sys/kern/vfs_vnops.c

*16693Smckusick/*	vfs_vnops.c	6.2	84/07/08	*/
18Sbill
9764Ssam#include "../machine/reg.h"
9764Ssam
18Sbill#include "../h/param.h"
18Sbill#include "../h/systm.h"
18Sbill#include "../h/dir.h"
18Sbill#include "../h/user.h"
6569Smckusic#include "../h/fs.h"
18Sbill#include "../h/file.h"
18Sbill#include "../h/conf.h"
18Sbill#include "../h/inode.h"
18Sbill#include "../h/acct.h"
2302Skre#include "../h/mount.h"
4914Swnj#include "../h/socket.h"
4914Swnj#include "../h/socketvar.h"
5581Swnj#include "../h/proc.h"
18Sbill
18Sbill/*
18Sbill * Check mode permission on inode pointer.
18Sbill * Mode is READ, WRITE or EXEC.
18Sbill * In the case of WRITE, the
18Sbill * read-only status of the file
18Sbill * system is checked.
18Sbill * Also in WRITE, prototype text
18Sbill * segments cannot be written.
18Sbill * The mode is shifted to select
18Sbill * the owner/group/other fields.
18Sbill * The super user is granted all
18Sbill * permissions.
18Sbill */
18Sbillaccess(ip, mode)
4817Swnj	register struct inode *ip;
4817Swnj	int mode;
18Sbill{
18Sbill	register m;
7867Sroot	register int *gp;
18Sbill
18Sbill	m = mode;
4817Swnj	if (m == IWRITE) {
11162Ssam		/*
11162Ssam		 * Disallow write attempts on read-only
11162Ssam		 * file systems; unless the file is a block
11162Ssam		 * or character device resident on the
11162Ssam		 * file system.
11162Ssam		 */
6569Smckusic		if (ip->i_fs->fs_ronly != 0) {
8956Sroot			if ((ip->i_mode & IFMT) != IFCHR &&
8956Sroot			    (ip->i_mode & IFMT) != IFBLK) {
8956Sroot				u.u_error = EROFS;
8956Sroot				return (1);
8956Sroot			}
18Sbill		}
11162Ssam		/*
11162Ssam		 * If there's shared text associated with
11162Ssam		 * the inode, try to free it up once.  If
11162Ssam		 * we fail, we can't allow writing.
11162Ssam		 */
11162Ssam		if (ip->i_flag&ITEXT)
18Sbill			xrele(ip);
4817Swnj		if (ip->i_flag & ITEXT) {
18Sbill			u.u_error = ETXTBSY;
4817Swnj			return (1);
18Sbill		}
18Sbill	}
11162Ssam	/*
11162Ssam	 * If you're the super-user,
11162Ssam	 * you always get access.
11162Ssam	 */
4817Swnj	if (u.u_uid == 0)
4817Swnj		return (0);
11162Ssam	/*
11162Ssam	 * Access check is based on only
11162Ssam	 * one of owner, group, public.
11162Ssam	 * If not owner, then check group.
11162Ssam	 * If not a member of the group, then
11162Ssam	 * check public access.
11162Ssam	 */
4817Swnj	if (u.u_uid != ip->i_uid) {
18Sbill		m >>= 3;
11162Ssam		if (u.u_gid == ip->i_gid)
11162Ssam			goto found;
11812Ssam		gp = u.u_groups;
11812Ssam		for (; gp < &u.u_groups[NGROUPS] && *gp != NOGROUP; gp++)
10044Ssam			if (ip->i_gid == *gp)
7867Sroot				goto found;
7867Sroot		m >>= 3;
7867Srootfound:
7867Sroot		;
18Sbill	}
4817Swnj	if ((ip->i_mode&m) != 0)
4817Swnj		return (0);
18Sbill	u.u_error = EACCES;
4817Swnj	return (1);
18Sbill}
18Sbill
18Sbill/*
18Sbill * Look up a pathname and test if
18Sbill * the resultant inode is owned by the
18Sbill * current user.
18Sbill * If not, try for super-user.
18Sbill * If permission is granted,
18Sbill * return inode pointer.
18Sbill */
18Sbillstruct inode *
*16693Smckusickowner(fname, follow)
*16693Smckusick	caddr_t fname;
5990Swnj	int follow;
18Sbill{
18Sbill	register struct inode *ip;
*16693Smckusick	register struct nameidata *ndp = &u.u_nd;
18Sbill
*16693Smckusick	ndp->ni_nameiop = LOOKUP | follow;
*16693Smckusick	ndp->ni_segflg = UIO_USERSPACE;
*16693Smckusick	ndp->ni_dirp = fname;
*16693Smckusick	ip = namei(ndp);
4817Swnj	if (ip == NULL)
4817Swnj		return (NULL);
4817Swnj	if (u.u_uid == ip->i_uid)
4817Swnj		return (ip);
4817Swnj	if (suser())
4817Swnj		return (ip);
18Sbill	iput(ip);
4817Swnj	return (NULL);
18Sbill}
18Sbill
18Sbill/*
18Sbill * Test if the current user is the
18Sbill * super user.
18Sbill */
18Sbillsuser()
18Sbill{
18Sbill
4817Swnj	if (u.u_uid == 0) {
18Sbill		u.u_acflag |= ASU;
4817Swnj		return (1);
18Sbill	}
18Sbill	u.u_error = EPERM;
4817Swnj	return (0);
18Sbill}