search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
correct references to manpage section 9 to 1x.
[minix3.git] / servers / vfs / protect.c
blob3ac498b7269d2c9748eb84cb8ba8aacdcbbfa05d
1
2 /* This file deals with protection in the file system. It contains the code
3 * for four system calls that relate to protection.
4 *
5 * The entry points into this file are
6 * do_chmod: perform the CHMOD and FCHMOD system calls
7 * do_chown: perform the CHOWN and FCHOWN system calls
8 * do_umask: perform the UMASK system call
9 * do_access: perform the ACCESS system call
10 *
11 * Changes for VFS:
12 * Jul 2006 (Balazs Gerofi)
13 */
14
15 #include "fs.h"
16 #include <unistd.h>
17 #include <minix/callnr.h>
18 #include "file.h"
19 #include "fproc.h"
20 #include "param.h"
21
22 #include <minix/vfsif.h>
23 #include "vnode.h"
24 #include "vmnt.h"
25
26
27
28 /*===========================================================================*
29 * do_chmod *
30 *===========================================================================*/
31 PUBLIC int do_chmod()
32 {
33 struct filp *flp;
34 struct chmod_req req;
35 struct lookup_req lookup_req;
36 struct node_details res;
37 struct vnode *vp;
38 int r, ch_mode;
39
40 if (call_nr == CHMOD) {
41 /* Perform the chmod(name, mode) system call. */
42 if (fetch_name(m_in.name, m_in.name_length, M3) != OK) return(err_code);
43
44 /* Fill in lookup request fields */
45 lookup_req.path = user_fullpath;
46 lookup_req.lastc = NULL;
47 lookup_req.flags = EAT_PATH;
48
49 /* Request lookup */
50 if ((r = lookup(&lookup_req, &res)) != OK) return r;
51
52 req.inode_nr = res.inode_nr;
53 req.fs_e = res.fs_e;
54 }
55 else if (call_nr == FCHMOD) {
56 if (!(flp = get_filp(m_in.m3_i1))) return err_code;
57 req.inode_nr = flp->filp_vno->v_inode_nr;
58 req.fs_e = flp->filp_vno->v_fs_e;
59 }
60 else panic(__FILE__, "do_chmod called with strange call_nr", call_nr);
61
62 /* Find vnode, if it's in use. */
63 vp = find_vnode(req.fs_e, req.inode_nr);
64
65 /* Fill in request message fields.*/
66 req.uid = fp->fp_effuid;
67 req.gid = fp->fp_effgid;
68 req.rmode = m_in.mode;
69
70 /* Issue request */
71 if((r = req_chmod(&req, &ch_mode)) != OK) return r;
72
73 if(vp != NIL_VNODE)
74 vp->v_mode = ch_mode;
75
76 return OK;
77 }
78
79 /*===========================================================================*
80 * do_chown *
81 *===========================================================================*/
82 PUBLIC int do_chown()
83 {
84 int inode_nr;
85 int fs_e;
86 struct filp *flp;
87 struct chown_req req;
88 struct lookup_req lookup_req;
89 struct node_details res;
90 struct vnode *vp;
91 int r, ch_mode;
92
93 if (call_nr == CHOWN) {
94 /* Perform the chmod(name, mode) system call. */
95 if (fetch_name(m_in.name1, m_in.name1_length, M1) != OK) return(err_code);
96
97 /* Fill in lookup request fields */
98 lookup_req.path = user_fullpath;
99 lookup_req.lastc = NULL;
100 lookup_req.flags = EAT_PATH;
101
102 /* Request lookup */
103 if ((r = lookup(&lookup_req, &res)) != OK) return r;
104
105 req.inode_nr = res.inode_nr;
106 req.fs_e = res.fs_e;
107 }
108 else if (call_nr == FCHOWN) {
109 if (!(flp = get_filp(m_in.m1_i1))) return err_code;
110 req.inode_nr = flp->filp_vno->v_inode_nr;
111 req.fs_e = flp->filp_vno->v_fs_e;
112 }
113 else panic(__FILE__, "do_chmod called with strange call_nr", call_nr);
114
115 /* Find vnode, if it's in use. */
116 vp = find_vnode(req.fs_e, req.inode_nr);
117
118 /* Fill in request message fields.*/
119 req.uid = fp->fp_effuid;
120 req.gid = fp->fp_effgid;
121 req.newuid = m_in.owner;
122 req.newgid = m_in.group;
123
124 /* Issue request */
125 r = req_chown(&req, &ch_mode);
126
127 if(r == OK && vp) {
128 vp->v_uid = m_in.owner;
129 vp->v_gid = m_in.group;
130 vp->v_mode = ch_mode;
131 }
132
133 return r;
134 }
135
136
137 /*===========================================================================*
138 * do_umask *
