From f4507b399cfd19ab37e6eada57ee15504ad9979a Mon Sep 17 00:00:00 2001 From: Daniel Kobras Date: Mon, 26 Sep 2022 10:27:19 +0200 Subject: [PATCH] s3: smbd: Consistently map EAs to user namespace Samba has always been mapping Windows EAs to the 'user' namespace on the POSIX side. However, in the opposite direction, the mapping would also map other user-readable POSIX EA namespaces to Windows EAs, only stripping the 'user' namespace prefix, and passing all other EA names verbatim. This means any POSIX EA 'other.foo' collides with 'user.other.foo' on the Windows side, hence the mapping of non-user namespaces is unreliable. Also, copy operations via Windows would rename an existing POSIX EA 'other.foo' in the source file to 'user.other.foo' in the destination. The 'user' namespace, however, may not be enabled on the underlying filesystem, leading to subtle failure modes like the ones reported in eg. Fix the issues by restricting the mapping to the 'user' POSIX EA namespace consistently for either direction. Link: https://lists.samba.org/archive/samba-technical/2022-September/137634.html BUG: https://bugzilla.samba.org/show_bug.cgi?id=15186 Signed-off-by: Daniel Kobras Reviewed-by: Michael Weiser Tested-by: Michael Weiser Reviewed-by: Jeremy Allison Reviewed-by: Volker Lendecke (cherry picked from commit 34c6db64c2ff62673f8df218487cda4139c10843) --- source3/smbd/smb2_trans2.c | 23 +++++++++++++++++++++-- 1 file changed, 21 insertions(+), 2 deletions(-) diff --git a/source3/smbd/smb2_trans2.c b/source3/smbd/smb2_trans2.c index b2a0cc4140a..8d1e31df1f3 100644 --- a/source3/smbd/smb2_trans2.c +++ b/source3/smbd/smb2_trans2.c @@ -454,7 +454,19 @@ static NTSTATUS get_ea_list_from_fsp(TALLOC_CTX *mem_ctx, struct ea_list *listp; fstring dos_ea_name; - if (strnequal(names[i], "system.", 7) + /* + * POSIX EA names are divided into several namespaces by + * means of string prefixes. Usually, the system controls + * semantics for each namespace, but the 'user' namespace is + * available for arbitrary use, which comes closest to + * Windows EA semantics. Hence, we map POSIX EAs from the + * 'user' namespace to Windows EAs, and just ignore all the + * other namespaces. Also, a few specific names in the 'user' + * namespace are used by Samba internally. Filter them out as + * well, and only present the EAs that are available for + * arbitrary use. + */ + if (!strnequal(names[i], "user.", 5) || samba_private_attr_name(names[i])) continue; @@ -780,7 +792,14 @@ NTSTATUS set_ea(connection_struct *conn, files_struct *fsp, int ret; fstring unix_ea_name; - fstrcpy(unix_ea_name, "user."); /* All EA's must start with user. */ + /* + * Complementing the forward mapping from POSIX EAs to + * Windows EAs in get_ea_list_from_fsp(), here we map in the + * opposite direction from Windows EAs to the 'user' namespace + * of POSIX EAs. Hence, all POSIX EA names the we set here must + * start with a 'user.' prefix. + */ + fstrcpy(unix_ea_name, "user."); fstrcat(unix_ea_name, ea_list->ea.name); canonicalize_ea_name(fsp, unix_ea_name); -- 2.11.4.GIT