2 Unix SMB/Netbios implementation.
3 VFS module to get and set Tru64 acls
4 Copyright (C) Michael Adam 2006
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
22 /* prototypes for private functions first - for clarity */
24 static struct smb_acl_t *tru64_acl_to_smb_acl(const struct acl *tru64_acl);
25 static bool tru64_ace_to_smb_ace(acl_entry_t tru64_ace,
26 struct smb_acl_entry *smb_ace);
27 static acl_t smb_acl_to_tru64_acl(const SMB_ACL_T smb_acl);
28 static acl_tag_t smb_tag_to_tru64(SMB_ACL_TAG_T smb_tag);
29 static SMB_ACL_TAG_T tru64_tag_to_smb(acl_tag_t tru64_tag);
30 static acl_perm_t smb_permset_to_tru64(SMB_ACL_PERM_T smb_permset);
31 static SMB_ACL_PERM_T tru64_permset_to_smb(const acl_perm_t tru64_permset);
34 /* public functions - the api */
36 SMB_ACL_T tru64acl_sys_acl_get_file(vfs_handle_struct *handle,
40 struct smb_acl_t *result;
41 acl_type_t the_acl_type;
44 DEBUG(10, ("Hi! This is tru64acl_sys_acl_get_file.\n"));
47 case SMB_ACL_TYPE_ACCESS:
48 the_acl_type = ACL_TYPE_ACCESS;
50 case SMB_ACL_TYPE_DEFAULT:
51 the_acl_type = ACL_TYPE_DEFAULT;
58 tru64_acl = acl_get_file((char *)path_p, the_acl_type);
60 if (tru64_acl == NULL) {
64 result = tru64_acl_to_smb_acl(tru64_acl);
69 SMB_ACL_T tru64acl_sys_acl_get_fd(vfs_handle_struct *handle,
73 struct smb_acl_t *result;
74 acl_t tru64_acl = acl_get_fd(fd, ACL_TYPE_ACCESS);
76 if (tru64_acl == NULL) {
80 result = tru64_acl_to_smb_acl(tru64_acl);
85 int tru64acl_sys_acl_set_file(vfs_handle_struct *handle,
91 acl_type_t the_acl_type;
94 DEBUG(10, ("tru64acl_sys_acl_set_file called with name %s, type %d\n",
98 case SMB_ACL_TYPE_ACCESS:
99 DEBUGADD(10, ("got acl type ACL_TYPE_ACCESS\n"));
100 the_acl_type = ACL_TYPE_ACCESS;
102 case SMB_ACL_TYPE_DEFAULT:
103 DEBUGADD(10, ("got acl type ACL_TYPE_DEFAULT\n"));
104 the_acl_type = ACL_TYPE_DEFAULT;
107 DEBUGADD(10, ("invalid acl type\n"));
112 tru64_acl = smb_acl_to_tru64_acl(theacl);
113 if (tru64_acl == NULL) {
114 DEBUG(10, ("smb_acl_to_tru64_acl failed!\n"));
117 DEBUG(10, ("got tru64 acl...\n"));
118 res = acl_set_file((char *)name, the_acl_type, tru64_acl);
121 DEBUG(10, ("acl_set_file failed: %s\n", strerror(errno)));
126 DEBUG(1, ("tru64acl_sys_acl_set_file failed!\n"));
130 int tru64acl_sys_acl_set_fd(vfs_handle_struct *handle,
132 int fd, SMB_ACL_T theacl)
135 acl_t tru64_acl = smb_acl_to_tru64_acl(theacl);
136 if (tru64_acl == NULL) {
139 res = acl_set_fd(fd, ACL_TYPE_ACCESS, tru64_acl);
145 int tru64acl_sys_acl_delete_def_file(vfs_handle_struct *handle,
148 return acl_delete_def_file((char *)path);
152 /* private functions */
154 static struct smb_acl_t *tru64_acl_to_smb_acl(const struct acl *tru64_acl)
156 struct smb_acl_t *result;
159 DEBUG(10, ("Hi! This is tru64_acl_to_smb_acl.\n"));
161 if ((result = SMB_MALLOC_P(struct smb_acl_t)) == NULL) {
162 DEBUG(0, ("SMB_MALLOC_P failed in tru64_acl_to_smb_acl\n"));
166 ZERO_STRUCTP(result);
167 if (acl_first_entry((struct acl *)tru64_acl) != 0) {
168 DEBUG(10, ("acl_first_entry failed: %s\n", strerror(errno)));
171 while ((entry = acl_get_entry((struct acl *)tru64_acl)) != NULL) {
172 result = SMB_REALLOC(result, sizeof(struct smb_acl_t) +
173 (sizeof(struct smb_acl_entry) *
174 (result->count + 1)));
175 if (result == NULL) {
176 DEBUG(0, ("SMB_REALLOC failed in tru64_acl_to_smb_acl\n"));
181 if (!tru64_ace_to_smb_ace(entry, &result->acl[result->count])) {
190 if (result != NULL) {
193 DEBUG(1, ("tru64_acl_to_smb_acl failed!\n"));
197 static bool tru64_ace_to_smb_ace(acl_entry_t tru64_ace,
198 struct smb_acl_entry *smb_ace)
201 acl_permset_t permset;
202 SMB_ACL_TAG_T smb_tag_type;
203 SMB_ACL_PERM_T smb_permset;
206 if (acl_get_tag_type(tru64_ace, &tru64_tag) != 0) {
207 DEBUG(0, ("acl_get_tag_type failed: %s\n", strerror(errno)));
211 /* On could set the tag type directly to save a function call,
212 * but I like this better... */
213 smb_tag_type = tru64_tag_to_smb(tru64_tag);
214 if (smb_tag_type == 0) {
215 DEBUG(3, ("invalid tag type given: %d\n", tru64_tag));
218 if (sys_acl_set_tag_type(smb_ace, smb_tag_type) != 0) {
219 DEBUG(3, ("sys_acl_set_tag_type failed: %s\n",
223 qualifier = acl_get_qualifier(tru64_ace);
224 if (qualifier != NULL) {
225 if (sys_acl_set_qualifier(smb_ace, qualifier) != 0) {
226 DEBUG(3, ("sys_acl_set_qualifier failed\n"));
230 if (acl_get_permset(tru64_ace, &permset) != 0) {
231 DEBUG(3, ("acl_get_permset failed: %s\n", strerror(errno)));
234 smb_permset = tru64_permset_to_smb(*permset);
235 if (sys_acl_set_permset(smb_ace, &smb_permset) != 0) {
236 DEBUG(3, ("sys_acl_set_permset failed: %s\n", strerror(errno)));
242 static acl_t smb_acl_to_tru64_acl(const SMB_ACL_T smb_acl)
245 acl_entry_t tru64_entry;
248 ssize_t acl_text_len;
250 /* The tru64 acl_init function takes a size_t value
251 * instead of a count of entries (as with posix).
252 * the size parameter "Specifies the size of the working
253 * storage in bytes" (according to the man page).
254 * But it is unclear to me, how this size is to be
257 * It should not matter, since acl_create_entry enlarges
258 * the working storage at need. ... */
260 DEBUG(10, ("Hi! This is smb_acl_to_tru64_acl.\n"));
262 result = acl_init(1);
264 if (result == NULL) {
265 DEBUG(3, ("acl_init failed!\n"));
269 DEBUGADD(10, ("parsing acl entries...\n"));
270 for (i = 0; i < smb_acl->count; i++) {
271 /* XYZ - maybe eliminate this direct access? */
272 const struct smb_acl_entry *smb_entry = &smb_acl->acl[i];
274 acl_perm_t tru64_permset;
276 tru64_tag = smb_tag_to_tru64(smb_entry->a_type);
277 if (tru64_tag == -1) {
278 DEBUG(3, ("smb_tag_to_tru64 failed!\n"));
282 if (tru64_tag == ACL_MASK) {
283 DEBUGADD(10, (" - acl type ACL_MASK: not implemented on Tru64 ==> skipping\n"));
287 tru64_entry = acl_create_entry(&result);
288 if (tru64_entry == NULL) {
289 DEBUG(3, ("acl_create_entry failed: %s\n",
294 if (acl_set_tag_type(tru64_entry, tru64_tag) != 0) {
295 DEBUG(3, ("acl_set_tag_type(%d) failed: %s\n",
300 switch (smb_entry->a_type) {
302 if (acl_set_qualifier(tru64_entry,
303 (int *)&smb_entry->uid) != 0)
305 DEBUG(3, ("acl_set_qualifier failed: %s\n",
309 DEBUGADD(10, (" - setting uid to %d\n", smb_entry->uid));
312 if (acl_set_qualifier(tru64_entry,
313 (int *)&smb_entry->gid) != 0)
315 DEBUG(3, ("acl_set_qualifier failed: %s\n",
319 DEBUGADD(10, (" - setting gid to %d\n", smb_entry->gid));
325 tru64_permset = smb_permset_to_tru64(smb_entry->a_perm);
326 if (tru64_permset == -1) {
327 DEBUG(3, ("smb_permset_to_tru64 failed!\n"));
330 DEBUGADD(10, (" - setting perms to %0d\n", tru64_permset));
331 if (acl_set_permset(tru64_entry, &tru64_permset) != 0)
333 DEBUG(3, ("acl_set_permset failed: %s\n", strerror(errno)));
337 DEBUGADD(10, ("done parsing acl entries\n"));
340 if (acl_valid(result, &tru64_entry) != 0) {
341 DEBUG(1, ("smb_acl_to_tru64_acl: ACL is invalid (%s)\n",
343 if (tru64_entry != NULL) {
344 DEBUGADD(1, ("the acl contains duplicate entries\n"));
