** Description changed: Binary package hint: smbfs When creating files on a CIFS-mounted filesystem, default ACL are not inherited. However, directory created on same CIFS-mounted filesystem works just fine. Both server and client are Ubuntu 8.04. On the server, running samba 3.0.28a-1ubuntu4.5, smb.conf is entirely distribution-default, except for the share definition: [share] path = /srv/share read only = No inherit acls = Yes Note that, in examples below, ubuntu is uid 1000 on both hardy-server and hardy-desktop. On the server: [EMAIL PROTECTED]:~$ umask 0022 [EMAIL PROTECTED]:~$ cd /srv/share [EMAIL PROTECTED]:/srv/share$ sudo mkdir test-acl [EMAIL PROTECTED]:/srv/share$ sudo chown ubuntu:ubuntu test-acl [EMAIL PROTECTED]:/srv/share$ setfacl -m d:o:rwx test-acl [EMAIL PROTECTED]:/srv/share$ mkdir test-acl/dir-local [EMAIL PROTECTED]:/srv/share$ touch test-acl/file-local [EMAIL PROTECTED]:/srv/share$ getfacl -R test-acl # file: test-acl # owner: ubuntu # group: ubuntu user::rwx group::r-x other::r-x default:user::rwx default:group::r-x default:other::rwx # file: test-acl/dir-local # owner: ubuntu # group: ubuntu user::rwx group::r-x other::rwx default:user::rwx default:group::r-x default:other::rwx # file: test-acl/file-local # owner: ubuntu # group: ubuntu user::rw- group::r-- other::rw- So far so good. Now, on the client, which have smbfs 3.0.28a-1ubuntu4.6 from hardy-proposed installed: - [EMAIL PROTECTED]:~$ uname -r + [EMAIL PROTECTED]:~$ uname -r 2.6.24-20-generic - [EMAIL PROTECTED]:~$ modinfo -F version cifs + [EMAIL PROTECTED]:~$ modinfo -F version cifs 1.52 [EMAIL PROTECTED]:~$ umask 0022 [EMAIL PROTECTED]:~$ grep hardy-server /etc/fstab //hardy-server.montreal.canonical.com/share /home/ubuntu/hardy-server cifs user,username=ubuntu,password=whatever 0 0 [EMAIL PROTECTED]:~$ mkdir /home/ubuntu/hardy-server [EMAIL PROTECTED]:~$ mount /home/ubuntu/hardy-server [EMAIL PROTECTED]:~$ cd /home/ubuntu/hardy-server/test-acl [EMAIL PROTECTED]:~/hardy-server/test-acl$ mkdir dir-cifs [EMAIL PROTECTED]:~/hardy-server/test-acl$ touch file-cifs Now, I cannot use getfacl to display the ACL from the client as the cifs module have not been compiled with CONFIG_CIFS_XATTR, but from the server: [EMAIL PROTECTED]:/srv/share/test-acl$ getfacl *-cifs # file: dir-cifs # owner: ubuntu # group: ubuntu user::rwx group::r-x other::rwx default:user::rwx default:group::r-x default:other::rwx # file: file-cifs # owner: ubuntu # group: ubuntu user::rw- group::r-- other::r-- We can see the directory inherited the default ACL, but the file created on the client over the CIFS-mounted file system do not appear to have got the w permission propagated from the parent directory as expected. Even more puzzling, it appear to work as expected when using smbclient: [EMAIL PROTECTED]:~$ touch file-smbclient [EMAIL PROTECTED]:~$ smbclient //hardy-server/share Password: Domain=[HARDY-SERVER] OS=[Unix] Server=[Samba 3.0.28a]t smb: \> cd test-acl smb: \test-acl\> mkdir dir-smbclient smb: \test-acl\> put file-smbclient putting file file-smbclient as \test-acl\file-smbclient (0.0 kb/s) (average 0.0 kb/s) smb: \test-acl\> quit Witness on the server: [EMAIL PROTECTED]:~$ getfacl /srv/share/test-acl/*-smbclient getfacl: Removing leading '/' from absolute path names # file: srv/share/test-acl/dir-smbclient # owner: ubuntu # group: ubuntu user::rwx group::r-x other::rwx default:user::rwx default:group::r-x default:other::rwx # file: srv/share/test-acl/file-smbclient # owner: ubuntu # group: ubuntu user::rwx group::r-x other::rwx I am puzzled. Could it relate to the umask? acl(5) seems to imply it could. But then, the umask is the same on both hardy-desktop and hardy-desktop (0022) and yet, the actual behavior differ depending on if the file is created locally or through a CIFS-mounted file system (it should not). Maybe I am just confused about what the correct behavior should be in the first place.
-- Default ACL not applied on files created through CIFS filesystem (mount.cifs) https://bugs.launchpad.net/bugs/271922 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs