Fix bug where NFSv4 ACL enforcement code wouldn't unconditionally

allow the owner to read and write ACL and file attributes when there was no entry with subject matching the owner. In other words, 'getfacl meh' shouldn't fail for the owner if the ACL looks like this: # file: meh # owner: trasz # group: wheel user:root:------a-------:------:allow Reported by: kientzle
svn path=/head/; revision=234385
2012-04-17 14:54:00 +00:00 · 2012-04-17 14:54:00 +00:00 · 9e21ef395a · 2020-12-20 02:59:44 +00:00
commit 9e21ef395a
parent 0b18eb6d74
1 changed files with 3 additions and 0 deletions
--- a/sys/kern/subr_acl_nfs4.c
+++ b/sys/kern/subr_acl_nfs4.c
@ -162,6 +162,9 @@ _acl_denies(const struct acl *aclp, int access_mask, struct ucred *cred,
 			return (0);
 	}

+	if (access_mask == 0)
+		return (0);
+
 	return (1);
 }