[unix-history] / usr / src / sys / kern / kern_prot.c

/*
 * Copyright (c) 1982, 1986, 1989, 1990 Regents of the University of California.
 * All rights reserved.
 *
 * %sccs.include.redist.c%
 *
 *	@(#)kern_prot.c	7.14 (Berkeley) %G%
 */

/*
 * System calls related to processes and protection
 */

#include "param.h"
#include "acct.h"
#include "systm.h"
#include "user.h"
#include "proc.h"
#include "timeb.h"
#include "times.h"
#include "malloc.h"

/* ARGSUSED */
getpid(p, uap, retval)
	struct proc *p;
	void *uap;
	int *retval;
{

	*retval = p->p_pid;
#ifdef COMPAT_43
	retval[1] = p->p_ppid;
#endif
	return (0);
}

/* ARGSUSED */
getppid(p, uap, retval)
	struct proc *p;
	void *uap;
	int *retval;
{

	*retval = p->p_ppid;
	return (0);
}

getpgrp(p, uap, retval)
	struct proc *p;
	struct args {
		int	pid;
	} *uap;
	int *retval;
{

	if (uap->pid != 0 && (p = pfind(uap->pid)) == 0)
		return (ESRCH);
	*retval = p->p_pgrp->pg_id;
	return (0);
}

/* ARGSUSED */
getuid(p, uap, retval)
	struct proc *p;
	void *uap;
	int *retval;
{

	*retval = p->p_ruid;
#ifdef COMPAT_43
	retval[1] = u.u_cred->cr_uid;
#endif
	return (0);
}

/* ARGSUSED */
geteuid(p, uap, retval)
	struct proc *p;
	void *uap;
	int *retval;
{

	*retval = u.u_cred->cr_uid;
	return (0);
}

/* ARGSUSED */
getgid(p, uap, retval)
	struct proc *p;
	void *uap;
	int *retval;
{

	*retval = p->p_rgid;
#ifdef COMPAT_43
	retval[1] = u.u_cred->cr_groups[0];
#endif
	return (0);
}

/*
 * Get effective group ID.
 * The "egid" is groups[0], and thus could be obtained via getgroups;
 * this is somewhat painful to do correctly in a library function,
 * this the existence of this syscall.
 */
/* ARGSUSED */
getegid(p, uap, retval)
	struct proc *p;
	void *uap;
	int *retval;
{

	*retval = u.u_cred->cr_groups[0];
	return (0);
}

getgroups(p, uap, retval)
	struct proc *p;
	register struct	arg {
		u_int	gidsetsize;
		int	*gidset;		/* XXX not yet POSIX */
	} *uap;
	int *retval;
{
	register gid_t *gp;
	register int *lp;
	int groups[NGROUPS];
	int error;

	if (uap->gidsetsize == 0) {
		*retval = u.u_cred->cr_ngroups;
		return (0);
	}
	if (uap->gidsetsize < u.u_cred->cr_ngroups)
		return (EINVAL);
	uap->gidsetsize = u.u_cred->cr_ngroups;
	gp = u.u_cred->cr_groups;
	for (lp = groups; lp < &groups[uap->gidsetsize]; )
		*lp++ = *gp++;
	if (error = copyout((caddr_t)groups, (caddr_t)uap->gidset,
	    uap->gidsetsize * sizeof (groups[0])))
		return (error);
	*retval = uap->gidsetsize;
	return (0);
}

/* ARGSUSED */
setsid(p, uap, retval)
	struct proc *p;
	void *uap;
	int *retval;
{

	if (p->p_pgid == p->p_pid || pgfind(p->p_pid)) {
		return (EPERM);
	} else {
		pgmv(p, p->p_pid, 1);
		*retval = p->p_pid;
		return (0);
	}
}

