1277877 – FSAL_GLUSTER : if only DENY entry is set for a user/group, then it lost all its default permission

Bug 1277877 - FSAL_GLUSTER : if only DENY entry is set for a user/group, then it lost all its default permission

Summary: FSAL_GLUSTER : if only DENY entry is set for a user/group, then it lost all i...

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	nfs-ganesha
Classification:	Retired
Component:	FSAL_GLUSTER
Sub Component:
Version:	devel
Hardware:	All
OS:	All
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Jiffin
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1277886
TreeView+	depends on / blocked

Reported:	2015-11-04 09:58 UTC by Jiffin
Modified:	2016-08-08 14:11 UTC (History)
CC List:	6 users (show)
Fixed In Version:	nfs-ganesha-2.4-dev-2
Clone Of:
Clones:	1277886 (view as bug list)
Environment:
Last Closed:	2016-02-17 07:13:39 UTC
Embargoed:

Attachments	(Terms of Use)

Description Jiffin 2015-11-04 09:58:08 UTC

Description of problem:
If only  one DENY entry is set for the user/group ,then all of the existing permission(by default it will permission of everyone) will be lost

Version-Release number of selected component (if applicable):
mainline

How reproducible:
always

Steps to Reproduce:
1.Export a gluster volume via ganesha with acls enabled
2.Mount the volume using nfsv4
3.create a file
4.Now set a DENY ENTRY for that file(no corresponding ALLOW ENTRY should exist) 

example
at the mount point

# touch file
# nfs4_getfacl file

A::OWNER@:rwatTcCy
A::GROUP@:rtcy
A::EVERYONE@:rtcy

nfs4_setfacl -a D::user_b@{$DOMAIN}:W file

Actual results:
nfs4_getfacl file

A::OWNER@:rwatTcCy
D::user_b@{$DOMAIN}:rwa
A::user_b@{$DOMAIN}:tcy
A::GROUP@:rtcy
A::EVERYONE@:rtcy


Expected results:
nfs4_getfacl file

A::OWNER@:rwatTcCy
D::user_b@{$DOMAIN}:wa
A::user_b@{$DOMAIN}:rtcy
A::GROUP@:rtcy
A::EVERYONE@:rtcy

Additional info:

Note You need to log in before you can comment on or make changes to this bug.