From owner-p4-projects@FreeBSD.ORG  Fri Aug 22 19:58:15 2008
Return-Path: <owner-p4-projects@FreeBSD.ORG>
Delivered-To: p4-projects@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 32767)
	id 1E3AB1065677; Fri, 22 Aug 2008 19:58:15 +0000 (UTC)
Delivered-To: perforce@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id B865F1065671
	for <perforce@freebsd.org>; Fri, 22 Aug 2008 19:58:14 +0000 (UTC)
	(envelope-from trasz@freebsd.org)
Received: from repoman.freebsd.org (repoman.freebsd.org
	[IPv6:2001:4f8:fff6::29])
	by mx1.freebsd.org (Postfix) with ESMTP id A81BC8FC1F
	for <perforce@freebsd.org>; Fri, 22 Aug 2008 19:58:14 +0000 (UTC)
	(envelope-from trasz@freebsd.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.14.2/8.14.2) with ESMTP id m7MJwEng015471
	for <perforce@freebsd.org>; Fri, 22 Aug 2008 19:58:14 GMT
	(envelope-from trasz@freebsd.org)
Received: (from perforce@localhost)
	by repoman.freebsd.org (8.14.2/8.14.1/Submit) id m7MJwEA3015469
	for perforce@freebsd.org; Fri, 22 Aug 2008 19:58:14 GMT
	(envelope-from trasz@freebsd.org)
Date: Fri, 22 Aug 2008 19:58:14 GMT
Message-Id: <200808221958.m7MJwEA3015469@repoman.freebsd.org>
X-Authentication-Warning: repoman.freebsd.org: perforce set sender to
	trasz@freebsd.org using -f
From: Edward Tomasz Napierala <trasz@FreeBSD.org>
To: Perforce Change Reviews <perforce@freebsd.org>
Cc: 
Subject: PERFORCE change 148127 for review
X-BeenThere: p4-projects@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: p4 projects tree changes <p4-projects.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/p4-projects>,
	<mailto:p4-projects-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/p4-projects>
List-Post: <mailto:p4-projects@freebsd.org>
List-Help: <mailto:p4-projects-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/p4-projects>,
	<mailto:p4-projects-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Aug 2008 19:58:15 -0000

http://perforce.freebsd.org/chv.cgi?CH=148127

Change 148127 by trasz@trasz_traszkan on 2008/08/22 19:57:41

	Fix a bug where explicit DELETE_CHILD would still apply to root.
	(No regression test for this, sorry.)  Also, clean up stuff in
	sys/vnode.h.  It won't get any better than this.  ;-)

Affected files ...

.. //depot/projects/soc2008/trasz_nfs4acl/sys/kern/subr_acl_nfs4.c#27 edit
.. //depot/projects/soc2008/trasz_nfs4acl/sys/kern/vfs_subr.c#10 edit
.. //depot/projects/soc2008/trasz_nfs4acl/sys/sys/vnode.h#8 edit

Differences ...

==== //depot/projects/soc2008/trasz_nfs4acl/sys/kern/subr_acl_nfs4.c#27 (text+ko) ====

@@ -233,9 +233,9 @@
 	if ((acc_mode & VREAD) && !priv_check_cred(cred, PRIV_VFS_READ, 0))
 		priv_granted |= VREAD;
 
-	if (((acc_mode & VWRITE) || (acc_mode & VAPPEND)) &&
+	if ((acc_mode & (VWRITE | VAPPEND | VDELETE_CHILD)) &&
 	    !priv_check_cred(cred, PRIV_VFS_WRITE, 0))
-		priv_granted |= (VWRITE | VAPPEND);
+		priv_granted |= (VWRITE | VAPPEND | VDELETE_CHILD);
 
 	if ((acc_mode & VADMIN_PERMS) && !priv_check_cred(cred, PRIV_VFS_ADMIN, 0))
 		priv_granted |= VADMIN_PERMS;

==== //depot/projects/soc2008/trasz_nfs4acl/sys/kern/vfs_subr.c#10 (text+ko) ====

@@ -4214,12 +4214,12 @@
 		return (1);
 	}
 
-	if (*mode & (VWRITE_NAMED_ATTRS | VWRITE_ATTRIBUTES | VWRITE_ACL | VWRITE_OWNER)) {
-		*mode &= ~(VWRITE_NAMED_ATTRS | VWRITE_ATTRIBUTES | VWRITE_ACL | VWRITE_OWNER);
+	if (*mode & VADMIN_PERMS) {
+		*mode &= ~VADMIN_PERMS;
 		*mode |= VADMIN;
 	}
 
-	*mode &= ~(VREAD_NAMED_ATTRS | VREAD_ATTRIBUTES | VREAD_ACL | VSYNCHRONIZE);
+	*mode &= ~VSTAT_PERMS;
 
 	if (*mode == 0) {
 		*error = 0;

==== //depot/projects/soc2008/trasz_nfs4acl/sys/sys/vnode.h#8 (text+ko) ====

@@ -310,20 +310,26 @@
 #define vaccess_t	int
 
 /*
- *  Modes.  Some values same as Ixxx entries from inode.h for now.
+ * Flags for vaccess_t.
  */
 #define	VEXEC			000000000100	/* execute/search permission */
 #define	VWRITE			000000000200	/* write permission */
 #define	VREAD			000000000400	/* read permission */
-#define	VSVTX			000000001000	/* save swapped text even after use */
+#define	VSVTX			000000001000	/* sticky bit */
 #define	VSGID			000000002000	/* set group id on execution */
 #define	VSUID			000000004000	/* set user id on execution */
-#define	VADMIN			000000010000	/* permission to administer */
+#define	VADMIN			000000010000	/* being the file owner */
 #define	VSTAT			000000020000	/* permission to retrieve attrs */
 #define	VAPPEND			000000040000	/* permission to write/append */
-#define	VEXPLICIT_DENY		000000100000	/* return EPERM only if permission was denied explicitly */
-#define	VREAD_NAMED_ATTRS 	000000200000
-#define	VWRITE_NAMED_ATTRS 	000000400000
+/*
+ * Return EPERM or EACCES only if permission was denied explicitly,
+ * by a "deny" rule in NFS4 ACL.  This never happens with ordinary
+ * unix access rights or POSIX.1e ACLs.  Obviously, VEXPLICIT_DENY
+ * must be OR-ed with some other Vflag.
+ */
+#define	VEXPLICIT_DENY		000000100000
+#define	VREAD_NAMED_ATTRS 	000000200000	/* not used */
+#define	VWRITE_NAMED_ATTRS 	000000400000	/* not used */
 #define	VDELETE_CHILD	 	000001000000
 #define	VREAD_ATTRIBUTES 	000002000000
 #define	VWRITE_ATTRIBUTES 	000004000000
@@ -331,10 +337,28 @@
 #define	VREAD_ACL	 	000020000000
 #define	VWRITE_ACL	 	000040000000 
 #define	VWRITE_OWNER	 	000100000000
-#define	VSYNCHRONIZE	 	000200000000
-#define	VALLPERM	(VEXEC | VWRITE | VREAD | VADMIN | VSTAT | VAPPEND)
-#define VADMIN_PERMS	(VADMIN | VWRITE_NAMED_ATTRS | VWRITE_ATTRIBUTES | VWRITE_ACL | VWRITE_OWNER)
-#define VSTAT_PERMS	(VSTAT | VREAD_NAMED_ATTRS | VREAD_ATTRIBUTES | VREAD_ACL | VSYNCHRONIZE)
+#define	VSYNCHRONIZE	 	000200000000	/* not used */
+#define	VALLPERM	(VEXEC | VWRITE | VREAD | VADMIN | VSTAT | VAPPEND \
+    VEXPLICIT_DENY | VREAD_NAMED_ATTRS | VWRITE_NAMED_ATTRS | VDELETE_CHILD \
+    VREAD_ATTRIBUTES | VWRITE_ATTRIBUTES | VDELETE | VREAD_ACL | VWRITE_ACL \
+    VWRITE_OWNER | VSYNCHRONIZE)
+
+/*
+ * Permissions that were traditionally granted only to the file owner.
+ */
+#define VADMIN_PERMS	(VADMIN | VWRITE_ATTRIBUTES | VWRITE_ACL | \
+    VWRITE_OWNER)
+
+/*
+ * Permissions that were traditionally granted to everyone.
+ */
+#define VSTAT_PERMS	(VSTAT | VREAD_ATTRIBUTES | VREAD_ACL | VSYNCHRONIZE)
+
+/*
+ * Permissions that allow to change the state of the file in any way.
+ */
+#define VMODIFY_PERMS	(VWRITE | VAPPEND | VADMIN_PERMS | VDELETE_CHILD | \
+    VDELETE)
 
 /*
  * Token indicating no attribute value yet assigned.