/*
 * set process group (setpgrp/setpgid)
 *
 * caller does setpgrp(pid, pgid)
 *
 * pid must be caller or child of caller (ESRCH)
 * if a child
 *	pid must be in same session (EPERM)
 *	pid can't have done an exec (EACCES)
 * if pgid != pid
 * 	there must exist some pid in same session having pgid (EPERM)
 * pid must not be session leader (EPERM)
 */
/* ARGSUSED */
setpgrp(cp, uap, retval)
	struct proc *cp;
	register struct args {
		int	pid;
		int	pgid;
	} *uap;
	int *retval;
{
	register struct proc *p;
	register struct pgrp *pgrp;

	if (uap->pid != 0) {
		if ((p = pfind(uap->pid)) == 0 || !inferior(p))
			return (ESRCH);
		if (p->p_session != cp->p_session)
			return (EPERM);
		if (p->p_flag&SEXEC)
			return (EACCES);
	} else
		p = cp;
	if (SESS_LEADER(p))
		return (EPERM);
	if (uap->pgid == 0)
		uap->pgid = p->p_pid;
	else if ((uap->pgid != p->p_pid) &&
		(((pgrp = pgfind(uap->pgid)) == 0) || 
		   pgrp->pg_mem == NULL ||
	           pgrp->pg_session != u.u_procp->p_session))
		return (EPERM);
	/*
	 * done checking, now do it
	 */
	pgmv(p, uap->pgid, 0);
	return (0);
}

/* ARGSUSED */
setuid(p, uap, retval)
	register struct proc *p;
	struct args {
		int	uid;
	} *uap;
	int *retval;
{
	register uid_t uid;
	int error;

	uid = uap->uid;
	if (uid != p->p_ruid && (error = suser(u.u_cred, &u.u_acflag)))
		return (error);
	/*
	 * Everything's okay, do it.
	 * Copy credentials so other references do not
	 * see our changes.
	 */
	if (u.u_cred->cr_ref > 1)
		u.u_cred = crcopy(u.u_cred);
	u.u_cred->cr_uid = uid;
	p->p_uid = uid;
	p->p_ruid = uid;
	p->p_svuid = uid;
	return (0);
}

/* ARGSUSED */
seteuid(p, uap, retval)
	register struct proc *p;
	struct args {
		int	euid;
	} *uap;
	int *retval;
{
	register uid_t euid;
	int error;

	euid = uap->euid;
	if (euid != p->p_ruid && euid != p->p_svuid &&
	    (error = suser(u.u_cred, &u.u_acflag)))
		return (error);
	/*
	 * Everything's okay, do it.
	 * Copy credentials so other references do not
	 * see our changes.
	 */
	if (u.u_cred->cr_ref > 1)
		u.u_cred = crcopy(u.u_cred);
	u.u_cred->cr_uid = euid;
	p->p_uid = euid;
	return (0);
}

/* ARGSUSED */
setgid(p, uap, retval)
	struct proc *p;
	struct args {
		int	gid;
	} *uap;
	int *retval;
{
	register gid_t gid;
	int error;

	gid = uap->gid;
	if (gid != p->p_rgid && (error = suser(u.u_cred, &u.u_acflag)))
		return (error);
	if (u.u_cred->cr_ref > 1)
		u.u_cred = crcopy(u.u_cred);
	p->p_rgid = gid;
	u.u_cred->cr_groups[0] = gid;
	p->p_svgid = gid;		/* ??? */
	return (0);
}

/* ARGSUSED */
setegid(p, uap, retval)
	struct proc *p;
	struct args {
		int	egid;
	} *uap;
	int *retval;
{
	register gid_t egid;
	int error;

	egid = uap->egid;
	if (egid != p->p_rgid && egid != p->p_svgid &&
	    (error = suser(u.u_cred, &u.u_acflag)))
		return (error);
	if (u.u_cred->cr_ref > 1)
		u.u_cred = crcopy(u.u_cred);
	u.u_cred->cr_groups[0] = egid;
	return (0);
}

#ifdef COMPAT_43
/* ARGSUSED */
osetreuid(p, uap, retval)
	register struct proc *p;
	struct args {
		int	ruid;
		int	euid;
	} *uap;
	int *retval;
{
	register uid_t ruid, euid;
	int error;

	if (uap->ruid == -1)
	    (error = suser(u.u_cred, &u.u_acflag)))
		return (error);
	if (uap->euid == -1)
	    euid != p->p_svuid && (error = suser(u.u_cred, &u.u_acflag)))
		return (error);
	/*
	 * Everything's okay, do it.
	 * Copy credentials so other references do not
	 * see our changes.
	 */
	if (u.u_cred->cr_ref > 1)
		u.u_cred = crcopy(u.u_cred);
	u.u_cred->cr_uid = euid;
	p->p_uid = euid;
	p->p_ruid = ruid;
	return (0);
}

