From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from tb-mx1.topicbox.com (localhost.local [127.0.0.1]) by tb-mx1.topicbox.com (Postfix) with ESMTP id 01C5421700B9 for ; Thu, 5 Sep 2024 13:47:25 -0400 (EDT) (envelope-from sommerfeld@hamachi.org) Received: from tb-mx1.topicbox.com (localhost [127.0.0.1]) by tb-mx1.topicbox.com (Authentication Milter) with ESMTP id 669CD18188F; Thu, 5 Sep 2024 13:47:25 -0400 ARC-Seal: i=1; a=rsa-sha256; cv=none; d=topicbox.com; s=arcseal; t= 1725558445; b=o95dt79tXEA00gSVsqhGJ3hR2aprOtRj+TuFQJNwDamF3jNM/U 1BAzkLC+4ONWXIXU1OuVUCYrsMPYSMQoMqrc+cr4esOUVI08DFzKHSI5qPfDJeBm FLkluA3dnSLiqmfiopfhBuRFKmSmivNgQIhdJDxBUMKOjdRJEXhQ9EQfGakssSAi BNwhzJ8YDAFha8XuT1jRetPlTAIyQu+bIRyZcWlf21FfObk8Vy5IbO1Q7n7TU+mf b7BZiccafz82NFVjgrGhNPxS0q/FansLEE42JUidshllE/T8LwB6YX5r+ix9jwUq TrICctDMNhBpg5pNwku1hgjDTRENB8mjtXkA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=message-id:date:mime-version:to:subject:from :content-type:content-transfer-encoding; s=arcseal; t= 1725558445; bh=/kfISBIQm7YRozhOdMPWk02OMMcqB3GhXygYH6dnZlg=; b=g m2vGCBBBFouLI8a5HeBJeou2TBDNwemkZih2OPASpleor3R2QFbJttZz+YsiIeWP vNxTP0nhv3ijVs4cR2IgO1vJNbPRzZHk0+WUZm0kWun6Sf0LnQ4TvudlJpI8vdQr i7d6RBefJ7hQv5MqlV3fLiu9H6iUv22UNh8pX31Dv4u+zAPyiN+VPXIdXe5HYNB7 RDVvJiHRm7JYcaLBRvH50i+bNwL5zsS4arsr4dosOninGrVOzJyZxQ9uddpZ7r+Q +zd9uSNC2B4Bta7mhCEGFxGnebG6UrU20v2y5XqWf2RNrXmDbxKHPkN6G6pDhRUG erWTCAAqLhvAYvHyp8uLA== ARC-Authentication-Results: i=1; tb-mx1.topicbox.com; arc=none (no signatures found); bimi=none (No BIMI records found); dkim=pass (2048-bit rsa key sha256) header.d=hamachi.org header.i=@hamachi.org header.b=arrPVI8R header.a=rsa-sha256 header.s=hamachi-202409 x-bits=2048; dmarc=pass policy.published-domain-policy=reject policy.applied-disposition=none policy.evaluated-disposition=none (p=reject,d=none,d.eval=none) policy.policy-from=p header.from=hamachi.org; iprev=pass smtp.remote-ip=173.11.94.225 (the-governor.hamachi.org); spf=pass smtp.mailfrom=sommerfeld@hamachi.org smtp.helo=the-governor.hamachi.org; x-aligned-from=pass (Address match); x-me-sender=none; x-ptr=pass smtp.helo=the-governor.hamachi.org policy.ptr=the-governor.hamachi.org; x-return-mx=pass header.domain=hamachi.org policy.is_org=yes (MX Records found: the-governor.hamachi.org,smtp-backup-in.hamachi.org); x-return-mx=pass smtp.domain=hamachi.org policy.is_org=yes (MX Records found: the-governor.hamachi.org,smtp-backup-in.hamachi.org); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-AES256-GCM-SHA384 smtp.bits=256/256; x-vs=clean score=0 state=0 Authentication-Results: tb-mx1.topicbox.com; arc=none (no signatures found); bimi=none (No BIMI records found); dkim=pass (2048-bit rsa key sha256) header.d=hamachi.org header.i=@hamachi.org header.b=arrPVI8R header.a=rsa-sha256 header.s=hamachi-202409 x-bits=2048; dmarc=pass policy.published-domain-policy=reject policy.applied-disposition=none policy.evaluated-disposition=none (p=reject,d=none,d.eval=none) policy.policy-from=p header.from=hamachi.org; iprev=pass smtp.remote-ip=173.11.94.225 (the-governor.hamachi.org); spf=pass smtp.mailfrom=sommerfeld@hamachi.org smtp.helo=the-governor.hamachi.org; x-aligned-from=pass (Address match); x-me-sender=none; x-ptr=pass smtp.helo=the-governor.hamachi.org policy.ptr=the-governor.hamachi.org; x-return-mx=pass header.domain=hamachi.org policy.is_org=yes (MX Records found: the-governor.hamachi.org,smtp-backup-in.hamachi.org); x-return-mx=pass smtp.domain=hamachi.org policy.is_org=yes (MX Records found: the-governor.hamachi.org,smtp-backup-in.hamachi.org); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-AES256-GCM-SHA384 smtp.bits=256/256; x-vs=clean score=0 state=0 X-ME-VSCause: gggruggvucftvghtrhhoucdtuddrgeeftddrudehledguddujecutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpggftfghnshhusghstghrihgsvgdp