Summary: | sys-apps/acl-2.2.47 has broken symlink handling | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Radek Podgorny <radek> |
Component: | [OLD] Core system | Assignee: | Gentoo's Team for Core System packages <base-system> |
Status: | RESOLVED FIXED | ||
Severity: | critical | CC: | korionis |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 235016 |
Description
Radek Podgorny
2009-04-08 10:48:37 UTC
...ewww, sorry, i meant 2.2.* versions. the bugs arent cut and dry. what changes exactly are you looking for ? i see these two: http://oss.sgi.com/cgi-bin/cvsweb.cgi/xfs-cmds/acl/libmisc/walk_tree.c.diff?r1=1.2;r2=1.3 http://oss.sgi.com/bugzilla/attachment.cgi?id=247 sorry for such late reply... i've just tested both patches and only the second (http://oss.sgi.com/bugzilla/attachment.cgi?id=247) seems to work... ...please include to portage. well, it's good you waited as the upstream report was updated in the last week to include the change. ive added the commit that actually went into acl.git. http://git.savannah.gnu.org/cgit/acl.git/commit/?id=1a80c89ee88357137b598fa3357b5 http://git.savannah.gnu.org/cgit/acl.git/commit/?id=63451a06b7484d220750ed8574d3e The feature still remains broken in sys-apps/acl-2.2.47 and 2.2.47-r1. Here's a simple test I did: ------------------------------------- mwojak@Kefiron ~ $ mkdir acltest mwojak@Kefiron ~ $ cd acltest mwojak@Kefiron ~/acltest $ mkdir dir{1,2} mwojak@Kefiron ~/acltest $ touch dir{1,2}/file mwojak@Kefiron ~/acltest $ ln -s ../dir2 dir1/ mwojak@Kefiron ~/acltest $ ls -lR .: razem 0 drwxr-xr-x 2 mwojak users 96 10-01 22:11 dir1 drwxr-xr-x 2 mwojak users 72 10-01 22:11 dir2 ./dir1: razem 0 lrwxrwxrwx 1 mwojak users 7 10-01 22:11 dir2 -> ../dir2 -rw-r--r-- 1 mwojak users 0 10-01 22:11 file ./dir2: razem 0 -rw-r--r-- 1 mwojak users 0 10-01 22:11 file mwojak@Kefiron ~/acltest $ setfacl -R -P -m u:mwojak:rwX dir1 mwojak@Kefiron ~/acltest $ ls -l dir2/file -rw-rw-r--+ 1 mwojak users 0 10-01 22:11 dir2/file ------------------------------------- Look at the plus sign next to dir2/file permissions - it shouldn't be there. This bug is quite dangerous IMHO. Consider using root privileges for applying ACLs recursively on a user's home directory with Wine setup. The whole system gets updated because ~/.wine/dosdevices/z: points to /, which is not funny :] (In reply to comment #4) > well, it's good you waited as the upstream report was updated in the last week > to include the change. FWIW, the new upstream releases are over here: https://savannah.nongnu.org/files/?group=attr The latest version is 2.2.49. (In reply to comment #6) > FWIW, the new upstream releases are over here: > https://savannah.nongnu.org/files/?group=attr And of course I meant this: https://savannah.nongnu.org/files/?group=acl acl not attr. |