/* * Check decoding of setresuid/setresgid/setresuid32/setresgid32 syscalls. * * Copyright (c) 2016 Dmitry V. Levin <ldv@altlinux.org> * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. The name of the author may not be used to endorse or promote products * derived from this software without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ #include <errno.h> #include <stdio.h> #include <unistd.h> static int ugid2int(const unsigned UGID_TYPE ugid) { if ((unsigned UGID_TYPE) -1U == ugid) return -1; else return ugid; } static void print_int(const unsigned int num) { if (num == -1U) printf("-1"); else printf("%u", num); } static int num_matches_id(const unsigned int num, const unsigned int ugid) { return num == ugid || num == -1U; } #define TRIPLE(val) \ { val, ugid, ugid }, { ugid, val, ugid }, { ugid, ugid, val } int main(void) { unsigned int ugid = GETUGID; CHECK_OVERFLOWUGID(ugid); const struct { const long r, e, s; } tests[] = { { ugid, ugid, ugid }, TRIPLE((unsigned long) 0xffffffff00000000ULL | ugid), TRIPLE(-1U), TRIPLE(-1L), TRIPLE(0xffff0000U | ugid), TRIPLE(0xffff), TRIPLE(0xc0deffffU) }; unsigned int i; for (i = 0; i < ARRAY_SIZE(tests); ++i) { const unsigned int rn = ugid2int(tests[i].r); const unsigned int en = ugid2int(tests[i].e); const unsigned int sn = ugid2int(tests[i].s); if (!num_matches_id(rn, ugid) || !num_matches_id(en, ugid) || !num_matches_id(sn, ugid)) continue; if (syscall(SYSCALL_NR, tests[i].r, tests[i].e, tests[i].s)) { if (!i && ENOSYS == errno) { printf("%s(%u, %u, %u) = -1 ENOSYS (%m)\n", SYSCALL_NAME, ugid, ugid, ugid); break; } perror_msg_and_fail("%s(%#lx, %#lx, %#lx)", SYSCALL_NAME, tests[i].r, tests[i].e, tests[i].s); } printf("%s(", SYSCALL_NAME); print_int(rn); printf(", "); print_int(en); printf(", "); print_int(sn); printf(") = 0\n"); } puts("+++ exited with 0 +++"); return 0; }