Introduced /usr/sbin/extattrctl, a utility for managing UFS/FFS extended

attributes (recently committed). Using extattrctl, the extended attribute service may be started and stopped for specific file systems; specific attributes may be enabled or disabled, and the backing file for each attribute configured. Also, backing files may be initialized. Reviewed by: adrian, bp, freebsd-fs, the unthanked masses Obtained from: TrustedBSD
2000-04-15 05:14:39 +00:00 · 2000-04-15 05:14:39 +00:00 · 9754f5b65b
commit 9754f5b65b
parent 603ddb6d5d
4 changed files with 261 additions and 0 deletions
--- a/usr.sbin/Makefile
+++ b/usr.sbin/Makefile
@ -24,6 +24,7 @@ SUBDIR=	IPXrouted \
 	dev_mkdb \
 	diskpart \
 	edquota \
+	extattrctl \
 	faithd \
 	fdcontrol \
 	fdformat \
--- a/usr.sbin/extattrctl/Makefile
+++ b/usr.sbin/extattrctl/Makefile
@ -0,0 +1,8 @@
+# $FreeBSD$
+PROG=	extattrctl
+SRCS=	extattrctl.c
+LDADD=	
+CFLAGS+=	-g -Wall
+MAN8+=	extattrctl.8
+
+.include <bsd.prog.mk>
--- a/usr.sbin/extattrctl/extattrctl.8
+++ b/usr.sbin/extattrctl/extattrctl.8
@ -0,0 +1,135 @@
+.\"-
+.\" Copyright (c) 2000 Robert N. M. Watson
+.\" All rights reserved.
+.\"
+.\" Redistribution and use in source and binary forms, with or without
+.\" modification, are permitted provided that the following conditions
+.\" are met:
+.\" 1. Redistributions of source code must retain the above copyright
+.\"    notice, this list of conditions and the following disclaimer.
+.\" 2. Redistributions in binary form must reproduce the above copyright
+.\"    notice, this list of conditions and the following disclaimer in the
+.\"    documentation and/or other materials provided with the distribution.
+.\"
+.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
+.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+.\" SUCH DAMAGE.
+.\"
+.\"       $FreeBSD$
+.\"
+.Dd March 30, 2000
+.Dt EXTATTRCTL 8
+.Os FreeBSD 5.0
+.Sh NAME
+.Nm extattrctl
+.Nd Manage FFS extended attributes
+.Sh SYNOPSIS
+.Nm extattrctl
+.Cm start
+.Ar path
+.Nm extattrctl
+.Cm stop
+.Ar path
+.Nm extattrctl
+.Cm initattr
+.Ar attrsize
+.Ar attrfile
+.Nm extattrctl
+.Cm enable
+.Ar path
+.Ar attrname
+.Ar attrfile
+.Nm extattrctl
+.Cm disable
+.Ar path
+.Ar attrname
+.Sh DESCRIPTION
+.Nm
+is the management utility for extended attributes over the FFS file system.
+.Nm
+allows the starting and stopping of extended attributes on a file system,
+as well as initialization of attribute backing files, and enabling and
+disabling of specific extended attributes on a file system.
+.Pp
+The first argument on the command line indicates the operation to be
+performend.  Operation must be one of the following:
+.Bl -tag -width indent
+.It Cm start Ar path
+Start extended attribute support on the file system named using
+.Ar path .
+The file system must be an FFS file system, and the FFS_EXTATTR kernel
+option must have been enabled.
+.It Cm stop Ar path
+Stop extended attribute support on the file system named using
+.Ar path .
+Extended attribute support must previously have been started.
+.It Cm initattr Ar attrsize Ar attrfile
+Create and initialize a file to use as an attribute backing file.
+You must specify a maximum per-inode size for the attribute in bytes in
+.Ar attrsize ,
+as well as the file where the attribute will be stored, using
+.Ar attrfile .
+This file should not exist before running
+.Cm initattr.
+.It Cm enable Ar path Ar attrname Ar attrfile
+Enable an attribute named
+.Ar attrname
+on the file system identified using
+.Ar path ,
+and backed by initialized attribute file
+.Ar attrfile .
+The backing file must have been initialized using
+.Cm initattr
+before its first use.
+Attributes must have been started on the file system prior to the
+enabling of any attributes.