/* ARGSUSED */
osetregid(p, uap, retval)
	struct proc *p;
	struct args {
		int	rgid;
		int	egid;
	} *uap;
	int *retval;
{
	register gid_t rgid, egid;
	int error;

	if (uap->rgid == -1)
	    (error = suser(u.u_cred, &u.u_acflag)))
		return (error);
	if (uap->egid == -1)
	    egid != p->p_svgid && (error = suser(u.u_cred, &u.u_acflag)))
		return (error);
	if (u.u_cred->cr_ref > 1)
		u.u_cred = crcopy(u.u_cred);
	p->p_rgid = rgid;
	u.u_cred->cr_groups[0] = egid;
	return (0);
}
#endif

/* ARGSUSED */
setgroups(p, uap, retval)
	struct proc *p;
	struct args {
		u_int	gidsetsize;
		int	*gidset;
	} *uap;
	int *retval;
{
	register gid_t *gp;
	register u_int ngrps;
	register int *lp;
	int error, groups[NGROUPS];

	if (error = suser(u.u_cred, &u.u_acflag))
		return (error);
	if ((ngrps = uap->gidsetsize) > NGROUPS)
		return (EINVAL);
	if (error = copyin((caddr_t)uap->gidset, (caddr_t)groups,
	    ngrps * sizeof (groups[0])))
		return (error);
	u.u_cred->cr_ngroups = ngrps;
	/* convert from int's to gid_t's */
	for (gp = u.u_cred->cr_groups, lp = groups; ngrps--; *gp++ = *lp++)
		/* void */;
	return (0);
}

/*
 * Check if gid is a member of the group set.
 */
groupmember(gid, cred)
	gid_t gid;
	register struct ucred *cred;
{
	register gid_t *gp;
	gid_t *egp;

	egp = &(cred->cr_groups[cred->cr_ngroups]);
	for (gp = cred->cr_groups; gp < egp; gp++)
		if (*gp == gid)
			return (1);
	return (0);
}

/*
 * Test if the current user is the super user.
 */
suser(cred, acflag)
	struct ucred *cred;
	short *acflag;
{

	if (cred->cr_uid == 0) {
		if (acflag)
			*acflag |= ASU;
		return (0);
	}
	return (EPERM);
}

/*
 * Allocate a zeroed cred structure.
 */
struct ucred *
crget()
{
	register struct ucred *cr;

	MALLOC(cr, struct ucred *, sizeof(*cr), M_CRED, M_WAITOK);
	bzero((caddr_t)cr, sizeof(*cr));
	cr->cr_ref = 1;
	return (cr);
}

/*
 * Free a cred structure.
 * Throws away space when ref count gets to 0.
 */
crfree(cr)
	struct ucred *cr;
{
	int s = splimp();

	if (--cr->cr_ref != 0) {
		(void) splx(s);
		return;
	}
	FREE((caddr_t)cr, M_CRED);
	(void) splx(s);
}

/*
 * Copy cred structure to a new one and free the old one.
 */
struct ucred *
crcopy(cr)
	struct ucred *cr;
{
	struct ucred *newcr;

	newcr = crget();
	*newcr = *cr;
	crfree(cr);
	newcr->cr_ref = 1;
	return (newcr);
}

/*
 * Dup cred struct to a new held one.
 */
struct ucred *
crdup(cr)
	struct ucred *cr;
{
	struct ucred *newcr;

	newcr = crget();
	*newcr = *cr;
	newcr->cr_ref = 1;
	return (newcr);
}

/*
 * Get login name, if available.
 */
/* ARGSUSED */
getlogin(p, uap, retval)
	struct proc *p;
	struct args {
		char	*namebuf;
		u_int	namelen;
	} *uap;
	int *retval;
{

	if (uap->namelen > sizeof (p->p_logname))
		uap->namelen = sizeof (p->p_logname);
	return (copyout((caddr_t)p->p_logname, (caddr_t)uap->namebuf,
	    uap->namelen));
}

