| #! /bin/bash |
| # SPDX-License-Identifier: GPL-2.0 |
| # Copyright (c) 2016 Red Hat, Inc. All Rights Reserved. |
| # |
| # FS QA Test 365 |
| # |
| # RichACL chmod test |
| # |
| seq=`basename $0` |
| seqres=$RESULT_DIR/$seq |
| echo "QA output created by $seq" |
| |
| here=`pwd` |
| tmp=/tmp/$$ |
| status=1 # failure is the default! |
| trap "_cleanup; exit \$status" 0 1 2 3 15 |
| |
| _cleanup() |
| { |
| cd / |
| rm -f $tmp.* |
| } |
| |
| # get standard environment, filters and checks |
| . ./common/rc |
| |
| # remove previous $seqres.full before test |
| rm -f $seqres.full |
| |
| # real QA test starts here |
| |
| _supported_fs generic |
| _supported_os Linux |
| |
| _require_scratch |
| _require_scratch_richacl |
| _require_richacl_prog |
| _require_runas |
| |
| _scratch_mkfs_richacl >> $seqres.full |
| _scratch_mount |
| |
| cd $SCRATCH_MNT |
| |
| r() |
| { |
| echo "--- runas -u 99 -g 99 $*" |
| _runas -u 99 -g 99 -- "$@" |
| } |
| |
| s() |
| { |
| echo "--- runas -u 99 -g 99 setrichacl $*" |
| _runas -u 99 -g 99 -- $SETRICHACL_PROG "$@" |
| } |
| |
| # Create file as root |
| touch a |
| |
| # We cannot set the acl as another user |
| s --set 'u:99:rwc::allow' a |
| |
| # We cannot chmod as another user |
| r chmod 666 a |
| |
| # Give user 99 the write_acl permission |
| $SETRICHACL_PROG --set 'u:99:rwpC::allow' a |
| |
| # Now user 99 can setrichacl and chmod ... |
| s --set 'u:99:rwpC::allow' a |
| r chmod 666 a |
| |
| # ... but chmod disables the write_acl permission |
| s --set 'u:99:rwpC::allow' a |
| |
| # success, all done |
| status=0 |
| exit |