/* * Copyright (c) 2001, 2003, 2004, 2008-2011, 2013, 2015, 2017, 2018 * Todd C. Miller * * Permission to use, copy, modify, and distribute this software for any * purpose with or without fee is hereby granted, provided that the above * copyright notice and this permission notice appear in all copies. * * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */ #include #if !defined(HAVE_MKSTEMPS) || !defined(HAVE_MKDTEMP) #include #include #include #include #include #include #include #ifdef HAVE_STDLIB_H # include #endif /* HAVE_STDLIB_H */ #ifdef HAVE_STRING_H # include #endif /* HAVE_STRING_H */ #ifdef HAVE_STRINGS_H # include #endif /* HAVE_STRINGS_H */ #include #include #include #include "sudo_compat.h" #include "pathnames.h" #define MKTEMP_FILE 1 #define MKTEMP_DIR 2 #define TEMPCHARS "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789" #define NUM_CHARS (sizeof(TEMPCHARS) - 1) #define MIN_X 6 #ifndef INT_MAX #define INT_MAX 0x7fffffff #endif #if defined(HAVE_ARC4RANDOM) # define RAND() arc4random() # define SEED_T unsigned int #elif defined(HAVE_RANDOM) # define RAND() random() # define SRAND(_x) srandom((_x)) # define SEED_T unsigned int #elif defined(HAVE_LRAND48) # define RAND() lrand48() # define SRAND(_x) srand48((_x)) # define SEED_T long #else # define RAND() rand() # define SRAND(_x) srand((_x)) # define SEED_T unsigned int #endif static void seed_random(void) { #ifdef SRAND struct timeval tv; SEED_T seed; int fd; # ifdef HAVE_GETENTROPY /* Not really an fd, just has to be -1 on error. */ fd = getentropy(&seed, sizeof(seed)); # else /* * Seed from /dev/urandom if possible. */ fd = open(_PATH_DEV "urandom", O_RDONLY); if (fd != -1) { ssize_t nread; do { nread = read(fd, &seed, sizeof(seed)); } while (nread == -1 && errno == EINTR); close(fd); if (nread != (ssize_t)sizeof(seed)) fd = -1; } # endif /* HAVE_GETENTROPY */ /* * If no /dev/urandom, seed from time of day and process id * multiplied by small primes. */ if (fd == -1) { (void) gettimeofday(&tv, NULL); seed = (tv.tv_sec % 10000) * 523 + tv.tv_usec * 13 + (getpid() % 1000) * 983; } SRAND(seed); #endif } static unsigned int get_random(void) { static int initialized; if (!initialized) { seed_random(); initialized = 1; } return RAND() & 0xffffffff; } static int mktemp_internal(char *path, int slen, int mode) { char *start, *cp, *ep; const char tempchars[] = TEMPCHARS; unsigned int r, tries; size_t len; int fd; len = strlen(path); if (len < MIN_X || slen < 0 || (size_t)slen > len - MIN_X) { errno = EINVAL; return -1; } ep = path + len - slen; tries = 1; for (start = ep; start > path && start[-1] == 'X'; start--) { if (tries < INT_MAX / NUM_CHARS) tries *= NUM_CHARS; } tries *= 2; if (ep - start < MIN_X) { errno = EINVAL; return -1; } do { for (cp = start; cp != ep; cp++) { r = get_random() % NUM_CHARS; *cp = tempchars[r]; } switch (mode) { case MKTEMP_FILE: fd = open(path, O_CREAT|O_EXCL|O_RDWR, S_IRUSR|S_IWUSR); if (fd != -1 || errno != EEXIST) return fd; break; case MKTEMP_DIR: if (mkdir(path, S_IRWXU) == 0) return 0; if (errno != EEXIST) return -1; break; } } while (--tries); errno = EEXIST; return -1; } int sudo_mkstemps(char *path, int slen) { return mktemp_internal(path, slen, MKTEMP_FILE); } char * sudo_mkdtemp(char *path) { if (mktemp_internal(path, 0, MKTEMP_DIR) == -1) return NULL; return path; } #endif /* !HAVE_MKSTEMPS || !HAVE_MKDTEMP */