From owner-freebsd-current Tue Nov 26 14:18:20 2002 Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6402537B41A; Tue, 26 Nov 2002 14:18:18 -0800 (PST) Received: from fledge.watson.org (fledge.watson.org [204.156.12.50]) by mx1.FreeBSD.org (Postfix) with ESMTP id CC89E43E9C; Tue, 26 Nov 2002 14:18:17 -0800 (PST) (envelope-from robert@fledge.watson.org) Received: from fledge.watson.org (fledge.pr.watson.org [192.0.2.3]) by fledge.watson.org (8.12.6/8.12.5) with SMTP id gAQMIDBF007433; Tue, 26 Nov 2002 17:18:14 -0500 (EST) (envelope-from robert@fledge.watson.org) Date: Tue, 26 Nov 2002 17:18:13 -0500 (EST) From: Robert Watson X-Sender: robert@fledge.watson.org To: bsd@xtremedev.com Cc: questions@freebsd.org, current@freebsd.org Subject: Re: 5.0-DP2 ACLs on UFS2 In-Reply-To: <20021125055024.H42486-100000@Amber.XtremeDev.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Mon, 25 Nov 2002 bsd@xtremedev.com wrote: > I've recently installed FreeBSD 5.0-DP2 to get myself familiar with the > upcoming ACLs present in -CURRENT before the release itself. I've setup > a test machine with one 45gb ide drive with one slice and two partitions > (/ and swap) and installed FreeBSD on it. > > dumpfs / shows that root is UFS2, and from reading > /usr/src/sys/ufs/ufs/README.acls, I don't need to do the extattrctl > initattr commands since ufs2 supports EA/ACLs natively. Additionally, I > booted to single user mode and enabled ACLS on / by doing a tunefs -a > enable /dev/ad0s1a. I proceeded to try getfacl and setfacl. > > getfacl returned the default settings (just stat() in ACL form according > to Robert Watson), however, no matter what I tried all I could get with > setfacl -m g:mail:rwx testfile was: > > setfacl: acl_get_file() failed: Operation not supported > > I thought perhaps the tunefs on the ro mount of / did not take. So > instead I used the mount time flag in fstab: > > /dev/ad0s1a / ufs rw,acls 1 1 > > I rebooted, and tried again. Yet I still get the same error message with > setfacl. At this point I'm stuck. Is it because I only have / and not / > and /usr? Does UFS2 with EA/ACLs not work on boot partitions? Or did I > misunderstand something when trying to setup ACLs in -CURRENT? Any > advice right now would be welcomed. Thanks. ACLs should work fine on any UFS2 partition where ACLs are enabled. I'm wondering if it's actually UFS2, or if dumpfs is lying to you. Could you try the following command: touch /foo setextattr system foo foo /foo getextattr system foo /foo And tell me what results you get? That will tell us if extended attributes are available or not. Robert N M Watson FreeBSD Core Team, TrustedBSD Projects robert@fledge.watson.org Network Associates Laboratories To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message