1 1.2 christos /* $NetBSD: t_chroot.c,v 1.2 2017/01/10 22:36:29 christos Exp $ */ 2 1.1 jruoho 3 1.1 jruoho /*- 4 1.1 jruoho * Copyright (c) 2011 The NetBSD Foundation, Inc. 5 1.1 jruoho * All rights reserved. 6 1.1 jruoho * 7 1.1 jruoho * This code is derived from software contributed to The NetBSD Foundation 8 1.1 jruoho * by Jukka Ruohonen. 9 1.1 jruoho * 10 1.1 jruoho * Redistribution and use in source and binary forms, with or without 11 1.1 jruoho * modification, are permitted provided that the following conditions 12 1.1 jruoho * are met: 13 1.1 jruoho * 1. Redistributions of source code must retain the above copyright 14 1.1 jruoho * notice, this list of conditions and the following disclaimer. 15 1.1 jruoho * 2. Redistributions in binary form must reproduce the above copyright 16 1.1 jruoho * notice, this list of conditions and the following disclaimer in the 17 1.1 jruoho * documentation and/or other materials provided with the distribution. 18 1.1 jruoho * 19 1.1 jruoho * THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS 20 1.1 jruoho * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED 21 1.1 jruoho * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 22 1.1 jruoho * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS 23 1.1 jruoho * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 24 1.1 jruoho * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 25 1.1 jruoho * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 26 1.1 jruoho * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 27 1.1 jruoho * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 28 1.1 jruoho * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 29 1.1 jruoho * POSSIBILITY OF SUCH DAMAGE. 30 1.1 jruoho */ 31 1.1 jruoho #include <sys/cdefs.h> 32 1.2 christos __RCSID("$NetBSD: t_chroot.c,v 1.2 2017/01/10 22:36:29 christos Exp $"); 33 1.1 jruoho 34 1.1 jruoho #include <sys/wait.h> 35 1.2 christos #include <sys/stat.h> 36 1.1 jruoho 37 1.1 jruoho #include <atf-c.h> 38 1.1 jruoho #include <errno.h> 39 1.1 jruoho #include <fcntl.h> 40 1.1 jruoho #include <limits.h> 41 1.1 jruoho #include <pwd.h> 42 1.1 jruoho #include <stdlib.h> 43 1.1 jruoho #include <string.h> 44 1.1 jruoho #include <unistd.h> 45 1.1 jruoho 46 1.1 jruoho ATF_TC(chroot_basic); 47 1.1 jruoho ATF_TC_HEAD(chroot_basic, tc) 48 1.1 jruoho { 49 1.1 jruoho atf_tc_set_md_var(tc, "descr", "A basic test of chroot(2)"); 50 1.1 jruoho atf_tc_set_md_var(tc, "require.user", "root"); 51 1.1 jruoho } 52 1.1 jruoho 53 1.1 jruoho ATF_TC_BODY(chroot_basic, tc) 54 1.1 jruoho { 55 1.1 jruoho char buf[PATH_MAX]; 56 1.1 jruoho int fd, sta; 57 1.1 jruoho pid_t pid; 58 1.1 jruoho 59 1.1 jruoho (void)memset(buf, '\0', sizeof(buf)); 60 1.1 jruoho (void)getcwd(buf, sizeof(buf)); 