From: Nickolai Zeldovich <kolya@mit.edu>
Date: Wed, 21 Aug 2002 16:54:34 +0000 (+0000)
Subject: STABLE12-allow-chown-on-storedata-20020820
X-Git-Tag: openafs-stable-1_2_7~51
X-Git-Url: https://git.michaelhowe.org/gitweb/?a=commitdiff_plain;h=3225e3329593288f3f4f516e2df9b1ee32dbffbf;p=packages%2Fo%2Fopenafs.git

STABLE12-allow-chown-on-storedata-20020820


Allow users with admin bits to store different user/group IDs
along with a StoreData call; they can already do so anyway by
using StoreStatus.  Fixes a spurious permission denied error
with arla clients.


(cherry picked from commit 847a5af3beea35af5f80078a8b24f01582f53824)
---

diff --git a/src/viced/afsfileprocs.c b/src/viced/afsfileprocs.c
index e35d7aba4..fe2721248 100644
--- a/src/viced/afsfileprocs.c
+++ b/src/viced/afsfileprocs.c
@@ -5530,8 +5530,14 @@ Check_PermissionRights(targetptr, client, rights, CallingRoutine, InStatus)
 	    }
 	    else {	/* store data or status */
 	      /* watch for chowns and chgrps */
-	      if (CHOWN(InStatus, targetptr) || CHGRP(InStatus, targetptr))
-		return(EPERM);      /* Was EACCES */
+	      if (CHOWN(InStatus, targetptr) || CHGRP(InStatus, targetptr)) {
+		if (VanillaUser (client)) 
+		  return(EPERM);	/* Was EACCES */
+		else
+		  osi_audit(PrivilegeEvent, 0,
+			    AUD_INT, (client ? client->ViceId : 0), 
+			    AUD_INT, CallingRoutine, AUD_END);
+	      }
 	      /* must be sysadmin to set suid/sgid bits */
 	      if ((InStatus->Mask & AFS_SETMODE) &&
 #ifdef AFS_NT40_ENV