Bug 9358 - Giving the owner of a file full permissions with ACL doesn't add an ACL entry.
Giving the owner of a file full permissions with ACL doesn't add an ACL entry.
Status: ASSIGNED
Product: Samba 3.6
Classification: Unclassified
Component: File services
3.6.8
All All
: P5 normal
: ---
Assigned To: Jeremy Allison
Samba QA Contact
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2012-11-05 18:16 UTC by Andreas Schneider
Modified: 2012-11-05 18:16 UTC (History)
0 users

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Schneider 2012-11-05 18:16:25 UTC
We are not able to add a ACL for the owner of a file.

----------------------------------------
# file: tmp/zelshare/file1
# owner: user1
# group: user1
user::rwx
group::r--
other::r--

smbcacls //127.0.0.1/zelshare file1  -U user1%user1 -a 
ACL:user1:ALLOWED/0/FULL
# file: tmp/zelshare/file1
# owner: user1
# group: user1
user::rwx
group::r--
other::r--
----------------------------------------

This can be problematic if the owner of the file changes sometime in the 
future:

----------------------------------------

smbcacls //127.0.0.1/zelshare file1  -U root%root -C root
# file: tmp/zelshare/file1
# owner: root
# group: user1
user::rwx
group::r--
other::r--
----------------------------------------

Bam, user1 lost -rx access although we tried to explicitly set it previously.

Found on 3.6.6.