/*
 * Set login name.
 */
/* ARGSUSED */
setlogin(p, uap, retval)
	struct proc *p;
	struct args {
		char	*namebuf;
	} *uap;
	int *retval;
{
	int error;

	if (error = suser(u.u_cred, &u.u_acflag))
		return (error);
	error = copyinstr((caddr_t)uap->namebuf, (caddr_t)p->p_logname,
	    sizeof (p->p_logname) - 1, (int *) 0);
	if (error == ENOENT)		/* name too long */
		error = EINVAL;
	return (error);
}
Commit	Line	Data
da7c5cc6	1	/*
d5dc47bf	2	* Copyright (c) 1982, 1986, 1989, 1990 Regents of the University of California.
88a39492	3	* All rights reserved.
da7c5cc6	4	*
dbf0c423	5	* %sccs.include.redist.c%
88a39492	6	*
446a921a	7	* @(#)kern_prot.c 7.14 (Berkeley) %G%
da7c5cc6	8	*/
a05af100 BJ	9
a05af100 BJ	10	/*
4147b3f6	11	* System calls related to processes and protection
a05af100 BJ	12	*/
a05af100 BJ	13
94368568	14	#include "param.h"
88a39492	15	#include "acct.h"
94368568	16	#include "systm.h"
d9c2f47f	17	#include "user.h"
94368568 JB	18	#include "proc.h"
	19	#include "timeb.h"
	20	#include "times.h"
88a39492	21	#include "malloc.h"
a05af100	22
d5dc47bf MK	23	/* ARGSUSED */
	24	getpid(p, uap, retval)
	25	struct proc *p;
	26	void *uap;
	27	int *retval;
4147b3f6 BJ	28	{
4147b3f6 BJ	29
d5dc47bf MK	30	*retval = p->p_pid;
	31	#ifdef COMPAT_43
	32	retval[1] = p->p_ppid;
	33	#endif
d9c2f47f	34	return (0);
4147b3f6 BJ	35	}
4147b3f6 BJ	36
d5dc47bf MK	37	/* ARGSUSED */
	38	getppid(p, uap, retval)
	39	struct proc *p;
	40	void *uap;
	41	int *retval;
4147b3f6	42	{
d5dc47bf MK	43
d5dc47bf MK	44	*retval = p->p_ppid;
d9c2f47f	45	return (0);
d5dc47bf MK	46	}
	47
	48	getpgrp(p, uap, retval)
	49	struct proc *p;
	50	struct args {
4147b3f6	51	int pid;
d5dc47bf MK	52	} *uap;
	53	int *retval;
	54	{
4147b3f6	55
d5dc47bf	56	if (uap->pid != 0 && (p = pfind(uap->pid)) == 0)
d9c2f47f	57	return (ESRCH);
d5dc47bf	58	*retval = p->p_pgrp->pg_id;
d9c2f47f	59	return (0);
4147b3f6 BJ	60	}
4147b3f6 BJ	61
d5dc47bf MK	62	/* ARGSUSED */
	63	getuid(p, uap, retval)
	64	struct proc *p;
	65	void *uap;
	66	int *retval;
a05af100 BJ	67	{
a05af100 BJ	68
d5dc47bf MK	69	*retval = p->p_ruid;
	70	#ifdef COMPAT_43
	71	retval[1] = u.u_cred->cr_uid;
	72	#endif
d9c2f47f	73	return (0);
a05af100 BJ	74	}
a05af100 BJ	75
d5dc47bf MK	76	/* ARGSUSED */
	77	geteuid(p, uap, retval)
	78	struct proc *p;
	79	void *uap;
	80	int *retval;
4147b3f6 BJ	81	{
4147b3f6 BJ	82
d5dc47bf	83	*retval = u.u_cred->cr_uid;
d9c2f47f	84	return (0);
4147b3f6 BJ	85	}
4147b3f6 BJ	86
d5dc47bf MK	87	/* ARGSUSED */
	88	getgid(p, uap, retval)
	89	struct proc *p;
	90	void *uap;
	91	int *retval;
	92	{
	93
	94	*retval = p->p_rgid;
	95	#ifdef COMPAT_43
	96	retval[1] = u.u_cred->cr_groups[0];
	97	#endif
d9c2f47f	98	return (0);
d5dc47bf MK	99	}
	100
	101	/*
	102	* Get effective group ID.
	103	* The "egid" is groups[0], and thus could be obtained via getgroups;
	104	* this is somewhat painful to do correctly in a library function,
