xref: /freebsd/contrib/netbsd-tests/lib/libc/sys/t_chroot.c (revision 0b3105a37d7adcadcb720112fed4dc4e8040be99)
1 /* $NetBSD: t_chroot.c,v 1.1 2011/07/07 06:57:53 jruoho Exp $ */
2 
3 /*-
4  * Copyright (c) 2011 The NetBSD Foundation, Inc.
5  * All rights reserved.
6  *
7  * This code is derived from software contributed to The NetBSD Foundation
8  * by Jukka Ruohonen.
9  *
10  * Redistribution and use in source and binary forms, with or without
11  * modification, are permitted provided that the following conditions
12  * are met:
13  * 1. Redistributions of source code must retain the above copyright
14  *    notice, this list of conditions and the following disclaimer.
15  * 2. Redistributions in binary form must reproduce the above copyright
16  *    notice, this list of conditions and the following disclaimer in the
17  *    documentation and/or other materials provided with the distribution.
18  *
19  * THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS
20  * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
21  * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
22  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS
23  * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
24  * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
25  * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
26  * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
27  * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
28  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
29  * POSSIBILITY OF SUCH DAMAGE.
30  */
31 #include <sys/cdefs.h>
32 __RCSID("$NetBSD: t_chroot.c,v 1.1 2011/07/07 06:57:53 jruoho Exp $");
33 
34 #include <sys/wait.h>
35 
36 #include <atf-c.h>
37 #include <errno.h>
38 #include <fcntl.h>
39 #include <limits.h>
40 #include <pwd.h>
41 #include <stdlib.h>
42 #include <string.h>
43 #include <unistd.h>
44 
45 #ifdef __FreeBSD__
46 #include <sys/stat.h>
47 #endif
48 
49 ATF_TC(chroot_basic);
50 ATF_TC_HEAD(chroot_basic, tc)
51 {
52 	atf_tc_set_md_var(tc, "descr", "A basic test of chroot(2)");
53 	atf_tc_set_md_var(tc, "require.user", "root");
54 }
55 
56 ATF_TC_BODY(chroot_basic, tc)
57 {
58 	char buf[PATH_MAX];
59 	int fd, sta;
60 	pid_t pid;
61 
62 	(void)memset(buf, '\0', sizeof(buf));
63 	(void)getcwd(buf, sizeof(buf));
64 	(void)strlcat(buf, "/dir", sizeof(buf));
65 
66 	ATF_REQUIRE(mkdir(buf, 0500) == 0);
67 	ATF_REQUIRE(chdir(buf) == 0);
68 
69 	pid = fork();
70 	ATF_REQUIRE(pid >= 0);
71 
72 	if (pid == 0) {
73 
74 		if (chroot(buf) != 0)
75 			_exit(EXIT_FAILURE);
76 
77 		errno = 0;
78 
79 		if (chroot("/root") != -1)
80 			_exit(EXIT_FAILURE);
81 
82 		if (errno != ENOENT)
83 			_exit(EXIT_FAILURE);
