| blob | 7c78f66b78ae9c7bde448539bca3ba2450d75f93 |
1 /* $NetBSD: test.c,v 1.36 2008/06/20 23:29:36 christos Exp $ */
3 /*
4 * test(1); version 7-like -- author Erik Baalbergen
5 * modified by Eric Gisin to be used as built-in.
6 * modified by Arnold Robbins to add SVR3 compatibility
7 * (-x -c -b -p -u -g -k) plus Korn's -L -nt -ot -ef and new -S (socket).
8 * modified by J.T. Conklin for NetBSD.
9 *
10 * This program is in the Public Domain.
11 */
13 #include <sys/cdefs.h>
14 #ifndef lint
16 #endif
18 #include <sys/stat.h>
19 #include <sys/types.h>
21 #include <ctype.h>
22 #include <err.h>
23 #include <errno.h>
24 #include <limits.h>
25 #include <locale.h>
26 #include <stdio.h>
27 #include <stdlib.h>
28 #include <string.h>
29 #include <unistd.h>
30 #include <stdarg.h>
32 /* test(1) accepts the following grammar:
33 oexpr ::= aexpr | aexpr "-o" oexpr ;
34 aexpr ::= nexpr | nexpr "-a" aexpr ;
35 nexpr ::= primary | "!" primary
36 primary ::= unary-operator operand
37 | operand binary-operator operand
38 | operand
39 | "(" oexpr ")"
40 ;
41 unary-operator ::= "-r"|"-w"|"-x"|"-f"|"-d"|"-c"|"-b"|"-p"|
42 "-u"|"-g"|"-k"|"-s"|"-t"|"-z"|"-n"|"-o"|"-O"|"-G"|"-L"|"-S";
44 binary-operator ::= "="|"!="|"-eq"|"-ne"|"-ge"|"-gt"|"-le"|"-lt"|
45 "-nt"|"-ot"|"-ef";
46 operand ::= <any legal UNIX file name>
47 */
50 EOI,
51 FILRD,
52 FILWR,
53 FILEX,
54 FILEXIST,
55 FILREG,
56 FILDIR,
57 FILCDEV,
58 FILBDEV,
59 FILFIFO,
60 FILSOCK,
61 FILSYM,
62 FILGZ,
63 FILTT,
64 FILSUID,
65 FILSGID,
66 FILSTCK,
67 FILNT,
68 FILOT,
69 FILEQ,
70 FILUID,
71 FILGID,
72 STREZ,
73 STRNZ,
74 STREQ,
75 STRNE,
76 STRLT,
77 STRGT,
78 INTEQ,
79 INTNE,
80 INTGE,
81 INTGT,
82 INTLE,
83 INTLT,
84 UNOT,
85 BAND,
86 BOR,
87 LPAREN,
88 RPAREN,
89 OPERAND
90 };
93 UNOP,
94 BINOP,
95 BUNOP,
96 BBINOP,
97 PAREN
98 };
103 };
112 };
116 };
128 };
154 };
174 #if defined(SHELL)
177 #else
180 static void
182 {
187 /*NOTREACHED*/
189 }
194 {
200 }
201 #endif
203 #ifdef SHELL
206 int
208 #else
211 int
213 #endif
214 {
218 #ifdef SHELL
220 #else
224 #endif
229 }
241 }
243 static void
245 {
249 else
251 }
253 static int
255 {
263 t_wp--;
265 }
267 static int
269 {
277 t_wp--;
279 }
281 static int
283 {
288 }
290 static int
292 {
305 }
307 /* unary expression */
319 }
320 }
324 }
327 }
329 static int
331 {
371 /* NOTREACHED */
372 }
373 }
375 /*
376 * The manual, and IEEE POSIX 1003.2, suggests this should check the mode bits,
377 * not use access():
378 *
379 * True shall indicate only that the write flag is on. The file is not
380 * writable on a read-only file system even if this test indicates true.
381 *
382 * Unfortunately IEEE POSIX 1003.1-2001, as quoted in SuSv3, says only:
383 *
384 * True shall indicate that permission to read from file will be granted,
385 * as defined in "File Read, Write, and Creation".
386 *
387 * and that section says:
388 *
389 * When a file is to be read or written, the file shall be opened with an
390 * access mode corresponding to the operation to be performed. If file
391 * access permissions deny access, the requested operation shall fail.
392 *
393 * and of course access permissions are described as one might expect:
394 *
395 * * If a process has the appropriate privilege:
396 *
397 * * If read, write, or directory search permission is requested,
398 * access shall be granted.
399 *
400 * * If execute permission is requested, access shall be granted if
401 * execute permission is granted to at least one user by the file
402 * permission bits or by an alternate access control mechanism;
403 * otherwise, access shall be denied.
404 *
405 * * Otherwise:
406 *
407 * * The file permission bits of a file contain read, write, and
408 * execute/search permissions for the file owner class, file group
409 * class, and file other class.
410 *
411 * * Access shall be granted if an alternate access control mechanism
412 * is not enabled and the requested access permission bit is set for
413 * the class (file owner class, file group class, or file other class)
414 * to which the process belongs, or if an alternate access control
415 * mechanism is enabled and it allows the requested access; otherwise,
416 * access shall be denied.
