2 * Copyright (c) 2001 Chris D. Faulhaber
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
14 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
15 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
16 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
17 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
18 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
19 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
20 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
21 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
22 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
23 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
27 #include <sys/cdefs.h>
28 __FBSDID("$FreeBSD$");
30 #include <sys/types.h>
31 #include <sys/param.h>
34 #include <sys/queue.h>
45 static void add_filename(const char *filename);
46 static void usage(void);
49 add_filename(const char *filename)
53 if (strlen(filename) > PATH_MAX - 1) {
54 warn("illegal filename");
57 file = zmalloc(sizeof(struct sf_file));
58 file->filename = filename;
59 TAILQ_INSERT_TAIL(&filelist, file, next);
66 fprintf(stderr, "usage: setfacl [-bdhkn] [-a position entries] "
67 "[-m entries] [-M file] [-x entries] [-X file] [file ...]\n");
72 main(int argc, char *argv[])
76 acl_entry_t unused_entry;
77 char filename[PATH_MAX];
78 int local_error, carried_error, ch, i, entry_number, ret;
81 struct sf_entry *entry;
86 acl_type = ACL_TYPE_ACCESS;
87 carried_error = local_error = 0;
88 h_flag = have_mask = have_stdin = n_flag = need_mask = 0;
90 TAILQ_INIT(&entrylist);
91 TAILQ_INIT(&filelist);
93 while ((ch = getopt(argc, argv, "M:X:a:bdhkm:nx:")) != -1)
96 entry = zmalloc(sizeof(struct sf_entry));
97 entry->acl = get_acl_from_file(optarg);
98 if (entry->acl == NULL)
99 err(1, "%s: get_acl_from_file() failed", optarg);
100 entry->op = OP_MERGE_ACL;
101 TAILQ_INSERT_TAIL(&entrylist, entry, next);
104 entry = zmalloc(sizeof(struct sf_entry));
105 entry->acl = get_acl_from_file(optarg);
106 entry->op = OP_REMOVE_ACL;
107 TAILQ_INSERT_TAIL(&entrylist, entry, next);
110 entry = zmalloc(sizeof(struct sf_entry));
112 entry_number = strtol(optarg, &end, 10);
113 if (end - optarg != (int)strlen(optarg))
114 errx(1, "%s: invalid entry number", optarg);
115 if (entry_number < 0)
116 errx(1, "%s: entry number cannot be less than zero", optarg);
117 entry->entry_number = entry_number;
119 if (argv[optind] == NULL)
120 errx(1, "missing ACL");
121 entry->acl = acl_from_text(argv[optind]);
122 if (entry->acl == NULL)
123 err(1, "%s", argv[optind]);
125 entry->op = OP_ADD_ACL;
126 TAILQ_INSERT_TAIL(&entrylist, entry, next);
129 entry = zmalloc(sizeof(struct sf_entry));
130 entry->op = OP_REMOVE_EXT;
131 TAILQ_INSERT_TAIL(&entrylist, entry, next);
134 acl_type = ACL_TYPE_DEFAULT;
140 entry = zmalloc(sizeof(struct sf_entry));
141 entry->op = OP_REMOVE_DEF;
142 TAILQ_INSERT_TAIL(&entrylist, entry, next);
145 entry = zmalloc(sizeof(struct sf_entry));
146 entry->acl = acl_from_text(optarg);
147 if (entry->acl == NULL)
148 err(1, "%s", optarg);
149 entry->op = OP_MERGE_ACL;
150 TAILQ_INSERT_TAIL(&entrylist, entry, next);
156 entry = zmalloc(sizeof(struct sf_entry));
157 entry_number = strtol(optarg, &end, 10);
158 if (end - optarg == (int)strlen(optarg)) {
159 if (entry_number < 0)
160 errx(1, "%s: entry number cannot be less than zero", optarg);