61 1.1 jruoho (void)strlcat(buf, "/dir", sizeof(buf)); 62 1.1 jruoho 63 1.1 jruoho ATF_REQUIRE(mkdir(buf, 0500) == 0); 64 1.1 jruoho ATF_REQUIRE(chdir(buf) == 0); 65 1.1 jruoho 66 1.1 jruoho pid = fork(); 67 1.1 jruoho ATF_REQUIRE(pid >= 0); 68 1.1 jruoho 69 1.1 jruoho if (pid == 0) { 70 1.1 jruoho 71 1.1 jruoho if (chroot(buf) != 0) 72 1.1 jruoho _exit(EXIT_FAILURE); 73 1.1 jruoho 74 1.1 jruoho errno = 0; 75 1.1 jruoho 76 1.1 jruoho if (chroot("/root") != -1) 77 1.1 jruoho _exit(EXIT_FAILURE); 78 1.1 jruoho 79 1.1 jruoho if (errno != ENOENT) 80 1.1 jruoho _exit(EXIT_FAILURE); 81 1.1 jruoho 82 1.1 jruoho fd = open("file", O_RDONLY | O_CREAT, 0600); 83 1.1 jruoho 84 1.1 jruoho if (fd < 0) 85 1.1 jruoho _exit(EXIT_FAILURE); 86 1.1 jruoho 87 1.1 jruoho if (close(fd) != 0) 88 1.1 jruoho _exit(EXIT_FAILURE); 89 1.1 jruoho 90 1.1 jruoho _exit(EXIT_SUCCESS); 91 1.1 jruoho } 92 1.1 jruoho 93 1.1 jruoho (void)wait(&sta); 94 1.1 jruoho 95 1.1 jruoho if (WIFEXITED(sta) == 0 || WEXITSTATUS(sta) != EXIT_SUCCESS) 96 1.1 jruoho atf_tc_fail("chroot(2) failed"); 97 1.1 jruoho 98 1.1 jruoho (void)chdir("/"); 99 1.1 jruoho (void)strlcat(buf, "/file", sizeof(buf)); 100 1.1 jruoho 101 1.1 jruoho fd = open(buf, O_RDONLY); 102 1.1 jruoho 103 1.1 jruoho if (fd < 0) 104 1.1 jruoho atf_tc_fail("chroot(2) did not change the root directory"); 105 1.1 jruoho 106 1.1 jruoho ATF_REQUIRE(close(fd) == 0); 107 1.1 jruoho ATF_REQUIRE(unlink(buf) == 0); 108 1.1 jruoho } 109 1.1 jruoho 110 1.1 jruoho ATF_TC(chroot_err); 111 1.1 jruoho ATF_TC_HEAD(chroot_err, tc) 112 1.1 jruoho { 113 1.1 jruoho atf_tc_set_md_var(tc, "descr", "Test error conditions of chroot(2)"); 114 1.1 jruoho atf_tc_set_md_var(tc, "require.user", "root"); 115 1.1 jruoho } 116 1.1 jruoho 117 1.1 jruoho ATF_TC_BODY(chroot_err, tc) 118 1.1 jruoho { 119 1.1 jruoho char buf[PATH_MAX + 1]; 120 1.1 jruoho 121 1.1 jruoho (void)memset(buf, 'x', sizeof(buf)); 122 1.1 jruoho 123 1.1 jruoho errno = 0; 124 1.1 jruoho ATF_REQUIRE_ERRNO(ENAMETOOLONG, chroot(buf) == -1); 125 1.1 jruoho 126 1.1 jruoho errno = 0; 127 1.1 jruoho ATF_REQUIRE_ERRNO(EFAULT, chroot((void *)-1) == -1); 128 1.1 jruoho 129 1.1 jruoho errno = 0; 130 1.1 jruoho ATF_REQUIRE_ERRNO(ENOENT, chroot("/a/b/c/d/e/f/g/h/i/j") == -1); 131 1.1 jruoho } 132 1.1 jruoho 133 1.1 jruoho ATF_TC(chroot_perm); 134 1.1 jruoho ATF_TC_HEAD(chroot_perm, tc) 135 1.1 jruoho { 136 1.1 jruoho atf_tc_set_md_var(tc, "descr", "Test permissions with chroot(2)"); 137 1.1 jruoho atf_tc_set_md_var(tc, "require.user", "unprivileged"); 138 1.1 jruoho } 139 1.1 jruoho 140 1.1 jruoho ATF_TC_BODY(chroot_perm, tc) 141 1.1 jruoho { 142 1.1 jruoho static char buf[LINE_MAX]; 143 1.1 jruoho pid_t pid; 144 1.1 jruoho int sta; 145 1.1 jruoho 146 