1##
2# Copyright (c) 2007-2009 Apple Inc. All rights reserved.
3#
4# @APPLE_LICENSE_HEADER_START@
5# 
6# This file contains Original Code and/or Modifications of Original Code
7# as defined in and that are subject to the Apple Public Source License
8# Version 2.0 (the 'License'). You may not use this file except in
9# compliance with the License. Please obtain a copy of the License at
10# http://www.opensource.apple.com/apsl/ and read it before using this
11# file.
12# 
13# The Original Code and all software distributed under the License are
14# distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
15# EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
16# INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
17# FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
18# Please see the License for the specific language governing rights and
19# limitations under the License.
20# 
21# @APPLE_LICENSE_HEADER_END@
22##
23PWD = $(shell pwd)
24TESTROOT = $(PWD)/../..
25include ${TESTROOT}/include/common.makefile
26
27ifeq "$(OS_NAME)" "iPhoneOS"
28	RUN_AS_USER = login -f -l mobile
29else
30	RUN_AS_USER = 
31endif
32
33#
34# a setuid main executable linked with -rpath links against a dylib 
35# that uses rpath to find another dylib.  It is an error if
36# LC_RPATH uses @loader_path or a relative path, but ok if it is an absolute path
37#
38
39all-check: all check
40
41check:
42	./main || echo "FAIL rpath-indirect-suid absolute path"
43	${RUN_AS_USER} ${PASS_IFF_FAILURE} "rpath-indirect-suid @loader_path path" "rpath-indirect-suid @loader_path path" $(PWD)/main_bad1
44	${RUN_AS_USER} ${PASS_IFF_FAILURE} "rpath-indirect-suid relative path" "rpath-indirect-suid relative path" $(PWD)/main_bad2
45	${RUN_AS_USER} ${PASS_IFF_FAILURE} "rpath-indirect-suid @rpath spoof" "rpath-indirect-suid @rpath spoof" $(PWD)/main_bad3
46
47all: main main_bad1 main_bad2 main_bad3
48
49hide/hole/libbar.dylib : bar.c
50	mkdir -p hide/hole
51	${CC} bar.c -dynamiclib -o hide/hole/libbar.dylib -install_name @rpath/libbar.dylib
52
53libfoo.dylib : foo.c hide/hole/libbar.dylib
54	${CC} foo.c -dynamiclib -o "${PWD}/libfoo.dylib" hide/hole/libbar.dylib 
55
56main : main.c libfoo.dylib
57	${CC} -I${TESTROOT}/include main.c -o main libfoo.dylib -Wl,-rpath -Wl,${PWD}/hide/hole
58	sudo chown root main
59	sudo chmod 4755 main
60
61main_bad1 : main.c libfoo.dylib
62	${CC} -I${TESTROOT}/include main.c -DDEFAULT_FAIL  -o main_bad1 libfoo.dylib -Wl,-rpath -Wl,@loader_path/hide/hole
63	sudo chown root main_bad1
64	sudo chmod 4755 main_bad1
65
66main_bad2 : main.c libfoo.dylib
67	${CC} -I${TESTROOT}/include main.c -DDEFAULT_FAIL -o main_bad2 libfoo.dylib -Wl,-rpath -Wl,hide/hole
68	sudo chown root main_bad2
69	sudo chmod 4755 main_bad2
70
71main_bad3 : main.c libfoo.dylib
72	${CC} -I${TESTROOT}/include main.c -DDEFAULT_FAIL -o main_bad3 libfoo.dylib 
73	ln -s hide/hole @rpath
74	sudo chown root main_bad3
75	sudo chmod 4755 main_bad3
76
77clean:
78	${RM} ${RMFLAGS} *~  main main_bad1 main_bad2 main_bad3 hide libfoo.dylib @rpath
79