Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

journal: clean up permission setting and acl adjustements on user journals #2063

Merged
merged 5 commits into from
Nov 30, 2015
Merged

journal: clean up permission setting and acl adjustements on user journals #2063

merged 5 commits into from
Nov 30, 2015

Conversation

keszybz
Copy link
Member

@keszybz keszybz commented Nov 30, 2015

First commit move acl-modifying code to acl-util. It also removes the call to fchmod(): we can expect the file to have correct permissions since we just created it with some mask or we created it before with the right permissions. If an admin changed the mode of the file, we should just let it be.

Second commit adds some tests which calls the acl-modifying code. The test doesn't show any problems, but it exercises the code in question which so far didn't have any unit tests.

The third commit fixes the problem in #1977 by not setting the mask if it is already set. We were only setting it to avoid having an invalid acl, and it turns out that with current inheritable permissions set on the parent directory, we do have a mask entry by default.

The fourth commit is for #1971. The fifth is for #1397.

Version 2 of #2057.

@keszybz
journal: move the gist of server_fix_perms to acl-util.[hc]
5c3bde3 
Most of the function is moved to acl-util.c to make it possible to
add tests in subsequent commit.

Setting of the mode in server_fix_perms is removed:
- we either just created the file ourselves, and the permission be better right,
- or the file was already there, and we should not modify the permissions.

server_fix_perms is renamed to server_fix_acls to better reflect new
meaning, and made static because it is only used in one file.
@keszybz
test-acl-util: add new test
5bb5b23 
For now, only add_acls_for_user is tested. When run under root, it
actually sets the acls. When run under non-root, it sets the acls for
the user, which does nothing, but at least calls the functions.
@keszybz
acl-util: only set the mask if not present
6debb39 
When we have non-owner user or group entries, we need the mask
for the acl to be valid. But acl_calc_mask() calculates the mask
to include all permissions, even those that were masked before.
Apparently this happens when we inherit *:r-x permissions from
a parent directory — the kernel sets *:r-x, mask:r--, effectively
masking the executable bit. acl_calc_mask() would set the mask:r-x,
effectively enabling the bit. To avoid this, be more conservative when
to add the mask entry: first iterate over all entries, and do nothing
if a mask.

This returns the code closer to J.A.Steffens' original version
in v204-90-g23ad4dd884.

Should fix systemd#1977.
@keszybz
tmpfiles: also set acls on /var/log/journal
57d5b31 
This way, directories created later for containers or for
journald-remote, will be readable by adm & wheel groups by default,
similarly to /var/log/journal/%m itself.

systemd#1971
@keszybz
tmpfiles: set acls on system.journal explicitly
afae249 
systemd#1397
@poettering
Copy link
Member

Will merge this now, as the stuff I found isn't major. Still think this is only a partial fix, and we should do the thing suggested in #1397 (comment).

poettering added a commit that referenced this pull request Nov 30, 2015
@poettering
Merge pull request #2063 from keszybz/issue-1977-2
a004052 
journal: clean up permission setting and acl adjustements on user journals
@poettering poettering merged commit a004052 into systemd:master Nov 30, 2015
keszybz added a commit to keszybz/systemd that referenced this pull request Nov 30, 2015
@keszybz
test-acl-fix: fix two issues from review
c868826 
systemd#2063
@keszybz keszybz deleted the issue-1977-2 branch November 30, 2015 20:47
keszybz added a commit to keszybz/systemd that referenced this pull request Nov 30, 2015
@keszybz
test-acl-util: fix two issues from review
d879fca 
systemd#2063
@keszybz keszybz mentioned this pull request Nov 30, 2015
Merged
@keszybz
Copy link
Member Author

keszybz commented Nov 30, 2015

Will merge this now, as the stuff I found isn't major. Still think this is only a partial fix, and we should do the thing suggested in #1397 (comment).

Agreed. I don't like the race either.

@keszybz keszybz mentioned this pull request Dec 1, 2015
Open
martinpitt pushed a commit to martinpitt/systemd that referenced this pull request Dec 28, 2015
@keszybz @martinpitt
test-acl-util: fix two issues from review
1adcc1e 
systemd#2063
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
tmpfiles
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@keszybz @poettering