1*96c8483aSYuri Pankov#!/bin/ksh -p 2*96c8483aSYuri Pankov# 3*96c8483aSYuri Pankov# CDDL HEADER START 4*96c8483aSYuri Pankov# 5*96c8483aSYuri Pankov# The contents of this file are subject to the terms of the 6*96c8483aSYuri Pankov# Common Development and Distribution License (the "License"). 7*96c8483aSYuri Pankov# You may not use this file except in compliance with the License. 8*96c8483aSYuri Pankov# 9*96c8483aSYuri Pankov# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 10*96c8483aSYuri Pankov# or http://www.opensolaris.org/os/licensing. 11*96c8483aSYuri Pankov# See the License for the specific language governing permissions 12*96c8483aSYuri Pankov# and limitations under the License. 13*96c8483aSYuri Pankov# 14*96c8483aSYuri Pankov# When distributing Covered Code, include this CDDL HEADER in each 15*96c8483aSYuri Pankov# file and include the License file at usr/src/OPENSOLARIS.LICENSE. 16*96c8483aSYuri Pankov# If applicable, add the following below this CDDL HEADER, with the 17*96c8483aSYuri Pankov# fields enclosed by brackets "[]" replaced with your own identifying 18*96c8483aSYuri Pankov# information: Portions Copyright [yyyy] [name of copyright owner] 19*96c8483aSYuri Pankov# 20*96c8483aSYuri Pankov# CDDL HEADER END 21*96c8483aSYuri Pankov# 22*96c8483aSYuri Pankov 23*96c8483aSYuri Pankov# 24*96c8483aSYuri Pankov# Copyright 2010 Sun Microsystems, Inc. All rights reserved. 25*96c8483aSYuri Pankov# 26*96c8483aSYuri Pankov 27*96c8483aSYuri Pankov# 28*96c8483aSYuri Pankov# ID: acl_003 29*96c8483aSYuri Pankov# 30*96c8483aSYuri Pankov# DESCRIPTION: 31*96c8483aSYuri Pankov# Verify we can modify an ACL (add everyone ACE) 32*96c8483aSYuri Pankov# 33*96c8483aSYuri Pankov# STRATEGY: 34*96c8483aSYuri Pankov# 1. run "mount -F smbfs ..." 35*96c8483aSYuri Pankov# 2. create a file, make sure it has an ACL 36*96c8483aSYuri Pankov# 3. chmod A+everyone@:rxaRcs::allow file 37*96c8483aSYuri Pankov# 4. verify everyone line is there 38*96c8483aSYuri Pankov# 39*96c8483aSYuri Pankov 40*96c8483aSYuri Pankov. $STF_SUITE/include/libtest.ksh 41*96c8483aSYuri Pankov 42*96c8483aSYuri Pankovtc_id="acl003" 43*96c8483aSYuri Pankovtc_desc="Verify we can modify an ACL (add everyone ACE)" 44*96c8483aSYuri Pankovprint_test_case $tc_id - $tc_desc 45*96c8483aSYuri Pankov 46*96c8483aSYuri Pankovif [[ $STC_CIFS_CLIENT_DEBUG == 1 ]] || \ 47*96c8483aSYuri Pankov [[ *:${STC_CIFS_CLIENT_DEBUG}:* == *:$tc_id:* ]]; then 48*96c8483aSYuri Pankov set -x 49*96c8483aSYuri Pankovfi 50*96c8483aSYuri Pankov 51*96c8483aSYuri Pankovserver=$(server_name) || return 52*96c8483aSYuri Pankov 53*96c8483aSYuri Pankovsmbmount_clean $TMNT 54*96c8483aSYuri Pankovsmbmount_init $TMNT 55*96c8483aSYuri Pankov 56*96c8483aSYuri Pankovcmd="mount -F smbfs -oacl //$TUSER:$TPASS@$server/public $TMNT" 57*96c8483aSYuri Pankovcti_execute -i '' FAIL $cmd 58*96c8483aSYuri Pankovif [[ $? != 0 ]]; then 59*96c8483aSYuri Pankov cti_fail "FAIL: $cmd" 60*96c8483aSYuri Pankov return 61*96c8483aSYuri