11336c165c
Wed Oct 9 00:30:33 1996 Ulrich Drepper <drepper@cygnus.com> * inet/getnetgrent_r.c: Correct netgroup implementation. A specification of a netgroup can also name another netgroup. * nss/nss_files/files-netgrp.c: Likewise. * inet/netgroup.h: Add fields to hold additional information. Tue Oct 8 21:51:14 1996 Arnold D. Robbins <arnold@skeeve.atl.ga.us> * posix/getopt.c: Implement POSIX -W option handling. When the option string contains "W;" -W foo is handled like --foo. Tue Oct 8 12:27:26 1996 Ulrich Drepper <drepper@cygnus.com> * sysdeps/unix/sysv/linux/i386/clone.S: Define _ERRNO_H before inclusing <errnos.h> so we really get error symbols defined. * sysdeps/unix/sysv/linux/m68k/clone.S: Likewise. * sysdeps/unix/sysv/linux/alpha/clone.S: Likewise. * sunrpc/auth_unix.c (authunix_create_default): Don't use fixed size array for getgroups call. Instead get maximal number via sysconf. But discard list to NGRPS elements before calling XDR function since Sun's code cannot handle longer lists. Based on a patch by Thorsten Kukuk <kukuk@weber.uni-paderborn.de>. * sysdeps/stub/e_j0l.c: Define y0l as well. * sysdeps/stub/e_j1l.c: Define y1l as well. * sysdeps/stub/e_jnl.c: Define ynl as well. * posix/unistd.h: Correct prototype for execlp. * sysdeps/unix/sysv/linux/posix_opt.h: Define _POSIX_NO_TRUNC. Mon Oct 7 22:18:03 1996 Andreas Schwab <schwab@issan.informatik.uni-dortmund.de> * Makeconfig (sysdep-library-path): New variable. (built-program-cmd): Use it here to properly build a colon separated library path. Mon Oct 7 22:11:55 1996 Andreas Schwab <schwab@issan.informatik.uni-dortmund.de> * crypt/md5-crypt.c (md5_crypt_r): Add missing parens around & within comparison. Fix comments. (md5_crypt): Fix comment. Tue Oct 8 05:10:49 1996 Ulrich Drepper <drepper@cygnus.com> * sysdeps/unix/sysv/linux/errnos.h: Only include <linux/errnos.h> when _ERRNO_H is defined. [!_ERRNO_H && __need_Emath]: Define value for EDOM and ERANGE. Should there ever be a Linux port where the numeric values are not 33 and 34 this file must change. Mon Oct 7 13:54:04 1996 Ulrich Drepper <drepper@cygnus.com> * libio/iofgets.c (_IO_fgets): Use _IO_flockfile instead of __flockfile. Mon Oct 7 11:01:45 1996 Andreas Jaeger <aj@arthur.pfalz.de> * string/tst-strlen.c (main): Provide prototype. * malloc/mallocbug.c: Likewise. * io/test-utime.c: Likewise. * sysdeps/generic/crypt-entry.c: Correct typo. Mon Oct 7 13:42:20 1996 Ulrich Drepper <drepper@cygnus.com> * elf/dl-open.c (_dl_open): Check against _dl_sysdep_start to test for libc.a. Checking _DYNAMIC is of no worth here. Suggested by Andreas Schwab <schwab@issan.informatik.uni-dortmund.de>. * nss/nss_files/files-parse.c: Define LOOKUP_NAME even if EXTERN_PARSER is defined. Sat Oct 5 17:05:36 1996 Andreas Jaeger <aj@arthur.pfalz.de> * Rules (dep-dummy-lib): Correct prototype for __dummy__. * crypt/md5-crypt.c: Fix typos in comments. * gmon/gmon.c: Provide prototypes. * db/makedb.c: Likewise. * locale/programs/xmalloc.c: Likewise. * stdio-common/bug11.c (main): Likewise. * stdio-common/bug7.c (main): Likewise. * stdio-common/bug8.c (main): Likewise. * stdio-common/bug9.c (main): Likewise. * stdio-common/scanf1.c (main): Likewise. * stdio-common/scanf2.c (main): Likewise. * stdio-common/scanf5.c (main): Likewise. * stdio-common/scanf6.c (main): Likewise. * stdio-common/scanf7.c (main): Likewise. * stdio-common/scanf8.c (main): Likewise. * stdio-common/temptest.c (main): Likewise. * stdio-common/test-fwrite.c (main): Likewise. * stdio-common/tst-printf.c: Likewise. * stdio-common/tstdiomisc.c: Likewise. * stdio-common/tstgetln.c (main): Likewise. * stdlib/testmb.c (main): Likewise. * stdio-common/scanf4.c (main): Correct prototype, remove unused variable n. * stdio-common/scanf3.c (main): Correct prototype, change declaration of s to reduce warnings. * stdio-common/bug10.c (main): Likewise. * stdio-common/tfformat.c: Provide prototype, remove unused reference to dump_stats, add braces in sprint_doubles. * stdio-common/tiformat.c: Likewise. * stdio-common/test_rdwr.c (main): Parameter `where' is long in printf call. Mon Oct 7 14:04:26 1996 NIIBE Yutaka <gniibe@mri.co.jp> * sysdeps/unix/sysv/linux/sys/soundcard.h: Fix typo. * shadow/putspent.c: Don't write colon after flag field. * sysdeps/unix/sysv/linux/net/if_ppp.h: New file. Wrapper around kernel header. * sysdeps/unix/sysv/linux/net/ppp-comp.h: Likewise. * sysdeps/unix/sysv/linux/net/ppp_defs.h: Likewise. * sysdeps/unix/sysv/linux/Dist: Mention new files. Mon Oct 7 00:58:19 1996 Ulrich Drepper <drepper@cygnus.com> * sysdeps/i386/i586/strchr.S: Correct handling of first bytes to get pointer aligned. Reported by Matthias Urlichs <smurf@noris.de>. * sysdeps/posix/euidaccess.c [_LIBC]: Avoid calling get?id functions by using __libc_enable_secure variable. * sysdeps/libm-i387/s_copysignl.S: Correct loading of return value.
225 lines
4.8 KiB
C
225 lines
4.8 KiB
C
/* euidaccess -- check if effective user id can access file
|
||
Copyright (C) 1990, 1991, 1995, 1996 Free Software Foundation, Inc.
|
||
|
||
This file is part of the GNU C Library.
|
||
|
||
The GNU C Library is free software; you can redistribute it and/or
|
||
modify it under the terms of the GNU Library General Public License as
|
||
published by the Free Software Foundation; either version 2 of the
|
||
License, or (at your option) any later version.
|
||
|
||
The GNU C Library is distributed in the hope that it will be useful,
|
||
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
||
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
||
Library General Public License for more details.
|
||
|
||
You should have received a copy of the GNU Library General Public
|
||
License along with the GNU C Library; see the file COPYING.LIB. If
|
||
not, write to the Free Software Foundation, Inc., 675 Mass Ave,
|
||
Cambridge, MA 02139, USA. */
|
||
|
||
/* Written by David MacKenzie and Torbjorn Granlund.
|
||
Adapted for GNU C library by Roland McGrath. */
|
||
|
||
#ifdef HAVE_CONFIG_H
|
||
#include <config.h>
|
||
#endif
|
||
|
||
#include <sys/types.h>
|
||
#include <sys/stat.h>
|
||
|
||
#ifdef S_IEXEC
|
||
#ifndef S_IXUSR
|
||
#define S_IXUSR S_IEXEC
|
||
#endif
|
||
#ifndef S_IXGRP
|
||
#define S_IXGRP (S_IEXEC >> 3)
|
||
#endif
|
||
#ifndef S_IXOTH
|
||
#define S_IXOTH (S_IEXEC >> 6)
|
||
#endif
|
||
#endif /* S_IEXEC */
|
||
|
||
#if defined (HAVE_UNISTD_H) || defined (_LIBC)
|
||
#include <unistd.h>
|
||
#endif
|
||
|
||
#ifdef _POSIX_VERSION
|
||
#include <limits.h>
|
||
#if !defined(NGROUPS_MAX) || NGROUPS_MAX < 1
|
||
#undef NGROUPS_MAX
|
||
#define NGROUPS_MAX sysconf (_SC_NGROUPS_MAX)
|
||
#endif /* NGROUPS_MAX */
|
||
|
||
#else /* not _POSIX_VERSION */
|
||
uid_t getuid ();
|
||
gid_t getgid ();
|
||
uid_t geteuid ();
|
||
gid_t getegid ();
|
||
#include <sys/param.h>
|
||
#if !defined(NGROUPS_MAX) && defined(NGROUPS)
|
||
#define NGROUPS_MAX NGROUPS
|
||
#endif /* not NGROUPS_MAX and NGROUPS */
|
||
#endif /* not POSIX_VERSION */
|
||
|
||
#include <errno.h>
|
||
#ifndef errno
|
||
extern int errno;
|
||
#endif
|
||
#ifndef __set_errno
|
||
#define __set_errno(val) errno = (val)
