I have recently deployed a Firefly CephFS cluster, and am trying out the POSIX ACL feature that is supposed to have come in as of kernel 3.14. I've mounted my CephFS volume on a machine with kernel 3.15
The ACL support seems to work (as in I can set and retrieve ACL's), but it seems kinda buggy, especially when it tries to change an existing ACL E.g. # uname -r 3.15.1-1.el6.elrepo.x86_64 # cat /boot/config-3.15.1-1.el6.elrepo.x86_64 | grep CEPH CONFIG_CEPH_LIB=m # CONFIG_CEPH_LIB_PRETTYDEBUG is not set # CONFIG_CEPH_LIB_USE_DNS_RESOLVER is not set CONFIG_CEPH_FS=m CONFIG_CEPH_FSCACHE=y CONFIG_CEPH_FS_POSIX_ACL=y # rpm -qa | grep ceph libcephfs1-0.80.1-0.el6.x86_64 python-ceph-0.80.1-0.el6.x86_64 ceph-0.80.1-0.el6.x86_64 (This is the same version on the MDS and all OSD's) # mount | grep ceph 192.168.1.8:/ on /ceph type ceph (acl,name=admin,key=client.admin) # ls -la /ceph/ total 5 drwxrwxr-x 1 root people 0 Jun 25 05:57 . dr-xr-xr-x. 25 root root 4096 Jun 20 04:33 .. -rw-rwx---+ 1 scrosby people 31 Jun 25 05:57 sean # getfacl /ceph/sean getfacl: Removing leading '/' from absolute path names # file: ceph/sean # owner: scrosby # group: people user::rw- user:lucien:rw- group::--- mask::rwx other::--- # setfacl -m "u:jkahn:rw" /ceph/sean # getfacl /ceph/sean getfacl: Removing leading '/' from absolute path names # file: ceph/sean # owner: scrosby # group: people user::rw- group::rw- other::--- If I umount and mount /ceph again, the ACL shows up again # umount /ceph # mount -t ceph 192.168.1.8:/ /ceph -o acl,name=admin,secret=`ceph-authtool -p /etc/ceph/ceph.client.admin.keyring` # getfacl /ceph/sean getfacl: Removing leading '/' from absolute path names # file: ceph/sean # owner: scrosby # group: people user::rw- user:lucien:rw- user:jkahn:rw- group::--- mask::rw- other::--- Is there some outstanding bugs regarding CephFS and POSIX ACL's? Cheers, Sean _______________________________________________ ceph-users mailing list [email protected] http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
