xref: /freebsd/lib/libc/posix1e/acl_valid.c (revision a889d1fb766450bff9b27c3bccfe18fc39cd753d) 
1515d7c92SRobert Watson /*-
2515d7c92SRobert Watson  * Copyright (c) 1999 Robert N. M. Watson
3515d7c92SRobert Watson  * All rights reserved.
4515d7c92SRobert Watson  *
5515d7c92SRobert Watson  * Redistribution and use in source and binary forms, with or without
6515d7c92SRobert Watson  * modification, are permitted provided that the following conditions
7515d7c92SRobert Watson  * are met:
8515d7c92SRobert Watson  * 1. Redistributions of source code must retain the above copyright
9515d7c92SRobert Watson  *    notice, this list of conditions and the following disclaimer.
10515d7c92SRobert Watson  * 2. Redistributions in binary form must reproduce the above copyright
11515d7c92SRobert Watson  *    notice, this list of conditions and the following disclaimer in the
12515d7c92SRobert Watson  *    documentation and/or other materials provided with the distribution.
13515d7c92SRobert Watson  *
14515d7c92SRobert Watson  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
15515d7c92SRobert Watson  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
16515d7c92SRobert Watson  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
17515d7c92SRobert Watson  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
18515d7c92SRobert Watson  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
19515d7c92SRobert Watson  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
20515d7c92SRobert Watson  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
21515d7c92SRobert Watson  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
22515d7c92SRobert Watson  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
23515d7c92SRobert Watson  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
24515d7c92SRobert Watson  * SUCH DAMAGE.
25515d7c92SRobert Watson  *
26515d7c92SRobert Watson  *	$FreeBSD$
27515d7c92SRobert Watson  */
28515d7c92SRobert Watson /*
29515d7c92SRobert Watson  * acl_valid -- POSIX.1e ACL check routine
30515d7c92SRobert Watson  */
31515d7c92SRobert Watson 
32515d7c92SRobert Watson #include <sys/types.h>
33515d7c92SRobert Watson #include <sys/acl.h>
34515d7c92SRobert Watson #include <sys/errno.h>
35515d7c92SRobert Watson 
36515d7c92SRobert Watson #include "acl_support.h"
37515d7c92SRobert Watson 
38515d7c92SRobert Watson /*
39515d7c92SRobert Watson  * acl_valid: accepts an ACL, returns 0 on valid ACL, -1 for invalid,
40515d7c92SRobert Watson  * and errno set to EINVAL.
41515d7c92SRobert Watson  *
42515d7c92SRobert Watson  * Implemented by calling the acl_check routine in acl_support, which
43515d7c92SRobert Watson  * requires ordering.  We call acl_support's acl_sort to make this
44a889d1fbSRobert Watson  * true.  POSIX.1e allows acl_valid() to reorder the ACL as it sees fit.
45515d7c92SRobert Watson  *
46515d7c92SRobert Watson  * This call is deprecated, as it doesn't ask whether the ACL is valid
47a889d1fbSRobert Watson  * for a particular target.  However, this call is standardized, unlike
48a889d1fbSRobert Watson  * the other two forms.
49515d7c92SRobert Watson  */
50515d7c92SRobert Watson int
51515d7c92SRobert Watson acl_valid(acl_t acl)
52515d7c92SRobert Watson {
53515d7c92SRobert Watson 	int	error;
54515d7c92SRobert Watson 
55515d7c92SRobert Watson 	acl_sort(acl);
56515d7c92SRobert Watson 	error = acl_check(acl);
57515d7c92SRobert Watson 	if (error) {
58515d7c92SRobert Watson 		errno = error;
59515d7c92SRobert Watson 		return (-1);
60515d7c92SRobert Watson 	} else {
61515d7c92SRobert Watson 		return (0);
62515d7c92SRobert Watson 	}
63515d7c92SRobert Watson }
64515d7c92SRobert Watson 
65515d7c92SRobert Watson 
66515d7c92SRobert Watson int
67a889d1fbSRobert Watson acl_valid_file_np(const char *pathp, acl_type_t type, acl_t acl)
68515d7c92SRobert Watson {
69515d7c92SRobert Watson 	int	error;
70515d7c92SRobert Watson 
718f45e8c0SRobert Watson 	if (acl_posix1e(acl, type)) {
72515d7c92SRobert Watson 		error = acl_sort(acl);
73515d7c92SRobert Watson 		if (error) {
74515d7c92SRobert Watson 			errno = error;
75515d7c92SRobert Watson 			return (-1);
76515d7c92SRobert Watson 		}
77515d7c92SRobert Watson 	}
78515d7c92SRobert Watson 
79d3352316SRobert Watson 	return (__acl_aclcheck_file(pathp, type, acl));
80515d7c92SRobert Watson }
81515d7c92SRobert Watson 
82515d7c92SRobert Watson 
83515d7c92SRobert Watson int
84a889d1fbSRobert Watson acl_valid_fd_np(int fd, acl_type_t type, acl_t acl)
85515d7c92SRobert Watson {
86515d7c92SRobert Watson 	int	error;
87515d7c92SRobert Watson 
888f45e8c0SRobert Watson 	if (acl_posix1e(acl, type)) {
89515d7c92SRobert Watson 		error = acl_sort(acl);
90515d7c92SRobert Watson 		if (error) {
91515d7c92SRobert Watson 			errno = error;
92515d7c92SRobert Watson 			return (-1);
93515d7c92SRobert Watson 		}
94515d7c92SRobert Watson 	}
95515d7c92SRobert Watson 
96d3352316SRobert Watson 	return (__acl_aclcheck_fd(fd, type, acl));
97515d7c92SRobert Watson }
98