1 /* 2 * CDDL HEADER START 3 * 4 * The contents of this file are subject to the terms of the 5 * Common Development and Distribution License (the "License"). 6 * You may not use this file except in compliance with the License. 7 * 8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 9 * or http://www.opensolaris.org/os/licensing. 10 * See the License for the specific language governing permissions 11 * and limitations under the License. 12 * 13 * When distributing Covered Code, include this CDDL HEADER in each 14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE. 15 * If applicable, add the following below this CDDL HEADER, with the 16 * fields enclosed by brackets "[]" replaced with your own identifying 17 * information: Portions Copyright [yyyy] [name of copyright owner] 18 * 19 * CDDL HEADER END 20 */ 21 /* 22 * Copyright 2007 Sun Microsystems, Inc. All rights reserved. 23 * Use is subject to license terms. 24 * Copyright 2020 Peter Tribble. 25 */ 26 27 /* 28 * getfacl [-ad] file ... 29 * This command displays discretionary information for a file or files. 30 * display format: 31 * # file: filename 32 * # owner: uid 33 * # group: gid 34 * user::perm 35 * user:uid:perm 36 * group::perm 37 * group:gid:perm 38 * mask:perm 39 * other:perm 40 * default:user::perm 41 * default:user:uid:perm 42 * default:group::perm 43 * default:group:gid:perm 44 * default:mask:perm 45 * default:other:perm 46 */ 47 48 #include <stdlib.h> 49 #include <stdio.h> 50 #include <pwd.h> 51 #include <grp.h> 52 #include <locale.h> 53 #include <sys/acl.h> 54 #include <errno.h> 55 56 static char *pruname(uid_t); 57 static char *prgname(gid_t); 58 static char *display(int); 59 static void usage(); 60 61 62 int 63 main(int argc, char *argv[]) 64 { 65 int c; 66 int aflag = 0; 67 int dflag = 0; 68 int errflag = 0; 69 int savecnt; 70 int aclcnt; 71 int mask = 0; 72 aclent_t *aclp; 73 aclent_t *tp; 74 char *permp; 75 76 (void) setlocale(LC_ALL, ""); 77 (void) textdomain(TEXT_DOMAIN); 78 79 if (argc < 2) 80 usage(); 81 82 while ((c = getopt(argc, argv, "ad")) != EOF) { 83 switch (c) { 84 case 'a': 85 aflag++; 86 break; 87 case 'd': 88 dflag++; 89 break; 90 case '?': 91 errflag++; 92 break; 93 } 94 } 95 if (errflag) 96 usage(); 97 98 if (optind >= argc) 99 usage(); 100 101 for (; optind < argc; optind++) { 102 register char *filep; 103 104 filep = argv[optind]; 105 106 /* Get ACL info of the files */ 107 errno = 0; 108 if ((aclcnt = acl(filep, GETACLCNT, 0, NULL)) < 0) { 109 if (errno == ENOSYS) { 110 (void) fprintf(stderr, 111 gettext("File system doesn't support " 112 "aclent_t style ACL's.\n" 113 "See acl(7) for more information on " 114 "POSIX-draft ACL support.\n")); 115 exit(2); 116 } 117 perror(filep); 118 exit(2); 119 } 120 if (aclcnt < MIN_ACL_ENTRIES) { 121 (void) fprintf(stderr, 122 gettext("%d: acl count too small from %s\n"), 123 aclcnt, filep); 124 exit(2); 125 } 126 127 if ((aclp = (aclent_t *)malloc(sizeof (aclent_t) * aclcnt)) 128 == NULL) { 129 (void) fprintf(stderr, 130 gettext("Insufficient memory\n")); 131 exit(1); 132 } 133 134 errno = 0; 135 if (acl(filep, GETACL, aclcnt, aclp) < 0) { 136 perror(filep); 137 exit(2); 138 } 139 140 /* display ACL: assume it is sorted. */ 141 (void) printf("\n# file: %s\n", filep); 142 savecnt = aclcnt; 143 for (tp = aclp; aclcnt--; tp++) { 144 if (tp->a_type == USER_OBJ) 145 (void) printf("# owner: %s\n", 146 pruname(tp->a_id)); 147 if (tp->a_type == GROUP_OBJ) 148 (void) printf("# group: %s\n", 149 prgname(tp->a_id)); 150 if (tp->a_type == CLASS_OBJ) 151 mask = tp->a_perm; 152 } 153 aclcnt = savecnt; 154 for (tp = aclp; aclcnt--; tp++) { 155 switch (tp->a_type) { 156 case USER: 157 if (!dflag) { 