# klist
Ticket cache: KEYRING:persistent:0:0
Default principal: idm_perf_user1
Valid starting Expires Service principal
07/13/2018 09:46:38 07/13/2018 19:00:04 cifs/smbserver02.juno.test
renew until 07/20/2018 08:59:40
07/13/2018 09:00:04 07/13/2018 19:00:04 krbtgt/JUNO.TEST
renew until 07/20/2018 08:59:40
$ mount -t cifs -o cifsacl -o sec=krb5 -o username=idm_perf_user1 //smbserver02.juno.test/share1 /mnt/samba/share1
$cd /mnt/samba/share1
[root@client share1]# touch file2.txt
[root@client share1]# ls -l file2.txt
-rw-r--r--. 1 idm_perf_user1 domain users 0 Jul 13 12:29 file2.txt
[root@client share1]# ls -l file2.txt
-rw-------. 1 idm_perf_user1 domain users 0 Jul 13 12:29 file2.txt
Versions on RHEL7.5 samba server samba-4.7.1-6.el7.x86_64 kernel-3.10.0-862.el7.x86_64 on RHEL 7.5 samba client kernel-3.10.0-862.el7.x86_64 cifs-utils-6.2-10.el7.x86_64 Any update on this ? Hello Niranjan, Since the default SMB protocol is different between RHEL-7.5 and RHEL-7.6. It's hard to judge if it's a regression issue from comment 5. Could you test again to mount with vers=3.0 on RHEL-7.5 please? Then compare the result with RHEL-7.6. Thanks. I did the following tests on RHEL7.6 systems.
1. Have 2 RHEL7.6 systems, with one as samba server and other as samba client
Configure 1 RHEL7.6 system as samba server with below configuration:
[global]
workgroup = TEST1
security = user
passdb backend = tdbsam
printing = cups
printcap name = cups
load printers = yes
cups options = raw
[foobar]
path = /foobar
browseable = yes
writeable = yes
public = yes
2. create some local users called foo1 and foo2 and have them added to samba users using smbpasswd
3. Make sure foo1 and foo2 have write access to /foobar
4. Mount the share on another RHEL7.6 system using below command:
$ mount -t cifs //host-8-241-220.host.centralci.eng.rdu2.redhat.com/foobar /mnt -o username=foo1,password=redhat -o vers=1.0
cd /mnt
ls -l
total 0
-rw-r--r--. 1 foo1 foo1 0 Aug 1 13:39 a
[root@host-8-251-85 mnt]# chmod 600 a
[root@host-8-251-85 mnt]# ls -l
total 0
-rw-------. 1 1001 1001 0 Aug 1 13:39 a
Now mount the share with version:3.0
[root@host-8-251-85 ~]# mount -t cifs //host-8-241-220.host.centralci.eng.rdu2.redhat.com/foobar /mnt -o username=foo1,password=redhat
[root@host-8-251-85 ~]# cd /mnt
[root@host-8-251-85 mnt]# ll
total 0
-rwxr-xr-x. 1 root root 0 Aug 1 13:49 a
-rwxr-xr-x. 1 root root 0 Aug 1 13:49 b
[root@host-8-251-85 mnt]# chmod 600 a
[root@host-8-251-85 mnt]# chmod 600 b
[root@host-8-251-85 mnt]# ls -l
total 0
-rwxr-xr-x. 1 root root 0 Aug 1 13:49 a
-rwxr-xr-x. 1 root root 0 Aug 1 13:49 b
[root@host-8-251-85 mnt]# ls -l
total 0
-rwxr-xr-x. 1 root root 0 Aug 1 13:49 a
-rwxr-xr-x. 1 root root 0 Aug 1 13:49 b
I am not exactly sure why version smb V 3.0 protocol should deny users from change permissions. (In reply to Niranjan Mallapadi Raghavender from comment #11) > I am not exactly sure why version smb V 3.0 protocol should deny users from > change permissions. Because the smb2.0+ don't support Unix Extensions. Now it is implementing in the upstream. I will clean the regression flag because it's a feature bug or regression bug. Hello Ronnie, Is there a plan when smb2.0+ support Unix Extensions? Thanks. This doesn't sound like it should be a blocker for 7.6 to me. So taking it off the list. Do we want to keep this bug as a feature request for the samba unix extensions in due course? There is a bug bz1611101 to track smb2.0+ unix extensions feature. So maybe we can close this bug as a dup of bz1611101. Not a blocker. *** This bug has been marked as a duplicate of bug 1611101 *** |