Hi all,
I'd like to start using acls on bind mounts in my Linux containers. My filesystem is ZFS.
I've read that ZFS uses nfsv4 acl while linux uses posixacl which can cause some problems if incorrectly configured. Please could you advise the right approach.
Wiki states
"ZFS uses as default store for ACL hidden files on filesystem. This reduces performance enormously and with several thousand files a system can feel unresponsive. Storing the xattr in the inode will revoke this performance issue.
Modification to do
"
This thread from 2015 suggests I should do
I've read elsewhere:
Edit: I don't think I actually _need_ to be able to setfacl in the container - I would be happy defining acls on the host. But I do need the containers to obey the acls.
I'd like to start using acls on bind mounts in my Linux containers. My filesystem is ZFS.
I've read that ZFS uses nfsv4 acl while linux uses posixacl which can cause some problems if incorrectly configured. Please could you advise the right approach.
Wiki states
"ZFS uses as default store for ACL hidden files on filesystem. This reduces performance enormously and with several thousand files a system can feel unresponsive. Storing the xattr in the inode will revoke this performance issue.
Modification to do
Code:
zfs set xattr=sa dnodesize=auto vmstore/dataThis thread from 2015 suggests I should do
Code:
zfs set acltype=posixacl pool_pathI've read elsewhere:
Code:
zfs set aclmode=passthrough dataset
zfs set aclinherit=passthrough-x datasetEdit: I don't think I actually _need_ to be able to setfacl in the container - I would be happy defining acls on the host. But I do need the containers to obey the acls.
Last edited: