--- /dev/null
+#ifndef _COMPAT_GETENV_H
+#define _COMPAT_GETENV_H
+
+/*
+ * Copyright (C) 2015 - Mathieu Desnoyers <mathieu.desnoyers@efficios.com>
+ *
+ * This library is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; only
+ * version 2.1 of the License.
+ *
+ * This library is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public
+ * License along with this library; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
+ */
+
+#include <stdlib.h>
+#include <unistd.h>
+#include <sys/types.h>
+#include <usterr-signal-safe.h>
+
+static inline
+int lttng_is_setuid_setgid(void)
+{
+ return geteuid() != getuid() || getegid() != getgid();
+}
+
+static inline
+char *lttng_secure_getenv(const char *name)
+{
+ if (lttng_is_setuid_setgid()) {
+ ERR("Getting environment variable '%s' from setuid/setgid binary refused for security reasons.",
+ name);
+ return NULL;
+ }
+ return getenv(name);
+}
+
+#endif /* _COMPAT_GETENV_H */
#include <urcu/arch.h>
#include "clock.h"
+#include "getenv.h"
struct lttng_trace_clock *lttng_trace_clock;
void (*libinit)(void);
- libname = secure_getenv("LTTNG_UST_CLOCK_PLUGIN");
+ libname = lttng_secure_getenv("LTTNG_UST_CLOCK_PLUGIN");
if (!libname)
return;
handle = dlopen(libname, RTLD_NOW);
#include <urcu/system.h>
#include <urcu/arch.h>
+#include "getenv.h"
#include "../libringbuffer/getcpu.h"
int (*lttng_get_cpu)(void);
void *handle;
void (*libinit)(void);
- libname = secure_getenv("LTTNG_UST_GETCPU_PLUGIN");
+ libname = lttng_secure_getenv("LTTNG_UST_GETCPU_PLUGIN");
if (!libname)
return;
handle = dlopen(libname, RTLD_NOW);