diff options
| -rw-r--r-- | include/debug.h | 3 | ||||
| -rw-r--r-- | lib/env.c | 3 | ||||
| -rw-r--r-- | libmount/src/context.c | 6 | ||||
| -rw-r--r-- | login-utils/chfn.c | 5 | ||||
| -rw-r--r-- | login-utils/chsh.c | 3 | ||||
| -rw-r--r-- | login-utils/su-common.c | 4 | ||||
| -rw-r--r-- | sys-utils/swapon.c | 3 | ||||
| -rw-r--r-- | term-utils/wall.c | 3 | ||||
| -rw-r--r-- | text-utils/more.c | 3 |
9 files changed, 20 insertions, 13 deletions
diff --git a/include/debug.h b/include/debug.h index 15b09d07af..a59de3442b 100644 --- a/include/debug.h +++ b/include/debug.h @@ -36,6 +36,7 @@ #include <stdarg.h> #include <string.h> +#include <sys/auxv.h> // for getauxval() struct ul_debug_maskname { const char *name; @@ -89,7 +90,7 @@ struct ul_debug_maskname { } else \ lib ## _debug_mask = mask; \ if (lib ## _debug_mask) { \ - if (getuid() != geteuid() || getgid() != getegid()) { \ + if (getauxval(AT_SECURE)) { \ lib ## _debug_mask |= __UL_DEBUG_FL_NOADDR; \ fprintf(stderr, "%d: %s: don't print memory addresses (SUID executable).\n", getpid(), # lib); \ } \ @@ -16,6 +16,7 @@ #include <sys/syscall.h> #endif #include <unistd.h> +#include <sys/auxv.h> // for getauxval() #include <sys/types.h> #include "env.h" @@ -260,7 +261,7 @@ void sanitize_env(void) char *safe_getenv(const char *arg) { - if ((getuid() != geteuid()) || (getgid() != getegid())) + if (getauxval(AT_SECURE)) return NULL; #ifdef HAVE_PRCTL if (prctl(PR_GET_DUMPABLE, 0, 0, 0, 0) == 0) diff --git a/libmount/src/context.c b/libmount/src/context.c index 15a8ad3bbd..84e98aa3f0 100644 --- a/libmount/src/context.c +++ b/libmount/src/context.c @@ -42,6 +42,7 @@ #include "match.h" #include <stdarg.h> +#include <sys/auxv.h> // for getauxval() #include <sys/wait.h> #include "mount-api-utils.h" @@ -55,14 +56,13 @@ struct libmnt_context *mnt_new_context(void) { struct libmnt_context *cxt; - uid_t ruid, euid; + uid_t ruid; cxt = calloc(1, sizeof(*cxt)); if (!cxt) return NULL; ruid = getuid(); - euid = geteuid(); mnt_context_reset_status(cxt); @@ -77,7 +77,7 @@ struct libmnt_context *mnt_new_context(void) INIT_LIST_HEAD(&cxt->hooksets_datas); /* if we're really root and aren't running setuid */ - cxt->restricted = (uid_t) 0 == ruid && ruid == euid ? 0 : 1; + cxt->restricted = (uid_t) 0 == ruid && !getauxval(AT_SECURE) ? 0 : 1; cxt->noautofs = 0; diff --git a/login-utils/chfn.c b/login-utils/chfn.c index 7067ffaf27..adfa3d63a8 100644 --- a/login-utils/chfn.c +++ b/login-utils/chfn.c @@ -29,6 +29,7 @@ #include <stdio.h> #include <stdlib.h> #include <string.h> +#include <sys/auxv.h> // for getauxval() #include <sys/types.h> #include <unistd.h> @@ -269,7 +270,7 @@ static void get_login_defs(struct chfn_control *ctl) int broken = 0; /* real root does not have restrictions */ - if (geteuid() == getuid() && getuid() == 0) { + if (!getauxval(AT_SECURE) && getuid() == 0) { ctl->allow_fullname = ctl->allow_room = ctl->allow_work = ctl->allow_home = 1; return; } @@ -449,7 +450,7 @@ int main(int argc, char **argv) #ifdef HAVE_LIBUSER /* If we're setuid and not really root, disallow the password change. */ - if (geteuid() != getuid() && uid != ctl.pw->pw_uid) { + if (getauxval(AT_SECURE) && uid != ctl.pw->pw_uid) { #else if (uid != 0 && uid != ctl.pw->pw_uid) { #endif diff --git a/login-utils/chsh.c b/login-utils/chsh.c index 19f0915348..490d51864d 100644 --- a/login-utils/chsh.c +++ b/login-utils/chsh.c @@ -29,6 +29,7 @@ #include <stdio.h> #include <stdlib.h> #include <string.h> +#include <sys/auxv.h> // for getauxval() #include <sys/types.h> #include <unistd.h> @@ -243,7 +244,7 @@ int main(int argc, char **argv) /* reality check */ #ifdef HAVE_LIBUSER /* If we're setuid and not really root, disallow the password change. */ - if (geteuid() != getuid() && uid != pw->pw_uid) { + if (getauxval(AT_SECURE) && uid != pw->pw_uid) { #else if (uid != 0 && uid != pw->pw_uid) { #endif diff --git a/login-utils/su-common.c b/login-utils/su-common.c index cf10caa6f4..2df10ee312 100644 --- a/login-utils/su-common.c +++ b/login-utils/su-common.c @@ -23,6 +23,7 @@ */ #include <stdio.h> #include <getopt.h> +#include <sys/auxv.h> // for getauxval() #include <sys/types.h> #include <pwd.h> #include <grp.h> @@ -939,10 +940,9 @@ static void load_config(void *data) static int is_not_root(void) { const uid_t ruid = getuid(); - const uid_t euid = geteuid(); /* if we're really root and aren't running setuid */ - return (uid_t) 0 == ruid && ruid == euid ? 0 : 1; + return (uid_t) 0 == ruid && !getauxval(AT_SECURE) ? 0 : 1; } /* Don't rely on PAM and reset the most important limits. */ diff --git a/sys-utils/swapon.c b/sys-utils/swapon.c index c761b85d0e..0a8c40407d 100644 --- a/sys-utils/swapon.c +++ b/sys-utils/swapon.c @@ -20,6 +20,7 @@ #include <errno.h> #include <sys/stat.h> #include <unistd.h> +#include <sys/auxv.h> // for getauxval() #include <sys/types.h> #include <sys/wait.h> #include <fcntl.h> @@ -348,7 +349,7 @@ static int swap_reinitialize(struct swap_device *dev) return -1; case 0: /* child */ - if (geteuid() != getuid() && drop_permissions() != 0) + if (getauxval(AT_SECURE) && drop_permissions() != 0) exit(EXIT_FAILURE); cmd[idx++] = "mkswap"; diff --git a/term-utils/wall.c b/term-utils/wall.c index 22c3918bb3..fbd8e54fbe 100644 --- a/term-utils/wall.c +++ b/term-utils/wall.c @@ -42,6 +42,7 @@ * */ +#include <sys/auxv.h> // for getauxval() #include <sys/param.h> #include <sys/stat.h> #include <sys/time.h> @@ -414,7 +415,7 @@ static char *makemsg(char *fname, char **mvec, int mvecsz, * instead of "wall file". */ uid_t uid = getuid(); - if (uid && (uid != geteuid() || getgid() != getegid())) + if (uid && getauxval(AT_SECURE)) errx(EXIT_FAILURE, _("will not read %s - use stdin."), fname); diff --git a/text-utils/more.c b/text-utils/more.c index 1ddfcaa4ce..22f01ba24a 100644 --- a/text-utils/more.c +++ b/text-utils/more.c @@ -50,6 +50,7 @@ #include <unistd.h> #include <stdlib.h> #include <stdarg.h> +#include <sys/auxv.h> // for getauxval() #include <sys/param.h> #include <ctype.h> #include <signal.h> @@ -1273,7 +1274,7 @@ static void __attribute__((__format__ (__printf__, 3, 4))) } va_end(argp); - if ((geteuid() != getuid() || getegid() != getgid()) + if (getauxval(AT_SECURE) && drop_permissions() != 0) err(EXIT_FAILURE, _("drop permissions failed")); |