[pve-devel] [PATCH] implement chown and chmod for user root group www-data and perm 0640
Stefan Priebe
s.priebe at profihost.ag
Fri Mar 10 19:38:38 CET 2017
This allows us to use management software for files inside of /etc/pve.
f.e. saltstack which rely on being able to set uid,gid and chmod
Reviewed-by: Thomas Lamprecht <t.lamprecht at proxmox.com>
Signed-off-by: Stefan Priebe <s.priebe at profihost.ag>
---
data/src/pmxcfs.c | 34 +++++++++++++++++++++++++++++++++-
1 file changed, 33 insertions(+), 1 deletion(-)
diff --git a/data/src/pmxcfs.c b/data/src/pmxcfs.c
index 1b6cbcc..9866b9c 100644
--- a/data/src/pmxcfs.c
+++ b/data/src/pmxcfs.c
@@ -186,6 +186,36 @@ ret:
return ret;
}
+static int cfs_fuse_chmod(const char *path, mode_t mode)
+{
+ int ret = -EACCES;
+
+ cfs_debug("enter cfs_fuse_chmod %s", path);
+
+ // asserts 0640, but allows setting UID and GID - some programs need that
+ if ((mode & ACCESSPERMS) == (S_IRUSR | S_IWUSR | S_IRGRP))
+ ret = 0;
+
+ cfs_debug("leave cfs_fuse_chmod %s (%d) mode: %o", path, ret, (int)mode);
+
+ return ret;
+}
+
+static int cfs_fuse_chown(const char *path, uid_t user, gid_t group)
+{
+ int ret = -EACCES;
+
+ cfs_debug("enter cfs_fuse_chown %s", path);
+
+ // we get -1 if no change should be made
+ if ((user == 0 || user == -1) && (group == cfs.gid || group == -1))
+ ret = 0;
+
+ cfs_debug("leave cfs_fuse_chown %s (%d) (uid: %d; gid: %d)", path, ret, user, group);
+
+ return ret;
+}
+
static int cfs_fuse_mkdir(const char *path, mode_t mode)
{
cfs_debug("enter cfs_fuse_mkdir %s", path);
@@ -488,7 +518,9 @@ static struct fuse_operations fuse_ops = {
.readlink = cfs_fuse_readlink,
.utimens = cfs_fuse_utimens,
.statfs = cfs_fuse_statfs,
- .init = cfs_fuse_init
+ .init = cfs_fuse_init,
+ .chown = cfs_fuse_chown,
+ .chmod = cfs_fuse_chmod
};
static char *
--
2.1.4
More information about the pve-devel
mailing list