mirror of
https://git.savannah.gnu.org/git/emacs.git
synced 2024-11-25 07:28:20 +00:00
ecf08f0621
dc4e6b1329
; Update copyright years in more files64b3777631
; Run set-copyright from admin.el8e1c56ae46
; Add 2024 to copyright years # Conflicts: # doc/misc/modus-themes.org # doc/misc/texinfo.tex # etc/NEWS # etc/refcards/ru-refcard.tex # etc/themes/modus-operandi-theme.el # etc/themes/modus-themes.el # etc/themes/modus-vivendi-theme.el # lib/alloca.in.h # lib/binary-io.h # lib/c-ctype.h # lib/c-strcasecmp.c # lib/c-strncasecmp.c # lib/careadlinkat.c # lib/cloexec.c # lib/close-stream.c # lib/diffseq.h # lib/dup2.c # lib/filemode.h # lib/fpending.c # lib/fpending.h # lib/fsusage.c # lib/getgroups.c # lib/getloadavg.c # lib/gettext.h # lib/gettime.c # lib/gettimeofday.c # lib/group-member.c # lib/malloc.c # lib/md5-stream.c # lib/md5.c # lib/md5.h # lib/memmem.c # lib/memrchr.c # lib/nanosleep.c # lib/save-cwd.h # lib/sha1.c # lib/sig2str.c # lib/stdlib.in.h # lib/strtoimax.c # lib/strtol.c # lib/strtoll.c # lib/time_r.c # lib/xalloc-oversized.h # lisp/auth-source-pass.el # lisp/emacs-lisp/lisp-mnt.el # lisp/emacs-lisp/timer.el # lisp/info-look.el # lisp/jit-lock.el # lisp/loadhist.el # lisp/mail/rmail.el # lisp/net/ntlm.el # lisp/net/webjump.el # lisp/progmodes/asm-mode.el # lisp/progmodes/project.el # lisp/progmodes/sh-script.el # lisp/textmodes/flyspell.el # lisp/textmodes/reftex-toc.el # lisp/textmodes/reftex.el # lisp/textmodes/tex-mode.el # lisp/url/url-gw.el # m4/alloca.m4 # m4/clock_time.m4 # m4/d-type.m4 # m4/dirent_h.m4 # m4/dup2.m4 # m4/euidaccess.m4 # m4/fchmodat.m4 # m4/filemode.m4 # m4/fsusage.m4 # m4/getgroups.m4 # m4/getloadavg.m4 # m4/getrandom.m4 # m4/gettime.m4 # m4/gettimeofday.m4 # m4/gnulib-common.m4 # m4/group-member.m4 # m4/inttypes.m4 # m4/malloc.m4 # m4/manywarnings.m4 # m4/mempcpy.m4 # m4/memrchr.m4 # m4/mkostemp.m4 # m4/mktime.m4 # m4/nproc.m4 # m4/nstrftime.m4 # m4/pathmax.m4 # m4/pipe2.m4 # m4/pselect.m4 # m4/pthread_sigmask.m4 # m4/readlink.m4 # m4/realloc.m4 # m4/sig2str.m4 # m4/ssize_t.m4 # m4/stat-time.m4 # m4/stddef_h.m4 # m4/stdint.m4 # m4/stdio_h.m4 # m4/stdlib_h.m4 # m4/stpcpy.m4 # m4/strnlen.m4 # m4/strtoimax.m4 # m4/strtoll.m4 # m4/time_h.m4 # m4/timegm.m4 # m4/timer_time.m4 # m4/timespec.m4 # m4/unistd_h.m4 # m4/warnings.m4 # nt/configure.bat # nt/preprep.c # test/lisp/register-tests.el
685 lines
21 KiB
C
685 lines
21 KiB
C
/* Test whether a file has a nontrivial ACL. -*- coding: utf-8 -*-
|
|
|
|
Copyright (C) 2002-2003, 2005-2024 Free Software Foundation, Inc.
|
|
|
|
This program is free software: you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation, either version 3 of the License, or
|
|
(at your option) any later version.
