2 Unix SMB/Netbios implementation.
5 Copyright (C) Andrew Tridgell 1992-1998
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 2 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program; if not, write to the Free Software
19 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
24 extern int DEBUGLEVEL;
26 /* what user is current? */
27 extern struct current_user current_user;
31 /****************************************************************************
32 Initialise the uid routines.
33 ****************************************************************************/
37 current_user.uid = geteuid();
38 current_user.gid = getegid();
40 if (current_user.gid != 0 && current_user.uid == 0) {
41 gain_root_group_privilege();
44 current_user.conn = NULL;
45 current_user.vuid = UID_FIELD_INVALID;
47 dos_ChDir(OriginalDir);
50 /****************************************************************************
51 Become the specified uid.
52 ****************************************************************************/
54 static BOOL become_uid(uid_t uid)
56 if (uid == (uid_t)-1 || ((sizeof(uid_t) == 2) && (uid == (uid_t)65535))) {
59 DEBUG(1,("WARNING: using uid %d is a security risk\n",(int)uid));
64 set_effective_uid(uid);
66 current_user.uid = uid;
69 profile_p->uid_changes++;
76 /****************************************************************************
77 Become the specified gid.
78 ****************************************************************************/
80 static BOOL become_gid(gid_t gid)
82 if (gid == (gid_t)-1 || ((sizeof(gid_t) == 2) && (gid == (gid_t)65535))) {
83 DEBUG(1,("WARNING: using gid %d is a security risk\n",(int)gid));
86 set_effective_gid(gid);
88 current_user.gid = gid;
94 /****************************************************************************
95 Become the specified uid and gid.
96 ****************************************************************************/
98 static BOOL become_id(uid_t uid,gid_t gid)
100 return(become_gid(gid) && become_uid(uid));
103 /****************************************************************************
104 Become the guest user.
105 ****************************************************************************/
107 BOOL become_guest(void)
110 static struct passwd *pass=NULL;
113 pass = Get_Pwnam(lp_guestaccount(-1),True);
114 if (!pass) return(False);
117 /* MWW: From AIX FAQ patch to WU-ftpd: call initgroups before setting IDs */
118 initgroups(pass->pw_name, (gid_t)pass->pw_gid);
121 ret = become_id(pass->pw_uid,pass->pw_gid);
124 DEBUG(1,("Failed to become guest. Invalid guest account?\n"));
127 current_user.conn = NULL;
128 current_user.vuid = UID_FIELD_INVALID;
133 /*******************************************************************
134 Check if a username is OK.
135 ********************************************************************/
137 static BOOL check_user_ok(connection_struct *conn, user_struct *vuser,int snum)
140 for (i=0;i<conn->uid_cache.entries;i++)
141 if (conn->uid_cache.list[i] == vuser->uid) return(True);
143 if (!user_ok(vuser->name,snum)) return(False);
145 i = conn->uid_cache.entries % UID_CACHE_SIZE;
146 conn->uid_cache.list[i] = vuser->uid;
148 if (conn->uid_cache.entries < UID_CACHE_SIZE)
149 conn->uid_cache.entries++;
155 /****************************************************************************
156 Become the user of a connection number.
157 ****************************************************************************/
159 BOOL become_user(connection_struct *conn, uint16 vuid)
161 user_struct *vuser = get_valid_user_struct(vuid);
168 DEBUG(2,("Connection not open\n"));
173 * We need a separate check in security=share mode due to vuid
174 * always being UID_FIELD_INVALID. If we don't do this then
175 * in share mode security we are *always* changing uid's between
176 * SMB's - this hurts performance - Badly.
179 if((lp_security() == SEC_SHARE) && (current_user.conn == conn) &&
180 (current_user.uid == conn->uid)) {
181 DEBUG(4,("Skipping become_user - already user\n"));
183 } else if ((current_user.conn == conn) &&
184 (vuser != 0) && (current_user.vuid == vuid) &&
185 (current_user.uid == vuser->uid)) {
186 DEBUG(4,("Skipping become_user - already user\n"));
194 if((vuser != NULL) && !check_user_ok(conn, vuser, snum))
197 if (conn->force_user ||
198 lp_security() == SEC_SHARE ||
199 !(vuser) || (vuser->guest)) {
202 current_user.groups = conn->groups;
203 current_user.ngroups = conn->ngroups;
206 DEBUG(2,("Invalid vuid used %d\n",vuid));
211 current_user.ngroups = vuser->n_groups;
212 current_user.groups = vuser->groups;
216 * See if we should force group for this service.
217 * If so this overrides any group set in the force
221 if((group_c = *lp_force_group(snum))) {
225 * Only force group if the user is a member of
226 * the service group. Check the group memberships for
227 * this user (we already have this) to
228 * see if we should force the group.
