posix1e/acl_perm.c

   1 /*
   2  * Copyright (c) 2004-2010 Apple, Inc. All rights reserved.
   3  *
   4  * @APPLE_LICENSE_HEADER_START@
   5  *
   6  * This file contains Original Code and/or Modifications of Original Code
   7  * as defined in and that are subject to the Apple Public Source License
   8  * Version 2.0 (the 'License'). You may not use this file except in
   9  * compliance with the License. Please obtain a copy of the License at
  10  * http://www.opensource.apple.com/apsl/ and read it before using this
  11  * file.
  12  *
  13  * The Original Code and all software distributed under the License are
  14  * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
  15  * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
  16  * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
  17  * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
  18  * Please see the License for the specific language governing rights and
  19  * limitations under the License.
  20  *
  21  * @APPLE_LICENSE_HEADER_END@
  22  */
  23
  24 #include <sys/appleapiopts.h>
  25 #include <sys/types.h>
  26 #include <sys/acl.h>
  27 #include <errno.h>
  28 #include <stdlib.h>
  29 #include <string.h>
  30
  31 #include "aclvar.h"
  32
  33 #if __DARWIN_ACL_READ_DATA != KAUTH_VNODE_READ_DATA
  34 #  error __DARWIN_ACL_READ_DATA != KAUTH_VNODE_READ_DATA
  35 #endif
  36 #if __DARWIN_ACL_LIST_DIRECTORY != KAUTH_VNODE_LIST_DIRECTORY
  37 #  error __DARWIN_ACL_LIST_DIRECTORY != KAUTH_VNODE_LIST_DIRECTORY
  38 #endif
  39 #if __DARWIN_ACL_WRITE_DATA != KAUTH_VNODE_WRITE_DATA
  40 #  error __DARWIN_ACL_WRITE_DATA != KAUTH_VNODE_WRITE_DATA
  41 #endif
  42 #if __DARWIN_ACL_ADD_FILE != KAUTH_VNODE_ADD_FILE
  43 #  error __DARWIN_ACL_ADD_FILE != KAUTH_VNODE_ADD_FILE
  44 #endif
  45 #if __DARWIN_ACL_EXECUTE != KAUTH_VNODE_EXECUTE
  46 #  error __DARWIN_ACL_EXECUTE != KAUTH_VNODE_EXECUTE
  47 #endif
  48 #if __DARWIN_ACL_SEARCH != KAUTH_VNODE_SEARCH
  49 #  error __DARWIN_ACL_SEARCH != KAUTH_VNODE_SEARCH
  50 #endif
  51 #if __DARWIN_ACL_DELETE != KAUTH_VNODE_DELETE
  52 #  error __DARWIN_ACL_DELETE != KAUTH_VNODE_DELETE
  53 #endif
  54 #if __DARWIN_ACL_APPEND_DATA != KAUTH_VNODE_APPEND_DATA
  55 #  error __DARWIN_ACL_APPEND_DATA != KAUTH_VNODE_APPEND_DATA
  56 #endif
  57 #if __DARWIN_ACL_ADD_SUBDIRECTORY != KAUTH_VNODE_ADD_SUBDIRECTORY
  58 #  error __DARWIN_ACL_ADD_SUBDIRECTORY != KAUTH_VNODE_ADD_SUBDIRECTORY
  59 #endif
  60 #if __DARWIN_ACL_DELETE_CHILD != KAUTH_VNODE_DELETE_CHILD
  61 #  error __DARWIN_ACL_DELETE_CHILD != KAUTH_VNODE_DELETE_CHILD
  62 #endif
  63 #if __DARWIN_ACL_READ_ATTRIBUTES != KAUTH_VNODE_READ_ATTRIBUTES
  64 #  error __DARWIN_ACL_READ_ATTRIBUTES != KAUTH_VNODE_READ_ATTRIBUTES
  65 #endif
  66 #if __DARWIN_ACL_WRITE_ATTRIBUTES != KAUTH_VNODE_WRITE_ATTRIBUTES
