dlpx-os-diff New usr/src/test/zfs-tests/tests/functional/delegate/zfs_allow_003

   1 #!/bin/ksh -p
   2 #
   3 # CDDL HEADER START
   4 #
   5 # The contents of this file are subject to the terms of the
   6 # Common Development and Distribution License (the "License").
   7 # You may not use this file except in compliance with the License.
   8 #
   9 # You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
  10 # or http://www.opensolaris.org/os/licensing.
  11 # See the License for the specific language governing permissions
  12 # and limitations under the License.
  13 #
  14 # When distributing Covered Code, include this CDDL HEADER in each
  15 # file and include the License file at usr/src/OPENSOLARIS.LICENSE.
  16 # If applicable, add the following below this CDDL HEADER, with the
  17 # fields enclosed by brackets "[]" replaced with your own identifying
  18 # information: Portions Copyright [yyyy] [name of copyright owner]
  19 #
  20 # CDDL HEADER END
  21 #
  22 
  23 #
  24 # Copyright 2009 Sun Microsystems, Inc.  All rights reserved.
  25 # Use is subject to license terms.
  26 #
  27 
  28 #
  29 # Copyright (c) 2013 by Delphix. All rights reserved.
  30 #
  31 
  32 . $STF_SUITE/tests/functional/delegate/delegate_common.kshlib
  33 
  34 #
  35 # DESCRIPTION:
  36 #       Verify option '-l' only allow permission to the dataset itself.
  37 #
  38 # STRATEGY:
  39 #       1. Create descendent datasets of $ROOT_TESTFS
  40 #       2. Select user, group and everyone and set local permission separately.
  41 #       3. Set locally permissions to $ROOT_TESTFS or $ROOT_TESTVOL.
  42 #       4. Verify the permissions are only allow on $ROOT_TESTFS or
  43 #          $ROOT_TESTVOL.
  44 #
  45 
  46 verify_runnable "both"
  47 
  48 log_assert "Verify option '-l' only allow permission to the dataset itself."
  49 log_onexit restore_root_datasets
  50 
  51 childfs=$ROOT_TESTFS/childfs
  52 
  53 eval set -A dataset $DATASETS
  54 typeset perms="snapshot,reservation,compression,checksum,userprop"
  55 
  56 log_must $ZFS create $childfs
  57 
  58 for dtst in $DATASETS ; do
  59         log_must $ZFS allow -l $STAFF1 $perms $dtst
  60         log_must verify_perm $dtst $perms $STAFF1
  61         if [[ $dtst == $ROOT_TESTFS ]] ; then
  62                 log_must verify_noperm $childfs $perms \
  63                         $STAFF1 $STAFF2 $OTHER1 $OTHER2
  64         fi
  65 done
  66 
  67 log_must restore_root_datasets
  68 
  69 log_must $ZFS create $childfs
  70 for dtst in $DATASETS ; do
  71         log_must $ZFS allow -l -g $STAFF_GROUP $perms $dtst
  72         log_must verify_perm $dtst $perms $STAFF1 $STAFF2
  73         if [[ $dtst == $ROOT_TESTFS ]] ; then
  74                 log_must verify_noperm $childfs $perms \
  75                         $STAFF1 $STAFF2 $OTHER1 $OTHER2
  76         fi
  77 done
  78 
  79 log_must restore_root_datasets
  80 
  81 log_must $ZFS create $childfs
  82 for dtst in $DATASETS ; do
  83         log_must $ZFS allow -l -e $perms $dtst
  84         log_must verify_perm $dtst $perms $STAFF1 $STAFF2 $OTHER1 $OTHER2
  85         if [[ $dtst == $ROOT_TESTFS ]] ; then
  86                 log_must verify_noperm $childfs $perms \
  87                         $STAFF1 $STAFF2 $OTHER1 $OTHER2
  88         fi
  89 done
  90 
  91 log_must restore_root_datasets
  92 
  93 log_pass "Verify option '-l' only allow permission to the dataset itself pass."