[openssh.git] / cygwin_util.c

/*
 *
 * cygwin_util.c
 *
 * Author: Corinna Vinschen <vinschen@cygnus.com>
 *
 * Copyright (c) 2000 Corinna Vinschen <vinschen@cygnus.com>, Duisburg, Germany
 *                    All rights reserved
 *
 * Created: Sat Sep 02 12:17:00 2000 cv
 *
 * This file contains functions for forcing opened file descriptors to
 * binary mode on Windows systems.
 */

#include "config.h"

#ifdef HAVE_CYGWIN

#include <fcntl.h>
#include <io.h>
#include <stdlib.h>
#include <sys/vfs.h>
#include <windows.h>
#define is_winnt       (GetVersion() < 0x80000000)

int binary_open(const char *filename, int flags, mode_t mode)
{
	return open(filename, flags | O_BINARY, mode);
}

int binary_pipe(int fd[2])
{
	int ret = pipe(fd);

	if (!ret) {
		setmode (fd[0], O_BINARY);
		setmode (fd[1], O_BINARY);
	}
	return ret;
}

int check_nt_auth(int pwd_authenticated, uid_t uid)
{
	/*
	* The only authentication which is able to change the user
	* context on NT systems is the password authentication. So
	* we deny all requsts for changing the user context if another
	* authentication method is used.
	* This may change in future when a special openssh
	* subauthentication package is available.
	*/
	if (is_winnt && !pwd_authenticated && geteuid() != uid)
		return 0;
	
	return 1;
}

int check_ntsec(const char *filename)
{
	char *cygwin;
	int allow_ntea = 0;
	int allow_ntsec = 0;
	struct statfs fsstat;

	/* Windows 95/98/ME don't support file system security at all. */
	if (!is_winnt)
		return 0;

	/* Evaluate current CYGWIN settings. */
	if ((cygwin = getenv("CYGWIN")) != NULL) {
		if (strstr(cygwin, "ntea") && !strstr(cygwin, "nontea"))
			allow_ntea = 1;
		if (strstr(cygwin, "ntsec") && !strstr(cygwin, "nontsec"))
			allow_ntsec = 1;
	}

	/*
	 * `ntea' is an emulation of POSIX attributes. It doesn't support
	 * real file level security as ntsec on NTFS file systems does
	 * but it supports FAT filesystems. `ntea' is minimum requirement
	 * for security checks.
	 */
	if (allow_ntea)
		return 1;

	/*
	 * Retrieve file system flags. In Cygwin, file system flags are
	 * copied to f_type which has no meaning in Win32 itself.
	 */
	if (statfs(filename, &fsstat))
		return 1;

	/*
	 * Only file systems supporting ACLs are able to set permissions.
	 * `ntsec' is the setting in Cygwin which switches using of NTFS
	 * ACLs to support POSIX permissions on files.
	 */
	if (fsstat.f_type & FS_PERSISTENT_ACLS)
		return allow_ntsec;

	return 0;
}

#endif /* HAVE_CYGWIN */
Commit	Line	Data
3c62e7eb	1	/*
	2	*
	3	* cygwin_util.c
	4	*
	5	* Author: Corinna Vinschen <vinschen@cygnus.com>
	6	*
	7	* Copyright (c) 2000 Corinna Vinschen <vinschen@cygnus.com>, Duisburg, Germany
	8	* All rights reserved
	9	*
	10	* Created: Sat Sep 02 12:17:00 2000 cv
	11	*
	12	* This file contains functions for forcing opened file descriptors to
	13	* binary mode on Windows systems.
	14	*/
	15
	16	#include "config.h"
	17
	18	#ifdef HAVE_CYGWIN
2f125ca1	19
3c62e7eb	20	#include <fcntl.h>
3c62e7eb	21	#include <io.h>
9cd45ea4	22	#include <stdlib.h>
	23	#include <sys/vfs.h>
	24	#include <windows.h>
	25	#define is_winnt (GetVersion() < 0x80000000)
3c62e7eb	26
	27	int binary_open(const char *filename, int flags, mode_t mode)
	28	{
2f125ca1	29	return open(filename, flags \| O_BINARY, mode);
3c62e7eb	30	}
	31
	32	int binary_pipe(int fd[2])
	33	{
2f125ca1	34	int ret = pipe(fd);
	35
	36	if (!ret) {
	37	setmode (fd[0], O_BINARY);
	38	setmode (fd[1], O_BINARY);
	39	}
	40	return ret;
9cd45ea4	41	}
9cd45ea4	42
2f125ca1	43	int check_nt_auth(int pwd_authenticated, uid_t uid)
9cd45ea4	44	{
9cd45ea4	45	/*
2f125ca1	46	* The only authentication which is able to change the user
	47	* context on NT systems is the password authentication. So
	48	* we deny all requsts for changing the user context if another
	49	* authentication method is used.
	50	* This may change in future when a special openssh
	51	* subauthentication package is available.
	52	*/
9cd45ea4	53	if (is_winnt && !pwd_authenticated && geteuid() != uid)
9cd45ea4	54	return 0;
2f125ca1	55
9cd45ea4	56	return 1;
	57	}
	58
2f125ca1	59	int check_ntsec(const char *filename)
9cd45ea4	60	{
	61	char *cygwin;
	62	int allow_ntea = 0;
	63	int allow_ntsec = 0;
	64	struct statfs fsstat;
	65
	66	/* Windows 95/98/ME don't support file system security at all. */
	67	if (!is_winnt)
	68	return 0;
	69
	70	/* Evaluate current CYGWIN settings. */
	71	if ((cygwin = getenv("CYGWIN")) != NULL) {
	72	if (strstr(cygwin, "ntea") && !strstr(cygwin, "nontea"))
	73	allow_ntea = 1;
	74	if (strstr(cygwin, "ntsec") && !strstr(cygwin, "nontsec"))
	75	allow_ntsec = 1;
	76	}
	77
	78	/*
	79	* `ntea' is an emulation of POSIX attributes. It doesn't support
	80	* real file level security as ntsec on NTFS file systems does
	81	* but it supports FAT filesystems. `ntea' is minimum requirement
	82	* for security checks.
	83	*/
	84	if (allow_ntea)
	85	return 1;
	86
	87	/*
	88	* Retrieve file system flags. In Cygwin, file system flags are
	89	* copied to f_type which has no meaning in Win32 itself.
	90	*/
	91	if (statfs(filename, &fsstat))
	92	return 1;
	93
	94	/*
	95	* Only file systems supporting ACLs are able to set permissions.
	96	* `ntsec' is the setting in Cygwin which switches using of NTFS
	97	* ACLs to support POSIX permissions on files.
	98	*/
	99	if (fsstat.f_type & FS_PERSISTENT_ACLS)
	100	return allow_ntsec;
	101
	102	return 0;
3c62e7eb	103	}
2f125ca1	104
2f125ca1	105	#endif /* HAVE_CYGWIN */