d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy#!/bin/ksh -p
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy#
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# CDDL HEADER START
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy#
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# The contents of this file are subject to the terms of the
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# Common Development and Distribution License (the "License").
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# You may not use this file except in compliance with the License.
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy#
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# or http://www.opensolaris.org/os/licensing.
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# See the License for the specific language governing permissions
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# and limitations under the License.
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy#
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# When distributing Covered Code, include this CDDL HEADER in each
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# file and include the License file at usr/src/OPENSOLARIS.LICENSE.
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# If applicable, add the following below this CDDL HEADER, with the
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# fields enclosed by brackets "[]" replaced with your own identifying
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# information: Portions Copyright [yyyy] [name of copyright owner]
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy#
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# CDDL HEADER END
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy#
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy#
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# Copyright 2007 Sun Microsystems, Inc. All rights reserved.
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# Use is subject to license terms.
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy#
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
1d32ba663e202c24a5a1f2e5aef83fffb447cb7fJohn Wren Kennedy#
1d32ba663e202c24a5a1f2e5aef83fffb447cb7fJohn Wren Kennedy# Copyright (c) 2016 by Delphix. All rights reserved.
1d32ba663e202c24a5a1f2e5aef83fffb447cb7fJohn Wren Kennedy#
1d32ba663e202c24a5a1f2e5aef83fffb447cb7fJohn Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy. $STF_SUITE/tests/functional/acl/acl_common.kshlib
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy#
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# DESCRIPTION:
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# Verifies that cp will not be able to include file attribute when
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# attribute is unreadable (unless the user is root)
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy#
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# STRATEGY:
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# 1. In directory A, create several files and add attribute files for them
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# 2. chmod all files'the attribute files to '000'.
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# 3. Implement 'cp -@p' to files.
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy# 4. Verify attribute files are not existing for non-root user.
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy#
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedyverify_runnable "both"
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedylog_assert "Verifies that cp won't be able to include file attribute when " \
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy "attribute is unreadable (except root)"
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedylog_onexit cleanup
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedyfunction test_unreadable_attr
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy{
1d32ba663e202c24a5a1f2e5aef83fffb447cb7fJohn Wren Kennedy typeset initfiles=$(ls -R $INI_DIR/*)
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy typeset -i i=0
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy while (( i < NUM_FILE )); do
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy typeset f=$(getitem $i $initfiles)
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy typeset -i j=0
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy while (( j < NUM_ATTR )); do
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy # chmod all the attribute files to '000'.
1d32ba663e202c24a5a1f2e5aef83fffb447cb7fJohn Wren Kennedy usr_exec runat $f chmod 000 attribute.$j
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy (( j += 1 ))
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy done
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy #
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy # Implement 'cp -@p' to the file whose attribute files
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy # models are '000'.
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy #
1d32ba663e202c24a5a1f2e5aef83fffb447cb7fJohn Wren Kennedy usr_exec cp -@p $f $TST_DIR > /dev/null 2>&1
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
1d32ba663e202c24a5a1f2e5aef83fffb447cb7fJohn Wren Kennedy typeset testfiles=$(ls -R $TST_DIR/*)
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy typeset tf=$(getitem $i $testfiles)
1d32ba663e202c24a5a1f2e5aef83fffb447cb7fJohn Wren Kennedy typeset ls_attr=$(usr_exec ls -@ $tf | \
1d32ba663e202c24a5a1f2e5aef83fffb447cb7fJohn Wren Kennedy awk '{print substr($1, 11, 1)}')
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy case $ZFS_ACL_CUR_USER in
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy root)
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy case $ls_attr in
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy @)
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy log_note "SUCCESS: root enable to cp attribute"\
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy "when attribute files is unreadable"
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy break ;;
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy *)
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy log_fail "root should enable to cp attribute " \
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy "when attribute files is unreadable"
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy break ;;
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy esac
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy ;;
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy $ZFS_ACL_STAFF1)
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy case $ls_attr in
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy @)
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy log_fail "non-root shouldn't enable to cp " \
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy "attribute when attribute files is " \
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy "unreadable."
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy break ;;
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy *)
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy log_note "SUCCESS: non-root doesn't enable to "\
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy "cp attribute when attribute files is "\
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy "unreadable."
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy break ;;
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy esac
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy ;;
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy *)
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy esac
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy (( i += 1 ))
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy done
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy}
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedyfor user in root $ZFS_ACL_STAFF1; do
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy log_must set_cur_usr $user
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy log_must create_files $TESTDIR
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy test_unreadable_attr
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy log_must cleanup
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedydone
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedy
d583b39bfb4e2571d3e41097c5c357ffe353ad45John Wren Kennedylog_pass "'cp -@p' won't include file attribute passed."