acl/nontrivial/zfs_acl_cpio_001_pos.ksh

#!/bin/ksh -p
#
# CDDL HEADER START
#
# The contents of this file are subject to the terms of the
# Common Development and Distribution License (the "License").
# You may not use this file except in compliance with the License.
#
# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
# or http://www.opensolaris.org/os/licensing.
# See the License for the specific language governing permissions
# and limitations under the License.
#
# When distributing Covered Code, include this CDDL HEADER in each
# file and include the License file at usr/src/OPENSOLARIS.LICENSE.
# If applicable, add the following below this CDDL HEADER, with the
# fields enclosed by brackets "[]" replaced with your own identifying
# information: Portions Copyright [yyyy] [name of copyright owner]
#
# CDDL HEADER END
#

#
# Copyright 2007 Sun Microsystems, Inc.  All rights reserved.
# Use is subject to license terms.
#
# Copyright (c) 2012 by Marcelo Leal. All rights reserved.
#

#
# Copyright (c) 2016 by Delphix. All rights reserved.
#

. $STF_SUITE/tests/functional/acl/acl_common.kshlib

#
# DESCRIPTION:
# Verify that 'cpio' command with -P option supports to archive ZFS ACLs
#
# STRATEGY:
# 1. Create file and directory in zfs filesystem
# 2. Add new ACE in ACL or change mode of file and directory
# 3. Use cpio to archive file and directory
# 4. Extract the archive file
# 5. Verify that the restored ACLs of file and directory identify
#    with the origional ones.
#

verify_runnable "both"

function cleanup
{
    if datasetexists $TESTPOOL/$TESTFS1; then
        log_must zfs destroy -f $TESTPOOL/$TESTFS1
    fi
    if (( ${#orig_dir} != 0 )); then
        cd $orig_dir
    fi
    [[ -d $TESTDIR1 ]] && log_must rm -rf $TESTDIR1
    [[ -d $TESTDIR ]] && log_must rm -rf $TESTDIR/*
}

log_assert "Verify that 'cpio' command supports to archive ZFS ACLs."
log_onexit cleanup

set -A ops "A+user:$ZFS_ACL_OTHER1:execute:allow" \
    "A3+user:$ZFS_ACL_OTHER1:write_data:deny" \
    "A0+user:$ZFS_ACL_OTHER1:write_data:deny" \
    "A3+group:$ZFS_ACL_OTHER_GROUP:read_data:deny" \
    "A1=user:$ZFS_ACL_STAFF1:write_data:deny" \
    "A1=group:$ZFS_ACL_STAFF_GROUP:write_data:deny"

log_note "Create second zfs file system to restore the cpio archive."
log_must zfs create $TESTPOOL/$TESTFS1
log_must zfs set mountpoint=$TESTDIR1 $TESTPOOL/$TESTFS1
log_must chmod 777 $TESTDIR1

# Define test fine and record the original directory.
CPIOFILE=cpiofile.$$
file=$TESTFILE0
dir=dir.$$
orig_dir=$PWD

typeset user
for user in root $ZFS_ACL_STAFF1; do
    # Set the current user
    log_must set_cur_usr $user

    typeset -i i=0
    while (( i < ${#ops[*]} )); do
        log_note "Create file $file and directory $dir " \
            "in zfs filesystem. "
        cd $TESTDIR
        log_must usr_exec touch $file
        log_must usr_exec mkdir $dir

        log_note "Change the ACLs of file and directory with " \
            "'chmod ${ops[i]}'."
        for obj in $file $dir; do
            log_must usr_exec chmod ${ops[i]} $obj
        done

        log_note "Archive the file and directory."
        cd $TESTDIR
        log_must eval "usr_exec ls | " \
            "usr_exec cpio -ocP -O $CPIOFILE > /dev/null 2>&1"

        log_note "Restore the cpio archive."
        log_must usr_exec mv $CPIOFILE $TESTDIR1
        cd $TESTDIR1
        log_must eval "usr_exec cat $CPIOFILE | " \
            "usr_exec cpio -icP > /dev/null 2>&1"

        log_note "Verify that the ACLs of restored file/directory " \
            "have no changes."
        for obj in $file $dir; do
            log_must compare_modes $TESTDIR/$obj $TESTDIR1/$obj
            log_must compare_acls $TESTDIR/$obj $TESTDIR1/$obj
        done

        log_must usr_exec rm -rf $TESTDIR/* $TESTDIR1/*

        (( i = i + 1 ))
    done
done

log_pass "'cpio' command succeeds to support ZFS ACLs."