-
Notifications
You must be signed in to change notification settings - Fork 51
/
uidlistener.go
122 lines (97 loc) · 2.92 KB
/
uidlistener.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
// +build linux
package server
import (
"net"
"strconv"
"syscall"
"time"
)
// UIDConnection is a connection wrapper that allows to recover
// the user ID of the calling process.
type UIDConnection struct {
nc *net.UnixConn
}
// Read implements the read interface of the connection.
func (c UIDConnection) Read(b []byte) (n int, err error) {
return c.nc.Read(b)
}
// Write implements the write interface of the connection.
func (c UIDConnection) Write(b []byte) (n int, err error) {
return c.nc.Write(b)
}
// Close implements the close interface of the connection.
func (c UIDConnection) Close() error {
return c.nc.Close()
}
// LocalAddr implements the LocalAddr interface of the connection.
func (c UIDConnection) LocalAddr() net.Addr {
return c.nc.LocalAddr()
}
// RemoteAddr implements the RemoteAddr interface of the connection.
// This is the main change where we actually use the FD of the unix
// socket to find the remote UID.
func (c UIDConnection) RemoteAddr() net.Addr {
uidAddr := &UIDAddr{
NetworkAddress: c.nc.RemoteAddr().Network(),
}
f, err := c.nc.File()
if err != nil {
uidAddr.Address = "NotAvailable"
}
defer f.Close() // nolint
cred, err := syscall.GetsockoptUcred(int(f.Fd()), syscall.SOL_SOCKET, syscall.SO_PEERCRED)
if err != nil {
uidAddr.Address = "NotAvailable"
}
uidAddr.Address = strconv.Itoa(int(cred.Uid)) + ":" + strconv.Itoa(int(cred.Gid)) + ":" + strconv.Itoa(int(cred.Pid))
return uidAddr
}
// SetDeadline implements the SetDeadLine interface.
func (c UIDConnection) SetDeadline(t time.Time) error {
return c.nc.SetDeadline(t)
}
// SetReadDeadline implements the SetReadDeadling interface
func (c UIDConnection) SetReadDeadline(t time.Time) error {
return c.nc.SetReadDeadline(t)
}
// SetWriteDeadline implements the SetWriteDeadline method of the interface.
func (c UIDConnection) SetWriteDeadline(t time.Time) error {
return c.nc.SetWriteDeadline(t)
}
// UIDAddr implements the Addr interface and allows us to customize the address.
type UIDAddr struct {
NetworkAddress string
Address string
}
// Network returns the network of the connection
func (a *UIDAddr) Network() string {
return a.NetworkAddress
}
// String returns a string representation.
func (a *UIDAddr) String() string {
return a.Address
}
// UIDListener is a custom net listener that uses the UID connection
type UIDListener struct {
nl *net.UnixListener
}
// NewUIDListener creates a new UID listener.
func NewUIDListener(nl *net.UnixListener) *UIDListener {
return &UIDListener{nl: nl}
}
// Accept implements the accept method of the interface.
func (l UIDListener) Accept() (c net.Conn, err error) {
nc, err := l.nl.AcceptUnix()
if err != nil {
return nil, err
}
return UIDConnection{nc}, nil
}
// Close implements the close method of the interface.
func (l UIDListener) Close() error {
return l.nl.Close()
}
// Addr returns the address of the listener.
func (l UIDListener) Addr() net.Addr {
return l.nl.Addr()
}