Hi Akihiko,<div><br></div><div>Thanks for your great feedback and your step by step instructions to reproduce the bug.</div><div>This is now solved in the repo, see [1].</div><div><br></div><div>Cheers!<br><div><br></div><div>
[1] <a href="http://dev.opennebula.org/issues/1087">http://dev.opennebula.org/issues/1087</a><br clear="all"><span style="border-collapse:collapse;color:rgb(136,136,136);font-family:arial,sans-serif;font-size:13px">--<br>
Carlos Martín, MSc<br>Project Engineer<br>OpenNebula - The Open Source Toolkit for Data Center Virtualization<br><a href="http://www.OpenNebula.org" target="_blank">www.OpenNebula.org</a> | <a href="mailto:cmartin@opennebula.org" target="_blank">cmartin@opennebula.org</a> | <a href="http://twitter.com/opennebula" target="_blank">@OpenNebula</a></span><span style="border-collapse:collapse;color:rgb(136,136,136);font-family:arial,sans-serif;font-size:13px"><a href="mailto:cmartin@opennebula.org" style="color:rgb(42,93,176)" target="_blank"></a></span><br>
<br><br><div class="gmail_quote">On Wed, Jan 25, 2012 at 10:16 AM, Akihiko Ota <span dir="ltr"><<a href="mailto:skywalker.37th@gmail.com">skywalker.37th@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hi,<br>
<br>
I have built OpenNebula 3.2 on CentOS 5.7(x86_64) from<br>
opennebula-3.2.0.tar.gz according to documentation [1],[2]. And I am<br>
using ruby-1.9.3-p0 built from source instead of CentOS 5.7 RPM.<br>
<br>
I have changed image and network resource's owner from oneadmin to<br>
user "testuser" once, and brought back owner to oneadmin. But now,<br>
testuser still can use those resources.<br>
<br>
1. for example, I have following image and network:<br>
<br>
(image)<br>
[oneadmin@frontend ~]$ oneimage list<br>
ID USER GROUP NAME SIZE TYPE REGTIME PER STAT RVMS<br>
0 oneadmin oneadmin test 5G OS 01/25 14:08:37 No rdy 0<br>
<br>
(network)<br>
[oneadmin@frontend ~]$ onevnet list<br>
ID USER GROUP NAME TYPE BRIDGE LEASES<br>
1 oneadmin oneadmin defaultpriv R br0 0<br>
<br>
2. change owner from oneadmin to someone (here, testuser):<br>
<br>
(image)<br>
[oneadmin@frontend ~]$ oneimage chown 0 testuser<br>
[oneadmin@frontend ~]$ oneimage list<br>
ID USER GROUP NAME SIZE TYPE REGTIME PER STAT RVMS<br>
0 testuser oneadmin test 5G OS 01/25 14:08:37 No rdy 0<br>
[oneadmin@frontend ~]$ oneimage show 0<br>
IMAGE 0 INFORMATION<br>
ID : 0<br>
NAME : test<br>
USER : testuser<br>
GROUP : oneadmin<br>
...<br>
PERMISSIONS<br>
OWNER : um-<br>
GROUP : ---<br>
OTHER : ---<br>
...<br>
<br>
(network)<br>
[oneadmin@frontend ~]$ onevnet chown 1 testuser<br>
[oneadmin@frontend ~]$ onevnet list<br>
ID USER GROUP NAME TYPE BRIDGE LEASES<br>
1 testuser oneadmin defaultpriv R br0 0<br>
[oneadmin@frontend ~]$ onevnet show 1<br>
VIRTUAL NETWORK 1 INFORMATION<br>
ID : 1<br>
NAME : defaultpriv<br>
USER : testuser<br>
GROUP : oneadmin<br>
...<br>
PERMISSIONS<br>
OWNER : um-<br>
GROUP : ---<br>
OTHER : ---<br>
<br>
