chattr
| chattr | |
|---|---|
| Original author(s) | Remy Card | 
| Operating system | Linux | 
| Platform | Cross-platform | 
| Type | Command | 
| chflags | |
|---|---|
| Operating system | BSD-like systems, including macOS | 
| Platform | Cross-platform | 
| Type | Command | 
chattr is the command in Linux that allows a user to set certain attributes of a file. lsattr is the command that displays the attributes of a file.
Most BSD-like systems, including macOS, have always had an analogous chflags command to set the attributes, but no command specifically meant to display them; specific options to the ls command are used instead. The chflags command first appeared in 4.4BSD.
Solaris has no commands specifically meant to manipulate them. chmod[1] and ls[2] are used instead.
Other Unix-like operating systems, in general, have no analogous commands. The similar-sounding commands chatr (from HP-UX) and lsattr (from AIX) exist but have unrelated functions.
Among other things, the chattr command is useful to make files immutable so that password files and certain system files cannot be erased during software upgrades.[3]
In Linux systems (chattr and lsattr)
File system support
The command line tools chattr (to manipulate attributes) and lsattr (to list attributes) were originally specific to the Second Extended Filesystem family (ext2, ext3, ext4), and are available as part of the e2fsprogs package.
However, the functionality has since been extended, fully or partially, to many other systems, including XFS, ReiserFS, JFS and OCFS2. The btrfs file system includes the attribute functionality, including the C flag, which turns off the built-in copy-on-write (CoW) feature of btrfs due to slower performance associated with CoW.
chattr description
The form of the chattr command is:
 chattr [-RVf] [-+=AacDdijsTtSu] [-v version] files...
- -Rrecursively changes attributes of directories and their contents
- -Vis to be verbose and print the program version
- -fsuppresses most error messages
lsattr description
The form of the lsattr command (gnu 1.41.3):
 lsattr [ -RVadv ] [ files...  ]
- -Rrecursively lists attributes of directories and their contents
- -Vdisplays the program version
- -alists all files in directories, including dotfiles
- -dlists directories like other files, rather than listing their contents
Attributes
Some attributes include:
| Attribute | lsattr flag | chattr option | Semantics and rationale | 
|---|---|---|---|
| No atimeupdates | A | +Ato set-Ato clear | 
 | 
| Append only | a | +ato set-ato clear[note 1] | 
 | 
| Compressed | c | +cto set-cto clear[note 2] | 
 | 
| No Copy-on-Write (CoW) | C | +Cto set-Cto clear[note 3] | 
 | 
| Synchronous directory updates | D | +Dto set-Dto clear | 
 | 
| No dump | d | +dto set-dto clear | 
 | 
| Compression error | E | (unavailable) | 
 | 
| Extent format | e | (unavailable) | 
 | 
| Huge file | h | (unavailable) | 
 | 
| Indexed directory | I | (unavailable) | 
 | 
| Immutable | i | +ito set-ito clear[note 1] | 
 | 
| Data journaling | j | +jto set-jto clear[note 4] | 
 | 
| Secure deletion | s | +sto set-sto clear[note 2][note 5] | 
 | 
| Synchronous updates | S | +Sto set-Sto clear | 
 | 
| Top of directory hierarchy | T | +Tto set-Tto clear | 
 | 
| No tail-merging | t | +tto set-tto clear | 
 | 
| Undeletable | u | +uto set-uto clear[note 2] | 
 | 
| Compression raw access | X | (unavailable) | 
 | 
| Compressed dirty file | Z | (unavailable) | 
 | 
| Version / generation number | -v | -v version | 
 | 
Notes
- ^ a b Only the superuser or a process possessing the CAP_LINUX_IMMUTABLEcapability can set or clear these attributes.
- ^ a b c These attributes are not honored by the ext2 and ext3 filesystems as implemented in the current mainline Linux kernels.
- ^ These attributes only make sense for Copy-on-Write file-systems such as btrfs.
- ^ Only the superuser or a process possessing the CAP_SYS_RESOURCEcapability can set or clear this attribute.
- ^ This attribute is not honored by the ext4 filesystem as implemented in the current mainline Linux kernels as reported in Bug #17872.
