Blame - uidswap.c - platform/external/openssh

blob: bdfa484fc2ef75caf358a23ea278ad32d3cabaf8 [file] [log] [blame]

Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1	/*
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	2	* Author: Tatu Ylonen <ylo@cs.hut.fi>
				3	* Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
				4	* All rights reserved
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	5	* Code for uid-swapping.
Damien Miller	e4340be	2000-09-16 13:29:08 +1100	[diff] [blame]	6	*
				7	* As far as I am concerned, the code I have written for this software
				8	* can be used freely for any purpose. Any derived versions of this
				9	* software must be clearly marked as such, and if the derived work is
				10	* incompatible with the protocol description in the RFC file, it must be
				11	* called by a name other than "ssh" or "Secure Shell".
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	12	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	13
				14	#include "includes.h"
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	15	RCSID("$OpenBSD: uidswap.c,v 1.13 2001/01/21 19:06:01 markus Exp $");
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	16
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	17	#include "log.h"
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	18	#include "uidswap.h"
				19
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	20	/*
				21	* Note: all these functions must work in all of the following cases:
				22	* 1. euid=0, ruid=0
				23	* 2. euid=0, ruid!=0
				24	* 3. euid!=0, ruid!=0
				25	* Additionally, they must work regardless of whether the system has
				26	* POSIX saved uids or not.
				27	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	28
Damien Miller	fbd884a	2001-02-27 08:39:07 +1100	[diff] [blame]	29	#if defined(_POSIX_SAVED_IDS) && !defined(BROKEN_SAVED_UIDS)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	30	/* Lets assume that posix saved ids also work with seteuid, even though that
				31	is not part of the posix specification. */
				32	#define SAVED_IDS_WORK_WITH_SETEUID
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	33	/* Saved effective uid. */
				34	static uid_t saved_euid = 0;
Damien Miller	fbd884a	2001-02-27 08:39:07 +1100	[diff] [blame]	35	#endif
Damien Miller	ee1c0b3	2000-01-21 00:18:15 +1100	[diff] [blame]	36
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	37	/*
				38	* Temporarily changes to the given uid. If the effective user
				39	* id is not root, this does nothing. This call cannot be nested.
				40	*/
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	41	void
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	42	temporarily_use_uid(uid_t uid)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	43	{
				44	#ifdef SAVED_IDS_WORK_WITH_SETEUID
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	45	/* Save the current euid. */
				46	saved_euid = geteuid();
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	47
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	48	/* Set the effective uid to the given (unprivileged) uid. */
				49	if (seteuid(uid) == -1)
Damien Miller	caf6dd6	2000-08-29 11:33:50 +1100	[diff] [blame]	50	debug("seteuid %u: %.100s", (u_int) uid, strerror(errno));
Kevin Steves	a074feb	2000-12-21 22:33:45 +0000	[diff] [blame]	51	#else /* SAVED_IDS_WORK_WITH_SETEUID */
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	52	/* Propagate the privileged uid to all of our uids. */
				53	if (setuid(geteuid()) < 0)
Damien Miller	caf6dd6	2000-08-29 11:33:50 +1100	[diff] [blame]	54	debug("setuid %u: %.100s", (u_int) geteuid(), strerror(errno));
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	55
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	56	/* Set the effective uid to the given (unprivileged) uid. */
				57	if (seteuid(uid) == -1)
Damien Miller	caf6dd6	2000-08-29 11:33:50 +1100	[diff] [blame]	58	debug("seteuid %u: %.100s", (u_int) uid, strerror(errno));
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	59	#endif /* SAVED_IDS_WORK_WITH_SETEUID */
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	60	}
				61
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	62	/*
				63	* Restores to the original uid.
				64	*/
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	65	void
Ben Lindstrom	46c1622	2000-12-22 01:43:59 +0000	[diff] [blame]	66	restore_uid(void)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	67	{
				68	#ifdef SAVED_IDS_WORK_WITH_SETEUID
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	69	/* Set the effective uid back to the saved uid. */
				70	if (seteuid(saved_euid) < 0)
Damien Miller	caf6dd6	2000-08-29 11:33:50 +1100	[diff] [blame]	71	debug("seteuid %u: %.100s", (u_int) saved_euid, strerror(errno));
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	72	#else /* SAVED_IDS_WORK_WITH_SETEUID */
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	73	/*
				74	* We are unable to restore the real uid to its unprivileged value.
				75	* Propagate the real uid (usually more privileged) to effective uid
				76	* as well.
				77	*/
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	78	setuid(getuid());
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	79	#endif /* SAVED_IDS_WORK_WITH_SETEUID */
				80	}
				81
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	82	/*
				83	* Permanently sets all uids to the given uid. This cannot be
				84	* called while temporarily_use_uid is effective.
				85	*/
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	86	void
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	87	permanently_set_uid(uid_t uid)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	88	{
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	89	if (setuid(uid) < 0)
Damien Miller	caf6dd6	2000-08-29 11:33:50 +1100	[diff] [blame]	90	debug("setuid %u: %.100s", (u_int) uid, strerror(errno));
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	91	}