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
GNU General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with this program. If not, see <https://www.gnu.org/licenses/>.
|
|
|
|
Written by Paul Eggert, Andreas Grünbacher, and Bruno Haible. */
|
|
|
|
/* Without this pragma, gcc 4.7.0 20120126 may suggest that the
|
|
file_has_acl function might be candidate for attribute 'const' */
|
|
#if (__GNUC__ == 4 && 6 <= __GNUC_MINOR__) || 4 < __GNUC__
|
|
# pragma GCC diagnostic ignored "-Wsuggest-attribute=const"
|
|
#endif
|
|
|
|
#include <config.h>
|
|
|
|
#include "acl.h"
|
|
|
|
#include "acl-internal.h"
|
|
#include "attribute.h"
|
|
#include "minmax.h"
|
|
|
|
#if USE_ACL && HAVE_LINUX_XATTR_H && HAVE_LISTXATTR
|
|
# include <stdckdint.h>
|
|
# include <string.h>
|
|
# include <arpa/inet.h>
|
|
# include <sys/xattr.h>
|
|
# include <linux/xattr.h>
|
|
# ifndef XATTR_NAME_NFSV4_ACL
|
|
# define XATTR_NAME_NFSV4_ACL "system.nfs4_acl"
|
|
# endif
|
|
# ifndef XATTR_NAME_POSIX_ACL_ACCESS
|
|
# define XATTR_NAME_POSIX_ACL_ACCESS "system.posix_acl_access"
|
|
# endif
|
|
# ifndef XATTR_NAME_POSIX_ACL_DEFAULT
|
|
# define XATTR_NAME_POSIX_ACL_DEFAULT "system.posix_acl_default"
|
|
# endif
|
|
|
|
enum {
|
|
/* ACE4_ACCESS_ALLOWED_ACE_TYPE = 0x00000000, */
|
|
ACE4_ACCESS_DENIED_ACE_TYPE = 0x00000001,
|
|
ACE4_IDENTIFIER_GROUP = 0x00000040
|
|
};
|
|
|
|
/* Return true if ATTR is in the set represented by the NUL-terminated
|
|
strings in LISTBUF, which is of size LISTSIZE. */
|
|
|
|
ATTRIBUTE_PURE static bool
|
|
have_xattr (char const *attr, char const *listbuf, ssize_t listsize)
|
|
{
|
|
char const *blim = listbuf + listsize;
|
|
for (char const *b = listbuf; b < blim; b += strlen (b) + 1)
|
|
for (char const *a = attr; *a == *b; a++, b++)
|
|
if (!*a)
|
|
return true;
|
|
return false;
|
|
}
|
|
|
|
/* Return 1 if given ACL in XDR format is non-trivial, 0 if it is trivial.
|
|
-1 upon failure to determine it. Possibly change errno. Assume that
|
|
the ACL is valid, except avoid undefined behavior even if invalid.
