diff options
| author | Antoine Pitrou <solipsis@pitrou.net> | 2010-05-09 15:52:27 +0000 | 
|---|---|---|
| committer | Antoine Pitrou <solipsis@pitrou.net> | 2010-05-09 15:52:27 +0000 | 
| commit | f95a1b3c53bdd678b64aa608d4375660033460c3 (patch) | |
| tree | a8bee40b1b14e28ff5978ea519f3035a3c399912 /Misc/setuid-prog.c | |
| parent | bd250300191133d276a71b395b6428081bf825b8 (diff) | |
| download | cpython-git-f95a1b3c53bdd678b64aa608d4375660033460c3.tar.gz | |
Recorded merge of revisions 81029 via svnmerge from
svn+ssh://pythondev@svn.python.org/python/trunk
........
  r81029 | antoine.pitrou | 2010-05-09 16:46:46 +0200 (dim., 09 mai 2010) | 3 lines
  Untabify C files. Will watch buildbots.
........
Diffstat (limited to 'Misc/setuid-prog.c')
| -rw-r--r-- | Misc/setuid-prog.c | 152 | 
1 files changed, 76 insertions, 76 deletions
| diff --git a/Misc/setuid-prog.c b/Misc/setuid-prog.c index 2841acd28f..3785d99d7f 100644 --- a/Misc/setuid-prog.c +++ b/Misc/setuid-prog.c @@ -21,28 +21,28 @@     Assuming the script is a Bourne shell script, the first line of the     script should be -	#!/bin/sh - +    #!/bin/sh -     The - is important, don't omit it.  If you're using esh, the first     line should be -	#!/usr/local/bin/esh -f +    #!/usr/local/bin/esh -f     and for ksh, the first line should be -	#!/usr/local/bin/ksh -p +    #!/usr/local/bin/ksh -p     The script should then set the variable IFS to the string     consisting of <space>, <tab>, and <newline>.  After this (*not*     before!), the PATH variable should be set to a reasonable value and     exported.  Do not expect the PATH to have a reasonable value, so do     not trust the old value of PATH.  You should then set the umask of     the program by calling -	umask 077 # or 022 if you want the files to be readable +    umask 077 # or 022 if you want the files to be readable     If you plan to change directories, you should either unset CDPATH     or set it to a good value.  Setting CDPATH to just ``.'' (dot) is a     good idea.     If, for some reason, you want to use csh, the first line should be -	#!/bin/csh -fb +    #!/bin/csh -fb     You should then set the path variable to something reasonable,     without trusting the inherited path.  Here too, you should set the     umask using the command -	umask 077 # or 022 if you want the files to be readable +    umask 077 # or 022 if you want the files to be readable  */  #include <unistd.h> @@ -54,14 +54,14 @@  /* CONFIGURATION SECTION */ -#ifndef FULL_PATH	/* so that this can be specified from the Makefile */ +#ifndef FULL_PATH       /* so that this can be specified from the Makefile */  /* Uncomment the following line: -#define FULL_PATH	"/full/path/of/script"  +#define FULL_PATH       "/full/path/of/script"  * Then comment out the #error line. */  #error "You must define FULL_PATH somewhere"  #endif  #ifndef UMASK -#define UMASK		077 +#define UMASK           077  #endif  /* END OF CONFIGURATION SECTION */ @@ -101,76 +101,76 @@ char def_ENV[] = "ENV=:";  void  clean_environ(void)  { -	char **p; -	extern char **environ; - -	for (p = environ; *p; p++) { -		if (strncmp(*p, "LD_", 3) == 0) -			**p = 'X'; -		else if (strncmp(*p, "_RLD", 4) == 0) -			**p = 'X'; -		else if (strncmp(*p, "PYTHON", 6) == 0) -			**p = 'X'; -		else if (strncmp(*p, "IFS=", 4) == 0) -			*p = def_IFS; -		else if (strncmp(*p, "CDPATH=", 7) == 0) -			*p = def_CDPATH; -		else if (strncmp(*p, "ENV=", 4) == 0) -			*p = def_ENV; -	