PageRenderTime 38ms CodeModel.GetById 10ms RepoModel.GetById 0ms app.codeStats 0ms

/tests/zfs-tests/tests/functional/acl/posix/posix_002_pos.ksh

http://github.com/zfsonlinux/zfs
Korn Shell | 76 lines | 25 code | 8 blank | 43 comment | 2 complexity | 61ba3fe43777d55527b0e3f7e50e5793 MD5 | raw file
Possible License(s): Apache-2.0, MPL-2.0-no-copyleft-exception 
    

  1. #!/bin/ksh -p
    2. 

  2. #
    3. 

  3. # CDDL HEADER START
    4. 

  4. #
    5. 

  5. # The contents of this file are subject to the terms of the
    6. 

  6. # Common Development and Distribution License (the "License").
    7. 

  7. # You may not use this file except in compliance with the License.
    8. 

  8. #
    9. 

  9. # You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
    10. 

  10. # or http://www.opensolaris.org/os/licensing.
    11. 

  11. # See the License for the specific language governing permissions
    12. 

  12. # and limitations under the License.
    13. 

  13. #
    14. 

  14. # When distributing Covered Code, include this CDDL HEADER in each
    15. 

  15. # file and include the License file at usr/src/OPENSOLARIS.LICENSE.
    16. 

  16. # If applicable, add the following below this CDDL HEADER, with the
    17. 

  17. # fields enclosed by brackets "[]" replaced with your own identifying
    18. 

  18. # information: Portions Copyright [yyyy] [name of copyright owner]
    19. 

  19. #
    20. 

  20. # CDDL HEADER END
    21. 

  21. #
    22. 

  22. 

  23. #
    24. 

  24. # Copyright 2008 Sun Microsystems, Inc.  All rights reserved.
    25. 

  25. # Use is subject to license terms.
    26. 

  26. #
    27. 

  27. 

  28. . $STF_SUITE/include/libtest.shlib
    29. 

  29. . $STF_SUITE/tests/functional/acl/acl_common.kshlib
    30. 

  30. 

  31. #
    32. 

  32. # Copyright (c) 2012 by Delphix. All rights reserved.
    33. 

  33. #
    34. 

  34. 

  35. #
    36. 

  36. # DESCRIPTION:
    37. 

  37. #	Verify that user can access file/directory if acltype=posixacl.
    38. 

  38. #
    39. 

  39. # STRATEGY:
    40. 

  40. #	1. Test access to directory (mode=-wx)
    41. 

  41. #	   a. Can create file in dir
    42. 

  42. #	   b. Can't list directory
    43. 

  43. #
    44. 

  44. 

  45. verify_runnable "both"
    46. 

  46. log_assert "Verify acltype=posixacl works on directory"
    47. 

  47. 

  48. # Test access to DIRECTORY
    49. 

  49. log_note "Testing access to DIRECTORY"
    50. 

  50. log_must mkdir $TESTDIR/dir.0
    51. 

  51. # Eliminate access by "other" including our test group,
    52. 

  52. # we want access controlled only by the ACLs.
    53. 

  53. log_must chmod 700 $TESTDIR/dir.0
    54. 

  54. log_must setfacl -m g:$ZFS_ACL_STAFF_GROUP:wx $TESTDIR/dir.0
    55. 

  55. # Confirm permissions
    56. 

  56. ls -l $TESTDIR |grep "dir.0" |grep -q "drwx-wx---+"
    57. 

  57. if [ "$?" -ne "0" ]; then
    58. 

  58. 	msk=$(ls -l $TESTDIR |grep "dir.0" | awk '{print $1}')
    59. 

  59. 	log_note "expected mask drwx-wx---+ but found $msk"
    60. 

  60. 	log_fail "Expected permissions were not set."
    61. 

  61. fi
    62. 

  62. getfacl $TESTDIR/dir.0 2> /dev/null | egrep -q \
    63. 

  63.     "^group:$ZFS_ACL_STAFF_GROUP:-wx$"
    64. 

  64. if [ "$?" -eq "0" ]; then
    65. 

  65. 	# Should be able to create file in directory
    66. 

  66. 	log_must user_run $ZFS_ACL_STAFF1 "touch $TESTDIR/dir.0/file.0"
    67. 

  67. 

  68. 	# Should NOT be able to list files in directory
    69. 

  69. 	log_mustnot user_run $ZFS_ACL_STAFF1 "ls -l $TESTDIR/dir.0"
    70. 

  70. 

  71. 	log_pass "POSIX ACL mode works on directories"
    72. 

  72. else
    73. 

  73. 	acl=$(getfacl $TESTDIR/dir.0 2> /dev/null)
    74. 

  74. 	log_note $acl
    75. 

  75. 	log_fail "Group '$ZFS_ACL_STAFF_GROUP' does not have '-wx' as specified"
    76. 

  76. fi
    77. 

  77.