Date: Thu, 27 Feb 2020 15:10:54 -0800 From: Alan Batie <alan@peak.org> To: freebsd-fs@freebsd.org Subject: Re: Linux could write to read only files on FreeBSD NFS server Message-ID: <d73aea39-c5c2-e8ce-3745-bfd49fd69664@peak.org> In-Reply-To: <CAHJqQjsP-w9LAS4AV64Pu9Jmv0kVFodKdT_jLUcyop3sNVh_EA@mail.gmail.com> References: <CAHJqQjuEVpL4xV1dAf6scFqFfMNm1gY3jOaO64ZQJTCQi_qzcQ@mail.gmail.com> <707243CD-C67E-4DAD-AC5A-68EC11CFFDFD@lysator.liu.se> <6EC06026-DA28-4CAC-8D56-5C7856D4625E@lysator.liu.se> <YTBPR01MB3374713F573B548791A22F98DDEB0@YTBPR01MB3374.CANPRD01.PROD.OUTLOOK.COM> <CAHJqQjsP-w9LAS4AV64Pu9Jmv0kVFodKdT_jLUcyop3sNVh_EA@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
This is a cryptographically signed message in MIME format.
--------------ms060005040609020000000502
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: quoted-printable
On 2/27/20 2:58 PM, Luoqi Chen wrote:
> One more piece of information that might help: this behavior started
> somewhere between centos 5 and 6, kernel 2.6.18 and 2.6.32, i.e., the s=
ame
> script would fail on 2.6.18. Timing wise I believe it coincided with th=
e
> introduction of nfsv4.
>=20
> Even if this is a linux bug, given its dominant position, we don't have=
> much of a choice but to try to be compatible. Does anyone have say acce=
ss
> to a netapp and see how it behaves?
Is this what you mean?
<admin03.peak.org> [101] $ df .
Filesystem 1K-blocks Used Available Use% Mounted on
filer01-cvo.peak.org:/vol/admin
167772160 73704064 94068096 44% /filer01/cvo-admin=
<admin03.peak.org> [102] $ rm -f x
<admin03.peak.org> [103] $ touch x
<admin03.peak.org> [104] $ chmod 000 x
<admin03.peak.org> [105] $ ls -l x
----------. 1 alan wheel 0 Feb 27 15:01 x
<admin03.peak.org> [106] $ echo foo > x
-bash: x: Permission denied
<admin03.peak.org> [107] $ chmod 600 x
<admin03.peak.org> [108] $ cat x
<admin03.peak.org> [109] $ cat /etc/redhat-release
CentOS release 6.10 (Final)
This works the same way on a truenas server:
<admin03.peak.org> [122] $ rm x
<admin03.peak.org> [123] $ df .
Filesystem 1K-blocks Used Available Use% Mounted on
tnas01-cvo.fs10g.peak.org:/mnt/zdata/nfs/admin
78257431296 54539008 78202892288 1% /tnas01-cvo/ad=
min
<admin03.peak.org> [124] $ touch x
<admin03.peak.org> [125] $ chmod 000 x
<admin03.peak.org> [126] $ ls -l x
----------. 1 alan wheel 0 Feb 27 15:05 x
<admin03.peak.org> [127] $ echo foo > x
-bash: x: Permission denied
<admin03.peak.org> [128] $ chmod 600 x
<admin03.peak.org> [129] $ cat x
<admin03.peak.org> [130] $
However it also does the same on a native FreeBSD 11 server:
<zbackups02.peak.org> [116] $ uname -a
FreeBSD zbackups02.peak.org 11.3-RELEASE-p3 FreeBSD 11.3-RELEASE-p3 #0:
Mon Aug 19 21:08:43 UTC 2019
root@amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC amd64
<zmail03-admin.peak.org> [105] $ cat /etc/redhat-release
CentOS release 6.10 (Final)
<zmail03-admin.peak.org> [106] $ df .