139 *===========================================================================*/
140 PUBLIC int do_umask()
141 {
142 /* Perform the umask(co_mode) system call. */
143 register mode_t r;
144
145 r = ~fp->fp_umask; /* set 'r' to complement of old mask */
146 fp->fp_umask = ~(m_in.co_mode & RWX_MODES);
147 return(r); /* return complement of old mask */
148 }
149
150
151 /*===========================================================================*
152 * do_access *
153 *===========================================================================*/
154 PUBLIC int do_access()
155 {
156 /* Perform the access(name, mode) system call. */
157 struct access_req req;
158 struct lookup_req lookup_req;
159 struct node_details res;
160 int r;
161
162 /* First check to see if the mode is correct. */
163 if ( (m_in.mode & ~(R_OK | W_OK | X_OK)) != 0 && m_in.mode != F_OK)
164 return(EINVAL);
165
166 if (fetch_name(m_in.name, m_in.name_length, M3) != OK) return(err_code);
167
168 /* Fill in lookup request fields */
169 lookup_req.path = user_fullpath;
170 lookup_req.lastc = NULL;
171 lookup_req.flags = EAT_PATH;
172
173 /* Request lookup */
174 if ((r = lookup(&lookup_req, &res)) != OK) return r;
175
176 /* Fill in request fields */
177 req.fs_e = res.fs_e;
178 req.amode = m_in.mode;
179 req.inode_nr = res.inode_nr;
180 req.uid = fp->fp_realuid; /* real user and group id */
181 req.gid = fp->fp_realgid;
182
183 /* Issue request */
184 return req_access(&req);
185 }
186
187
188 /*===========================================================================*
189 * forbidden *
190 *===========================================================================*/
191 PUBLIC int forbidden(struct vnode *vp, mode_t access_desired)
192 {
193 /* Given a pointer to an inode, 'rip', and the access desired, determine
194 * if the access is allowed, and if not why not. The routine looks up the
195 * caller's uid in the 'fproc' table. If access is allowed, OK is returned
196 * if it is forbidden, EACCES is returned.
197 */
198
199 register struct super_block *sp;
200 register mode_t bits, perm_bits;
201 int r, shift, type;
202
203 if (vp->v_uid == (uid_t)-1 || vp->v_gid == (gid_t)-1)
204 {
205 printf("forbidden: bad uid/gid in vnode\n");
206 printf("forbidden: last allocated at %s, %d\n", vp->v_file, vp->v_line);
207 return EACCES;
208 }
209
210 /* Isolate the relevant rwx bits from the mode. */
211 bits = vp->v_mode;
212 if (fp->fp_effuid == SU_UID) {
213 /* Grant read and write permission. Grant search permission for
214 * directories. Grant execute permission (for non-directories) if
215 * and only if one of the 'X' bits is set.
216 */
217 if ( (bits & I_TYPE) == I_DIRECTORY ||
218 bits & ((X_BIT << 6) | (X_BIT << 3) | X_BIT))
219 perm_bits = R_BIT | W_BIT | X_BIT;
220 else
221 perm_bits = R_BIT | W_BIT;
222 } else {
223 if (fp->fp_effuid == vp->v_uid) shift = 6; /* owner */
224 else if (fp->fp_effgid == vp->v_gid ) shift = 3; /* group */
225 else shift = 0; /* other */
226 perm_bits = (bits >> shift) & (R_BIT | W_BIT | X_BIT);
227 }
228
229 /* If access desired is not a subset of what is allowed, it is refused. */
230 r = OK;
231 if ((perm_bits | access_desired) != perm_bits) {
232 r = EACCES;
233 }
234
235 /* Check to see if someone is trying to write on a file system that is
236 * mounted read-only.
237 */
238 if (r == OK)
239 if (access_desired & W_BIT)
240 r = read_only(vp);
241
242 return(r);
243 }
244
245
246 /*===========================================================================*
247 * read_only *
248 *===========================================================================*/
249 PUBLIC int read_only(vp)
250 struct vnode *vp; /* ptr to inode whose file sys is to be cked */
251 {
252 /* Check to see if the file system on which the inode 'ip' resides is mounted
253 * read only. If so, return EROFS, else return OK.
254 */
255 register struct vmnt *mp;
256
257 mp = vp->v_vmnt;
258 return(mp->m_flags ? EROFS : OK);
259 }
260
261
MINIX 3 (repo.or.cz mirror)