- (djm) [openbsd-compat/port-linux.c] Check whether SELinux is enabled
[openssh-git.git] / openbsd-compat / port-solaris.c
blob25382f1c907cece4b7814b95b6e17845c5d72d8d
1 /* $Id: port-solaris.c,v 1.4 2010/11/05 01:03:05 dtucker Exp $ */
3 /*
4 * Copyright (c) 2006 Chad Mynhier.
6 * Permission to use, copy, modify, and distribute this software for any
7 * purpose with or without fee is hereby granted, provided that the above
8 * copyright notice and this permission notice appear in all copies.
10 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
11 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
12 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
13 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
14 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
15 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
16 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
19 #include "config.h"
20 #include "includes.h"
22 #ifdef USE_SOLARIS_PROCESS_CONTRACTS
24 #include <sys/types.h>
25 #include <sys/stat.h>
26 #include <sys/param.h>
28 #include <errno.h>
29 #ifdef HAVE_FCNTL_H
30 # include <fcntl.h>
31 #endif
32 #include <stdarg.h>
33 #include <string.h>
34 #include <unistd.h>
36 #include <libcontract.h>
37 #include <sys/contract/process.h>
38 #include <sys/ctfs.h>
40 #include "log.h"
42 #define CT_TEMPLATE CTFS_ROOT "/process/template"
43 #define CT_LATEST CTFS_ROOT "/process/latest"
45 static int tmpl_fd = -1;
47 /* Lookup the latest process contract */
48 static ctid_t
49 get_active_process_contract_id(void)
51 int stat_fd;
52 ctid_t ctid = -1;
53 ct_stathdl_t stathdl;
55 if ((stat_fd = open64(CT_LATEST, O_RDONLY)) == -1) {
56 error("%s: Error opening 'latest' process "
57 "contract: %s", __func__, strerror(errno));
58 return -1;
60 if (ct_status_read(stat_fd, CTD_COMMON, &stathdl) != 0) {
61 error("%s: Error reading process contract "
62 "status: %s", __func__, strerror(errno));
63 goto out;
65 if ((ctid = ct_status_get_id(stathdl)) < 0) {
66 error("%s: Error getting process contract id: %s",
67 __func__, strerror(errno));
68 goto out;
71 ct_status_free(stathdl);
72 out:
73 close(stat_fd);
74 return ctid;
77 void
78 solaris_contract_pre_fork(void)
80 if ((tmpl_fd = open64(CT_TEMPLATE, O_RDWR)) == -1) {
81 error("%s: open %s: %s", __func__,
82 CT_TEMPLATE, strerror(errno));
83 return;
86 debug2("%s: setting up process contract template on fd %d",
87 __func__, tmpl_fd);
89 /* First we set the template parameters and event sets. */
90 if (ct_pr_tmpl_set_param(tmpl_fd, CT_PR_PGRPONLY) != 0) {
91 error("%s: Error setting process contract parameter set "
92 "(pgrponly): %s", __func__, strerror(errno));
93 goto fail;
95 if (ct_pr_tmpl_set_fatal(tmpl_fd, CT_PR_EV_HWERR) != 0) {
96 error("%s: Error setting process contract template "
97 "fatal events: %s", __func__, strerror(errno));
98 goto fail;
100 if (ct_tmpl_set_critical(tmpl_fd, 0) != 0) {
101 error("%s: Error setting process contract template "
102 "critical events: %s", __func__, strerror(errno));
103 goto fail;
105 if (ct_tmpl_set_informative(tmpl_fd, CT_PR_EV_HWERR) != 0) {
106 error("%s: Error setting process contract template "
107 "informative events: %s", __func__, strerror(errno));
108 goto fail;
111 /* Now make this the active template for this process. */
112 if (ct_tmpl_activate(tmpl_fd) != 0) {
113 error("%s: Error activating process contract "
114 "template: %s", __func__, strerror(errno));
115 goto fail;
117 return;
119 fail:
120 if (tmpl_fd != -1) {
121 close(tmpl_fd);
122 tmpl_fd = -1;
126 void
127 solaris_contract_post_fork_child()
129 debug2("%s: clearing process contract template on fd %d",
130 __func__, tmpl_fd);
132 /* Clear the active template. */
133 if (ct_tmpl_clear(tmpl_fd) != 0)
134 error("%s: Error clearing active process contract "
135 "template: %s", __func__, strerror(errno));
137 close(tmpl_fd);
138 tmpl_fd = -1;
141 void
142 solaris_contract_post_fork_parent(pid_t pid)
144 ctid_t ctid;
145 char ctl_path[256];
146 int r, ctl_fd = -1, stat_fd = -1;
148 debug2("%s: clearing template (fd %d)", __func__, tmpl_fd);
150 if (tmpl_fd == -1)
151 return;
153 /* First clear the active template. */
154 if ((r = ct_tmpl_clear(tmpl_fd)) != 0)
155 error("%s: Error clearing active process contract "
156 "template: %s", __func__, strerror(errno));
158 close(tmpl_fd);
159 tmpl_fd = -1;
162 * If either the fork didn't succeed (pid < 0), or clearing
163 * th active contract failed (r != 0), then we have nothing
164 * more do.
166 if (r != 0 || pid <= 0)
167 return;
169 /* Now lookup and abandon the contract we've created. */
170 ctid = get_active_process_contract_id();
172 debug2("%s: abandoning contract id %ld", __func__, ctid);
174 snprintf(ctl_path, sizeof(ctl_path),
175 CTFS_ROOT "/process/%ld/ctl", ctid);
176 if ((ctl_fd = open64(ctl_path, O_WRONLY)) < 0) {
177 error("%s: Error opening process contract "
178 "ctl file: %s", __func__, strerror(errno));
179 goto fail;
181 if (ct_ctl_abandon(ctl_fd) < 0) {
182 error("%s: Error abandoning process contract: %s",
183 __func__, strerror(errno));
184 goto fail;
186 close(ctl_fd);
187 return;
189 fail:
190 if (tmpl_fd != -1) {
191 close(tmpl_fd);
192 tmpl_fd = -1;
194 if (stat_fd != -1)
195 close(stat_fd);
196 if (ctl_fd != -1)
197 close(ctl_fd);
199 #endif
201 #ifdef USE_SOLARIS_PROJECTS
202 #include <sys/task.h>
203 #include <project.h>
206 * Get/set solaris default project.
207 * If we fail, just run along gracefully.
209 void
210 solaris_set_default_project(struct passwd *pw)
212 struct project *defaultproject;
213 struct project tempproject;
214 char buf[1024];
216 /* get default project, if we fail just return gracefully */
217 if ((defaultproject = getdefaultproj(pw->pw_name, &tempproject, &buf,
218 sizeof(buf))) > 0) {
219 /* set default project */
220 if (setproject(defaultproject->pj_name, pw->pw_name,
221 TASK_NORMAL) != 0)
222 debug("setproject(%s): %s", defaultproject->pj_name,
223 strerror(errno));
224 } else {
225 /* debug on getdefaultproj() error */
226 debug("getdefaultproj(%s): %s", pw->pw_name, strerror(errno));
229 #endif /* USE_SOLARIS_PROJECTS */