/
types.go
85 lines (66 loc) · 1.37 KB
/
types.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
// Copyright (c) Facebook, Inc. and its affiliates.
//
// This source code is licensed under the MIT license found in the
// LICENSE file in the root directory of this source tree.
package transport
import (
"fmt"
"os"
"sync"
"syscall"
)
type deferedStack struct {
funcs []func()
closed bool
done chan struct{}
mu sync.Mutex
}
func newDeferedStack() *deferedStack {
s := &deferedStack{nil, false, make(chan struct{}), sync.Mutex{}}
go func() {
<-s.done
for i := len(s.funcs) - 1; i >= 0; i-- {
s.funcs[i]()
}
}()
return s
}
func (s *deferedStack) Add(f func()) {
s.mu.Lock()
defer s.mu.Unlock()
s.funcs = append(s.funcs, f)
}
func (s *deferedStack) Done() {
s.mu.Lock()
defer s.mu.Unlock()
if s.closed {
return
}
close(s.done)
s.closed = true
}
func canExecute(fi os.FileInfo) bool {
// TODO: deal with acls?
stat := fi.Sys().(*syscall.Stat_t)
if stat.Uid == uint32(os.Getuid()) {
return stat.Mode&0500 == 0500
}
if stat.Gid == uint32(os.Getgid()) {
return stat.Mode&0050 == 0050
}
return stat.Mode&0005 == 0005
}
func checkBinary(bin string) error {
// check binary exists and is executable
fi, err := os.Stat(bin)
if err != nil {
return fmt.Errorf("no such file")
}
if !fi.Mode().IsRegular() {
return fmt.Errorf("not a file")
}
if !canExecute(fi) {
return fmt.Errorf("provided binary is not executable")
}
return nil
}