In BSD-like systems (chflags)
File system support
The chflags command is not specific to particular file systems. UFS on BSD systems, and APFS, HFS+, SMB, AFP, and FAT on macOS support at least some flags.
chflags description
The form of the chflags command is:
 chflags [-R [-H | -L | -P]] flags file ...
- -HIf the -R option is specified, symbolic links on the command line are followed. (Symbolic links encountered in the tree traversal are not followed.)
- -LIf the -R option is specified, all symbolic links are followed.
- -PIf the -R option is specified, no symbolic links are followed. This is the default.
- -RChange the file flags for the file hierarchies rooted in the files instead of just the files themselves.
Displaying
BSD-like systems, in general, have no default user-level command specifically meant to display the flags of a file. The ls command will do with either the -lo, or the -lO, depending on the system, flags passed.
Attributes
All traditional attributes can be set or cleared by the super-user; some can also be set or cleared by the owner of the file. Some attributes include:
| Attribute | ls flag | chflags flag | Owner-settable | OS support | Semantics and rationale | 
|---|---|---|---|---|---|
| Archived | arch | arch, archived | No | All | File is archived | 
| Opaque | opaque | opaque | Yes | All | Directory is opaque when viewed through a union mount | 
| No dump | nodump | nodump | Yes | All | File cannot be dumped | 
| System append-only | sappnd | sappnd, sappend | No | All | Existing data in the file can't be overwritten and the file cannot be truncated | 
| User append-only | uappnd | uappnd, uappend | Yes | All | Existing data in the file can't be overwritten and the file cannot be truncated | 
| System immutable | schg | schg, schange, simmutable | No | All | File cannot be changed, renamed, moved, or removed | 
| User immutable | uchg | uchg, uchange, uimmutable | Yes | All | File cannot be changed, renamed, moved, or removed | 
| System no-unlink | sunlnk | sunlnk, sunlink | No | FreeBSD, DragonFly BSD, macOS | File cannot be removed, renamed or mounted on; on macOS this flag needs to be set or cleared from single user mode | 
| User no-unlink | uunlnk | uunlnk, uunlink | Yes | FreeBSD, DragonFly BSD | File cannot be removed, renamed or mounted on | 
| Hidden | hidden | hidden | Yes | macOS | File is hidden by default in the GUI (but not in ls) | 
| Hidden | hidden | hidden, uhidden | Yes | FreeBSD | File might be hidden by default in some GUI desktops (but not in ls) | 
| Tracked | tracked | tracked | Yes | macOS | File modifications and deletions are tracked | 
| Restricted | restricted | restricted | No | macOS | File is protected by System Integrity Protection; accompanied by the extended attribute com.apple.rootless; flag needs to be set or cleared from Recovery Mode | 
| Compressed | compressed | No | macOS | File is HFS-compressed (read-only flag); not available on APFS-formatted volumes | |
| Data Vault | No | macOS | Hidden privacy flag since macOS Mojave set by the core system to prohibit any access without special entitlements | ||
| Offline | offline | offline, uoffline | Yes | FreeBSD | File is offline | 
| Snapshot | snapshot | No | FreeBSD, NetBSD | File is a snapshot file (read-only flag) | |
| Sparse | sparse | sparse, usparse | Yes | FreeBSD | Writes of all zeroes may be written as "holes" | 
| Must be archived | uarch | uarch, uarchive | Yes | FreeBSD | File must be archived | 
See also
- ATTRIB– analogous command in MS-DOS, OS/2 and Microsoft Windows
- chown– change file/directory ownership in a Unix system
- chmod– change file access control attributes in a Unix system
- cacls– change file access control lists in Microsoft Windows NT
Notes
- ^ – illumos and OpenSolaris User Commands Reference Manual from latest Sun based OpenSolaris
- ^ – illumos and OpenSolaris User Commands Reference Manual from latest Sun based OpenSolaris
- ^ – OpenBSD General Commands Manual
References
- – Linux User Commands Manual
- – Linux User Commands Manual
- – OpenBSD General Commands Manual
- – FreeBSD General Commands Manual
- – NetBSD General Commands Manual
- – Darwin and macOS General Commands Manual (outdated; see newer version)
- stat.h (flags section in the BSD system source code of the macOS XNU kernel)

