[illumos-Developer] revisiting aclmode options
Paul B. Henson
henson at acm.org
Thu Jul 21 18:58:56 PDT 2011
On 7/19/2011 7:10 PM, Gordon Ross wrote:
> The idea: A new "aclmode" setting called "discard", meaning that
> the users don't care at all about the traditional mode bits. A
> dataset with aclmode=discard would have the chmod system call and NFS
> setattr do absolutely nothing to the mode bits.
The caveat to that are the suid/sgid/sticky bits, which have no
corresponding bits in the ACL, and potentially will still need to be
manipulated. The details on that still need to be worked out :).
> The mode bits would be derived from the ACL such that the mode
> represents the greatest possible access that might be allowed by the
> ACL, without any consideration of deny entries or group memberships.
Is this description different than how the mode bits are currently
derived when a ZFS acl is set on an object?
--
Paul B. Henson | (909) 979-6361 | http://www.csupomona.edu/~henson/
Operating Systems and Network Analyst | henson at csupomona.edu
California State Polytechnic University | Pomona CA 91768
More information about the Developer
mailing list