diff --git a/include/errno.h b/include/errno.h index fd701d79cd4..595f5fe2d7b 100644 --- a/include/errno.h +++ b/include/errno.h @@ -45,6 +45,7 @@ /**************************************************************************** * Pre-processor Definitions ****************************************************************************/ + /* How can we access the errno variable? */ #if !defined(CONFIG_BUILD_PROTECTED) && !defined(CONFIG_BUILD_KERNEL) @@ -87,7 +88,8 @@ # else /* User libraries for the kernel. Only indirect access from user - * libraries */ + * libraries + */ # undef __DIRECT_ERRNO_ACCESS # endif diff --git a/include/unistd.h b/include/unistd.h index 715256684e7..b56bdbbfb8a 100644 --- a/include/unistd.h +++ b/include/unistd.h @@ -368,6 +368,11 @@ int sethostname(FAR const char *name, size_t size); long sysconf(int name); +/* User and group identity management */ + +int setuid(uid_t uid); +int setgid(gid_t gid); + #undef EXTERN #if defined(__cplusplus) } diff --git a/libs/libc/unistd/Make.defs b/libs/libc/unistd/Make.defs index 4e2446dea25..8e08ff5e307 100644 --- a/libs/libc/unistd/Make.defs +++ b/libs/libc/unistd/Make.defs @@ -37,7 +37,7 @@ CSRCS += lib_access.c lib_daemon.c lib_swab.c lib_sysconf.c CSRCS += lib_getopt.c lib_getoptargp.c lib_getoptindp.c lib_getoptoptp.c -CSRCS += lib_sleep.c lib_usleep.c +CSRCS += lib_sleep.c lib_usleep.c lib_setuid.c lib_setgid.c ifneq ($(CONFIG_DISABLE_ENVIRON),y) CSRCS += lib_chdir.c lib_getcwd.c diff --git a/libs/libc/unistd/lib_setgid.c b/libs/libc/unistd/lib_setgid.c new file mode 100644 index 00000000000..62125e299e4 --- /dev/null +++ b/libs/libc/unistd/lib_setgid.c @@ -0,0 +1,81 @@ +/**************************************************************************** + * libs/libc/unistd/lib_setgid.c + * + * Copyright (C) 2019 Gregory Nutt. All rights reserved. + * Author: Michael Jung + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * + * 1. Redistributions of source code must retain the above copyright + * notice, this list of conditions and the following disclaimer. + * 2. Redistributions in binary form must reproduce the above copyright + * notice, this list of conditions and the following disclaimer in + * the documentation and/or other materials provided with the + * distribution. + * 3. Neither the name NuttX nor the names of its contributors may be + * used to endorse or promote products derived from this software + * without specific prior written permission. + * + * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS + * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT + * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS + * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE + * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, + * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, + * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS + * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED + * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT + * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN + * ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE + * POSSIBILITY OF SUCH DAMAGE. + * + ****************************************************************************/ + +/**************************************************************************** + * Included Files + ****************************************************************************/ + +#include + +#include +#include + +/**************************************************************************** + * Public Functions + ****************************************************************************/ + +/**************************************************************************** + * Name: setgid + * + * Description: + * The setgid() function sets the real group ID, effective group ID, and + * the saved set-group-ID of the calling process to gid, given appropriate + * privileges. + * + * Input Parameters: + * uid - User identity to set the various process' user ID attributes to. + * + * Returned Value: + * Zero if successful and -1 in case of failure, in which case errno is set + * appropriately. + * + ****************************************************************************/ + +int setgid(gid_t gid) +{ + /* NuttX only supports the group identity 'root' with a gid value of 0. */ + + if (gid == 0) + { + return 0; + } + + /* All other gid values are considered invalid and not supported by the + * implementation. + */ + + set_errno(EINVAL); + return -1; +} diff --git a/libs/libc/unistd/lib_setuid.c b/libs/libc/unistd/lib_setuid.c new file mode 100644 index 00000000000..296c8b8117a --- /dev/null +++ b/libs/libc/unistd/lib_setuid.c @@ -0,0 +1,81 @@ +/**************************************************************************** + * libs/libc/unistd/lib_setuid.c + * + * Copyright (C) 2019 Gregory Nutt. All rights reserved. + * Author: Michael Jung + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * + * 1. Redistributions of source code must retain the above copyright + * notice, this list of conditions and the following disclaimer. + * 2. Redistributions in binary form must reproduce the above copyright + * notice, this list of conditions and the following disclaimer in + * the documentation and/or other materials provided with the + * distribution. + * 3. Neither the name NuttX nor the names of its contributors may be + * used to endorse or promote products derived from this software + * without specific prior written permission. + * + * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS + * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT + * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS + * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE + * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, + * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, + * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS + * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED + * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT + * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN + * ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE + * POSSIBILITY OF SUCH DAMAGE. + * + ****************************************************************************/ + +/**************************************************************************** + * Included Files + ****************************************************************************/ + +#include + +#include +#include + +/**************************************************************************** + * Public Functions + ****************************************************************************/ + +/**************************************************************************** + * Name: setuid + * + * Description: + * The setuid() function sets the real user ID, effective user ID, and the + * saved set-user-ID of the calling process to uid, given appropriate + * privileges. + * + * Input Parameters: + * uid - User identity to set the various process' user ID attributes to. + * + * Returned Value: + * Zero if successful and -1 in case of failure, in which case errno is set + * appropriately. + * + ****************************************************************************/ + +int setuid(uid_t uid) +{ + /* NuttX only supports the user identity 'root' with a uid value of 0. */ + + if (uid == 0) + { + return 0; + } + + /* All other uid values are considered invalid and not supported by the + * implementation. + */ + + set_errno(EINVAL); + return -1; +}