unfdpass.c revision 1.5 1 /* $NetBSD: unfdpass.c,v 1.5 1999/03/22 18:19:54 sommerfe Exp $ */
2
3 /*-
4 * Copyright (c) 1998 The NetBSD Foundation, Inc.
5 * All rights reserved.
6 *
7 * This code is derived from software contributed to The NetBSD Foundation
8 * by Jason R. Thorpe of the Numerical Aerospace Simulation Facility,
9 * NASA Ames Research Center.
10 *
11 * Redistribution and use in source and binary forms, with or without
12 * modification, are permitted provided that the following conditions
13 * are met:
14 * 1. Redistributions of source code must retain the above copyright
15 * notice, this list of conditions and the following disclaimer.
16 * 2. Redistributions in binary form must reproduce the above copyright
17 * notice, this list of conditions and the following disclaimer in the
18 * documentation and/or other materials provided with the distribution.
19 * 3. All advertising materials mentioning features or use of this software
20 * must display the following acknowledgement:
21 * This product includes software developed by the NetBSD
22 * Foundation, Inc. and its contributors.
23 * 4. Neither the name of The NetBSD Foundation nor the names of its
24 * contributors may be used to endorse or promote products derived
25 * from this software without specific prior written permission.
26 *
27 * THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS
28 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
29 * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
30 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS
31 * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
32 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
33 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
34 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
35 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
36 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
37 * POSSIBILITY OF SUCH DAMAGE.
38 */
39
40 /*
41 * Test passing of file descriptors and credentials over Unix domain sockets.
42 */
43
44 #include <sys/param.h>
45 #include <sys/socket.h>
46 #include <sys/time.h>
47 #include <sys/wait.h>
48 #include <sys/un.h>
49 #include <sys/uio.h>
50
51 #include <err.h>
52 #include <errno.h>
53 #include <fcntl.h>
54 #include <signal.h>
55 #include <stdio.h>
56 #include <string.h>
57 #include <unistd.h>
58
59 #define SOCK_NAME "test-sock"
60
61 int main __P((int, char *[]));
62 void child __P((void));
63 void catch_sigchld __P((int));
64 void usage __P((char *progname));
65
66 #define FILE_SIZE 128
67 #define MSG_SIZE -1
68 #define NFILES 24
69
70 struct fdcmessage {
71 struct cmsghdr cm;
72 int files[NFILES];
73 };
74
75 struct crcmessage {
76 struct cmsghdr cm;
77 char creds[SOCKCREDSIZE(NGROUPS)];
78 };
79
80 int chroot_rcvr = 0;
81 int pass_dir = 0;
82 int pass_root_dir = 0;
83 int exit_early = 0;
84 int exit_later = 0;
85 int pass_sock = 0;
86 int make_pretzel = 0;
87
88 /* ARGSUSED */
89 int
90 main(argc, argv)
91 int argc;
92 char *argv[];
93 {
94 #if MSG_SIZE >= 0
95 struct iovec iov;
96 #endif
97 char *progname=argv[0];
98 struct msghdr msg;
99 int listensock, sock, fd, i, status;
100 char fname[16], buf[FILE_SIZE];
101 struct cmsghdr *cmp;
102 struct {
103 struct fdcmessage fdcm;
104 struct crcmessage crcm;
105 } message;
106 int *files = NULL;
107 struct sockcred *sc = NULL;
108 struct sockaddr_un sun, csun;
109 int csunlen;
110 fd_set oob;
111 pid_t pid;
112 int ch;
113
114
115 while ((ch = getopt(argc, argv, "DESdepr")) != -1) {
116 switch(ch) {
117
118 case 'e':
119 exit_early++; /* test early GC */
120 break;
121
122 case 'E':
123 exit_later++; /* test later GC */
124 break;
125
126 case 'd':
127 pass_dir++;
128 break;
129
130 case 'D':
131 pass_dir++;
132 pass_root_dir++;
133 break;
134
135 case 'S':
136 pass_sock++;
137 break;
138
139 case 'r':
140 chroot_rcvr++;
141 break;
142
143 case 'p':
144 make_pretzel++;
145 break;
146
147 case '?':
148 default:
149 usage(progname);
150 }
151 }
152
153
154 /*
155 * Create the test files.
