privilege-helper.hpp
Go to the documentation of this file.
1 /* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
2 /*
3  * Copyright (c) 2014-2022, Regents of the University of California,
4  * Arizona Board of Regents,
5  * Colorado State University,
6  * University Pierre & Marie Curie, Sorbonne University,
7  * Washington University in St. Louis,
8  * Beijing Institute of Technology,
9  * The University of Memphis.
10  *
11  * This file is part of NFD (Named Data Networking Forwarding Daemon).
12  * See AUTHORS.md for complete list of NFD authors and contributors.
13  *
14  * NFD is free software: you can redistribute it and/or modify it under the terms
15  * of the GNU General Public License as published by the Free Software Foundation,
16  * either version 3 of the License, or (at your option) any later version.
17  *
18  * NFD is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY;
19  * without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR
20  * PURPOSE. See the GNU General Public License for more details.
21  *
22  * You should have received a copy of the GNU General Public License along with
23  * NFD, e.g., in COPYING.md file. If not, see <http://www.gnu.org/licenses/>.
24  */
25 
26 #ifndef NFD_DAEMON_COMMON_PRIVILEGE_HELPER_HPP
27 #define NFD_DAEMON_COMMON_PRIVILEGE_HELPER_HPP
28 
29 #include "core/common.hpp"
30 
31 #include <unistd.h>
32 
33 namespace nfd {
34 
35 class PrivilegeHelper
36 {
37 public:
45  class Error
46  {
47  public:
48  explicit
49  Error(const std::string& what)
50  : m_whatMessage(what)
51  {
52  }
53 
54  const char*
55  what() const
56  {
57  return m_whatMessage.data();
58  }
59 
60  private:
61  const std::string m_whatMessage;
62  };
63 
64  static void
65  initialize(const std::string& userName, const std::string& groupName);
66 
67  static void
68  drop();
69 
70  template<class F>
71  static void
72  runElevated(F&& f)
73  {
74  raise();
75  try {
76  std::invoke(std::forward<F>(f));
77  }
78  catch (...) {
79  drop();
80  throw;
81  }
82  drop();
83  }
84 
85 NFD_PUBLIC_WITH_TESTS_ELSE_PRIVATE:
86  static void
87  raise();
88 
89 NFD_PUBLIC_WITH_TESTS_ELSE_PRIVATE:
90 #ifdef NFD_HAVE_PRIVILEGE_DROP_AND_ELEVATE
91  static uid_t s_normalUid;
92  static gid_t s_normalGid;
93 
94  static uid_t s_privilegedUid;
95  static gid_t s_privilegedGid;
96 #endif // NFD_HAVE_PRIVILEGE_DROP_AND_ELEVATE
97 };
98 
99 } // namespace nfd
100 
101 #endif // NFD_DAEMON_COMMON_PRIVILEGE_HELPER_HPP
nfd::PrivilegeHelper::Error
Indicates a serious seteuid/setegid failure.
Definition: privilege-helper.hpp:46
nfd::PrivilegeHelper::Error::Error
Error(const std::string &what)
Definition: privilege-helper.hpp:49
nfd::PrivilegeHelper::runElevated
static void runElevated(F &&f)
Definition: privilege-helper.hpp:72
nfd::PrivilegeHelper::initialize
static void initialize(const std::string &userName, const std::string &groupName)
Definition: privilege-helper.cpp:45
NFD_PUBLIC_WITH_TESTS_ELSE_PRIVATE
#define NFD_PUBLIC_WITH_TESTS_ELSE_PRIVATE
Definition: common.hpp:41
nfd
Definition: common.hpp:77