NetBSD/lib/libc/nls/catopen.c
tshiozak fcc188c19e Disallow '/' character in LC_* and LANG environment variable, and
prevent to look up PATH_LOCALE and NLSPATH on setuid/setgid executable.
This is important to prevent to cause some kind of security hole.
2000-09-08 20:56:36 +00:00

175 lines
4.4 KiB
C

/* $NetBSD: catopen.c,v 1.17 2000/09/08 20:56:37 tshiozak Exp $ */
/*-
* Copyright (c) 1996 The NetBSD Foundation, Inc.
* All rights reserved.
*
* This code is derived from software contributed to The NetBSD Foundation
* by J.T. Conklin.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* 3. All advertising materials mentioning features or use of this software
* must display the following acknowledgement:
* This product includes software developed by the NetBSD
* Foundation, Inc. and its contributors.
* 4. Neither the name of The NetBSD Foundation nor the names of its
* contributors may be used to endorse or promote products derived
* from this software without specific prior written permission.
*
* THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS
* ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
* TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS
* BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
* CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
* SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
* INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
* CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
* POSSIBILITY OF SUCH DAMAGE.
*/
#define _NLS_PRIVATE
#include "namespace.h"
#include <sys/param.h>
#include <sys/stat.h>
#include <sys/mman.h>
#include <assert.h>
#include <fcntl.h>
#include <limits.h>
#include <nl_types.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#define NLS_DEFAULT_PATH "/usr/share/nls/%L/%N.cat:/usr/share/nls/%N/%L"
#define NLS_DEFAULT_LANG "C"
#ifdef __weak_alias
__weak_alias(catopen, _catopen)
#endif
static nl_catd load_msgcat __P((const char *));
/* ARGSUSED */
nl_catd
_catopen(name, oflag)
const char *name;
int oflag;
{
char tmppath[PATH_MAX];
char *nlspath;
char *lang;
char *s, *t;
const char *u;
nl_catd catd;
if (name == NULL || *name == '\0')
return (nl_catd)-1;
/* absolute or relative path? */
if (strchr(name, '/'))
return load_msgcat(name);
if (issetugid() || (nlspath = getenv("NLSPATH")) == NULL)
nlspath = NLS_DEFAULT_PATH;
if ((lang = getenv("LANG")) == NULL || strchr(lang, '/'))
lang = NLS_DEFAULT_LANG;
s = nlspath;
t = tmppath;
do {
while (*s && *s != ':') {
if (*s == '%') {
switch (*(++s)) {
case 'L': /* locale */
u = lang;
while (*u && t < tmppath + PATH_MAX)
*t++ = *u++;
break;
case 'N': /* name */
u = name;
while (*u && t < tmppath + PATH_MAX)
*t++ = *u++;
break;
case 'l': /* lang */
case 't': /* territory */
case 'c': /* codeset */
break;
default:
if (t < tmppath + PATH_MAX)
*t++ = *s;
}
} else {
if (t < tmppath + PATH_MAX)
*t++ = *s;
}
s++;
}
*t = '\0';
catd = load_msgcat(tmppath);
if (catd != (nl_catd)-1)
return catd;
if (*s)
s++;
t = tmppath;
} while (*s);
return (nl_catd)-1;
}
static nl_catd
load_msgcat(path)
const char *path;
{
struct stat st;
nl_catd catd;
void *data;
int fd;
_DIAGASSERT(path != NULL);
if ((fd = open(path, O_RDONLY)) == -1)
return (nl_catd)-1;
if (fstat(fd, &st) != 0) {
close (fd);
return (nl_catd)-1;
}
data = mmap(0, (size_t)st.st_size, PROT_READ, MAP_FILE|MAP_SHARED, fd,
(off_t)0);
close (fd);
if (data == (void *)-1) {
munmap(data, (size_t)st.st_size);
return (nl_catd)-1;
}
if (ntohl((u_int32_t)((struct _nls_cat_hdr *)data)->__magic) !=
_NLS_MAGIC) {
munmap(data, (size_t)st.st_size);
return (nl_catd)-1;
}
if ((catd = malloc(sizeof (*catd))) == 0) {
munmap(data, (size_t)st.st_size);
return (nl_catd)-1;
}
catd->__data = data;
catd->__size = (int)st.st_size;
return catd;
}