/* Copyright (c) 2002, 2003, 2006 The Regents of the University of Michigan.
* All rights reserved.
*
* Andy Adamson <andros@citi.umich.edu>
* David M. Richter <richterd@citi.umich.edu>
* Alexis Mackenzie <allamack@citi.umich.edu>
* Alex Soule <soule@umich.edu>
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
*
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* 3. Neither the name of the University nor the names of its
* contributors may be used to endorse or promote products derived
* from this software without specific prior written permission.
*
* THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED
* WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
* MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
* DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
* CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
* SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
* BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
* LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
* NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
* SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*/
#include <stdio.h>
#include <errno.h>
#include <string.h>
#include <sys/types.h>
#include <libgen.h>
#include "libacl_nfs4.h"
#include <ftw.h>
#include <getopt.h>
static void usage(int);
static void more_help();
static char *execname;
static void print_acl_from_path();
static int ignore_comment = 0;
static int recursive(const char *fpath, const struct stat *sb, int tflag, struct FTW *ftwbuf)
{
print_acl_from_path(fpath);
return 0;
}
static struct option long_options[] = {
{"more-help", 0, 0, 'H' },
{"help", 0, 0, 'h' },
{"recursive", 0, 0, 'R' },
{"omit-header", 0, 0, 'c'},
{ NULL, 0, 0, 0, },
};
int main(int argc, char **argv)
{
int opt, res = 1;
int do_recursive = 0;
execname = basename(argv[0]);
if (argc < 2) {
fprintf(stderr, "%s: you must specify a path.\n", execname);
usage(0);
goto out;
}
while ((opt = getopt_long(argc, argv, "HR?hc", long_options, NULL)) != -1) {
switch(opt) {
case 'H':
more_help();
res = 0;
goto out;
case 'R':
do_recursive = 1;
break;
case 'c':
ignore_comment = 1;
break;
default:
usage(1);
res = 0;
goto out;
}
}
if (optind >= argc) {
fprintf(stderr, "%s: you must specify a path after options.\n", execname);
usage(0);
goto out;
}
for(; optind < argc; optind++) {
if(do_recursive) {
if (nftw(argv[optind], recursive, 20, 0) == -1)
printf("Invalid filename: %s\n", argv[optind]);
}
else
print_acl_from_path(argv[optind]);
res = 0;
}
out:
return res;
}
static void print_acl_from_path(const char *fpath)
{
struct nfs4_acl *acl;
acl = nfs4_acl_for_path(fpath);
if (acl != NULL) {
if (ignore_comment == 0)
printf("# file: %s\n", fpath);
nfs4_print_acl(stdout, acl);
printf("\n");
nfs4_free_acl(acl);
}
}
static void usage(int label)
{
if (label)
fprintf(stderr, "%s %s -- get NFSv4 file or directory access control lists.\n", execname, VERSION);
fprintf(stderr, "Usage: %s [-R] file ...\n -H, --more-help\tdisplay ACL format information\n -?, -h, --help\tdisplay this help text\n -R --recursive\trecurse into subdirectories\n -c, --omit-header\tDo not display the comment header (Do not print filename)\n", execname);
}
static void more_help()
{
const char *info = \
"%s %s -- get NFSv4 file or directory access control lists.\n\n"
"An NFSv4 ACL consists of one or more NFSv4 ACEs, each delimited by commas or whitespace.\n"
"An NFSv4 ACE is written as a colon-delimited, 4-field string in the following format:\n"
"\n"
" <type>:<flags>:<principal>:<permissions>\n"
"\n"
" * <type> - one of:\n"
" 'A' allow\n"
" 'D' deny\n"
" 'U' audit\n"
" 'L' alarm\n"
"\n"
" * <flags> - zero or more (depending on <type>) of:\n"
" 'f' file-inherit\n"
" 'd' directory-inherit\n"
" 'p' no-propagate-inherit\n"
" 'i' inherit-only\n"
" 'S' successful-access\n"
" 'F' failed-access\n"
" 'g' group (denotes that <principal> is a group)\n"
"\n"
" * <principal> - named user or group, or one of: \"OWNER@\", \"GROUP@\", \"EVERYONE@\"\n"
"\n"
" * <permissions> - one or more of:\n"
" 'r' read-data / list-directory \n"
" 'w' write-data / create-file \n"
" 'a' append-data / create-subdirectory \n"
" 'x' execute \n"
" 'd' delete\n"
" 'D' delete-child (directories only)\n"
" 't' read-attrs\n"
" 'T' write-attrs\n"
" 'n' read-named-attrs\n"
" 'N' write-named-attrs\n"
" 'c' read-ACL\n"
" 'C' write-ACL\n"
" 'o' write-owner\n"
" 'y' synchronize\n"
"\n"
"For more information and examples, please refer to the nfs4_acl(5) manpage.\n";
printf(info, execname, VERSION);
}