Samba is running as a PDC. We are sharing a directory tree using samba on linux. On a Windows 2k machine, I change ACL of a file on the public directory by the cacls command. After I changed permission of the file with cacls or I added a user to ACL of the file by cacls, but the ACL data that cacls shows is wrong. ACL is working correctly with xfs. I verified that ACL is working correctly using getfacl and setfacl on linux. samba system: GNU-Debian/Linux use kernel supporting xfs Architecture: i386 samba : Samba 3.0.0 RC3 public file system : XFS client system : Windows2000 Professional(Japanese) SP4 sample : ===================================================================== ==== sample 1 : add write permission to a user1 -- linux user1$ getfacl user1-1.txt # file: user1-1.txt # owner: user1 # group: guser1 user::r-- group::r-- other::r-- -- Windows 2k E:\>cacls user1-1.txt E:\user1-1.txt SAMBA1\user1:(special access:) READ_CONTROL SYNCHRONIZE FILE_GENERIC_READ FILE_READ_DATA FILE_READ_EA FILE_READ_ATTRIBUTES SAMBA1\guser1:(special access:) READ_CONTROL SYNCHRONIZE FILE_GENERIC_READ FILE_READ_DATA FILE_READ_EA FILE_READ_ATTRIBUTES Everyone:(special access:) READ_CONTROL SYNCHRONIZE FILE_GENERIC_READ FILE_READ_DATA FILE_READ_EA FILE_READ_ATTRIBUTES E:\> E:\>cacls user1-1.txt /G user1:W are you OK (Y/N)?Y objects: E:\user1-1.txt E:\>cacls user1-1.txt E:\user1-1.txt SAMBA1\user1:F SAMBA1\guser1:(special access:) Everyone:(special access:) E:\> -- linux user1$ getfacl user1-1.txt # file: user1-1.txt # owner: user1 # group: guser1 user::rwx group::--- other::--- user1$ date Thu Oct 23 15:21:38 JST 2003 ==== sample 2 : add a user2 with read permission -- linux user1$ getfacl user1-2.txt # file: user1-2.txt # owner: user1 # group: guser1 user::rw- group::r-- other::r-- user1$ date Thu Oct 23 15:33:28 JST 2003 user1$ -- Windows 2k E:\>cacls user1-2.txt E:\user1-2.txt SAMBA1\user1:(special access:) READ_CONTROL SYNCHRONIZE FILE_GENERIC_READ FILE_GENERIC_WRITE FILE_READ_DATA FILE_WRITE_DATA FILE_APPEND_DATA FILE_READ_EA FILE_WRITE_EA FILE_READ_ATTRIBUTES FILE_WRITE_ATTRIBUTES SAMBA1\guser1:(special access:) READ_CONTROL SYNCHRONIZE FILE_GENERIC_READ FILE_READ_DATA FILE_READ_EA FILE_READ_ATTRIBUTES Everyone:(special access:) READ_CONTROL SYNCHRONIZE FILE_GENERIC_READ FILE_READ_DATA FILE_READ_EA FILE_READ_ATTRIBUTES E:\> E:\>cacls user1-2.txt /G user2:R are you OK (Y/N)?Y objects: E:\user1-2.txt E:\> E:\>cacls user1-2.txt E:\user1-2.txt SAMBA1\user1:(special access:) READ_CONTROL SYNCHRONIZE FILE_GENERIC_READ FILE_READ_DATA FILE_READ_EA FILE_READ_ATTRIBUTES SAMBA1\guser1:(special access:) SAMBADEV1\user2:R Everyone:(special access:) E:\> -- linux user1$ getfacl user1-2.txt # file: user1-2.txt # owner: user1 # group: guser1 user::r-- user:user2:r-x group::--- mask::rwx other::--- user1$ date Thu Oct 23 15:33:48 JST 2003 user1$ =====================================================================
Created attachment 219 [details] add write permission to a user1 This file is samba log. This file is traced when cacls added write permission to user1.
Created attachment 220 [details] add a user2 to ACL This file is samba log. This file is traced when cacls added a user2 with read permission to ACL.
originally against 3.0.0rc3
please reopen if the bug still exists in a current release.