156 */
157 for (i = 0; i < NFILES; i++) {
158 (void) sprintf(fname, "file%d", i + 1);
159 if ((fd = open(fname, O_WRONLY|O_CREAT|O_TRUNC, 0666)) == -1)
160 err(1, "open %s", fname);
161 (void) sprintf(buf, "This is file %d.\n", i + 1);
162 if (write(fd, buf, strlen(buf)) != strlen(buf))
163 err(1, "write %s", fname);
164 (void) close(fd);
165 }
166
167 /*
168 * Create the listen socket.
169 */
170 if ((listensock = socket(PF_LOCAL, SOCK_STREAM, 0)) == -1)
171 err(1, "socket");
172
173 (void) unlink(SOCK_NAME);
174 (void) memset(&sun, 0, sizeof(sun));
175 sun.sun_family = AF_LOCAL;
176 (void) strcpy(sun.sun_path, SOCK_NAME);
177 sun.sun_len = SUN_LEN(&sun);
178
179 i = 1;
180 if (setsockopt(listensock, 0, LOCAL_CREDS, &i, sizeof(i)) == -1)
181 err(1, "setsockopt");
182
183 if (bind(listensock, (struct sockaddr *)&sun, sizeof(sun)) == -1)
184 err(1, "bind");
185
186 if (listen(listensock, 1) == -1)
187 err(1, "listen");
188
189 /*
190 * Create the sender.
191 */
192 (void) signal(SIGCHLD, catch_sigchld);
193 pid = fork();
194 switch (pid) {
195 case -1:
196 err(1, "fork");
197 /* NOTREACHED */
198
199 case 0:
200 child();
201 /* NOTREACHED */
202 }
203
204 if (exit_early)
205 exit(0);
206
207 if (chroot_rcvr &&
208 ((chroot(".") < 0)))
209 err(1, "chroot");
210
211 /*
212 * Wait for the sender to connect.
213 */
214 if ((sock = accept(listensock, (struct sockaddr *)&csun,
215 &csunlen)) == -1)
216 err(1, "accept");
217
218 /*
219 * Give sender a chance to run. We will get going again
220 * once the SIGCHLD arrives.
221 */
222 (void) sleep(10);
223
224 if (exit_later)
225 exit(0);
226
227 /*
228 * Grab the descriptors and credentials passed to us.
229 */
230
231 do {
232 (void) memset(&msg, 0, sizeof(msg));
233 msg.msg_control = (caddr_t) &message;
234 msg.msg_controllen = sizeof(message);
235 #if MSG_SIZE >= 0
236 iov.iov_base = buf;
237 iov.iov_len = MSG_SIZE;
238 msg.msg_iov = &iov;
239 msg.msg_iovlen = 1;
240 #endif
241
242 if (recvmsg(sock, &msg, 0) == -1)
243 err(1, "recvmsg");
244
245 (void) close(sock);
246
247 sock = -1;
248
249 if (msg.msg_controllen == 0)
250 errx(1, "no control messages received");
251
252 if (msg.msg_flags & MSG_CTRUNC)
253 errx(1, "lost control message data");
254
255 cmp = CMSG_FIRSTHDR(&msg);
256 for (cmp = CMSG_FIRSTHDR(&msg); cmp != NULL;
257 cmp = CMSG_NXTHDR(&msg, cmp)) {
258 if (cmp->cmsg_level != SOL_SOCKET)
259 errx(1, "bad control message level %d",
260 cmp->cmsg_level);
261
262 switch (cmp->cmsg_type) {
263 case SCM_RIGHTS:
264 if (cmp->cmsg_len != sizeof(message.fdcm))
265 errx(1, "bad fd control message length");
266
267 files = (int *)CMSG_DATA(cmp);
268 break;
269
270 case SCM_CREDS:
271 if (cmp->cmsg_len < sizeof(struct sockcred))
272 errx(1, "bad cred control message length");
273
274 sc = (struct sockcred *)CMSG_DATA(cmp);
275 break;
276
277 default:
278 errx(1, "unexpected control message");
279 /* NOTREACHED */
280 }
281 }
282
283
284 /*
285 * Read the files and print their contents.
286 */
287 if (files == NULL)
288 warnx("didn't get fd control message");
289 else {
290 for (i = 0; i < NFILES; i++) {
291 struct stat st;
292 (void) memset(buf, 0, sizeof(buf));
293 fstat(files[i], &st);
294 if (S_ISDIR(st.st_mode)) {
295 printf("file %d is a directory\n", i+1);
296 } else if (S_ISSOCK(st.st_mode)) {
297 printf("file %d is a socket\n", i+1);
298 sock = files[i];
299 } else {
300 int c;
301 c = read (files[i], buf, sizeof(buf));
302 if (c < 0)
303 err(1, "read file %d", i + 1);
304 else if (c == 0)
305 printf("[eof on %d]\n", i + 1);
306 else
307 printf("%s", buf);
308 }
309 }
310 }
311 /*
312 * Double-check credentials.
