| ##/bin/bash |
| #----------------------------------------------------------------------- |
| # Copyright (c) 2000-2004 Silicon Graphics, Inc. All Rights Reserved. |
| # This program is free software; you can redistribute it and/or modify |
| # it under the terms of the GNU General Public License as published by |
| # the Free Software Foundation; either version 2 of the License, or |
| # (at your option) any later version. |
| # |
| # This program is distributed in the hope that it will be useful, |
| # but WITHOUT ANY WARRANTY; without even the implied warranty of |
| # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
| # GNU General Public License for more details. |
| # |
| # You should have received a copy of the GNU General Public License |
| # along with this program; if not, write to the Free Software |
| # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 |
| # USA |
| # |
| # Contact information: Silicon Graphics, Inc., 1500 Crittenden Lane, |
| # Mountain View, CA 94043, USA, or: http://www.sgi.com |
| #----------------------------------------------------------------------- |
| # common extended attribute and ACL support |
| |
| # pick three unused user/group ids, store them as $acl[1-3] |
| # |
| _acl_setup_ids() |
| { |
| eval `(_cat_passwd; _cat_group) | awk -F: ' |
| { ids[$3]=1 } |
| END { |
| j=1 |
| for(i=1; i<1000000 && j<=3;i++){ |
| if (! (i in ids)) { |
| printf "acl%d=%d;", j, i; |
| j++ |
| } |
| } |
| }'` |
| } |
| |
| # filter for the acl ids selected above |
| # |
| _acl_filter_id() |
| { |
| sed \ |
| -e "s/u:$acl1/u:id1/" \ |
| -e "s/u:$acl2/u:id2/" \ |
| -e "s/u:$acl3/u:id3/" \ |
| -e "s/g:$acl1/g:id1/" \ |
| -e "s/g:$acl2/g:id2/" \ |
| -e "s/g:$acl3/g:id3/" \ |
| -e "s/ $acl1 / id1 /" \ |
| -e "s/ $acl2 / id2 /" \ |
| -e "s/ $acl3 / id3 /" |
| } |
| |
| # filtered ls |
| # |
| _acl_ls() |
| { |
| _ls_l -n $* | awk '{ print $1, $3, $4, $NF }' | _acl_filter_id |
| } |
| |
| # |
| _acl_list() |
| { |
| _file1=$1 |
| |
| if [ $HOSTOS = "IRIX" ]; then |
| ls -dD $_file1 | _acl_filter_id |
| else |
| chacl -l $_file1 | _acl_filter_id |
| fi |
| } |
| |
| # create an ACL with n ACEs in it |
| # |
| _create_n_aces() |
| { |
| let n=$1-4 |
| acl='u::rwx,g::rwx,o::rwx,m::rwx' # 4 ace acl start |
| while [ $n -ne 0 ]; do |
| acl="$acl,u:$n:rwx" |
| let n=$n-1 |
| done |
| echo $acl |
| } |
| |
| # filter user ace names to user ids |
| # |
| _filter_aces() |
| { |
| tmp_file=`mktemp /tmp/ace.XXXXXX` |
| |
| (_cat_passwd; _cat_group) > $tmp_file |
| |
| $AWK_PROG -v tmpfile=$tmp_file ' |
| BEGIN { |
| FS=":" |
| while ( getline <tmpfile > 0 ) { |
| idlist[$1] = $3 |
| } |
| } |
| /^user/ { if ($2 in idlist) sub($2, idlist[$2]); print; next} |
| /^u/ { if ($2 in idlist) sub($2, idlist[$2]); print; next} |
| /^default:user/ { if ($3 in idlist) sub($3, idlist[$3]); print; next} |
| {print} |
| ' |
| rm -f $tmp_file |
| } |
| |
| _filter_aces_notypes() |
| { |
| tr '\[' '\012' | tr ']' '\012' | tr ',' '\012' | _filter_aces|\ |
| sed -e 's/u:/user:/' -e 's/g:/group:/' -e 's/o:/other:/' -e 's/m:/mask:/' |
| } |
| |
| _require_acls() |
| { |
| if [ ! -x /bin/chacl -a ! -x /usr/bin/chacl -a ! -x /sbin/chacl ]; then |
| _notrun "chacl command not found" |
| fi |
| |
| # |
| # Test if chacl is able to list ACLs on the target filesystems. On really |
| # old kernels the system calls might not be implemented at all, but the |
| # more common case is that the tested filesystem simply doesn't support |
| # ACLs. |
| # |
| touch $TEST_DIR/syscalltest |
| chacl -l $TEST_DIR/syscalltest > $TEST_DIR/syscalltest.out 2>&1 |
| cat $TEST_DIR/syscalltest.out >> $here/$seq.full |
| |
| if grep -q 'Function not implemented' $TEST_DIR/syscalltest.out; then |
| _notrun "kernel does not support ACLs" |
| fi |
| if grep -q 'Operation not supported' $TEST_DIR/syscalltest.out; then |
| _notrun "ACLs not supported by this filesystem type: $FSTYP" |
| fi |
| |
| rm -f $TEST_DIR/syscalltest.out |
| } |
| |
| _list_acl() |
| { |
| file=$1 |
| |
| ls -dD $file | _acl_filter_id |
| } |
| |
| _require_attrs() |
| { |
| [ -n $ATTR_PROG ] || _notrun "attr command not found" |
| [ -n $GETFATTR_PROG ] || _notrun "getfattr command not found" |
| [ -n $SETFATTR_PROG ] || _notrun "setfattr command not found" |
| |
| # |
| # Test if chacl is able to write an attribute on the target filesystems. |
| # On really old kernels the system calls might not be implemented at all, |
| # but the more common case is that the tested filesystem simply doesn't |
| # support attributes. Note that we can't simply list attributes as |
| # various security modules generate synthetic attributes not actually |
| # stored on disk. |
| # |
| touch $TEST_DIR/syscalltest |
| attr -s "user.xfstests" -V "attr" $TEST_DIR > $TEST_DIR/syscalltest.out 2>&1 |
| cat $TEST_DIR/syscalltest.out >> $here/$seq.full |
| |
| if grep -q 'Function not implemented' $TEST_DIR/syscalltest.out; then |
| _notrun "kernel does not support attrs" |
| fi |
| if grep -q 'Operation not supported' $TEST_DIR/syscalltest.out; then |
| _notrun "attrs not supported by this filesystem type: $FSTYP" |
| fi |
| |
| rm -f $TEST_DIR/syscalltest.out |
| } |
| |
| # make sure this script returns success |
| /bin/true |