[openssh.git] / openbsd-compat / bsd-cygwin_util.c

/*
 *
 * cygwin_util.c
 *
 * Author: Corinna Vinschen <vinschen@cygnus.com>
 *
 * Copyright (c) 2000 Corinna Vinschen <vinschen@cygnus.com>, Duisburg, Germany
 *                    All rights reserved
 *
 * Created: Sat Sep 02 12:17:00 2000 cv
 *
 * This file contains functions for forcing opened file descriptors to
 * binary mode on Windows systems.
 */

#include "includes.h"

RCSID("$Id$");

#ifdef HAVE_CYGWIN

#include <fcntl.h>
#include <stdlib.h>
#include <sys/vfs.h>
#include <windows.h>
#define is_winnt       (GetVersion() < 0x80000000)

#if defined(open) && open == binary_open
# undef open
#endif
#if defined(pipe) && open == binary_pipe
# undef pipe
#endif

int binary_open(const char *filename, int flags, ...)
{
	va_list ap;
	mode_t mode;
	
	va_start(ap, flags);
	mode = va_arg(ap, mode_t);
	va_end(ap);
	return open(filename, flags | O_BINARY, mode);
}

int binary_pipe(int fd[2])
{
	int ret = pipe(fd);

	if (!ret) {
		setmode (fd[0], O_BINARY);
		setmode (fd[1], O_BINARY);
	}
	return ret;
}

int check_nt_auth(int pwd_authenticated, uid_t uid)
{
	/*
	* The only authentication which is able to change the user
	* context on NT systems is the password authentication. So
	* we deny all requsts for changing the user context if another
	* authentication method is used.
	* This may change in future when a special openssh
	* subauthentication package is available.
	*/
	if (is_winnt && !pwd_authenticated && geteuid() != uid)
		return 0;
	
	return 1;
}

int check_ntsec(const char *filename)
{
	char *cygwin;
	int allow_ntea = 0;
	int allow_ntsec = 0;
	struct statfs fsstat;

	/* Windows 95/98/ME don't support file system security at all. */
	if (!is_winnt)
		return 0;

	/* Evaluate current CYGWIN settings. */
	if ((cygwin = getenv("CYGWIN")) != NULL) {
		if (strstr(cygwin, "ntea") && !strstr(cygwin, "nontea"))
			allow_ntea = 1;
		if (strstr(cygwin, "ntsec") && !strstr(cygwin, "nontsec"))
			allow_ntsec = 1;
	}

	/*
	 * `ntea' is an emulation of POSIX attributes. It doesn't support
	 * real file level security as ntsec on NTFS file systems does
	 * but it supports FAT filesystems. `ntea' is minimum requirement
	 * for security checks.
	 */
	if (allow_ntea)
		return 1;

	/*
	 * Retrieve file system flags. In Cygwin, file system flags are
	 * copied to f_type which has no meaning in Win32 itself.
	 */
	if (statfs(filename, &fsstat))
		return 1;

	/*
	 * Only file systems supporting ACLs are able to set permissions.
	 * `ntsec' is the setting in Cygwin which switches using of NTFS
	 * ACLs to support POSIX permissions on files.
	 */
	if (fsstat.f_type & FS_PERSISTENT_ACLS)
		return allow_ntsec;