158 permp = display(tp->a_perm); 159 (void) printf("user:%s:%s\t\t", 160 pruname(tp->a_id), permp); 161 free(permp); 162 permp = display(tp->a_perm & mask); 163 (void) printf( 164 "#effective:%s\n", permp); 165 free(permp); 166 } 167 break; 168 case USER_OBJ: 169 if (!dflag) { 170 /* no need to display uid */ 171 permp = display(tp->a_perm); 172 (void) printf("user::%s\n", permp); 173 free(permp); 174 } 175 break; 176 case GROUP: 177 if (!dflag) { 178 permp = display(tp->a_perm); 179 (void) printf("group:%s:%s\t\t", 180 prgname(tp->a_id), permp); 181 free(permp); 182 permp = display(tp->a_perm & mask); 183 (void) printf( 184 "#effective:%s\n", permp); 185 free(permp); 186 } 187 break; 188 case GROUP_OBJ: 189 if (!dflag) { 190 permp = display(tp->a_perm); 191 (void) printf("group::%s\t\t", permp); 192 free(permp); 193 permp = display(tp->a_perm & mask); 194 (void) printf( 195 "#effective:%s\n", permp); 196 free(permp); 197 } 198 break; 199 case CLASS_OBJ: 200 if (!dflag) { 201 permp = display(tp->a_perm); 202 (void) printf("mask:%s\n", permp); 203 free(permp); 204 } 205 break; 206 case OTHER_OBJ: 207 if (!dflag) { 208 permp = display(tp->a_perm); 209 (void) printf("other:%s\n", permp); 210 free(permp); 211 } 212 break; 213 case DEF_USER: 214 if (!aflag) { 215 permp = display(tp->a_perm); 216 (void) printf("default:user:%s:%s\n", 217 pruname(tp->a_id), permp); 218 free(permp); 219 } 220 break; 221 case DEF_USER_OBJ: 222 if (!aflag) { 223 permp = display(tp->a_perm); 224 (void) printf("default:user::%s\n", 225 permp); 226 free(permp); 227 } 228 break; 229 case DEF_GROUP: 230 if (!aflag) { 231 permp = display(tp->a_perm); 232 (void) printf("default:group:%s:%s\n", 233 prgname(tp->a_id), permp); 234 free(permp); 235 } 236 break; 237 case DEF_GROUP_OBJ: 238 if (!aflag) { 239 permp = display(tp->a_perm); 240 (void) printf("default:group::%s\n", 241 permp); 242 free(permp); 243 } 244 break; 245 case DEF_CLASS_OBJ: 246 if (!aflag) { 247 permp = display(tp->a_perm); 248 (void) printf("default:mask:%s\n", 249 permp); 250 free(permp); 251 } 252 break; 253 case DEF_OTHER_OBJ: 254 if (!aflag) { 255 permp = display(tp->a_perm); 256 (void) printf("default:other:%s\n", 257 permp); 258 free(permp); 259 } 260 break; 261 default: 262 (void) fprintf(stderr, 263 gettext("unrecognized entry\n")); 264 break; 265 } 266 } 267 free(aclp); 268 } 269 return (0); 270 } 271 272 static char * 273 display(int perm) 274 { 275 char *buf; 276 277 buf = malloc(4); 278 if (buf == NULL) { 279 (void) fprintf(stderr, gettext("Insufficient memory\n")); 280 exit(1); 281 } 282 283 if (perm & 4) 284 buf[0] = 'r'; 285 else 286 buf[0] = '-'; 287 if (perm & 2) 288 buf[1] = 'w'; 289 else 290 buf[1] = '-'; 291 if (perm & 1) 292 buf[2] = 'x'; 293 else 294 buf[2] = '-'; 295 buf[3] = '\0'; 296 return (buf); 297 } 298 299 static char * 300 pruname(uid_t uid) 301 { 302 struct passwd *passwdp; 303 static char uidp[10]; /* big enough */ 304 305 passwdp = getpwuid(uid); 306 if (passwdp == (struct passwd *)NULL) { 307 /* could not get passwd information: display uid instead */ 308 (void) sprintf(uidp, "%u", uid); 309 return (uidp); 310 } else 311 return (passwdp->pw_name); 312 } 313 314 static char * 315 prgname(gid_t gid) 316 { 317 struct group *groupp; 318 static char gidp[10]; /* big enough */ 319 320 groupp = getgrgid(gid); 321 if (groupp == (struct group *)NULL) { 322 /* could not get group information: display gid instead */ 323 (void) sprintf(gidp, "%u", gid); 324 return (gidp); 325 } else 326 return (groupp->gr_name); 327 } 328 329 static void 330 usage() 331 { 332 (void) fprintf(stderr, 333 gettext("usage: getfacl [-ad] file ... \n")); 334 exit(1); 335 } 336