* ACL Problem
@ 2005-12-02 16:40 Nico Schottelius
2005-12-02 16:59 ` J. Bruce Fields
0 siblings, 1 reply; 4+ messages in thread
From: Nico Schottelius @ 2005-12-02 16:40 UTC (permalink / raw)
To: LKML; +Cc: Daniel Aubry
[-- Attachment #1: Type: text/plain, Size: 6460 bytes --]
Hello!
I've problems settings ACLs on differnt hosts:
- ext3 does not work anywhere, error as in not supported ACLs
- reiserfs does not work either (does in support acls anyway?)
- jfs with ACLs works fine, jfs without ACLs behaves correctly not beeing able to
set them
- On xfs it works everwhere
Here's the output of those machines:
-----------------------------Host1: srsyg01-------------------------------------
srsyg01:/home/server/git# setfacl -R -m g:lw1:rwx walderlift-db-verifizieren.git/description
setfacl: walderlift-db-verifizieren.git/description: Operation not supported
srsyg01:/home/server/git# uname -a
Linux srsyg01 2.6.12xenU #7 Sun Nov 6 13:54:56 CET 2005 i686 GNU/Linux
srsyg01:/home/server/git# zcat /proc/config.gz | grep ACL
CONFIG_EXT2_FS_POSIX_ACL=y
CONFIG_EXT3_FS_POSIX_ACL=y
CONFIG_FS_POSIX_ACL=y
srsyg01:/home/server/git# mount | grep /home
/dev/sdb1 on /home type ext3 (rw)
srsyg01:/home/server/git# setfacl --version
setfacl 2.2.32
-----------------------------Host1: srsyg01 (End)-------------------------------
-----------------------------Host2: bruehe -------------------------------------
bruehe2# setfacl -m d:m:rwx woech
setfacl: woech: Operation not supported
bruehe2# zcat /proc/config.gz | grep ACL
CONFIG_RSBAC_ACL=y
# ACL Policy Options
# CONFIG_RSBAC_ACL_SUPER_FILTER is not set
CONFIG_RSBAC_ACL_AUTH_PROT=y
CONFIG_RSBAC_ACL_UM_PROT=y
CONFIG_RSBAC_ACL_GEN_PROT=y
# CONFIG_RSBAC_ACL_BACKUP is not set
# CONFIG_RSBAC_ACL_LEARN is not set
CONFIG_RSBAC_ACL_NET_DEV_PROT=y
CONFIG_RSBAC_ACL_NET_OBJ_PROT=y
# CONFIG_RSBAC_SWITCH_ACL is not set
CONFIG_EXT2_FS_POSIX_ACL=y
CONFIG_EXT3_FS_POSIX_ACL=y
CONFIG_JFS_POSIX_ACL=y
CONFIG_FS_POSIX_ACL=y
CONFIG_XFS_POSIX_ACL=y
bruehe2# mount | head -n1
/dev/md0 on / type ext3 (rw)
[17:37] bruehe2:~% setfacl --version
setfacl 2.2.32
-----------------------------Host2: bruehe (END) -------------------------------
-----------------------------Host3: idoru -------------------------------------
cs2-dev-01:/www/idoru.baselbiet.ch# setfacl -m d:m:rwx .
