1*49cdfc7eSAndroid Build Coastguard Worker // SPDX-License-Identifier: GPL-2.0-or-later
2*49cdfc7eSAndroid Build Coastguard Worker /*
3*49cdfc7eSAndroid Build Coastguard Worker * Copyright (c) Dan Kegel 2003
4*49cdfc7eSAndroid Build Coastguard Worker * Copyright (c) 2022 SUSE LLC Avinesh Kumar <[email protected]>
5*49cdfc7eSAndroid Build Coastguard Worker */
6*49cdfc7eSAndroid Build Coastguard Worker
7*49cdfc7eSAndroid Build Coastguard Worker /*\
8*49cdfc7eSAndroid Build Coastguard Worker * [Description]
9*49cdfc7eSAndroid Build Coastguard Worker *
10*49cdfc7eSAndroid Build Coastguard Worker * Verify that setegid() sets the effective UID of the calling process
11*49cdfc7eSAndroid Build Coastguard Worker * correctly, and does not modify the saved GID and real GID.
12*49cdfc7eSAndroid Build Coastguard Worker */
13*49cdfc7eSAndroid Build Coastguard Worker
14*49cdfc7eSAndroid Build Coastguard Worker #include <pwd.h>
15*49cdfc7eSAndroid Build Coastguard Worker #include "tst_test.h"
16*49cdfc7eSAndroid Build Coastguard Worker
17*49cdfc7eSAndroid Build Coastguard Worker static gid_t nobody_gid;
18*49cdfc7eSAndroid Build Coastguard Worker
setup(void)19*49cdfc7eSAndroid Build Coastguard Worker static void setup(void)
20*49cdfc7eSAndroid Build Coastguard Worker {
21*49cdfc7eSAndroid Build Coastguard Worker struct passwd *nobody;
22*49cdfc7eSAndroid Build Coastguard Worker
23*49cdfc7eSAndroid Build Coastguard Worker nobody = SAFE_GETPWNAM("nobody");
24*49cdfc7eSAndroid Build Coastguard Worker nobody_gid = nobody->pw_gid;
25*49cdfc7eSAndroid Build Coastguard Worker }
26*49cdfc7eSAndroid Build Coastguard Worker
setegid_verify(void)27*49cdfc7eSAndroid Build Coastguard Worker static void setegid_verify(void)
28*49cdfc7eSAndroid Build Coastguard Worker {
29*49cdfc7eSAndroid Build Coastguard Worker gid_t cur_rgid, cur_egid, cur_sgid;
30*49cdfc7eSAndroid Build Coastguard Worker gid_t orig_rgid, orig_egid, orig_sgid;
31*49cdfc7eSAndroid Build Coastguard Worker
32*49cdfc7eSAndroid Build Coastguard Worker SAFE_GETRESGID(&orig_rgid, &orig_egid, &orig_sgid);
33*49cdfc7eSAndroid Build Coastguard Worker tst_res(TINFO, "getresgid() reports rgid: %d, egid: %d, sgid: %d",
34*49cdfc7eSAndroid Build Coastguard Worker orig_rgid, orig_egid, orig_sgid);
35*49cdfc7eSAndroid Build Coastguard Worker
36*49cdfc7eSAndroid Build Coastguard Worker tst_res(TINFO, "call setegid(nobody_gid %d)", nobody_gid);
37*49cdfc7eSAndroid Build Coastguard Worker SAFE_SETEGID(nobody_gid);
38*49cdfc7eSAndroid Build Coastguard Worker
39*49cdfc7eSAndroid Build Coastguard Worker SAFE_GETRESGID(&cur_rgid, &cur_egid, &cur_sgid);
40*49cdfc7eSAndroid Build Coastguard Worker tst_res(TINFO, "getresgid() reports rgid: %d, egid: %d, sgid: %d",
41*49cdfc7eSAndroid Build Coastguard Worker cur_rgid, cur_egid, cur_sgid);
42*49cdfc7eSAndroid Build Coastguard Worker
43*49cdfc7eSAndroid Build Coastguard Worker TST_EXP_EQ_LU(nobody_gid, cur_egid);
44*49cdfc7eSAndroid Build Coastguard Worker TST_EXP_EQ_LU(orig_rgid, cur_rgid);
45*49cdfc7eSAndroid Build Coastguard Worker TST_EXP_EQ_LU(orig_sgid, cur_sgid);
46*49cdfc7eSAndroid Build Coastguard Worker
47*49cdfc7eSAndroid Build Coastguard Worker SAFE_SETEGID(orig_egid);
48*49cdfc7eSAndroid Build Coastguard Worker SAFE_GETRESGID(&cur_rgid, &cur_egid, &orig_sgid);
49*49cdfc7eSAndroid Build Coastguard Worker TST_EXP_EQ_LU(orig_egid, cur_egid);
50*49cdfc7eSAndroid Build Coastguard Worker }
51*49cdfc7eSAndroid Build Coastguard Worker
52*49cdfc7eSAndroid Build Coastguard Worker static struct tst_test test = {
53*49cdfc7eSAndroid Build Coastguard Worker .setup = setup,
54*49cdfc7eSAndroid Build Coastguard Worker .test_all = setegid_verify,
55*49cdfc7eSAndroid Build Coastguard Worker .needs_root = 1
56*49cdfc7eSAndroid Build Coastguard Worker };
57