|
|
|
|
See <https://linux.die.net/man/5/nfs4_acl>. The NFSv4 acls are
|
|
defined in Internet RFC 7530 and as such, every NFSv4 server
|
|
supporting ACLs should support NFSv4 ACLs (they differ from from
|
|
POSIX draft ACLs). The ACLs can be obtained via the
|
|
nfsv4-acl-tools, e.g., the nfs4_getfacl command. Gnulib provides
|
|
only basic support of NFSv4 ACLs, i.e., recognize trivial vs
|
|
nontrivial ACLs. */
|
|
|
|
static int
|
|
acl_nfs4_nontrivial (uint32_t *xattr, ssize_t nbytes)
|
|
{
|
|
enum { BYTES_PER_NETWORK_UINT = 4};
|
|
|
|
/* Grab the number of aces in the acl. */
|
|
nbytes -= BYTES_PER_NETWORK_UINT;
|
|
if (nbytes < 0)
|
|
return -1;
|
|
uint32_t num_aces = ntohl (*xattr++);
|
|
if (6 < num_aces)
|
|
return 1;
|
|
int ace_found = 0;
|
|
|
|
for (int ace_n = 0; ace_n < num_aces; ace_n++)
|
|
{
|
|
/* Get the acl type and flag. Skip the mask; it's too risky to
|
|
test it and it does not seem to be needed. Get the wholen. */
|
|
nbytes -= 4 * BYTES_PER_NETWORK_UINT;
|
|
if (nbytes < 0)
|
|
return -1;
|
|
uint32_t type = ntohl (xattr[0]);
|
|
uint32_t flag = ntohl (xattr[1]);
|
|
uint32_t wholen = ntohl (xattr[3]);
|
|
xattr += 4;
|
|
int whowords = (wholen / BYTES_PER_NETWORK_UINT
|
|
+ (wholen % BYTES_PER_NETWORK_UINT != 0));
|
|
int64_t wholen4 = whowords;
|
|
wholen4 *= BYTES_PER_NETWORK_UINT;
|
|
|
|
/* Trivial ACLs have only ACE4_ACCESS_ALLOWED_ACE_TYPE or
|
|
ACE4_ACCESS_DENIED_ACE_TYPE. */
|
|
if (ACE4_ACCESS_DENIED_ACE_TYPE < type)
|
|
return 1;
|
|
|
|
/* RFC 7530 says FLAG should be 0, but be generous to NetApp and
|
|
also accept the group flag. */
|
|
if (flag & ~ACE4_IDENTIFIER_GROUP)
|
|
return 1;
|
|
|
|
/* Get the who string. Check NBYTES - WHOLEN4 before storing
|
|
into NBYTES, to avoid truncation on conversion. */
|
|
if (nbytes - wholen4 < 0)
|
|
return -1;
|
|
nbytes -= wholen4;
|
|
|
|
/* For a trivial ACL, max 6 (typically 3) ACEs, 3 allow, 3 deny.
|
|
Check that there is at most one ACE of each TYPE and WHO. */
|
|
int who2
|
|
= (wholen == 6 && memcmp (xattr, "OWNER@", 6) == 0 ? 0
|
|
: wholen == 6 && memcmp (xattr, "GROUP@", 6) == 0 ? 2
|
|
: wholen == 9 && memcmp (xattr, "EVERYONE@", 9) == 0 ? 4
|
|
: -1);
|
|
if (who2 < 0)
|
|
return 1;
|
|
int ace_found_bit = 1 << (who2 | type);
|
|
if (ace_found & ace_found_bit)
|
|
return 1;
|
|
ace_found |= ace_found_bit;
|
|
|
|
xattr += whowords;
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
#endif
|
|
|
|
/* Return 1 if NAME has a nontrivial access control list,
|
|
0 if ACLs are not supported, or if NAME has no or only a base ACL,
|
|
and -1 (setting errno) on error. Note callers can determine
|
|
if ACLs are not supported as errno is set in that case also.
|
|
SB must be set to the stat buffer of NAME,
|
|
obtained through stat() or lstat(). */
|
|
|
|
int
|
|
file_has_acl (char const *name, struct stat const *sb)
|
|
{
|
|
#if USE_ACL
|
|
if (! S_ISLNK (sb->st_mode))
|
|
{
|
|
|
|
# if HAVE_LINUX_XATTR_H && HAVE_LISTXATTR
|
|
int initial_errno = errno;
|
|
|
|
/* The max length of a trivial NFSv4 ACL is 6 words for owner,
|
|
6 for group, 7 for everyone, all times 2 because there are
|
|
both allow and deny ACEs. There are 6 words for owner
|
|
because of type, flag, mask, wholen, "OWNER@"+pad and
|
|
similarly for group; everyone is another word to hold
|
|
"EVERYONE@". */
|
|
typedef uint32_t trivial_NFSv4_xattr_buf[2 * (6 + 6 + 7)];
|
|
|
|
/* A buffer large enough to hold any trivial NFSv4 ACL,
|
|
and also useful as a small array of char. */
|
|
union {
|
|
trivial_NFSv4_xattr_buf xattr;
|
|
char ch[sizeof (trivial_NFSv4_xattr_buf)];
|
|
} stackbuf;
|
|
|
|
char *listbuf = stackbuf.ch;
|
|
ssize_t listbufsize = sizeof stackbuf.ch;
|
|
char *heapbuf = NULL;
|
|
ssize_t listsize;
|
|
|
|
/* Use listxattr first, as this means just one syscall in the
|
|
typical case where the file lacks an ACL. Try stackbuf
|
|
first, falling back on malloc if stackbuf is too small. */
|
|
while ((listsize = listxattr (name, listbuf, listbufsize)) < 0
|
|
&& errno == ERANGE)
|
|
{
|
|
free (heapbuf);
|
|
ssize_t newsize = listxattr (name, NULL, 0);
|
|
if (newsize <= 0)
|
|
return newsize;
|
|
|
|
/* Grow LISTBUFSIZE to at least NEWSIZE. Grow it by a
|
|
nontrivial amount too, to defend against denial of
|
|
service by an adversary that fiddles with ACLs. */
|
|
bool overflow = ckd_add (&listbufsize, listbufsize, listbufsize >> 1);
|
|
listbufsize = MAX (listbufsize, newsize);
|
|
if (overflow || SIZE_MAX < listbufsize)
|
|
{
|
|
errno = ENOMEM;
|
|
return -1;
|
|
}
|
|
|
|
listbuf = heapbuf = malloc (listbufsize);
|
|
if (!listbuf)
|
|
return -1;
|
|
}
|
|
|
|
/* In Fedora 39, a file can have both NFSv4 and POSIX ACLs,
|
|
but if it has an NFSv4 ACL that's the one that matters.
|
|
In earlier Fedora the two types of ACLs were mutually exclusive.
|
|
Attempt to work correctly on both kinds of systems. */
|
|
bool nfsv4_acl
|
|
= 0 < listsize && have_xattr (XATTR_NAME_NFSV4_ACL, listbuf, listsize);
|
|
int ret
|
|
= (listsize <= 0 ? listsize
|
|
: (nfsv4_acl
|
|
|| have_xattr (XATTR_NAME_POSIX_ACL_ACCESS, listbuf, listsize)
|
|
|| (S_ISDIR (sb->st_mode)
|
|
&& have_xattr (XATTR_NAME_POSIX_ACL_DEFAULT,
|
|
listbuf, listsize))));
|
|
free (heapbuf);
|
|
|
|
/* If there is an NFSv4 ACL, follow up with a getxattr syscall
|
|
to see whether the NFSv4 ACL is nontrivial. */
|
|
if (nfsv4_acl)
|
|
{
|
|
ret = getxattr (name, XATTR_NAME_NFSV4_ACL,
|
|
stackbuf.xattr, sizeof stackbuf.xattr);
|
|
if (ret < 0)
|
|
switch (errno)
|
|
{
|
|
case ENODATA: return 0;
|
|
case ERANGE : return 1; /* ACL must be nontrivial. */
|
|
}
|
|
else
|
|
{
|
|
/* It looks like a trivial ACL, but investigate further. */
|
|
ret = acl_nfs4_nontrivial (stackbuf.xattr, ret);
|
|
if (ret < 0)
|
|
{
|
|
