RepoMirrors/ceph
1
0
Fork 0
mirror of https://github.com/ceph/ceph synced 2025-01-02 00:52:22 +00:00
Code Issues Packages Projects Releases Wiki Activity

rgw: don't allow handing out object ownership

Browse Source
This commit is contained in:
Yehuda Sadeh 2011-06-10 13:24:29 -07:00
parent b282603598
commit 7fa8b97328
1 changed files with 13 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
src/rgw/rgw_op.cc
View File

@ -603,20 +603,27 @@ void RGWGetACLs::execute()
send_response();
}
static int rebuild_policy(RGWAccessControlPolicy& src, RGWAccessControlPolicy& dest)
static int rebuild_policy(ACLOwner *owner, RGWAccessControlPolicy& src, RGWAccessControlPolicy& dest)
{
ACLOwner *owner = (ACLOwner *)src.find_first("Owner");
if (!owner)
return -EINVAL;
ACLOwner *requested_owner = (ACLOwner *)src.find_first("Owner");
if (requested_owner && requested_owner->get_id().compare(owner->get_id()) != 0) {
return -EPERM;
}
RGWUserInfo owner_info;
if (rgw_get_user_info_by_uid(owner->get_id(), owner_info) < 0) {
RGW_LOG(10) << "owner info does not exist" << dendl;
return -EINVAL;
}
ACLOwner& new_owner = dest.get_owner();
new_owner.set_id(owner->get_id());
new_owner.set_name(owner_info.display_name);
ACLOwner& dest_owner = dest.get_owner();
dest_owner.set_id(owner->get_id());
dest_owner.set_name(owner_info.display_name);
RGW_LOG(0) << "owner id=" << owner->get_id() << dendl;
RGW_LOG(0) << "dest owner id=" << dest.get_owner().get_id() << dendl;
RGWAccessControlList& src_acl = src.get_acl();
RGWAccessControlList& acl = dest.get_acl();
@ -752,7 +759,7 @@ void RGWPutACLs::execute()
RGW_LOG(15) << dendl;
}
ret = rebuild_policy(*policy, new_policy);
ret = rebuild_policy(&owner, *policy, new_policy);
if (ret < 0)
goto done;