7029 want per-process exploit mitigation features (secflags) 7030 want basic address space layout randomization (aslr) 7031 noexec_user_stack should be a secflag 7032 want a means to forbid mappings around NULL.
1 /* 2 * CDDL HEADER START 3 * 4 * The contents of this file are subject to the terms of the 5 * Common Development and Distribution License (the "License"). 6 * You may not use this file except in compliance with the License. 7 * 8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 9 * or http://www.opensolaris.org/os/licensing. 10 * See the License for the specific language governing permissions 11 * and limitations under the License. 12 * 13 * When distributing Covered Code, include this CDDL HEADER in each 14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE. 15 * If applicable, add the following below this CDDL HEADER, with the 16 * fields enclosed by brackets "[]" replaced with your own identifying 17 * information: Portions Copyright [yyyy] [name of copyright owner] 18 * 19 * CDDL HEADER END 20 */ 21 /* 22 * Copyright 2010 Sun Microsystems, Inc. All rights reserved. 23 * Use is subject to license terms. 24 * Copyright 2012 Milan Jurik. All rights reserved. 25 */ 26 27 28 /* 29 * Token processing for auditreduce. 30 */ 31 32 #include <locale.h> 33 #include <sys/zone.h> 34 #include "auditr.h" 35 #include "toktable.h" 36 37 extern int re_exec2(char *); 38 39 static void anchor_path(char *path); 40 static char *collapse_path(char *s); 41 static void get_string(adr_t *adr, char **p); 42 static int ipc_type_match(int flag, char type); 43 static void skip_string(adr_t *adr); 44 static int xgeneric(adr_t *adr); 45 46 #if AUDIT_REC 47 void 48 print_id(int id) 49 { 50 char *suffix; 51 52 if ((id < 0) || (id > MAXTOKEN) || 53 (tokentable[id].func == NOFUNC)) { 54 (void) fprintf(stderr, 55 "token_processing: token %d not found\n", id); 56 return; 57 } 58 59 switch (id) { 60 case AUT_NEWGROUPS: 61 suffix = "_new"; 62 break; 63 case AUT_ATTR32: 64 suffix = "32"; 65 break; 66 case AUT_ARG64: 67 case AUT_RETURN64: 68 case AUT_ATTR64: 69 case AUT_HEADER64: 70 case AUT_SUBJECT64: 71 case AUT_PROCESS64: 72 case AUT_OTHER_FILE64: 73 suffix = "64"; 74 break; 75 case AUT_SOCKET_EX: 76 case AUT_IN_ADDR_EX: 77 suffix = "_ex"; 78 break; 79 case AUT_HEADER32_EX: 80 case AUT_SUBJECT32_EX: 81 case AUT_PROCESS32_EX: 82 suffix = "32_ex"; 83 break; 84 case AUT_HEADER64_EX: 85 case AUT_SUBJECT64_EX: 86 case AUT_PROCESS64_EX: 87 suffix = "64_ex"; 88 break; 89 default: 90 suffix = ""; 91 break; 92 } 93 (void) fprintf(stderr, "token_processing: %s%s\n", 94 tokentable[id].t_name, suffix); 95 } 96 #endif /* AUDIT_REC */ 97 98 /* 99 * Process a token in a record to determine whether the record is interesting. 100 */ 101 102 int 103 token_processing(adr_t *adr, int tokenid) 104 { 105 if ((tokenid > 0) && (tokenid <= MAXTOKEN) && 106 (tokentable[tokenid].func != NOFUNC)) { 107 #if AUDIT_REC 108 print_id(tokenid); 109 #endif /* AUDIT_REC */ 110 return ((*tokentable[tokenid].func)(adr)); 111 } 112 113 /* here if token id is not in table */ 114 return (-2); 115 } 116 117 118 /* There should not be any file or header tokens in the middle of a record */ 119 120 /* ARGSUSED */ 121 int 122 file_token(adr_t *adr) 123 { 124 return (-2); 125 } 126 127 /* ARGSUSED */ 128 int 129 file64_token(adr_t *adr) 130 { 131 return (-2); 132 } 133 134 /* ARGSUSED */ 135 int 136 header_token(adr_t *adr) 137 { 138 return (-2); 139 } 140 141 /* ARGSUSED */ 142 int 143 header32_ex_token(adr_t *adr) 144 { 145 return (-2); 146 } 147 148 /* ARGSUSED */ 149 int 150 header64_ex_token(adr_t *adr) 151 { 152 return (-2); 153 } 154 155 /* ARGSUSED */ 156 int 157 header64_token(adr_t *adr) 158 { 159 return (-2); 160 } 161 162 163 /* 164 * ====================================================== 165 * The following token processing routines return 166 * -1: if the record is not interesting 167 * -2: if an error is found 168 * ====================================================== 169 */ 170 171 int 172 trailer_token(adr_t *adr) 173 { 174 short magic_number; 175 uint32_t bytes; 176 177 adrm_u_short(adr, (ushort_t *)&magic_number, 1); 178 if (magic_number != AUT_TRAILER_MAGIC) { 179 (void) fprintf(stderr, "%s\n", 180 gettext("auditreduce: Bad trailer token")); 181 return (-2); 182 } 183 adrm_u_int32(adr, &bytes, 1); 184 185 return (-1); 186 } 187 188 189 /* 190 * Format of arbitrary data token: 191 * arbitrary data token id adr char 192 * how to print adr_char 193 * basic unit adr_char 194 * unit count adr_char, specifying number of units of 195 * data items depends on basic unit 196 */ 197 int 198 arbitrary_data_token(adr_t *adr) 199 { 200 int i; 201 char c1; 202 short c2; 203 int32_t c3; 204 int64_t c4; 205 char how_to_print, basic_unit, unit_count; 206 207 /* get how_to_print, basic_unit, and unit_count */ 208 adrm_char(adr, &how_to_print, 1); 209 adrm_char(adr, &basic_unit, 1); 210 adrm_char(adr, &unit_count, 1); 211 for (i = 0; i < unit_count; i++) { 212 switch (basic_unit) { 213 /* case AUR_BYTE: has same value as AUR_CHAR */ 214 case AUR_CHAR: 215 adrm_char(adr, &c1, 1); 216 break; 217 case AUR_SHORT: 218 adrm_short(adr, &c2, 1); 219 break; 220 case AUR_INT32: 221 adrm_int32(adr, (int32_t *)&c3, 1); 222 break; 223 case AUR_INT64: 224 adrm_int64(adr, (int64_t *)&c4, 1); 225 break; 226 default: 227 return (-2); 228 } 229 } 230 return (-1); 231 } 232 233 234 /* 235 * Format of opaque token: 236 * opaque token id adr_char 237 * size adr_short 238 * data adr_char, size times 239 */ 240 int 241 opaque_token(adr_t *adr) 242 { 243 skip_string(adr); 244 return (-1); 245 } 246 247 248 249 /* 250 * Format of return32 value token: 251 * return value token id adr_char 252 * error number adr_char 253 * return value adr_u_int32 254 */ 255 int 256 return_value32_token(adr_t *adr) 257 { 258 char errnum; 259 uint32_t value; 260 261 adrm_char(adr, &errnum, 1); 262 adrm_u_int32(adr, &value, 1); 263 if ((flags & M_SORF) && 264 ((global_class & mask.am_success) && (errnum == 0)) || 265 ((global_class & mask.am_failure) && (errnum != 0))) { 266 checkflags |= M_SORF; 267 } 268 return (-1); 269 } 270 271 /* 272 * Format of return64 value token: 273 * return value token id adr_char 274 * error number adr_char 275 * return value adr_u_int64 276 */ 277 int 278 return_value64_token(adr_t *adr) 279 { 280 char errnum; 281 uint64_t value; 282 283 adrm_char(adr, &errnum, 1); 284 adrm_u_int64(adr, &value, 1); 285 if ((flags & M_SORF) && 286 ((global_class & mask.am_success) && (errnum == 0)) || 287 ((global_class & mask.am_failure) && (errnum != 0))) { 288 checkflags |= M_SORF; 289 } 290 return (-1); 291 } 292 293 294 /* 295 * Format of sequence token: 296 * sequence token id adr_char 297 * audit_count int32_t 298 */ 299 int 300 sequence_token(adr_t *adr) 301 { 302 int32_t audit_count; 303 304 adrm_int32(adr, &audit_count, 1); 305 return (-1); 306 } 307 308 309 /* 310 * Format of text token: 311 * text token id adr_char 312 * text adr_string 313 */ 314 int 315 text_token(adr_t *adr) 316 { 317 skip_string(adr); 318 return (-1); 319 } 320 321 322 /* 323 * Format of ip_addr token: 324 * ip token id adr_char 325 * address adr_int32 326 */ 327 int 328 ip_addr_token(adr_t *adr) 329 { 330 int32_t address; 331 332 adrm_char(adr, (char *)&address, 4); 333 334 return (-1); 335 } 336 337 /* 338 * Format of ip_addr_ex token: 339 * ip token id adr_char 340 * ip type adr_int32 341 * ip address adr_u_char*type 342 */ 343 int 344 ip_addr_ex_token(adr_t *adr) 345 { 346 int32_t type; 347 uchar_t address[16]; 348 349 adrm_int32(adr, (int32_t *)&type, 1); 350 adrm_u_char(adr, address, type); 351 352 return (-1); 353 } 354 355 /* 356 * Format of ip token: 357 * ip header token id adr_char 358 * version adr_char 359 * type of service adr_char 360 * length adr_short 361 * id adr_u_short 362 * offset adr_u_short 363 * ttl adr_char 364 * protocol adr_char 365 * checksum adr_u_short 366 * source address adr_int32 367 * destination address adr_int32 368 */ 369 int 370 ip_token(adr_t *adr) 371 { 372 char version; 373 char type; 374 short len; 375 unsigned short id, offset, checksum; 376 char ttl, protocol; 377 int32_t src, dest; 378 379 adrm_char(adr, &version, 1); 380 adrm_char(adr, &type, 1); 381 adrm_short(adr, &len, 1); 382 adrm_u_short(adr, &id, 1); 383 adrm_u_short(adr, &offset, 1); 384 adrm_char(adr, &ttl, 1); 385 adrm_char(adr, &protocol, 1); 386 adrm_u_short(adr, &checksum, 1); 387 adrm_char(adr, (char *)&src, 4); 388 adrm_char(adr, (char *)&dest, 4); 389 390 return (-1); 391 } 392 393 394 /* 395 * Format of iport token: 396 * ip port address token id adr_char 397 * port address adr_short 398 */ 399 int 400 iport_token(adr_t *adr) 401 { 402 short address; 403 404 adrm_short(adr, &address, 1); 405 406 return (-1); 407 } 408 409 410 /* 411 * Format of groups token: 412 * group token id adr_char 413 * group list adr_int32, 16 times 414 */ 415 int 416 group_token(adr_t *adr) 417 { 418 int gid[16]; 419 int i; 420 int flag = 0; 421 422 for (i = 0; i < 16; i++) { 423 adrm_int32(adr, (int32_t *)&gid[i], 1); 424 if (flags & M_GROUPR) { 425 if ((unsigned short)m_groupr == gid[i]) 426 flag = 1; 427 } 428 } 429 430 if (flags & M_GROUPR) { 431 if (flag) 432 checkflags |= M_GROUPR; 433 } 434 return (-1); 435 } 436 437 /* 438 * Format of newgroups token: 439 * group token id adr_char 440 * number of groups adr_short 441 * group list adr_int32, "number" times 442 */ 443 int 444 newgroup_token(adr_t *adr) 445 { 446 gid_t gid; 447 int i; 448 short int number; 449 450 adrm_short(adr, &number, 1); 451 452 for (i = 0; i < number; i++) { 453 adrm_int32(adr, (int32_t *)&gid, 1); 454 if (flags & M_GROUPR) { 455 if (m_groupr == gid) 456 checkflags |= M_GROUPR; 457 } 458 } 459 460 return (-1); 461 } 462 463 /* 464 * Format of argument32 token: 465 * argument token id adr_char 466 * argument number adr_char 467 * argument value adr_int32 468 * argument description adr_string 469 */ 470 int 471 argument32_token(adr_t *adr) 472 { 473 char arg_num; 474 int32_t arg_val; 475 476 adrm_char(adr, &arg_num, 1); 477 adrm_int32(adr, &arg_val, 1); 478 skip_string(adr); 479 480 return (-1); 481 } 482 483 /* 484 * Format of argument64 token: 485 * argument token id adr_char 486 * argument number adr_char 487 * argument value adr_int64 488 * argument description adr_string 489 */ 490 int 491 argument64_token(adr_t *adr) 492 { 493 char arg_num; 494 int64_t arg_val; 495 496 adrm_char(adr, &arg_num, 1); 497 adrm_int64(adr, &arg_val, 1); 498 skip_string(adr); 499 500 return (-1); 501 } 502 503 /* 504 * Format of acl token: 505 * acl token id adr_char 506 * acl type adr_u_int32 507 * acl value adr_u_int32 (depends on type) 508 * file mode adr_u_int (in octal) 509 */ 510 int 511 acl_token(adr_t *adr) 512 { 513 514 int32_t id; 515 int32_t mode; 516 int32_t type; 517 518 adrm_int32(adr, &type, 1); 519 adrm_int32(adr, &id, 1); 520 