1*00b67f09SDavid van Moolenbroek /* $NetBSD: fsaccess.c,v 1.4 2014/12/10 04:38:01 christos Exp $ */
2*00b67f09SDavid van Moolenbroek
3*00b67f09SDavid van Moolenbroek /*
4*00b67f09SDavid van Moolenbroek * Copyright (C) 2004-2007 Internet Systems Consortium, Inc. ("ISC")
5*00b67f09SDavid van Moolenbroek * Copyright (C) 2000, 2001 Internet Software Consortium.
6*00b67f09SDavid van Moolenbroek *
7*00b67f09SDavid van Moolenbroek * Permission to use, copy, modify, and/or distribute this software for any
8*00b67f09SDavid van Moolenbroek * purpose with or without fee is hereby granted, provided that the above
9*00b67f09SDavid van Moolenbroek * copyright notice and this permission notice appear in all copies.
10*00b67f09SDavid van Moolenbroek *
11*00b67f09SDavid van Moolenbroek * THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
12*00b67f09SDavid van Moolenbroek * REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
13*00b67f09SDavid van Moolenbroek * AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
14*00b67f09SDavid van Moolenbroek * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
15*00b67f09SDavid van Moolenbroek * LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
16*00b67f09SDavid van Moolenbroek * OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
17*00b67f09SDavid van Moolenbroek * PERFORMANCE OF THIS SOFTWARE.
18*00b67f09SDavid van Moolenbroek */
19*00b67f09SDavid van Moolenbroek
20*00b67f09SDavid van Moolenbroek /* Id: fsaccess.c,v 1.13 2007/06/19 23:47:18 tbox Exp */
21*00b67f09SDavid van Moolenbroek
22*00b67f09SDavid van Moolenbroek #include <config.h>
23*00b67f09SDavid van Moolenbroek
24*00b67f09SDavid van Moolenbroek #include <sys/types.h>
25*00b67f09SDavid van Moolenbroek #include <sys/stat.h>
26*00b67f09SDavid van Moolenbroek
27*00b67f09SDavid van Moolenbroek #include <errno.h>
28*00b67f09SDavid van Moolenbroek
29*00b67f09SDavid van Moolenbroek #include "errno2result.h"
30*00b67f09SDavid van Moolenbroek
31*00b67f09SDavid van Moolenbroek /*! \file
32*00b67f09SDavid van Moolenbroek * \brief
33*00b67f09SDavid van Moolenbroek * The OS-independent part of the API is in lib/isc.
34*00b67f09SDavid van Moolenbroek */
35*00b67f09SDavid van Moolenbroek #include "../fsaccess.c"
36*00b67f09SDavid van Moolenbroek
37*00b67f09SDavid van Moolenbroek isc_result_t
isc_fsaccess_set(const char * path,isc_fsaccess_t access)38*00b67f09SDavid van Moolenbroek isc_fsaccess_set(const char *path, isc_fsaccess_t access) {
39*00b67f09SDavid van Moolenbroek struct stat statb;
40*00b67f09SDavid van Moolenbroek mode_t mode;
41*00b67f09SDavid van Moolenbroek isc_boolean_t is_dir = ISC_FALSE;
42*00b67f09SDavid van Moolenbroek isc_fsaccess_t bits;
43*00b67f09SDavid van Moolenbroek isc_result_t result;
44*00b67f09SDavid van Moolenbroek
45*00b67f09SDavid van Moolenbroek if (stat(path, &statb) != 0)
46*00b67f09SDavid van Moolenbroek return (isc__errno2result(errno));
47*00b67f09SDavid van Moolenbroek
48*00b67f09SDavid van Moolenbroek if ((statb.st_mode & S_IFDIR) != 0)
49*00b67f09SDavid van Moolenbroek is_dir = ISC_TRUE;
50*00b67f09SDavid van Moolenbroek else if ((statb.st_mode & S_IFREG) == 0)
51*00b67f09SDavid van Moolenbroek return (ISC_R_INVALIDFILE);
52*00b67f09SDavid van Moolenbroek
53*00b67f09SDavid van Moolenbroek result = check_bad_bits(access, is_dir);
54*00b67f09SDavid van Moolenbroek if (result != ISC_R_SUCCESS)
55*00b67f09SDavid van Moolenbroek return (result);
56*00b67f09SDavid van Moolenbroek
57*00b67f09SDavid van Moolenbroek /*
58*00b67f09SDavid van Moolenbroek * Done with checking bad bits. Set mode_t.
59*00b67f09SDavid van Moolenbroek */
60*00b67f09SDavid van Moolenbroek mode = 0;
61*00b67f09SDavid van Moolenbroek
62*00b67f09SDavid van Moolenbroek #define SET_AND_CLEAR1(modebit) \
63*00b67f09SDavid van Moolenbroek if ((access & bits) != 0) { \
64*00b67f09SDavid van Moolenbroek mode |= modebit; \
65*00b67f09SDavid van Moolenbroek access &= ~bits; \
66*00b67f09SDavid van Moolenbroek }
67*00b67f09SDavid van Moolenbroek #define SET_AND_CLEAR(user, group, other) \
68*00b67f09SDavid van Moolenbroek SET_AND_CLEAR1(user); \
69*00b67f09SDavid van Moolenbroek bits <<= STEP; \
70*00b67f09SDavid van Moolenbroek SET_AND_CLEAR1(group); \
71*00b67f09SDavid van Moolenbroek bits <<= STEP; \
72*00b67f09SDavid van Moolenbroek SET_AND_CLEAR1(other);
73*00b67f09SDavid van Moolenbroek
74*00b67f09SDavid van Moolenbroek bits = ISC_FSACCESS_READ | ISC_FSACCESS_LISTDIRECTORY;
75*00b67f09SDavid van Moolenbroek
76*00b67f09SDavid van Moolenbroek SET_AND_CLEAR(S_IRUSR, S_IRGRP, S_IROTH);
77*00b67f09SDavid van Moolenbroek
78*00b67f09SDavid van Moolenbroek bits = ISC_FSACCESS_WRITE |
79*00b67f09SDavid van Moolenbroek ISC_FSACCESS_CREATECHILD |
80*00b67f09SDavid van Moolenbroek ISC_FSACCESS_DELETECHILD;
81*00b67f09SDavid van Moolenbroek
82*00b67f09SDavid van Moolenbroek SET_AND_CLEAR(S_IWUSR, S_IWGRP, S_IWOTH);
83*00b67f09SDavid van Moolenbroek
84*00b67f09SDavid van Moolenbroek bits = ISC_FSACCESS_EXECUTE |
85*00b67f09SDavid van Moolenbroek ISC_FSACCESS_ACCESSCHILD;
86*00b67f09SDavid van Moolenbroek
87*00b67f09SDavid van Moolenbroek SET_AND_CLEAR(S_IXUSR, S_IXGRP, S_IXOTH);
88*00b67f09SDavid van Moolenbroek
89*00b67f09SDavid van Moolenbroek INSIST(access == 0);
90*00b67f09SDavid van Moolenbroek
91*00b67f09SDavid van Moolenbroek if (chmod(path, mode) < 0)
92*00b67f09SDavid van Moolenbroek return (isc__errno2result(errno));
93*00b67f09SDavid van Moolenbroek
94*00b67f09SDavid van Moolenbroek return (ISC_R_SUCCESS);
95*00b67f09SDavid van Moolenbroek }
96