| commit | bd00c9286556aacb45fcd457751ccb43ef605329 | |
| author | Andrew Bartlett <abartlet@samba.org> | |
| Tue, 21 Aug 2012 13:21:58 +0000 (21 23:21 +1000) | ||
| committer | Andrew Bartlett <abartlet@samba.org> | |
| Thu, 23 Aug 2012 13:02:26 +0000 (23 15:02 +0200) | ||
| tree | 61cc13cbb8c76fefb30a165ca8a41469490d2804 | treesnapshot (tar.gz zip) |
| parent | 318b8cb4fafcc48bb0f8266171d667a6316f66d4 | commitdiff |
selftest: Extend posixacl test to check the actual ACL
Needing to be able to write this test is the primary reason I have
been reworking the VFS and posix ACL layer over the past few weeks.
By exposing the POSIX ACL as a IDL object we can eaisly manipulate it
in python, and then verify that the ACL was handled correctly.
This ensures the when we write an ACL in provision, that it will
indeed allow that access at the FS layer.
We need to extend this beyond just the critical two ACLs set during
provision, to also include some special (hard) cases involving the
merging of ACE entries, as this is the most delicate part of the ACL
transfomation.
A similar test should also be written to read the posix ACL and the
mapped NT ACL on a file that has never had an NT ACL set.
Andrew Bartlett
Needing to be able to write this test is the primary reason I have
been reworking the VFS and posix ACL layer over the past few weeks.
By exposing the POSIX ACL as a IDL object we can eaisly manipulate it
in python, and then verify that the ACL was handled correctly.
This ensures the when we write an ACL in provision, that it will
indeed allow that access at the FS layer.
We need to extend this beyond just the critical two ACLs set during
provision, to also include some special (hard) cases involving the
merging of ACE entries, as this is the most delicate part of the ACL
transfomation.
A similar test should also be written to read the posix ACL and the
mapped NT ACL on a file that has never had an NT ACL set.
Andrew Bartlett
| source4/scripting/python/samba/tests/posixacl.py | diffblobblamehistory |