adrm_int32(adr, &mode, 1); 521 522 return (-1); 523 } 524 525 /* 526 * Format of ace token: 527 * ace token id adr_char 528 * ace who adr_u_int32 (uid/gid) 529 * access mask adr_u_int32 530 * ace flags adr_u_int16 531 * ace type adr_u_int16 532 */ 533 int 534 ace_token(adr_t *adr) 535 { 536 uid_t who; 537 uint32_t access_mask; 538 uint16_t flags, type; 539 540 adrm_uid(adr, &who, 1); 541 adrm_u_int32(adr, &access_mask, 1); 542 adrm_u_short(adr, &flags, 1); 543 adrm_u_short(adr, &type, 1); 544 545 return (-1); 546 } 547 548 /* 549 * Format of attribute token: (old pre SunOS 5.7 format) 550 * attribute token id adr_char 551 * mode adr_int32 (printed in octal) 552 * uid adr_int32 553 * gid adr_int32 554 * file system id adr_int32 555 * node id adr_int32 556 * device adr_int32 557 */ 558 int 559 attribute_token(adr_t *adr) 560 { 561 int32_t dev; 562 int32_t file_sysid; 563 int32_t gid; 564 int32_t mode; 565 int32_t nodeid; 566 int32_t uid; 567 568 adrm_int32(adr, &mode, 1); 569 adrm_int32(adr, &uid, 1); 570 adrm_int32(adr, &gid, 1); 571 adrm_int32(adr, &file_sysid, 1); 572 adrm_int32(adr, &nodeid, 1); 573 adrm_int32(adr, &dev, 1); 574 575 if (!new_mode && (flags & M_USERE)) { 576 if (m_usere == uid) 577 checkflags |= M_USERE; 578 } 579 if (!new_mode && (flags & M_GROUPE)) { 580 if (m_groupe == gid) 581 checkflags |= M_GROUPE; 582 } 583 584 if (flags & M_OBJECT) { 585 if ((obj_flag & OBJ_FGROUP) && 586 (obj_group == gid)) 587 checkflags |= M_OBJECT; 588 else if ((obj_flag & OBJ_FOWNER) && 589 (obj_owner == uid)) 590 checkflags |= M_OBJECT; 591 } 592 return (-1); 593 } 594 595 /* 596 * Format of attribute32 token: 597 * attribute token id adr_char 598 * mode adr_int32 (printed in octal) 599 * uid adr_int32 600 * gid adr_int32 601 * file system id adr_int32 602 * node id adr_int64 603 * device adr_int32 604 */ 605 int 606 attribute32_token(adr_t *adr) 607 { 608 int32_t dev; 609 int32_t file_sysid; 610 int32_t gid; 611 int32_t mode; 612 int64_t nodeid; 613 int32_t uid; 614 615 adrm_int32(adr, &mode, 1); 616 adrm_int32(adr, &uid, 1); 617 adrm_int32(adr, &gid, 1); 618 adrm_int32(adr, &file_sysid, 1); 619 adrm_int64(adr, &nodeid, 1); 620 adrm_int32(adr, &dev, 1); 621 622 if (!new_mode && (flags & M_USERE)) { 623 if (m_usere == uid) 624 checkflags |= M_USERE; 625 } 626 if (!new_mode && (flags & M_GROUPE)) { 627 if (m_groupe == gid) 628 checkflags |= M_GROUPE; 629 } 630 631 if (flags & M_OBJECT) { 632 if ((obj_flag & OBJ_FGROUP) && 633 (obj_group == gid)) 634 checkflags |= M_OBJECT; 635 else if ((obj_flag & OBJ_FOWNER) && 636 (obj_owner == uid)) 637 checkflags |= M_OBJECT; 638 } 639 return (-1); 640 } 641 642 /* 643 * Format of attribute64 token: 644 * attribute token id adr_char 645 * mode adr_int32 (printed in octal) 646 * uid adr_int32 647 * gid adr_int32 648 * file system id adr_int32 649 * node id adr_int64 650 * device adr_int64 651 */ 652 int 653 attribute64_token(adr_t *adr) 654 { 655 int64_t dev; 656 int32_t file_sysid; 657 int32_t gid; 658 int32_t mode; 659 int64_t nodeid; 660 int32_t uid; 661 662 adrm_int32(adr, &mode, 1); 663 adrm_int32(adr, &uid, 1); 664 adrm_int32(adr, &gid, 1); 665 adrm_int32(adr, &file_sysid, 1); 666 adrm_int64(adr, &nodeid, 1); 667 adrm_int64(adr, &dev, 1); 668 669 if (!new_mode && (flags & M_USERE)) { 670 if (m_usere == uid) 671 checkflags |= M_USERE; 672 } 673 if (!new_mode && (flags & M_GROUPE)) { 674 if (m_groupe == gid) 675 checkflags |= M_GROUPE; 676 } 677 678 if (flags & M_OBJECT) { 679 if ((obj_flag & OBJ_FGROUP) && 680 (obj_group == gid)) 681 checkflags |= M_OBJECT; 682 else if ((obj_flag & OBJ_FOWNER) && 683 (obj_owner == uid)) 684 checkflags |= M_OBJECT; 685 } 686 return (-1); 687 } 688 689 690 /* 691 * Format of command token: 692 * attribute token id adr_char 693 * argc adr_short 694 * argv len adr_short variable amount of argv len 695 * argv text argv len and text 696 * . 697 * . 698 * . 699 * envp count adr_short variable amount of envp len 700 * envp len adr_short and text 701 * envp text envp len 702 * . 703 * . 704 * . 705 */ 706 int 707 cmd_token(adr_t *adr) 708 { 709 short cnt; 710 short i; 711 712 adrm_short(adr, &cnt, 1); 713 714 for (i = 0; i < cnt; i++) 715 skip_string(adr); 716 717 adrm_short(adr, &cnt, 1); 718 719 for (i = 0; i < cnt; i++) 720 skip_string(adr); 721 722 return (-1); 723 } 724 725 726 /* 727 * Format of exit token: 728 * attribute token id adr_char 729 * return value adr_int32 730 * errno adr_int32 731 */ 732 int 733 exit_token(adr_t *adr) 734 { 735 int32_t retval; 736 int32_t errno; 737 738 adrm_int32(adr, &retval, 1); 739 adrm_int32(adr, &errno, 1); 740 return (-1); 741 } 742 743 /* 744 * Format of strings array token: 745 * token id adr_char 746 * count value adr_int32 747 * strings null terminated strings 748 */ 749 static int 750 strings_common_token(adr_t *adr) 751 { 752 int count, i; 753 char c; 754 755 adrm_int32(adr, (int32_t *)&count, 1); 756 for (i = 1; i <= count; i++) { 757 adrm_char(adr, &c, 1); 758 while (c != (char)0) 759 adrm_char(adr, &c, 1); 760 } 761 /* no dump option here, since we will have variable length fields */ 762 return (-1); 763 } 764 765 int 766 path_attr_token(adr_t *adr) 767 { 768 return (strings_common_token(adr)); 769 } 770 771 int 772 exec_args_token(adr_t *adr) 773 { 774 return (strings_common_token(adr)); 775 } 776 777 int 778 exec_env_token(adr_t *adr) 779 { 780 return (strings_common_token(adr)); 781 } 782 783 /* 784 * Format of liaison