JehanneOS/newlib
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

* grp.cc (getgroups): If `allow_ntsec' is set, use the process token

Browse Source 
information to evaluate the groups list.
This commit is contained in:
Corinna Vinschen 2001-04-16 14:02:42 +00:00
parent 8a3adc99ec
commit c4548fb4fa
2 changed files with 59 additions and 21 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
winsup/cygwin/ChangeLog
View File

@ -1,3 +1,8 @@
Mon Apr 16 16:01:00 2001 Corinna Vinschen <corinna@vinschen.de>
* grp.cc (getgroups): If `allow_ntsec' is set, use the process token
information to evaluate the groups list.
Mon Apr 16 00:08:02 2001 Christopher Faylor <cgf@cygnus.com> Mon Apr 16 00:08:02 2001 Christopher Faylor <cgf@cygnus.com>
* features.h: Remove this file as it is now being supplied by newlib. * features.h: Remove this file as it is now being supplied by newlib.

75
winsup/cygwin/grp.cc
View File

@ -21,6 +21,7 @@ details. */
#include "pinfo.h" #include "pinfo.h"
#include "cygheap.h" #include "cygheap.h"
#include "cygerrno.h" #include "cygerrno.h"
#include "security.h"
/* Read /etc/group only once for better performance. This is done /* Read /etc/group only once for better performance. This is done
on the first call that needs information from it. */ on the first call that needs information from it. */
@ -239,31 +240,63 @@ setgrent ()
int int
getgroups (int gidsetsize, gid_t *grouplist, gid_t gid, const char *username) getgroups (int gidsetsize, gid_t *grouplist, gid_t gid, const char *username)
{ {
HANDLE hToken = NULL;
char buf[4096];
DWORD size;
int cnt = 0;
if (!group_in_memory_p) if (!group_in_memory_p)
read_etc_group(); read_etc_group();
int cnt = 0; if (allow_ntsec &&
OpenProcessToken (hMainProc, TOKEN_QUERY, &hToken) &&
GetTokenInformation (hToken, TokenGroups, buf, 4096, &size))
{
TOKEN_GROUPS *groups = (TOKEN_GROUPS *) buf;
char ssid[256];
for (int i = 0; i < curr_lines; ++i) for (DWORD pg = 0; pg < groups->GroupCount; ++pg)
if (gid == group_buf[i].gr_gid) {
{ convert_sid_to_string_sid (groups->Groups[pg].Sid, ssid);
if (cnt < gidsetsize) for (int gg = 0; gg < curr_lines; ++gg)
grouplist[cnt] = group_buf[i].gr_gid; {
++cnt; if (!strcmp (group_buf[gg].gr_passwd, ssid))
if (gidsetsize && cnt > gidsetsize) {
goto error; if (cnt < gidsetsize)
} grouplist[cnt] = group_buf[gg].gr_gid;
else if (group_buf[i].gr_mem) ++cnt;
for (int gi = 0; group_buf[i].gr_mem[gi]; ++gi) if (gidsetsize && cnt > gidsetsize)
if (strcasematch (username, group_buf[i].gr_mem[gi])) goto error;
{ break;
if (cnt < gidsetsize) }
grouplist[cnt] = group_buf[i].gr_gid; }
++cnt; }
if (gidsetsize && cnt > gidsetsize) CloseHandle (hToken);
goto error; return cnt;
} }
return cnt; else
{
for (int i = 0; i < curr_lines; ++i)
if (gid == group_buf[i].gr_gid)
{
if (cnt < gidsetsize)
grouplist[cnt] = group_buf[i].gr_gid;
++cnt;
if (gidsetsize && cnt > gidsetsize)
goto error;
}
else if (group_buf[i].gr_mem)
for (int gi = 0; group_buf[i].gr_mem[gi]; ++gi)
if (strcasematch (username, group_buf[i].gr_mem[gi]))
{
if (cnt < gidsetsize)
grouplist[cnt] = group_buf[i].gr_gid;
++cnt;
if (gidsetsize && cnt > gidsetsize)
goto error;
}
return cnt;
}
error: error:
set_errno (EINVAL); set_errno (EINVAL);