348 DEBUGADD(10, ("acl is valid\n"));
350 acl_text = acl_to_text(result, &acl_text_len);
351 if (acl_text == NULL) {
352 DEBUG(3, ("acl_to_text failed: %s\n", strerror(errno)));
355 DEBUG(1, ("acl_text: %s\n", acl_text));
361 if (result != NULL) {
364 DEBUG(1, ("smb_acl_to_tru64_acl failed!\n"));
368 static acl_tag_t smb_tag_to_tru64(SMB_ACL_TAG_T smb_tag)
374 DEBUGADD(10, ("got acl type ACL_USER\n"));
376 case SMB_ACL_USER_OBJ:
377 result = ACL_USER_OBJ;
378 DEBUGADD(10, ("got acl type ACL_USER_OBJ\n"));
382 DEBUGADD(10, ("got acl type ACL_GROUP\n"));
384 case SMB_ACL_GROUP_OBJ:
385 result = ACL_GROUP_OBJ;
386 DEBUGADD(10, ("got acl type ACL_GROUP_OBJ\n"));
390 DEBUGADD(10, ("got acl type ACL_OTHER\n"));
394 DEBUGADD(10, ("got acl type ACL_MASK\n"));
397 DEBUG(1, ("Unknown tag type %d\n", smb_tag));
404 static SMB_ACL_TAG_T tru64_tag_to_smb(acl_tag_t tru64_tag)
406 SMB_ACL_TAG_T smb_tag_type;
409 smb_tag_type = SMB_ACL_USER;
410 DEBUGADD(10, ("got smb acl tag type SMB_ACL_USER\n"));
413 smb_tag_type = SMB_ACL_USER_OBJ;
414 DEBUGADD(10, ("got smb acl tag type SMB_ACL_USER_OBJ\n"));
417 smb_tag_type = SMB_ACL_GROUP;
418 DEBUGADD(10, ("got smb acl tag type SMB_ACL_GROUP\n"));
421 smb_tag_type = SMB_ACL_GROUP_OBJ;
422 DEBUGADD(10, ("got smb acl tag type SMB_ACL_GROUP_OBJ\n"));
425 smb_tag_type = SMB_ACL_OTHER;
426 DEBUGADD(10, ("got smb acl tag type SMB_ACL_OTHER\n"));
429 smb_tag_type = SMB_ACL_MASK;
430 DEBUGADD(10, ("got smb acl tag type SMB_ACL_MASK\n"));
433 DEBUG(0, ("Unknown tag type %d\n", (unsigned int)tru64_tag));
439 static acl_perm_t smb_permset_to_tru64(SMB_ACL_PERM_T smb_permset)
441 /* originally, I thought that acl_clear_perm was the
442 * proper way to reset the permset to 0. but without
443 * initializing it to 0, acl_clear_perm fails.
444 * so probably, acl_clear_perm is not necessary here... ?! */
445 acl_perm_t tru64_permset = 0;
446 if (acl_clear_perm(&tru64_permset) != 0) {
447 DEBUG(5, ("acl_clear_perm failed: %s\n", strerror(errno)));
450 /* according to original lib/sysacls.c, acl_add_perm is
451 * broken on tru64 ... */
452 tru64_permset |= ((smb_permset & SMB_ACL_READ) ? ACL_READ : 0);
453 tru64_permset |= ((smb_permset & SMB_ACL_WRITE) ? ACL_WRITE : 0);
454 tru64_permset |= ((smb_permset & SMB_ACL_EXECUTE) ? ACL_EXECUTE : 0);
455 return tru64_permset;
458 static SMB_ACL_PERM_T tru64_permset_to_smb(const acl_perm_t tru64_permset)
460 SMB_ACL_PERM_T smb_permset = 0;
461 smb_permset |= ((tru64_permset & ACL_READ) ? SMB_ACL_READ : 0);
462 smb_permset |= ((tru64_permset & ACL_WRITE) ? SMB_ACL_WRITE : 0);
463 smb_permset |= ((tru64_permset & ACL_EXECUTE) ? SMB_ACL_EXECUTE : 0);
468 /* VFS operations structure */
470 static vfs_op_tuple tru64acl_op_tuples[] = {
471 /* Disk operations */
472 {SMB_VFS_OP(tru64acl_sys_acl_get_file),
473 SMB_VFS_OP_SYS_ACL_GET_FILE,
474 SMB_VFS_LAYER_TRANSPARENT},
476 {SMB_VFS_OP(tru64acl_sys_acl_get_fd),
477 SMB_VFS_OP_SYS_ACL_GET_FD,
478 SMB_VFS_LAYER_TRANSPARENT},
480 {SMB_VFS_OP(tru64acl_sys_acl_set_file),
481 SMB_VFS_OP_SYS_ACL_SET_FILE,
482 SMB_VFS_LAYER_TRANSPARENT},
484 {SMB_VFS_OP(tru64acl_sys_acl_set_fd),
485 SMB_VFS_OP_SYS_ACL_SET_FD,
486 SMB_VFS_LAYER_TRANSPARENT},
488 {SMB_VFS_OP(tru64acl_sys_acl_delete_def_file),
489 SMB_VFS_OP_SYS_ACL_DELETE_DEF_FILE,
490 SMB_VFS_LAYER_TRANSPARENT},
497 NTSTATUS vfs_tru64acl_init(void);
498 NTSTATUS vfs_tru64acl_init(void)
500 return smb_register_vfs(SMB_VFS_INTERFACE_VERSION, "tru64acl",