token: 785 */ 786 int 787 liaison_token(adr_t *adr) 788 { 789 int32_t li; 790 791 adrm_int32(adr, &li, 1); 792 return (-1); 793 } 794 795 796 /* 797 * Format of path token: 798 * path adr_string 799 */ 800 int 801 path_token(adr_t *adr) 802 { 803 if ((flags & M_OBJECT) && (obj_flag == OBJ_PATH)) { 804 char *path; 805 806 get_string(adr, &path); 807 if (path[0] != '/') 808 /* 809 * anchor the path. user apps may not do it. 810 */ 811 anchor_path(path); 812 /* 813 * match against the collapsed path. that is what user sees. 814 */ 815 if (re_exec2(collapse_path(path)) == 1) 816 checkflags |= M_OBJECT; 817 free(path); 818 } else { 819 skip_string(adr); 820 } 821 return (-1); 822 } 823 824 825 /* 826 * Format of System V IPC permission token: 827 * System V IPC permission token id adr_char 828 * uid adr_int32 829 * gid adr_int32 830 * cuid adr_int32 831 * cgid adr_int32 832 * mode adr_int32 833 * seq adr_int32 834 * key adr_int32 835 */ 836 int 837 s5_IPC_perm_token(adr_t *adr) 838 { 839 int32_t uid, gid, cuid, cgid, mode, seq; 840 int32_t key; 841 842 adrm_int32(adr, &uid, 1); 843 adrm_int32(adr, &gid, 1); 844 adrm_int32(adr, &cuid, 1); 845 adrm_int32(adr, &cgid, 1); 846 adrm_int32(adr, &mode, 1); 847 adrm_int32(adr, &seq, 1); 848 adrm_int32(adr, &key, 1); 849 850 if (!new_mode && (flags & M_USERE)) { 851 if (m_usere == uid) 852 checkflags |= M_USERE; 853 } 854 855 if (!new_mode && (flags & M_USERE)) { 856 if (m_usere == cuid) 857 checkflags |= M_USERE; 858 } 859 860 if (!new_mode && (flags & M_GROUPR)) { 861 if (m_groupr == gid) 862 checkflags |= M_GROUPR; 863 } 864 865 if (!new_mode && (flags & M_GROUPR)) { 866 if (m_groupr == cgid) 867 checkflags |= M_GROUPR; 868 } 869 870 if ((flags & M_OBJECT) && 871 ((obj_owner == uid) || 872 (obj_owner == cuid) || 873 (obj_group == gid) || 874 (obj_group == cgid))) { 875 876 switch (obj_flag) { 877 case OBJ_MSGGROUP: 878 case OBJ_MSGOWNER: 879 if (ipc_type_match(OBJ_MSG, ipc_type)) 880 checkflags |= M_OBJECT; 881 break; 882 case OBJ_SEMGROUP: 883 case OBJ_SEMOWNER: 884 if (ipc_type_match(OBJ_SEM, ipc_type)) 885 checkflags |= M_OBJECT; 886 break; 887 case OBJ_SHMGROUP: 888 case OBJ_SHMOWNER: 889 if (ipc_type_match(OBJ_SHM, ipc_type)) 890 checkflags |= M_OBJECT; 891 break; 892 } 893 } 894 return (-1); 895 } 896 897 898 /* 899 * Format of process32 token: 900 * process token id adr_char 901 * auid adr_int32 902 * euid adr_int32 903 * egid adr_int32 904 * ruid adr_int32 905 * rgid adr_int32 906 * pid adr_int32 907 * sid adr_int32 908 * termid adr_int32*2 909 */ 910 int 911 process32_token(adr_t *adr) 912 { 913 int32_t auid, euid, egid, ruid, rgid, pid; 914 int32_t sid; 915 int32_t port, machine; 916 917 adrm_int32(adr, &auid, 1); 918 adrm_int32(adr, &euid, 1); 919 adrm_int32(adr, &egid, 1); 920 adrm_int32(adr, &ruid, 1); 921 adrm_int32(adr, &rgid, 1); 922 adrm_int32(adr, &pid, 1); 923 adrm_int32(adr, &sid, 1); 924 adrm_int32(adr, &port, 1); 925 adrm_int32(adr, &machine, 1); 926 927 if (!new_mode && (flags & M_USERA)) { 928 if (m_usera == auid) 929 checkflags |= M_USERA; 930 } 931 if (!new_mode && (flags & M_USERE)) { 932 if (m_usere == euid) 933 checkflags |= M_USERE; 934 } 935 if (!new_mode && (flags & M_USERR)) { 936 if (m_userr == ruid) 937 checkflags |= M_USERR; 938 } 939 if (!new_mode && (flags & M_GROUPR)) { 940 if (m_groupr == rgid) 941 checkflags |= M_GROUPR; 942 } 943 if (!new_mode && (flags & M_GROUPE)) { 944 if (m_groupe == egid) 945 checkflags |= M_GROUPE; 946 } 947 948 if (flags & M_OBJECT) { 949 if ((obj_flag & OBJ_PROC) && 950 (obj_id == pid)) { 951 checkflags |= M_OBJECT; 952 } else if ((obj_flag & OBJ_PGROUP) && 953 ((obj_group == egid) || 954 (obj_group == rgid))) { 955 checkflags |= M_OBJECT; 956 } else if ((obj_flag & OBJ_POWNER) && 957 ((obj_owner == euid) || 958 (obj_group == ruid))) { 959 checkflags |= M_OBJECT; 960 } 961 } 962 return (-1); 963 } 964 965 /* 966 * Format of process32_ex token: 967 * process token id adr_char 968 * auid adr_int32 969 * euid adr_int32 970 * egid adr_int32 971 * ruid adr_int32 972 * rgid adr_int32 973 * pid adr_int32 974 * sid adr_int32 975 * termid 976 * port adr_int32 977 * type adr_int32 978 * ip address adr_u_char*type 979 */ 980 int 981 process32_ex_token(adr_t *adr) 982 { 983 int32_t auid, euid, egid, ruid, rgid, pid; 984 int32_t sid; 985 int32_t port, type; 986 uchar_t addr[16]; 987 988 adrm_int32(adr, &auid, 1); 989 adrm_int32(adr, &euid, 1); 990 adrm_int32(adr, &egid, 1); 991 adrm_int32(adr, &ruid, 1); 992 adrm_int32(adr, &rgid, 1); 993 adrm_int32(adr, &pid, 1); 994 adrm_int32(adr, &sid, 1); 995 adrm_int32(adr, &port, 1); 996 adrm_int32(adr, &type, 1); 997 adrm_u_char(adr, addr, type); 998 999 if (!new_mode && (flags & M_USERA)) { 1000 if (m_usera == auid) 1001 checkflags = checkflags | M_USERA; 1002 } 1003 if (!new_mode && (flags & M_USERE)) { 1004 if (m_usere == euid) 1005 checkflags = checkflags | M_USERE; 1006 } 1007 if (!new_mode && (flags & M_USERR)) { 1008 if (m_userr == ruid) 1009 checkflags = checkflags | M_USERR; 1010 } 1011 if (!new_mode && (flags & M_GROUPR)) { 1012 if (m_groupr == egid) 1013 checkflags = checkflags | M_GROUPR; 1014 } 1015 if (!new_mode && (flags & M_GROUPE)) { 1016 if (m_groupe == egid) 1017 checkflags = checkflags | M_GROUPE; 1018 } 1019 1020 if (flags & M_OBJECT) { 1021 if ((obj_flag & OBJ_PROC) && 1022 (obj_id == pid)) { 1023 checkflags = checkflags | M_OBJECT; 1024 } else if ((obj_flag & OBJ_PGROUP) && 1025 ((obj_group == egid) || 1026 (obj_group == rgid))) { 1027 checkflags = checkflags | M_OBJECT; 1028 } else if ((obj_flag & OBJ_POWNER) && 1029 ((obj_owner == euid) || 1030 (obj_group == ruid))) { 1031 checkflags = checkflags | M_OBJECT; 1032 } 1033 } 1034 return (-1); 1035 } 1036 1037 /* 1038 * Format of process64 token: 1039 * process token id adr_char 1040 * auid adr_int32 1041 * euid adr_int32 1042 * egid adr_int32 1043 * ruid adr_int32 1044 * rgid adr_int32 1045 * pid adr_int32 1046 * sid adr_int32 1047 * termid adr_int64+adr_int32 1048 */ 1049 int 1050 process64_token(adr_t *adr) 1051 { 1052 int32_t auid, euid, egid, ruid, rgid, pid; 1053 int32_t sid; 1054 int64_t port; 1055 int32_t machine; 1056 1057 adrm_int32(adr, &auid, 1); 1058 adrm_int32(adr, &euid, 1); 1059 adrm_int32(adr, &egid, 1); 1060 adrm_int32(adr, &ruid, 1); 1061 adrm_int32(adr, &rgid, 1); 1062 adrm_int32(adr, &pid, 1); 1063 adrm_int32(adr, &sid, 1); 1064 adrm_int64(adr, &port, 1); 1065 adrm_int32(adr, &machine, 1); 1066 1067 if (!new_mode && (flags & M_USERA)) { 1068 if (m_usera == auid) 1069 checkflags |= M_USERA; 1070 } 1071 if (!new_mode && (flags & M_USERE)) { 1072 if (m_usere == euid) 1073 checkflags |= M_USERE; 1074 } 1075 if (!new_mode && (flags & M_USERR)) { 1076 if (m_userr == ruid) 1077 checkflags |= M_USERR; 1078 } 1079 if (!new_mode && (flags & M_GROUPR)) { 1080 if (m_groupr == rgid) 1081 checkflags |= M_GROUPR; 1082 } 1083 if (!new_mode && (flags & M_GROUPE)) { 1084 if (m_groupe == egid) 1085 checkflags |= M_GROUPE; 1086 } 1087 1088 if (flags & M_OBJECT) { 1089 if ((obj_flag & OBJ_PROC) && 1090 (obj_id == pid)) { 1091 checkflags |= M_OBJECT; 1092 } else if ((obj_flag & OBJ_PGROUP) && 1093 ((obj_group == egid) || 1094 (obj_group == rgid))) { 1095 checkflags |= M_OBJECT; 1096 } else if ((obj_flag & OBJ_POWNER) && 1097 ((obj_owner == euid) || 1098 (obj_group == ruid))) { 1099 checkflags |= M_OBJECT; 1100 } 1101 } 1102 return (-1); 1103 } 1104 1105 /* 1106 * Format of process64_ex token: 1107 * process token id adr_char 1108 * auid adr_int32 1109 * euid adr_int32 1110 * egid adr_int32 1111 * ruid adr_int32 1112 * rgid adr_int32 1113 * pid adr_int32 1114 * sid adr_int32 1115 * termid 1116 * port adr_int64 1117 * type adr_int32 1118 * ip address adr_u_char*type 1119 */ 1120 int 1121 process64_ex_token(adr_t *adr) 1122 { 1123 int32_t auid, euid, egid, ruid, rgid, pid; 1124 int32_t sid; 1125 int64_t port; 1126 int32_t type; 1127 uchar_t addr[16]; 1128 1129 adrm_int32(adr, &auid, 1); 1130 adrm_int32(adr, &euid, 1); 1131 adrm_int32(adr, &egid, 1); 1132 adrm_int32(adr, &ruid, 1); 1133 adrm_int32(adr, &rgid, 1); 1134 adrm_int32(adr, &pid, 1); 1135 adrm_int32(adr, &sid, 1); 1136 adrm_int64(adr, &port, 1); 1137 adrm_int32(adr, &type, 1); 1138 adrm_u_char(adr, addr, type); 1139 1140 if (!new_mode && (flags & M_USERA)) { 1141 if (m_usera == auid) 1142 checkflags = checkflags | M_USERA; 1143 } 1144 if (!new_mode && (flags & M_USERE)) { 1145 if (m_usere == euid) 1146 checkflags = checkflags | M_USERE; 1147 } 1148 if (!new_mode && (flags & M_USERR)) { 1149 if (m_userr == ruid) 1150 checkflags = checkflags | M_USERR; 1151 } 1152 if (!new_mode && (flags & M_GROUPR)) { 1153 if (m_groupr == egid) 1154 checkflags = checkflags | M_GROUPR; 1155 } 1156 if (!new_mode && (flags & M_GROUPE)) { 1157 if (m_groupe == egid) 1158 checkflags = checkflags | M_GROUPE; 1159 } 1160 1161 if (flags & M_OBJECT) { 1162 if ((obj_flag & OBJ_PROC) && 1163 (obj_id == pid)) { 1164 checkflags = checkflags | M_OBJECT; 1165 } else if ((obj_flag & OBJ_PGROUP) && 1166 ((obj_group == egid) || 1167 (obj_group == rgid))) { 1168 checkflags = checkflags | M_OBJECT; 1169 } else if ((obj_flag & OBJ_POWNER) && 1170 ((obj_owner == euid) || 1171 (obj_group == ruid))) { 1172 checkflags = checkflags | M_OBJECT; 1173 } 1174 } 1175 return (-1); 1176 } 1177 1178 /* 1179 * Format of System V IPC token: 1180 * System V IPC token id adr_char 1181 * object id adr_int32 1182 */ 1183 int 1184 s5_IPC_token(adr_t *adr) 1185 { 1186 int32_t ipc_id; 1187 1188 adrm_char(adr, &ipc_type, 1); /* Global */ 1189 adrm_int32(adr, &ipc_id, 1); 1190 1191 if ((flags & M_OBJECT) && 1192 ipc_type_match(obj_flag, ipc_type) && 1193 (obj_id == ipc_id)) 1194 checkflags |= M_OBJECT; 1195 1196 return (-1); 1197 } 1198 1199 1200 /* 1201 * Format of socket token: 1202 * socket_type adrm_short 1203 * remote_port adrm_short 1204 * remote_inaddr adrm_int32 1205 */ 1206 int 1207 socket_token(adr_t *adr) 1208 { 1209 short socket_type; 1210 short remote_port; 1211 int32_t remote_inaddr; 1212 1213 adrm_short(adr, &socket_type, 1); 1214 adrm_short(adr, &remote_port, 1); 1215 adrm_char(adr, (char *)&remote_inaddr, 4); 1216 1217 if ((flags & M_OBJECT) && (obj_flag == OBJ_SOCK)) { 1218 if (socket_flag == SOCKFLG_MACHINE) { 1219 if (remote_inaddr == obj_id) 1220 checkflags |= M_OBJECT; 1221 } else if (socket_flag == SOCKFLG_PORT) { 1222 if (remote_port == obj_id) 1223 checkflags |= M_OBJECT; 1224 } 1225 } 1226 return (-1); 1227 } 1228 1229 1230 /* 1231 * Format of socket_ex token: 1232 * socket_domain adrm_short 1233 * socket_type adrm_short 1234 * address_type adrm_short 1235 * local_port adrm_short 1236 * local_inaddr adrm_u_char*address_type 1237 * remote_port adrm_short 1238 * remote_inaddr adrm_u_char*address_type 1239 */ 1240 int 1241 socket_ex_token(adr_t *adr) 1242 { 1243 short socket_domain; 1244 short socket_type; 1245 short ip_size; 1246 short local_port; 1247 uchar_t