	105	* this the existence of this syscall.
	106	*/
	107	/* ARGSUSED */
	108	getegid(p, uap, retval)
	109	struct proc *p;
	110	void *uap;
	111	int *retval;
4147b3f6	112	{
d5dc47bf MK	113
d5dc47bf MK	114	*retval = u.u_cred->cr_groups[0];
d9c2f47f	115	return (0);
d5dc47bf MK	116	}
	117
	118	getgroups(p, uap, retval)
	119	struct proc *p;
	120	register struct arg {
b32450f4	121	u_int gidsetsize;
d5dc47bf MK	122	int gidset; / XXX not yet POSIX */
	123	} *uap;
	124	int *retval;
	125	{
38b6104c MK	126	register gid_t *gp;
	127	register int *lp;
	128	int groups[NGROUPS];
d5dc47bf	129	int error;
4147b3f6	130
88a39492	131	if (uap->gidsetsize == 0) {
d5dc47bf	132	*retval = u.u_cred->cr_ngroups;
d9c2f47f	133	return (0);
197da11b	134	}
d5dc47bf	135	if (uap->gidsetsize < u.u_cred->cr_ngroups)
d9c2f47f	136	return (EINVAL);
164c0f54 MK	137	uap->gidsetsize = u.u_cred->cr_ngroups;
164c0f54 MK	138	gp = u.u_cred->cr_groups;
88a39492	139	for (lp = groups; lp < &groups[uap->gidsetsize]; )
38b6104c	140	lp++ = gp++;
d5dc47bf MK	141	if (error = copyout((caddr_t)groups, (caddr_t)uap->gidset,
d5dc47bf MK	142	uap->gidsetsize * sizeof (groups[0])))
d9c2f47f	143	return (error);
d5dc47bf	144	*retval = uap->gidsetsize;
d9c2f47f	145	return (0);
4147b3f6 BJ	146	}
4147b3f6 BJ	147
d5dc47bf MK	148	/* ARGSUSED */
	149	setsid(p, uap, retval)
	150	struct proc *p;
	151	void *uap;
	152	int *retval;
8fe87cbb	153	{
8fe87cbb	154
d5dc47bf	155	if (p->p_pgid == p->p_pid \|\| pgfind(p->p_pid)) {
d9c2f47f	156	return (EPERM);
d5dc47bf	157	} else {
8fe87cbb	158	pgmv(p, p->p_pid, 1);
d5dc47bf	159	*retval = p->p_pid;
d9c2f47f	160	return (0);
8fe87cbb	161	}
8fe87cbb MT	162	}
	163
	164	/*
d5dc47bf	165	* set process group (setpgrp/setpgid)
8fe87cbb	166	*
164c0f54 MK	167	* caller does setpgrp(pid, pgid)
	168	*
	169	* pid must be caller or child of caller (ESRCH)
	170	* if a child
	171	* pid must be in same session (EPERM)
	172	* pid can't have done an exec (EACCES)
	173	* if pgid != pid
	174	* there must exist some pid in same session having pgid (EPERM)
	175	* pid must not be session leader (EPERM)
8fe87cbb	176	*/
d5dc47bf MK	177	/* ARGSUSED */
	178	setpgrp(cp, uap, retval)
	179	struct proc *cp;
	180	register struct args {
4147b3f6	181	int pid;
8fe87cbb	182	int pgid;
d5dc47bf MK	183	} *uap;
	184	int *retval;
	185	{
8fe87cbb MT	186	register struct proc *p;
8fe87cbb MT	187	register struct pgrp *pgrp;
4147b3f6	188
d5dc47bf MK	189	if (uap->pid != 0) {
d5dc47bf MK	190	if ((p = pfind(uap->pid)) == 0 \|\| !inferior(p))
d9c2f47f	191	return (ESRCH);
d5dc47bf	192	if (p->p_session != cp->p_session)
d9c2f47f	193	return (EPERM);
d5dc47bf	194	if (p->p_flag&SEXEC)
d9c2f47f	195	return (EACCES);
d5dc47bf MK	196	} else
	197	p = cp;
	198	if (SESS_LEADER(p))
d9c2f47f	199	return (EPERM);
8fe87cbb MT	200	if (uap->pgid == 0)
	201	uap->pgid = p->p_pid;
	202	else if ((uap->pgid != p->p_pid) &&
	203	(((pgrp = pgfind(uap->pgid)) == 0) \|\|
