Received: by 2002:a05:6a10:a841:0:0:0:0 with SMTP id d1csp780188pxy; Wed, 28 Apr 2021 14:07:59 -0700 (PDT) X-Google-Smtp-Source: ABdhPJzpXnBYer2PfzK8OxJybkeJY6Glhy4LiuErSX524bXi/mDQCs/9UinG7TDH1G1YXd5IMejg X-Received: by 2002:a17:907:10d8:: with SMTP id rv24mr30923252ejb.542.1619644079302; Wed, 28 Apr 2021 14:07:59 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1619644079; cv=none; d=google.com; s=arc-20160816; b=tAn+bpBgn+1XINzZ3qXplWqH5eVBOqqDaCQBPhH6Yn6yjjC5AxFcwiLmG2WBofG8qI 46S49fqAsuLhP1ZyKFz6+vpcBxEKgNDiffHjmygotPQqekhGcW+fIHJ8IDvfXPR81sK4 0Cp+FnY84E+3mjRTpbbEeqfBbaFxYChbHtLy+7pApOHt72qodQXNC8Ou7A9e8i51798w V1iJb+TD56tuMY3Zr28/p6EhMRUyyTncr+6U4P3SOb1ClWMKZA3dNA5w+lbehmMNmanL 9Yt6EJAmzQceos90jEr/NL3CnAu/WqIANZxF76WBQM+12YPFcIUuyVSK+m3u5uQGgI7q 0LpA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:from:user-agent:in-reply-to:content-disposition :mime-version:references:message-id:subject:cc:to:date :dkim-signature:dkim-filter; bh=dK+/Sk39NdF6I9xPBcXsj2vaM5G7nrMH39n1B8fuYT4=; b=Ff5tcM5uuAl7w/l0aB4QxQ0NAX+Bf/rtroehuPkIP09dgfImwzAQVcgJsYw/Xng27i AhaAeA+1GZGsy4u8knp15tiT/j0l+QqLa9PHe/8CTDTrUeT4ofJ+EgclmfRc0mV+cTFq hewGiz9hgLIn6qi3wUhCqHbWASoqd/1rbyToC2qgfh95cMQfEU6FEdAomeuCElVxmAKx mnZEQIPrnxg1q6wb8/ItH/bD5t4/YHyjpfF1oD8s/doQ3qAOaUC8vWE6dOcAkluoeLEq vLVQtR3x0bj6UWY327eNMZBJkQl4Rxgn5K29qneYxY0KX/h8DqkzbTym+SmMJTlMF66W QIUA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@fieldses.org header.s=default header.b=LBqrNQ83; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id m19si888730edd.340.2021.04.28.14.07.35; Wed, 28 Apr 2021 14:07:59 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@fieldses.org header.s=default header.b=LBqrNQ83; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S240630AbhD1TON (ORCPT + 99 others); Wed, 28 Apr 2021 15:14:13 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:40670 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S232310AbhD1TOM (ORCPT ); Wed, 28 Apr 2021 15:14:12 -0400 Received: from fieldses.org (fieldses.org [IPv6:2600:3c00:e000:2f7::1]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 0BEEAC061573; Wed, 28 Apr 2021 12:13:26 -0700 (PDT) Received: by fieldses.org (Postfix, from userid 2815) id D98DB3723; Wed, 28 Apr 2021 15:13:25 -0400 (EDT) DKIM-Filter: OpenDKIM Filter v2.11.0 fieldses.org D98DB3723 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fieldses.org; s=default; t=1619637205; bh=dK+/Sk39NdF6I9xPBcXsj2vaM5G7nrMH39n1B8fuYT4=; h=Date:To:Cc:Subject:References:In-Reply-To:From:From; b=LBqrNQ83RGiejWRj6Q7+3Ddq0L/cSPz7wTGgAoRbWiYL93w7TY0HmgResWNnyCu46 emtghxopIrGSnrJ0BkMF/8orD8xshNW2h7lF9gq6PyIFbQqLHdqiDjNvFcT0TpDQmT nSCPbghhv4dXAIhwGNR3qglEpBGmRt5N35t8a2T0= Date: Wed, 28 Apr 2021 15:13:25 -0400 To: Namjae Jeon Cc: linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, smfrench@gmail.com, senozhatsky@chromium.org, hyc.lee@gmail.com, viro@zeniv.linux.org.uk, hch@lst.de, hch@infradead.org, ronniesahlberg@gmail.com, aurelien.aptel@gmail.com, aaptel@suse.com, sandeen@sandeen.net, dan.carpenter@oracle.com, colin.king@canonical.com, rdunlap@infradead.org, willy@infradead.org Subject: Re: [PATCH v2 00/10] cifsd: introduce new SMB3 kernel server Message-ID: <20210428191325.GA7400@fieldses.org> References: <20210422002824.12677-1-namjae.jeon@samsung.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20210422002824.12677-1-namjae.jeon@samsung.com> User-Agent: Mutt/1.5.21 (2010-09-15) From: bfields@fieldses.org (J. Bruce Fields) Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Thu, Apr 22, 2021 at 09:28:14AM +0900, Namjae Jeon wrote: > ACLs Partially Supported. only DACLs available, SACLs > (auditing) is planned for the future. For > ownership (SIDs) ksmbd generates random subauth > values(then store it to disk) and use uid/gid > get from inode as RID for local domain SID. > The current acl implementation is limited to > standalone server, not a domain member. > Integration with Samba tools is being worked on to > allow future support for running as a domain member. How exactly is this implementing ACLs? I grepped through the code a bit and couldn't quite figure it out--it looked like maybe it's both converting to a POSIX ACL and storing the full SBM ACL in an xattr, is that correct? When you read an ACL, and both are present, which do you use? Also it looked like there's some code from fs/nfsd/nfs4acl.c, could we share that somehow instead of copying? --b.