Re: [PATCH v18 00/22] Richacls (Core and Ext4)

[PATCH v18 00/22] Richacls (Core and Ext4) · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 03/22] vfs: Add MAY_DELETE_SELF and MAY_DELETE_CHILD permission flags · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 04/22] vfs: Make the inode passed to inode_change_ok non-const · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 07/22] richacl: Permission mapping functions · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 08/22] richacl: Compute maximum file masks from an acl · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 09/22] richacl: Permission check algorithm · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
Re: [PATCH v18 09/22] richacl: Permission check algorithm · Christoph Hellwig <hch@infradead.org> · 2016-03-11
[PATCH v18 10/22] posix_acl: Unexport acl_by_type and make it static · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
Re: [PATCH v18 10/22] posix_acl: Unexport acl_by_type and make it static · Christoph Hellwig <hch@infradead.org> · 2016-03-11
[PATCH v18 15/22] richacl: Check if an acl is equivalent to a file mode · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 17/22] richacl: Automatic Inheritance · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 19/22] richacl: Add richacl xattr handler · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
Re: [PATCH v18 19/22] richacl: Add richacl xattr handler · Christoph Hellwig <hch@infradead.org> · 2016-03-11
Re: [PATCH v18 19/22] richacl: Add richacl xattr handler · J. Bruce Fields <hidden> · 2016-03-11
Re: [PATCH v18 19/22] richacl: Add richacl xattr handler · Christoph Hellwig <hch@infradead.org> · 2016-03-15
Re: [PATCH v18 19/22] richacl: Add richacl xattr handler · J. Bruce Fields <hidden> · 2016-03-15
Re: [PATCH v18 19/22] richacl: Add richacl xattr handler · Christoph Hellwig <hch@infradead.org> · 2016-03-21
[PATCH v18 01/22] vfs: Add IS_ACL() and IS_RICHACL() tests · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 02/22] vfs: Add MAY_CREATE_FILE and MAY_CREATE_DIR permission flags · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 06/22] richacl: In-memory representation and helper functions · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 05/22] vfs: Add permission flags for setting file attributes · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 11/22] vfs: Cache base_acl objects in inodes · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
Re: [PATCH v18 11/22] vfs: Cache base_acl objects in inodes · Christoph Hellwig <hch@infradead.org> · 2016-03-11
Re: [PATCH v18 11/22] vfs: Cache base_acl objects in inodes · Andreas Gruenbacher <agruenba@redhat.com> · 2016-03-11
Re: [PATCH v18 11/22] vfs: Cache base_acl objects in inodes · Christoph Hellwig <hch@infradead.org> · 2016-03-15
Re: [PATCH v18 11/22] vfs: Cache base_acl objects in inodes · Andreas Gruenbacher <agruenba@redhat.com> · 2016-03-16
[PATCH v18 12/22] vfs: Add get_richacl and set_richacl inode operations · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 13/22] vfs: Cache richacl in struct inode · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 14/22] richacl: Update the file masks in chmod() · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 16/22] richacl: Create-time inheritance · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 18/22] richacl: xattr mapping functions · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
Re: [PATCH v18 18/22] richacl: xattr mapping functions · Christoph Hellwig <hch@infradead.org> · 2016-03-11
Re: [PATCH v18 18/22] richacl: xattr mapping functions · Andreas Gruenbacher <agruenba@redhat.com> · 2016-03-11
[PATCH v18 20/22] vfs: Add richacl permission checking · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
[PATCH v18 21/22] ext4: Add richacl support · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
Re: [PATCH v18 21/22] ext4: Add richacl support · Christoph Hellwig <hch@infradead.org> · 2016-03-11
Re: [PATCH v18 21/22] ext4: Add richacl support · Andreas Gruenbacher <agruenba@redhat.com> · 2016-03-13
Re: [PATCH v18 21/22] ext4: Add richacl support · Christoph Hellwig <hch@infradead.org> · 2016-03-15
Re: [PATCH v18 21/22] ext4: Add richacl support · Andreas Gruenbacher <agruenba@redhat.com> · 2016-03-16
Re: [PATCH v18 21/22] ext4: Add richacl support · Andreas Gruenbacher <agruenba@redhat.com> · 2016-03-13
Re: [PATCH v18 21/22] ext4: Add richacl support · Andreas Gruenbacher <agruenba@redhat.com> · 2016-03-14
Re: [PATCH v18 21/22] ext4: Add richacl support · Christoph Hellwig <hch@infradead.org> · 2016-03-15
[PATCH v18 22/22] ext4: Add richacl feature flag · Andreas Gruenbacher <agruenba@redhat.com> · 2016-02-29
Re: [PATCH v18 00/22] Richacls (Core and Ext4) · Christoph Hellwig <hch@infradead.org> · 2016-03-11
Re: [PATCH v18 00/22] Richacls (Core and Ext4) · J. Bruce Fields <hidden> · 2016-03-11
Re: [PATCH v18 00/22] Richacls (Core and Ext4) · Simo <hidden> · 2016-03-12
Re: [PATCH v18 00/22] Richacls (Core and Ext4) · Christoph Hellwig <hch@infradead.org> · 2016-03-15
Re: [PATCH v18 00/22] Richacls (Core and Ext4) · Andreas Gruenbacher <agruenba@redhat.com> · 2016-03-11
Re: [PATCH v18 00/22] Richacls (Core and Ext4) · Steve French <smfrench@gmail.com> · 2016-03-11
Re: [PATCH v18 00/22] Richacls (Core and Ext4) · Jeremy Allison <hidden> · 2016-03-11
Re: [PATCH v18 00/22] Richacls (Core and Ext4) · Andreas Gruenbacher <agruenba@redhat.com> · 2016-03-13
Re: [PATCH v18 00/22] Richacls (Core and Ext4) · Christoph Hellwig <hch@infradead.org> · 2016-03-15
Re: [PATCH v18 00/22] Richacls (Core and Ext4) · Steve French <smfrench@gmail.com> · 2016-03-16
Re: [PATCH v18 00/22] Richacls (Core and Ext4) · Christoph Hellwig <hch@infradead.org> · 2016-03-15

From: Christoph Hellwig <hch@infradead.org>
Date: 2016-03-15 07:11:53
Also in: linux-api, linux-cifs, linux-fsdevel, linux-nfs, linux-xfs, lkml

On Fri, Mar 11, 2016 at 05:11:51PM +0100, Andreas Gruenbacher wrote:

quoted

while breaking a lot of assumptions,

The model is designed specifically to be compliant with the POSIX
permission model. What assumptions are you talking about?

People have long learned that we only have 'alloc' permissions.  Any
model that mixes allow and deny ACE is a mistake.

quoted

especially by adding allow and deny ACE at the same time.

I remember from past discussions that a permission model like the
POSIX ACL model that doesn't have DENY ACEs would be more to your
liking. This argument is dead from the start though: NFSv4 ACLs
without DENY ACEs cannot represent basic file permissions like 0604
where the owning group has fewer permissions than others, for example
(see the richaclex(7) man page). We would end up with a permission
model that isn't even compatible with the traditional POSIX file
permission model, one which nobody else implements or cares about.

So let's stick to the model that we already have.

_______________________________________________
xfs mailing list
xfs@oss.sgi.com
http://oss.sgi.com/mailman/listinfo/xfs

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help