Filesystem 1K-blocks Used Available Use% Mounted on
zbackups02.peak.org:/zbackups/zmail03-admin
5039303296 91682304 4947620992 2% /zbackups
<zmail03-admin.peak.org> [107] $ touch x
<zmail03-admin.peak.org> [108] $ chmod 0 x
<zmail03-admin.peak.org> [109] $ ls -l x
----------. 1 alan root 0 Feb 27 15:08 x
<zmail03-admin.peak.org> [110] $ echo foo > x
-bash: x: Permission denied
<zmail03-admin.peak.org> [111] $ chmod 600 x
<zmail03-admin.peak.org> [112] $ cat x
--------------ms060005040609020000000502
Content-Type: application/pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Cryptographic Signature
MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCC
C2swggTgMIIDyKADAgECAhBUdCKrz7BUVHpHGYaNdgQcMA0GCSqGSIb3DQEBCwUAMIGNMQsw
CQYDVQQGEwJJVDEQMA4GA1UECAwHQmVyZ2FtbzEZMBcGA1UEBwwQUG9udGUgU2FuIFBpZXRy
bzEjMCEGA1UECgwaQWN0YWxpcyBTLnAuQS4vMDMzNTg1MjA5NjcxLDAqBgNVBAMMI0FjdGFs
aXMgQ2xpZW50IEF1dGhlbnRpY2F0aW9uIENBIEcyMB4XDTE5MTIxMTE5MDcxNloXDTIwMTIx
MTE5MDcxNlowGDEWMBQGA1UEAwwNYWxhbkBwZWFrLm9yZzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ1Gw0aKu1wno1Vb1MKlI+soIv5Ph03B7gUcg350uVwjm527faMnnV1D
TZ415jn4Q5MHjIS5xjFUVJwM0DGOm+aNr0tFPOEL8Y8t2w5KCs7D4ikYderuv57WTwMgjDDY
mOI9cUqs+npoFBcFTzx+RunErd8d22EEq61H7Ypyi+ltb4rZweE7KnaS5kgRovJXg8ii90ze
dytd96JlTx8+oripPBaG+6RTlZxrQusbvSZpwjEv8xYa3Eh45Z2tBc1xcHNzvaDhprP01OA3
Yx4lIpSxIcAD23vtgjGhU9zycLqbutVpfaLrq3EwzGA7d6Xx97jsrXpCSHYd0TX2OkQKyPcC
AwEAAaOCAa4wggGqMAwGA1UdEwEB/wQCMAAwHwYDVR0jBBgwFoAUa/KNnmjBJQQfUTRX9hZc
lOpNaRowfgYIKwYBBQUHAQEEcjBwMDsGCCsGAQUFBzAChi9odHRwOi8vY2FjZXJ0LmFjdGFs
aXMuaXQvY2VydHMvYWN0YWxpcy1hdXRjbGlnMjAxBggrBgEFBQcwAYYlaHR0cDovL29jc3Aw
OS5hY3RhbGlzLml0L1ZBL0FVVEhDTC1HMjAYBgNVHREEETAPgQ1hbGFuQHBlYWsub3JnMEcG
A1UdIARAMD4wPAYGK4EfARgBMDIwMAYIKwYBBQUHAgEWJGh0dHBzOi8vd3d3LmFjdGFsaXMu
aXQvYXJlYS1kb3dubG9hZDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwQwSAYDVR0f
BEEwPzA9oDugOYY3aHR0cDovL2NybDA5LmFjdGFsaXMuaXQvUmVwb3NpdG9yeS9BVVRIQ0wt
RzIvZ2V0TGFzdENSTDAdBgNVHQ4EFgQU4WAWRmEM5pxYuaRqT1VOZP+87GwwDgYDVR0PAQH/
BAQDAgWgMA0GCSqGSIb3DQEBCwUAA4IBAQAFrqbTZz6FiybHjpkR8a/eVtKR6ZTBnFE4f73m
