Why does setfacl turn on the group execute permission on files even when specifying X?

jamieburchell

10/16/22, 9:24 PM

I'm seeing strange behaviour with setfacl setting the eXecute bit on the group permission for files in some situations, confirmed on CentOS 7.

As user root with unmask 0002:

mkdir foo
touch foo/bar
setfacl -Rdm u:jburchell:rwX foo
setfacl -Rm u:jburchell:rwX foo
touch foo/baz
ls -l foo

-rw-rw-r--+ bar
-rw-rw-r--+ baz

Now, this is where I'm seeing odd behaviour:

setfacl -Rdm u:user2:rwX foo
setfacl -Rm u:user2:rwX foo
ls -l foo

-rw-rw-r--+ bar
-rw-rwxr--+ baz # note the eXecute bit

It seems that the last set of setfacl commands "forget" that we specified capital X originally and not lowercase x. If I use the -n (don't recalculate mask) flag this behaviour does not happen.

Why does this happen, is it a bug?

0 + 0

linux

access-control-list

file-permissions

setfacl

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Why does setfacl turn on the group execute permission on files even when specifying X?

TH: เหตุใด setfacl จึงเปิดการอนุญาตดำเนินการกลุ่มในไฟล์แม้ว่าจะระบุ X ก็ตาม

RO: De ce setfacl pornește permisiunea de executare a grupului pe fișiere chiar și atunci când specifică X?

RU: Почему setfacl включает групповое разрешение на выполнение файлов даже при указании X?

VI: Tại sao setfacl bật quyền thực thi nhóm trên các tệp ngay cả khi chỉ định X?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.