2 * Copyright (c) 1999, 2001, 2002 Robert N M Watson
5 * This software was developed by Robert Watson for the TrustedBSD Project.
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
17 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
18 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
19 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
20 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
21 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
22 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
23 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
24 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
25 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
29 * getfacl -- POSIX.1e utility to extract ACLs from files and directories
30 * and send the results to stdout
34 #include <sys/cdefs.h>
35 __FBSDID("$FreeBSD$");
37 #include <sys/types.h>
38 #include <sys/param.h>
51 static int more_than_one = 0;
57 fprintf(stderr, "getfacl [-dhnqv] [file ...]\n");
66 if ((pw = getpwuid(uid)) == NULL) {
67 (void)snprintf(uids, sizeof(uids), "%u", uid);
79 if ((gr = getgrgid(gid)) == NULL) {
80 (void)snprintf(gids, sizeof(gids), "%u", gid);
87 * return an ACL corresponding to the permissions
88 * contained in struct stat
91 acl_from_stat(struct stat sb)
102 /* First entry: ACL_USER_OBJ */
103 if (acl_create_entry(&acl, &entry) == -1)
105 if (acl_set_tag_type(entry, ACL_USER_OBJ) == -1)
108 if (acl_get_permset(entry, &perms) == -1)
110 if (acl_clear_perms(perms) == -1)
113 /* calculate user mode */
114 if (sb.st_mode & S_IRUSR)
115 if (acl_add_perm(perms, ACL_READ) == -1)
117 if (sb.st_mode & S_IWUSR)
118 if (acl_add_perm(perms, ACL_WRITE) == -1)
120 if (sb.st_mode & S_IXUSR)
121 if (acl_add_perm(perms, ACL_EXECUTE) == -1)
123 if (acl_set_permset(entry, perms) == -1)
126 /* Second entry: ACL_GROUP_OBJ */
127 if (acl_create_entry(&acl, &entry) == -1)
129 if (acl_set_tag_type(entry, ACL_GROUP_OBJ) == -1)
132 if (acl_get_permset(entry, &perms) == -1)
134 if (acl_clear_perms(perms) == -1)
137 /* calculate group mode */
138 if (sb.st_mode & S_IRGRP)
139 if (acl_add_perm(perms, ACL_READ) == -1)
141 if (sb.st_mode & S_IWGRP)
142 if (acl_add_perm(perms, ACL_WRITE) == -1)
144 if (sb.st_mode & S_IXGRP)
145 if (acl_add_perm(perms, ACL_EXECUTE) == -1)
147 if (acl_set_permset(entry, perms) == -1)
150 /* Third entry: ACL_OTHER */
151 if (acl_create_entry(&acl, &entry) == -1)
153 if (acl_set_tag_type(entry, ACL_OTHER) == -1)
156 if (acl_get_permset(entry, &perms) == -1)
158 if (acl_clear_perms(perms) == -1)
161 /* calculate other mode */
162 if (sb.st_mode & S_IROTH)
163 if (acl_add_perm(perms, ACL_READ) == -1)
165 if (sb.st_mode & S_IWOTH)
166 if (acl_add_perm(perms, ACL_WRITE) == -1)
168 if (sb.st_mode & S_IXOTH)
169 if (acl_add_perm(perms, ACL_EXECUTE) == -1)
171 if (acl_set_permset(entry, perms) == -1)
178 print_acl(char *path, acl_type_t type, int hflag, int iflag, int nflag,
179 int qflag, int vflag)
184 int error, flags = 0, ret;
187 error = lstat(path, &sb);
189 error = stat(path, &sb);
191 warn("%s: stat() failed", path);
196 ret = lpathconf(path, _PC_ACL_NFS4);
198 ret = pathconf(path, _PC_ACL_NFS4);
200 if (type == ACL_TYPE_DEFAULT) {
201 warnx("%s: there are no default entries in NFSv4 ACLs",
205 type = ACL_TYPE_NFS4;
206 } else if (ret < 0 && errno != EINVAL) {
207 warn("%s: pathconf(..., _PC_ACL_NFS4) failed", path);
217 printf("# file: %s\n# owner: %s\n# group: %s\n", path,
218 getuname(sb.st_uid), getgname(sb.st_gid));
221 acl = acl_get_link_np(path, type);
223 acl = acl_get_file(path, type);
225 if (errno != EOPNOTSUPP) {
230 if (type == ACL_TYPE_DEFAULT)
232 acl = acl_from_stat(sb);
234 warn("%s: acl_from_stat() failed", path);
240 flags |= ACL_TEXT_APPEND_ID;
243 flags |= ACL_TEXT_NUMERIC_IDS;
246 flags |= ACL_TEXT_VERBOSE;
248 acl_text = acl_to_text_np(acl, 0, flags);
250 warn("%s: acl_to_text_np() failed", path);
254 printf("%s", acl_text);
257 (void)acl_free(acl_text);
263 print_acl_from_stdin(acl_type_t type, int hflag, int iflag, int nflag,
264 int qflag, int vflag)
266 char *p, pathname[PATH_MAX];
267 int carried_error = 0;
269 while (fgets(pathname, (int)sizeof(pathname), stdin)) {
270 if ((p = strchr(pathname, '\n')) != NULL)
272 if (print_acl(pathname, type, hflag, iflag, nflag,
273 qflag, vflag) == -1) {
278 return(carried_error);
282 main(int argc, char *argv[])
284 acl_type_t type = ACL_TYPE_ACCESS;
285 int carried_error = 0;
287 int hflag, iflag, qflag, nflag, vflag;
294 while ((ch = getopt(argc, argv, "dhinqv")) != -1)
297 type = ACL_TYPE_DEFAULT;
322 error = print_acl_from_stdin(type, hflag, iflag, nflag,
324 return(error ? 1 : 0);
327 for (i = 0; i < argc; i++) {
328 if (!strcmp(argv[i], "-")) {
329 error = print_acl_from_stdin(type, hflag, iflag, nflag,
334 error = print_acl(argv[i], type, hflag, iflag, nflag,
341 return(carried_error ? 1 : 0);