313 */
314 if (sc == NULL)
315 warnx("didn't get cred control message");
316 else {
317 if (sc->sc_uid == getuid() &&
318 sc->sc_euid == geteuid() &&
319 sc->sc_gid == getgid() &&
320 sc->sc_egid == getegid())
321 printf("Credentials match.\n");
322 else
323 printf("Credentials do NOT match.\n");
324 }
325 } while (sock != -1);
326
327
328 /*
329 * All done!
330 */
331 exit(0);
332 }
333
334 void
335 usage(progname)
336 char *progname;
337 {
338 fprintf(stderr, "usage: %s [-derDES]\n", progname);
339 exit(1);
340 }
341
342 void
343 catch_sigchld(sig)
344 int sig;
345 {
346 int status;
347
348 (void) wait(&status);
349 }
350
351 void
352 child()
353 {
354 #if MSG_SIZE >= 0
355 struct iovec iov;
356 #endif
357 struct msghdr msg;
358 char fname[16], buf[FILE_SIZE];
359 struct cmsghdr *cmp;
360 struct fdcmessage fdcm;
361 int i, fd, sock, nfd;
362 struct sockaddr_un sun;
363 int spair[2];
364
365 /*
366 * Create socket and connect to the receiver.
367 */
368 if ((sock = socket(PF_LOCAL, SOCK_STREAM, 0)) == -1)
369 errx(1, "child socket");
370
371 (void) memset(&sun, 0, sizeof(sun));
372 sun.sun_family = AF_LOCAL;
373 (void) strcpy(sun.sun_path, SOCK_NAME);
374 sun.sun_len = SUN_LEN(&sun);
375
376 if (connect(sock, (struct sockaddr *)&sun, sizeof(sun)) == -1)
377 err(1, "child connect");
378
379 nfd = NFILES;
380 i = 0;
381
382 if (pass_sock) {
383 fdcm.files[i++] = sock;
384 }
385
386
387
388 if (pass_dir)
389 nfd--;
390
391 /*
392 * Open the files again, and pass them to the child
393 * over the socket.
394 */
395
396 for (; i < nfd; i++) {
397 (void) sprintf(fname, "file%d", i + 1);
398 if ((fd = open(fname, O_RDONLY, 0666)) == -1)
399 err(1, "child open %s", fname);
400 fdcm.files[i] = fd;
401 }
402
403 if (pass_dir) {
404 char *dirname = pass_root_dir ? "/" : ".";
405
406
407 if ((fd = open(dirname, O_RDONLY, 0)) == -1) {
408 err(1, "child open directory %s", dirname);
409 }
410 fdcm.files[i] = fd;
411 }
412
413 (void) memset(&msg, 0, sizeof(msg));
414 msg.msg_control = (caddr_t) &fdcm;
415 msg.msg_controllen = sizeof(fdcm);
416 #if MSG_SIZE >= 0
417 iov.iov_base = buf;
418 iov.iov_len = MSG_SIZE;
419 msg.msg_iov = &iov;
420 msg.msg_iovlen = 1;
421 #endif
422
423 cmp = CMSG_FIRSTHDR(&msg);
424 cmp->cmsg_len = sizeof(fdcm);
425 cmp->cmsg_level = SOL_SOCKET;
426 cmp->cmsg_type = SCM_RIGHTS;
427
428 while (make_pretzel > 0) {
429 if (socketpair(PF_LOCAL, SOCK_STREAM, 0, spair) < 0)
430 err(1, "socketpair");
431
432 printf("send pretzel\n");
433 if (sendmsg(spair[0], &msg, 0) < 0)
434 err(1, "child prezel sendmsg");
435
436 close(fdcm.files[0]);
437 close(fdcm.files[1]);
438 fdcm.files[0] = spair[0];
439 fdcm.files[1] = spair[1];
440 make_pretzel--;
441 }
442
443
444
445 if (sendmsg(sock, &msg, 0) == -1)
446 err(1, "child sendmsg");
447
448 /*
449 * All done!
450 */
451 exit(0);
452 }
453