On Wed, Sep 23, 2015 at 10:40:18PM +0200, Andreas Gruenbacher wrote: > 2015-09-23 22:33 GMT+02:00 J. Bruce Fields <bfields@xxxxxxxxxxxx>: > > The same could be said if there's a group-i-belong-to:rwx::allow entry, > > do we make that exception too? > > We cannot because that would be incorrect for all other group members. OK. So people have to learn how the group mask works anyway, and now they have to learn a special exception to that rule. I don't like having this exception. Or making the richacl->v4acl translation dependent on the owner. But I admit it's surprising to that an 0700 mask with "bfields:rwx::allow" ACL denies access to a bfields-owned file. --b. -- To unsubscribe from this list: send the line "unsubscribe linux-api" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html