| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <87wryw43f6.fsf@linux.vnet.ibm.com>
Date: Tue, 02 Feb 2010 10:52:53 +0530
From: "Aneesh Kumar K. V" <aneesh.kumar@...ux.vnet.ibm.com>
To: "J. Bruce Fields" <bfields@...i.umich.edu>
Cc: sfrench@...ibm.com, ffilz@...ibm.com, agruen@...e.de,
adilger@....com, sandeen@...hat.com, tytso@....edu,
staubach@...hat.com, jlayton@...hat.com,
linux-fsdevel@...r.kernel.org, nfsv4@...ux-nfs.org,
linux-ext4@...r.kernel.org
Subject: Re: [PATCH 07/23] vfs: Add Posix acl to rich acl mapping helpers
On Mon, 1 Feb 2010 18:18:16 -0500, "J. Bruce Fields" <bfields@...i.umich.edu> wrote:
> On Mon, Feb 01, 2010 at 11:04:49AM +0530, Aneesh Kumar K.V wrote:
> > This patch add helpers that can be used by the file system to map
> > posix acls to rich acl format. This enables the file system to
> > return rich acl mapping the posix acls stored on disk when the
>
> You mean, to return a rich acl which is a mapped version of the posix
> acl stored on disk?
Yes
>
> > file system is enabled with rich acl format.
>
> Then I assume if you modified the acl, the filesystem would replace
> the existing posix acl by a "rich acl"?
>
Yes
> The idea being to allow you to convert an existing posix-acl-using
> filesystem to rich acl's? (But not the reverse.)
>
Exactly.
For ex:
/mnt# touch a
/mnt# getfacl a
# file: a
# owner: root
# group: root
user::rw-
group::r--
other::r--
/mnt# setfacl -m u:guest:rw a
/mnt# getfacl a
# file: a
# owner: root
# group: root
user::rw-
user:guest:rw-
group::r--
mask::rw-
other::r--
# umount /mnt/
# tune2fs -O richacl /dev/vdc
# mount /dev/vdc /mnt -o acl
# cd /mnt/
/mnt# getfacl a
# file: a
# acl format: richacl
# owner: root
# group: root
flags:pP <----- 'P' indicate Posix mapped
owner@:---------x-T--M--s::deny
owner@:-r-w-a-----T--M--s::allow
guest:---------x-T--M--s::deny
guest:-r-w-a-----T--M--s::allow
group@:-r---------T--M--s::allow
group@:---w-a---x-T--M--s::deny
everyone@:-r---------T--M--s::allow
/mnt# setrichacl --modify guest:r::allow a
/mnt# getfacl a
# file: a
# acl format: richacl
# owner: root
# group: root
flags:p <---- Posix mapped flag is dropped
owner@:---------x-T--M--s::deny
owner@:-r-w-a------------::allow
guest:---------x-T--M--s::deny
guest:-r----------------::allow
group@:-r---------T--M--s::allow
group@:---w-a---x-T--M--s::deny
everyone@:-r---------T--M--s::allow
--
To unsubscribe from this list: send the line "unsubscribe linux-ext4" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists