[Samba] Possible bug with inheriting ACLs

[Daniel Loughlin]

Hello,

I believe I found a bug with samba. I'm running 2.2.8a on a Solaris 8
machine. I notice that if I have a parent directory with an ACL like:


--- snip of acl from parent directory ---
# file: testing/
# owner: loughlin
# group: other
user::rwx
user:loughlin:rwx               #effective:rwx
user:dannytest:rwx              #effective:rwx
group::r-x              #effective:r-x
mask:rwx
other:r-x
default:user::rwx
default:user:loughlin:rwx
default:user:dannytest:rwx
default:group::r-x
default:mask:rwx
default:other:r-x

When I create a subfolder within the parent in Unix I get the correct
results:

# file: sub/
# owner: loughlin
# group: other
user::rwx
user:loughlin:rwx               #effective:rwx
user:dannytest:rwx              #effective:rwx
group::r-x              #effective:r-x
mask:rwx
other:r-x
default:user::rwx
default:user:loughlin:rwx
default:user:dannytest:rwx
default:group::r-x
default:mask:rwx
default:other:r-x

However, when I map my share and create a subfolder in the parent I get
the following ACLs:

# file: sub2/
# owner: loughlin
# group: staff
user::rwx
user:loughlin:rwx               #effective:r-x
user:dannytest:rwx              #effective:r-x
group::r-x              #effective:r-x
mask:r-x
other:r-x
default:user::rwx
default:user:loughlin:rwx
default:user:dannytest:rwx
default:group::r-x
default:mask:rwx
default:other:r-x

Notice that the mask gets changed...

Here is a snip of my smb.conf for this share:

[testing]
	path = /home/e121/loughlin/testing
	username = loughlin, dannytest
	valid users = loughlin, dannytest
	read list = loughlin, dannytest
	write list = loughlin, dannytest
	read only = No
        inherit permissions = Yes
        inherit acls = Yes


The work around is to create an acl with a group id (ie group:other:rwx)
and give it the value of the mask. Then add "force group = other" to the
entry in smb.conf.

Daniel Loughlin