1515d7c92SRobert Watson /*- 22de14c39SRobert Watson * Copyright (c) 1999, 2000, 2001 Robert N. M. Watson 3515d7c92SRobert Watson * All rights reserved. 4515d7c92SRobert Watson * 5515d7c92SRobert Watson * Redistribution and use in source and binary forms, with or without 6515d7c92SRobert Watson * modification, are permitted provided that the following conditions 7515d7c92SRobert Watson * are met: 8515d7c92SRobert Watson * 1. Redistributions of source code must retain the above copyright 9515d7c92SRobert Watson * notice, this list of conditions and the following disclaimer. 10515d7c92SRobert Watson * 2. Redistributions in binary form must reproduce the above copyright 11515d7c92SRobert Watson * notice, this list of conditions and the following disclaimer in the 12515d7c92SRobert Watson * documentation and/or other materials provided with the distribution. 13515d7c92SRobert Watson * 14515d7c92SRobert Watson * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 15515d7c92SRobert Watson * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 16515d7c92SRobert Watson * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 17515d7c92SRobert Watson * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 18515d7c92SRobert Watson * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 19515d7c92SRobert Watson * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 20515d7c92SRobert Watson * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 21515d7c92SRobert Watson * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 22515d7c92SRobert Watson * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 23515d7c92SRobert Watson * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 24515d7c92SRobert Watson * SUCH DAMAGE. 25515d7c92SRobert Watson * 26515d7c92SRobert Watson * $FreeBSD$ 27515d7c92SRobert Watson */ 28515d7c92SRobert Watson /* 29515d7c92SRobert Watson * acl_get_file - syscall wrapper for retrieving ACL by filename 308f45e8c0SRobert Watson * acl_get_fd - syscall wrapper for retrieving access ACL by fd 318f45e8c0SRobert Watson * acl_get_fd_np - syscall wrapper for retrieving ACL by fd (non-POSIX) 329a227c57SChris D. Faulhaber * acl_get_perm_np() checks if a permission is in the specified 339a227c57SChris D. Faulhaber * permset (non-POSIX) 344bf60dfaSChris D. Faulhaber * acl_get_permset() returns the permission set in the ACL entry 354bf60dfaSChris D. Faulhaber * acl_get_qualifier() retrieves the qualifier of the tag from the ACL entry 364bf60dfaSChris D. Faulhaber * acl_get_tag_type() returns the tag type for the ACL entry entry_d 37515d7c92SRobert Watson */ 38515d7c92SRobert Watson 39515d7c92SRobert Watson #include <sys/types.h> 407bd44e92SThomas Moestl #include "namespace.h" 41515d7c92SRobert Watson #include <sys/acl.h> 427bd44e92SThomas Moestl #include "un-namespace.h" 434bf60dfaSChris D. Faulhaber 444bf60dfaSChris D. Faulhaber #include <errno.h> 45515d7c92SRobert Watson #include <stdlib.h> 464bf60dfaSChris D. Faulhaber #include <string.h> 47515d7c92SRobert Watson 48515d7c92SRobert Watson acl_t 49515d7c92SRobert Watson