	204	pgrp->pg_mem == NULL \|\|
d5dc47bf	205	pgrp->pg_session != u.u_procp->p_session))
d9c2f47f	206	return (EPERM);
8fe87cbb	207	/*
d5dc47bf	208	* done checking, now do it
8fe87cbb MT	209	*/
8fe87cbb MT	210	pgmv(p, uap->pgid, 0);
d9c2f47f	211	return (0);
4147b3f6 BJ	212	}
4147b3f6 BJ	213
d5dc47bf MK	214	/* ARGSUSED */
	215	setuid(p, uap, retval)
	216	register struct proc *p;
	217	struct args {
	218	int uid;
	219	} *uap;
	220	int *retval;
4f083fd7	221	{
d5dc47bf MK	222	register uid_t uid;
	223	int error;
	224
	225	uid = uap->uid;
	226	if (uid != p->p_ruid && (error = suser(u.u_cred, &u.u_acflag)))
d9c2f47f	227	return (error);
d5dc47bf MK	228	/*
	229	* Everything's okay, do it.
	230	* Copy credentials so other references do not
	231	* see our changes.
	232	*/
	233	if (u.u_cred->cr_ref > 1)
	234	u.u_cred = crcopy(u.u_cred);
	235	u.u_cred->cr_uid = uid;
	236	p->p_uid = uid;
	237	p->p_ruid = uid;
	238	p->p_svuid = uid;
d9c2f47f	239	return (0);
d5dc47bf MK	240	}
	241
	242	/* ARGSUSED */
	243	seteuid(p, uap, retval)
	244	register struct proc *p;
	245	struct args {
4f083fd7 SL	246	int euid;
4f083fd7 SL	247	} *uap;
d5dc47bf MK	248	int *retval;
	249	{
	250	register uid_t euid;
	251	int error;
4f083fd7	252
4f083fd7	253	euid = uap->euid;
d5dc47bf MK	254	if (euid != p->p_ruid && euid != p->p_svuid &&
d5dc47bf MK	255	(error = suser(u.u_cred, &u.u_acflag)))
d9c2f47f	256	return (error);
4f083fd7 SL	257	/*
4f083fd7 SL	258	* Everything's okay, do it.
88a39492 KM	259	* Copy credentials so other references do not
88a39492 KM	260	* see our changes.
4f083fd7	261	*/
88a39492 KM	262	if (u.u_cred->cr_ref > 1)
88a39492 KM	263	u.u_cred = crcopy(u.u_cred);
164c0f54 MK	264	u.u_cred->cr_uid = euid;
164c0f54 MK	265	p->p_uid = euid;
d9c2f47f	266	return (0);
4f083fd7 SL	267	}
4f083fd7 SL	268
d5dc47bf MK	269	/* ARGSUSED */
	270	setgid(p, uap, retval)
	271	struct proc *p;
	272	struct args {
	273	int gid;
	274	} *uap;
	275	int *retval;
4f083fd7	276	{
d5dc47bf MK	277	register gid_t gid;
	278	int error;
	279
	280	gid = uap->gid;
	281	if (gid != p->p_rgid && (error = suser(u.u_cred, &u.u_acflag)))
d9c2f47f	282	return (error);
d5dc47bf MK	283	if (u.u_cred->cr_ref > 1)
	284	u.u_cred = crcopy(u.u_cred);
	285	p->p_rgid = gid;
	286	u.u_cred->cr_groups[0] = gid;
	287	p->p_svgid = gid; /* ??? */
d9c2f47f	288	return (0);
d5dc47bf MK	289	}
	290
	291	/* ARGSUSED */
	292	setegid(p, uap, retval)
	293	struct proc *p;
	294	struct args {
4f083fd7 SL	295	int egid;
4f083fd7 SL	296	} *uap;
d5dc47bf MK	297	int *retval;
	298	{
	299	register gid_t egid;
	300	int error;
4f083fd7	301
4f083fd7	302	egid = uap->egid;
d5dc47bf MK	303	if (egid != p->p_rgid && egid != p->p_svgid &&
d5dc47bf MK	304	(error = suser(u.u_cred, &u.u_acflag)))
d9c2f47f	305	return (error);
88a39492 KM	306	if (u.u_cred->cr_ref > 1)
88a39492 KM	307	u.u_cred = crcopy(u.u_cred);
164c0f54	308	u.u_cred->cr_groups[0] = egid;
