dlpx-os-diff New usr/src/test/zfs-tests/tests/functional/delegate/zfs_allow_012

   1 #!/bin/ksh -p
   2 #
   3 # CDDL HEADER START
   4 #
   5 # The contents of this file are subject to the terms of the
   6 # Common Development and Distribution License (the "License").
   7 # You may not use this file except in compliance with the License.
   8 #
   9 # You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
  10 # or http://www.opensolaris.org/os/licensing.
  11 # See the License for the specific language governing permissions
  12 # and limitations under the License.
  13 #
  14 # When distributing Covered Code, include this CDDL HEADER in each
  15 # file and include the License file at usr/src/OPENSOLARIS.LICENSE.
  16 # If applicable, add the following below this CDDL HEADER, with the
  17 # fields enclosed by brackets "[]" replaced with your own identifying
  18 # information: Portions Copyright [yyyy] [name of copyright owner]
  19 #
  20 # CDDL HEADER END
  21 #
  22 
  23 #
  24 # Copyright 2007 Sun Microsystems, Inc.  All rights reserved.
  25 # Use is subject to license terms.
  26 #
  27 
  28 #
  29 # Copyright (c) 2013 by Delphix. All rights reserved.
  30 #
  31 
  32 . $STF_SUITE/tests/functional/delegate/delegate_common.kshlib
  33 
  34 #
  35 # DESCRIPTION:
  36 #       Scan all permissions one by one to verify privileged user
  37 #       can not use permissions properly when delegation property is set off
  38 #
  39 # STRATEGY:
  40 #       1. Delegate all the permission one by one to user on dataset.
  41 #       2. Verify privileged user can not use permissions properly when
  42 #       delegation property is off
  43 #
  44 
  45 verify_runnable "global"
  46 
  47 function cleanup
  48 {
  49         log_must $ZPOOL set delegation=on $TESTPOOL
  50         log_must restore_root_datasets
  51 }
  52 
  53 log_assert "Verify privileged user can not use permissions properly when " \
  54         "delegation property is set off"
  55 log_onexit cleanup
  56 
  57 
  58 set -A perms    create snapshot mount send allow quota reservation \
  59                 recordsize mountpoint checksum compression canmount atime \
  60                 devices exec volsize setuid readonly snapdir userprop \
  61                 aclmode aclinherit rollback clone rename promote \
  62                 zoned xattr receive destroy sharenfs share
  63 
  64 log_must $ZPOOL set delegation=off $TESTPOOL
  65 
  66 for dtst in $DATASETS; do
  67         typeset -i i=0
  68         while (( i < ${#perms[@]} )); do
  69 
  70                 log_must $ZFS allow $STAFF1 ${perms[$i]} $dtst
  71                 log_must verify_noperm $dtst ${perms[$i]} $STAFF1
  72 
  73                 log_must restore_root_datasets
  74                 ((i += 1))
  75         done
  76 done
  77 
  78 log_pass "Verify privileged user can not use permissions properly when " \
  79         "delegation property is set off"