Add CVE-2013-4332 to NEWS.
[glibc.git] / posix / tst-chmod.c
blob237a52d64df4ec641eae4f63768d2d15ac888dda
1 /* Test for chmod functions.
2 Copyright (C) 2000-2013 Free Software Foundation, Inc.
3 This file is part of the GNU C Library.
4 Contributed by Ulrich Drepper <drepper@cygnus.com>, 2000.
6 The GNU C Library is free software; you can redistribute it and/or
7 modify it under the terms of the GNU Lesser General Public
8 License as published by the Free Software Foundation; either
9 version 2.1 of the License, or (at your option) any later version.
11 The GNU C Library is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 Lesser General Public License for more details.
16 You should have received a copy of the GNU Lesser General Public
17 License along with the GNU C Library; if not, see
18 <http://www.gnu.org/licenses/>. */
20 #include <dirent.h>
21 #include <errno.h>
22 #include <error.h>
23 #include <fcntl.h>
24 #include <mcheck.h>
25 #include <stdio.h>
26 #include <stdlib.h>
27 #include <string.h>
28 #include <unistd.h>
29 #include <sys/stat.h>
32 #define OUT_OF_MEMORY \
33 do { \
34 puts ("cannot allocate memory"); \
35 result = 1; \
36 goto fail; \
37 } while (0)
39 static int
40 do_test (int argc, char *argv[])
42 const char *builddir;
43 struct stat64 st1;
44 struct stat64 st2;
45 char *buf;
46 char *testdir;
47 char *testfile = NULL;
48 char *startdir;
49 size_t buflen;
50 int fd;
51 int result = 0;
52 DIR *dir;
54 mtrace ();
56 if (argc <= 1)
57 error (EXIT_FAILURE, 0, "no parameters");
59 /* This is where we will create the test files. */
60 builddir = argv[1];
61 buflen = strlen (builddir) + 50;
63 startdir = getcwd (NULL, 0);
64 if (startdir == NULL)
66 printf ("cannot get current directory: %m\n");
67 exit (EXIT_FAILURE);
70 /* A buffer large enough for everything we need. */
71 buf = (char *) alloca (buflen);
73 /* Create the directory name. */
74 snprintf (buf, buflen, "%s/chmoddirXXXXXX", builddir);
76 if (mkdtemp (buf) == NULL)
78 printf ("cannot create test directory: %m\n");
79 exit (EXIT_FAILURE);
82 if (chmod ("", 0600) == 0)
84 puts ("chmod(\"\", 0600 didn't fail");
85 result = 1;
87 else if (errno != ENOENT)
89 puts ("chmod(\"\",0600) does not set errno to ENOENT");
90 result = 1;
93 /* Create a duplicate. */
94 testdir = strdup (buf);
95 if (testdir == NULL)
96 OUT_OF_MEMORY;
98 if (stat64 (testdir, &st1) != 0)
100 printf ("cannot stat test directory: %m\n");
101 exit (1);
103 if (!S_ISDIR (st1.st_mode))
105 printf ("file not created as directory: %m\n");
106 exit (1);
109 /* We have to wait for a second to make sure the ctime changes. */
110 sleep (1);
112 /* Remove all access rights from the directory. */
113 if (chmod (testdir, 0) != 0)
115 printf ("cannot change mode of test directory: %m\n");
116 result = 1;
117 goto fail;
120 if (stat64 (testdir, &st2) != 0)
122 printf ("cannot stat test directory: %m\n");
123 result = 1;
124 goto fail;
127 /* Compare result. */
128 if ((st2.st_mode & ALLPERMS) != 0)
130 printf ("chmod(...,0) on directory left bits nonzero: %o\n",
131 st2.st_mode & ALLPERMS);
132 result = 1;
134 if (st1.st_ctime >= st2.st_ctime)
136 puts ("chmod(...,0) did not set ctime correctly");
137 result = 1;
140 /* Name of a file in the directory. */
141 snprintf (buf, buflen, "%s/file", testdir);
142 testfile = strdup (buf);
143 if (testfile == NULL)
144 OUT_OF_MEMORY;
146 fd = creat (testfile, 0);
147 if (fd != -1)
149 if (getuid () != 0)
151 puts ("managed to create test file in protected directory");
152 result = 1;
154 close (fd);
156 else if (errno != EACCES)
158 puts ("creat didn't generate correct errno value");
159 result = 1;
162 /* With this mode it still shouldn't be possible to create a file. */
163 if (chmod (testdir, 0600) != 0)
165 printf ("cannot change mode of test directory to 0600: %m\n");
166 result = 1;
167 goto fail;
170 fd = creat (testfile, 0);
171 if (fd != -1)
173 if (getuid () != 0)
175 puts ("managed to create test file in no-x protected directory");
176 result = 1;
178 close (fd);
180 else if (errno != EACCES)
182 puts ("creat didn't generate correct errno value");
183 result = 1;
186 /* Change the directory mode back to allow creating a file. This