	return 0;
}

#endif /* HAVE_CYGWIN */
Commit	Line	Data
3c62e7eb	1	/*
	2	*
	3	* cygwin_util.c
	4	*
	5	* Author: Corinna Vinschen <vinschen@cygnus.com>
	6	*
	7	* Copyright (c) 2000 Corinna Vinschen <vinschen@cygnus.com>, Duisburg, Germany
	8	* All rights reserved
	9	*
	10	* Created: Sat Sep 02 12:17:00 2000 cv
	11	*
	12	* This file contains functions for forcing opened file descriptors to
	13	* binary mode on Windows systems.
	14	*/
	15
0b202697	16	#include "includes.h"
	17
	18	RCSID("$Id$");
3c62e7eb	19
3c62e7eb	20	#ifdef HAVE_CYGWIN
2f125ca1	21
3c62e7eb	22	#include <fcntl.h>
9cd45ea4	23	#include <stdlib.h>
	24	#include <sys/vfs.h>
	25	#include <windows.h>
	26	#define is_winnt (GetVersion() < 0x80000000)
3c62e7eb	27
58e7f038	28	#if defined(open) && open == binary_open
	29	# undef open
	30	#endif
	31	#if defined(pipe) && open == binary_pipe
	32	# undef pipe
	33	#endif
	34
	35	int binary_open(const char *filename, int flags, ...)
3c62e7eb	36	{
58e7f038	37	va_list ap;
	38	mode_t mode;
	39
	40	va_start(ap, flags);
	41	mode = va_arg(ap, mode_t);
	42	va_end(ap);
2f125ca1	43	return open(filename, flags \| O_BINARY, mode);
3c62e7eb	44	}
	45
	46	int binary_pipe(int fd[2])
	47	{
2f125ca1	48	int ret = pipe(fd);
	49
	50	if (!ret) {
	51	setmode (fd[0], O_BINARY);
	52	setmode (fd[1], O_BINARY);
	53	}
	54	return ret;
9cd45ea4	55	}
9cd45ea4	56
2f125ca1	57	int check_nt_auth(int pwd_authenticated, uid_t uid)
9cd45ea4	58	{
9cd45ea4	59	/*
2f125ca1	60	* The only authentication which is able to change the user
	61	* context on NT systems is the password authentication. So
	62	* we deny all requsts for changing the user context if another
	63	* authentication method is used.
	64	* This may change in future when a special openssh
	65	* subauthentication package is available.
	66	*/
9cd45ea4	67	if (is_winnt && !pwd_authenticated && geteuid() != uid)
9cd45ea4	68	return 0;
2f125ca1	69
9cd45ea4	70	return 1;
	71	}
	72
2f125ca1	73	int check_ntsec(const char *filename)
9cd45ea4	74	{
	75	char *cygwin;
	76	int allow_ntea = 0;
	77	int allow_ntsec = 0;
	78	struct statfs fsstat;
	79
	80	/* Windows 95/98/ME don't support file system security at all. */
	81	if (!is_winnt)
	82	return 0;
	83
	84	/* Evaluate current CYGWIN settings. */
	85	if ((cygwin = getenv("CYGWIN")) != NULL) {
	86	if (strstr(cygwin, "ntea") && !strstr(cygwin, "nontea"))
	87	allow_ntea = 1;
	88	if (strstr(cygwin, "ntsec") && !strstr(cygwin, "nontsec"))
	89	allow_ntsec = 1;
	90	}
	91
	92	/*
	93	* `ntea' is an emulation of POSIX attributes. It doesn't support
	94	* real file level security as ntsec on NTFS file systems does
	95	* but it supports FAT filesystems. `ntea' is minimum requirement
	96	* for security checks.
	97	*/
	98	if (allow_ntea)
	99	return 1;
	100
	101	/*
	102	* Retrieve file system flags. In Cygwin, file system flags are
	103	* copied to f_type which has no meaning in Win32 itself.
	104	*/
	105	if (statfs(filename, &fsstat))
	106	return 1;
	107
	108	/*
	109	* Only file systems supporting ACLs are able to set permissions.
	110	* `ntsec' is the setting in Cygwin which switches using of NTFS
	111	* ACLs to support POSIX permissions on files.
	112	*/
	113	if (fsstat.f_type & FS_PERSISTENT_ACLS)
	114	return allow_ntsec;
	115
	116	return 0;
3c62e7eb	117	}
2f125ca1	118
2f125ca1	119	#endif /* HAVE_CYGWIN */