Bug 2175385
| Summary: | Cannot access Samba share with veto files = /.*/ | |||
|---|---|---|---|---|
| Product: | Red Hat Enterprise Linux 8 | Reporter: | Jared <rhelaccount01> | |
| Component: | samba | Assignee: | Andreas Schneider <asn> | |
| Status: | VERIFIED --- | QA Contact: | Denis Karpelevich <dkarpele> | |
| Severity: | unspecified | Docs Contact: | ||
| Priority: | unspecified | |||
| Version: | CentOS Stream | CC: | aboscatt, asn, bstinson, dkarpele, jwboyer, pfilipen, simon | |
| Target Milestone: | rc | Keywords: | Regression, Triaged | |
| Target Release: | --- | Flags: | aboscatt:
needinfo?
(asn) |
|
| Hardware: | x86_64 | |||
| OS: | All | |||
| Whiteboard: | sync-to-jira review | |||
| Fixed In Version: | samba-4.18.4-1.el8 | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | ||
| Clone Of: | ||||
| : | 2211605 (view as bug list) | Environment: | ||
| Last Closed: | Type: | Bug | ||
| Regression: | --- | Mount Type: | --- | |
| Documentation: | --- | CRM: | ||
| Verified Versions: | Category: | --- | ||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
| Cloudforms Team: | --- | Target Upstream Version: | ||
| Embargoed: | ||||
| Bug Depends On: | ||||
| Bug Blocks: | 2211605 | |||
|
Description
Jared
2023-03-04 09:57:04 UTC
I think I messed up the initial post. So I'll add the information again.
Description of problem:
The whole Samba share is no longer accessible when "veto files = /.*/" is present in /etc/samba/smb.conf.
We're trying to hide dot files on Home Directory Samba Shares for Windows 10 users, even if the user has "Hidden items" enabled on File Explorer.
On a previous version of CentOS Stream release 8 with Samba 4.16.4-2 installed, this is no problem. However, upon upgrading Samba to 4.17.5-0, the Samba share is no longer accessible on either Windows or Linux using the same smb.conf file.
Version-Release number of selected component (if applicable):
samba-4.17.5-0.el8.x86_64
How reproducible:
We were able to reproduce it every time.
Steps to Reproduce:
1. Open "/etc/samba/smb.conf" in your text editor
2. Add "veto files = /.*/" under the [homes] section
3. Save the smb.conf file
4. Run "sudo systemctl restart smb"
5. Try to access the Home Directory Samba Share
Actual results:
Cannot access any Home Directory Samba Share at all.
Expected results:
Can access a Home Directory Samba Share with all the dot files and folders being hidden.
Additional info:
sudo cat /etc/samba/smb.conf
# See smb.conf.example for a more detailed config file or
# read the smb.conf manpage.
# Run 'testparm' to verify the config is correct after
# you modified it.
#
# Note:
# SMB1 is disabled by default. This means clients without support for SMB2 or
# SMB3 are no longer able to connect to smbd (by default).
[global]
workgroup = SAMBA
security = user
passdb backend = tdbsam
printing = cups
printcap name = cups
load printers = yes
cups options = raw
# Install samba-usershares package for support
include = /etc/samba/usershares.conf
[homes]
comment = Home Directories
valid users = %S, %D%w%S
browseable = No
read only = No
inherit acls = Yes
veto files = /.*/
[printers]
comment = All Printers
path = /var/tmp
printable = Yes
create mask = 0600
browseable = No
[print$]
comment = Printer Drivers
path = /var/lib/samba/drivers
write list = @printadmin root
force group = @printadmin
create mask = 0664
directory mask = 0775
Extend source3/script/tests/test_veto_files.sh It fails because the "." and ".." directories matches '.*'. I just spent three hours trying to work out why my Samba shares stopped working. See https://bugzilla.samba.org/show_bug.cgi?id=15360 - this is a bug, and has been fixed upstream |