161 entry->entry_number = entry_number;
162 entry->op = OP_REMOVE_BY_NUMBER;
164 entry->acl = acl_from_text(optarg);
165 if (entry->acl == NULL)
166 err(1, "%s", optarg);
167 entry->op = OP_REMOVE_ACL;
169 TAILQ_INSERT_TAIL(&entrylist, entry, next);
178 if (n_flag == 0 && TAILQ_EMPTY(&entrylist))
181 /* take list of files from stdin */
182 if (argc == 0 || strcmp(argv[0], "-") == 0) {
184 err(1, "cannot have more than one stdin");
186 bzero(&filename, sizeof(filename));
187 while (fgets(filename, (int)sizeof(filename), stdin)) {
189 filename[strlen(filename) - 1] = '\0';
190 fn_dup = strdup(filename);
192 err(1, "strdup() failed");
193 add_filename(fn_dup);
196 for (i = 0; i < argc; i++)
197 add_filename(argv[i]);
199 /* cycle through each file */
200 TAILQ_FOREACH(file, &filelist, next) {
203 if (stat(file->filename, &sb) == -1) {
204 warn("%s: stat() failed", file->filename);
209 if (acl_type == ACL_TYPE_DEFAULT && S_ISDIR(sb.st_mode) == 0) {
210 warnx("%s: default ACL may only be set on a directory",
217 ret = lpathconf(file->filename, _PC_ACL_NFS4);
219 ret = pathconf(file->filename, _PC_ACL_NFS4);
221 if (acl_type == ACL_TYPE_DEFAULT) {
222 warnx("%s: there are no default entries "
223 "in NFSv4 ACLs", file->filename);
227 acl_type = ACL_TYPE_NFS4;
228 } else if (ret == 0) {
229 if (acl_type == ACL_TYPE_NFS4)
230 acl_type = ACL_TYPE_ACCESS;
231 } else if (ret < 0 && errno != EINVAL) {
232 warn("%s: pathconf(..., _PC_ACL_NFS4) failed",
237 acl = acl_get_link_np(file->filename, acl_type);
239 acl = acl_get_file(file->filename, acl_type);
242 warn("%s: acl_get_link_np() failed",
245 warn("%s: acl_get_file() failed",
251 /* cycle through each option */
252 TAILQ_FOREACH(entry, &entrylist, next) {
258 local_error += add_acl(entry->acl,
259 entry->entry_number, &acl, file->filename);
262 local_error += merge_acl(entry->acl, &acl,
268 * Don't try to call remove_ext() for empty
271 if (acl_type == ACL_TYPE_DEFAULT &&
272 acl_get_entry(acl, ACL_FIRST_ENTRY,
273 &unused_entry) == 0) {
274 local_error += remove_default(&acl,
278 remove_ext(&acl, file->filename);
282 if (acl_type == ACL_TYPE_NFS4) {
283 warnx("%s: there are no default entries in NFSv4 ACLs; "
284 "cannot remove", file->filename);
288 if (acl_delete_def_file(file->filename) == -1) {
289 warn("%s: acl_delete_def_file() failed",
293 if (acl_type == ACL_TYPE_DEFAULT)
294 local_error += remove_default(&acl,
299 local_error += remove_acl(entry->acl, &acl,
303 case OP_REMOVE_BY_NUMBER:
304 local_error += remove_by_number(entry->entry_number,
305 &acl, file->filename);
312 * Don't try to set an empty default ACL; it will always fail.
313 * Use acl_delete_def_file(3) instead.
315 if (acl_type == ACL_TYPE_DEFAULT &&
316 acl_get_entry(acl, ACL_FIRST_ENTRY, &unused_entry) == 0) {
317 if (acl_delete_def_file(file->filename) == -1) {
318 warn("%s: acl_delete_def_file() failed",
325 /* don't bother setting the ACL if something is broken */
331 if (acl_type != ACL_TYPE_NFS4 && need_mask &&
332 set_acl_mask(&acl, file->filename) == -1) {
333 warnx("%s: failed to set ACL mask", file->filename);
336 if (acl_set_link_np(file->filename, acl_type,
339 warn("%s: acl_set_link_np() failed",
343 if (acl_set_file(file->filename, acl_type,
346 warn("%s: acl_set_file() failed",
354 return (carried_error);
projects / FreeBSD / releng / 9.2.git / blob