1## 2# Copyright (c) 2007-2009 Apple Inc. All rights reserved. 3# 4# @APPLE_LICENSE_HEADER_START@ 5# 6# This file contains Original Code and/or Modifications of Original Code 7# as defined in and that are subject to the Apple Public Source License 8# Version 2.0 (the 'License'). You may not use this file except in 9# compliance with the License. Please obtain a copy of the License at 10# http://www.opensource.apple.com/apsl/ and read it before using this 11# file. 12# 13# The Original Code and all software distributed under the License are 14# distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER 15# EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, 16# INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, 17# FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. 18# Please see the License for the specific language governing rights and 19# limitations under the License. 20# 21# @APPLE_LICENSE_HEADER_END@ 22## 23PWD = $(shell pwd) 24TESTROOT = $(PWD)/../.. 25include ${TESTROOT}/include/common.makefile 26 27ifeq "$(OS_NAME)" "iPhoneOS" 28 RUN_AS_USER = login -f -l mobile 29else 30 RUN_AS_USER = 31endif 32 33# 34# a setuid main executable linked with -rpath links against a dylib 35# that uses rpath to find another dylib. It is an error if 36# LC_RPATH uses @loader_path or a relative path, but ok if it is an absolute path 37# 38 39all-check: all check 40 41check: 42 ./main || echo "FAIL rpath-indirect-suid absolute path" 43 ${RUN_AS_USER} ${PASS_IFF_FAILURE} "rpath-indirect-suid @loader_path path" "rpath-indirect-suid @loader_path path" $(PWD)/main_bad1 44 ${RUN_AS_USER} ${PASS_IFF_FAILURE} "rpath-indirect-suid relative path" "rpath-indirect-suid relative path" $(PWD)/main_bad2 45 ${RUN_AS_USER} ${PASS_IFF_FAILURE} "rpath-indirect-suid @rpath spoof" "rpath-indirect-suid @rpath spoof" $(PWD)/main_bad3 46 47all: main main_bad1 main_bad2 main_bad3 48 49hide/hole/libbar.dylib : bar.c 50 mkdir -p hide/hole 51 ${CC} bar.c -dynamiclib -o hide/hole/libbar.dylib -install_name @rpath/libbar.dylib 52 53libfoo.dylib : foo.c hide/hole/libbar.dylib 54 ${CC} foo.c -dynamiclib -o "${PWD}/libfoo.dylib" hide/hole/libbar.dylib 55 56main : main.c libfoo.dylib 57 ${CC} -I${TESTROOT}/include main.c -o main libfoo.dylib -Wl,-rpath -Wl,${PWD}/hide/hole 58 sudo chown root main 59 sudo chmod 4755 main 60 61main_bad1 : main.c libfoo.dylib 62 ${CC} -I${TESTROOT}/include main.c -DDEFAULT_FAIL -o main_bad1 libfoo.dylib -Wl,-rpath -Wl,@loader_path/hide/hole 63 sudo chown root main_bad1 64 sudo chmod 4755 main_bad1 65 66main_bad2 : main.c libfoo.dylib 67 ${CC} -I${TESTROOT}/include main.c -DDEFAULT_FAIL -o main_bad2 libfoo.dylib -Wl,-rpath -Wl,hide/hole 68 sudo chown root main_bad2 69 sudo chmod 4755 main_bad2 70 71main_bad3 : main.c libfoo.dylib 72 ${CC} -I${TESTROOT}/include main.c -DDEFAULT_FAIL -o main_bad3 libfoo.dylib 73 ln -s hide/hole @rpath 74 sudo chown root main_bad3 75 sudo chmod 4755 main_bad3 76 77clean: 78 ${RM} ${RMFLAGS} *~ main main_bad1 main_bad2 main_bad3 hide libfoo.dylib @rpath 79