4 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License version 2 only,
8 * as published by the Free Software Foundation.
10 * This program is distributed in the hope that it will be useful, but
11 * WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 * General Public License version 2 for more details (a copy is included
14 * in the LICENSE file that accompanied this code).
16 * You should have received a copy of the GNU General Public License
17 * version 2 along with this program; If not, see
18 * http://www.sun.com/software/products/lustre/docs/GPLv2.pdf
20 * Please contact Sun Microsystems, Inc., 4150 Network Circle, Santa Clara,
21 * CA 95054 USA or visit www.sun.com if you need additional information or
27 * Copyright (c) 2003, 2010, Oracle and/or its affiliates. All rights reserved.
28 * Use is subject to license terms.
31 * This file is part of Lustre, http://www.lustre.org/
32 * Lustre is a trademark of Sun Microsystems, Inc.
41 #include <sys/types.h>
49 #define NGROUPS_MAX 32
52 static const char usage[] =
53 "Usage: %s -u user_id [-g grp_id] [-v euid] [-j egid] [-G[gid0,gid1,...]] command\n"
54 " -u user_id switch to UID user_id\n"
55 " -g grp_id switch to GID grp_id\n"
56 " -v euid switch euid to UID\n"
57 " -j egid switch egid to GID\n"
58 " -G[gid0,gid1,...] set supplementary groups\n";
60 void Usage_and_abort(const char *name)
62 fprintf(stderr, usage, name);
66 int main(int argc, char **argv)
68 char **my_argv, *name = argv[0], *grp;
70 int gid_is_set = 0, uid_is_set = 0, num_supp = -1;
72 gid_t grp_id = 0, supp_groups[NGROUPS_MAX] = { 0 };
73 int euid_is_set = 0, egid_is_set = 0;
78 fprintf(stderr, "No parameter count\n");
79 Usage_and_abort(name);
83 while ((c = getopt(argc, argv, "+u:g:v:j:hG::")) != -1) {
86 if (!isdigit(optarg[0])) {
87 struct passwd *pw = getpwnam(optarg);
89 fprintf(stderr, "parameter '%s' bad\n",
91 Usage_and_abort(name);
95 user_id = (uid_t)atoi(optarg);
103 if (!isdigit(optarg[0])) {
104 struct group *gr = getgrnam(optarg);
106 fprintf(stderr, "getgrname %s failed\n",
108 Usage_and_abort(name);
112 grp_id = (gid_t)atoi(optarg);
118 if (!isdigit(optarg[0])) {
119 struct passwd *pw = getpwnam(optarg);
121 fprintf(stderr, "parameter '%s' bad\n",
123 Usage_and_abort(name);
127 euid = (uid_t)atoi(optarg);
133 if (!isdigit(optarg[0])) {
134 struct group *gr = getgrnam(optarg);
136 fprintf(stderr, "getgrname %s failed\n",
138 Usage_and_abort(name);
142 egid = (gid_t)atoi(optarg);
149 if (optarg == NULL || !isdigit(optarg[0]))
151 while ((grp = strsep(&optarg, ",")) != NULL) {
152 printf("adding supp group %d\n", atoi(grp));
153 supp_groups[num_supp++] = atoi(grp);
154 if (num_supp >= NGROUPS_MAX)
161 Usage_and_abort(name);
167 fprintf(stderr, "Must specify uid to run.\n");
168 Usage_and_abort(name);
171 if (optind == argc) {
172 fprintf(stderr, "Must specify command to run.\n");
173 Usage_and_abort(name);
176 // assemble the command
177 my_argv = (char**)malloc(sizeof(char*)*(argc+1-optind));
178 if (my_argv == NULL) {
179 fprintf(stderr, "Error in allocating memory. (%s)\n",
184 for (i = optind; i < argc; i++) {
185 my_argv[i-optind] = argv[i];
186 //printf("%s\n",my_argv[i-optind]);
188 my_argv[i-optind] = NULL;
197 status = setregid(grp_id, egid);
199 fprintf(stderr, "Cannot change gid to %d/%d, errno=%d (%s)\n",
200 grp_id, egid, errno, strerror(errno) );
205 status = setgroups(num_supp, supp_groups);
207 perror("setting supplementary groups");
215 status = setreuid(user_id, euid);
217 fprintf(stderr,"Cannot change uid to %d/%d, errno=%d (%s)\n",
218 user_id, euid, errno, strerror(errno) );
222 fprintf(stderr, "running as uid/gid/euid/egid %d/%d/%d/%d, groups:",
223 user_id, grp_id, euid, egid);
224 for (i = 0; i < num_supp; i++)
225 fprintf(stderr, " %d", supp_groups[i]);
226 fprintf(stderr, "\n");
228 for (i = 0; i < argc - optind; i++)
229 fprintf(stderr, " [%s]", my_argv[i]);
231 fprintf(stderr, "\n");
234 // The command to be run
235 execvp(my_argv[0], my_argv);
236 fprintf(stderr, "execvp fails running %s (%d): %s\n", my_argv[0],
237 errno, strerror(errno));