On Sun, Oct 13, 2002 at 05:59:29AM +0200, Axel Thimm wrote:
> > you will see a system.posix_acl_access attribute (system.* is not
> > displayed by default).
>
> I also see a xfsroot.SGI_ACL_FILE entry.
yes you will see that if you run getfattr as root. you don't need to
mess with that one.
> > you can remove them with:
> > setfattr -x system.posix_acl_access file
>
> Which also removes the xfsroot.SGI_ACL_FILE entry (as it should, I guess).
yes, the xfsroot attribute handled automatically in the kernel.
> > can you try this test by removing the acl with the above setfattr
> > command instead of setfacl (which seems to be partly broken in regards
> > to acl removal)
>
> Yes, it works as you describe it. Thanks, it works better for restoring my
> files then copying them back and forth with non-acl aware tools (like local
> rsync).
>
> So there are three bugs?
> a) XFS code should automatically remove ACL attributes if not needed anymore.
yes
> b) same for setfacl.
maybe, i tend to think not, it really needs to be handled in the
kernel automatically to be truly effective.
> c) files with ACLs appear as executable for root.
yes
> If a) is not done in the kernel but in the userland, then maybe a) & b) are
> the same bug.
i don't think it can be done too effectivly in userland..
--
Ethan Benson
http://www.alaska.net/~erbenson/
pgpuNa1WFVQeV.pgp
Description: PGP signature
|