From owner-freebsd-stable@FreeBSD.ORG Tue Feb 8 14:04:02 2005 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0DE9B16A4CF for ; Tue, 8 Feb 2005 14:04:02 +0000 (GMT) Received: from sofia.fio.cz (sf-wall.fio.cz [195.250.140.9]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7943E43D48 for ; Tue, 8 Feb 2005 14:04:00 +0000 (GMT) (envelope-from vita@fio.cz) Received: from [10.0.4.41] (vita-novy.private.fio.cz [10.0.4.41]) by sofia.fio.cz (8.12.9p2/8.12.9) with ESMTP id j18E3v7t009859 for ; Tue, 8 Feb 2005 15:03:57 +0100 (CET) (envelope-from vita@fio.cz) Message-ID: <4208C6CC.50803@fio.cz> Date: Tue, 08 Feb 2005 15:03:56 +0100 From: Vitezslav Novy User-Agent: Mozilla Thunderbird 1.0 (X11/20041210) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-stable@freebsd.org Content-Type: text/plain; charset=ISO-8859-2; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by amavisd-new X-Spam-Status: No, score=-5.9 required=2.5 tests=ALL_TRUSTED,AWL,BAYES_00 autolearn=ham version=3.0.1 X-Spam-Checker-Version: SpamAssassin 3.0.1 (2004-10-22) on sofia.fio.cz Subject: suiddir + ACL problem X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 08 Feb 2005 14:04:02 -0000 Hello, I'm not able to make suiddir + acl inheritance to work together. Looking at function ufs_mkdir in sys/ufs/ufs/ufs/vnops.c I think that in fisrt step mechanism of suiddir sets owner and group of new directory and later ACL mechanism has not rights to inherit acl settings from parent directory. Am I right? And is it feature or bug? (FreeBSD 5.3-RELEASE) Session illustrating problem follows. su-2.05b$ mount ... ... /dev/ar0s1e on /samba (ufs, NFS exported, local, suiddir, soft-updates, acls) su-2.05b# cd /samba su-2.05b# mkdir abc su-2.05b# chown samba:samba abc su-2.05b# chmod 4700 abc su-2.05b# setfacl -m u:rumik:rwx abc su-2.05b# su rumik su-2.05b$ mkdir abc/dir1 su-2.05b$ touch abc/file1 su-2.05b$ ls -l abc total 2 drwsr-xr-x 2 samba samba 512 Feb 8 14:34 dir1 -rw-r--r-- 1 samba samba 0 Feb 8 14:34 file1 su-2.05b$ exit exit su-2.05b# setfacl -d -m u::rwx,g::---,o::---,u:rumik:rwx abc su-2.05b# su rumik su-2.05b$ mkdir dir2 mkdir: dir2: Permission denied su-2.05b$ touch file2 touch: file2: Permission denied su-2.05b$ exit vita