xref: /illumos-gate/usr/src/cmd/getfacl/getfacl.c (revision 5422785d352a2bb398daceab3d1898a8aa64d006)
1 /*
2  * CDDL HEADER START
3  *
4  * The contents of this file are subject to the terms of the
5  * Common Development and Distribution License (the "License").
6  * You may not use this file except in compliance with the License.
7  *
8  * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9  * or http://www.opensolaris.org/os/licensing.
10  * See the License for the specific language governing permissions
11  * and limitations under the License.
12  *
13  * When distributing Covered Code, include this CDDL HEADER in each
14  * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15  * If applicable, add the following below this CDDL HEADER, with the
16  * fields enclosed by brackets "[]" replaced with your own identifying
17  * information: Portions Copyright [yyyy] [name of copyright owner]
18  *
19  * CDDL HEADER END
20  */
21 /*
22  * Copyright 2007 Sun Microsystems, Inc.  All rights reserved.
23  * Use is subject to license terms.
24  */
25 
26 #pragma ident	"%Z%%M%	%I%	%E% SMI"
27 
28 #ifndef lint
29 static char sccsid[] = "%Z%%M%	%I%	%E% SMI";
30 #endif
31 
32 /*
33  * getfacl [-ad] file ...
34  * This command displays discretionary information for a file or files.
35  * display format:
36  *	# file: filename
37  *	# owner: uid
38  *	# group: gid
39  *	user::perm
40  *	user:uid:perm
41  *	group::perm
42  *	group:gid:perm
43  *	mask:perm
44  *	other:perm
45  *	default:user::perm
46  *	default:user:uid:perm
47  *	default:group::perm
48  *	default:group:gid:perm
49  *	default:mask:perm
50  *	default:other:perm
51  */
52 
53 #include <stdlib.h>
54 #include <stdio.h>
55 #include <pwd.h>
56 #include <grp.h>
57 #include <locale.h>
58 #include <sys/acl.h>
59 #include <errno.h>
60 
61 static char	*pruname(uid_t);
62 static char	*prgname(gid_t);
63 static char	*display(int);
64 static void	usage();
65 
66 
67 int
68 main(int argc, char *argv[])
69 {
70 	int		c;
71 	int		aflag = 0;
72 	int		dflag = 0;
73 	int		errflag = 0;
74 	int		savecnt;
75 	int		aclcnt;
76 	int		mask;
77 	aclent_t	*aclp;
78 	aclent_t	*tp;
79 	char		*permp;
80 
81 	(void) setlocale(LC_ALL, "");
82 	(void) textdomain(TEXT_DOMAIN);
83 
84 	if (argc < 2)
85 		usage();
86 
87 	while ((c = getopt(argc, argv, "ad")) != EOF) {
88 		switch (c) {
89 		case 'a':
90 			aflag++;
91 			break;
92 		case 'd':
93 			dflag++;
94 			break;
95 		case '?':
96 			errflag++;
97 			break;
98 		}
99 	}
100 	if (errflag)
101 		usage();
102 
103 	if (optind >= argc)
104 		usage();
105 
106 	for (; optind < argc; optind++) {
107 		register char *filep;
108 
109 		filep = argv[optind];
110 
111 		/* Get ACL info of the files */
112 		errno = 0;
113 		if ((aclcnt = acl(filep, GETACLCNT, 0, NULL)) < 0) {
114 			if (errno == ENOSYS) {
115 				(void) fprintf(stderr,
116 				    gettext("File system doesn't support "
117 				    "aclent_t style ACL's.\n"
118 				    "See acl(5) for more information on "
119 				    "Solaris ACL support.\n"));
120 				exit(2);
121 			}
122 			perror(filep);
123 			exit(2);
124 		}
125 		if (aclcnt < MIN_ACL_ENTRIES) {
126 			(void) fprintf(stderr,
127 			    gettext("%d: acl count too small from %s\n"),
128 			    aclcnt, filep);
129 			exit(2);
130 		}
131 
132 		if ((aclp = (aclent_t *)malloc(sizeof (aclent_t) * aclcnt))
133 		    == NULL) {
134 			(void) fprintf(stderr,
135 			    gettext("Insufficient memory\n"));
136 			exit(1);
137 		}
138 
139 		errno = 0;
140 		if (acl(filep, GETACL, aclcnt, aclp) < 0) {
141 			perror(filep);
142 			exit(2);
143 		}
144 
145 		/* display ACL: assume it is sorted. */
146 		(void) printf("\n# file: %s\n", filep);
147 		savecnt = aclcnt;
148 		for (tp = aclp; aclcnt--; tp++) {
149 			if (tp->a_type == USER_OBJ)
150 				(void) printf("# owner: %s\n",
151 				    pruname(tp->a_id));
152 			if (tp->a_type == GROUP_OBJ)
153 				(void) printf("# group: %s\n",
154 				    prgname(tp->a_id));
155 			if (tp->a_type == CLASS_OBJ)
156 				mask = tp->a_perm;
157 		}
158 		aclcnt = savecnt;
159 		for (tp = aclp; aclcnt--; tp++) {
160 			switch (tp->a_type) {
161 			case USER:
162 				if (!dflag) {
163 					permp = display(tp->a_perm);
