Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

extended_security conflicts with allow_others #703

Closed
Artoria2e5 opened this issue Jun 17, 2020 · 4 comments
Closed

extended_security conflicts with allow_others #703

Artoria2e5 opened this issue Jun 17, 2020 · 4 comments
Assignees
Labels

Comments

@Artoria2e5
Copy link

Artoria2e5 commented Jun 17, 2020

I am trying to mount NTFS-3G with full Unix permissions and ACL. However, after running the following command as root, all access from other users fail with "No message available on STREAM":

/usr/local/opt/ntfs-3g/bin/ntfs-3g \
  -o volname="Windows" \
  -o local \
  -o negative_vncache \
  -o streams_interface=openxattr \
  -o auto_cache \
  -o noatime \
  -o windows_names \
  -o inherit \
  -o allow_other \
  -o big_writes \
  -o extended_security \
  /dev/disk1s4 /Volumes/Windows >> /var/log/mount-ntfs-3g.log 2>&1

Removing the extended_security makes it work again with functional Unix permissions. You will need to run ntfsusermap to get the UIDs mapped beforehand.

@bfleischer bfleischer self-assigned this Jun 17, 2020
@bfleischer
Copy link
Member

Please report the issue the the NTFS-3G maintainers.

@Artoria2e5
Copy link
Author

I am still thinking this may be a fuse thing. Let me test this on a much more simplified LoopBackFS then.

@Artoria2e5
Copy link
Author

Not reproduced with LoopBackFS. Will report to NTFS-3G.

@Artoria2e5
Copy link
Author

Artoria2e5 commented Aug 22, 2020

Now that NTFS-3G got their ENOATTR thing together, this is still partially failing: chmod +a works but chmod 644 doesn't. The worst part is that I can't even see a setattr or a chmod request in the debug log. Any idea what kind of macOS security magic this is?

Nevermind, inherit is on.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

No branches or pull requests

2 participants