From owner-freebsd-fs@FreeBSD.ORG Mon Dec 6 22:28:41 2010 Return-Path: Delivered-To: freebsd-fs@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BC7BA1065672 for ; Mon, 6 Dec 2010 22:28:41 +0000 (UTC) (envelope-from etnapierala@googlemail.com) Received: from mail-fx0-f54.google.com (mail-fx0-f54.google.com [209.85.161.54]) by mx1.freebsd.org (Postfix) with ESMTP id 4764A8FC18 for ; Mon, 6 Dec 2010 22:28:40 +0000 (UTC) Received: by fxm16 with SMTP id 16so9911039fxm.13 for ; Mon, 06 Dec 2010 14:28:40 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=gamma; h=domainkey-signature:received:received:sender:subject:mime-version :content-type:from:in-reply-to:date:cc:content-transfer-encoding :message-id:references:to:x-mailer; bh=QBlRY0G/xM8rK93ZIgs7jG5wW1ayti1SG0h3b/YC4I0=; b=VEkS9rS2nKE5R/AnEe76ZzvyjWDFh0fLvoon9uMQ5q3BsN0PCSpX/VVLKlblGCTFwg m0kMBCrOtpJ0rx9ZguWkM5s149HlZk888pObTKtGgZUalQwgVJUxC777zVCkCAXq/co7 aRI4Tqut5VOBApYNqwtmX+HNat/Wc2XY2mA6k= DomainKey-Signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=gamma; h=sender:subject:mime-version:content-type:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to:x-mailer; b=TfRCb0LWa93eXHHZtJk2MkSlQOFkDEjn59Brc2ZBbGFcWXTs8/iDb2VifRyLX3jWrO 0mzsHp98OgpU45Pl2jJQnRD/ZpyUmEnGiHtMh/bDOxk+t81lbONe9Roz5tGvXJBHb6ON Ytd7zfehqG/G3KgUfnhLfsF/FmzJcGS5EyDWQ= Received: by 10.223.100.8 with SMTP id w8mr6223233fan.55.1291674519911; Mon, 06 Dec 2010 14:28:39 -0800 (PST) Received: from [192.168.1.102] (45.81.datacomsa.pl [195.34.81.45]) by mx.google.com with ESMTPS id z1sm1732211fau.21.2010.12.06.14.28.37 (version=TLSv1/SSLv3 cipher=RC4-MD5); Mon, 06 Dec 2010 14:28:38 -0800 (PST) Sender: =?UTF-8?Q?Edward_Tomasz_Napiera=C5=82a?= Mime-Version: 1.0 (Apple Message framework v1082) Content-Type: text/plain; charset=iso-8859-2 From: =?iso-8859-2?Q?Edward_Tomasz_Napiera=B3a?= In-Reply-To: <4CFD5D73.1050601@netmusician.org> Date: Mon, 6 Dec 2010 23:28:36 +0100 Content-Transfer-Encoding: quoted-printable Message-Id: References: <1124305635.1255931.1291670668724.JavaMail.root@erie.cs.uoguelph.ca> <4CFD5D73.1050601@netmusician.org> To: Joe Auty X-Mailer: Apple Mail (2.1082) Cc: freebsd-fs@freebsd.org Subject: Re: Migrating from NFSv3 to v4 - NFSv4 ACL/permission confusion X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Dec 2010 22:28:41 -0000 Wiadomo=B6=E6 napisana przez Joe Auty w dniu 2010-12-06, o godz. 23:02: > Rick Macklem wrote: >>=20 >> I don't know anything about ZFS, but you could try getfacl/setfacl on = the >> client and see what happens? >>=20 >> Edward Napierala (trasz@freebsd.org) did commit a recent change = w.r.t. >> NFSv4 ACLs and I remember the discussion saying something like "after >> this change, chmod no longer does anything once ACLs are enabled, but = I >> have no idea if it is relevant. Erm, no. There is a change in the queue that will change chmod = behaviour wrt. ACLs, but 1. it's not committed yet, and 2. chmod will continue to work. >> Also, make sure "ls -l" is not reporting "nobody". If the user/group >> name mapping isn't working, most Setattr Ops will fail. >>=20 >> rick >>=20 >=20 >=20 > Thanks Rick, >=20 > I will look into this, but for the benefit of my own education, are > NFSv4 ACLs supposed to be intertwined or separate from standard Unix > permissions? I'm confused as to how the ACLs have changed from v3, or = if > this is even relevant to my problem not really knowing how they work = and > why they are needed :) Both POSIX.1e and NFSv4 ACLs are similar in that they both influence the mode, and get influenced by it. In other words, when you change the ACL, the mode gets updated; when you change the mode, the ACL gets updated. Also, for both POSIX.1e and NFSv4 ACLs, file mode continues to work as usual if you ignore the ACL part. Good introduction might be the setfacl(1) manual page. -- If you cut off my head, what would I say? Me and my head, or me and my = body?