0WC6mqryp4UKkTGl3Id/M1s54aH5Qof+x08Jlb7BgOh1VkjJNIPLWDY6qdZj/idf7DcwGMWN
vXevh2QsMjJahnWOuedx+VPJybHfSLnc0iO6xXBrgbbNX6BdTidWbcaT/skBfBygtCy9KVm/
+5CR5NqVDxpmgrWlJsUkYMXaO0jvbCcEvY9LQ9nyMPPK/ttQU9XNNsarBC8cKcX95iL7rgTw
AQ1r39pDjyZLC1+bMZqjUleJbpRiiBv6iXb4rFVkXg1R5LFOCX5n1ZtKk8loEFptGtaF+LCw
lTtITblJ2dlelQZ3MIIGgzCCBGugAwIBAgIQT94QS+2VW96LrWWHzEFe4zANBgkqhkiG9w0B
AQsFADBrMQswCQYDVQQGEwJJVDEOMAwGA1UEBwwFTWlsYW4xIzAhBgNVBAoMGkFjdGFsaXMg
Uy5wLkEuLzAzMzU4NTIwOTY3MScwJQYDVQQDDB5BY3RhbGlzIEF1dGhlbnRpY2F0aW9uIFJv
b3QgQ0EwHhcNMTkwOTIwMDcxMjA1WhcNMzAwOTIyMTEyMjAyWjCBjTELMAkGA1UEBhMCSVQx
EDAOBgNVBAgMB0JlcmdhbW8xGTAXBgNVBAcMEFBvbnRlIFNhbiBQaWV0cm8xIzAhBgNVBAoM
GkFjdGFsaXMgUy5wLkEuLzAzMzU4NTIwOTY3MSwwKgYDVQQDDCNBY3RhbGlzIENsaWVudCBB
dXRoZW50aWNhdGlvbiBDQSBHMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALdo
c3rZPNQv+9xnyj3OlHz/iRnO2hpj8xlHkCdYKNwnRabAT6J0RA11A3ZkQiEZEw66B99ES7Ez
v9IRBYmIwsr720lUptObF5L3yVzl3nzaittXwWsq+CQoDEci1cKkWF5SiO22+Np2Epu2HFxk
w5nXMnZibrqnC6hUGsFogTDUUVRIuLlublwWYFhpqvDaCh//ucRgRW3+rTU1nBoT1XHkXrLs
Cteefjoh+o01tNTWvGi4+3OyABidGPXuoYh7UbYX1u0sG1O8rO92t5zV7/Cr/Vza9EbySh6D
rCqsY333sNxikKzFyBwebZv43t1xJyMVE/CRt7BLJOyHxd1Yq0sCAwEAAaOCAf4wggH6MA8G
A1UdEwEB/wQFMAMBAf8wHwYDVR0jBBgwFoAUUtiIOsifeGbtifN7OHCUyQICNtAwQQYIKwYB
BQUHAQEENTAzMDEGCCsGAQUFBzABhiVodHRwOi8vb2NzcDA1LmFjdGFsaXMuaXQvVkEvQVVU
SC1ST09UMEUGA1UdIAQ+MDwwOgYEVR0gADAyMDAGCCsGAQUFBwIBFiRodHRwczovL3d3dy5h
Y3RhbGlzLml0L2FyZWEtZG93bmxvYWQwJwYDVR0lBCAwHgYIKwYBBQUHAwIGCCsGAQUFBwME
BggrBgEFBQcDCTCB4wYDVR0fBIHbMIHYMIGWoIGToIGQhoGNbGRhcDovL2xkYXAwNS5hY3Rh
bGlzLml0L2NuJTNkQWN0YWxpcyUyMEF1dGhlbnRpY2F0aW9uJTIwUm9vdCUyMENBLG8lM2RB
Y3RhbGlzJTIwUy5wLkEuJTJmMDMzNTg1MjA5NjcsYyUzZElUP2NlcnRpZmljYXRlUmV2b2Nh
dGlvbkxpc3Q7YmluYXJ5MD2gO6A5hjdodHRwOi8vY3JsMDUuYWN0YWxpcy5pdC9SZXBvc2l0
b3J5L0FVVEgtUk9PVC9nZXRMYXN0Q1JMMB0GA1UdDgQWBBRr8o2eaMElBB9RNFf2FlyU6k1p
GjAOBgNVHQ8BAf8EBAMCAQYwDQYJKoZIhvcNAQELBQADggIBAGBEuhmiq3L7DkGaRMG6FTm9
na4v3ya3KW+xkhFvSZgPinqeBi5qfV+dCL/BCuO/JMH9mgI5z57DnYiLQC3CIHnEtalcTfhG
PleRgjRMuFQLAeYM5UAZiiPT+D8S7faZ0CZ3glRLw51QTGQJZSC+bN7mgoiBG/HmGahvLWjl
