| blob | 869dc2a1061b52e35cf5dbf6fd5a748e8d1afc05 |
1 /* sysutils.c - system helpers
2 * Copyright (C) 1998, 1999, 2000, 2001, 2003, 2004,
3 * 2007 Free Software Foundation, Inc.
4 *
5 * This file is part of GnuPG.
6 *
7 * GnuPG is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License as published by
9 * the Free Software Foundation; either version 3 of the License, or
10 * (at your option) any later version.
11 *
12 * GnuPG is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU General Public License for more details.
16 *
17 * You should have received a copy of the GNU General Public License
18 * along with this program; if not, see <http://www.gnu.org/licenses/>.
19 */
21 #include <config.h>
24 # undef HAVE_PTH
25 # undef USE_GNU_PTH
26 #endif
28 #include <stdio.h>
29 #include <stdlib.h>
30 #include <string.h>
31 #include <unistd.h>
32 #include <errno.h>
33 #ifdef HAVE_STAT
34 # include <sys/stat.h>
35 #endif
36 #if defined(__linux__) && defined(__alpha__) && __GLIBC__ < 2
37 # include <asm/sysinfo.h>
38 # include <asm/unistd.h>
39 #endif
40 #ifdef HAVE_SETRLIMIT
41 # include <time.h>
42 # include <sys/time.h>
43 # include <sys/resource.h>
44 #endif
45 #ifdef HAVE_W32_SYSTEM
46 # include <windows.h>
47 #endif
48 #ifdef HAVE_PTH
49 # include <pth.h>
50 #endif
51 #include <fcntl.h>
61 #if defined(__linux__) && defined(__alpha__) && __GLIBC__ < 2
62 #warning using trap_unaligned
63 static int
66 {
68 }
70 void
72 {
78 }
79 #else
80 void
83 }
84 #endif
87 int
89 {
90 #ifdef HAVE_DOSISH_SYSTEM
92 #else
93 # ifdef HAVE_SETRLIMIT
96 /* We only set the current limit unless we were not able to
97 retrieve the old value. */
105 #endif
107 #endif
108 }
110 int
112 {
113 #ifdef HAVE_DOSISH_SYSTEM
115 #else
116 # ifdef HAVE_SETRLIMIT
124 merely a debugging aid. */
125 # endif
127 #endif
128 }
132 /* Return a string which is used as a kind of process ID */
135 {
144 /* Although this marker is guessable it is not easy to use
145 * for a faked control packet because an attacker does not
146 * have enough control about the time the verification does
147 * take place. Of course, we can add just more random but
148 * than we need the random generator even for verification
149 * tasks - which does not make sense. */
154 }
157 }
161 cmacros.am in Makefile.am */
162 int
164 {
165 #if defined(HAVE_STAT) && !defined(HAVE_DOSISH_SYSTEM)
175 {
178 else
180 }
181 else
184 /* It's okay if the file doesn't exist */
186 {
189 }
193 /* Per-user files must be owned by the user. Extensions must be
194 owned by the user or root. */
197 {
202 }
204 /* This works for both directories and files - basically, we don't
205 care what the owner permissions are, so long as the group and
206 other permissions are 0 for per-user files, and non-writable for
207 extensions. */
210 {
213 /* However, if the directory the directory/file is in is owned
214 by the user and is 700, then this is not a problem.
215 Theoretically, we could walk this test up to the root
216 directory /, but for the sake of sanity, I'm stopping at one
217 level down. */
222 {
226 }
234 }
238 end:
246 }
247 #endif
250 /* Wrapper around the usual sleep fucntion. This one won't wake up
251 before the sleep time has really elapsed. When build with Pth it
252 merely calls pth_sleep and thus suspends only the current
253 thread. */
254 void
256 {
257 #ifdef HAVE_PTH
258 /* With Pth we force a regular sleep for seconds == 0 so that also
259 the process will give up its timeslot. */
261 {
262 # ifdef HAVE_W32_SYSTEM
264 # else
266 # endif
267 }
269 #else
270 /* Fixme: make sure that a sleep won't wake up to early. */
271 # ifdef HAVE_W32_SYSTEM
273 # else
275 # endif
276 #endif
277 }
280 /* This function is a NOP for POSIX systems but required under Windows
281 as the file handles as returned by OS calls (like CreateFile) are
282 different from the libc file descriptors (like open). This function
283 translates system file handles to libc file handles. FOR_WRITE
284 gives the direction of the handle. */
285 int
287 {
288 #ifdef HAVE_W32_SYSTEM
294 /* Note that _open_osfhandle is currently defined to take and return
295 a long. */
302 #endif
303 }
305 /* This is the same as translate_sys2libc_fd but takes an integer
306 which is assumed to be such an system handle. */
307 int
309 {
310 #ifdef HAVE_W32_SYSTEM
315 #else
317 #endif
318 }
322 /* Replacement for tmpfile(). This is required because the tmpfile
323 function of Windows' runtime library is broken, insecure, ignores
324 TMPDIR and so on. In addition we create a file with an inheritable
325 handle. */
328 {
329 #ifdef HAVE_W32_SYSTEM
333 HANDLE file;
337 SECURITY_ATTRIBUTES sec_attr;
345 {
348 }
351 /* We try to create the directory but don't care about an error as
352 it may already exist and the CreateFile would throw an error
353 anyway. */
358 {
362 {
365 }
371 CREATE_NEW,
373 NULL);
375 {
379 {
382 }
385 {
390 }
392 }
394 }
400 }
403 /* Make sure that the standard file descriptors are opened. Obviously
404 some folks close them before an exec and the next file we open will
405 get one of them assigned and thus any output (i.e. diagnostics) end
406 up in that file (e.g. the trustdb). Not actually a gpg problem as
407 this will hapen with almost all utilities when called in a wrong
408 way. However we try to minimize the damage here and raise
409 awareness of the problem.
411 Must be called before we open any files! */
412 void
414 {
415 #if defined(HAVE_STAT) && !defined(HAVE_W32_SYSTEM)
423 {
426 else
428 }
431 {
434 else
436 }
439 {
442 else
444 }
446 /* It's hard to log this sort of thing since the filehandle we would
447 complain to may be closed... */
452 else
456 {
467 }
472 }