This is a policy change, but I believe it's the right thing to do. If we get an incoming Windows ACL that does not include an explicit entry for the owning user, we have to generate one for the underlying POSIX ACL (required). Currently we make this a minimal mapping of r-- for the owner if it's a file, but rwx if it's a directory. This causes problems for OEMs when owning users can no longer access the file even when the owner of the file is a member of one of the other groups being given access (POSIX ACLs don't merge rights). I'd like to change this so that the existing owner permissions are left alone on the file if we get an incoming ACL that doesn't include an owner permission. Patch to follow. Jeremy.
Created attachment 6871 [details] git-am fix for 3.5.x
Created attachment 6872 [details] git-am fix for 3.6.1 Code that has gone into master...
Confirmed this fixes the issue by OEM.
Comment on attachment 6872 [details] git-am fix for 3.6.1 Adding Michael Adams as he may have more time to review.
Comment on attachment 6871 [details] git-am fix for 3.5.x Adding Michael Adams as he may have more time to review.
Comment on attachment 6871 [details] git-am fix for 3.5.x vl is out. Changing to metze for revew.
Comment on attachment 6872 [details] git-am fix for 3.6.1 vl is out. Changing to metze for revew.
Changing to blocker. I *really* need this reviewed and in for 3.5.next and 3.6.1. Jeremy.
Comment on attachment 6871 [details] git-am fix for 3.5.x Looks ok
Comment on attachment 6872 [details] git-am fix for 3.6.1 This looks reasonable. I am ok with the policy change. This has bitten us now and then.
Comment on attachment 6871 [details] git-am fix for 3.5.x ok also for 3.5
Comment on attachment 6872 [details] git-am fix for 3.6.1 Looks ok
Karolin, please pick for the releases
Pushed to v3-5-test and v3-6-test. Closing out bug report. Thanks!