jailintotempdir.c (1531B)
1 // $Id$ --*- c -*-- 2 3 // Copyright (C) 2004 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> 4 // 5 // This program is free software; you can redistribute it and/or modify 6 // it under the terms of the GNU General Public License as published by 7 // the Free Software Foundation; version 2 of the License. 8 // 9 // This program is distributed in the hope that it will be useful, 10 // but WITHOUT ANY WARRANTY; without even the implied warranty of 11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 12 // GNU General Public License for more details. 13 // 14 // You should have received a copy of the GNU General Public License 15 // along with this program; if not, write to the Free Software 16 // Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. 17 18 19 #ifdef HAVE_CONFIG_H 20 # include <config.h> 21 #endif 22 23 #include "jail.h" 24 25 #include <stdlib.h> 26 #include <grp.h> 27 #include <unistd.h> 28 29 bool 30 jailIntoTempDir(char const **err_pos) 31 { 32 gid_t const id = 1; 33 char buf[] = "/tmp/jaildir.XXXXXX"; 34 char const * d = mkdtemp(buf); 35 char const * err = "mkdtemp()"; 36 37 if (d==0 || 38 (err="chdir()", chdir(d)==-1) || 39 (err="rmdir()", rmdir(d)==-1) || 40 (err="chroot()", chroot(".")==-1) || 41 (err="setgroups()",setgroups(1, &id)==-1) || 42 (err="setgid()", setgid(id)==-1) || 43 (err="setuid()", setuid(id)==-1) || 44 (err="getgid()", getgid()!=id) || 45 (err="getuid()", getuid()!=id)) { 46 if (err_pos!=0) *err_pos = err; 47 return false; 48 } 49 50 return true; 51 }