1 /*
2  * CDDL HEADER START
3  *
4  * The contents of this file are subject to the terms of the
5  * Common Development and Distribution License (the "License").
6  * You may not use this file except in compliance with the License.
7  *
8  * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9  * or http://www.opensolaris.org/os/licensing.
10  * See the License for the specific language governing permissions
11  * and limitations under the License.
12  *
13  * When distributing Covered Code, include this CDDL HEADER in each
14  * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15  * If applicable, add the following below this CDDL HEADER, with the
16  * fields enclosed by brackets "[]" replaced with your own identifying
17  * information: Portions Copyright [yyyy] [name of copyright owner]
18  *
19  * CDDL HEADER END
20  */
21 
22 /*
23  * Copyright 2010 Sun Microsystems, Inc.  All rights reserved.
24  * Use is subject to license terms.
25  */
26 
27 #ifndef _NETSMB_SMBFS_ACL_H
28 #define	_NETSMB_SMBFS_ACL_H
29 
30 /*
31  * Get/set ACL via contracted interface in libsmbfs.
32  * The ACL is in the form used by libsec (type=ACE_T)
33  * but we need to carry the uid/gid info here too.
34  */
35 
36 #include <sys/acl.h>
37 
38 #ifdef	__cplusplus
39 extern "C" {
40 #endif
41 
42 /*
43  * Get a ZFS-style acl from an FD opened in smbfs.
44  * Intentionally similar to: facl_get(3SEC)
45  *
46  * Allocates an acl_t via libsec.  Free with: acl_free(3SEC)
47  * Get owner/group IDs too if ID pointers != NULL
48  */
49 int smbfs_acl_get(int fd, acl_t **, uid_t *, gid_t *);
50 
51 /*
52  * Set a ZFS-style acl onto an FD opened in smbfs.
53  * Intentionally similar to: facl_set(3SEC)
54  *
55  * The acl_t must be of type ACE_T (from libsec).
56  * Set owner/group IDs too if ID values != -1
57  */
58 int smbfs_acl_set(int fd, acl_t *, uid_t, gid_t);
59 
60 
61 /*
62  * Slightly lower-level functions, allowing access to
63  * the raw Windows Security Descriptor (SD)
64  *
65  * The struct i_ntsid is opaque in this I/F.
66  * Real decl. in: common/smbclnt/smbfs_ntacl.h
67  */
68 struct i_ntsd;
69 
70 /*
71  * Get an "internal form" SD from the FD (opened in smbfs).
72  * Allocates a hierarchy in isdp.  Caller must free it via
73  * smbfs_acl_free_isd()
74  */
75 int smbfs_acl_getsd(int fd, uint32_t, struct i_ntsd **);
76 
77 /*
78  * Set an "internal form" SD onto the FD (opened in smbfs).
79  */
80 int smbfs_acl_setsd(int fd, uint32_t, struct i_ntsd *);
81 
82 /*
83  * Selector bits (2nd arg above) copied from smb.h so we
84  * don't need that whole thing exposed to our consumers.
85  * Any mismatch would be detected in smb/acl_api.c
86  */
87 #define	OWNER_SECURITY_INFORMATION		0x00000001
88 #define	GROUP_SECURITY_INFORMATION		0x00000002
89 #define	DACL_SECURITY_INFORMATION		0x00000004
90 #define	SACL_SECURITY_INFORMATION		0x00000008
91 
92 struct __FILE;
93 void smbfs_acl_print_sd(struct __FILE *, struct i_ntsd *);
94 
95 /*
96  * These are duplicated from common/smbclnt/smbfs_ntacl.h
97  * rather than exporting that header for this library.
98  * Any mismatch would be detected in smb/acl_api.c
99  */
100 int smbfs_acl_sd2zfs(struct i_ntsd *, acl_t *, uid_t *, gid_t *);
101 int smbfs_acl_zfs2sd(acl_t *, uid_t, gid_t, uint32_t, struct i_ntsd **);
102 void smbfs_acl_free_sd(struct i_ntsd *);
103 
104 #ifdef	__cplusplus
105 }
106 #endif
107 
108 #endif	/* _NETSMB_SMBFS_ACL_H */
109