+.It Cm disable Ar path Ar attrname
+Disable the attributed named
+.Ar attrname
+on the file system identified by
+.Ar path .
+The file system must have attributes started on it, and the attribute
+most have been enabled using
+.Cm enable .
+.Sh EXAMPLES
+.Pp
+.Dl extattrctl start /
+.Pp
+Start extended attributes on the root file system.
+.Pp
+.Dl extattrctl initattr 17 /.attribute/md5
+.Pp
+Create an attribute backing file in /.attribute/md5, and set the maximum
+size of each attribute to 17 bytes.
+.Pp
+.Dl extattrctl enable / md5 /.attribute/md5
+.Pp
+Enable an attribute named md5 on the root file system, backed from the file
+/.attribute/md5.
+.Pp
+.Dl extattrctl disable / md5
+.Pp
+Disable the attribute named md5 on the root file system.
+.Pp
+.Dl extattrctl stop /
+.Pp
+Stop extended attributes on the root file system.
+.Sh SEE ALSO
+.Xr getextattr 8 ,
+.Xr setextattr 8 ,
+.Xr extattr 9
+.Sh HISTORY
+Extended attribute support was developed as part of the TrustedBSD Project,
+and introduced in FreeBSD 5.0.
+It was developed to support security extensions requiring additional labels
+to be associated with each file or directory.
+.Sh AUTHORS
+Robert N M Watson
--- a/usr.sbin/extattrctl/extattrctl.c
+++ b/usr.sbin/extattrctl/extattrctl.c
@ -0,0 +1,117 @@
+/*-
+ * Copyright (c) 1999, 2000 Robert N. M. Watson
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ *
+ *	$FreeBSD$
+ */
+/*
+ * TrustedBSD Project - extended attribute support for UFS-like file systems
+ */
+
+#include <sys/types.h>
+#include <sys/uio.h>
+#include <sys/extattr.h>
+#include <ufs/ufs/extattr.h>
+#include <fcntl.h>
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+#include <unistd.h>
+
+void
+usage(void)
+{
+
+	fprintf(stderr,
+	    "usage:\n"
+	    "  extattrctl start [path]\n"
+	    "  extattrctl stop [path]\n"
+	    "  extattrctl initattr [attrsize] [attrfile]\n"
+	    "  extattrctl enable [path] [attrname] [attrfile]\n"
+	    "  extattrctl disable [path] [attrname]\n");
+}
+
+int
+main(int argc, char *argv[])
+{
+	struct ufs_extattr_fileheader	uef;
+	int	error = 0, i;
+
+	if (argc < 2) {
+		usage();
+		return(-1);
+	}
+
+	if (!strcmp(argv[1], "start")) {
+		if (argc != 3) {
+			usage();
+			return(-1);
+		}
+		error = extattrctl(argv[2], UFS_EXTATTR_CMD_START, 0, 0);
+	} else if (!strcmp(argv[1], "stop")) {
+		if (argc != 3) {
+			usage();
+			return(-1);
+		}
+		error = extattrctl(argv[2], UFS_EXTATTR_CMD_STOP, 0, 0);
+	} else if (!strcmp(argv[1], "enable")) {
+		if (argc != 5) {
+			usage();
+			return(-1);
+		}
+		error = extattrctl(argv[2], UFS_EXTATTR_CMD_ENABLE, argv[3],
+		    argv[4]);
+	} else if (!strcmp(argv[1], "disable")) {
+		if (argc != 4) {
+			usage();
+			return(-1);
+		}
+		error = extattrctl(argv[2], UFS_EXTATTR_CMD_DISABLE, argv[3],
+		    NULL);
+	} else if (!strcmp(argv[1], "initattr")) {
+		if (argc != 4) {
+			usage();
+			return(-1);
+		}
+		if ((i = open(argv[3], O_CREAT | O_EXCL | O_WRONLY, 0600)) !=
+		    -1) {
+			uef.uef_write_perm = UFS_EXTATTR_PERM_OWNER;
+			uef.uef_read_perm = UFS_EXTATTR_PERM_ANYONE;
+			uef.uef_size = atoi(argv[2]);
+			if (write(i, &uef, sizeof(uef)) == -1) {
+				error = -1;
+			} else
+				error = close(i);
+		} else 
+			error = -1;
+	} else {
+		usage();
+		return(-1);
+	}
+
+	if (error)
+		perror(argv[1]);
+
+	return(error);
+}