1#!/bin/ksh -p
2#
3# CDDL HEADER START
4#
5# The contents of this file are subject to the terms of the
6# Common Development and Distribution License (the "License").
7# You may not use this file except in compliance with the License.
8#
9# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
10# or http://www.opensolaris.org/os/licensing.
11# See the License for the specific language governing permissions
12# and limitations under the License.
13#
14# When distributing Covered Code, include this CDDL HEADER in each
15# file and include the License file at usr/src/OPENSOLARIS.LICENSE.
16# If applicable, add the following below this CDDL HEADER, with the
17# fields enclosed by brackets "[]" replaced with your own identifying
18# information: Portions Copyright [yyyy] [name of copyright owner]
19#
20# CDDL HEADER END
21#
22# Copyright 2007 Sun Microsystems, Inc.  All rights reserved.
23# Use is subject to license terms.
24#
25
26#
27# Copyright (c) 2013, 2016 by Delphix. All rights reserved.
28#
29
30. $STF_SUITE/include/libtest.shlib
31. $STF_SUITE/tests/functional/xattr/xattr_common.kshlib
32
33#
34# DESCRIPTION:
35#
36# Attempting to read an xattr on a file for which we have no permissions
37# should fail.
38#
39# STRATEGY:
40#	1. Create a file with an xattr
41#	2. Set the file permissions to 000
42#	3. Check that we're unable to read the xattr as a non-root user
43#	4. Check that we're unable to write an xattr as a non-root user
44#
45
46function cleanup {
47
48	log_must rm $TESTDIR/myfile.$$
49
50}
51
52log_assert "read/write xattr on a file with no permissions fails"
53log_onexit cleanup
54
55log_must touch $TESTDIR/myfile.$$
56create_xattr $TESTDIR/myfile.$$ passwd /etc/passwd
57
58log_must chmod 000 $TESTDIR/myfile.$$
59if is_illumos; then
60	log_mustnot su $ZFS_USER -c "runat $TESTDIR/myfile.$$ cat passwd"
61	log_mustnot su $ZFS_USER -c "runat $TESTDIR/myfile.$$ cp /etc/passwd ."
62else
63	user_run $ZFS_USER eval \
64	    "get_xattr passwd $TESTDIR/myfile.$$ >/tmp/passwd.$$"
65	log_mustnot diff /etc/passwd /tmp/passwd.$$
66	log_must rm /tmp/passwd.$$
67
68	user_run $ZFS_USER eval \
69	    "set_xattr_stdin passwd $TESTDIR/myfile.$$ </etc/group"
70	log_must chmod 644 $TESTDIR/myfile.$$
71	get_xattr passwd $TESTDIR/myfile.$$ >/tmp/passwd.$$
72	log_must diff /etc/passwd /tmp/passwd.$$
73	log_must rm /tmp/passwd.$$
74fi
75
76log_pass "read/write xattr on a file with no permissions fails"
77