232 for (i = 0; i < current_user.ngroups; i++) {
233 if (current_user.groups[i] == conn->gid) {
243 if (!become_gid(gid))
246 #ifdef HAVE_SETGROUPS
247 if (!(conn && conn->ipc)) {
248 /* groups stuff added by ih/wreu */
249 if (current_user.ngroups > 0)
250 if (sys_setgroups(current_user.ngroups,
251 current_user.groups)<0) {
252 DEBUG(0,("sys_setgroups call failed!\n"));
257 if (!conn->admin_user && !become_uid(uid))
260 current_user.conn = conn;
261 current_user.vuid = vuid;
263 DEBUG(5,("become_user uid=(%d,%d) gid=(%d,%d)\n",
264 (int)getuid(),(int)geteuid(),(int)getgid(),(int)getegid()));
269 /****************************************************************************
270 Unbecome the user of a connection number.
271 ****************************************************************************/
273 BOOL unbecome_user(void )
275 if (!current_user.conn)
278 dos_ChDir(OriginalDir);
280 set_effective_uid(0);
281 set_effective_gid(0);
283 if (geteuid() != 0) {
284 DEBUG(0,("Warning: You appear to have a trapdoor uid system\n"));
286 if (getegid() != 0) {
287 DEBUG(0,("Warning: You appear to have a trapdoor gid system\n"));
290 current_user.uid = 0;
291 current_user.gid = 0;
293 if (dos_ChDir(OriginalDir) != 0)
294 DEBUG( 0, ( "chdir(%s) failed in unbecome_user\n", OriginalDir ) );
296 DEBUG(5,("unbecome_user now uid=(%d,%d) gid=(%d,%d)\n",
297 (int)getuid(),(int)geteuid(),(int)getgid(),(int)getegid()));
299 current_user.conn = NULL;
300 current_user.vuid = UID_FIELD_INVALID;
305 /****************************************************************************
306 Become the user of an authenticated connected named pipe.
307 When this is called we are currently running as the connection
309 ****************************************************************************/
311 BOOL become_authenticated_pipe_user(pipes_struct *p)
321 * Now become the authenticated user stored in the pipe struct.
324 if(!become_id(p->uid, p->gid)) {
325 /* Go back to the connection user. */
326 become_user(p->conn, p->vuid);
333 /****************************************************************************
334 Unbecome the user of an authenticated connected named pipe.
335 When this is called we are running as the authenticated pipe
336 user and need to go back to being the connection user.
337 ****************************************************************************/
339 BOOL unbecome_authenticated_pipe_user(pipes_struct *p)
341 if(!become_id(0,0)) {
342 DEBUG(0,("unbecome_authenticated_pipe_user: Unable to go back to root.\n"));
346 return become_user(p->conn, p->vuid);
349 static struct current_user current_user_saved;
350 static int become_root_depth;
351 static pstring become_root_dir;
353 /****************************************************************************
354 This is used when we need to do a privileged operation (such as mucking
355 with share mode files) and temporarily need root access to do it. This
356 call should always be paired with an unbecome_root() call immediately
359 Set save_dir if you also need to save/restore the CWD
360 ****************************************************************************/
362 void become_root(BOOL save_dir)
364 if (become_root_depth) {
365 DEBUG(0,("ERROR: become root depth is non zero\n"));
368 dos_GetWd(become_root_dir);
370 current_user_saved = current_user;
371 become_root_depth = 1;
377 /****************************************************************************
378 When the privileged operation is over call this
380 Set save_dir if you also need to save/restore the CWD
381 ****************************************************************************/
383 void unbecome_root(BOOL restore_dir)
385 if (become_root_depth != 1) {
386 DEBUG(0,("ERROR: unbecome root depth is %d\n",
390 /* we might have done a become_user() while running as root,
391 if we have then become root again in order to become
393 if (current_user.uid != 0) {
397 /* restore our gid first */
398 if (!become_gid(current_user_saved.gid)) {
399 DEBUG(0,("ERROR: Failed to restore gid\n"));
400 exit_server("Failed to restore gid");
403 #ifdef HAVE_SETGROUPS
404 if (current_user_saved.ngroups > 0) {
405 if (sys_setgroups(current_user_saved.ngroups,
406 current_user_saved.groups)<0)
407 DEBUG(0,("ERROR: sys_setgroups call failed!\n"));
411 /* now restore our uid */
412 if (!become_uid(current_user_saved.uid)) {
413 DEBUG(0,("ERROR: Failed to restore uid\n"));
414 exit_server("Failed to restore uid");
418 dos_ChDir(become_root_dir);
420 current_user = current_user_saved;
422 become_root_depth = 0;
git.samba.org / nivanova / samba-autobuild / .git / blob