| commit | 692b817ffcc3b03a87e1e66c78b38f3dc67084f3 | |
| author | Jeremy Allison <jra@samba.org> | |
| Thu, 8 Nov 2012 21:45:19 +0000 (8 13:45 -0800) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Thu, 6 Dec 2012 08:40:19 +0000 (6 09:40 +0100) | ||
| tree | 30d1e421f0d7c55456176c834e8448c1d103526a | treesnapshot (tar.gz zip) |
| parent | 92280d202e0708c5ba394456a7d739c242a750f6 | commitdiff |
Another fix needed for bug #9236 - ACL masks incorrectly applied when setting ACLs.
Not caught by make test as it's an extreme edge case for strange
incoming ACLs. I only found this as I'm making raw.acls and smb2.acls
pass against 3.6.x with acl_xattr mapped onto a POSIX backend (which
isn't tested in make test).
An incoming inheritable ACE entry containing only one permission,
WRITE_DATA maps into a POSIX owner perm of "-w-", which violates
the principle that the owner of a file/directory can always read.
(cherry picked from commit e2eb914cb986e28e412863553010795bff8ac3e1)
Not caught by make test as it's an extreme edge case for strange
incoming ACLs. I only found this as I'm making raw.acls and smb2.acls
pass against 3.6.x with acl_xattr mapped onto a POSIX backend (which
isn't tested in make test).
An incoming inheritable ACE entry containing only one permission,
WRITE_DATA maps into a POSIX owner perm of "-w-", which violates
the principle that the owner of a file/directory can always read.
(cherry picked from commit e2eb914cb986e28e412863553010795bff8ac3e1)
| source3/smbd/posix_acls.c | diffblobblamehistory |