[platform/core/system/dlog.git] / src / logger / logger_privileges.c

/* Copyright (c) 2020, Samsung Electronics Co., Ltd. All rights reserved.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *              http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License. */

#include "logger_privileges.h"

// POSIX
#include <grp.h>
#include <pwd.h>
#include <sys/stat.h>
#include <unistd.h>

// C
#include <assert.h>
#include <errno.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>

/**
 * @brief Parse permissions
 * @details Parse a string representation of permissions to the internal integral one
 * @param[in] str The string representation
 * @return The integer representation
 */
int parse_permissions(const char *str)
{
        int ret, parsed;
        char *parse_safety;

        if (!str)
                return S_IWUSR | S_IWGRP | S_IWOTH; // 0222: everyone can write

        parsed = strtol(str, & parse_safety, 8); // note, rights are octal
        if (parse_safety != (str + strlen(str)))
                return 0;

        ret = 0;

        // note that R and X are pretty useless, only W makes sense
        if (parsed & 00001) ret |= S_IXOTH;
        if (parsed & 00002) ret |= S_IWOTH;
        if (parsed & 00004) ret |= S_IROTH;
        if (parsed & 00010) ret |= S_IXGRP;
        if (parsed & 00020) ret |= S_IWGRP;
        if (parsed & 00040) ret |= S_IRGRP;
        if (parsed & 00100) ret |= S_IXUSR;
        if (parsed & 00200) ret |= S_IWUSR;
        if (parsed & 00400) ret |= S_IRUSR;
        if (parsed & 01000) ret |= S_ISVTX;
        if (parsed & 02000) ret |= S_ISGID;
        if (parsed & 04000) ret |= S_ISUID;

        if (parsed & ~07777)
                printf("Warning: useless bits in permissions %s!", str);

        return ret;
}

/**
 * @brief Get numerical ids for specified user and group
 * @details Converts user and group strings to proper uid and gid identifiers
 * @param[in] user The new user
 * @param[in] group The new group
 * @param[out] uid The uid for user
 * @param[out] gid The numerical gid for group
 * @return 0 on success, else -errno
 */
int usergr2id(const char *user, const char *group, uid_t *uid, gid_t *gid)
{
        struct passwd pwd, *ppwd;
        struct group  grp, *pgrp;
        int bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);

        assert(user);
        assert(group);

        if (bufsize == -1)
                bufsize = 1024;

        char *const buffer = (char *)alloca(bufsize);

        if (getgrnam_r(user, &grp, buffer, bufsize, &pgrp))
                return -errno;
        if (!pgrp)
                return -ENOENT;

        if (getpwnam_r(group, &pwd, buffer, bufsize, &ppwd))
                return -errno;
        if (!ppwd)
                return -ENOENT;

        *uid = pwd.pw_uid;
        *gid = grp.gr_gid;

        return 0;
}

/**
 * @brief Reset privileges
 * @details Resets privileges to those specified at build-time
 * @return 0 on success, else -errno
 */
int reset_self_privileges()
{
        uid_t uid;
        gid_t gid;

        int r = usergr2id(DLOG_SERVER_USER, DLOG_SERVER_GROUP, &uid, &gid);
        if (r < 0)
                return r;

        if (getegid() != gid && setgid(gid) < 0)
                return -errno;
        if (geteuid() != uid && setuid(uid) < 0)
                return -errno; // should never happen

        return 0;
}