5 * Author: Corinna Vinschen <vinschen@cygnus.com>
7 * Copyright (c) 2000 Corinna Vinschen <vinschen@cygnus.com>, Duisburg, Germany
10 * Created: Sat Sep 02 12:17:00 2000 cv
12 * This file contains functions for forcing opened file descriptors to
13 * binary mode on Windows systems.
24 #include <sys/utsname.h>
27 #define is_winnt (GetVersion() < 0x80000000)
29 #define ntsec_on(c) ((c) && strstr((c),"ntsec") && !strstr((c),"nontsec"))
30 #define ntea_on(c) ((c) && strstr((c),"ntea") && !strstr((c),"nontea"))
32 #if defined(open) && open == binary_open
35 #if defined(pipe) && open == binary_pipe
39 int binary_open(const char *filename, int flags, ...)
45 mode = va_arg(ap, mode_t);
47 return open(filename, flags | O_BINARY, mode);
50 int binary_pipe(int fd[2])
55 setmode (fd[0], O_BINARY);
56 setmode (fd[1], O_BINARY);
61 int check_nt_auth(int pwd_authenticated, uid_t uid)
64 * The only authentication which is able to change the user
65 * context on NT systems is the password authentication. So
66 * we deny all requsts for changing the user context if another
67 * authentication method is used.
69 * This doesn't apply to Cygwin versions >= 1.3.2 anymore which
70 * uses the undocumented NtCreateToken() call to create a user
71 * token if the process has the appropriate privileges and if
72 * CYGWIN ntsec setting is on.
74 static int has_create_token = -1;
77 if (has_create_token < 0) {
79 int major_high = 0, major_low = 0, minor = 0;
80 char *cygwin = getenv("CYGWIN");
83 if (ntsec_on(cygwin) && !uname(&uts)) {
84 sscanf(uts.release, "%d.%d.%d",
85 &major_high, &major_low, &minor);
87 (major_high == 1 && (major_low > 3 ||
88 (major_low == 3 && minor >= 2))))
92 if (has_create_token < 1 &&
93 !pwd_authenticated && geteuid() != uid)
99 int check_ntsec(const char *filename)
104 struct statfs fsstat;
106 /* Windows 95/98/ME don't support file system security at all. */
110 /* Evaluate current CYGWIN settings. */
111 cygwin = getenv("CYGWIN");
112 allow_ntea = ntea_on(cygwin);
113 allow_ntsec = ntsec_on(cygwin);
116 * `ntea' is an emulation of POSIX attributes. It doesn't support
117 * real file level security as ntsec on NTFS file systems does
118 * but it supports FAT filesystems. `ntea' is minimum requirement
119 * for security checks.
125 * Retrieve file system flags. In Cygwin, file system flags are
126 * copied to f_type which has no meaning in Win32 itself.
128 if (statfs(filename, &fsstat))
132 * Only file systems supporting ACLs are able to set permissions.
133 * `ntsec' is the setting in Cygwin which switches using of NTFS
134 * ACLs to support POSIX permissions on files.
136 if (fsstat.f_type & FS_PERSISTENT_ACLS)
142 #endif /* HAVE_CYGWIN */