acl_get_file(const char *path_p, acl_type_t type) 50515d7c92SRobert Watson { 510f626307SChris D. Faulhaber acl_t aclp; 52515d7c92SRobert Watson int error; 53515d7c92SRobert Watson 54d3352316SRobert Watson aclp = acl_init(ACL_MAX_ENTRIES); 559fd46b02SChris D. Faulhaber if (aclp == NULL) 56f0078215SRobert Watson return (NULL); 57515d7c92SRobert Watson 580f626307SChris D. Faulhaber error = __acl_get_file(path_p, type, &aclp->ats_acl); 59515d7c92SRobert Watson if (error) { 60515d7c92SRobert Watson acl_free(aclp); 61f0078215SRobert Watson return (NULL); 62515d7c92SRobert Watson } 63515d7c92SRobert Watson 64515d7c92SRobert Watson return (aclp); 65515d7c92SRobert Watson } 66515d7c92SRobert Watson 678f45e8c0SRobert Watson acl_t 688f45e8c0SRobert Watson acl_get_fd(int fd) 698f45e8c0SRobert Watson { 700f626307SChris D. Faulhaber acl_t aclp; 718f45e8c0SRobert Watson int error; 728f45e8c0SRobert Watson 738f45e8c0SRobert Watson aclp = acl_init(ACL_MAX_ENTRIES); 749fd46b02SChris D. Faulhaber if (aclp == NULL) 75f0078215SRobert Watson return (NULL); 768f45e8c0SRobert Watson 770f626307SChris D. Faulhaber error = ___acl_get_fd(fd, ACL_TYPE_ACCESS, &aclp->ats_acl); 788f45e8c0SRobert Watson if (error) { 798f45e8c0SRobert Watson acl_free(aclp); 80f0078215SRobert Watson return (NULL); 818f45e8c0SRobert Watson } 828f45e8c0SRobert Watson 838f45e8c0SRobert Watson return (aclp); 848f45e8c0SRobert Watson } 85515d7c92SRobert Watson 86515d7c92SRobert Watson acl_t 878f45e8c0SRobert Watson acl_get_fd_np(int fd, acl_type_t type) 88515d7c92SRobert Watson { 890f626307SChris D. Faulhaber acl_t aclp; 90515d7c92SRobert Watson int error; 91515d7c92SRobert Watson 92d3352316SRobert Watson aclp = acl_init(ACL_MAX_ENTRIES); 939fd46b02SChris D. Faulhaber if (aclp == NULL) 94f0078215SRobert Watson return (NULL); 95515d7c92SRobert Watson 960f626307SChris D. Faulhaber error = ___acl_get_fd(fd, type, &aclp->ats_acl); 97515d7c92SRobert Watson if (error) { 98515d7c92SRobert Watson acl_free(aclp); 99f0078215SRobert Watson return (NULL); 100515d7c92SRobert Watson } 101515d7c92SRobert Watson 102515d7c92SRobert Watson return (aclp); 103515d7c92SRobert Watson } 1044bf60dfaSChris D. Faulhaber 1054bf60dfaSChris D. Faulhaber int 1069a227c57SChris D. Faulhaber acl_get_perm_np(acl_permset_t permset_d, acl_perm_t perm) 1079a227c57SChris D. Faulhaber { 1089a227c57SChris D. Faulhaber 1099fd46b02SChris D. Faulhaber if (permset_d == NULL) { 1100f626307SChris D. Faulhaber errno = EINVAL; 1119fd46b02SChris D. Faulhaber return (-1); 1120f626307SChris D. Faulhaber } 1130f626307SChris D. Faulhaber 1149a227c57SChris D. Faulhaber switch(perm) { 1159a227c57SChris D. Faulhaber case ACL_READ: 1169a227c57SChris D. Faulhaber case ACL_WRITE: 1179a227c57SChris D. Faulhaber case ACL_EXECUTE: 1189a227c57SChris D. Faulhaber if (*permset_d & perm) 1199fd46b02SChris D. Faulhaber return (1); 1209a227c57SChris D. Faulhaber break; 1219a227c57SChris D. Faulhaber default: 1229a227c57SChris D. Faulhaber errno = EINVAL; 1239fd46b02SChris D. Faulhaber return (-1); 1249a227c57SChris D. Faulhaber } 1259a227c57SChris