1 /* SPDX-License-Identifier: BSD-2-Clause */
3 * Privilege Separation for dhcpcd, BSD driver
4 * Copyright (c) 2006-2021 Roy Marples <roy@marples.name>
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
17 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
18 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
19 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
20 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
21 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
22 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
23 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
24 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
25 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
29 #include <sys/ioctl.h>
31 /* Need these for filtering the ioctls */
32 #include <arpa/inet.h>
34 #include <netinet/if_ether.h>
35 #include <netinet/in.h>
36 #include <netinet6/in6_var.h>
37 #include <netinet6/nd6.h>
39 #include <netinet/if_ether.h>
40 #include <net/if_vlanvar.h> /* Needs netinet/if_ether.h */
41 #elif defined(__DragonFly__)
42 #include <net/vlan/if_vlan_var.h>
44 #include <net/if_vlan_var.h>
47 # include <netproto/802_11/ieee80211_ioctl.h>
49 # include <net80211/ieee80211.h>
50 # include <net80211/ieee80211_ioctl.h>
62 ps_root_doioctldom(int domain, unsigned long req, void *data, size_t len)
66 /* Only allow these ioctls */
69 case SIOCGIFDATA: /* FALLTHROUGH */
72 case SIOCG80211NWID: /* FALLTHROUGH */
75 case SIOCGETVLAN: /* FALLTHROUGH */
78 case SIOCIFAFATTACH: /* FALLTHROUGH */
81 case SIOCSIFXFLAGS: /* FALLTHROUGH */
83 #ifdef SIOCSIFINFO_FLAGS
84 case SIOCSIFINFO_FLAGS: /* FALLTHROUGH */
86 #ifdef SIOCSRTRFLUSH_IN6
87 case SIOCSRTRFLUSH_IN6: /* FALLTHROUGH */
88 case SIOCSPFXFLUSH_IN6: /* FALLTHROUGH */
90 #if defined(SIOCALIFADDR) && defined(IFLR_ACTIVE)
91 case SIOCALIFADDR: /* FALLTHROUGH */
92 case SIOCDLIFADDR: /* FALLTHROUGH */
94 case SIOCSIFLLADDR: /* FALLTHROUGH */
96 #ifdef SIOCSIFINFO_IN6
97 case SIOCSIFINFO_IN6: /* FALLTHROUGH */
99 case SIOCAIFADDR_IN6: /* FALLTHROUGH */
100 case SIOCDIFADDR_IN6:
107 s = socket(domain, SOCK_DGRAM, 0);
110 err = ioctl(s, req, data, len);
116 ps_root_doroute(void *data, size_t len)
121 s = socket(PF_ROUTE, SOCK_RAW, 0);
123 err = write(s, data, len);
131 #if defined(HAVE_CAPSICUM) || defined(HAVE_PLEDGE)
133 ps_root_doindirectioctl(unsigned long req, void *data, size_t len)
136 struct ifreq ifr = { .ifr_flags = 0 };
138 /* ioctl filtering is done in ps_root_doioctldom */
140 if (len < IFNAMSIZ + 1) {
145 strlcpy(ifr.ifr_name, p, IFNAMSIZ);
147 memmove(data, p + IFNAMSIZ, len);
150 return ps_root_doioctldom(PF_INET, req, &ifr, sizeof(ifr));
156 ps_root_doifignoregroup(void *data, size_t len)
160 if (len == 0 || ((const char *)data)[len - 1] != '\0') {
165 s = socket(PF_INET, SOCK_DGRAM, 0);
168 err = if_ignoregroup(s, data);
175 ps_root_os(struct ps_msghdr *psm, struct msghdr *msg,
176 void **rdata, size_t *rlen)
178 struct iovec *iov = msg->msg_iov;
179 void *data = iov->iov_base;
180 size_t len = iov->iov_len;
183 switch (psm->ps_cmd) {
185 err = ps_root_doioctldom(PF_LINK, psm->ps_flags, data, len);
188 err = ps_root_doioctldom(PF_INET6, psm->ps_flags, data, len);
191 return ps_root_doroute(data, len);
192 #if defined(HAVE_CAPSICUM) || defined(HAVE_PLEDGE)
193 case PS_IOCTLINDIRECT:
194 err = ps_root_doindirectioctl(psm->ps_flags, data, len);
199 return ps_root_doifignoregroup(data, len);
214 ps_root_ioctldom(struct dhcpcd_ctx *ctx, uint16_t domain, unsigned long request,
215 void *data, size_t len)
218 if (ps_sendcmd(ctx, ctx->ps_root_fd, domain,
219 request, data, len) == -1)
221 return ps_root_readerror(ctx, data, len);
225 ps_root_ioctllink(struct dhcpcd_ctx *ctx, unsigned long request,
226 void *data, size_t len)
229 return ps_root_ioctldom(ctx, PS_IOCTLLINK, request, data, len);
233 ps_root_ioctl6(struct dhcpcd_ctx *ctx, unsigned long request,
234 void *data, size_t len)
237 return ps_root_ioctldom(ctx, PS_IOCTL6, request, data, len);
241 ps_root_route(struct dhcpcd_ctx *ctx, void *data, size_t len)
244 if (ps_sendcmd(ctx, ctx->ps_root_fd, PS_ROUTE, 0, data, len) == -1)
246 return ps_root_readerror(ctx, data, len);
249 #if defined(HAVE_CAPSICUM) || defined(HAVE_PLEDGE)
251 ps_root_indirectioctl(struct dhcpcd_ctx *ctx, unsigned long request,
252 const char *ifname, void *data, size_t len)
256 if (IFNAMSIZ + len > sizeof(buf)) {
261 strlcpy(buf, ifname, IFNAMSIZ);
262 memcpy(buf + IFNAMSIZ, data, len);
263 if (ps_sendcmd(ctx, ctx->ps_root_fd, PS_IOCTLINDIRECT,
264 request, buf, IFNAMSIZ + len) == -1)
266 return ps_root_readerror(ctx, data, len);
270 ps_root_ifignoregroup(struct dhcpcd_ctx *ctx, const char *ifname)
273 if (ps_sendcmd(ctx, ctx->ps_root_fd, PS_IFIGNOREGRP, 0,
274 ifname, strlen(ifname) + 1) == -1)
276 return ps_root_readerror(ctx, NULL, 0);