1.1 jruoho (void)memset(buf, '\0', sizeof(buf)); 147 1.1 jruoho ATF_REQUIRE(getcwd(buf, sizeof(buf)) != NULL); 148 1.1 jruoho 149 1.1 jruoho pid = fork(); 150 1.1 jruoho ATF_REQUIRE(pid >= 0); 151 1.1 jruoho 152 1.1 jruoho if (pid == 0) { 153 1.1 jruoho 154 1.1 jruoho errno = 0; 155 1.1 jruoho 156 1.1 jruoho if (chroot(buf) != -1) 157 1.1 jruoho _exit(EXIT_FAILURE); 158 1.1 jruoho 159 1.1 jruoho if (errno != EPERM) 160 1.1 jruoho _exit(EXIT_FAILURE); 161 1.1 jruoho 162 1.1 jruoho _exit(EXIT_SUCCESS); 163 1.1 jruoho } 164 1.1 jruoho 165 1.1 jruoho (void)wait(&sta); 166 1.1 jruoho 167 1.1 jruoho if (WIFEXITED(sta) == 0 || WEXITSTATUS(sta) != EXIT_SUCCESS) 168 1.1 jruoho atf_tc_fail("chroot(2) succeeded as unprivileged user"); 169 1.1 jruoho } 170 1.1 jruoho 171 1.1 jruoho ATF_TC(fchroot_basic); 172 1.1 jruoho ATF_TC_HEAD(fchroot_basic, tc) 173 1.1 jruoho { 174 1.1 jruoho atf_tc_set_md_var(tc, "descr", "A basic test of fchroot(2)"); 175 1.1 jruoho atf_tc_set_md_var(tc, "require.user", "root"); 176 1.1 jruoho } 177 1.1 jruoho 178 1.1 jruoho ATF_TC_BODY(fchroot_basic, tc) 179 1.1 jruoho { 180 1.1 jruoho char buf[PATH_MAX]; 181 1.1 jruoho int fd, sta; 182 1.1 jruoho pid_t pid; 183 1.1 jruoho 184 1.1 jruoho (void)memset(buf, '\0', sizeof(buf)); 185 1.1 jruoho (void)getcwd(buf, sizeof(buf)); 186 1.1 jruoho (void)strlcat(buf, "/dir", sizeof(buf)); 187 1.1 jruoho 188 1.1 jruoho ATF_REQUIRE(mkdir(buf, 0500) == 0); 189 1.1 jruoho ATF_REQUIRE(chdir(buf) == 0); 190 1.1 jruoho 191 1.1 jruoho fd = open(buf, O_RDONLY); 192 1.1 jruoho ATF_REQUIRE(fd >= 0); 193 1.1 jruoho 194 1.1 jruoho pid = fork(); 195 1.1 jruoho ATF_REQUIRE(pid >= 0); 196 1.1 jruoho 197 1.1 jruoho if (pid == 0) { 198 1.1 jruoho 199 1.1 jruoho if (fchroot(fd) != 0) 200 1.1 jruoho _exit(EXIT_FAILURE); 201 1.1 jruoho 202 1.1 jruoho if (close(fd) != 0) 203 1.1 jruoho _exit(EXIT_FAILURE); 204 1.1 jruoho 205 1.1 jruoho fd = open("file", O_RDONLY | O_CREAT, 0600); 206 1.1 jruoho 207 1.1 jruoho if (fd < 0) 208 1.1 jruoho _exit(EXIT_FAILURE); 209 1.1 jruoho 210 1.1 jruoho if (close(fd) != 0) 211 1.1 jruoho _exit(EXIT_FAILURE); 212 1.1 jruoho 213 1.1 jruoho _exit(EXIT_SUCCESS); 214 1.1 jruoho } 215 1.1 jruoho 216 1.1 jruoho (void)wait(&sta); 217 1.1 jruoho 218 1.1 jruoho if (WIFEXITED(sta) == 0 || WEXITSTATUS(sta) != EXIT_SUCCESS) 219 1.1 jruoho atf_tc_fail("fchroot(2) failed"); 220 1.1 jruoho 221 1.1 jruoho (void)chdir("/"); 222 1.1 jruoho (void)strlcat(buf, "/file", sizeof(buf)); 223 1.1 jruoho 224 1.1 jruoho fd = open(buf, O_RDONLY); 225 1.1 jruoho 226 1.1 jruoho if (fd < 0) 227 1.1 jruoho atf_tc_fail("fchroot(2) did not change the root directory"); 228 1.1 jruoho 229 1.1 jruoho ATF_REQUIRE(close(fd) == 0); 230 1.1 jruoho ATF_REQUIRE(unlink(buf) == 0); 231 