I have two potential RFEs for zfs. One would be to allow the owner of a file system to create more file systems within that file system. Now I don''t think ZFS currently has a concept of a file system owner but in it''s simplest form if I create a file system and chown the mount point to be user foo. I would like the user foo to be able to create more file systems within that file system and have all the file systems share a quota. So that the user does not actually gain quota by creating a file system The specific example would be that I would like to be able to have a file system per workspace but would also not want to have to be root. Yes I could mostly do this with a rbac script but the file systems don''t share a quota. The second RFE is really a follow on from the first. Be able to create a zfs file system where any directory created in that filesystem results in the creation of a new child file system. So given a file system tank/foo mounted on /tank/foo mkdir /tank/foo/bar would result in the creation of the filesystem tank/foo/bar conversely rmdir would result in the file system being destroyed. which would inherit the properties of tank/foo. The main reason for wanting this is to allow this to work over NFS. Thoughts? -- Chris Gerhard. __o __o __o PTS in Europe _`\<,`\<,`\<,_ Sun Microsystems Limited (*)/---/---/ (*) Phone: +44 (0) 1252 426033 (ext 26033) ----------------------------------------------------------- http://blogs.sun.com/chrisg ----------------------------------------------------------- NOTICE: This email message is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply email and destroy all copies of the original message. -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3253 bytes Desc: S/MIME Cryptographic Signature URL: <http://mail.opensolaris.org/pipermail/zfs-discuss/attachments/20051215/c361993c/attachment.bin>
On Thu, 2005-12-15 at 13:52, Chris Gerhard wrote:> I have two potential RFEs for zfs. One would be to allow the owner of a > file system to create more file systems within that file system. Now I > don''t think ZFS currently has a concept of a file system owner but in > it''s simplest form if I create a file system and chown the mount point > to be user foo. I would like the user foo to be able to create more file > systems within that file system and have all the file systems share a > quota. So that the user does not actually gain quota by creating a file > systemMe too. This is RFE# 6352860. I have some thoughts on this. One part of me says that RBAC authorisations might help, another part says that ACLs on the properties might be better. Ideally I''d like not just a single user to be able to create the delegated filesystem but a collection of users (and not just a UNIX group but something I can express in an ACE). This area needs some serious though, particularly with respect to how this will work once we start serious work on getting crypto into ZFS. What will be the default keys for these new file systems, when should they inherit cryptographic policy and when shouldn''t they etc etc. I''m thinking about it but don''t have any proposals yet.> The specific example would be that I would like to be able to have a > file system per workspace but would also not want to have to be root. > Yes I could mostly do this with a rbac script but the file systems don''t > share a quota.Would you believe I''ve only just posted such a set of scripts to my blog only 2 minutes ago: http://blogs.sun.com/roller/page/darren?entry=fast_teamware_bringover_with_zfs -- Darren J Moffat
Darren J Moffat wrote:> > Would you believe I''ve only just posted such a set of scripts > to my blog only 2 minutes ago: > http://blogs.sun.com/roller/page/darren?entry=fast_teamware_bringover_with_zfs > >And I have just posted the one that lets a user generate a hierarchy of zfs file systems below one that they already own. http://blogs.sun.com/roller/page/chrisg?entry=letting_users_create_zfs_file -- Chris Gerhard. __o __o __o PTS in Europe _`\<,`\<,`\<,_ Sun Microsystems Limited (*)/---/---/ (*) Phone: +44 (0) 1252 426033 (ext 26033) ----------------------------------------------------------- http://blogs.sun.com/chrisg ----------------------------------------------------------- NOTICE: This email message is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply email and destroy all copies of the original message.