|
||
#endif
|
||
|
||
#if defined(EACCES) && !defined(EACCESS)
|
||
#define EACCESS EACCES
|
||
#endif
|
||
|
||
#ifndef F_OK
|
||
#define F_OK 0
|
||
#define X_OK 1
|
||
#define W_OK 2
|
||
#define R_OK 4
|
||
#endif
|
||
|
||
#if !defined (S_IROTH) && defined (R_OK)
|
||
# define S_IROTH R_OK
|
||
#endif
|
||
#if !defined (S_IWOTH) && defined (W_OK)
|
||
# define S_IWOTH W_OK
|
||
#endif
|
||
#if !defined (S_IXOTH) && defined (X_OK)
|
||
# define S_IXOTH X_OK
|
||
#endif
|
||
|
||
|
||
#ifdef _LIBC
|
||
|
||
#define group_member __group_member
|
||
|
||
#else
|
||
|
||
/* The user's real user id. */
|
||
static uid_t uid;
|
||
|
||
/* The user's real group id. */
|
||
static gid_t gid;
|
||
|
||
/* The user's effective user id. */
|
||
static uid_t euid;
|
||
|
||
/* The user's effective group id. */
|
||
static gid_t egid;
|
||
|
||
/* Nonzero if UID, GID, EUID, and EGID have valid values. */
|
||
static int have_ids = 0;
|
||
|
||
#ifdef HAVE_GETGROUPS
|
||
int group_member ();
|
||
#else
|
||
#define group_member(gid) 0
|
||
#endif
|
||
|
||
#endif
|
||
|
||
|
||
/* Return 0 if the user has permission of type MODE on file PATH;
|
||
otherwise, return -1 and set `errno' to EACCESS.
|
||
Like access, except that it uses the effective user and group
|
||
id's instead of the real ones, and it does not check for read-only
|
||
filesystem, text busy, etc. */
|
||
|
||
int
|
||
euidaccess (path, mode)
|
||
const char *path;
|
||
int mode;
|
||
{
|
||
struct stat stats;
|
||
int granted;
|
||
|
||
#ifdef _LIBC
|
||
uid_t euid;
|
||
gid_t egid;
|
||
|
||
if (! __libc_enable_secure)
|
||
/* If we are not set-uid or set-gid, access does the same. */
|
||
return access (path, mode);
|
||
#else
|
||
if (have_ids == 0)
|
||
{
|
||
have_ids = 1;
|
||
uid = getuid ();
|
||
gid = getgid ();
|
||
euid = geteuid ();
|
||
egid = getegid ();
|
||
}
|
||
|
||
if (uid == euid && gid == egid)
|
||
/* If we are not set-uid or set-gid, access does the same. */
|
||
return access (path, mode);
|
||
#endif
|
||
|
||
if (stat (path, &stats))
|
||
return -1;
|
||
|
||
mode &= (X_OK | W_OK | R_OK); /* Clear any bogus bits. */
|
||
#if R_OK != S_IROTH || W_OK != S_IWOTH || X_OK != S_IXOTH
|
||
?error Oops, portability assumptions incorrect.
|
||
#endif
|
||
|
||
if (mode == F_OK)
|
||
return 0; /* The file exists. */
|
||
|
||
#ifdef _LIBC
|
||
/* Now we need the IDs. */
|
||
euid = geteuid ();
|
||
egid = getegid ();
|
||
#endif
|
||
|
||
/* The super-user can read and write any file, and execute any file
|
||
that anyone can execute. */
|
||
if (euid == 0 && ((mode & X_OK) == 0
|
||
|| (stats.st_mode & (S_IXUSR | S_IXGRP | S_IXOTH))))
|
||
return 0;
|
||
|
||
if (euid == stats.st_uid)
|
||
granted = (unsigned) (stats.st_mode & (mode << 6)) >> 6;
|
||
else if (egid == stats.st_gid || group_member (stats.st_gid))
|
||
granted = (unsigned) (stats.st_mode & (mode << 3)) >> 3;
|
||
else
|
||
granted = (stats.st_mode & mode);
|
||
if (granted == mode)
|
||
return 0;
|
||
__set_errno (EACCESS);
|
||
return -1;
|
||
}
|
||
|
||
#ifdef TEST
|
||
#include <stdio.h>
|
||
#include <errno.h>
|
||
#include "error.h"
|
||
|
||
char *program_name;
|
||
|
||
int
|
||
main (argc, argv)
|
||
int argc;
|
||
char **argv;
|
||
{
|
||
char *file;
|
||
int mode;
|
||
int err;
|
||
|
||
program_name = argv[0];
|
||
if (argc < 3)
|
||
abort ();
|
||
file = argv[1];
|
||
mode = atoi (argv[2]);
|
||
|
||
err = euidaccess (file, mode);
|
||
printf ("%d\n", err);
|
||
if (err != 0)
|
||
error (0, errno, "%s", file);
|
||
exit (0);
|
||
}
|
||
#endif
|