1 /* Check if effective user id can access file
2 Copyright (C) 1990,1991,1995-2001,2005 Free Software Foundation, Inc.
3 This file is part of the GNU C Library.
5 The GNU C Library is free software; you can redistribute it and/or
6 modify it under the terms of the GNU Lesser General Public
7 License as published by the Free Software Foundation; either
8 version 2.1 of the License, or (at your option) any later version.
10 The GNU C Library is distributed in the hope that it will be useful,
11 but WITHOUT ANY WARRANTY; without even the implied warranty of
12 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 Lesser General Public License for more details.
15 You should have received a copy of the GNU Lesser General Public
16 License along with the GNU C Library; if not, write to the Free
17 Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA
20 /* Written by David MacKenzie and Torbjorn Granlund.
21 Adapted for GNU C library by Roland McGrath. */
27 #include <sys/types.h>
32 # define S_IXUSR S_IEXEC
35 # define S_IXGRP (S_IEXEC >> 3)
38 # define S_IXOTH (S_IEXEC >> 6)
42 #if defined HAVE_UNISTD_H || defined _LIBC
46 #ifndef _POSIX_VERSION
51 #endif /* not POSIX_VERSION */
58 # define __set_errno(val) errno = (val)
61 #if defined EACCES && !defined EACCESS
62 # define EACCESS EACCES
72 #if !defined S_IROTH && defined R_OK
75 #if !defined S_IWOTH && defined W_OK
78 #if !defined S_IXOTH && defined X_OK
85 # define group_member __group_member
86 # define euidaccess __euidaccess
90 /* The user's real user id. */
93 /* The user's real group id. */
96 /* The user's effective user id. */
99 /* The user's effective group id. */
102 /* Nonzero if UID, GID, EUID, and EGID have valid values. */
105 # ifdef HAVE_GETGROUPS
108 # define group_member(gid) 0
114 /* Return 0 if the user has permission of type MODE on file PATH;
115 otherwise, return -1 and set `errno' to EACCESS.
116 Like access, except that it uses the effective user and group
117 id's instead of the real ones, and it does not check for read-only
118 filesystem, text busy, etc. */
121 euidaccess (path
, mode
)
132 if (! __libc_enable_secure
)
133 /* If we are not set-uid or set-gid, access does the same. */
134 return __access (path
, mode
);
145 if (uid
== euid
&& gid
== egid
)
146 /* If we are not set-uid or set-gid, access does the same. */
147 return access (path
, mode
);
150 if (stat64 (path
, &stats
))
153 mode
&= (X_OK
| W_OK
| R_OK
); /* Clear any bogus bits. */
154 #if R_OK != S_IROTH || W_OK != S_IWOTH || X_OK != S_IXOTH
155 ?error Oops
, portability assumptions incorrect
.
159 return 0; /* The file exists. */
162 /* Now we need the IDs. */
167 /* The super-user can read and write any file, and execute any file
168 that anyone can execute. */
169 if (euid
== 0 && ((mode
& X_OK
) == 0
170 || (stats
.st_mode
& (S_IXUSR
| S_IXGRP
| S_IXOTH
))))
173 if (euid
== stats
.st_uid
)
174 granted
= (unsigned int) (stats
.st_mode
& (mode
<< 6)) >> 6;
175 else if (egid
== stats
.st_gid
|| group_member (stats
.st_gid
))
176 granted
= (unsigned int) (stats
.st_mode
& (mode
<< 3)) >> 3;
178 granted
= (stats
.st_mode
& mode
);
179 /* XXX Add support for ACLs. */
182 __set_errno (EACCESS
);
187 weak_alias (__euidaccess
, euidaccess
)
206 program_name
= argv
[0];
210 mode
= atoi (argv
[2]);
212 err
= euidaccess (file
, mode
);
213 printf ("%d\n", err
);
215 error (0, errno
, "%s", file
);