| blob | 26e756f686df8f120c166f0776adde0b4cafb555 |
1 /* $NetBSD: test.c,v 1.41 2016/09/05 01:00:07 sevan Exp $ */
3 /*
4 * test(1); version 7-like -- author Erik Baalbergen
5 * modified by Eric Gisin to be used as built-in.
6 * modified by Arnold Robbins to add SVR3 compatibility
7 * (-x -c -b -p -u -g -k) plus Korn's -L -nt -ot -ef and new -S (socket).
8 * modified by J.T. Conklin for NetBSD.
9 *
10 * This program is in the Public Domain.
11 */
13 #include <sys/cdefs.h>
14 #ifndef lint
16 #endif
18 #include <sys/stat.h>
19 #include <sys/types.h>
21 #include <ctype.h>
22 #include <err.h>
23 #include <errno.h>
24 #include <limits.h>
25 #include <locale.h>
26 #include <stdio.h>
27 #include <stdlib.h>
28 #include <string.h>
29 #include <unistd.h>
30 #include <stdarg.h>
32 /* test(1) accepts the following grammar:
33 oexpr ::= aexpr | aexpr "-o" oexpr ;
34 aexpr ::= nexpr | nexpr "-a" aexpr ;
35 nexpr ::= primary | "!" primary
36 primary ::= unary-operator operand
37 | operand binary-operator operand
38 | operand
39 | "(" oexpr ")"
40 ;
41 unary-operator ::= "-r"|"-w"|"-x"|"-f"|"-d"|"-c"|"-b"|"-p"|
42 "-u"|"-g"|"-k"|"-s"|"-t"|"-z"|"-n"|"-o"|"-O"|"-G"|"-L"|"-S";
44 binary-operator ::= "="|"!="|"-eq"|"-ne"|"-ge"|"-gt"|"-le"|"-lt"|
45 "-nt"|"-ot"|"-ef";
46 operand ::= <any legal UNIX file name>
47 */
50 EOI,
51 FILRD,
52 FILWR,
53 FILEX,
54 FILEXIST,
55 FILREG,
56 FILDIR,
57 FILCDEV,
58 FILBDEV,
59 FILFIFO,
60 FILSOCK,
61 FILSYM,
62 FILGZ,
63 FILTT,
64 FILSUID,
65 FILSGID,
66 FILSTCK,
67 FILNT,
68 FILOT,
69 FILEQ,
70 FILUID,
71 FILGID,
72 STREZ,
73 STRNZ,
74 STREQ,
75 STRNE,
76 STRLT,
77 STRGT,
78 INTEQ,
79 INTNE,
80 INTGE,
81 INTGT,
82 INTLE,
83 INTLT,
84 UNOT,
85 BAND,
86 BOR,
87 LPAREN,
88 RPAREN,
89 OPERAND
90 };
93 UNOP,
94 BINOP,
95 BUNOP,
96 BBINOP,
97 PAREN
98 };
103 };
112 };
116 };
128 };
154 };
174 #if defined(SHELL)
177 #else
180 static void
182 {
187 /*NOTREACHED*/
189 }
194 {
200 }
201 #endif
203 #ifdef SHELL
206 int
208 #else
209 int
211 #endif
212 {
216 #ifdef SHELL
218 #else
222 #endif
227 }
239 }
241 static void
243 {
247 else
249 }
251 static int
253 {
261 t_wp--;
263 }
265 static int
267 {
275 t_wp--;
277 }
279 static int
281 {
286 }
288 static int
290 {
303 }
305 /* unary expression */
317 }
318 }
322 }
325 }
327 static int
329 {
369 /* NOTREACHED */
370 }
371 }
373 /*
374 * The manual, and IEEE POSIX 1003.2, suggests this should check the mode bits,
375 * not use access():
376 *
377 * True shall indicate only that the write flag is on. The file is not
378 * writable on a read-only file system even if this test indicates true.
379 *
380 * Unfortunately IEEE POSIX 1003.1-2001, as quoted in SuSv3, says only:
381 *
382 * True shall indicate that permission to read from file will be granted,
383 * as defined in "File Read, Write, and Creation".
384 *
385 * and that section says:
386 *
387 * When a file is to be read or written, the file shall be opened with an
388 * access mode corresponding to the operation to be performed. If file
389 * access permissions deny access, the requested operation shall fail.
390 *
391 * and of course access permissions are described as one might expect:
392 *
393 * * If a process has the appropriate privilege:
394 *
395 * * If read, write, or directory search permission is requested,
396 * access shall be granted.
397 *
398 * * If execute permission is requested, access shall be granted if
399 * execute permission is granted to at least one user by the file
400 * permission bits or by an alternate access control mechanism;
401 * otherwise, access shall be denied.
402 *
403 * * Otherwise:
404 *
405 * * The file permission bits of a file contain read, write, and
406 * execute/search permissions for the file owner class, file group
407 * class, and file other class.
408 *
409 * * Access shall be granted if an alternate access control mechanism
410 * is not enabled and the requested access permission bit is set for
411 * the class (file owner class, file group class, or file other class)
412 * to which the process belongs, or if an alternate access control
413 * mechanism is enabled and it allows the requested access; otherwise,
414 * access shall be denied.
