mirror of
https://github.com/samba-team/samba.git
synced 2025-01-22 22:04:08 +03:00
019f643c69
Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Thu Oct 20 02:29:52 CEST 2011 on sn-devel-104
285 lines
7.3 KiB
C
285 lines
7.3 KiB
C
#include <stdlib.h>
|
|
#include <string.h>
|
|
#include <errno.h>
|
|
#include <popt.h>
|
|
#include "libsmbclient.h"
|
|
#include "get_auth_data_fn.h"
|
|
|
|
enum acl_mode
|
|
{
|
|
SMB_ACL_LIST,
|
|
SMB_ACL_GET,
|
|
SMB_ACL_SET,
|
|
SMB_ACL_DELETE,
|
|
SMB_ACL_MODIFY,
|
|
SMB_ACL_ADD,
|
|
SMB_ACL_CHOWN,
|
|
SMB_ACL_CHGRP
|
|
};
|
|
|
|
|
|
int main(int argc, const char *argv[])
|
|
{
|
|
int opt;
|
|
int flags;
|
|
int debug = 0;
|
|
int numeric = 0;
|
|
int stat_and_retry = 0;
|
|
int full_time_names = 0;
|
|
enum acl_mode mode = SMB_ACL_LIST;
|
|
static const char *the_acl = NULL;
|
|
int ret;
|
|
char *p;
|
|
const char *debugstr;
|
|
char path[1024];
|
|
char value[1024];
|
|
poptContext pc;
|
|
struct stat st;
|
|
struct poptOption long_options[] =
|
|
{
|
|
POPT_AUTOHELP
|
|
{
|
|
"numeric", 'n', POPT_ARG_NONE, &numeric,
|
|
1, "Don't resolve sids or masks to names"
|
|
},
|
|
{
|
|
"debug", 'd', POPT_ARG_INT, &debug,
|
|
0, "Set debug level (0-100)"
|
|
},
|
|
{
|
|
"full_time_names", 'f', POPT_ARG_NONE, &full_time_names,
|
|
1,
|
|
"Use new style xattr names, which include CREATE_TIME"
|
|
},
|
|
{
|
|
"delete", 'D', POPT_ARG_STRING, NULL,
|
|
'D', "Delete an acl", "ACL"
|
|
},
|
|
{
|
|
"modify", 'M', POPT_ARG_STRING, NULL,
|
|
'M', "Modify an acl", "ACL"
|
|
},
|
|
{
|
|
"add", 'a', POPT_ARG_STRING, NULL,
|
|
'a', "Add an acl", "ACL"
|
|
},
|
|
{
|
|
"set", 'S', POPT_ARG_STRING, NULL,
|
|
'S', "Set acls", "ACLS"
|
|
},
|
|
{
|
|
"chown", 'C', POPT_ARG_STRING, NULL,
|
|
'C', "Change ownership of a file", "USERNAME"
|
|
},
|
|
{
|
|
"chgrp", 'G', POPT_ARG_STRING, NULL,
|
|
'G', "Change group ownership of a file", "GROUPNAME"
|
|
},
|
|
{
|
|
"get", 'g', POPT_ARG_STRING, NULL,
|
|
'g', "Get a specific acl attribute", "ACL"
|
|
},
|
|
{
|
|
"stat_and_retry", 'R', POPT_ARG_NONE, &stat_and_retry,
|
|
1, "After 'get' do 'stat' and another 'get'"
|
|
},
|
|
{
|
|
NULL
|
|
}
|
|
};
|
|
|
|
setbuf(stdout, NULL);
|
|
|
|
pc = poptGetContext("smbcacls", argc, argv, long_options, 0);
|
|
|
|
poptSetOtherOptionHelp(pc, "smb://server1/share1/filename");
|
|
|
|
while ((opt = poptGetNextOpt(pc)) != -1) {
|
|
switch (opt) {
|
|
case 'S':
|
|
the_acl = strdup(poptGetOptArg(pc));
|
|
mode = SMB_ACL_SET;
|
|
break;
|
|
|
|
case 'D':
|
|
the_acl = strdup(poptGetOptArg(pc));
|
|
mode = SMB_ACL_DELETE;
|
|
break;
|
|
|
|
case 'M':
|
|
the_acl = strdup(poptGetOptArg(pc));
|
|
mode = SMB_ACL_MODIFY;
|
|
break;
|
|
|
|
case 'a':
|
|
the_acl = strdup(poptGetOptArg(pc));
|
|
mode = SMB_ACL_ADD;
|
|
break;
|
|
|
|
case 'g':
|
|
the_acl = strdup(poptGetOptArg(pc));
|
|
mode = SMB_ACL_GET;
|
|
break;
|
|
|
|
case 'C':
|
|
the_acl = strdup(poptGetOptArg(pc));
|
|
mode = SMB_ACL_CHOWN;
|
|
break;
|
|
|
|
case 'G':
|
|
the_acl = strdup(poptGetOptArg(pc));
|
|
mode = SMB_ACL_CHGRP;
|
|
break;
|
|
}
|
|
}
|
|
|
|
/* Make connection to server */
|
|
if(!poptPeekArg(pc)) {
|
|
poptPrintUsage(pc, stderr, 0);
|
|
return 1;
|
|
}
|
|
|
|
strcpy(path, poptGetArg(pc));
|
|
|
|
if (smbc_init(get_auth_data_fn, debug) != 0)
|
|
{
|
|
printf("Could not initialize smbc_ library\n");
|
|
return 1;
|
|
}
|
|
|
|
if (full_time_names) {
|
|
SMBCCTX *context = smbc_set_context(NULL);
|
|
smbc_setOptionFullTimeNames(context, 1);
|
|
}
|
|
|
|
/* Perform requested action */
|
|
|
|
switch(mode)
|
|
{
|
|
case SMB_ACL_LIST:
|
|
ret = smbc_listxattr(path, value, sizeof(value)-2);
|
|
if (ret < 0)
|
|
{
|
|
printf("Could not get attribute list for [%s] %d: %s\n",
|
|
path, errno, strerror(errno));
|
|
return 1;
|
|
}
|
|
|
|
/*
|
|
* The list of attributes has a series of null-terminated strings.