417 *
418 * and when I first read this I thought: surely we can't go about using
419 * open(O_WRONLY) to try this test! However the POSIX 1003.1-2001 Rationale
420 * section for test does in fact say:
421 *
422 * On historical BSD systems, test -w directory always returned false
423 * because test tried to open the directory for writing, which always
424 * fails.
425 *
426 * and indeed this is in fact true for Seventh Edition UNIX, UNIX 32V, and UNIX
427 * System III, and thus presumably also for BSD up to and including 4.3.
428 *
429 * Secondly I remembered why using open() and/or access() are bogus. They
430 * don't work right for detecting read and write permissions bits when called
431 * by root.
432 *
433 * Interestingly the 'test' in 4.4BSD was closer to correct (as per
434 * 1003.2-1992) and it was implemented efficiently with stat() instead of
435 * open().
436 *
437 * This was apparently broken in NetBSD around about 1994/06/30 when the old
438 * 4.4BSD implementation was replaced with a (arguably much better coded)
439 * implementation derived from pdksh.
440 *
441 * Note that modern pdksh is yet different again, but still not correct, at
442 * least not w.r.t. 1003.2-1992.
443 *
444 * As I think more about it and read more of the related IEEE docs I don't like
445 * that wording about 'test -r' and 'test -w' in 1003.1-2001 at all. I very
446 * much prefer the original wording in 1003.2-1992. It is much more useful,
447 * and so that's what I've implemented.
448 *
449 * (Note that a strictly conforming implementation of 1003.1-2001 is in fact
450 * totally useless for the case in question since its 'test -w' and 'test -r'
451 * can never fail for root for any existing files, i.e. files for which 'test
452 * -e' succeeds.)
453 *
454 * The rationale for 1003.1-2001 suggests that the wording was "clarified" in
455 * 1003.1-2001 to align with the 1003.2b draft. 1003.2b Draft 12 (July 1999),
456 * which is the latest copy I have, does carry the same suggested wording as is
457 * in 1003.1-2001, with its rationale saying:
458 *
459 * This change is a clarification and is the result of interpretation
460 * request PASC 1003.2-92 #23 submitted for IEEE Std 1003.2-1992.
461 *
462 * That interpretation can be found here:
463 *
464 * http://www.pasc.org/interps/unofficial/db/p1003.2/pasc-1003.2-23.html
465 *
466 * Not terribly helpful, unfortunately. I wonder who that fence sitter was.
467 *
468 * Worse, IMVNSHO, I think the authors of 1003.2b-D12 have mis-interpreted the
469 * PASC interpretation and appear to be gone against at least one widely used
470 * implementation (namely 4.4BSD). The problem is that for file access by root
471 * this means that if test '-r' and '-w' are to behave as if open() were called
472 * then there's no way for a shell script running as root to check if a file
473 * has certain access bits set other than by the grotty means of interpreting
474 * the output of 'ls -l'. This was widely considered to be a bug in V7's
475 * "test" and is, I believe, one of the reasons why direct use of access() was
476 * avoided in some more recent implementations!
477 *
478 * I have always interpreted '-r' to match '-w' and '-x' as per the original
479 * wording in 1003.2-1992, not the other way around. I think 1003.2b goes much
480 * too far the wrong way without any valid rationale and that it's best if we
481 * stick with 1003.2-1992 and test the flags, and not mimic the behaviour of
482 * open() since we already know very well how it will work -- existance of the
483 * file is all that matters to open() for root.
484 *
485 * Unfortunately the SVID is no help at all (which is, I guess, partly why
486 * we're in this mess in the first place :-).
487 *
488 * The SysV implementation (at least in the 'test' builtin in /bin/sh) does use
489 * access(name, 2) even though it also goes to much greater lengths for '-x'
490 * matching the 1003.2-1992 definition (which is no doubt where that definition
491 * came from).
492 *
493 * The ksh93 implementation uses access() for '-r' and '-w' if
494 * (euid==uid&&egid==gid), but uses st_mode for '-x' iff running as root.
495 * i.e. it does strictly conform to 1003.1-2001 (and presumably 1003.2b).
496 */
497 static int
499 {
502 uid_t euid;
505 /*
506 * I suppose we could use access() if not running as root and if we are
507 * running with ((euid == uid) && (egid == gid)), but we've already
508 * done the stat() so we might as well just test the permissions
509 * directly instead of asking the kernel to do it....
510 */
519 /* XXX stolen almost verbatim from ksh93.... */
520 /* on some systems you can be in several groups */
529 }
530 }
532 }
535 }
537 static int
539 {
582 }
583 }
585 #define VTOC(x) (const unsigned char *)((const struct t_op *)x)->op_text
587 static int
589 {
594 }
596 static int
598 {
604 }
608 {
617 else
623 compare1);
626 else
628 }
629 }
631 static enum token
633 {
639 }
646 }
647 }
650 }
652 static int
654 {
665 }
667 /* atoi with error detection */
668 static long long
670 {
682 p++;
688 }
690 static int
692 {
698 }
700 static int
702 {
708 }
710 static int
712 {
719 }