415 *
416 * and when I first read this I thought: surely we can't go about using
417 * open(O_WRONLY) to try this test! However the POSIX 1003.1-2001 Rationale
418 * section for test does in fact say:
419 *
420 * On historical BSD systems, test -w directory always returned false
421 * because test tried to open the directory for writing, which always
422 * fails.
423 *
424 * and indeed this is in fact true for Seventh Edition UNIX, UNIX 32V, and UNIX
425 * System III, and thus presumably also for BSD up to and including 4.3.
426 *
427 * Secondly I remembered why using open() and/or access() are bogus. They
428 * don't work right for detecting read and write permissions bits when called
429 * by root.
430 *
431 * Interestingly the 'test' in 4.4BSD was closer to correct (as per
432 * 1003.2-1992) and it was implemented efficiently with stat() instead of
433 * open().
434 *
435 * This was apparently broken in NetBSD around about 1994/06/30 when the old
436 * 4.4BSD implementation was replaced with a (arguably much better coded)
437 * implementation derived from pdksh.
438 *
439 * Note that modern pdksh is yet different again, but still not correct, at
440 * least not w.r.t. 1003.2-1992.
441 *
442 * As I think more about it and read more of the related IEEE docs I don't like
443 * that wording about 'test -r' and 'test -w' in 1003.1-2001 at all. I very
444 * much prefer the original wording in 1003.2-1992. It is much more useful,
445 * and so that's what I've implemented.
446 *
447 * (Note that a strictly conforming implementation of 1003.1-2001 is in fact
448 * totally useless for the case in question since its 'test -w' and 'test -r'
449 * can never fail for root for any existing files, i.e. files for which 'test
450 * -e' succeeds.)
451 *
452 * The rationale for 1003.1-2001 suggests that the wording was "clarified" in
453 * 1003.1-2001 to align with the 1003.2b draft. 1003.2b Draft 12 (July 1999),
454 * which is the latest copy I have, does carry the same suggested wording as is
455 * in 1003.1-2001, with its rationale saying:
456 *
457 * This change is a clarification and is the result of interpretation
458 * request PASC 1003.2-92 #23 submitted for IEEE Std 1003.2-1992.
459 *
460 * That interpretation can be found here:
461 *
462 * http://www.pasc.org/interps/unofficial/db/p1003.2/pasc-1003.2-23.html
463 *
464 * Not terribly helpful, unfortunately. I wonder who that fence sitter was.
465 *
466 * Worse, IMVNSHO, I think the authors of 1003.2b-D12 have mis-interpreted the
467 * PASC interpretation and appear to be gone against at least one widely used
468 * implementation (namely 4.4BSD). The problem is that for file access by root
469 * this means that if test '-r' and '-w' are to behave as if open() were called
470 * then there's no way for a shell script running as root to check if a file
471 * has certain access bits set other than by the grotty means of interpreting
472 * the output of 'ls -l'. This was widely considered to be a bug in V7's
473 * "test" and is, I believe, one of the reasons why direct use of access() was
474 * avoided in some more recent implementations!
475 *
476 * I have always interpreted '-r' to match '-w' and '-x' as per the original
477 * wording in 1003.2-1992, not the other way around. I think 1003.2b goes much
478 * too far the wrong way without any valid rationale and that it's best if we
479 * stick with 1003.2-1992 and test the flags, and not mimic the behaviour of
480 * open() since we already know very well how it will work -- existance of the
481 * file is all that matters to open() for root.
482 *
483 * Unfortunately the SVID is no help at all (which is, I guess, partly why
484 * we're in this mess in the first place :-).
485 *
486 * The SysV implementation (at least in the 'test' builtin in /bin/sh) does use
487 * access(name, 2) even though it also goes to much greater lengths for '-x'
488 * matching the 1003.2-1992 definition (which is no doubt where that definition
489 * came from).
490 *
491 * The ksh93 implementation uses access() for '-r' and '-w' if
492 * (euid==uid&&egid==gid), but uses st_mode for '-x' iff running as root.
493 * i.e. it does strictly conform to 1003.1-2001 (and presumably 1003.2b).
494 */
495 static int
497 {
500 uid_t euid;
503 /*
504 * I suppose we could use access() if not running as root and if we are
505 * running with ((euid == uid) && (egid == gid)), but we've already
506 * done the stat() so we might as well just test the permissions
507 * directly instead of asking the kernel to do it....
508 */
517 /* XXX stolen almost verbatim from ksh93.... */
518 /* on some systems you can be in several groups */
527 }
528 }
530 }
533 }
535 static int
537 {
580 }
581 }
583 #define VTOC(x) (const unsigned char *)((const struct t_op *)x)->op_text
585 static int
587 {
592 }
594 static int
596 {
602 }
606 {
615 else
621 compare1);
624 else
626 }
627 }
629 static enum token
631 {
637 }
644 }
645 }
648 }
650 static int
652 {
663 }
665 /* atoi with error detection */
666 static long long
668 {
680 p++;
686 }
688 static int
690 {
696 }
698 static int
700 {
706 }
708 static int
710 {
717 }