Actions
Bug #4642
closedChecks for ROFS are not sufficient in NFS server
Start date:
2014-02-27
Due date:
% Done:
100%
Estimated time:
Difficulty:
Medium
Tags:
Gerrit CR:
Description
In a case a read-only filesystem is shared over NFS, the NFSv2/v3 server does not check hard enough to prevent modifications of such filesystem.
Steps to reproduce this issue (reproducible only without the fix for #4638):
- create a ZFS filesystem
- create a file in the filesystem
- change the owner of the file to nobody
- set readonly property of the filesystem to on
- share the filesystem over NFS
- mount the filesystem on a Windows machine
- try to write to the file from the Windows machine
- the write will succeed, but it shouldn't
To fix this issue we need to enhance the rdonly() macro to call vn_is_readonly(), similarly as it is done in the rdonly4().
Related issues
Updated by Marcel Telka over 8 years ago
- Status changed from In Progress to Pending RTI
Updated by Robert Mustacchi over 8 years ago
- Status changed from Pending RTI to Resolved
- % Done changed from 0 to 100
- Tags deleted (
needs-triage)
Updated by Electric Monk over 8 years ago
git commit ef1d07349e941417706ea6d639bac69cb863b2f8
Author: Marcel Telka <marcel.telka@nexenta.com> 4642 Checks for ROFS are not sufficient in NFS server Reviewed by: Dan McDonald <danmcd@omniti.com> Reviewed by: Matthew Ahrens <mahrens@delphix.com> Approved by: Robert Mustacchi <rm@joyent.com>
Actions