test_auth_caps: Added test logic for world bits

author Nishtha Rai <nishtha3rai@gmail.com>

Thu, 16 Jul 2015 20:22:16 +0000 (01:52 +0530)

committer Sage Weil <sage@redhat.com>

Thu, 1 Oct 2015 13:39:32 +0000 (09:39 -0400)
author Nishtha Rai <nishtha3rai@gmail.com>
Thu, 16 Jul 2015 20:22:16 +0000 (01:52 +0530)
committer Sage Weil <sage@redhat.com>
Thu, 1 Oct 2015 13:39:32 +0000 (09:39 -0400)
diff --git a/qa/workunits/fs/test_auth_caps.sh b/qa/workunits/fs/test_auth_caps.sh

new file mode 100644 (file)

index 0000000..13ff54b
--- /dev/null
+++ b/qa/workunits/fs/test_auth_caps.sh
@@ -0,0 +1,49 @@
+#!/bin/sh -ex
+
+
+echo "*** Creating directories for mount"
+mkdir -p mnt.admin mnt.foo
+
+
+echo "*** Trying mount as admin"
+./ceph-fuse mnt.admin
+
+
+echo "*** Trying mount as client.foo"
+UID="$(id -u)"
+AUTH_TEMPLATE='./ceph-authtool -C keyring.foo -n client.foo --cap osd "allow rw" --cap mon "allow rw" --cap mds "allow rw uid=UID" --gen-key'
+AUTH="$(echo $AUTH_TEMPLATE | sed -e 's/UID/'$UID'/g')"
+eval $AUTH
+./ceph auth import -i keyring.foo
+./ceph-fuse mnt.foo -n client.foo -k keyring.foo
+
+
+echo "*** Creating directories for client.admin"
+sudo mkdir -m 777 mnt.admin/foo1
+sudo mkdir -m 700 mnt.admin/foo2
+
+
+echo "*** Granting ownership of directories to client.foo"
+sudo chown $USER mnt.admin/foo1
+sudo chown $USER mnt.admin/foo2
+
+echo "*** Testing auth checks"
+expect_false()
+{
+       set -x
+       if "$@"; then return 1; else return 0; fi
+}
+mkdir mnt.foo/foo1/asdf
+expect_false mkdir mnt.foo/foo2/asdf
+
+
+echo "*** Restoring to old state"
+cleanup()
+{
+
+       sudo rm -r mnt.admin/foo1 mnt.admin/foo2
+       fusermount -u mnt.admin
+       fusermount -u mnt.foo
+       rmdir mnt.admin mnt.foo
+}
+trap cleanup INT TERM EXIT
author	Nishtha Rai <nishtha3rai@gmail.com>
	Thu, 16 Jul 2015 20:22:16 +0000 (01:52 +0530)
committer	Sage Weil <sage@redhat.com>
	Thu, 1 Oct 2015 13:39:32 +0000 (09:39 -0400)