3. Bring back owner to oneadmin:<br>
<br>
(image)<br>
[oneadmin@frontend ~]$ oneimage chown 0 oneadmin<br>
[oneadmin@frontend ~]$ oneimage list<br>
ID USER GROUP NAME SIZE TYPE REGTIME PER STAT RVMS<br>
0 oneadmin oneadmin test 5G OS 01/25 14:08:37 No rdy 0<br>
[oneadmin@frontend ~]$ oneimage show 0<br>
IMAGE 0 INFORMATION<br>
ID : 0<br>
NAME : test<br>
USER : oneadmin<br>
GROUP : oneadmin<br>
...<br>
PERMISSIONS<br>
OWNER : um-<br>
GROUP : ---<br>
OTHER : ---<br>
...<br>
<br>
(network)<br>
[oneadmin@frontend ~]$ onevnet chown 1 oneadmin<br>
[oneadmin@frontend ~]$ onevnet list<br>
ID USER GROUP NAME TYPE BRIDGE LEASES<br>
1 oneadmin oneadmin defaultpriv R br0 0<br>
[oneadmin@frontend ~]$ onevnet show 1<br>
VIRTUAL NETWORK 1 INFORMATION<br>
ID : 1<br>
NAME : defaultpriv<br>
USER : oneadmin<br>
GROUP : oneadmin<br>
...<br>
PERMISSIONS<br>
OWNER : um-<br>
GROUP : ---<br>
OTHER : ---<br>
...<br>
<br>
4. testuser still can use image and network by resource's NAME(not ID).<br>
<br>
[ascadm@frontend]% cat ~/.one/one_auth<br>
testuser:********<br>
[ascadm@frontend]% oneuser list<br>
ID GROUP NAME AUTH<br>
PASSWORD<br>
2 users testuser core<br>
****************************************<br>
<br>
[ascadm@frontend]% cat default.one<br>
NAME = "default"<br>
CPU = 8<br>
VCPU = 8<br>
MEMORY = 22528<br>
OS = [ boot = "hd", arch = "x86_64" ]<br>
DISK = [ IMAGE = "test", BUS = virtio ]<br>
NIC = [ NETWORK = "defaultpriv", model = "virtio" ]<br>
<br>
[ascadm@frontend]% onevnet list<br>
ID USER GROUP NAME TYPE BRIDGE LEASES<br>
[ascadm@frontend]% oneimage list<br>
ID USER GROUP NAME SIZE TYPE REGTIME PER STAT RVMS<br>
[ascadm@frontend]% onevm create default.one<br>
ID: 8<br>
[ascadm@frontend]% onevm list<br>
ID USER GROUP NAME STAT CPU MEM HOSTNAME<br>
TIME<br>
8 testuser users default runn 0 0K asccmp054<br>
00 00:03:10<br>
<br>
It seems that resource's owner backs to testuser temporarily.<br>
<br>
[ascadm@frontend]% onevnet list<br>
ID USER GROUP NAME TYPE BRIDGE LEASES<br>
1 testuser oneadmin defaultpriv R br0 3<br>
[ascadm@frontend]% oneimage list<br>
ID USER GROUP NAME SIZE TYPE REGTIME PER STAT RVMS<br>
0 testuser oneadmin test 5G OS 01/25 14:08:37 No used 3<br>
<br>
<br>
DB backend is sqlite.<br>
Is this chown issue?<br>
<br>
[1] <a href="http://opennebula.org/documentation:rel3.2:compile" target="_blank">http://opennebula.org/documentation:rel3.2:compile</a><br>
[2] <a href="http://opennebula.org/documentation:rel3.2:build_deps" target="_blank">http://opennebula.org/documentation:rel3.2:build_deps</a><br>
<br>
Thanks,<br>
<span class="HOEnZb"><font color="#888888"><br>
--<br>
Akihiko Ota<br>
_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@lists.opennebula.org">Users@lists.opennebula.org</a><br>
<a href="http://lists.opennebula.org/listinfo.cgi/users-opennebula.org" target="_blank">http://lists.opennebula.org/listinfo.cgi/users-opennebula.org</a><br>
</font></span></blockquote></div><br></div></div>