Bug #6037: zfs(1M) needs to handle unknown uid/gid in context of allow/unallow more gracefully - illumos gate - illumos

Bug #6037

zfs(1M) needs to handle unknown uid/gid in context of allow/unallow more gracefully

Added by Xin Li almost 6 years ago. Updated 11 months ago.

Status:

In Progress

Priority:

Normal

Assignee:

Category:

zfs - Zettabyte File System

Start date:

2015-06-25

Due date:

% Done:

Estimated time:

Difficulty:

Bite-size

Tags:

Gerrit CR:

Description

Currently, if a uid/gid is unknown to the system, zfs(1M) would say nothing on the unknown user/group. For instance, after a user which owns uid=1002 is removed, we would have something like this, if 'destroy' is previously granted:

$ zfs allow zeta/test                   
---- Permissions on zeta/test ----------------------------------------
Local+Descendent permissions:
    user  destroy

With the attached patch applied, it would become:

$ zfs allow zeta/test                   
---- Permissions on zeta/test ----------------------------------------
Local+Descendent permissions:
    user (unknown: 1002) destroy

The proposed patch also allows 'allow' and 'unallow' to accept numerical IDs, even when they are not known to the system, when -u or -g is explicitly specified. Without the change there would be no way other than recreating a user/group that occupies the same UID/GID to revoke a granted permission to unknown user.

Files

zfs-unknown-uid.diff (1.3 KB) zfs-unknown-uid.diff

Xin Li, 2015-06-25 10:10 PM

Also available in: Atom PDF

Project

General

Profile

illumos gate

Custom queries

Bug #6037

zfs(1M) needs to handle unknown uid/gid in context of allow/unallow more gracefully

Updated by Yuri Pankov over 2 years ago

Updated by Yuri Pankov 11 months ago