errno = EINVAL;
|
|
return ret;
|
|
}
|
|
errno = initial_errno;
|
|
}
|
|
}
|
|
if (ret < 0)
|
|
return - acl_errno_valid (errno);
|
|
return ret;
|
|
|
|
# elif HAVE_ACL_GET_FILE
|
|
|
|
/* POSIX 1003.1e (draft 17 -- abandoned) specific version. */
|
|
/* Linux, FreeBSD, Mac OS X, IRIX, Tru64, Cygwin >= 2.5 */
|
|
int ret;
|
|
|
|
if (HAVE_ACL_EXTENDED_FILE) /* Linux */
|
|
{
|
|
/* On Linux, acl_extended_file is an optimized function: It only
|
|
makes two calls to getxattr(), one for ACL_TYPE_ACCESS, one for
|
|
ACL_TYPE_DEFAULT. */
|
|
ret = acl_extended_file (name);
|
|
}
|
|
else /* FreeBSD, Mac OS X, IRIX, Tru64, Cygwin >= 2.5 */
|
|
{
|
|
# if HAVE_ACL_TYPE_EXTENDED /* Mac OS X */
|
|
/* On Mac OS X, acl_get_file (name, ACL_TYPE_ACCESS)
|
|
and acl_get_file (name, ACL_TYPE_DEFAULT)
|
|
always return NULL / EINVAL. There is no point in making
|
|
these two useless calls. The real ACL is retrieved through
|
|
acl_get_file (name, ACL_TYPE_EXTENDED). */
|
|
acl_t acl = acl_get_file (name, ACL_TYPE_EXTENDED);
|
|
if (acl)
|
|
{
|
|
ret = acl_extended_nontrivial (acl);
|
|
acl_free (acl);
|
|
}
|
|
else
|
|
ret = -1;
|
|
# else /* FreeBSD, IRIX, Tru64, Cygwin >= 2.5 */
|
|
acl_t acl = acl_get_file (name, ACL_TYPE_ACCESS);
|
|
if (acl)
|
|
{
|
|
int saved_errno;
|
|
|
|
ret = acl_access_nontrivial (acl);
|
|
saved_errno = errno;
|
|
acl_free (acl);
|
|
errno = saved_errno;
|
|
# if HAVE_ACL_FREE_TEXT /* Tru64 */
|
|
/* On OSF/1, acl_get_file (name, ACL_TYPE_DEFAULT) always
|
|
returns NULL with errno not set. There is no point in
|
|
making this call. */
|
|
# else /* FreeBSD, IRIX, Cygwin >= 2.5 */
|
|
/* On Linux, FreeBSD, IRIX, acl_get_file (name, ACL_TYPE_ACCESS)
|
|
and acl_get_file (name, ACL_TYPE_DEFAULT) on a directory
|
|
either both succeed or both fail; it depends on the
|
|
file system. Therefore there is no point in making the second
|
|
call if the first one already failed. */
|
|
if (ret == 0 && S_ISDIR (sb->st_mode))
|
|
{
|
|
acl = acl_get_file (name, ACL_TYPE_DEFAULT);
|
|
if (acl)
|
|
{
|
|
# ifdef __CYGWIN__ /* Cygwin >= 2.5 */
|
|
ret = acl_access_nontrivial (acl);
|
|
saved_errno = errno;
|
|
acl_free (acl);
|
|
errno = saved_errno;
|
|
# else
|
|
ret = (0 < acl_entries (acl));
|
|
acl_free (acl);
|
|
# endif
|
|
}
|
|
else
|
|
ret = -1;
|
|
}
|
|
# endif
|
|
}
|
|
else
|
|
ret = -1;
|
|
# endif
|
|
}
|
|
if (ret < 0)
|
|
return - acl_errno_valid (errno);
|
|
return ret;
|
|
|
|
# elif HAVE_FACL && defined GETACL /* Solaris, Cygwin < 2.5, not HP-UX */
|
|
|
|
# if defined ACL_NO_TRIVIAL
|
|
|
|
/* Solaris 10 (newer version), which has additional API declared in
|
|
<sys/acl.h> (acl_t) and implemented in libsec (acl_set, acl_trivial,
|
|
acl_fromtext, ...). */
|
|
return acl_trivial (name);
|
|
|
|
# else /* Solaris, Cygwin, general case */
|
|
|
|
/* Solaris 2.5 through Solaris 10, Cygwin, and contemporaneous versions
|
|
of Unixware. The acl() call returns the access and default ACL both
|
|
at once. */
|
|
{
|
|
/* Initially, try to read the entries into a stack-allocated buffer.