} -	putenv(def_PATH); +    char **p; +    extern char **environ; + +    for (p = environ; *p; p++) { +        if (strncmp(*p, "LD_", 3) == 0) +            **p = 'X'; +        else if (strncmp(*p, "_RLD", 4) == 0) +            **p = 'X'; +        else if (strncmp(*p, "PYTHON", 6) == 0) +            **p = 'X'; +        else if (strncmp(*p, "IFS=", 4) == 0) +            *p = def_IFS; +        else if (strncmp(*p, "CDPATH=", 7) == 0) +            *p = def_CDPATH; +        else if (strncmp(*p, "ENV=", 4) == 0) +            *p = def_ENV; +    } +    putenv(def_PATH);  }  int  main(int argc, char **argv)  { -	struct stat statb; -	gid_t egid = getegid(); -	uid_t euid = geteuid(); - -	/* -	   Sanity check #1. -	   This check should be made compile-time, but that's not possible. -	   If you're sure that you specified a full path name for FULL_PATH, -	   you can omit this check. -	*/ -	if (FULL_PATH[0] != '/') { -		fprintf(stderr, "%s: %s is not a full path name\n", argv[0], -			FULL_PATH); -		fprintf(stderr, "You can only use this wrapper if you\n"); -		fprintf(stderr, "compile it with an absolute path.\n"); -		exit(1); -	} - -	/* -	   Sanity check #2. -	   Check that the owner of the script is equal to either the -	   effective uid or the super user. -	*/ -	if (stat(FULL_PATH, &statb) < 0) { -		perror("stat"); -		exit(1); -	} -	if (statb.st_uid != 0 && statb.st_uid != euid) { -		fprintf(stderr, "%s: %s has the wrong owner\n", argv[0], -			FULL_PATH); -		fprintf(stderr, "The script should be owned by root,\n"); -		fprintf(stderr, "and shouldn't be writable by anyone.\n"); -		exit(1); -	} - -	if (setregid(egid, egid) < 0) -		perror("setregid"); -	if (setreuid(euid, euid) < 0) -		perror("setreuid"); - -	clean_environ(); - -	umask(UMASK); - -	while (**argv == '-')	/* don't let argv[0] start with '-' */ -		(*argv)++; -	execv(FULL_PATH, argv); -	fprintf(stderr, "%s: could not execute the script\n", argv[0]); -	exit(1); +    struct stat statb; +    gid_t egid = getegid(); +    uid_t euid = geteuid(); + +    /* +       Sanity check #1. +       This check should be made compile-time, but that's not possible. +       If you're sure that you specified a full path name for FULL_PATH, +       you can omit this check. +    */ +    if (FULL_PATH[0] != '/') { +        fprintf(stderr, "%s: %s is not a full path name\n", argv[0], +            FULL_PATH); +        fprintf(stderr, "You can only use this wrapper if you\n"); +        fprintf(stderr, "compile it with an absolute path.\n"); +        exit(1); +    } + +    /* +       Sanity check #2. +       Check that the owner of the script is equal to either the +       effective uid or the super user. +    */ +    if (stat(FULL_PATH, &statb) < 0) { +        perror("stat"); +        exit(1); +    } +    if (statb.st_uid != 0 && statb.st_uid != euid) { +        fprintf(stderr, "%s: %s has the wrong owner\n", argv[0], +            FULL_PATH); +        fprintf(stderr, "The script should be owned by root,\n"); +        fprintf(stderr, "and shouldn't be writable by anyone.\n"); +        exit(1); +    } + +    if (setregid(egid, egid) < 0) +        perror("setregid"); +    if (setreuid(euid, euid) < 0) +        perror("setreuid"); + +    clean_environ(); + +    umask(UMASK); + +    while (**argv == '-')       /* don't let argv[0] start with '-' */ +        (*argv)++; +    execv(FULL_PATH, argv); +    fprintf(stderr, "%s: could not execute the script\n", argv[0]); +    exit(1);  } | 