|
|
* The list of strings terminates with an extra null byte, thus two in
|
|
* a row. Ensure that our buffer, which is conceivably shorter than
|
|
* the list of attributes, actually ends with two null bytes in a row.
|
|
*/
|
|
value[sizeof(value) - 2] = '\0';
|
|
value[sizeof(value) - 1] = '\0';
|
|
printf("Supported attributes:\n");
|
|
for (p = value; *p; p += strlen(p) + 1)
|
|
{
|
|
printf("\t%s\n", p);
|
|
}
|
|
break;
|
|
|
|
case SMB_ACL_GET:
|
|
do
|
|
{
|
|
if (the_acl == NULL)
|
|
{
|
|
if (numeric)
|
|
{
|
|
the_acl = "system.*";
|
|
}
|
|
else
|
|
{
|
|
the_acl = "system.*+";
|
|
}
|
|
}
|
|
ret = smbc_getxattr(path, the_acl, value, sizeof(value));
|
|
if (ret < 0)
|
|
{
|
|
printf("Could not get attributes for [%s] %d: %s\n",
|
|
path, errno, strerror(errno));
|
|
return 1;
|
|
}
|
|
|
|
printf("Attributes for [%s] are:\n%s\n", path, value);
|
|
|
|
if (stat_and_retry)
|
|
{
|
|
if (smbc_stat(path, &st) < 0)
|
|
{
|
|
perror("smbc_stat");
|
|
return 1;
|
|
}
|
|
}
|
|
|
|
--stat_and_retry;
|
|
} while (stat_and_retry >= 0);
|
|
break;
|
|
|
|
case SMB_ACL_ADD:
|
|
flags = SMBC_XATTR_FLAG_CREATE;
|
|
debugstr = "add attributes";
|
|
goto do_set;
|
|
|
|
case SMB_ACL_MODIFY:
|
|
flags = SMBC_XATTR_FLAG_REPLACE;
|
|
debugstr = "modify attributes";
|
|
goto do_set;
|
|
|
|
case SMB_ACL_CHOWN:
|
|
snprintf(value, sizeof(value),
|
|
"system.nt_sec_desc.owner%s:%s",
|
|
numeric ? "" : "+", the_acl);
|
|
the_acl = value;
|
|
debugstr = "chown owner";
|
|
goto do_set;
|
|
|
|
case SMB_ACL_CHGRP:
|
|
snprintf(value, sizeof(value),
|
|
"system.nt_sec_desc.group%s:%s",
|
|
numeric ? "" : "+", the_acl);
|
|
the_acl = value;
|
|
debugstr = "change group";
|
|
goto do_set;
|
|
|
|
case SMB_ACL_SET:
|
|
flags = 0;
|
|
debugstr = "set attributes";
|
|
|
|
do_set:
|
|
if ((p = strchr(the_acl, ':')) == NULL)
|
|
{
|
|
printf("Missing value. ACL must be name:value pair\n");
|
|
return 1;
|
|
}
|
|
|
|
*p++ = '\0';
|
|
|
|
ret = smbc_setxattr(path, the_acl, p, strlen(p), flags);
|
|
if (ret < 0)
|
|
{
|
|
printf("Could not %s for [%s] %d: %s\n",
|
|
debugstr, path, errno, strerror(errno));
|
|
return 1;
|
|
}
|
|
break;
|
|
|
|
case SMB_ACL_DELETE:
|
|
ret = smbc_removexattr(path, the_acl);
|
|
if (ret < 0)
|
|
{
|
|
printf("Could not remove attribute %s for [%s] %d:%s\n",
|
|
the_acl, path, errno, strerror(errno));
|
|
return 1;
|
|
}
|
|
break;
|
|
|
|
default:
|
|
printf("operation not yet implemented\n");
|
|
break;
|
|
}
|
|
|
|
return 0;
|
|
}
|