1515d7c92SRobert Watson /*- 22de14c39SRobert Watson * Copyright (c) 1999, 2000, 2001 Robert N. M. Watson 3515d7c92SRobert Watson * All rights reserved. 4515d7c92SRobert Watson * 5515d7c92SRobert Watson * Redistribution and use in source and binary forms, with or without 6515d7c92SRobert Watson * modification, are permitted provided that the following conditions 7515d7c92SRobert Watson * are met: 8515d7c92SRobert Watson * 1. Redistributions of source code must retain the above copyright 9515d7c92SRobert Watson * notice, this list of conditions and the following disclaimer. 10515d7c92SRobert Watson * 2. Redistributions in binary form must reproduce the above copyright 11515d7c92SRobert Watson * notice, this list of conditions and the following disclaimer in the 12515d7c92SRobert Watson * documentation and/or other materials provided with the distribution. 13515d7c92SRobert Watson * 14515d7c92SRobert Watson * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 15515d7c92SRobert Watson * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 16515d7c92SRobert Watson * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 17515d7c92SRobert Watson * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 18515d7c92SRobert Watson * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 19515d7c92SRobert Watson * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 20515d7c92SRobert Watson * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 21515d7c92SRobert Watson * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 22515d7c92SRobert Watson * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 23515d7c92SRobert Watson * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 24515d7c92SRobert Watson * SUCH DAMAGE. 25515d7c92SRobert Watson * 26515d7c92SRobert Watson * $FreeBSD$ 27515d7c92SRobert Watson */ 28515d7c92SRobert Watson /* 29515d7c92SRobert Watson * acl_get_file - syscall wrapper for retrieving ACL by filename 308f45e8c0SRobert Watson * acl_get_fd - syscall wrapper for retrieving access ACL by fd 318f45e8c0SRobert Watson * acl_get_fd_np - syscall wrapper for retrieving ACL by fd (non-POSIX) 329a227c57SChris D. Faulhaber * acl_get_perm_np() checks if a permission is in the specified 339a227c57SChris D. Faulhaber * permset (non-POSIX) 344bf60dfaSChris D. Faulhaber * acl_get_permset() returns the permission set in the ACL entry 354bf60dfaSChris D. Faulhaber * acl_get_qualifier() retrieves the qualifier of the tag from the ACL entry 364bf60dfaSChris D. Faulhaber * acl_get_tag_type() returns the tag type for the ACL entry entry_d 37515d7c92SRobert Watson */ 38515d7c92SRobert Watson 39515d7c92SRobert Watson #include <sys/types.h> 407bd44e92SThomas Moestl #include "namespace.h" 41515d7c92SRobert Watson #include <sys/acl.h> 427bd44e92SThomas Moestl #include "un-namespace.h" 434bf60dfaSChris D. Faulhaber 444bf60dfaSChris D. Faulhaber #include <errno.h> 45515d7c92SRobert Watson #include <stdlib.h> 464bf60dfaSChris D. Faulhaber #include <string.h> 47515d7c92SRobert Watson 48515d7c92SRobert Watson acl_t 49515d7c92SRobert Watson acl_get_file(const char *path_p, acl_type_t type) 50515d7c92SRobert Watson { 51515d7c92SRobert Watson struct acl *aclp; 52515d7c92SRobert Watson int error; 53515d7c92SRobert Watson 54d3352316SRobert Watson aclp = acl_init(ACL_MAX_ENTRIES); 55515d7c92SRobert Watson if (!aclp) { 56f0078215SRobert Watson return (NULL); 57515d7c92SRobert Watson } 58515d7c92SRobert Watson 59d3352316SRobert Watson error = __acl_get_file(path_p, type, aclp); 60515d7c92SRobert Watson if (error) { 61515d7c92SRobert Watson acl_free(aclp); 62f0078215SRobert Watson return (NULL); 63515d7c92SRobert Watson } 64515d7c92SRobert Watson 65515d7c92SRobert Watson return (aclp); 66515d7c92SRobert Watson } 67515d7c92SRobert Watson 688f45e8c0SRobert Watson acl_t 698f45e8c0SRobert Watson acl_get_fd(int fd) 708f45e8c0SRobert Watson { 718f45e8c0SRobert Watson struct acl *aclp; 728f45e8c0SRobert Watson int error; 738f45e8c0SRobert Watson 748f45e8c0SRobert Watson aclp = acl_init(ACL_MAX_ENTRIES); 758f45e8c0SRobert Watson if (!aclp) { 76f0078215SRobert Watson return (NULL); 778f45e8c0SRobert Watson } 788f45e8c0SRobert Watson 797bd44e92SThomas Moestl error = ___acl_get_fd(fd, ACL_TYPE_ACCESS, aclp); 808f45e8c0SRobert Watson if (error) { 818f45e8c0SRobert Watson acl_free(aclp); 82f0078215SRobert Watson return (NULL); 838f45e8c0SRobert Watson } 848f45e8c0SRobert Watson 858f45e8c0SRobert Watson return (aclp); 868f45e8c0SRobert Watson } 87515d7c92SRobert Watson 88515d7c92SRobert Watson acl_t 898f45e8c0SRobert Watson acl_get_fd_np(int fd, acl_type_t type) 90515d7c92SRobert Watson { 91515d7c92SRobert Watson struct acl *aclp; 92515d7c92SRobert Watson int error; 93515d7c92SRobert Watson 94d3352316SRobert Watson aclp = acl_init(ACL_MAX_ENTRIES); 95515d7c92SRobert Watson if (!aclp) { 96f0078215SRobert Watson return (NULL); 97515d7c92SRobert Watson } 98515d7c92SRobert Watson 997bd44e92SThomas Moestl error = ___acl_get_fd(fd, type, aclp); 100515d7c92SRobert Watson if (error) { 101515d7c92SRobert Watson acl_free(aclp); 102f0078215SRobert Watson return (NULL); 103515d7c92SRobert Watson } 104515d7c92SRobert Watson 105515d7c92SRobert Watson return (aclp); 106515d7c92SRobert Watson } 1074bf60dfaSChris D. Faulhaber 1084bf60dfaSChris D. Faulhaber int 1099a227c57SChris D. Faulhaber acl_get_perm_np(acl_permset_t permset_d, acl_perm_t perm) 1109a227c57SChris D. Faulhaber { 1119a227c57SChris D. Faulhaber 1129a227c57SChris D. Faulhaber switch(perm) { 1139a227c57SChris D. Faulhaber case ACL_READ: 1149a227c57SChris D. Faulhaber case ACL_WRITE: 1159a227c57SChris D. Faulhaber case ACL_EXECUTE: 1169a227c57SChris D. Faulhaber if (*permset_d & perm) 1179a227c57SChris D. Faulhaber return 1; 1189a227c57SChris D. Faulhaber break; 1199a227c57SChris D. Faulhaber default: 1209a227c57SChris D. Faulhaber errno = EINVAL; 1219a227c57SChris D. Faulhaber return -1; 1229a227c57SChris D. Faulhaber } 1239a227c57SChris D. Faulhaber 1249a227c57SChris D. Faulhaber return 0; 1259a227c57SChris D. Faulhaber } 1269a227c57SChris D. Faulhaber 1279a227c57SChris D. Faulhaber int 1284bf60dfaSChris D. Faulhaber acl_get_permset(acl_entry_t entry_d, acl_permset_t *permset_p) 1294bf60dfaSChris D. Faulhaber { 1304bf60dfaSChris D. Faulhaber 1314bf60dfaSChris D. Faulhaber if (!entry_d || !permset_p) { 1324bf60dfaSChris D. Faulhaber errno = EINVAL; 1334bf60dfaSChris D. Faulhaber return -1; 1344bf60dfaSChris D. Faulhaber } 1354bf60dfaSChris D. Faulhaber 1364bf60dfaSChris D. Faulhaber *permset_p = &entry_d->ae_perm; 1374bf60dfaSChris D. Faulhaber 1384bf60dfaSChris D. Faulhaber return 0; 1394bf60dfaSChris D. Faulhaber } 1404bf60dfaSChris D. Faulhaber 1414bf60dfaSChris D. Faulhaber void * 1424bf60dfaSChris D. Faulhaber acl_get_qualifier(acl_entry_t entry_d) 1434bf60dfaSChris D. Faulhaber { 1444bf60dfaSChris D. Faulhaber uid_t *retval; 1454bf60dfaSChris D. Faulhaber 1464bf60dfaSChris D. Faulhaber if (!entry_d) { 1474bf60dfaSChris D. Faulhaber errno = EINVAL; 1484bf60dfaSChris D. Faulhaber return NULL; 1494bf60dfaSChris D. Faulhaber } 1504bf60dfaSChris D. Faulhaber 1514bf60dfaSChris D. Faulhaber switch(entry_d->ae_tag) { 1524bf60dfaSChris D. Faulhaber case ACL_USER: 1534bf60dfaSChris D. Faulhaber case ACL_GROUP: 1544bf60dfaSChris D. Faulhaber retval = malloc(sizeof(uid_t)); 1554bf60dfaSChris D. Faulhaber if (retval) { 1564bf60dfaSChris D. Faulhaber *retval = entry_d->ae_id; 1574bf60dfaSChris D. Faulhaber return retval; 1584bf60dfaSChris D. Faulhaber } 1594bf60dfaSChris D. Faulhaber } 1604bf60dfaSChris D. Faulhaber 1614bf60dfaSChris D. Faulhaber errno = EINVAL; 1624bf60dfaSChris D. Faulhaber return NULL; 1634bf60dfaSChris D. Faulhaber } 1644bf60dfaSChris D. Faulhaber 1654bf60dfaSChris D. Faulhaber int 1664bf60dfaSChris D. Faulhaber acl_get_tag_type(acl_entry_t entry_d, acl_tag_t *tag_type_p) 1674bf60dfaSChris D. Faulhaber { 1684bf60dfaSChris D. Faulhaber 1694bf60dfaSChris D. Faulhaber if (!entry_d || !tag_type_p) { 1704bf60dfaSChris D. Faulhaber errno = EINVAL; 1714bf60dfaSChris D. Faulhaber return -1; 1724bf60dfaSChris D. Faulhaber } 1734bf60dfaSChris D. Faulhaber 1744bf60dfaSChris D. Faulhaber *tag_type_p = entry_d->ae_tag; 1754bf60dfaSChris D. Faulhaber 1764bf60dfaSChris D. Faulhaber return 0; 1774bf60dfaSChris D. Faulhaber } 178