|
|
Use malloc if it does not fit. */
|
|
enum
|
|
{
|
|
alloc_init = 4000 / sizeof (aclent_t), /* >= 3 */
|
|
alloc_max = MIN (INT_MAX, SIZE_MAX / sizeof (aclent_t))
|
|
};
|
|
aclent_t buf[alloc_init];
|
|
size_t alloc = alloc_init;
|
|
aclent_t *entries = buf;
|
|
aclent_t *malloced = NULL;
|
|
int count;
|
|
|
|
for (;;)
|
|
{
|
|
count = acl (name, GETACL, alloc, entries);
|
|
if (count < 0 && errno == ENOSPC)
|
|
{
|
|
/* Increase the size of the buffer. */
|
|
free (malloced);
|
|
if (alloc > alloc_max / 2)
|
|
{
|
|
errno = ENOMEM;
|
|
return -1;
|
|
}
|
|
alloc = 2 * alloc; /* <= alloc_max */
|
|
entries = malloced =
|
|
(aclent_t *) malloc (alloc * sizeof (aclent_t));
|
|
if (entries == NULL)
|
|
{
|
|
errno = ENOMEM;
|
|
return -1;
|
|
}
|
|
continue;
|
|
}
|
|
break;
|
|
}
|
|
if (count < 0)
|
|
{
|
|
if (errno == ENOSYS || errno == ENOTSUP)
|
|
;
|
|
else
|
|
{
|
|
free (malloced);
|
|
return -1;
|
|
}
|
|
}
|
|
else if (count == 0)
|
|
;
|
|
else
|
|
{
|
|
/* Don't use MIN_ACL_ENTRIES: It's set to 4 on Cygwin, but Cygwin
|
|
returns only 3 entries for files with no ACL. But this is safe:
|
|
If there are more than 4 entries, there cannot be only the
|
|
"user::", "group::", "other:", and "mask:" entries. */
|
|
if (count > 4)
|
|
{
|
|
free (malloced);
|
|
return 1;
|
|
}
|
|
|
|
if (acl_nontrivial (count, entries))
|
|
{
|
|
free (malloced);
|
|
return 1;
|
|
}
|
|
}
|
|
free (malloced);
|
|
}
|
|
|
|
# ifdef ACE_GETACL
|
|
/* Solaris also has a different variant of ACLs, used in ZFS and NFSv4
|
|
file systems (whereas the other ones are used in UFS file systems). */
|
|
{
|
|
/* Initially, try to read the entries into a stack-allocated buffer.
|
|
Use malloc if it does not fit. */
|
|
enum
|
|
{
|
|
alloc_init = 4000 / sizeof (ace_t), /* >= 3 */
|
|
alloc_max = MIN (INT_MAX, SIZE_MAX / sizeof (ace_t))
|
|
};
|
|
ace_t buf[alloc_init];
|
|
size_t alloc = alloc_init;
|
|
ace_t *entries = buf;
|
|
ace_t *malloced = NULL;
|
|
int count;
|
|
|
|
for (;;)
|
|
{
|
|
count = acl (name, ACE_GETACL, alloc, entries);
|
|
if (count < 0 && errno == ENOSPC)
|
|
{
|
|
/* Increase the size of the buffer. */
|
|
free (malloced);
|
|
if (alloc > alloc_max / 2)
|
|
{
|
|
errno = ENOMEM;
|
|
return -1;
|
|
}
|
|
alloc = 2 * alloc; /* <= alloc_max */
|
|
entries = malloced = (ace_t *) malloc (alloc * sizeof (ace_t));
|
|
if (entries == NULL)
|
|
{
|
|
errno = ENOMEM;
|
|
return -1;
|
|
}
|
|
continue;
|
|
}
|
|
break;
|
|
}
|
|
if (count < 0)
|
|
{
|
|
if (errno == ENOSYS || errno == EINVAL)
|
|
;
|
|
else
|
|
{
|
|
free (malloced);
|
|
return -1;
|
|
}
|
|
}
|
|
else if (count == 0)
|
|
;
|
|
else
|
|
{
|
|
/* In the old (original Solaris 10) convention:
|
|
If there are more than 3 entries, there cannot be only the
|
|
ACE_OWNER, ACE_GROUP, ACE_OTHER entries.
