$ | >

Add Posix ACL support to WSL and for drvfs mounts derive them from Windows ACL

Add Posix ACL support to WSL and for drvfs mounts derive them from Windows ACL. It is possible to map Posix ACLs to Windows ACLs with some limitations. That would greatly enhance interoperability between windows applications and wsl applications. Using metadata to save posix permissions on drvfs mounts greatly reduces interoperability, since windows applications are not aware of posix permissions saved as metadata.

References:
https://www.usenix.org/legacy/events/usenix03/tech/freenix03/full_papers/gruenbacher/gruenbacher_html/main.html

http://www.citi.umich.edu/u/marius/draft-eriksen-nfsv4-acl-01.txt

25 votes
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    nkef shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    5 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • Agowa awoga commented  ·   ·  Flag as inappropriate

        Can't wait for this to become available. Currently i cannot run ansible-vault, because all files on the windows mapped drive have the executable flag set and ansible-vault tries to execute the password file therefore instead of just reading it...

      • WSLUser commented  ·   ·  Flag as inappropriate

        There is mapping now between them that will be available in Spring Creator's Update.

      • blami commented  ·   ·  Flag as inappropriate

        I think there's similar logic in Cygwin that also has decoupled users. Maybe we can just say inside WSL 'oh user1 is Doman\User1' and that would solve that issue. Wouldn't mind doing that extra step.

      • WSLUser commented  ·   ·  Flag as inappropriate

        Quite a bit of changes since this UserVoice was created. Suffice to say, with 17093, this is mostly completed. What's left is the implementation of Ancillary data such as (`SCM_RIGHTS`) and (‘SCM_CREDENTIALS`) on AF_Unix for Windows. There is a uservoice that covers adding the rest of AF_Unix features here: https://wpdev.uservoice.com/forums/110705-universal-windows-platform/suggestions/33247168-add-sock-seqpacket-and-sock-dgram-to-af-unix
        Upvote this if you voted for this request.

      • Anonymous commented  ·   ·  Flag as inappropriate

        That would require some way of coupling windows users and groups with the WSL ones. They are independent now

      Feedback and Knowledge Base