D. Faulhaber 1269fd46b02SChris D. Faulhaber return (0); 1279a227c57SChris D. Faulhaber } 1289a227c57SChris D. Faulhaber 1290f626307SChris D. Faulhaber /* 1300f626307SChris D. Faulhaber * acl_get_permset() (23.4.17): return via permset_p a descriptor to 1310f626307SChris D. Faulhaber * the permission set in the ACL entry entry_d. 1320f626307SChris D. Faulhaber */ 1339a227c57SChris D. Faulhaber int 1344bf60dfaSChris D. Faulhaber acl_get_permset(acl_entry_t entry_d, acl_permset_t *permset_p) 1354bf60dfaSChris D. Faulhaber { 1364bf60dfaSChris D. Faulhaber 1379fd46b02SChris D. Faulhaber if (entry_d == NULL || permset_p == NULL) { 1384bf60dfaSChris D. Faulhaber errno = EINVAL; 1399fd46b02SChris D. Faulhaber return (-1); 1404bf60dfaSChris D. Faulhaber } 1414bf60dfaSChris D. Faulhaber 1424bf60dfaSChris D. Faulhaber *permset_p = &entry_d->ae_perm; 1434bf60dfaSChris D. Faulhaber 1449fd46b02SChris D. Faulhaber return (0); 1454bf60dfaSChris D. Faulhaber } 1464bf60dfaSChris D. Faulhaber 1470f626307SChris D. Faulhaber /* 1480f626307SChris D. Faulhaber * acl_get_qualifier() (23.4.18): retrieve the qualifier of the tag 1490f626307SChris D. Faulhaber * for the ACL entry entry_d. 1500f626307SChris D. Faulhaber */ 1514bf60dfaSChris D. Faulhaber void * 1524bf60dfaSChris D. Faulhaber acl_get_qualifier(acl_entry_t entry_d) 1534bf60dfaSChris D. Faulhaber { 1544bf60dfaSChris D. Faulhaber uid_t *retval; 1554bf60dfaSChris D. Faulhaber 1569fd46b02SChris D. Faulhaber if (entry_d == NULL) { 1574bf60dfaSChris D. Faulhaber errno = EINVAL; 1589fd46b02SChris D. Faulhaber return (NULL); 1594bf60dfaSChris D. Faulhaber } 1604bf60dfaSChris D. Faulhaber 1614bf60dfaSChris D. Faulhaber switch(entry_d->ae_tag) { 1624bf60dfaSChris D. Faulhaber case ACL_USER: 1634bf60dfaSChris D. Faulhaber case ACL_GROUP: 1644bf60dfaSChris D. Faulhaber retval = malloc(sizeof(uid_t)); 1659fd46b02SChris D. Faulhaber if (retval == NULL) 1669fd46b02SChris D. Faulhaber return (NULL); 1674bf60dfaSChris D. Faulhaber *retval = entry_d->ae_id; 1689fd46b02SChris D. Faulhaber return (retval); 1694bf60dfaSChris D. Faulhaber } 1704bf60dfaSChris D. Faulhaber 1714bf60dfaSChris D. Faulhaber errno = EINVAL; 1729fd46b02SChris D. Faulhaber return (NULL); 1734bf60dfaSChris D. Faulhaber } 1744bf60dfaSChris D. Faulhaber 1750f626307SChris D. Faulhaber /* 1760f626307SChris D. Faulhaber * acl_get_tag_type() (23.4.19): return the tag type for the ACL 1770f626307SChris D. Faulhaber * entry entry_p. 1780f626307SChris D. Faulhaber */ 1794bf60dfaSChris D. Faulhaber int 1804bf60dfaSChris D. Faulhaber acl_get_tag_type(acl_entry_t entry_d, acl_tag_t *tag_type_p) 1814bf60dfaSChris D. Faulhaber { 1824bf60dfaSChris D. Faulhaber 1839fd46b02SChris D. Faulhaber if (entry_d == NULL || tag_type_p == NULL) { 1844bf60dfaSChris D. Faulhaber errno = EINVAL; 1859fd46b02SChris D. Faulhaber return (-1); 1864bf60dfaSChris D. Faulhaber } 1874bf60dfaSChris D. Faulhaber 1884bf60dfaSChris D. Faulhaber *tag_type_p = entry_d->ae_tag; 1894bf60dfaSChris D. Faulhaber 1909fd46b02SChris D. Faulhaber return (0); 1914bf60dfaSChris D. Faulhaber } 192