From patchwork Sat Aug 20 03:27:22 2011
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Shirish Pargaonkar <shirishpargaonkar@gmail.com>
X-Patchwork-Id: 1082232
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by demeter2.kernel.org (8.14.4/8.14.4) with ESMTP id p7K3LdTn023075
	for <patchwork-linux-cifs@patchwork.kernel.org>;
	Sat, 20 Aug 2011 03:21:46 GMT
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1754932Ab1HTDVq (ORCPT
	<rfc822;patchwork-linux-cifs@patchwork.kernel.org>);
	Fri, 19 Aug 2011 23:21:46 -0400
Received: from mail-gw0-f46.google.com ([74.125.83.46]:64769 "EHLO
	mail-gw0-f46.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1754754Ab1HTDVp (ORCPT
	<rfc822; linux-cifs@vger.kernel.org>); Fri, 19 Aug 2011 23:21:45 -0400
Received: by mail-gw0-f46.google.com with SMTP id a12so2047562gwa.19
	for <linux-cifs@vger.kernel.org>;
	Fri, 19 Aug 2011 20:21:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=from:to:cc:subject:date:message-id:x-mailer;
	bh=RfyCLSAvsKFYJQ9lo5RgcU/HRMkMJPonFAPePiQ5k0g=;
	b=PTayi7JsqF5IzcsqS5FBaz16AGCeqT3wJx/otOzQCwbwuKIebnQVYnvOFrNMy6zBZr
	OLWmQcCvsMf8SUvxGehvWzl5jGq8wMlQlX5k096SwZ8+szlgt1hCYFT2dxcV2zDvfGlT
	u1Fe/UjI77tNoEj14A+yf2QHs0m8+Mrk+/H0c=
Received: by 10.101.182.31 with SMTP id j31mr75982anp.2.1313810505018;
	Fri, 19 Aug 2011 20:21:45 -0700 (PDT)
Received: from localhost ([32.97.110.58]) by mx.google.com with ESMTPS id
	k20sm3168262and.31.2011.08.19.20.21.43
	(version=TLSv1/SSLv3 cipher=OTHER);
	Fri, 19 Aug 2011 20:21:44 -0700 (PDT)
From: shirishpargaonkar@gmail.com
To: jlayton@samba.org
Cc: linux-cifs@vger.kernel.org,
	Shirish Pargaonkar <shirishpargaonkar@gmail.com>
Subject: [PATCH 1/5] cifs-utils: cifsacl utilities: Create file cifsacl.h
Date: Fri, 19 Aug 2011 22:27:22 -0500
Message-Id: <1313810842-2268-1-git-send-email-shirishpargaonkar@gmail.com>
X-Mailer: git-send-email 1.6.0.2
Sender: linux-cifs-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-cifs.vger.kernel.org>
X-Mailing-List: linux-cifs@vger.kernel.org
X-Greylist: IP, sender and recipient auto-whitelisted, not delayed by
	milter-greylist-4.2.6 (demeter2.kernel.org [140.211.167.43]);
	Sat, 20 Aug 2011 03:21:46 +0000 (UTC)

From: Shirish Pargaonkar <shirishpargaonkar@gmail.com>


Add defines and structures related to security descriptor, ACL,
ACE, various fields within an ACE, and SID.
Also define various file permissions and acess types.


Signed-off-by: Shirish Pargaonkar <shirishpargaonkar@gmail.com>
---
 cifsacl.h |  127 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 files changed, 127 insertions(+), 0 deletions(-)
 create mode 100644 cifsacl.h