164 					(void) printf("user:%s:%s\t\t",
165 					    pruname(tp->a_id), permp);
166 					free(permp);
167 					permp = display(tp->a_perm & mask);
168 					(void) printf(
169 					    "#effective:%s\n", permp);
170 					free(permp);
171 				}
172 				break;
173 			case USER_OBJ:
174 				if (!dflag) {
175 					/* no need to display uid */
176 					permp = display(tp->a_perm);
177 					(void) printf("user::%s\n", permp);
178 					free(permp);
179 				}
180 				break;
181 			case GROUP:
182 				if (!dflag) {
183 					permp = display(tp->a_perm);
184 					(void) printf("group:%s:%s\t\t",
185 					    prgname(tp->a_id), permp);
186 					free(permp);
187 					permp = display(tp->a_perm & mask);
188 					(void) printf(
189 					    "#effective:%s\n", permp);
190 					free(permp);
191 				}
192 				break;
193 			case GROUP_OBJ:
194 				if (!dflag) {
195 					permp = display(tp->a_perm);
196 					(void) printf("group::%s\t\t", permp);
197 					free(permp);
198 					permp = display(tp->a_perm & mask);
199 					(void) printf(
200 					    "#effective:%s\n", permp);
201 					free(permp);
202 				}
203 				break;
204 			case CLASS_OBJ:
205 				if (!dflag) {
206 					permp = display(tp->a_perm);
207 					(void) printf("mask:%s\n", permp);
208 					free(permp);
209 				}
210 				break;
211 			case OTHER_OBJ:
212 				if (!dflag) {
213 					permp = display(tp->a_perm);
214 					(void) printf("other:%s\n", permp);
215 					free(permp);
216 				}
217 				break;
218 			case DEF_USER:
219 				if (!aflag) {
220 					permp = display(tp->a_perm);
221 					(void) printf("default:user:%s:%s\n",
222 					    pruname(tp->a_id), permp);
223 					free(permp);
224 				}
225 				break;
226 			case DEF_USER_OBJ:
227 				if (!aflag) {
228 					permp = display(tp->a_perm);
229 					(void) printf("default:user::%s\n",
230 					    permp);
231 					free(permp);
232 				}
233 				break;
234 			case DEF_GROUP:
235 				if (!aflag) {
236 					permp = display(tp->a_perm);
237 					(void) printf("default:group:%s:%s\n",
238 					    prgname(tp->a_id), permp);
239 					free(permp);
240 				}
241 				break;
242 			case DEF_GROUP_OBJ:
243 				if (!aflag) {
244 					permp = display(tp->a_perm);
245 					(void) printf("default:group::%s\n",
246 					    permp);
247 					free(permp);
248 				}
249 				break;
250 			case DEF_CLASS_OBJ:
251 				if (!aflag) {
252 					permp = display(tp->a_perm);
253 					(void) printf("default:mask:%s\n",
254 					    permp);
255 					free(permp);
256 				}
257 				break;
258 			case DEF_OTHER_OBJ:
259 				if (!aflag) {
260 					permp = display(tp->a_perm);
261 					(void) printf("default:other:%s\n",
262 					    permp);
263 					free(permp);
264 				}
265 				break;
266 			default:
267 				(void) fprintf(stderr,
268 				    gettext("unrecognized entry\n"));
269 				break;
270 			}
271 		}
272 		free(aclp);
273 	}
274 	return (0);
275 }
276 
277 static char *
278 display(int perm)
279 {
280 	char	*buf;
281 
282 	buf = malloc(4);
283 	if (buf == NULL) {
284 		(void) fprintf(stderr, gettext("Insufficient memory\n"));
285 		exit(1);
286 	}
287 
288 	if (perm & 4)
289 		buf[0] = 'r';
290 	else
291 		buf[0] = '-';
292 	if (perm & 2)
293 		buf[1] = 'w';
294 	else
295 		buf[1] = '-';
296 	if (perm & 1)
297 		buf[2] = 'x';
298 	else
299 		buf[2] = '-';
300 	buf[3] = '\0';
301 	return (buf);
302 }
303 
304 static char *
305 pruname(uid_t uid)
306 {
307 	struct passwd	*passwdp;
308 	static char	uidp[10];	/* big enough */
309 
310 	passwdp = getpwuid(uid);
311 	if (passwdp == (struct passwd *)NULL) {
312 		/* could not get passwd information: display uid instead */
313 		(void) sprintf(uidp, "%u", uid);
314 		return (uidp);
315 	} else
316 		return (passwdp->pw_name);
317 }
318 
319 static char *
320 prgname(gid_t gid)
321 {
322 	struct group	*groupp;
323 	static char	gidp[10];	/* big enough */
324 
325 	groupp = getgrgid(gid);
326 	if (groupp == (struct group *)NULL) {
327 		/* could not get group information: display gid instead */
328 		(void) sprintf(gidp, "%u", gid);
329 		return (gidp);
330 	} else
331 		return (groupp->gr_name);
332 }
333 
334 static void
335 usage()
336 {
337 	(void) fprintf(stderr,
338 	    gettext("usage: getfacl [-ad] file ... \n"));
339 	exit(1);
340 }
341