84 
85 		fd = open("file", O_RDONLY | O_CREAT, 0600);
86 
87 		if (fd < 0)
88 			_exit(EXIT_FAILURE);
89 
90 		if (close(fd) != 0)
91 			_exit(EXIT_FAILURE);
92 
93 		_exit(EXIT_SUCCESS);
94 	}
95 
96 	(void)wait(&sta);
97 
98 	if (WIFEXITED(sta) == 0 || WEXITSTATUS(sta) != EXIT_SUCCESS)
99 		atf_tc_fail("chroot(2) failed");
100 
101 	(void)chdir("/");
102 	(void)strlcat(buf, "/file", sizeof(buf));
103 
104 	fd = open(buf, O_RDONLY);
105 
106 	if (fd < 0)
107 		atf_tc_fail("chroot(2) did not change the root directory");
108 
109 	ATF_REQUIRE(close(fd) == 0);
110 	ATF_REQUIRE(unlink(buf) == 0);
111 }
112 
113 ATF_TC(chroot_err);
114 ATF_TC_HEAD(chroot_err, tc)
115 {
116 	atf_tc_set_md_var(tc, "descr", "Test error conditions of chroot(2)");
117 	atf_tc_set_md_var(tc, "require.user", "root");
118 }
119 
120 ATF_TC_BODY(chroot_err, tc)
121 {
122 	char buf[PATH_MAX + 1];
123 
124 	(void)memset(buf, 'x', sizeof(buf));
125 
126 	errno = 0;
127 	ATF_REQUIRE_ERRNO(ENAMETOOLONG, chroot(buf) == -1);
128 
129 	errno = 0;
130 	ATF_REQUIRE_ERRNO(EFAULT, chroot((void *)-1) == -1);
131 
132 	errno = 0;
133 	ATF_REQUIRE_ERRNO(ENOENT, chroot("/a/b/c/d/e/f/g/h/i/j") == -1);
134 }
135 
136 ATF_TC(chroot_perm);
137 ATF_TC_HEAD(chroot_perm, tc)
138 {
139 	atf_tc_set_md_var(tc, "descr", "Test permissions with chroot(2)");
140 	atf_tc_set_md_var(tc, "require.user", "unprivileged");
141 }
142 
143 ATF_TC_BODY(chroot_perm, tc)
144 {
145 	static char buf[LINE_MAX];
146 	pid_t pid;
147 	int sta;
148 
149 	(void)memset(buf, '\0', sizeof(buf));
150 	ATF_REQUIRE(getcwd(buf, sizeof(buf)) != NULL);
151 
152 	pid = fork();
153 	ATF_REQUIRE(pid >= 0);
154 
155 	if (pid == 0) {
156 
157 		errno = 0;
158 
159 		if (chroot(buf) != -1)
160 			_exit(EXIT_FAILURE);
161 
162 		if (errno != EPERM)
163 			_exit(EXIT_FAILURE);
164 
165 		_exit(EXIT_SUCCESS);
166 	}
167 
168 	(void)wait(&sta);
169 
170 	if (WIFEXITED(sta) == 0 || WEXITSTATUS(sta) != EXIT_SUCCESS)
171 		atf_tc_fail("chroot(2) succeeded as unprivileged user");
172 }
173 
174 #ifdef __NetBSD__
175 ATF_TC(fchroot_basic);
176 ATF_TC_HEAD(fchroot_basic, tc)
177 {
178 	atf_tc_set_md_var(tc, "descr", "A basic test of fchroot(2)");
179 	atf_tc_set_md_var(tc, "require.user", "root");
180 }
181 
182 ATF_TC_BODY(fchroot_basic, tc)
183 {
184 	char buf[PATH_MAX];
185 	int fd, sta;
186 	pid_t pid;
187 
188 	(void)memset(buf, '\0', sizeof(buf));
189 	(void)getcwd(buf, sizeof(buf));
190 	(void)strlcat(buf, "/dir", sizeof(buf));
191 
192 	ATF_REQUIRE(mkdir(buf, 0500) == 0);
193 	ATF_REQUIRE(chdir(buf) == 0);
194 
195 	fd = open(buf, O_RDONLY);
196 	ATF_REQUIRE(fd >= 0);
197 
198 	pid = fork();
199 	ATF_REQUIRE(pid >= 0);