diff --git a/cifsacl.h b/cifsacl.h
new file mode 100644
index 0000000..e9b7d50
--- /dev/null
+++ b/cifsacl.h
@@ -0,0 +1,127 @@
+#ifdef HAVE_CONFIG_H
+#include "config.h"
+#endif /* HAVE_CONFIG_H */
+
+#include <string.h>
+#include <getopt.h>
+#include <syslog.h>
+#include <stdint.h>
+#include <stdbool.h>
+#include <unistd.h>
+#include <stdio.h>
+#include <stdlib.h>
+#include <errno.h>
+#include <limits.h>
+#include <wbclient.h>
+#include <ctype.h>
+#include <sys/xattr.h>
+
+#define BUFSIZE 1024
+#define ATTRNAME "system.cifs_acl"
+
+#define MAX_NUM_AUTHS 6
+
+/* File specific rights */
+#define READ_DATA	0x00000001 /* R */
+#define WRITE_DATA	0x00000002 /* W */
+#define APPEND_DATA	0x00000004 /* A */
+#define READ_EA		0x00000008 /* REA */
+#define WRITE_EA	0x00000010 /* WEA */
+#define EXEC		0x00000020 /* E */
+#define DELDHLD		0x00000040 /* DC */
+#define READ_ATTR	0x00000080 /* RA */
+#define WRITE_ATTR	0x00000100 /* WA */
+
+/* Standard rights */
+#define DELETE		0x00010000 /* D */
+#define READ_CONTROL	0x00020000 /* RC */
+#define WRITE_DAC	0x00040000 /* P */
+#define WRITE_OWNER	0x00080000 /* O */
+#define SYNC		0x00100000 /* S */
+
+/* Generic rights */
+#define SYSSEC		0x01000000
+#define MAX		0x02000000
+#define ALL		0x10000000
+#define EXECUTE		0x20000000 /* GE */
+#define WRITE		0x40000000 /* GW */
+#define READ		0x80000000 /* GR */
+
+/* D | RC | P | O | S | R | W | A | E | DC | REA | WEA | RA | WA  */
+#define FULL_CONTROL	0x001f01ff
+
+/* RC | S | R | E | REA | RA */
+#define EREAD		0x001200a9
+
+/* RC | S | R | E | REA | GR | GE */
+#define OREAD		0xa01200a1
+
+/* RC | S | R | REA | RA */
+#define BREAD		0x00120089
+
+/* W | A | WA | WEA| */
+#define EWRITE		0x00000116
+
+/* D | RC | S | R | W | A | E |REA | WEA | RA | WA */
+#define CHANGE		0x001301bf
+
+/* GR | RC | REA | RA | REA | R */
+#define ALL_READ_BITS	0x80020089
+
+/* WA | WEA | A | W */
+#define ALL_WRITE_BITS	0x40000116
+
+#define OBJECT_INHERIT_FLAG 0x01	/* OI */
+#define CONTAINER_INHERIT_FLAG 0x02	/* CI */
+#define NO_PROPAGATE_INHERIT_FLAG 0x04	/* NP */
+#define INHERIT_ONLY_FLAG 0x08		/* IO */
+#define INHERITED_ACE_FLAG 0x10		/* I */
+#define VFLAGS 0x1f
+
+#define ACCESS_ALLOWED	0		/* ALLOWED */
+#define ACCESS_DENIED	1		/* DENIED */
+#define ACCESS_ALLOWED_OBJECT	5	/* OBJECT_ALLOWED */
+#define ACCESS_DENIED_OBJECT	6	/* OBJECT_DENIED */
+
+#define COMPSID 0x1
+#define COMPTYPE 0x2
+#define COMPFLAG 0x4
+#define COMPMASK 0x8
+#define COMPALL 0xf /* COMPSID | COMPTYPE | COMPFLAG | COMPMASK */
+
+enum ace_action {
+	acedelete = 0,
+	acemodify,
+	aceadd,
+	aceset
+};
+
+struct cifs_ntsd {
+	uint16_t revision; /* revision level */
+	uint16_t type;
+	uint32_t osidoffset;
+	uint32_t gsidoffset;
+	uint32_t sacloffset;
+	uint32_t dacloffset;
+};
+
+struct cifs_sid {
+	uint8_t revision; /* revision level */
+	uint8_t num_subauth;
+	uint8_t authority[6];
+	uint32_t sub_auth[5]; /* sub_auth[num_subauth] */
+};
+
+struct cifs_ctrl_acl {
+	uint16_t revision; /* revision level */
+	uint16_t size;
+	uint32_t num_aces;
+};
+
+struct cifs_ace {
+	uint8_t type;
+	uint8_t flags;
+	uint16_t size;
+	uint32_t access_req;
+	struct cifs_sid sid; /* ie UUID of user or group who gets these perms */
+};