uffrtefokffrpgfnqfghnecuuegrihhlohhuthemuceftddtnecunecujfgurhepkfffgg gfvffuhfgtgfesthejredttddvjeenucfhrhhomhepuehilhhlucfuohhmmhgvrhhfvghl ugcuoehsohhmmhgvrhhfvghlugeshhgrmhgrtghhihdrohhrgheqnecuggftrfgrthhtvg hrnhepuedukeeuieeuheeiieduleekteevleeifeegudehtefhueffhfduledugfeugfeu necuffhomhgrihhnpehilhhluhhmohhsrdhorhhgnecukfhppedujeefrdduuddrleegrd dvvdehpddviedtfeemfedtvdegmegvtdehmegrsgdttdemmeefnecuvehluhhsthgvrhfu ihiivgeptdenucfrrghrrghmpehinhgvthepudejfedruddurdelgedrvddvhedphhgvlh hopehthhgvqdhgohhvvghrnhhorhdrhhgrmhgrtghhihdrohhrghdpmhgrihhlfhhrohhm peeoshhomhhmvghrfhgvlhgusehhrghmrggthhhirdhorhhgqedpnhgspghrtghpthhtoh epuddprhgtphhtthhopeeouggvvhgvlhhophgvrheslhhishhtshdrihhllhhumhhoshdr ohhrgheq X-ME-VSScore: 0 X-ME-VSCategory: clean Received-SPF: pass (hamachi.org: 173.11.94.225 is authorized to use 'sommerfeld@hamachi.org' in 'mfrom' identity (mechanism 'mx' matched)) receiver=tb-mx1.topicbox.com; identity=mailfrom; envelope-from="sommerfeld@hamachi.org"; helo=the-governor.hamachi.org; client-ip=173.11.94.225 Received: from the-governor.hamachi.org (the-governor.hamachi.org [173.11.94.225]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by tb-mx1.topicbox.com (Postfix) with ESMTPS for ; Thu, 5 Sep 2024 13:47:25 -0400 (EDT) (envelope-from sommerfeld@hamachi.org) Received: from [IPV6:2603:3024:e05:ab00::3] (hydra.hamachi.org [IPv6:2603:3024:e05:ab00::3]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) (Authenticated sender: sommerfeld) by the-governor.hamachi.org (Postfix) with ESMTPSA id 6A53F3944; Thu, 5 Sep 2024 10:47:22 -0700 (PDT) Authentication-Results: the-governor.hamachi.org; auth=pass; dkim=pass (2048-bit rsa key sha256) header.d=hamachi.org header.i=@hamachi.org header.b=arrPVI8R header.a=rsa-sha256 header.s=hamachi-202409; x-aligned-from=pass (Address match); x-local-user=pass; x-spam=pass score=-2.00 required=5.00 X-Spam-hits: BAYES_00,DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,NO_RECEIVED,NO_RELAYS, T_SCC_BODY_TEXT_LINE X-Spam-Status: No, score=-2.00 required=5.00 X-Spam-score: -2.00 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hamachi.org; s=hamachi-202409; t=1725558442; bh=/kfISBIQm7YRozhOdMPWk02OMMcqB3GhXygYH6dnZlg=; h=Date:To:Subject:From; b=arrPVI8R6b2T6uodVZNKZerE85K0BDJSXLbw7TtSJvdwOWXKcf3HaLXZ4Z4d1dYBi 8/d8OxU2E+7TfBWetmXClcFke9SU8noWdOIxlcqoM0VQhJywhTBCBPnAvsyRlBBnNK NvUlLoq0kRk6wEdmv/FOLaoss3WEZp47ca4h9an9YwXL5gVJNJY9fh2f8/BtXyU2jD vhZvS1jlNnmeEH/Hnrw01uWjovHkeKdlKa6fqz07b0NVn/KBsadWJDCp044YfZPr9f Gq3ikNaV2A8ICXPuWPvdU64M1XJPoFRdtXPkrmjjOicqplG0eh/rhulA5HtaH7KS5o +LucVQED3Y/KA== Message-ID: <37469c75-f242-469d-a845-a67bc394c168@hamachi.org> Date: Thu, 5 Sep 2024 10:47:21 -0700 MIME-Version: 1.0 User-Agent: Mozilla Thunderbird To: developer@lists.illumos.org Subject: [REVIEW] 16546 The find command should be able to find SIDs From: Bill Sommerfeld Content-Language: en-US Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Topicbox-Policy-Reasoning: allow: sender is a member Topicbox-Message-UUID: ec7142ae-6bae-11ef-aadd-cb62ffa449a8 Issue: https://www.illumos.org/issues/16546 CR: https://code.illumos.org/c/illumos-gate/+/3469 Diff: https://code.illumos.org/~diff/ebe5890f15cdd1df3f68cd9e873a44f49905468a Last year I noticed a few odd SID-based file ownerships and acls in an smb-exported filesystem. To help clean it up, I implemented four new predicates/options for the find command, which let it select files by SID; the implementation is pretty simple (map the SID to an ephemeral ID and map the predicate to the corresponding uid/gid based predicate). I sent this out for review a few months ago, got some feedback in the bugreport and revised it to add an additional predicate (-sidacl), but otherwise got no review feedback. So I'm asking again. I'd like to integrate this into illumos-gate. Thanks in advance for your review. - Bill