d9c2f47f	309	return (0);
d5dc47bf MK	310	}
	311
	312	#ifdef COMPAT_43
	313	/* ARGSUSED */
	314	osetreuid(p, uap, retval)
	315	register struct proc *p;
	316	struct args {
	317	int ruid;
	318	int euid;
	319	} *uap;
	320	int *retval;
	321	{
	322	register uid_t ruid, euid;
	323	int error;
	324
	325	if (uap->ruid == -1)
	326	(error = suser(u.u_cred, &u.u_acflag)))
d9c2f47f	327	return (error);
d5dc47bf MK	328	if (uap->euid == -1)
d5dc47bf MK	329	euid != p->p_svuid && (error = suser(u.u_cred, &u.u_acflag)))
d9c2f47f	330	return (error);
d5dc47bf MK	331	/*
	332	* Everything's okay, do it.
	333	* Copy credentials so other references do not
	334	* see our changes.
	335	*/
	336	if (u.u_cred->cr_ref > 1)
	337	u.u_cred = crcopy(u.u_cred);
	338	u.u_cred->cr_uid = euid;
	339	p->p_uid = euid;
	340	p->p_ruid = ruid;
d9c2f47f	341	return (0);
4f083fd7	342	}
a05af100	343
d5dc47bf MK	344	/* ARGSUSED */
	345	osetregid(p, uap, retval)
	346	struct proc *p;
	347	struct args {
	348	int rgid;
	349	int egid;
	350	} *uap;
	351	int *retval;
4147b3f6	352	{
d5dc47bf MK	353	register gid_t rgid, egid;
	354	int error;
	355
	356	if (uap->rgid == -1)
	357	(error = suser(u.u_cred, &u.u_acflag)))
d9c2f47f	358	return (error);
d5dc47bf MK	359	if (uap->egid == -1)
d5dc47bf MK	360	egid != p->p_svgid && (error = suser(u.u_cred, &u.u_acflag)))
d9c2f47f	361	return (error);
d5dc47bf MK	362	if (u.u_cred->cr_ref > 1)
	363	u.u_cred = crcopy(u.u_cred);
	364	p->p_rgid = rgid;
	365	u.u_cred->cr_groups[0] = egid;
d9c2f47f	366	return (0);
d5dc47bf MK	367	}
	368	#endif
	369
	370	/* ARGSUSED */
	371	setgroups(p, uap, retval)
	372	struct proc *p;
	373	struct args {
b32450f4	374	u_int gidsetsize;
4147b3f6	375	int *gidset;
d5dc47bf MK	376	} *uap;
	377	int *retval;
	378	{
38b6104c	379	register gid_t *gp;
446a921a	380	register u_int ngrps;
38b6104c	381	register int *lp;
446a921a	382	int error, groups[NGROUPS];
4147b3f6	383
d5dc47bf	384	if (error = suser(u.u_cred, &u.u_acflag))
d9c2f47f	385	return (error);
446a921a	386	if ((ngrps = uap->gidsetsize) > NGROUPS)
d9c2f47f	387	return (EINVAL);
446a921a KB	388	if (error = copyin((caddr_t)uap->gidset, (caddr_t)groups,
446a921a KB	389	ngrps * sizeof (groups[0])))
d9c2f47f	390	return (error);
446a921a KB	391	u.u_cred->cr_ngroups = ngrps;
	392	/* convert from int's to gid_t's */
	393	for (gp = u.u_cred->cr_groups, lp = groups; ngrps--; gp++ = lp++)
	394	/* void */;
d9c2f47f	395	return (0);
4147b3f6 BJ	396	}
4147b3f6 BJ	397
f926daf9	398	/*
88a39492	399	* Check if gid is a member of the group set.
f926daf9	400	*/
88a39492	401	groupmember(gid, cred)
90731a34	402	gid_t gid;
88a39492	403	register struct ucred *cred;
197da11b	404	{
38b6104c	405	register gid_t *gp;
88a39492	406	gid_t *egp;
197da11b	407
88a39492 KM	408	egp = &(cred->cr_groups[cred->cr_ngroups]);
88a39492 KM	409	for (gp = cred->cr_groups; gp < egp; gp++)
197da11b	410	if (*gp == gid)
88a39492 KM	411	return (1);