200 
201 	if (pid == 0) {
202 
203 		if (fchroot(fd) != 0)
204 			_exit(EXIT_FAILURE);
205 
206 		if (close(fd) != 0)
207 			_exit(EXIT_FAILURE);
208 
209 		fd = open("file", O_RDONLY | O_CREAT, 0600);
210 
211 		if (fd < 0)
212 			_exit(EXIT_FAILURE);
213 
214 		if (close(fd) != 0)
215 			_exit(EXIT_FAILURE);
216 
217 		_exit(EXIT_SUCCESS);
218 	}
219 
220 	(void)wait(&sta);
221 
222 	if (WIFEXITED(sta) == 0 || WEXITSTATUS(sta) != EXIT_SUCCESS)
223 		atf_tc_fail("fchroot(2) failed");
224 
225 	(void)chdir("/");
226 	(void)strlcat(buf, "/file", sizeof(buf));
227 
228 	fd = open(buf, O_RDONLY);
229 
230 	if (fd < 0)
231 		atf_tc_fail("fchroot(2) did not change the root directory");
232 
233 	ATF_REQUIRE(close(fd) == 0);
234 	ATF_REQUIRE(unlink(buf) == 0);
235 }
236 
237 ATF_TC(fchroot_err);
238 ATF_TC_HEAD(fchroot_err, tc)
239 {
240 	atf_tc_set_md_var(tc, "descr", "Test error conditions of fchroot(2)");
241 	atf_tc_set_md_var(tc, "require.user", "root");
242 }
243 
244 ATF_TC_BODY(fchroot_err, tc)
245 {
246 	int fd;
247 
248 	fd = open("/etc/passwd", O_RDONLY);
249 	ATF_REQUIRE(fd >= 0);
250 
251 	errno = 0;
252 	ATF_REQUIRE_ERRNO(EBADF, fchroot(-1) == -1);
253 
254 	errno = 0;
255 	ATF_REQUIRE_ERRNO(ENOTDIR, fchroot(fd) == -1);
256 
257 	ATF_REQUIRE(close(fd) == 0);
258 }
259 
260 ATF_TC(fchroot_perm);
261 ATF_TC_HEAD(fchroot_perm, tc)
262 {
263 	atf_tc_set_md_var(tc, "descr", "Test permissions with fchroot(2)");
264 	atf_tc_set_md_var(tc, "require.user", "root");
265 }
266 
267 ATF_TC_BODY(fchroot_perm, tc)
268 {
269 	static char buf[LINE_MAX];
270 	struct passwd *pw;
271 	int fd, sta;
272 	pid_t pid;
273 
274 	(void)memset(buf, '\0', sizeof(buf));
275 	ATF_REQUIRE(getcwd(buf, sizeof(buf)) != NULL);
276 
277 	pw = getpwnam("nobody");
278 	fd = open(buf, O_RDONLY);
279 
280 	ATF_REQUIRE(fd >= 0);
281 	ATF_REQUIRE(pw != NULL);
282 
283 	pid = fork();
284 	ATF_REQUIRE(pid >= 0);
285 
286 	if (pid == 0) {
287 
288 		(void)setuid(pw->pw_uid);
289 
290 		errno = 0;
291 
292 		if (fchroot(fd) != -1)
293 			_exit(EXIT_FAILURE);
294 
295 		if (errno != EPERM)
296 			_exit(EXIT_FAILURE);
297 
298 		_exit(EXIT_SUCCESS);
299 	}
300 
301 	(void)wait(&sta);
302 
303 	if (WIFEXITED(sta) == 0 || WEXITSTATUS(sta) != EXIT_SUCCESS)
304 		atf_tc_fail("fchroot(2) succeeded as unprivileged user");
305 }
306 #endif
307 
308 ATF_TP_ADD_TCS(tp)
309 {
310 
311 	ATF_TP_ADD_TC(tp, chroot_basic);
312 	ATF_TP_ADD_TC(tp, chroot_err);
313 	ATF_TP_ADD_TC(tp, chroot_perm);
314 #ifdef __NetBSD__
315 	ATF_TP_ADD_TC(tp, fchroot_basic);
316 	ATF_TP_ADD_TC(tp, fchroot_err);
317 	ATF_TP_ADD_TC(tp, fchroot_perm);
318 #endif
319 
320 	return atf_no_error();
321 }
322