// SPDX-License-Identifier: GPL-2.0-or-later /* * Copyright (c) Linux Test Project, 2001-2021 * Copyright (c) International Business Machines Corp., 2001 * 07/2001 Ported by Wayne Boyer */ /*\ * [Description] * * Verify that, fchown(2) succeeds to change the group of a file specified * by path when called by non-root user with the following constraints: * * - euid of the process is equal to the owner of the file * - the intended gid is either egid, or one of the supplementary gids * of the process. * * Also verify that fchown() clears the setuid/setgid bits set on the file. */ #include #include #include #include #include #include "tst_test.h" #include "compat_tst_16.h" #define FILE_MODE (S_IFREG|S_IRUSR|S_IWUSR|S_IRGRP|S_IROTH) #define NEW_PERMS (S_IFREG|S_IRWXU|S_IRWXG|S_ISUID|S_ISGID) #define FILENAME "fchown03_testfile" static int fd; static struct passwd *ltpuser; static void check_owner(struct stat *s, uid_t exp_uid, gid_t exp_gid) { if (s->st_uid != exp_uid || s->st_gid != exp_gid) tst_res(TFAIL, "%s: wrong owner set to (uid=%d, gid=%d), expected (uid=%d, gid=%d)", FILENAME, s->st_uid, s->st_gid, exp_uid, exp_gid); } static void check_mode(struct stat *s, mode_t exp_mode) { if (s->st_mode != exp_mode) tst_res(TFAIL, "%s: wrong mode permissions %#o, expected %#o", FILENAME, s->st_mode, exp_mode); } static void run(void) { uid_t uid; gid_t gid; struct stat stat_buf; SAFE_SETEUID(0); SAFE_FCHOWN(fd, -1, 0); SAFE_FCHMOD(fd, NEW_PERMS); SAFE_SETEUID(ltpuser->pw_uid); UID16_CHECK((uid = geteuid()), "fchown"); GID16_CHECK((gid = getegid()), "fchown"); SAFE_STAT(FILENAME, &stat_buf); check_owner(&stat_buf, uid, 0); check_mode(&stat_buf, NEW_PERMS); TST_EXP_PASS(FCHOWN(fd, -1, gid), "fchown(fd, %d, %d)", -1, gid); SAFE_STAT(FILENAME, &stat_buf); check_owner(&stat_buf, uid, gid); check_mode(&stat_buf, NEW_PERMS & ~(S_ISUID | S_ISGID)); } static void setup(void) { ltpuser = SAFE_GETPWNAM("nobody"); SAFE_SETEGID(ltpuser->pw_gid); SAFE_SETEUID(ltpuser->pw_uid); fd = SAFE_OPEN(FILENAME, O_RDWR | O_CREAT, FILE_MODE); } static void cleanup(void) { SAFE_SETEGID(0); SAFE_SETEUID(0); if (fd > 0) SAFE_CLOSE(fd); } static struct tst_test test = { .needs_root = 1, .needs_tmpdir = 1, .setup = setup, .cleanup = cleanup, .test_all = run, };