kjNZ6o6AmVC3HIV1mGowamiYNEVDmen+SAdJW9uhwP+xFFZodZ0lYJQ6FHg+3pSDVx6YdM94
n9e9tlMnXKB+CY92WmPXbUOMCUjYUmTsxEu9lJEusHv+eehThrO6HiVrkHvEathHnkhphpYm
SlG2KOIwfwtqJjJ9C+EMCOcDDa1ndhUTVFMMTAZmyWLRGg0U0O9hzwPA520ZL0Q0iZI7E6Kl
OmaQZQX+LORMK4V6hVW9qzPZhgjw2SYux8N8vAWA/3d4ky+j1uVIzk0qRXJ0iD+B1uTyOjEx
15fmm+mowp7ycOhNUxi4d8ycqb+QkPBbZtM+zCi7eWa9hOI6I2V3mZ9bFKUqonWcqfZhvy2D
EZhzJLYQ0Zw5ztrR7+fmDjuHFBG07eQcMBOUT46qL7J3ncneUooyCvpNTAlxSzE3xEc96lDd
4v38Lnl3BsuIxH9p/xb2LBGNxgR12QjFVj33wX25fyE47PUPTRt+2wBJv5oNsjatNjS4w20C
CoLfVtGgVPUrMYIEFzCCBBMCAQEwgaIwgY0xCzAJBgNVBAYTAklUMRAwDgYDVQQIDAdCZXJn
YW1vMRkwFwYDVQQHDBBQb250ZSBTYW4gUGlldHJvMSMwIQYDVQQKDBpBY3RhbGlzIFMucC5B
Li8wMzM1ODUyMDk2NzEsMCoGA1UEAwwjQWN0YWxpcyBDbGllbnQgQXV0aGVudGljYXRpb24g
Q0EgRzICEFR0IqvPsFRUekcZho12BBwwDQYJYIZIAWUDBAIBBQCgggJFMBgGCSqGSIb3DQEJ
AzELBgkqhkiG9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTIwMDIyNzIzMTA1NVowLwYJKoZIhvcN
AQkEMSIEIPWQqRk2cXGMMmXFumzdEETY/E3Q8Q0BwiozODlfcHOGMGwGCSqGSIb3DQEJDzFf
MF0wCwYJYIZIAWUDBAEqMAsGCWCGSAFlAwQBAjAKBggqhkiG9w0DBzAOBggqhkiG9w0DAgIC
AIAwDQYIKoZIhvcNAwICAUAwBwYFKw4DAgcwDQYIKoZIhvcNAwICASgwgbMGCSsGAQQBgjcQ
BDGBpTCBojCBjTELMAkGA1UEBhMCSVQxEDAOBgNVBAgMB0JlcmdhbW8xGTAXBgNVBAcMEFBv
bnRlIFNhbiBQaWV0cm8xIzAhBgNVBAoMGkFjdGFsaXMgUy5wLkEuLzAzMzU4NTIwOTY3MSww
KgYDVQQDDCNBY3RhbGlzIENsaWVudCBBdXRoZW50aWNhdGlvbiBDQSBHMgIQVHQiq8+wVFR6
RxmGjXYEHDCBtQYLKoZIhvcNAQkQAgsxgaWggaIwgY0xCzAJBgNVBAYTAklUMRAwDgYDVQQI
DAdCZXJnYW1vMRkwFwYDVQQHDBBQb250ZSBTYW4gUGlldHJvMSMwIQYDVQQKDBpBY3RhbGlz
IFMucC5BLi8wMzM1ODUyMDk2NzEsMCoGA1UEAwwjQWN0YWxpcyBDbGllbnQgQXV0aGVudGlj
YXRpb24gQ0EgRzICEFR0IqvPsFRUekcZho12BBwwDQYJKoZIhvcNAQEBBQAEggEAY914fxzK
+iDZj80Z/rRB+/qheo+o++keO+VC2GJ4/91CSI79xzW0HazWNA+wsFsxKzw4+YtKJP4UP39q
s3Bdg4tGCuep9C5G+vJup0yafZC/Q2Zev790cBK76/oHHFU6I6OUBVf16FUpHbff0C77Vuly
HCeUz1fNjplZMffUw5JjaJRjcW8cqV/hnZ0XcqIAzsM9961e4j7eVp5mxW3TWqPSoRAIx3DT
JrQ768boGe5RZIhu02NgNsia/E8NAoXeAp6jfuHBDcqhLf8830IOKF6pNFS/BuCF9/G4qMw3
5izcOZpaqdjuldi5Q+NAKtUWXHhD0Cz0PUKnaBihhnBlSgAAAAAAAA==
--------------ms060005040609020000000502--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?d73aea39-c5c2-e8ce-3745-bfd49fd69664>