Pankovelse 62*96c8483aSYuri Pankov cti_report "PASS: $cmd" 63*96c8483aSYuri Pankovfi 64*96c8483aSYuri Pankov 65*96c8483aSYuri Pankov# Require that the mount supports ACLs 66*96c8483aSYuri Pankovsmbmount_getmntopts $TMNT |grep /acl/ >/dev/null 67*96c8483aSYuri Pankovif [[ $? != 0 ]]; then 68*96c8483aSYuri Pankov smbmount_clean $TMNT 69*96c8483aSYuri Pankov cti_unsupported "UNSUPPORTED (no ACLs in this mount)" 70*96c8483aSYuri Pankov return 71*96c8483aSYuri Pankovfi 72*96c8483aSYuri Pankov 73*96c8483aSYuri Pankov# create a file, make sure it has an ACL 74*96c8483aSYuri Pankovcmd="cp /etc/passwd $TMNT/$tc_id" 75*96c8483aSYuri Pankovcti_execute_cmd $cmd 76*96c8483aSYuri Pankovif [[ $? != 0 ]]; then 77*96c8483aSYuri Pankov cti_fail "FAIL: $cmd" 78*96c8483aSYuri Pankov smbmount_clean $TMNT 79*96c8483aSYuri Pankov return 80*96c8483aSYuri Pankovfi 81*96c8483aSYuri Pankovcmd="ls -V $TMNT/$tc_id" 82*96c8483aSYuri Pankovcti_execute_cmd $cmd 83*96c8483aSYuri Pankovif [[ $? != 0 ]]; then 84*96c8483aSYuri Pankov cti_fail "FAIL: $cmd" 85*96c8483aSYuri Pankov smbmount_clean $TMNT 86*96c8483aSYuri Pankov return 87*96c8483aSYuri Pankovfi 88*96c8483aSYuri Pankovtail +2 cti_stdout > acl_save 89*96c8483aSYuri Pankov 90*96c8483aSYuri Pankov# 3. chmod A+everyone@:rxaRcs::allow file 91*96c8483aSYuri Pankovcmd="chmod A+everyone@:rxaRcs::allow $TMNT/$tc_id" 92*96c8483aSYuri Pankovcti_execute_cmd $cmd 93*96c8483aSYuri Pankovif [[ $? != 0 ]]; then 94*96c8483aSYuri Pankov cti_fail "FAIL: $cmd" 95*96c8483aSYuri Pankov smbmount_clean $TMNT 96*96c8483aSYuri Pankov return 97*96c8483aSYuri Pankovfi 98*96c8483aSYuri Pankov 99*96c8483aSYuri Pankov# 4. verify everyone line is there 100*96c8483aSYuri Pankovcmd="ls -V $TMNT/$tc_id" 101*96c8483aSYuri Pankovcti_execute_cmd $cmd 102*96c8483aSYuri Pankovif [[ $? != 0 ]]; then 103*96c8483aSYuri Pankov cti_fail "FAIL: $cmd" 104*96c8483aSYuri Pankov smbmount_clean $TMNT 105*96c8483aSYuri Pankov return 106*96c8483aSYuri Pankovfi 107*96c8483aSYuri Pankovtail +2 cti_stdout > acl_test 108*96c8483aSYuri Pankov 109*96c8483aSYuri Pankov# The new ACL should be different, and should contain "everyone@" 110*96c8483aSYuri Pankovcmd="diff acl_save acl_test" 111*96c8483aSYuri Pankovcti_execute_cmd $cmd 112*96c8483aSYuri Pankovif [[ $? == 0 ]]; then 113*96c8483aSYuri Pankov cti_fail "FAIL: ACL should have changed" 114*96c8483aSYuri Pankov smbmount_clean $TMNT 115*96c8483aSYuri Pankov return 116*96c8483aSYuri Pankovfi 117*96c8483aSYuri Pankov 118*96c8483aSYuri Pankovgrep ' everyone@:' acl_test >/dev/null 119*96c8483aSYuri Pankovif [[ $? != 0 ]]; then 120*96c8483aSYuri Pankov cti_fail "FAIL: did not find new ACE" 121*96c8483aSYuri Pankov smbmount_clean $TMNT 122*96c8483aSYuri Pankov return 123*96c8483aSYuri Pankovfi 124*96c8483aSYuri Pankov 125*96c8483aSYuri Pankovcti_execute_cmd "rm $TMNT/$tc_id" 126*96c8483aSYuri Pankovsmbmount_clean $TMNT 127*96c8483aSYuri Pankov 128*96c8483aSYuri Pankovcti_pass "${tc_id}: PASS" 129