1.1 jruoho } 232 1.1 jruoho 233 1.1 jruoho ATF_TC(fchroot_err); 234 1.1 jruoho ATF_TC_HEAD(fchroot_err, tc) 235 1.1 jruoho { 236 1.1 jruoho atf_tc_set_md_var(tc, "descr", "Test error conditions of fchroot(2)"); 237 1.1 jruoho atf_tc_set_md_var(tc, "require.user", "root"); 238 1.1 jruoho } 239 1.1 jruoho 240 1.1 jruoho ATF_TC_BODY(fchroot_err, tc) 241 1.1 jruoho { 242 1.1 jruoho int fd; 243 1.1 jruoho 244 1.1 jruoho fd = open("/etc/passwd", O_RDONLY); 245 1.1 jruoho ATF_REQUIRE(fd >= 0); 246 1.1 jruoho 247 1.1 jruoho errno = 0; 248 1.1 jruoho ATF_REQUIRE_ERRNO(EBADF, fchroot(-1) == -1); 249 1.1 jruoho 250 1.1 jruoho errno = 0; 251 1.1 jruoho ATF_REQUIRE_ERRNO(ENOTDIR, fchroot(fd) == -1); 252 1.1 jruoho 253 1.1 jruoho ATF_REQUIRE(close(fd) == 0); 254 1.1 jruoho } 255 1.1 jruoho 256 1.1 jruoho ATF_TC(fchroot_perm); 257 1.1 jruoho ATF_TC_HEAD(fchroot_perm, tc) 258 1.1 jruoho { 259 1.1 jruoho atf_tc_set_md_var(tc, "descr", "Test permissions with fchroot(2)"); 260 1.1 jruoho atf_tc_set_md_var(tc, "require.user", "root"); 261 1.1 jruoho } 262 1.1 jruoho 263 1.1 jruoho ATF_TC_BODY(fchroot_perm, tc) 264 1.1 jruoho { 265 1.1 jruoho static char buf[LINE_MAX]; 266 1.1 jruoho struct passwd *pw; 267 1.1 jruoho int fd, sta; 268 1.1 jruoho pid_t pid; 269 1.1 jruoho 270 1.1 jruoho (void)memset(buf, '\0', sizeof(buf)); 271 1.1 jruoho ATF_REQUIRE(getcwd(buf, sizeof(buf)) != NULL); 272 1.1 jruoho 273 1.1 jruoho pw = getpwnam("nobody"); 274 1.1 jruoho fd = open(buf, O_RDONLY); 275 1.1 jruoho 276 1.1 jruoho ATF_REQUIRE(fd >= 0); 277 1.1 jruoho ATF_REQUIRE(pw != NULL); 278 1.1 jruoho 279 1.1 jruoho pid = fork(); 280 1.1 jruoho ATF_REQUIRE(pid >= 0); 281 1.1 jruoho 282 1.1 jruoho if (pid == 0) { 283 1.1 jruoho 284 1.1 jruoho (void)setuid(pw->pw_uid); 285 1.1 jruoho 286 1.1 jruoho errno = 0; 287 1.1 jruoho 288 1.1 jruoho if (fchroot(fd) != -1) 289 1.1 jruoho _exit(EXIT_FAILURE); 290 1.1 jruoho 291 1.1 jruoho if (errno != EPERM) 292 1.1 jruoho _exit(EXIT_FAILURE); 293 1.1 jruoho 294 1.1 jruoho _exit(EXIT_SUCCESS); 295 1.1 jruoho } 296 1.1 jruoho 297 1.1 jruoho (void)wait(&sta); 298 1.1 jruoho 299 1.1 jruoho if (WIFEXITED(sta) == 0 || WEXITSTATUS(sta) != EXIT_SUCCESS) 300 1.1 jruoho atf_tc_fail("fchroot(2) succeeded as unprivileged user"); 301 1.1 jruoho } 302 1.1 jruoho 303 1.1 jruoho ATF_TP_ADD_TCS(tp) 304 1.1 jruoho { 305 1.1 jruoho 306 1.1 jruoho ATF_TP_ADD_TC(tp, chroot_basic); 307 1.1 jruoho ATF_TP_ADD_TC(tp, chroot_err); 308 1.1 jruoho ATF_TP_ADD_TC(tp, chroot_perm); 309 1.1 jruoho ATF_TP_ADD_TC(tp, fchroot_basic); 310 1.1 jruoho ATF_TP_ADD_TC(tp, fchroot_err); 311 1.1 jruoho ATF_TP_ADD_TC(tp, fchroot_perm); 312 1.1 jruoho 313 1.1 jruoho return atf_no_error(); 314 1.1 jruoho } 315
Indexes created Sat Sep 20 22:09:52 GMT 2025