1 // 2 // Automated Testing Framework (atf) 3 // 4 // Copyright (c) 2007 The NetBSD Foundation, Inc. 5 // All rights reserved. 6 // 7 // Redistribution and use in source and binary forms, with or without 8 // modification, are permitted provided that the following conditions 9 // are met: 10 // 1. Redistributions of source code must retain the above copyright 11 // notice, this list of conditions and the following disclaimer. 12 // 2. Redistributions in binary form must reproduce the above copyright 13 // notice, this list of conditions and the following disclaimer in the 14 // documentation and/or other materials provided with the distribution. 15 // 16 // THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND 17 // CONTRIBUTORS ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, 18 // INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF 19 // MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 20 // IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS BE LIABLE FOR ANY 21 // DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 22 // DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE 23 // GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 24 // INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER 25 // IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR 26 // OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN 27 // IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 28 // 29 30 extern "C" { 31 #include <sys/param.h> 32 #include <sys/types.h> 33 34 #include <limits.h> 35 #include <pwd.h> 36 #include <unistd.h> 37 } 38 39 #include <cassert> 40 #include <stdexcept> 41 #include <string> 42 43 #include "user.hpp" 44 45 namespace impl = tools::user; 46 #define IMPL_NAME "tools::user" 47 48 uid_t 49 impl::euid(void) 50 { 51 return ::geteuid(); 52 } 53 54 void 55 impl::drop_privileges(const std::pair< int, int > ids) 56 { 57 if (::setgid(ids.second) == -1) 58 throw std::runtime_error("Failed to drop group privileges"); 59 if (::setuid(ids.first) == -1) 60 throw std::runtime_error("Failed to drop user privileges"); 61 } 62 63 std::pair< int, int > 64 impl::get_user_ids(const std::string& user) 65 { 66 const struct passwd* pw = ::getpwnam(user.c_str()); 67 if (pw == NULL) 68 throw std::runtime_error("Failed to get information for user " + user); 69 return std::make_pair(pw->pw_uid, pw->pw_gid); 70 } 71 72 bool 73 impl::is_member_of_group(gid_t gid) 74 { 75 static gid_t groups[NGROUPS_MAX]; 76 static int ngroups = -1; 77 bool found; 78 int i; 79 80 if (ngroups == -1) { 81 ngroups = getgroups(NGROUPS_MAX, groups); 82 assert(ngroups >= 0); 83 } 84 85 found = false; 86 for (i = 0; !found && i < ngroups; i++) 87 if (groups[i] == gid) 88 found = true; 89 return found; 90 } 91 92 bool 93 impl::is_root(void) 94 { 95 return ::geteuid() == 0; 96 } 97 98 bool 99 impl::is_unprivileged(void) 100 { 101 return ::geteuid() != 0; 102 } 103
Indexes created Tue Feb 24 08:35:24 UTC 2026