Home Explore Help
Sign In
maximed
/
guile
mirror of https://git.savannah.gnu.org/git/guile.git
Watch 1
Star 0
Fork 0
Files Issues 0 Wiki
Tree: f08e08bfac
Branches Tags
guile
/
lib
/
secure_getenv.c

secure_getenv.c 2.0 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455 
  1. /* Look up an environment variable, returning NULL in insecure situations.
    2. 

  2. 

  3.    Copyright 2013-2017 Free Software Foundation, Inc.
    4. 

  4. 

  5.    This program is free software: you can redistribute it and/or modify it
    6. 

  6.    under the terms of the GNU Lesser General Public License as published
    7. 

  7.    by the Free Software Foundation; either version 3 of the License, or
    8. 

  8.    (at your option) any later version.
    9. 

  9. 

  10.    This program is distributed in the hope that it will be useful,
    11. 

  11.    but WITHOUT ANY WARRANTY; without even the implied warranty of
    12. 

  12.    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
    13. 

  13.    Lesser General Public License for more details.
    14. 

  14. 

  15.    You should have received a copy of the GNU Lesser General Public License
    16. 

  16.    along with this program.  If not, see <http://www.gnu.org/licenses/>.  */
    17. 

  17. 

  18. #include <config.h>
    19. 

  19. 

  20. #include <stdlib.h>
    21. 

  21. 

  22. #if !HAVE___SECURE_GETENV
    23. 

  23. # if HAVE_ISSETUGID || (HAVE_GETUID && HAVE_GETEUID && HAVE_GETGID && HAVE_GETEGID)
    24. 

  24. #  include <unistd.h>
    25. 

  25. # endif
    26. 

  26. #endif
    27. 

  27. 

  28. char *
    29. 

  29. secure_getenv (char const *name)
    30. 

  30. {
    31. 

  31. #if HAVE___SECURE_GETENV /* glibc */
    32. 

  32.   return __secure_getenv (name);
    33. 

  33. #elif HAVE_ISSETUGID /* OS X, FreeBSD, NetBSD, OpenBSD */
    34. 

  34.   if (issetugid ())
    35. 

  35.     return NULL;
    36. 

  36.   return getenv (name);
    37. 

  37. #elif HAVE_GETUID && HAVE_GETEUID && HAVE_GETGID && HAVE_GETEGID /* other Unix */
    38. 

  38.   if (geteuid () != getuid () || getegid () != getgid ())
    39. 

  39.     return NULL;
    40. 

  40.   return getenv (name);
    41. 

  41. #elif (defined _WIN32 || defined __WIN32__) && ! defined __CYGWIN__ /* native Windows */
    42. 

  42.   /* On native Windows, there is no such concept as setuid or setgid binaries.
    43. 

  43.      - Programs launched as system services have high privileges, but they don't
    44. 

  44.        inherit environment variables from a user.
    45. 

  45.      - Programs launched by a user with "Run as Administrator" have high
    46. 

  46.        privileges and use the environment variables, but the user has been asked
    47. 

  47.        whether he agrees.
    48. 

  48.      - Programs launched by a user without "Run as Administrator" cannot gain
    49. 

  49.        high privileges, therefore there is no risk. */
    50. 

  50.   return getenv (name);
    51. 

  51. #else
    52. 

  52.   return NULL;
    53. 

  53. #endif
    54. 

  54. }
    55. 

  55.