187 time with fchmod. */
188 dir = opendir (testdir);
189 if (dir != NULL)
191 if (fchmod (dirfd (dir), 0700) != 0)
193 printf ("cannot change mode of test directory to 0700: %m\n");
194 result = 1;
195 closedir (dir);
196 goto fail;
199 closedir (dir);
201 else
203 printf ("cannot open directory: %m\n");
204 result = 1;
206 if (chmod (testdir, 0700) != 0)
208 printf ("cannot change mode of test directory to 0700: %m\n");
209 goto fail;
213 fd = creat (testfile, 0);
214 if (fd == -1)
216 puts ("still didn't manage to create test file in protected directory");
217 result = 1;
218 goto fail;
220 if (fstat64 (fd, &st1) != 0)
222 printf ("cannot stat new file: %m\n");
223 result = 1;
225 else if ((st1.st_mode & ALLPERMS) != 0)
227 puts ("file not created with access mode 0");
228 result = 1;
230 close (fd);
232 snprintf (buf, buflen, "%s/..", testdir);
233 chdir (buf);
234 /* We are now in the directory above the one we create the test
235 directory in. */
237 sleep (1);
238 snprintf (buf, buflen, "./%s/../%s/file",
239 basename (testdir), basename (testdir));
240 if (chmod (buf, 0600) != 0)
242 printf ("cannot change mode of file to 0600: %m\n");
243 result = 1;
244 goto fail;
246 snprintf (buf, buflen, "./%s//file", basename (testdir));
247 if (stat64 (buf, &st2) != 0)
249 printf ("cannot stat new file: %m\n");
250 result = 1;
252 else if ((st2.st_mode & ALLPERMS) != 0600)
254 puts ("file mode not changed to 0600");
255 result = 1;
257 else if (st1.st_ctime >= st2.st_ctime)
259 puts ("chmod(\".../file\",0600) did not set ctime correctly");
260 result = 1;
263 if (chmod (buf, 0777 | S_ISUID | S_ISGID) != 0)
265 printf ("cannot change mode of file to %o: %m\n",
266 0777 | S_ISUID | S_ISGID);
267 result = 1;
269 if (stat64 (buf, &st2) != 0)
271 printf ("cannot stat test file: %m\n");
272 result = 1;
274 else if ((st2.st_mode & ALLPERMS) != (0777 | S_ISUID | S_ISGID))
276 puts ("file mode not changed to 0777 | S_ISUID | S_ISGID");
277 result = 1;
280 if (chmod (basename (testdir), 0777 | S_ISUID | S_ISGID | S_ISVTX) != 0)
282 printf ("cannot change mode of test directory to %o: %m\n",
283 0777 | S_ISUID | S_ISGID | S_ISVTX);
284 result = 1;
286 if (stat64 (basename (testdir), &st2) != 0)
288 printf ("cannot stat test directory: %m\n");
289 result = 1;
291 else if ((st2.st_mode & ALLPERMS) != (0777 | S_ISUID | S_ISGID | S_ISVTX))
293 puts ("directory mode not changed to 0777 | S_ISUID | S_ISGID | S_ISGID");
294 result = 1;
297 snprintf (buf, buflen, "./%s/no-such-file", basename (testdir));
298 if (chmod (buf, 0600) != -1)
300 puts ("chmod(\".../no-such-file\",0600) did not fail");
301 result = 1;
303 else if (errno != ENOENT)
305 puts ("chmod(\".../no-such-file\",0600) does not set errno to ENOENT");
306 result = 1;
309 snprintf (buf, buflen, "%s/", basename (testdir));
310 if (chmod (basename (testdir), 0677) != 0)
312 printf ("cannot change mode of test directory to 0677: %m\n");
313 result = 1;
315 else
317 snprintf (buf, buflen, "./%s/file", basename (testdir));
318 if (chmod (buf, 0600) == 0)
320 if (getuid () != 0)
322 puts ("chmod(\".../file\") with no-exec directory succeeded");
323 result = 1;
326 else if (errno != EACCES)
328 puts ("chmod(\".../file\") with no-exec directory didn't set EACCES");
329 result = 1;
333 if (chmod (basename (testdir), 0777) != 0)
335 printf ("cannot change mode of test directory to 0777: %m\n");
336 result = 1;
337 goto fail;
340 snprintf (buf, buflen, "%s/file/cannot-be", basename (testdir));
341 if (chmod (buf, 0600) == 0)
343 puts ("chmod(\".../file/cannot-be\",0600) did not fail");
344 result = 1;
346 else if (errno != ENOTDIR)
348 puts ("chmod(\".../file/cannot-be\",0600) does not set errno to ENOTDIR");
349 result = 1;
352 fail:
353 chdir (startdir);
355 /* Remove all the files. */
356 chmod (testdir, 0700);
357 if (testfile != NULL)
359 chmod (testfile, 0700);
360 unlink (testfile);
362 rmdir (testdir);
364 /* Free the resources. */
365 free (testfile);
366 free (testdir);
367 free (startdir);
369 return result;
373 /* We need a few seconds since we have a few sleeps in the code. */
374 #define TIMEOUT 20
377 #include "../test-skeleton.c"