2 * Copyright (C) 2008 The Android Open Source Project
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
28 #include <private/android_filesystem_config.h>
30 void pwtoid(const char* tok, uid_t* uid, gid_t* gid) {
31 struct passwd* pw = getpwnam(tok);
33 if (uid) *uid = pw->pw_uid;
34 if (gid) *gid = pw->pw_gid;
38 uid_t tmpid = strtoul(tok, &end, 10);
39 if (errno != 0 || end == tok) error(1, errno, "invalid uid/gid '%s'", tok);
40 if (uid) *uid = tmpid;
41 if (gid) *gid = tmpid;
45 void extract_uidgids(const char* uidgids, uid_t* uid, gid_t* gid, gid_t* gids, int* gids_count) {
46 char *clobberablegids;
51 if (!uidgids || !*uidgids) {
57 clobberablegids = strdup(uidgids);
58 strcpy(clobberablegids, uidgids);
59 nexttok = clobberablegids;
60 tok = strsep(&nexttok, ",");
61 pwtoid(tok, uid, gid);
62 tok = strsep(&nexttok, ",");
64 /* gid is already set above */
66 free(clobberablegids);
69 pwtoid(tok, NULL, gid);
71 while ((gids_found < *gids_count) && (tok = strsep(&nexttok, ","))) {
72 pwtoid(tok, NULL, gids);
76 if (nexttok && gids_found == *gids_count) {
77 fprintf(stderr, "too many group ids\n");
79 *gids_count = gids_found;
80 free(clobberablegids);
83 int main(int argc, char** argv) {
84 uid_t current_uid = getuid();
85 if (current_uid != AID_ROOT && current_uid != AID_SHELL) error(1, 0, "not allowed");
87 // Handle -h and --help.
89 if (*argv && (strcmp(*argv, "--help") == 0 || strcmp(*argv, "-h") == 0)) {
91 "usage: su [UID[,GID[,GID2]...]] [COMMAND [ARG...]]\n"
93 "Switch to WHO (default 'root') and run the given command (default sh).\n"
95 "where WHO is a comma-separated list of user, group,\n"
96 "and supplementary groups in that order.\n"
101 // The default user is root.
105 // If there are any arguments, the first argument is the uid/gid/supplementary groups.
108 int gids_count = sizeof(gids)/sizeof(gids[0]);
109 extract_uidgids(*argv, &uid, &gid, gids, &gids_count);
111 if (setgroups(gids_count, gids)) {
112 error(1, errno, "setgroups failed");
118 if (setgid(gid)) error(1, errno, "setgid failed");
119 if (setuid(uid)) error(1, errno, "setuid failed");
121 // Reset parts of the environment.
122 setenv("PATH", _PATH_DEFPATH, 1);
124 struct passwd* pw = getpwuid(uid);
126 setenv("LOGNAME", pw->pw_name, 1);
127 setenv("USER", pw->pw_name, 1);
133 // Set up the arguments for exec.
134 char* exec_args[argc + 1]; // Having too much space is fine.
136 for (; *argv != NULL; ++i) {
137 exec_args[i] = *argv++;
139 // Default to the standard shell.
140 if (i == 0) exec_args[i++] = "/system/bin/sh";
143 execvp(exec_args[0], exec_args);
144 error(1, errno, "failed to exec %s", exec_args[0]);