profiles.c revision b4820df85baba7ec3cfa9082d7579cf2349c2336
/*
* CDDL HEADER START
*
* The contents of this file are subject to the terms of the
* Common Development and Distribution License (the "License").
* You may not use this file except in compliance with the License.
*
* You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
* See the License for the specific language governing permissions
* and limitations under the License.
*
* When distributing Covered Code, include this CDDL HEADER in each
* file and include the License file at usr/src/OPENSOLARIS.LICENSE.
* If applicable, add the following below this CDDL HEADER, with the
* fields enclosed by brackets "[]" replaced with your own identifying
* information: Portions Copyright [yyyy] [name of copyright owner]
*
* CDDL HEADER END
*/
/*
* Copyright 2009 Sun Microsystems, Inc. All rights reserved.
* Use is subject to license terms.
*/
#include <stdio.h>
#include <stdlib.h>
#include <unistd.h>
#include <pwd.h>
#include <string.h>
#include <libintl.h>
#include <locale.h>
#include <deflt.h>
#include <user_attr.h>
#include <prof_attr.h>
#include <exec_attr.h>
#include <auth_attr.h>
#define EXIT_OK 0
#define EXIT_FATAL 1
#define EXIT_NON_FATAL 2
#define PRINT_DEFAULT 0x0000
#define PRINT_NAME 0x0010
#define PRINT_LONG 0x0020
#ifndef TEXT_DOMAIN /* Should be defined by cc -D */
#define TEXT_DOMAIN "SYS_TEST"
#endif
#define PROFLIST_SEP ","
static void usage();
static int show_profs(char *, int);
static int list_profs(userattr_t *, int);
static void print_profs_long(execattr_t *);
static void print_profs(char **, int, int);
static void getProfiles(char *, char **, int *);
static void getDefaultProfiles(char *, char **, int *);
static void print_profile_privs(const char *);
static char *progname = "profiles";
int
{
extern int optind;
int c;
int print_flag = PRINT_DEFAULT;
(void) textdomain(TEXT_DOMAIN);
switch (c) {
case 'l':
print_flag |= PRINT_LONG;
break;
default:
usage();
return (EXIT_FATAL);
}
}
} else {
do {
(print_flag | PRINT_NAME));
if (status == EXIT_FATAL) {
break;
}
/* seperate users with empty line */
(void) printf("\n");
}
} while (*++argv);
}
return (status);
}
static int
{
int profcnt = 0;
return (status);
}
return (status);
}
} else {
if (profcnt == 0) {
} else {
if (print_flag & PRINT_LONG) {
} else {
profcnt);
}
}
}
}
if (status == EXIT_NON_FATAL) {
}
return (status);
}
static int
{
int profcnt = 0;
if (print_flag & PRINT_LONG) {
}
} else {
}
/* Also get any default profiles */
if (profcnt == 0) {
}
}
if (print_flag & PRINT_LONG) {
} else {
}
}
return (status);
}
/*
* print extended profile information.
*
* output is "pretty printed" like
* [6spaces]Profile Name1[ possible profile privileges]
* [10spaces ]execname1 [skip to ATTR_COL]exec1 attributes1
* [ spaces to ATTR_COL ]exec1 attributes2
* [10spaces ]execname2 [skip to ATTR_COL]exec2 attributes1
* [ spaces to ATTR_COL ]exec2 attributes2
* [6spaces]Profile Name2[ possible profile privileges]
* etc
*/
/*
* ATTR_COL is based on
* 10 leading spaces +
* 25 positions for the executable +
* 1 space seperating the execname from the attributes
* so attribute printing starts at column 37 (36 whitespaces)
*
* 25 spaces for the execname seems reasonable since currently
* less than 3% of the shipped exec_attr would overflow this
*/
#define ATTR_COL 37
static void
{
char *curprofile;
int len;
char *key;
char *val;
int i;
/* print profile name if it is a new one */
(void) printf("\n");
}
(void) printf("\n");
continue;
}
/*
* if printing the name of the executable got us past the
* ATTR_COLth column, skip to ATTR_COL on a new line to
* print the attribues.
* else, just skip to ATTR_COL column.
*/
else
/* print all attributes of this profile */
break;
/* align subsequent attributes on the same column */
if (i > 0)
}
}
}
static void
usage()
{
gettext(" usage: profiles [-l] [user1 user2 ...]\n"));
}
static void
char *prof;
char *lasts;
}
}
static void
print_profile_privs(const char *profile)
{
char *privs;
if (prof_entry) {
if (privs)
}
}
static void
{
int i;
char *indent = "";
if (print_flag & PRINT_NAME) {
indent = " ";
}
for (i = 0; i < profcnt; i++) {
(void) printf("\n");
}
}
/*
* Get the list of default profiles from /etc/security/policy.conf
*/
static void
{
}
}
}