local_inaddr[16]; 1248 short remote_port; 1249 uchar_t remote_inaddr[16]; 1250 uchar_t *caddr = (uchar_t *)&obj_id; 1251 1252 adrm_short(adr, &socket_domain, 1); 1253 adrm_short(adr, &socket_type, 1); 1254 adrm_short(adr, &ip_size, 1); 1255 1256 /* validate ip size */ 1257 if ((ip_size != AU_IPv6) && (ip_size != AU_IPv4)) 1258 return (0); 1259 1260 adrm_short(adr, &local_port, 1); 1261 adrm_char(adr, (char *)local_inaddr, ip_size); 1262 1263 adrm_short(adr, &remote_port, 1); 1264 adrm_char(adr, (char *)remote_inaddr, ip_size); 1265 1266 /* if IP type mis-match, then nothing to do */ 1267 if (ip_size != ip_type) 1268 return (-1); 1269 1270 if ((flags & M_OBJECT) && (obj_flag == OBJ_SOCK)) { 1271 if (socket_flag == SOCKFLG_MACHINE) { 1272 if (ip_type == AU_IPv6) { 1273 caddr = (uchar_t *)ip_ipv6; 1274 } 1275 if ((memcmp(local_inaddr, caddr, ip_type) == 0) || 1276 (memcmp(remote_inaddr, caddr, ip_type) == 0)) { 1277 checkflags |= M_OBJECT; 1278 } 1279 } else if (socket_flag == SOCKFLG_PORT) { 1280 if ((local_port == obj_id) || (remote_port == obj_id)) { 1281 checkflags |= M_OBJECT; 1282 } 1283 } 1284 } 1285 return (-1); 1286 } 1287 1288 1289 /* 1290 * Format of subject32 token: 1291 * subject token id adr_char 1292 * auid adr_int32 1293 * euid adr_int32 1294 * egid adr_int32 1295 * ruid adr_int32 1296 * rgid adr_int32 1297 * pid adr_int32 1298 * sid adr_int32 1299 * termid adr_int32*2 1300 */ 1301 int 1302 subject32_token(adr_t *adr) 1303 { 1304 int32_t auid, euid, egid, ruid, rgid, pid; 1305 int32_t sid; 1306 int32_t port, machine; 1307 1308 adrm_int32(adr, &auid, 1); 1309 adrm_int32(adr, &euid, 1); 1310 adrm_int32(adr, &egid, 1); 1311 adrm_int32(adr, &ruid, 1); 1312 adrm_int32(adr, &rgid, 1); 1313 adrm_int32(adr, &pid, 1); 1314 adrm_int32(adr, &sid, 1); 1315 adrm_int32(adr, &port, 1); 1316 adrm_int32(adr, &machine, 1); 1317 1318 if (flags & M_SUBJECT) { 1319 if (subj_id == pid) 1320 checkflags |= M_SUBJECT; 1321 } 1322 if (flags & M_USERA) { 1323 if (m_usera == auid) 1324 checkflags |= M_USERA; 1325 } 1326 if (flags & M_USERE) { 1327 if (m_usere == euid) 1328 checkflags |= M_USERE; 1329 } 1330 if (flags & M_USERR) { 1331 if (m_userr == ruid) 1332 checkflags |= M_USERR; 1333 } 1334 if (flags & M_GROUPR) { 1335 if (m_groupr == rgid) 1336 checkflags |= M_GROUPR; 1337 } 1338 if (flags & M_GROUPE) { 1339 if (m_groupe == egid) 1340 checkflags |= M_GROUPE; 1341 } 1342 if (flags & M_SID) { 1343 if (m_sid == (au_asid_t)sid) 1344 checkflags |= M_SID; 1345 } 1346 return (-1); 1347 } 1348 1349 /* 1350 * Format of subject32_ex token: 1351 * subject token id adr_char 1352 * auid adr_int32 1353 * euid adr_int32 1354 * egid adr_int32 1355 * ruid adr_int32 1356 * rgid adr_int32 1357 * pid adr_int32 1358 * sid adr_int32 1359 * termid 1360 * port adr_int32 1361 * type adr_int32 1362 * ip address adr_u_char*type 1363 */ 1364 int 1365 subject32_ex_token(adr_t *adr) 1366 { 1367 int32_t auid, euid, egid, ruid, rgid, pid; 1368 int32_t sid; 1369 int32_t port, type; 1370 uchar_t addr[16]; 1371 1372 adrm_int32(adr, &auid, 1); 1373 adrm_int32(adr, &euid, 1); 1374 adrm_int32(adr, &egid, 1); 1375 adrm_int32(adr, &ruid, 1); 1376 adrm_int32(adr, &rgid, 1); 1377 adrm_int32(adr, &pid, 1); 1378 adrm_int32(adr, &sid, 1); 1379 adrm_int32(adr, &port, 1); 1380 adrm_int32(adr, &type, 1); 1381 adrm_u_char(adr, addr, type); 1382 1383 if (flags & M_SUBJECT) { 1384 if (subj_id == pid) 1385 checkflags = checkflags | M_SUBJECT; 1386 } 1387 if (flags & M_USERA) { 1388 if (m_usera == auid) 1389 checkflags = checkflags | M_USERA; 1390 } 1391 if (flags & M_USERE) { 1392 if (m_usere == euid) 1393 checkflags = checkflags | M_USERE; 1394 } 1395 if (flags & M_USERR) { 1396 if (m_userr == ruid) 1397 checkflags = checkflags | M_USERR; 1398 } 1399 if (flags & M_GROUPR) { 1400 if (m_groupr == egid) 1401 checkflags = checkflags | M_GROUPR; 1402 } 1403 if (flags & M_GROUPE) { 1404 if (m_groupe == egid) 1405 checkflags = checkflags | M_GROUPE; 1406 } 1407 if (flags & M_SID) { 1408 if (m_sid == (au_asid_t)sid) 1409 checkflags = checkflags | M_SID; 1410 } 1411 return (-1); 1412 } 1413 1414 /* 1415 * Format of subject64 token: 1416 * subject token id adr_char 1417 * auid adr_int32 1418 * euid adr_int32 1419 * egid adr_int32 1420 * ruid adr_int32 1421 * rgid adr_int32 1422 * pid adr_int32 1423 * sid adr_int32 1424 * termid adr_int64+adr_int32 1425 */ 1426 int 1427 subject64_token(adr_t *adr) 1428 { 1429 int32_t auid, euid, egid, ruid, rgid, pid; 1430 int32_t sid; 1431 int64_t port; 1432 int32_t machine; 1433 1434 adrm_int32(adr, &auid, 1); 1435 adrm_int32(adr, &euid, 1); 1436 adrm_int32(adr, &egid, 1); 1437 adrm_int32(adr, &ruid, 1); 1438 adrm_int32(adr, &rgid, 1); 1439 adrm_int32(adr, &pid, 1); 1440 adrm_int32(adr, &sid, 1); 1441 adrm_int64(adr, &port, 1); 1442 adrm_int32(adr, &machine, 1); 1443 1444 if (flags & M_SUBJECT) { 1445 if (subj_id == pid) 1446 checkflags |= M_SUBJECT; 1447 } 1448 if (flags & M_USERA) { 1449 if (m_usera == auid) 1450 checkflags |= M_USERA; 1451 } 1452 if (flags & M_USERE) { 1453 if (m_usere == euid) 1454 checkflags |= M_USERE; 1455 } 1456 if (flags & M_USERR) { 1457 if (m_userr == ruid) 1458 checkflags |= M_USERR; 1459 } 1460 if (flags & M_GROUPR) { 1461 if (m_groupr == rgid) 1462 checkflags |= M_GROUPR; 1463 } 1464 if (flags & M_GROUPE) { 1465 if (m_groupe == egid) 1466 checkflags |= M_GROUPE; 1467 } 1468 if (flags & M_SID) { 1469 if (m_sid == (au_asid_t)sid) 1470 checkflags |= M_SID; 1471 } 1472 return (-1); 1473 } 1474 1475 /* 1476 * Format of subject64_ex token: 1477 * subject token id adr_char 1478 * auid adr_int32 1479 * euid adr_int32 1480 * egid adr_int32 1481 * ruid adr_int32 1482 * rgid adr_int32 1483 * pid adr_int32 1484 * sid adr_int32 1485 * termid 1486 * port adr_int64 1487 * type adr_int32 1488 * ip address adr_u_char*type 1489 */ 1490 int 1491 subject64_ex_token(adr_t *adr) 1492 { 1493 int32_t auid, euid, egid, ruid, rgid, pid; 1494 int32_t sid; 1495 int64_t port; 1496 int32_t type; 1497 uchar_t addr[16]; 1498 1499 adrm_int32(adr, &auid, 1); 1500 adrm_int32(adr, &euid, 1); 1501 adrm_int32(adr, &egid, 1); 1502 adrm_int32(adr, &ruid, 1); 1503 adrm_int32(adr, &rgid, 1); 1504 adrm_int32(adr, &pid, 1); 1505 adrm_int32(adr, &sid, 1); 1506 adrm_int64(adr, &port, 1); 1507 adrm_int32(adr, &type, 1); 1508 adrm_u_char(adr, addr, type); 1509 1510 if (flags & M_SUBJECT) { 1511 if (subj_id == pid) 1512 checkflags = checkflags | M_SUBJECT; 1513 } 1514 if (flags & M_USERA) { 1515 if (m_usera == auid) 1516 checkflags = checkflags | M_USERA; 1517 } 1518 if (flags & M_USERE) { 1519 if (m_usere == euid) 1520 checkflags = checkflags | M_USERE; 1521 } 1522 if (flags & M_USERR) { 1523 if (m_userr == ruid) 1524 checkflags = checkflags | M_USERR; 1525 } 1526 if (flags & M_GROUPR) { 1527 if (m_groupr == egid) 1528 checkflags = checkflags | M_GROUPR; 1529 } 1530 if (flags & M_GROUPE) { 1531 if (m_groupe == egid) 1532 checkflags = checkflags | M_GROUPE; 1533 } 1534 if (flags & M_SID) { 1535 if (m_sid == (au_asid_t)sid) 1536 checkflags = checkflags | M_SID; 1537 } 1538 return (-1); 1539 } 1540 1541 /* 1542 * ----------------------------------------------------------------------- 1543 * tid_token(): Process tid token and display contents 1544 * 1545 * Format of tid token: 1546 * tid token id adr_char 1547 * address type adr_char 1548 * For address type of AU_IPADR... 1549 * remote port adr_short 1550 * local port adr_short 1551 * IP type adr_int32 1552 * IP addr adr_int32 if IPv4 1553 * IP addr 4 x adr_int32 if IPv6 1554 * address types other than AU_IPADR are not yet defined 1555 * ----------------------------------------------------------------------- 1556 */ 1557 int 1558 tid_token(adr_t *adr) 1559 { 1560 int32_t address[4]; 1561 int32_t ip_type; 1562 char tid_type; 1563 short rport; 1564 short lport; 1565 1566 adrm_char(adr, &tid_type, 1); 1567 switch (tid_type) { 1568 case AU_IPADR: 1569 adrm_short(adr, &rport, 1); 1570 adrm_short(adr, &lport, 1); 1571 adrm_int32(adr, &ip_type, 1); 1572 adrm_char(adr, (char *)&address, ip_type); 1573 break; 1574 default: 1575 return (0); 1576 } 1577 return (-1); 1578 } 1579 1580 /* 1581 * ----------------------------------------------------------------------- 1582 * zonename_token(): Process zonename token and display contents 1583 * 1584 * Format of zonename token: 1585 * zonename token id adr_char 1586 * zone name adr_string 1587 * ----------------------------------------------------------------------- 1588 */ 1589 int 1590 zonename_token(adr_t *adr) 1591 { 1592 char *name; 1593 1594 if (flags & M_ZONENAME) { 1595 get_string(adr, &name); 1596 if (strncmp(zonename, name, ZONENAME_MAX) == 0) 1597 checkflags |= M_ZONENAME; 1598 free(name); 1599 } else { 1600 skip_string(adr); 1601 } 1602 return (-1); 1603 } 1604 1605 /* 1606 * fmri_token(): 1607 * 1608 * Format of fmri token: 1609 * fmri adr_string 1610 */ 1611 int 1612 fmri_token(adr_t *adr) 1613 { 1614 if ((flags & M_OBJECT) && (obj_flag == OBJ_FMRI)) { 1615 char *fmri_name; 1616 1617 get_string(adr, &fmri_name); 1618 1619 /* match token against service instance */ 1620 if (scf_cmp_pattern(fmri_name, &fmri) == 1) { 1621 checkflags |= M_OBJECT; 1622 } 1623 free(fmri_name); 1624 } else { 1625 skip_string(adr); 1626 } 1627 return (-1); 1628 } 1629 1630 /* 1631 * Format of xatom token: 1632 */ 1633 int 1634 xatom_token(adr_t *adr) 1635 { 1636 skip_string(adr); 1637 1638 return (-1); 1639 } 1640 1641 /* 1642 * Format of xselect token: 1643 */ 1644 int 1645 xselect_token(adr_t *adr) 1646 { 1647 skip_string(adr); 1648 skip_string(adr); 1649 skip_string(adr); 1650 1651 return (-1); 1652 } 1653 1654 /* 1655 * anchor a path name with a slash 1656 * assume we have enough space 1657 */ 1658 void 1659 anchor_path(char *path) 1660 { 1661 (void) memmove((void *)(path + 1), (void *)path, strlen(path) + 1); 1662 *path = '/'; 1663 } 1664 1665 1666 /* 1667 * copy path to collapsed path. 1668 * collapsed path does not contain: 1669 * successive slashes 1670 * instances of dot-slash 1671 * instances of dot-dot-slash 1672 * passed path must be anchored with a '/' 1673 */ 1674 char * 1675 collapse_path(char *s) 1676 { 1677 int id; /* index of where we are in destination string */ 1678 int is; /* index of where we are in source string */ 1679 int slashseen; /* have we seen a slash */ 1680 int ls; /* length of source string */ 1681 1682 ls = strlen(s) + 1; 1683 1684 slashseen = 0; 1685 for (is = 0, id = 0; is < ls; is++) { 1686 /* thats all folks, we've reached the end of input */ 1687 if (s[is] == '\0') { 1688 if (id > 1 && s[id-1] == '/') { 1689 --id; 1690 } 1691 s[id++] = '\0'; 1692 break; 1693 } 1694 /* previous character was a / */ 1695 if (slashseen) { 1696 if (s[is] == '/') 1697 continue; /* another slash, ignore it */ 1698 } else if (s[is] == '/') { 1699 /* we see a /, just copy it and try again */ 1700 slashseen = 1; 1701 s[id++] = '/'; 1702 continue; 