2232446 – [cephfs][client] client allows to write with only read permission

Bug 2232446 - [cephfs][client] client allows to write with only read permission [NEEDINFO]

Summary: [cephfs][client] client allows to write with only read permission

Keywords:
Status:	NEW
Alias:	None
Product:	Red Hat Ceph Storage
Classification:	Red Hat Storage
Component:	CephFS
Sub Component:
Version:	6.1
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	high
Target Milestone:	---
Target Release:	7.1
Assignee:	Rishabh Dave
QA Contact:	Hemanth Kumar
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2023-08-16 23:18 UTC by julpark
Modified:	2023-08-17 06:00 UTC (History)
CC List:	3 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Embargoed:
Dependent Products:
Flags:	vshankar: needinfo? (ridave)

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	RHCEPH-7222	0	None	None	None	2023-08-16 23:21:25 UTC

Description julpark 2023-08-16 23:18:52 UTC

Description of problem:

client allows to write in a dir with only read permissions

Version-Release number of selected component (if applicable):

17.2.6-111.el9cp

How reproducible:

Create a client with only read permission in dir1 and mount and try to write something in the dir1

Steps to Reproduce:
1. Create a client with only read permission in dir1
2. mount it with the client
3. Try to write in the dir

Actual results:

it allows to write in the directory

Expected results:

it should not allow to write in the directory

Additional info:

client.name2
	key: AQD4UN1koO5cCxAABydYwjB7cAttRRkAXIyHjA==
	caps: [mds] allow *,allow r path=/dir1
	caps: [mgr] allow rw
	caps: [mon] allow *
	caps: [osd] allow rw tag cephfs data=cephfs

[root@ceph-julpark-mvqdwj-node8 mnt]# ceph-fuse -n client.name2 /mnt/julpark2/
2023-08-16T18:46:15.722-0400 7f942c712300 -1 init, newargv = 0x55ae28ab6440 newargc=15
ceph-fuse[38131]: starting ceph client
ceph-fuse[38131]: starting fuse

[root@ceph-julpark-mvqdwj-node8 julpark2]# ls
ceph-julpark-mvqdwj-node8_dd_  dir1  dir2  dir3  file_dstdir  file_srcdir  network_shared
[root@ceph-julpark-mvqdwj-node8 julpark2]# cd dir1/
[root@ceph-julpark-mvqdwj-node8 dir1]#
[root@ceph-julpark-mvqdwj-node8 dir1]# touch 234
[root@ceph-julpark-mvqdwj-node8 dir1]# ls
234  asdf  qwer

Note You need to log in before you can comment on or make changes to this bug.