Mercurial > pidgin
view src/privacy.c @ 13659:a92263b13380
[gaim-migrate @ 16061]
silcgaim_check_silc_dir() checks to make sure the user's private
key has permission 0600. If it doesn't, it chmod's the file.
Nathanael Hoyle pointed out the totally absurd scenario where, if
Gaim is suid root, someone could replace the private key with
something else between the fstat and the chmod so that the file
permissions are changed on a file that the user wouldn't otherwise
have access to. He also suggested a fix along the lines of this
one.
Ethan said this still isn't totally safe, but it should be a little
better, and I don't really care anyway because you'd have to be a
moron to run Gaim with the suid bit set in the first place.
committer: Tailor Script <tailor@pidgin.im>
| author | Mark Doliner <mark@kingant.net> |
|---|---|
| date | Wed, 19 Apr 2006 02:12:45 +0000 |
| parents | 18e621aa8a43 |
| children | 7f276f375789 |
line wrap: on
line source
/** * gaim * * Gaim is the legal property of its developers, whose names are too numerous * to list here. Please refer to the COPYRIGHT file distributed with this * source distribution. * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA */ #include "internal.h" #include "account.h" #include "privacy.h" #include "server.h" #include "util.h" static GaimPrivacyUiOps *privacy_ops = NULL; gboolean gaim_privacy_permit_add(GaimAccount *account, const char *who, gboolean local_only) { GSList *l; char *name; g_return_val_if_fail(account != NULL, FALSE); g_return_val_if_fail(who != NULL, FALSE); name = g_strdup(gaim_normalize(account, who)); for (l = account->permit; l != NULL; l = l->next) { if (!gaim_utf8_strcasecmp(name, gaim_normalize(account, (char *)l->data))) break; } g_free(name); if (l != NULL) return FALSE; account->permit = g_slist_append(account->permit, g_strdup(who)); if (!local_only && gaim_account_is_connected(account)) serv_add_permit(gaim_account_get_connection(account), who); if (privacy_ops != NULL && privacy_ops->permit_added != NULL) privacy_ops->permit_added(account, who); gaim_blist_schedule_save(); return TRUE; } gboolean gaim_privacy_permit_remove(GaimAccount *account, const char *who, gboolean local_only) { GSList *l; char *name; g_return_val_if_fail(account != NULL, FALSE); g_return_val_if_fail(who != NULL, FALSE); name = g_strdup(gaim_normalize(account, who)); for (l = account->permit; l != NULL; l = l->next) { if (!gaim_utf8_strcasecmp(name, gaim_normalize(account, (char *)l->data))) break; } g_free(name); if (l == NULL) return FALSE; g_free(l->data); account->permit = g_slist_delete_link(account->permit, l); if (!local_only && gaim_account_is_connected(account)) serv_rem_permit(gaim_account_get_connection(account), who); if (privacy_ops != NULL && privacy_ops->permit_removed != NULL) privacy_ops->permit_removed(account, who); gaim_blist_schedule_save(); return TRUE; } gboolean gaim_privacy_deny_add(GaimAccount *account, const char *who, gboolean local_only) { GSList *l; char *name; g_return_val_if_fail(account != NULL, FALSE); g_return_val_if_fail(who != NULL, FALSE); name = g_strdup(gaim_normalize(account, who)); for (l = account->deny; l != NULL; l = l->next) { if (!gaim_utf8_strcasecmp(name, gaim_normalize(account, (char *)l->data))) break; } g_free(name); if (l != NULL) return FALSE; account->deny = g_slist_append(account->deny, g_strdup(who)); if (!local_only && gaim_account_is_connected(account)) serv_add_deny(gaim_account_get_connection(account), who); if (privacy_ops != NULL && privacy_ops->deny_added != NULL) privacy_ops->deny_added(account, who); gaim_blist_schedule_save(); return TRUE; } gboolean gaim_privacy_deny_remove(GaimAccount *account, const char *who, gboolean local_only) { GSList *l; char *name; g_return_val_if_fail(account != NULL, FALSE); g_return_val_if_fail(who != NULL, FALSE); name = g_strdup(gaim_normalize(account, who)); for (l = account->deny; l != NULL; l = l->next) { if (!gaim_utf8_strcasecmp(name, gaim_normalize(account, (char *)l->data))) break; } g_free(name); if (l == NULL) return FALSE; name = l->data; account->deny = g_slist_delete_link(account->deny, l); if (!local_only && gaim_account_is_connected(account)) serv_rem_deny(gaim_account_get_connection(account), name); if (privacy_ops != NULL && privacy_ops->deny_removed != NULL) privacy_ops->deny_removed(account, name); g_free(name); gaim_blist_schedule_save(); return TRUE; } gboolean gaim_privacy_check(GaimAccount *account, const char *who) { GSList *list; switch (account->perm_deny) { case GAIM_PRIVACY_ALLOW_ALL: return TRUE; case GAIM_PRIVACY_DENY_ALL: return FALSE; case GAIM_PRIVACY_ALLOW_USERS: for (list=account->permit; list!=NULL; list=list->next) { if (!gaim_utf8_strcasecmp(who, gaim_normalize(account, (char *)list->data))) return TRUE; } return FALSE; case GAIM_PRIVACY_DENY_USERS: for (list=account->deny; list!=NULL; list=list->next) { if (!gaim_utf8_strcasecmp(who, gaim_normalize( account, (char *)list->data ))) return FALSE; } return TRUE; case GAIM_PRIVACY_ALLOW_BUDDYLIST: return (gaim_find_buddy(account, who) != NULL); default: g_return_val_if_reached(TRUE); } } void gaim_privacy_set_ui_ops(GaimPrivacyUiOps *ops) { privacy_ops = ops; } GaimPrivacyUiOps * gaim_privacy_get_ui_ops(void) { return privacy_ops; } void gaim_privacy_init(void) { }