1 //
2 // Automated Testing Framework (atf)
3 //
4 // Copyright (c) 2007 The NetBSD Foundation, Inc.
5 // All rights reserved.
6 //
7 // Redistribution and use in source and binary forms, with or without
8 // modification, are permitted provided that the following conditions
9 // are met:
10 // 1. Redistributions of source code must retain the above copyright
11 // notice, this list of conditions and the following disclaimer.
12 // 2. Redistributions in binary form must reproduce the above copyright
13 // notice, this list of conditions and the following disclaimer in the
14 // documentation and/or other materials provided with the distribution.
15 //
16 // THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND
17 // CONTRIBUTORS ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
18 // INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
19 // MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
20 // IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS BE LIABLE FOR ANY
21 // DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22 // DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE
23 // GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
24 // INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER
25 // IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
26 // OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
27 // IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
28 //
29
30 extern "C" {
31 #include <sys/param.h>
32 #include <sys/types.h>
33
34 #include <limits.h>
35 #include <pwd.h>
36 #include <unistd.h>
37 }
38
39 #include <cassert>
40 #include <stdexcept>
41 #include <string>
42
43 #include "user.hpp"
44
45 namespace impl = tools::user;
46 #define IMPL_NAME "tools::user"
47
48 uid_t
euid(void)49 impl::euid(void)
50 {
51 return ::geteuid();
52 }
53
54 void
drop_privileges(const std::pair<int,int> ids)55 impl::drop_privileges(const std::pair< int, int > ids)
56 {
57 if (::setgid(ids.second) == -1)
58 throw std::runtime_error("Failed to drop group privileges");
59 if (::setuid(ids.first) == -1)
60 throw std::runtime_error("Failed to drop user privileges");
61 }
62
63 std::pair< int, int >
get_user_ids(const std::string & user)64 impl::get_user_ids(const std::string& user)
65 {
66 const struct passwd* pw = ::getpwnam(user.c_str());
67 if (pw == NULL)
68 throw std::runtime_error("Failed to get information for user " + user);
69 return std::make_pair(pw->pw_uid, pw->pw_gid);
70 }
71
72 bool
is_member_of_group(gid_t gid)73 impl::is_member_of_group(gid_t gid)
74 {
75 static gid_t groups[NGROUPS_MAX];
76 static int ngroups = -1;
77 bool found;
78 int i;
79
80 if (ngroups == -1) {
81 ngroups = getgroups(NGROUPS_MAX, groups);
82 assert(ngroups >= 0);
83 }
84
85 found = false;
86 for (i = 0; !found && i < ngroups; i++)
87 if (groups[i] == gid)
88 found = true;
89 return found;
90 }
91
92 bool
is_root(void)93 impl::is_root(void)
94 {
95 return ::geteuid() == 0;
96 }
97
98 bool
is_unprivileged(void)99 impl::is_unprivileged(void)
100 {
101 return ::geteuid() != 0;
102 }
103