On Wed, Feb 17, 2021 at 12:36 AM Vivek Goyal <vgo...@redhat.com> wrote: > > fuse has an option FUSE_POSIX_ACL which needs to be opted in by fuse > server to enable posix acls. > > Add virtiofsd option "-o posix_acl/no_posix_acl" to let users enable/disable > posix acl support. By default it is disabled as of now.
If I read the code correctly, then no_posix_acl will still result in system.posix_acl_* xattr ops being passed through to virtiofsd, which will forward them to the underlying fs, resulting in posix acls appearing to work, but doing so incorrectly (i.e. no change from previous behavior). Possibly better would be to have three different modes of operation: 1) no option: default fall back to broken acl support for backward compat (this could be removed in the future) 2) no_posix_acl: really disable acl support 3) posix_acl: enable proper acl support Thanks, Miklos
