Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix st_mode on root #25

Closed
wants to merge 1 commit into from
Closed

Fix st_mode on root #25

wants to merge 1 commit into from

Conversation

phcoder
Copy link
Contributor

@phcoder phcoder commented Jan 15, 2023

st_mode on root is sometimes weird on e.g. on Inherit the Earth demo dmg st_mode ends up being 0 on root which results in I/O error down the line when listing root directory. Enforce sane values on the root.

@phcoder
Fix st_mode on root
db0fde3 
st_mode on root is sometimes weird on e.g. on Inherit the Earth demo dmg
st_mode ends up being 0 on root which results in I/O error down the line
when listing root directory. Enforce sane values on the root.
@0x09
Copy link
Owner

0x09 commented Jan 16, 2023

Thanks @phcoder, it turns out this is a sort of bug/missing feature in hfsfuse. Apparently it's valid for any HFS+ record's file mode bits to be 0 like this, and Apple's HFS+ technical note explains how the macOS driver handles this:

If the S_IFMT field (upper 4 bits) of the fileMode field is zero, then Mac OS X assumes that the permissions structure is uninitialized, and internally uses default values for all of the fields. The default user and group IDs are 99, but can be changed at the time the volume is mounted. This default ownerID is then subject to substitution as described above.

It doesn't say specifically, but the default used for the permission bits seem to be based on the current umask value, and the Linux kernel HFS+ driver behaves this way as well. The defaults that macOS applies for user and group are more complicated:

Mac OS X version 10.3[+] treats user ID 99 as if it was the user ID of the process making the call (in effect, making it owned by everyone simultaneously). These substitutions happen at run time.

By comparison, the Linux kernel HFS+ driver just uses the owner and group id provided in the record and doesn't attempt to substitute them with those of the accessing user. I think this behavior makes sense for hfsfuse too, especially since FUSE already allows access from other users by default.

I'd prefer to try to handle this according to the TN rather than overwrite the root permissions unconditionally, just in case anyone is using FUSE's default_permissions option and relying on these being enforced. It seems like the best thing here would be to have hfs_stat handle this for any record by checking if bits 12-16 of st_mode are not set, and in that case set it to the current umask plus S_IFREG or S_IFDIR depending on whether the key provided is for a file or directory (HFS_REC_FILE/HFS_REC_FLDR)

This should be a fairly small change; if you'd be interested in incorporating that into this PR that would be great, otherwise I'd be happy to add this as well.

@phcoder
Copy link
Contributor Author

phcoder commented Jan 20, 2023

Thank you for the insight. Moved here: #26

@phcoder phcoder closed this Jan 20, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@phcoder @0x09