88a39492 KM	412	return (0);
197da11b BJ	413	}
197da11b BJ	414
f926daf9	415	/*
88a39492	416	* Test if the current user is the super user.
f926daf9	417	*/
88a39492 KM	418	suser(cred, acflag)
	419	struct ucred *cred;
	420	short *acflag;
197da11b	421	{
197da11b	422
88a39492 KM	423	if (cred->cr_uid == 0) {
	424	if (acflag)
	425	*acflag \|= ASU;
	426	return (0);
38b6104c	427	}
88a39492	428	return (EPERM);
197da11b	429	}
f926daf9 SL	430
f926daf9 SL	431	/*
88a39492	432	* Allocate a zeroed cred structure.
f926daf9	433	*/
88a39492 KM	434	struct ucred *
88a39492 KM	435	crget()
f926daf9	436	{
88a39492	437	register struct ucred *cr;
f926daf9	438
88a39492 KM	439	MALLOC(cr, struct ucred , sizeof(cr), M_CRED, M_WAITOK);
	440	bzero((caddr_t)cr, sizeof(*cr));
	441	cr->cr_ref = 1;
d5dc47bf	442	return (cr);
88a39492 KM	443	}
	444
	445	/*
	446	* Free a cred structure.
	447	* Throws away space when ref count gets to 0.
	448	*/
	449	crfree(cr)
	450	struct ucred *cr;
	451	{
d5dc47bf	452	int s = splimp();
88a39492 KM	453
	454	if (--cr->cr_ref != 0) {
	455	(void) splx(s);
	456	return;
	457	}
	458	FREE((caddr_t)cr, M_CRED);
	459	(void) splx(s);
	460	}
	461
	462	/*
	463	* Copy cred structure to a new one and free the old one.
	464	*/
	465	struct ucred *
	466	crcopy(cr)
	467	struct ucred *cr;
	468	{
	469	struct ucred *newcr;
	470
	471	newcr = crget();
	472	newcr = cr;
	473	crfree(cr);
	474	newcr->cr_ref = 1;
d5dc47bf	475	return (newcr);
88a39492 KM	476	}
	477
	478	/*
	479	* Dup cred struct to a new held one.
	480	*/
	481	struct ucred *
	482	crdup(cr)
	483	struct ucred *cr;
	484	{
	485	struct ucred *newcr;
	486
	487	newcr = crget();
	488	newcr = cr;
	489	newcr->cr_ref = 1;
d5dc47bf	490	return (newcr);
f926daf9	491	}
5b6ee178 KF	492
5b6ee178 KF	493	/*
164c0f54	494	* Get login name, if available.
5b6ee178	495	*/
d5dc47bf MK	496	/* ARGSUSED */
	497	getlogin(p, uap, retval)
	498	struct proc *p;
	499	struct args {
5b6ee178 KF	500	char *namebuf;
5b6ee178 KF	501	u_int namelen;
d5dc47bf MK	502	} *uap;
	503	int *retval;
	504	{
5b6ee178	505
d5dc47bf MK	506	if (uap->namelen > sizeof (p->p_logname))
d5dc47bf MK	507	uap->namelen = sizeof (p->p_logname);
d9c2f47f	508	return (copyout((caddr_t)p->p_logname, (caddr_t)uap->namebuf,
d5dc47bf	509	uap->namelen));
5b6ee178 KF	510	}
	511
	512	/*
164c0f54	513	* Set login name.
5b6ee178	514	*/
d5dc47bf MK	515	/* ARGSUSED */
	516	setlogin(p, uap, retval)
	517	struct proc *p;
	518	struct args {
5b6ee178	519	char *namebuf;
d5dc47bf MK	520	} *uap;
	521	int *retval;
	522	{
164c0f54	523	int error;
5b6ee178	524
d5dc47bf	525	if (error = suser(u.u_cred, &u.u_acflag))
d9c2f47f	526	return (error);
d5dc47bf MK	527	error = copyinstr((caddr_t)uap->namebuf, (caddr_t)p->p_logname,
d5dc47bf MK	528	sizeof (p->p_logname) - 1, (int *) 0);
164c0f54 MK	529	if (error == ENOENT) /* name too long */
164c0f54 MK	530	error = EINVAL;
d9c2f47f	531	return (error);
5b6ee178	532	}