setfacl: .: Operation not supported
cs2-dev-01:/www/idoru.baselbiet.ch# mount | grep /var
/dev/mapper/vg01-var on /var type ext3 (rw)
cs2-dev-01:/www/idoru.baselbiet.ch# zcat /proc/config.gz | grep ACL
CONFIG_EXT2_FS_POSIX_ACL=y
CONFIG_EXT3_FS_POSIX_ACL=y
CONFIG_FS_POSIX_ACL=y
CONFIG_XFS_POSIX_ACL=y
# CONFIG_NFS_V3_ACL is not set
# CONFIG_NFSD_V3_ACL is not set
cs2-dev-01:/www/idoru.baselbiet.ch# setfacl --version
setfacl 2.2.32
-----------------------------Host3: idoru (END) ---------------------------------
-----------------------------Host4: hydrogenium --------------------------------
# Test on XFS
[17:17] hydrogenium:~# mount
rootfs on / type rootfs (rw)
/dev/root on / type xfs (rw)
tmpfs on /etc/cinit/tmp type tmpfs (rw)
udev on /dev type tmpfs (rw)
sysfs on /sys type sysfs (rw)
proc on /proc type proc (rw,nodiratime)
/dev/mapper/home on /home type jfs (rw,integrity)
devpts on /dev/pts type devpts (rw)
[17:18] hydrogenium:~# mkdir /tmp/test
[17:19] hydrogenium:~# setfacl -m d:u:nico:rwx /tmp/test
[17:19] hydrogenium:~# setfacl -m u:root:rx /tmp/test
[17:20] hydrogenium:~# setfacl -m d:m:rwx /tmp/test
# Now test on JFS
[17:22] hydrogenium:~nico# cd ~nico
[17:22] hydrogenium:~nico# mkdir acl-test
[17:22] hydrogenium:~nico# setfacl -m d:u:nico:rwx acl-test
setfacl: acl-test: Operation not supported
[17:23] hydrogenium:~nico# uname -a
Linux hydrogenium 2.6.14 #2 PREEMPT Wed Nov 16 11:41:40 CET 2005 i686 GNU/Linux
[17:25] hydrogenium:~nico# cd /usr/src/linux
[17:25] hydrogenium:linux# grep ACL .config
CONFIG_EXT2_FS_POSIX_ACL=y
CONFIG_EXT3_FS_POSIX_ACL=y
# CONFIG_JFS_POSIX_ACL is not set
CONFIG_FS_POSIX_ACL=y
CONFIG_XFS_POSIX_ACL=y
CONFIG_NFS_V3_ACL=y
CONFIG_NFSD_V2_ACL=y
CONFIG_NFSD_V3_ACL=y
CONFIG_NFS_ACL_SUPPORT=m
[17:35] hydrogenium:~% setfacl --version
setfacl 2.2.32
-----------------------------Host4: hydrogenium (END)---------------------------
-----------------------------Host5: eiche --------------------------------------
[17:30] eiche:~# zcat /proc/config.gz| grep ACL
CONFIG_RSBAC_ACL=y
# ACL Policy Options
# CONFIG_RSBAC_ACL_SUPER_FILTER is not set
CONFIG_RSBAC_ACL_AUTH_PROT=y
CONFIG_RSBAC_ACL_UM_PROT=y
CONFIG_RSBAC_ACL_GEN_PROT=y
# CONFIG_RSBAC_ACL_BACKUP is not set
# CONFIG_RSBAC_ACL_LEARN is not set
CONFIG_RSBAC_ACL_NET_DEV_PROT=y
CONFIG_RSBAC_ACL_NET_OBJ_PROT=y
# CONFIG_RSBAC_SWITCH_ACL is not set
CONFIG_EXT2_FS_POSIX_ACL=y
CONFIG_EXT3_FS_POSIX_ACL=y
CONFIG_JFS_POSIX_ACL=y
CONFIG_FS_POSIX_ACL=y
CONFIG_XFS_POSIX_ACL=y
# CONFIG_NFS_V3_ACL is not set
# CONFIG_NFSD_V3_ACL is not set
[17:30] eiche:~# mount
rootfs on / type rootfs (rw)
/dev/root on / type xfs (rw)
proc on /proc type proc (rw,nodiratime)
sysfs on /sys type sysfs (rw)
usbfs on /proc/bus/usb type usbfs (rw)
/dev/root on /dev/.static/dev type xfs (rw)
tmpfs on /dev type tmpfs (rw)
/dev/hda1 on /mnt/archiv type xfs (rw)
/dev/hdi on /mnt/backup type reiserfs (rw)
/dev/hdh on /mnt/datenklo type xfs (rw)
devpts on /dev/pts type devpts (rw)
tmpfs on /dev/shm type tmpfs (rw)
/dev/mapper/nirvana on /mnt/datennirvana type jfs (rw)
/dev/mapper/schwarzes-loch on /mnt/schwarzesloch type ext3 (rw)
# Test on XFS
[17:30] eiche:~# cd /
[17:31] eiche:/# mkdir acl-test
[17:31] eiche:/# setfacl -m d:m:rwx acl-test
# Successfull
# Test on reiserfs:
[17:32] eiche:archiv# cd /mnt/backup
[17:32] eiche:backup# mkdir acl-test
[17:32] eiche:backup# setfacl -m d:m:rwx acl-test
setfacl: acl-test: Operation not supported
# fails
# Test on jfs
[17:33] eiche:datennirvana# mkdir acl-test
[17:33] eiche:datennirvana# setfacl -m d:m:rwx acl-test
# successfull
# Test on ext3 again
[17:34] eiche:schwarzesloch# mkdir acl-test
[17:34] eiche:schwarzesloch# setfacl -m d:m:rwx acl-test
setfacl: acl-test: Operation not supported
# fails
[17:34] eiche:schwarzesloch# uname -a
Linux eiche 2.6.13.2-rsbac-eiche-rsbac #1 Mon Oct 3 11:48:43 CEST 2005 i686 GNU/Linux
[17:35] eiche:schwarzesloch# setfacl --version
setfacl 2.2.29
-----------------------------Host5: eiche (END) --------------------------------
What am I doing wrong?
