package cap import "errors" // GetFlag determines if the requested bit is enabled in the Flag // vector of the capability Set. func (c *Set) GetFlag(vec Flag, val Value) (bool, error) { if c == nil || len(c.flat) == 0 { // Checked this first, because otherwise we are sure // cInit has been called. return false, ErrBadSet } offset, mask, err := bitOf(vec, val) if err != nil { return false, err } c.mu.RLock() defer c.mu.RUnlock() return c.flat[offset][vec]&mask != 0, nil } // SetFlag sets the requested bits to the indicated enable state. This // function does not perform any security checks, so values can be set // out-of-order. Only when the Set is used to SetProc() etc., will the // bits be checked for validity and permission by the kernel. If the // function returns an error, the Set will not be modified. func (c *Set) SetFlag(vec Flag, enable bool, val ...Value) error { if c == nil || len(c.flat) == 0 { // Checked this first, because otherwise we are sure // cInit has been called. return ErrBadSet } c.mu.Lock() defer c.mu.Unlock() // Make a backup. replace := make([]uint32, words) for i := range replace { replace[i] = c.flat[i][vec] } var err error for _, v := range val { offset, mask, err2 := bitOf(vec, v) if err2 != nil { err = err2 break } if enable { c.flat[offset][vec] |= mask } else { c.flat[offset][vec] &= ^mask } } if err == nil { return nil } // Clean up. for i, bits := range replace { c.flat[i][vec] = bits } return err } // Clear fully clears a capability set. func (c *Set) Clear() error { if c == nil || len(c.flat) == 0 { return ErrBadSet } // startUp.Do(cInit) is not called here because c cannot be // initialized except via this package and doing that will // perform that call at least once (sic). c.mu.Lock() defer c.mu.Unlock() c.flat = make([]data, words) c.nsRoot = 0 return nil } // ErrBadValue indicates a bad capability value was specified. var ErrBadValue = errors.New("bad capability value") // bitOf converts from a Value into the offset and mask for a // specific Value bit in the compressed (kernel ABI) representation of // a capability vector. If the requested bit is unsupported, an error // is returned. func bitOf(vec Flag, val Value) (uint, uint32, error) { if vec > Inheritable || val > Value(words*32) { return 0, 0, ErrBadValue } u := uint(val) return u / 32, uint32(1) << (u % 32), nil } // allMask returns the mask of valid bits in the all mask for index. func allMask(index uint) (mask uint32) { if maxValues == 0 { panic("uninitialized package") } base := 32 * uint(index) if maxValues <= base { return } if maxValues >= 32+base { mask = ^mask return } mask = uint32((uint64(1) << (maxValues % 32)) - 1) return } // forceFlag sets 'all' capability values (supported by the kernel) of // a flag vector to enable. func (c *Set) forceFlag(vec Flag, enable bool) error { if c == nil || len(c.flat) == 0 || vec > Inheritable { return ErrBadSet } m := uint32(0) if enable { m = ^m } c.mu.Lock() defer c.mu.Unlock() for i := range c.flat { c.flat[i][vec] = m & allMask(uint(i)) } return nil } // ClearFlag clears a specific vector of Values associated with the // specified Flag. func (c *Set) ClearFlag(vec Flag) error { return c.forceFlag(vec, false) } // Compare returns 0 if c and d are identical in content. Otherwise, // this function returns a non-zero value of 3 independent bits: // (differE ? 1:0) | (differP ? 2:0) | (differI ? 4:0). The Differs() // function can be used to test for a difference in a specific Flag. func (c *Set) Compare(d *Set) (uint, error) { if c == nil || len(c.flat) == 0 || d == nil || len(d.flat) == 0 { return 0, ErrBadSet } var cf uint for i := 0; i < words; i++ { if c.flat[i][Effective]^d.flat[i][Effective] != 0 { cf |= (1 << Effective) } if c.flat[i][Permitted]^d.flat[i][Permitted] != 0 { cf |= (1 << Permitted) } if c.flat[i][Inheritable]^d.flat[i][Inheritable] != 0 { cf |= (1 << Inheritable) } } return cf, nil } // Differs processes the result of Compare and determines if the // Flag's components were different. func Differs(cf uint, vec Flag) bool { return cf&(1<