1 /* euidaccess -- check if effective user id can access file
2 Copyright (C) 1990, 1991 Free Software Foundation, Inc.
4 This program is free software; you can redistribute it and/or modify
5 it under the terms of the GNU General Public License as published by
6 the Free Software Foundation; either version 2, or (at your option)
9 This program is distributed in the hope that it will be useful,
10 but WITHOUT ANY WARRANTY; without even the implied warranty of
11 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 GNU General Public License for more details.
14 You should have received a copy of the GNU General Public License
15 along with this program; if not, write to the Free Software
16 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. */
18 /* Written by David MacKenzie and Torbjorn Granlund. */
24 #include <sys/types.h>
33 #if !defined(NGROUPS_MAX) || NGROUPS_MAX < 1
35 #define NGROUPS_MAX sysconf (_SC_NGROUPS_MAX)
36 #endif /* NGROUPS_MAX */
38 #else /* not _POSIX_VERSION */
43 #include <sys/param.h>
44 #if !defined(NGROUPS_MAX) && defined(NGROUPS)
45 #define NGROUPS_MAX NGROUPS
46 #endif /* not NGROUPS_MAX and NGROUPS */
47 #endif /* not POSIX_VERSION */
54 #if defined(EACCES) && !defined(EACCESS)
55 #define EACCESS EACCES
65 #include "safe-stat.h"
67 /* The user's real user id. */
70 /* The user's real group id. */
73 /* The user's effective user id. */
76 /* The user's effective group id. */
81 /* Nonzero if UID, GID, EUID, and EGID have valid values. */
82 static int have_ids = 0;
84 /* Like euidaccess, except that a pointer to a filled-in stat structure
85 describing the file is provided instead of a filename.
86 Because this function is almost guaranteed to fail on systems that
87 use ACLs, a third argument *PATH may be used. If it is non-NULL,
88 it is assumed to be the name of the file corresponding to STATP.
89 Then, if the user is not running set-uid or set-gid, use access
90 instead of attempting a manual and non-portable comparison. */
93 eaccess_stat (statp, mode, path)
100 mode &= (X_OK | W_OK | R_OK); /* Clear any bogus bits. */
103 return 0; /* The file exists. */
114 if (path && uid == euid && gid == egid)
116 return access (path, mode);
119 /* The super-user can read and write any file, and execute any file
120 that anyone can execute. */
121 if (euid == 0 && ((mode & X_OK) == 0
122 || (statp->st_mode & (S_IXUSR | S_IXGRP | S_IXOTH))))
125 if (euid == statp->st_uid)
126 granted = (unsigned) (statp->st_mode & (mode << 6)) >> 6;
127 else if (egid == statp->st_gid
128 #ifdef HAVE_GETGROUPS
129 || group_member (statp->st_gid)
132 granted = (unsigned) (statp->st_mode & (mode << 3)) >> 3;
134 granted = (statp->st_mode & mode);
141 /* Return 0 if the user has permission of type MODE on file PATH;
142 otherwise, return -1 and set `errno' to EACCESS.
143 Like access, except that it uses the effective user and group
144 id's instead of the real ones, and it does not check for read-only
145 filesystem, text busy, etc. */
148 euidaccess (path, mode)
163 if (uid == euid && gid == egid)
165 return access (path, mode);
168 if (SAFE_STAT (path, &stats))
171 return eaccess_stat (&stats, mode, path);
191 program_name = argv[0];
195 mode = atoi (argv[2]);
197 err = euidaccess (file, mode);
198 printf ("%d\n", err);
200 error (0, errno, "%s", file);