Is there a special tool for ext3?
Nico
--
Latest project: cinit-0.2.1 (http://linux.schottelius.org/cinit/)
Open Source nutures open minds and free, creative developers.
[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 827 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: ACL Problem
2005-12-02 16:40 ACL Problem Nico Schottelius
@ 2005-12-02 16:59 ` J. Bruce Fields
2005-12-02 17:34 ` Paul Rolland
0 siblings, 1 reply; 4+ messages in thread
From: J. Bruce Fields @ 2005-12-02 16:59 UTC (permalink / raw)
To: Nico Schottelius, LKML, Daniel Aubry
On Fri, Dec 02, 2005 at 05:40:47PM +0100, Nico Schottelius wrote:
> Hello!
>
> I've problems settings ACLs on differnt hosts:
>
> - ext3 does not work anywhere, error as in not supported ACLs
> - reiserfs does not work either (does in support acls anyway?)
> - jfs with ACLs works fine, jfs without ACLs behaves correctly not beeing able to
> set them
> - On xfs it works everwhere
>
> Here's the output of those machines:
>
> -----------------------------Host1: srsyg01-------------------------------------
> srsyg01:/home/server/git# setfacl -R -m g:lw1:rwx walderlift-db-verifizieren.git/description
> setfacl: walderlift-db-verifizieren.git/description: Operation not supported
> srsyg01:/home/server/git# uname -a
> Linux srsyg01 2.6.12xenU #7 Sun Nov 6 13:54:56 CET 2005 i686 GNU/Linux
> srsyg01:/home/server/git# zcat /proc/config.gz | grep ACL
> CONFIG_EXT2_FS_POSIX_ACL=y
> CONFIG_EXT3_FS_POSIX_ACL=y
> CONFIG_FS_POSIX_ACL=y
> srsyg01:/home/server/git# mount | grep /home
> /dev/sdb1 on /home type ext3 (rw)
You probably just need to do something like
mount -oremount,acl /home
I can't figure out where this is documented, though.
--b.
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: ACL Problem
2005-12-02 16:59 ` J. Bruce Fields
@ 2005-12-02 17:34 ` Paul Rolland
2005-12-02 17:42 ` J. Bruce Fields
0 siblings, 1 reply; 4+ messages in thread
From: Paul Rolland @ 2005-12-02 17:34 UTC (permalink / raw)
To: 'J. Bruce Fields', 'Nico Schottelius',
'LKML', 'Daniel Aubry'
Hello,
> You probably just need to do something like
>
> mount -oremount,acl /home
Or
mount -oremount,acl,user_xattr /home
to have complete support...
> I can't figure out where this is documented, though.
Google.com :)
Paul
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: ACL Problem
2005-12-02 17:34 ` Paul Rolland
@ 2005-12-02 17:42 ` J. Bruce Fields
0 siblings, 0 replies; 4+ messages in thread
From: J. Bruce Fields @ 2005-12-02 17:42 UTC (permalink / raw)
To: Paul Rolland
Cc: 'Nico Schottelius', 'LKML',
'Daniel Aubry'
On Fri, Dec 02, 2005 at 06:34:35PM +0100, Paul Rolland wrote:
> Hello,
>
> > You probably just need to do something like
> >
> > mount -oremount,acl /home
>
> Or
> mount -oremount,acl,user_xattr /home
> to have complete support...
>
> > I can't figure out where this is documented, though.
> Google.com :)
Yeah. I couldn't find anything on any of the man pages I thought to
check, though. (acl, getfacl, mount, ...) Seems like an oversight.
--b.
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2005-12-02 17:42 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-12-02 16:40 ACL Problem Nico Schottelius
2005-12-02 16:59 ` J. Bruce Fields
2005-12-02 17:34 ` Paul Rolland
2005-12-02 17:42 ` J. Bruce Fields
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.