1703 } 1704 /* /./ seen */ 1705 if (s[is] == '.' && s[is+1] == '/') { 1706 is += 1; 1707 continue; 1708 } 1709 /* XXX/. seen */ 1710 if (s[is] == '.' && s[is+1] == '\0') { 1711 if (id > 1) 1712 id--; 1713 continue; 1714 } 1715 /* XXX/.. seen */ 1716 if (s[is] == '.' && s[is+1] == '.' && s[is+2] == '\0') { 1717 is += 1; 1718 if (id > 0) 1719 id--; 1720 while (id > 0 && s[--id] != '/') 1721 ; 1722 id++; 1723 continue; 1724 } 1725 /* XXX/../ seen */ 1726 if (s[is] == '.' && s[is+1] == '.' && s[is+2] == '/') { 1727 is += 2; 1728 if (id > 0) 1729 id--; 1730 while (id > 0 && s[--id] != '/') 1731 ; 1732 id++; 1733 continue; 1734 } 1735 while (is < ls && (s[id++] = s[is++]) != '/') 1736 ; 1737 is--; 1738 } 1739 return (s); 1740 } 1741 1742 1743 int 1744 ipc_type_match(int flag, char type) 1745 { 1746 if (flag == OBJ_SEM && type == AT_IPC_SEM) 1747 return (1); 1748 1749 if (flag == OBJ_MSG && type == AT_IPC_MSG) 1750 return (1); 1751 1752 if (flag == OBJ_SHM && type == AT_IPC_SHM) 1753 return (1); 1754 1755 return (0); 1756 } 1757 1758 1759 void 1760 skip_string(adr_t *adr) 1761 { 1762 ushort_t c; 1763 1764 adrm_u_short(adr, &c, 1); 1765 adr->adr_now += c; 1766 } 1767 1768 1769 void 1770 get_string(adr_t *adr, char **p) 1771 { 1772 ushort_t c; 1773 1774 adrm_u_short(adr, &c, 1); 1775 *p = a_calloc(1, (size_t)c); 1776 adrm_char(adr, *p, c); 1777 } 1778 1779 1780 /* 1781 * Format of host token: 1782 * host ard_uint32 1783 */ 1784 int 1785 host_token(adr_t *adr) 1786 { 1787 uint32_t host; 1788 1789 adrm_u_int32(adr, &host, 1); 1790 1791 return (-1); 1792 } 1793 1794 /* 1795 * Format of useofauth token: 1796 * uauth token id adr_char 1797 * uauth adr_string 1798 */ 1799 int 1800 useofauth_token(adr_t *adr) 1801 { 1802 skip_string(adr); 1803 return (-1); 1804 } 1805 1806 /* 1807 * Format of user token: 1808 * user token id adr_char 1809 * uid adr_uid 1810 * username adr_string 1811 */ 1812 int 1813 user_token(adr_t *adr) 1814 { 1815 uid_t uid; 1816 1817 adrm_uid(adr, &uid, 1); 1818 skip_string(adr); 1819 1820 if ((flags & M_OBJECT) && (obj_flag == OBJ_USER) && 1821 (uid == obj_user)) { 1822 checkflags |= M_OBJECT; 1823 } 1824 1825 return (-1); 1826 } 1827 1828 int 1829 xcolormap_token(adr_t *adr) 1830 { 1831 return (xgeneric(adr)); 1832 } 1833 1834 int 1835 xcursor_token(adr_t *adr) 1836 { 1837 return (xgeneric(adr)); 1838 } 1839 1840 int 1841 xfont_token(adr_t *adr) 1842 { 1843 return (xgeneric(adr)); 1844 } 1845 1846 int 1847 xgc_token(adr_t *adr) 1848 { 1849 return (xgeneric(adr)); 1850 } 1851 1852 int 1853 xpixmap_token(adr_t *adr) 1854 { 1855 return (xgeneric(adr)); 1856 } 1857 1858 int 1859 xwindow_token(adr_t *adr) 1860 { 1861 return (xgeneric(adr)); 1862 } 1863 1864 1865 /* 1866 * Format of xgeneric token: 1867 * XID adr_int32 1868 * creator UID adr_int32 1869 * 1870 * Includes: xcolormap, xcursor, xfont, xgc, xpixmap, and xwindow 1871 */ 1872 int 1873 xgeneric(adr_t *adr) 1874 { 1875 int32_t xid; 1876 int32_t uid; 1877 1878 adrm_int32(adr, &xid, 1); 1879 adrm_int32(adr, &uid, 1); 1880 1881 if (flags & M_USERE) { 1882 if (m_usere == uid) 1883 checkflags = checkflags | M_USERE; 1884 } 1885 1886 return (-1); 1887 } 1888 1889 1890 /* 1891 * Format of xproperty token: 1892 * XID adr_int32 1893 * creator UID adr_int32 1894 * atom string adr_string 1895 */ 1896 int 1897 xproperty_token(adr_t *adr) 1898 { 1899 int32_t xid; 1900 int32_t uid; 1901 1902 adrm_int32(adr, &xid, 1); 1903 adrm_int32(adr, &uid, 1); 1904 skip_string(adr); 1905 1906 if (flags & M_USERE) { 1907 if (m_usere == uid) 1908 checkflags = checkflags | M_USERE; 1909 } 1910 1911 return (-1); 1912 } 1913 1914 1915 /* 1916 * Format of xclient token: 1917 * xclient id adr_int32 1918 */ 1919 int 1920 xclient_token(adr_t *adr) 1921 { 1922 int32_t client_id; 1923 1924 adrm_int32(adr, &client_id, 1); 1925 1926 return (-1); 1927 } 1928 1929 /* 1930 * Format of privilege set token: 1931 * priv_set type string 1932 * priv_set string 1933 */ 1934 1935 int 1936 privilege_token(adr_t *adr) 1937 { 1938 skip_string(adr); /* set type name */ 1939 skip_string(adr); /* privilege set */ 1940 return (-1); 1941 } 1942 1943 /* 1944 * Format of label token: 1945 * label ID 1 byte 1946 * compartment length 1 byte 1947 * classification 2 bytes 1948 * compartment words <compartment length> * 4 bytes 1949 */ 1950 int 1951 label_token(adr_t *adr) 1952 { 1953 static m_label_t *label = NULL; 1954 static size32_t l_size; 1955 int len; 1956 1957 if (label == NULL) { 1958 label = m_label_alloc(MAC_LABEL); 1959 l_size = blabel_size() - 4; 1960 } 1961 1962 if (label == NULL) { 1963 /* out of memory, should never happen; skip label */ 1964 char l; /* length */ 1965 1966 adr->adr_now += sizeof (char); 1967 adrm_char(adr, (char *)&l, 1); 1968 adr->adr_now += sizeof (short) + (4 * l); 1969 return (-1); 1970 } 1971 1972 adrm_char(adr, (char *)label, 4); 1973 len = (int)(((char *)label)[1] * 4); 1974 if (len > l_size) { 1975 return (-1); 1976 } 1977 adrm_char(adr, &((char *)label)[4], len); 1978 1979 if (flags & M_LABEL) { 1980 if (blinrange(label, m_label)) 1981 checkflags = checkflags | M_LABEL; 1982 } 1983 1984 return (-1); 1985 } 1986 1987 1988 /* 1989 * Format of useofpriv token: 1990 * success/failure adr_char 1991 * privilege(s) adr_string 1992 */ 1993 /* ARGSUSED */ 1994 int 1995 useofpriv_token(adr_t *adr) 1996 { 1997 char flag; 1998 1999 adrm_char(adr, &flag, 1); 2000 skip_string(adr); 2001 return (-1); 2002 } --- EOF ---