diff options
author | Kay Sievers <kay@vrfy.org> | 2012-04-10 14:53:38 +0200 |
---|---|---|
committer | Kay Sievers <kay@vrfy.org> | 2012-04-10 14:59:45 +0200 |
commit | 78b2e3a632748fbeae8a9eb70ab1940e4a70619a (patch) | |
tree | 10225b4b661a1f164d0b3e4a2e68c9478d0045a8 /src/shared/acl.c | |
parent | d7832d2c6e0ef5f2839a2296c1cc2fc85c7d9632 (diff) |
util: move ACL code into internal library
Diffstat (limited to 'src/shared/acl.c')
-rw-r--r-- | src/shared/acl.c | 68 |
1 files changed, 68 insertions, 0 deletions
diff --git a/src/shared/acl.c b/src/shared/acl.c new file mode 100644 index 0000000000..d6a80f44ae --- /dev/null +++ b/src/shared/acl.c @@ -0,0 +1,68 @@ +/*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/ + +/*** + This file is part of systemd. + + Copyright 2011 Lennart Poettering + + systemd is free software; you can redistribute it and/or modify it + under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 2 of the License, or + (at your option) any later version. + + systemd is distributed in the hope that it will be useful, but + WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + General Public License for more details. + + You should have received a copy of the GNU General Public License + along with systemd; If not, see <http://www.gnu.org/licenses/>. +***/ + +#include <assert.h> +#include <sys/acl.h> +#include <acl/libacl.h> +#include <errno.h> +#include <stdbool.h> + +#include "acl.h" + +int acl_find_uid(acl_t acl, uid_t uid, acl_entry_t *entry) { + acl_entry_t i; + int found; + + assert(acl); + assert(entry); + + for (found = acl_get_entry(acl, ACL_FIRST_ENTRY, &i); + found > 0; + found = acl_get_entry(acl, ACL_NEXT_ENTRY, &i)) { + + acl_tag_t tag; + uid_t *u; + bool b; + + if (acl_get_tag_type(i, &tag) < 0) + return -errno; + + if (tag != ACL_USER) + continue; + + u = acl_get_qualifier(i); + if (!u) + return -errno; + + b = *u == uid; + acl_free(u); + + if (b) { + *entry = i; + return 1; + } + } + + if (found < 0) + return -errno; + + return 0; +} |