From f2310ef109eccf99c872f4f90eb70f4fc26e39f1 Mon Sep 17 00:00:00 2001 From: rwatson Date: Sat, 15 Apr 2000 05:14:39 +0000 Subject: [PATCH] Introduced /usr/sbin/extattrctl, a utility for managing UFS/FFS extended attributes (recently committed). Using extattrctl, the extended attribute service may be started and stopped for specific file systems; specific attributes may be enabled or disabled, and the backing file for each attribute configured. Also, backing files may be initialized. Reviewed by: adrian, bp, freebsd-fs, the unthanked masses Obtained from: TrustedBSD --- usr.sbin/Makefile | 1 + usr.sbin/extattrctl/Makefile | 8 ++ usr.sbin/extattrctl/extattrctl.8 | 135 +++++++++++++++++++++++++++++++ usr.sbin/extattrctl/extattrctl.c | 117 +++++++++++++++++++++++++++ 4 files changed, 261 insertions(+) create mode 100644 usr.sbin/extattrctl/Makefile create mode 100644 usr.sbin/extattrctl/extattrctl.8 create mode 100644 usr.sbin/extattrctl/extattrctl.c diff --git a/usr.sbin/Makefile b/usr.sbin/Makefile index f5b1be36c54..921dffc070b 100644 --- a/usr.sbin/Makefile +++ b/usr.sbin/Makefile @@ -24,6 +24,7 @@ SUBDIR= IPXrouted \ dev_mkdb \ diskpart \ edquota \ + extattrctl \ faithd \ fdcontrol \ fdformat \ diff --git a/usr.sbin/extattrctl/Makefile b/usr.sbin/extattrctl/Makefile new file mode 100644 index 00000000000..01a7297f2eb --- /dev/null +++ b/usr.sbin/extattrctl/Makefile @@ -0,0 +1,8 @@ +# $FreeBSD$ +PROG= extattrctl +SRCS= extattrctl.c +LDADD= +CFLAGS+= -g -Wall +MAN8+= extattrctl.8 + +.include diff --git a/usr.sbin/extattrctl/extattrctl.8 b/usr.sbin/extattrctl/extattrctl.8 new file mode 100644 index 00000000000..1e63abaf466 --- /dev/null +++ b/usr.sbin/extattrctl/extattrctl.8 @@ -0,0 +1,135 @@ +.\"- +.\" Copyright (c) 2000 Robert N. M. Watson +.\" All rights reserved. +.\" +.\" Redistribution and use in source and binary forms, with or without +.\" modification, are permitted provided that the following conditions +.\" are met: +.\" 1. Redistributions of source code must retain the above copyright +.\" notice, this list of conditions and the following disclaimer. +.\" 2. Redistributions in binary form must reproduce the above copyright +.\" notice, this list of conditions and the following disclaimer in the +.\" documentation and/or other materials provided with the distribution. +.\" +.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND +.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE +.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE +.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE +.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL +.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS +.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) +.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT +.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY +.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF +.\" SUCH DAMAGE. +.\" +.\" $FreeBSD$ +.\" +.Dd March 30, 2000 +.Dt EXTATTRCTL 8 +.Os FreeBSD 5.0 +.Sh NAME +.Nm extattrctl +.Nd Manage FFS extended attributes +.Sh SYNOPSIS +.Nm extattrctl +.Cm start +.Ar path +.Nm extattrctl +.Cm stop +.Ar path +.Nm extattrctl +.Cm initattr +.Ar attrsize +.Ar attrfile +.Nm extattrctl +.Cm enable +.Ar path +.Ar attrname +.Ar attrfile +.Nm extattrctl +.Cm disable +.Ar path +.Ar attrname +.Sh DESCRIPTION +.Nm +is the management utility for extended attributes over the FFS file system. +.Nm +allows the starting and stopping of extended attributes on a file system, +as well as initialization of attribute backing files, and enabling and +disabling of specific extended attributes on a file system. +.Pp +The first argument on the command line indicates the operation to be +performend. Operation must be one of the following: +.Bl -tag -width indent +.It Cm start Ar path +Start extended attribute support on the file system named using +.Ar path . +The file system must be an FFS file system, and the FFS_EXTATTR kernel +option must have been enabled. +.It Cm stop Ar path +Stop extended attribute support on the file system named using +.Ar path . +Extended attribute support must previously have been started. +.It Cm initattr Ar attrsize Ar attrfile +Create and initialize a file to use as an attribute backing file. +You must specify a maximum per-inode size for the attribute in bytes in +.Ar attrsize , +as well as the file where the attribute will be stored, using +.Ar attrfile . +This file should not exist before running +.Cm initattr. +.It