developer/acls_8h_source.html

/*

   Copyright (c) 2008,2009 Frank Lahm <[email protected]>


   This program is free software; you can redistribute it and/or modify

   it under the terms of the GNU General Public License as published by

   the Free Software Foundation; either version 2 of the License, or

   (at your option) any later version.


   This program is distributed in the hope that it will be useful,

   but WITHOUT ANY WARRANTY; without even the implied warranty of

   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

   GNU General Public License for more details.

 */


#ifndef AFPD_ACLS_H

#define AFPD_ACLS_H


#ifdef HAVE_FREEBSD_SUNACL

#include <sunacl.h>

#endif


#ifdef HAVE_SOLARIS_ACLS

#include <sys/acl.h>

#endif


/* for atalk_uuid_t */

#include <atalk/uuid.h>


#include "directory.h"


#ifdef HAVE_NFSV4_ACLS

#define ACE_TRIVIAL (ACE_OWNER | ACE_GROUP | ACE_EVERYONE)

#endif /* HAVE_NFSV4_ACLS */


enum {

    kFileSec_UUID      = (1 << 0),

    kFileSec_GRPUUID   = (1 << 1),

    kFileSec_ACL       = (1 << 2),

    kFileSec_REMOVEACL = (1 << 3),

    kFileSec_Inherit   = (1 << 4)

};


#define DARWIN_ACL_FLAGS_PRIVATE       (0xffff)

#define KAUTH_ACL_DEFER_INHERIT (1<<16)

#define KAUTH_ACL_NO_INHERIT (1<<17)


/* ACE Flags */

#define DARWIN_ACE_FLAGS_KINDMASK           0xf

#define DARWIN_ACE_FLAGS_PERMIT             (1<<0)

#define DARWIN_ACE_FLAGS_DENY               (1<<1)

#define DARWIN_ACE_FLAGS_INHERITED          (1<<4)

#define DARWIN_ACE_FLAGS_FILE_INHERIT       (1<<5)

#define DARWIN_ACE_FLAGS_DIRECTORY_INHERIT  (1<<6)

#define DARWIN_ACE_FLAGS_LIMIT_INHERIT      (1<<7)

#define DARWIN_ACE_FLAGS_ONLY_INHERIT       (1<<8)


#define DARWIN_ACE_INHERIT_CONTROL_FLAGS \

       (DARWIN_ACE_FLAGS_FILE_INHERIT |\

        DARWIN_ACE_FLAGS_DIRECTORY_INHERIT |\

        DARWIN_ACE_FLAGS_LIMIT_INHERIT |\

        DARWIN_ACE_FLAGS_ONLY_INHERIT)


/* ACE Rights */

#define DARWIN_ACE_READ_DATA           0x00000002

#define DARWIN_ACE_LIST_DIRECTORY      0x00000002

#define DARWIN_ACE_WRITE_DATA          0x00000004

#define DARWIN_ACE_ADD_FILE            0x00000004

#define DARWIN_ACE_EXECUTE             0x00000008

#define DARWIN_ACE_SEARCH              0x00000008

#define DARWIN_ACE_DELETE              0x00000010

#define DARWIN_ACE_APPEND_DATA         0x00000020

#define DARWIN_ACE_ADD_SUBDIRECTORY    0x00000020

#define DARWIN_ACE_DELETE_CHILD        0x00000040

#define DARWIN_ACE_READ_ATTRIBUTES     0x00000080

#define DARWIN_ACE_WRITE_ATTRIBUTES    0x00000100

#define DARWIN_ACE_READ_EXTATTRIBUTES  0x00000200

#define DARWIN_ACE_WRITE_EXTATTRIBUTES 0x00000400

#define DARWIN_ACE_READ_SECURITY       0x00000800

#define DARWIN_ACE_WRITE_SECURITY      0x00001000

#define DARWIN_ACE_TAKE_OWNERSHIP      0x00002000


typedef struct {

    atalk_uuid_t      darwin_ace_uuid;

    uint32_t    darwin_ace_flags;

    uint32_t    darwin_ace_rights;

} darwin_ace_t;


typedef struct {

    uint32_t darwin_acl_count;

    uint32_t darwin_acl_flags;

} darwin_acl_header_t;


/* FP functions */

int afp_access(AFPObj *obj, char *ibuf, size_t ibuflen, char *rbuf,

               size_t *rbuflen);

int afp_getacl(AFPObj *obj, char *ibuf, size_t ibuflen, char *rbuf,

               size_t *rbuflen);

int afp_setacl(AFPObj *obj, char *ibuf, size_t ibuflen, char *rbuf,

               size_t *rbuflen);


/* Misc funcs */

extern int acltoownermode(const AFPObj *obj, const struct vol *vol, char *path,

                          struct stat *st, struct maccess *ma);

#endif

kFileSec_REMOVEACL
@ kFileSec_REMOVEACL
Definition acls.h:57

kFileSec_UUID
@ kFileSec_UUID
Definition acls.h:54

kFileSec_Inherit
@ kFileSec_Inherit
Definition acls.h:58

kFileSec_ACL
@ kFileSec_ACL
Definition acls.h:56

kFileSec_GRPUUID
@ kFileSec_GRPUUID
Definition acls.h:55

afp_getacl
int afp_getacl(AFPObj *obj, char *ibuf, size_t ibuflen, char *rbuf, size_t *rbuflen)
Definition acls.c:1734

afp_setacl
int afp_setacl(AFPObj *obj, char *ibuf, size_t ibuflen, char *rbuf, size_t *rbuflen)
Definition acls.c:1852

acltoownermode
int acltoownermode(const AFPObj *obj, const struct vol *vol, char *path, struct stat *st, struct maccess *ma)
map ACL to user maccess
Definition acls.c:1981

afp_access
int afp_access(AFPObj *obj, char *ibuf, size_t ibuflen, char *rbuf, size_t *rbuflen)
Definition acls.c:1677

rbuflen
static size_t rbuflen
Definition afpfunc_helpers.c:45

rbuf
static char rbuf[rbufsize]
Definition afpfunc_helpers.c:44

directory.h

obj
static AFPObj obj
Definition netatalk.c:62

AFPObj
Definition globals.h:154

darwin_ace_t
Definition acls.h:105

darwin_ace_t::darwin_ace_uuid
atalk_uuid_t darwin_ace_uuid
Definition acls.h:106

darwin_ace_t::darwin_ace_flags
uint32_t darwin_ace_flags
Definition acls.h:107

darwin_ace_t::darwin_ace_rights
uint32_t darwin_ace_rights
Definition acls.h:108

darwin_acl_header_t
Definition acls.h:112

darwin_acl_header_t::darwin_acl_flags
uint32_t darwin_acl_flags
Definition acls.h:114

darwin_acl_header_t::darwin_acl_count
uint32_t darwin_acl_count
Definition acls.h:113

maccess
Definition etc/afpd/directory.h:68

path
Definition include/atalk/directory.h:81

vol
Definition include/atalk/volume.h:30

uuid.h

atalk_uuid_t
unsigned char atalk_uuid_t[UUID_BINSIZE]
Definition uuid.h:21