  67 #  error __DARWIN_ACL_WRITE_ATTRIBUTES != KAUTH_VNODE_WRITE_ATTRIBUTES
  68 #endif
  69 #if __DARWIN_ACL_READ_EXTATTRIBUTES != KAUTH_VNODE_READ_EXTATTRIBUTES
  70 #  error __DARWIN_ACL_READ_EXTATTRIBUTES != KAUTH_VNODE_READ_EXTATTRIBUTES
  71 #endif
  72 #if __DARWIN_ACL_WRITE_EXTATTRIBUTES != KAUTH_VNODE_WRITE_EXTATTRIBUTES
  73 #  error __DARWIN_ACL_WRITE_EXTATTRIBUTES != KAUTH_VNODE_WRITE_EXTATTRIBUTES
  74 #endif
  75 #if __DARWIN_ACL_READ_SECURITY != KAUTH_VNODE_READ_SECURITY
  76 #  error __DARWIN_ACL_READ_SECURITY != KAUTH_VNODE_READ_SECURITY
  77 #endif
  78 #if __DARWIN_ACL_WRITE_SECURITY != KAUTH_VNODE_WRITE_SECURITY
  79 #  error __DARWIN_ACL_WRITE_SECURITY != KAUTH_VNODE_WRITE_SECURITY
  80 #endif
  81 #if __DARWIN_ACL_CHANGE_OWNER != KAUTH_VNODE_CHANGE_OWNER
  82 #  error __DARWIN_ACL_CHANGE_OWNER != KAUTH_VNODE_CHANGE_OWNER
  83 #endif
  84
  85 int
  86 acl_add_perm(acl_permset_t permset, acl_perm_t perm)
  87 {
  88         /* XXX validate perms */
  89         _ACL_VALIDATE_PERM(perm);
  90
  91         permset->ap_perms |= perm;
  92         return(0);
  93 }
  94
  95 int
  96 acl_clear_perms(acl_permset_t permset)
  97 {
  98         /* XXX validate perms */
  99
 100         permset->ap_perms = 0;
 101         return(0);
 102 }
 103
 104 int
 105 acl_delete_perm(acl_permset_t permset, acl_perm_t perm)
 106 {
 107         /* XXX validate perms */
 108         _ACL_VALIDATE_PERM(perm);
 109
 110         permset->ap_perms &= ~perm;
 111         return(0);
 112 }
 113
 114 int
 115 acl_get_perm_np(acl_permset_t permset, acl_perm_t perm)
 116 {
 117         _ACL_VALIDATE_PERM(perm);
 118
 119         return((perm & permset->ap_perms) ? 1 : 0);
 120 }
 121
 122 int
 123 acl_get_permset(acl_entry_t entry, acl_permset_t *permset_p)
 124 {
 125         _ACL_VALIDATE_ENTRY(entry);
 126
 127         *permset_p = (acl_permset_t)&entry->ae_perms;
 128         return(0);
 129 }
 130
 131 int
 132 acl_set_permset(acl_entry_t entry, acl_permset_t permset)
 133 {
 134         _ACL_VALIDATE_ENTRY(entry);
 135
 136         entry->ae_perms = permset->ap_perms;
 137         return(0);
 138 }
 139
 140 int
 141 acl_maximal_permset_mask_np(acl_permset_mask_t * mask_p)
 142 {
 143         /* Bitwise or of all possible acl_perm_t values */
 144         *mask_p = _ACL_PERMS_MASK;
 145         return (0);
 146 }
 147
 148 int
 149 acl_get_permset_mask_np(acl_entry_t entry, acl_permset_mask_t * mask_p)
 150 {
 151         _ACL_VALIDATE_ENTRY(entry);
 152
 153         *mask_p = (acl_permset_mask_t)entry->ae_perms;
 154         return (0);
 155 }
 156
 157 int
 158 acl_set_permset_mask_np(acl_entry_t entry, acl_permset_mask_t mask)
 159 {
 160         _ACL_VALIDATE_ENTRY(entry);
 161         _ACL_VALIDATE_PERM(mask);
 162
 163         entry->ae_perms = mask;
 164         return (0);
 165 }