Cm enable Ar path Ar attrname Ar attrfile +Enable an attribute named +.Ar attrname +on the file system identified using +.Ar path , +and backed by initialized attribute file +.Ar attrfile . +The backing file must have been initialized using +.Cm initattr +before its first use. +Attributes must have been started on the file system prior to the +enabling of any attributes. +.It Cm disable Ar path Ar attrname +Disable the attributed named +.Ar attrname +on the file system identified by +.Ar path . +The file system must have attributes started on it, and the attribute +most have been enabled using +.Cm enable . +.Sh EXAMPLES +.Pp +.Dl extattrctl start / +.Pp +Start extended attributes on the root file system. +.Pp +.Dl extattrctl initattr 17 /.attribute/md5 +.Pp +Create an attribute backing file in /.attribute/md5, and set the maximum +size of each attribute to 17 bytes. +.Pp +.Dl extattrctl enable / md5 /.attribute/md5 +.Pp +Enable an attribute named md5 on the root file system, backed from the file +/.attribute/md5. +.Pp +.Dl extattrctl disable / md5 +.Pp +Disable the attribute named md5 on the root file system. +.Pp +.Dl extattrctl stop / +.Pp +Stop extended attributes on the root file system. +.Sh SEE ALSO +.Xr getextattr 8 , +.Xr setextattr 8 , +.Xr extattr 9 +.Sh HISTORY +Extended attribute support was developed as part of the TrustedBSD Project, +and introduced in FreeBSD 5.0. +It was developed to support security extensions requiring additional labels +to be associated with each file or directory. +.Sh AUTHORS +Robert N M Watson diff --git a/usr.sbin/extattrctl/extattrctl.c b/usr.sbin/extattrctl/extattrctl.c new file mode 100644 index 00000000000..a37cc4699e6 --- /dev/null +++ b/usr.sbin/extattrctl/extattrctl.c @@ -0,0 +1,117 @@ +/*- + * Copyright (c) 1999, 2000 Robert N. M. Watson + * All rights reserved. + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * 1. Redistributions of source code must retain the above copyright + * notice, this list of conditions and the following disclaimer. + * 2. Redistributions in binary form must reproduce the above copyright + * notice, this list of conditions and the following disclaimer in the + * documentation and/or other materials provided with the distribution. + * + * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND + * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE + * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE + * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL + * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS + * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT + * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY + * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF + * SUCH DAMAGE. + * + * $FreeBSD$ + */ +/* + * TrustedBSD Project - extended attribute support for UFS-like file systems + */ + +#include +#include +#include +#include +#include +#include +#include +#include +#include + +void +usage(void) +{ + + fprintf(stderr, + "usage:\n" + " extattrctl start [path]\n" + " extattrctl stop [path]\n" + " extattrctl initattr [attrsize] [attrfile]\n" + " extattrctl enable [path] [attrname] [attrfile]\n" + " extattrctl disable [path] [attrname]\n"); +} + +int +main(int argc, char *argv[]) +{ + struct ufs_extattr_fileheader uef; + int error = 0, i; + + if (argc < 2) { + usage(); + return(-1); + } + + if (!strcmp(argv[1], "start")) { + if (argc != 3) { + usage(); + return(-1); + } + error = extattrctl(argv[2], UFS_EXTATTR_CMD_START, 0, 0); + } else if (!strcmp(argv[1], "stop")) { + if (argc != 3) { + usage(); + return(-1); + } + error = extattrctl(argv[2], UFS_EXTATTR_CMD_STOP, 0, 0); + } else if (!strcmp(argv[1], "enable")) { + if (argc != 5) { + usage(); + return(-1); + } + error = extattrctl(argv[2], UFS_EXTATTR_CMD_ENABLE, argv[3], + argv[4]); + } else if (!strcmp(argv[1], "disable")) { + if (argc != 4) { + usage(); + return(-1); + } + error = extattrctl(argv[2], UFS_EXTATTR_CMD_DISABLE, argv[3], + NULL); + } else if (!strcmp(argv[1], "initattr")) { + if (argc != 4) { + usage(); + return(-1); + } + if ((i = open(argv[3], O_CREAT | O_EXCL | O_WRONLY, 0600)) != + -1) { + uef.uef_write_perm = UFS_EXTATTR_PERM_OWNER; + uef.uef_read_perm = UFS_EXTATTR_PERM_ANYONE; + uef.uef_size = atoi(argv[2]); + if (write(i, &uef, sizeof(uef)) == -1) { + error = -1; + } else + error = close(i); + } else + error = -1; + } else { + usage(); + return(-1); + } + + if (error) + perror(argv[1]); + + return(error); +} -- 2.45.2