]>
Commit | Line | Data |
---|---|---|
1 | ## | |
2 | # Copyright (c) 2007-2009 Apple Inc. All rights reserved. | |
3 | # | |
4 | # @APPLE_LICENSE_HEADER_START@ | |
5 | # | |
6 | # This file contains Original Code and/or Modifications of Original Code | |
7 | # as defined in and that are subject to the Apple Public Source License | |
8 | # Version 2.0 (the 'License'). You may not use this file except in | |
9 | # compliance with the License. Please obtain a copy of the License at | |
10 | # http://www.opensource.apple.com/apsl/ and read it before using this | |
11 | # file. | |
12 | # | |
13 | # The Original Code and all software distributed under the License are | |
14 | # distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER | |
15 | # EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, | |
16 | # INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, | |
17 | # FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. | |
18 | # Please see the License for the specific language governing rights and | |
19 | # limitations under the License. | |
20 | # | |
21 | # @APPLE_LICENSE_HEADER_END@ | |
22 | ## | |
23 | PWD = $(shell pwd) | |
24 | TESTROOT = $(PWD)/../.. | |
25 | include ${TESTROOT}/include/common.makefile | |
26 | ||
27 | ifeq "$(OS_NAME)" "iPhoneOS" | |
28 | RUN_AS_USER = login -f -l mobile | |
29 | else | |
30 | RUN_AS_USER = | |
31 | endif | |
32 | ||
33 | # | |
34 | # a setuid main executable linked with -rpath links against a dylib | |
35 | # that uses rpath to find another dylib. It is an error if | |
36 | # LC_RPATH uses @loader_path or a relative path, but ok if it is an absolute path | |
37 | # | |
38 | ||
39 | all-check: all check | |
40 | ||
41 | check: | |
42 | ./main || echo "FAIL rpath-indirect-suid absolute path" | |
43 | ${RUN_AS_USER} ${PASS_IFF_FAILURE} "rpath-indirect-suid @loader_path path" "rpath-indirect-suid @loader_path path" $(PWD)/main_bad1 | |
44 | ${RUN_AS_USER} ${PASS_IFF_FAILURE} "rpath-indirect-suid relative path" "rpath-indirect-suid relative path" $(PWD)/main_bad2 | |
45 | ${RUN_AS_USER} ${PASS_IFF_FAILURE} "rpath-indirect-suid @rpath spoof" "rpath-indirect-suid @rpath spoof" $(PWD)/main_bad3 | |
46 | ||
47 | all: main main_bad1 main_bad2 main_bad3 | |
48 | ||
49 | hide/hole/libbar.dylib : bar.c | |
50 | mkdir -p hide/hole | |
51 | ${CC} bar.c -dynamiclib -o hide/hole/libbar.dylib -install_name @rpath/libbar.dylib | |
52 | ||
53 | libfoo.dylib : foo.c hide/hole/libbar.dylib | |
54 | ${CC} foo.c -dynamiclib -o "${PWD}/libfoo.dylib" hide/hole/libbar.dylib | |
55 | ||
56 | main : main.c libfoo.dylib | |
57 | ${CC} -I${TESTROOT}/include main.c -o main libfoo.dylib -Wl,-rpath -Wl,${PWD}/hide/hole | |
58 | sudo chown root main | |
59 | sudo chmod 4755 main | |
60 | ||
61 | main_bad1 : main.c libfoo.dylib | |
62 | ${CC} -I${TESTROOT}/include main.c -DDEFAULT_FAIL -o main_bad1 libfoo.dylib -Wl,-rpath -Wl,@loader_path/hide/hole | |
63 | sudo chown root main_bad1 | |
64 | sudo chmod 4755 main_bad1 | |
65 | ||
66 | main_bad2 : main.c libfoo.dylib | |
67 | ${CC} -I${TESTROOT}/include main.c -DDEFAULT_FAIL -o main_bad2 libfoo.dylib -Wl,-rpath -Wl,hide/hole | |
68 | sudo chown root main_bad2 | |
69 | sudo chmod 4755 main_bad2 | |
70 | ||
71 | main_bad3 : main.c libfoo.dylib | |
72 | ${CC} -I${TESTROOT}/include main.c -DDEFAULT_FAIL -o main_bad3 libfoo.dylib | |
73 | ln -s hide/hole @rpath | |
74 | sudo chown root main_bad3 | |
75 | sudo chmod 4755 main_bad3 | |
76 | ||
77 | clean: | |
78 | ${RM} ${RMFLAGS} *~ main main_bad1 main_bad2 main_bad3 hide libfoo.dylib @rpath |