4 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License version 2 only,
8 * as published by the Free Software Foundation.
10 * This program is distributed in the hope that it will be useful, but
11 * WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 * General Public License version 2 for more details (a copy is included
14 * in the LICENSE file that accompanied this code).
16 * You should have received a copy of the GNU General Public License
17 * version 2 along with this program; If not, see
18 * http://www.gnu.org/licenses/gpl-2.0.html
23 * Copyright (c) 2003, 2010, Oracle and/or its affiliates. All rights reserved.
24 * Use is subject to license terms.
27 * This file is part of Lustre, http://www.lustre.org/
28 * Lustre is a trademark of Sun Microsystems, Inc.
37 #include <sys/types.h>
45 #define NGROUPS_MAX 32
48 static const char usage[] =
49 "Usage: %s -u user_id [-g grp_id] [-v euid] [-j egid] [-G[gid0,gid1,...]] command\n"
50 " -u user_id switch to UID user_id\n"
51 " -g grp_id switch to GID grp_id\n"
52 " -v euid switch euid to UID\n"
53 " -j egid switch egid to GID\n"
54 " -G[gid0,gid1,...] set supplementary groups\n";
56 void Usage_and_abort(const char *name)
58 fprintf(stderr, usage, name);
62 int main(int argc, char **argv)
64 char **my_argv, *name = argv[0], *grp;
66 int gid_is_set = 0, uid_is_set = 0, num_supp = -1;
68 gid_t grp_id = 0, supp_groups[NGROUPS_MAX] = { 0 };
69 int euid_is_set = 0, egid_is_set = 0;
74 fprintf(stderr, "No parameter count\n");
75 Usage_and_abort(name);
79 while ((c = getopt(argc, argv, "+u:g:v:j:hG::")) != -1) {
82 if (!isdigit(optarg[0])) {
83 struct passwd *pw = getpwnam(optarg);
85 fprintf(stderr, "parameter '%s' bad\n",
87 Usage_and_abort(name);
91 user_id = (uid_t)atoi(optarg);
99 if (!isdigit(optarg[0])) {
100 struct group *gr = getgrnam(optarg);
102 fprintf(stderr, "getgrname %s failed\n",
104 Usage_and_abort(name);
108 grp_id = (gid_t)atoi(optarg);
114 if (!isdigit(optarg[0])) {
115 struct passwd *pw = getpwnam(optarg);
117 fprintf(stderr, "parameter '%s' bad\n",
119 Usage_and_abort(name);
123 euid = (uid_t)atoi(optarg);
129 if (!isdigit(optarg[0])) {
130 struct group *gr = getgrnam(optarg);
132 fprintf(stderr, "getgrname %s failed\n",
134 Usage_and_abort(name);
138 egid = (gid_t)atoi(optarg);
145 if (optarg == NULL || !isdigit(optarg[0]))
147 while ((grp = strsep(&optarg, ",")) != NULL) {
148 printf("adding supp group %d\n", atoi(grp));
149 supp_groups[num_supp++] = atoi(grp);
150 if (num_supp >= NGROUPS_MAX)
157 Usage_and_abort(name);
163 fprintf(stderr, "Must specify uid to run.\n");
164 Usage_and_abort(name);
167 if (optind == argc) {
168 fprintf(stderr, "Must specify command to run.\n");
169 Usage_and_abort(name);
172 // assemble the command
173 my_argv = (char**)malloc(sizeof(char*)*(argc+1-optind));
174 if (my_argv == NULL) {
175 fprintf(stderr, "Error in allocating memory. (%s)\n",
180 for (i = optind; i < argc; i++) {
181 my_argv[i-optind] = argv[i];
182 //printf("%s\n",my_argv[i-optind]);
184 my_argv[i-optind] = NULL;
193 status = setregid(grp_id, egid);
195 fprintf(stderr, "Cannot change gid to %d/%d, errno=%d (%s)\n",
196 grp_id, egid, errno, strerror(errno) );
201 status = setgroups(num_supp, supp_groups);
203 perror("setting supplementary groups");
211 status = setreuid(user_id, euid);
213 fprintf(stderr,"Cannot change uid to %d/%d, errno=%d (%s)\n",
214 user_id, euid, errno, strerror(errno) );
218 fprintf(stderr, "running as uid/gid/euid/egid %d/%d/%d/%d, groups:",
219 user_id, grp_id, euid, egid);
220 for (i = 0; i < num_supp; i++)
221 fprintf(stderr, " %d", supp_groups[i]);
222 fprintf(stderr, "\n");
224 for (i = 0; i < argc - optind; i++)
225 fprintf(stderr, " [%s]", my_argv[i]);
227 fprintf(stderr, "\n");
230 // The command to be run
231 execvp(my_argv[0], my_argv);
232 fprintf(stderr, "execvp fails running %s (%d): %s\n", my_argv[0],
233 errno, strerror(errno));