|
|
In the newer Solaris 10 and Solaris 11 convention:
|
|
If there are more than 6 entries, there cannot be only the
|
|
ACE_OWNER, ACE_GROUP, ACE_EVERYONE entries, each once with
|
|
NEW_ACE_ACCESS_ALLOWED_ACE_TYPE and once with
|
|
NEW_ACE_ACCESS_DENIED_ACE_TYPE. */
|
|
if (count > 6)
|
|
{
|
|
free (malloced);
|
|
return 1;
|
|
}
|
|
|
|
if (acl_ace_nontrivial (count, entries))
|
|
{
|
|
free (malloced);
|
|
return 1;
|
|
}
|
|
}
|
|
free (malloced);
|
|
}
|
|
# endif
|
|
|
|
return 0;
|
|
# endif
|
|
|
|
# elif HAVE_GETACL /* HP-UX */
|
|
|
|
{
|
|
struct acl_entry entries[NACLENTRIES];
|
|
int count;
|
|
|
|
count = getacl (name, NACLENTRIES, entries);
|
|
|
|
if (count < 0)
|
|
{
|
|
/* ENOSYS is seen on newer HP-UX versions.
|
|
EOPNOTSUPP is typically seen on NFS mounts.
|
|
ENOTSUP was seen on Quantum StorNext file systems (cvfs). */
|
|
if (errno == ENOSYS || errno == EOPNOTSUPP || errno == ENOTSUP)
|
|
;
|
|
else
|
|
return -1;
|
|
}
|
|
else if (count == 0)
|
|
return 0;
|
|
else /* count > 0 */
|
|
{
|
|
if (count > NACLENTRIES)
|
|
/* If NACLENTRIES cannot be trusted, use dynamic memory
|
|
allocation. */
|
|
abort ();
|
|
|
|
/* If there are more than 3 entries, there cannot be only the
|
|
(uid,%), (%,gid), (%,%) entries. */
|
|
if (count > 3)
|
|
return 1;
|
|
|
|
{
|
|
struct stat statbuf;
|
|
|
|
if (stat (name, &statbuf) == -1 && errno != EOVERFLOW)
|
|
return -1;
|
|
|
|
return acl_nontrivial (count, entries);
|
|
}
|
|
}
|
|
}
|
|
|
|
# if HAVE_ACLV_H /* HP-UX >= 11.11 */
|
|
|
|
{
|
|
struct acl entries[NACLVENTRIES];
|
|
int count;
|
|
|
|
count = acl ((char *) name, ACL_GET, NACLVENTRIES, entries);
|
|
|
|
if (count < 0)
|
|
{
|
|
/* EOPNOTSUPP is seen on NFS in HP-UX 11.11, 11.23.
