diff options
| author | Michael E Brown <mebrown@michaels-house.net> | 2007-11-30 11:51:25 -0600 |
|---|---|---|
| committer | Michael E Brown <mebrown@michaels-house.net> | 2007-11-30 11:51:25 -0600 |
| commit | 97f06be255f9a20613c66510e05f68372af7215f (patch) | |
| tree | 2d57f70b6889bd351f3efac9f32ae806faa53aee /py/mock/uid.py | |
| parent | 96dd05c47ed25102fe92a1c7810d12716083e05e (diff) | |
| download | mock-97f06be255f9a20613c66510e05f68372af7215f.tar.gz mock-97f06be255f9a20613c66510e05f68372af7215f.tar.xz mock-97f06be255f9a20613c66510e05f68372af7215f.zip | |
move things around so that we can run mock.py from the build tree instead of having to install it.
Diffstat (limited to 'py/mock/uid.py')
| -rw-r--r-- | py/mock/uid.py | 114 |
1 files changed, 114 insertions, 0 deletions
diff --git a/py/mock/uid.py b/py/mock/uid.py new file mode 100644 index 0000000..14d0e39 --- /dev/null +++ b/py/mock/uid.py @@ -0,0 +1,114 @@ +# vim:expandtab:autoindent:tabstop=4:shiftwidth=4:filetype=python:textwidth=0: +# License: GPL2 or later see COPYING +# Written by Michael Brown +# Copyright (C) 2007 Michael E Brown <mebrown@michaels-house.net> + +# python library imports +import logging +import os + +# our imports +from mock.trace_decorator import traceLog + +# set up logging +log = logging.getLogger("mock.uid") + +# class +class uidManager(object): + @traceLog(log) + def __init__(self, unprivUid=-1, unprivGid=-1): + self.privStack = [] + self.unprivUid = unprivUid + self.unprivGid = unprivGid + + @traceLog(log) + def becomeUser(self, uid, gid=-1): + # save current ruid, euid, rgid, egid + self._push() + self._becomeUser(uid, gid) + + @traceLog(log) + def dropPrivsTemp(self): + # save current ruid, euid, rgid, egid + self._push() + self._becomeUser(self.unprivUid, self.unprivGid) + + @traceLog(log) + def restorePrivs(self): + # back to root first + self._elevatePrivs() + + # then set saved + privs = self.privStack.pop() + os.setregid(privs['rgid'], privs['egid']) + setresuid(privs['ruid'], privs['euid']) + + @traceLog(log) + def dropPrivsForever(self): + self._elevatePrivs() + os.setregid(self.unprivGid, self.unprivGid) + os.setreuid(self.unprivUid, self.unprivUid) + + @traceLog(log) + def _push(self): + # save current ruid, euid, rgid, egid + self.privStack.append({ + "ruid": os.getuid(), + "euid": os.geteuid(), + "rgid": os.getgid(), + "egid": os.getegid(), + }) + + @traceLog(log) + def _elevatePrivs(self): + setresuid(0, 0, 0) + os.setregid(0, 0) + + @traceLog(log) + def _becomeUser(self, uid, gid=None): + self._elevatePrivs() + if gid is not None: + os.setregid(gid, gid) + setresuid(uid, uid, 0) + +# python doesnt have native versions of these. :( + +import ctypes +import errno +_libc = ctypes.cdll.LoadLibrary("libc.so.6") +_errno = ctypes.c_int.in_dll(_libc, "errno") + +def getresuid(): + ruid = ctypes.c_long() + euid = ctypes.c_long() + suid = ctypes.c_long() + res = _libc.getresuid(ctypes.byref(ruid), ctypes.byref(euid), ctypes.byref(suid)) + if res: + raise OSError(_errno.value, os.strerror(_errno.value)) + return (ruid.value, euid.value, suid.value) + +def setresuid(ruid=-1, euid=-1, suid=-1): + ruid = ctypes.c_long(ruid) + euid = ctypes.c_long(euid) + suid = ctypes.c_long(suid) + res = _libc.setresuid(ruid, euid, suid) + if res: + raise OSError(_errno.value, os.strerror(_errno.value)) + +def getresgid(): + rgid = ctypes.c_long() + egid = ctypes.c_long() + sgid = ctypes.c_long() + res = _libc.getresgid(ctypes.byref(rgid), ctypes.byref(egid), ctypes.byref(sgid)) + if res: + raise OSError(_errno.value, os.strerror(_errno.value)) + return (rgid.value, egid.value, sgid.value) + +def setresgid(rgid=-1, egid=-1, sgid=-1): + rgid = ctypes.c_long(rgid) + egid = ctypes.c_long(egid) + sgid = ctypes.c_long(sgid) + res = _libc.setresgid(rgid, egid, sgid) + if res: + raise OSError(_errno.value, os.strerror(_errno.value)) + |