cleanup

[openldap] / libraries / liblutil / getpeereid.c

diff --git a/libraries/liblutil/getpeereid.c b/libraries/liblutil/getpeereid.c
index c64c98429b3da0a0deeb17e559afc4efaee0ec09..258e7c5de9e9dc6eadc86eac5623b98d5d16fda9 100644 (file)
--- a/libraries/liblutil/getpeereid.c
+++ b/libraries/liblutil/getpeereid.c
@@ -1,8 +1,17 @@
 /* getpeereid.c */
 /* $OpenLDAP$ */
-/*
- * Copyright 1998-2002 The OpenLDAP Foundation, All Rights Reserved.
- * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
+/* This work is part of OpenLDAP Software <http://www.openldap.org/>.
+ *
+ * Copyright 2000-2005 The OpenLDAP Foundation.
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted only as authorized by the OpenLDAP
+ * Public License.
+ *
+ * A copy of this license is available in the file LICENSE in the
+ * top-level directory of the distribution or, alternatively, at
+ * <http://www.OpenLDAP.org/license.html>.
  */
 
 #include "portable.h"
@@ -13,11 +22,27 @@
 #include <ac/unistd.h>
 
 #include <ac/socket.h>
+#include <ac/errno.h>
 
 #if HAVE_SYS_UCRED_H
+#if HAVE_GRP_H
+#include <grp.h>       /* for NGROUPS on Tru64 5.1 */
+#endif
 #include <sys/ucred.h>
 #endif
 
+#if !defined(SO_PEERCRED) && !defined(LOCAL_PEERCRED) && \
+       defined(HAVE_SENDMSG) && defined(HAVE_MSGHDR_MSG_ACCRIGHTS)
+#define DO_SENDMSG
+#ifdef HAVE_SYS_UIO_H
+#include <sys/uio.h>
+#endif
+#include <sys/stat.h>
+#endif
+
+#include <stdlib.h>
+
+
 int getpeereid( int s, uid_t *euid, gid_t *egid )
 {
 #ifdef LDAP_PF_LOCAL
@@ -46,10 +71,79 @@ int getpeereid( int s, uid_t *euid, gid_t *egid )
                *egid = peercred.cr_gid;
                return 0;
        }
+#elif defined( DO_SENDMSG )
+       int dummy, fd[2];
+       struct iovec iov;
+       struct msghdr msg = {0};
+       struct stat st;
+
+       iov.iov_base = (char*) &dummy;
+       iov.iov_len = 1;
+       msg.msg_iov = &iov;
+       msg.msg_iovlen = 1;
+       msg.msg_accrights = (char *)fd;
+       msg.msg_accrightslen = sizeof(fd);
+       if( recvmsg( s, &msg, MSG_PEEK) >= 0 && msg.msg_accrightslen == sizeof(int) )
+       {
+               /* We must receive a valid descriptor, it must be a pipe,
+                * and it must only be accessible by its owner.
+                */
+               dummy = fstat( fd[0], &st );
+               close(fd[0]);
+               if( dummy == 0 && S_ISFIFO(st.st_mode) &&
+                       ((st.st_mode & (S_IRWXG|S_IRWXO)) == 0))
+               {
+                       *euid = st.st_uid;
+                       *egid = st.st_gid;
+                       return 0;
+               }
+       }
+#elif defined(SOCKCREDSIZE)
+       struct msghdr msg;
+       socklen_t crmsgsize;
+       void *crmsg;
+       struct cmsghdr *cmp;
+       struct sockcred *sc;
+
+       memset(&msg, 0, sizeof msg);
+       crmsgsize = CMSG_SPACE(SOCKCREDSIZE(NGROUPS));
+       if (crmsgsize == 0) goto sc_err;
+       crmsg = malloc(crmsgsize);
+       if (crmsg == NULL) goto sc_err;
+       memset(crmsg, 0, crmsgsize);
+       
+       msg.msg_control = crmsg;
+       msg.msg_controllen = crmsgsize;
+       
+       if (recvmsg(s, &msg, 0) < 0) {
+               free(crmsg);
+               goto sc_err;
+       }       
+
+       if (msg.msg_controllen == 0 || (msg.msg_flags & MSG_CTRUNC) != 0) {
+               free(crmsg);
+               goto sc_err;
+       }       
+       
+       cmp = CMSG_FIRSTHDR(&msg);
+       if (cmp->cmsg_level != SOL_SOCKET || cmp->cmsg_type != SCM_CREDS) {
+               printf("nocreds\n");
+               goto sc_err;
+       }       
+       
+       sc = (struct sockcred *)(void *)CMSG_DATA(cmp);
+       
+       *euid = sc->sc_euid;
+       *egid = sc->sc_egid;
+
+       free(crmsg);
+       return 0;
+
+sc_err:        
 #endif
-#endif
+#endif /* LDAP_PF_LOCAL */
 
        return -1;
 }
 
-#endif
+#endif /* HAVE_GETPEEREID */