|
|
EINVAL is seen on NFS in HP-UX 11.31. */
|
|
if (errno == ENOSYS || errno == EOPNOTSUPP || errno == EINVAL)
|
|
;
|
|
else
|
|
return -1;
|
|
}
|
|
else if (count == 0)
|
|
return 0;
|
|
else /* count > 0 */
|
|
{
|
|
if (count > NACLVENTRIES)
|
|
/* If NACLVENTRIES cannot be trusted, use dynamic memory
|
|
allocation. */
|
|
abort ();
|
|
|
|
/* If there are more than 4 entries, there cannot be only the
|
|
four base ACL entries. */
|
|
if (count > 4)
|
|
return 1;
|
|
|
|
return aclv_nontrivial (count, entries);
|
|
}
|
|
}
|
|
|
|
# endif
|
|
|
|
# elif HAVE_ACLX_GET && defined ACL_AIX_WIP /* AIX */
|
|
|
|
acl_type_t type;
|
|
char aclbuf[1024];
|
|
void *acl = aclbuf;
|
|
size_t aclsize = sizeof (aclbuf);
|
|
mode_t mode;
|
|
|
|
for (;;)
|
|
{
|
|
/* The docs say that type being 0 is equivalent to ACL_ANY, but it
|
|
is not true, in AIX 5.3. */
|
|
type.u64 = ACL_ANY;
|
|
if (aclx_get (name, 0, &type, aclbuf, &aclsize, &mode) >= 0)
|
|
break;
|
|
if (errno == ENOSYS)
|
|
return 0;
|
|
if (errno != ENOSPC)
|
|
{
|
|
if (acl != aclbuf)
|
|
free (acl);
|
|
return -1;
|
|
}
|
|
aclsize = 2 * aclsize;
|
|
if (acl != aclbuf)
|
|
free (acl);
|
|
acl = malloc (aclsize);
|
|
if (acl == NULL)
|
|
{
|
|
errno = ENOMEM;
|
|
return -1;
|
|
}
|
|
}
|
|
|
|
if (type.u64 == ACL_AIXC)
|
|
{
|
|
int result = acl_nontrivial ((struct acl *) acl);
|
|
if (acl != aclbuf)
|
|
free (acl);
|
|
return result;
|
|
}
|
|
else if (type.u64 == ACL_NFS4)
|
|
{
|
|
int result = acl_nfs4_nontrivial ((nfs4_acl_int_t *) acl);
|
|
if (acl != aclbuf)
|
|
free (acl);
|
|
return result;
|
|
}
|
|
else
|
|
{
|
|
/* A newer type of ACL has been introduced in the system.
|
|
We should better support it. */
|
|
if (acl != aclbuf)
|
|
free (acl);
|
|
errno = EINVAL;
|
|
return -1;
|
|
}
|
|
|
|
# elif HAVE_STATACL /* older AIX */
|
|
|
|
union { struct acl a; char room[4096]; } u;
|
|
|
|
if (statacl ((char *) name, STX_NORMAL, &u.a, sizeof (u)) < 0)
|
|
return -1;
|
|
|
|
return acl_nontrivial (&u.a);
|
|
|
|
# elif HAVE_ACLSORT /* NonStop Kernel */
|
|
|
|
{
|
|
struct acl entries[NACLENTRIES];
|
|
int count;
|
|
|
|
count = acl ((char *) name, ACL_GET, NACLENTRIES, entries);
|
|
|
|
if (count < 0)
|
|
{
|
|
if (errno == ENOSYS || errno == ENOTSUP)
|
|
;
|
|
else
|
|
return -1;
|
|
}
|
|
else if (count == 0)
|
|
return 0;
|
|
else /* count > 0 */
|
|
{
|
|
if (count > NACLENTRIES)
|
|
/* If NACLENTRIES cannot be trusted, use dynamic memory
|
|
allocation. */
|
|
abort ();
|
|
|
|
/* If there are more than 4 entries, there cannot be only the
|
|
four base ACL entries. */
|
|
if (count > 4)
|
|
return 1;
|
|
|
|
return acl_nontrivial (count, entries);
|
|
}
|
|
}
|
|
|
|
# endif
|
|
}
|
|
#endif
|
|
|
|
return 0;
|
|
}
|