Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

ACL changes failed veification #167

Open
CompuRoot opened this issue Mar 20, 2022 · 0 comments
Open

ACL changes failed veification #167

CompuRoot opened this issue Mar 20, 2022 · 0 comments

Comments

@CompuRoot
Copy link

Tool Description
OS CentOS 7; Debian 10,11
go-mtree version: gomtree :: 0.5.1-dev

Test case (create file with extended ACL and manifest it):

#!/bin/sh

mkdir -pv ./gomtree-test

echo '#!/bin/sh
echo Hi
' > ./gomtree-test/source.sh

chmod -c 770  ./gomtree-test/source.sh

setfacl -m u:www-data:rwx ./gomtree-test/source.sh   # Set ACL (change www-data to another user if it isn't exists on test machine)

gomtree -c -K uname,uid,gname,gid,type,nlink,link,mode,flags,xattr,xattrs,size,time,sha256 -p ./gomtree-test  >gomtree-test.manifest

Result:

Manifest will reflect changes in ACL

xattr.system.posix_acl_access=AgAAAAEABwD/////AgAHACEAAAAEAAcA/////xAABwD/////IAAAAP////8=

but if ACL will be changed:

### Remove ACL from file
setfacl -b ./gomtree-test/source.sh

verification doesn't alarm the fact that metadata was changed:

cd gomtree-test
gomtree < ../gomtree-test.manifest
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@CompuRoot