#
# CDDL HEADER START
#
# The contents of this file are subject to the terms of the
# Common Development and Distribution License (the "License").
# You may not use this file except in compliance with the License.
#
# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
# See the License for the specific language governing permissions
# and limitations under the License.
#
# When distributing Covered Code, include this CDDL HEADER in each
# file and include the License file at usr/src/OPENSOLARIS.LICENSE.
# If applicable, add the following below this CDDL HEADER, with the
# fields enclosed by brackets "[]" replaced with your own identifying
# information: Portions Copyright [yyyy] [name of copyright owner]
#
# CDDL HEADER END
#
#
# Copyright 2007 Sun Microsystems, Inc. All rights reserved.
# Use is subject to license terms.
#
#
# Copyright (c) 2012, 2016 by Delphix. All rights reserved.
#
#
# DESCRIPTION:
# Verify that explicit ACL setting to specified user or group will
# override existed access rule.
#
# STRATEGY:
# 1. Loop root and non-root user.
# 2. Loop the specified access one by one.
# 3. Loop verify explicit ACL set to specified user and group.
#
verify_runnable "both"
{
typeset log=$1
typeset user=$2
typeset node=$3
typeset access=$4
typeset rflag=$5
#
# When everyone@ were deny, this file can't execute.
# So,'cannot execute' means user has the permission to
# execute, just the file can't be execute.
#
else
fi
else
fi
}
{
typeset node=$1
typeset access=$2
typeset flag=$3
# Get the expect log check
else
fi
}
log_assert "Verify that explicit ACL setting to specified user or group will" \
"override existed access rule."
set -A a_access "read_data" "write_data" "execute"
set -A a_flag "allow" "deny"
typeset node
done
done
done
done
log_pass "Explicit ACL setting to specified user or group will override " \
"existed access rule passed."