simple_libc 0.5.0

Safe, friendly interfaces to some commonly used Unix libc functions.
Documentation 
use std::io;
use std::os::unix;
use std::os::unix::io::AsRawFd;

use crate::{GidT, Int, SocklenT, UidT};

#[derive(Debug, Clone, Eq, Hash, PartialEq)]
pub struct Xucred {
    #[cfg(target_os = "freebsd")]
    pub pid: crate::PidT,
    pub uid: UidT,
    pub gid: GidT,
    pub groups: Vec<GidT>,
}

// The libc crate doesn't define the xucred struct for DragonflyBSD.
//
// FreeBSD passes the PID in a private union field. However, libc makes that
// field private, so we use a custom struct to get access to it.
#[cfg(any(target_os = "dragonfly", target_os = "freebsd"))]
type RawXucred = crate::types::xucred;
#[cfg(not(any(target_os = "dragonfly", target_os = "freebsd")))]
type RawXucred = libc::xucred;

pub fn get_xucred_raw(sockfd: Int) -> io::Result<Xucred> {
    let mut raw_xucred: RawXucred = unsafe { std::mem::zeroed() };

    #[cfg(not(target_os = "openbsd"))]
    {
        raw_xucred.cr_version = libc::XUCRED_VERSION;
    }

    let len = unsafe {
        super::getsockopt_raw(
            sockfd,
            0,
            libc::LOCAL_PEERCRED,
            std::slice::from_mut(&mut raw_xucred),
        )
    }?;

    if len != std::mem::size_of::<RawXucred>() as SocklenT {
        return Err(io::Error::from_raw_os_error(libc::EINVAL));
    }

    #[cfg(not(target_os = "openbsd"))]
    {
        if raw_xucred.cr_version != libc::XUCRED_VERSION {
            return Err(io::Error::from_raw_os_error(libc::EINVAL));
        }

        // On FreeBSD, DragonflyBSD, and macOS, we need a GID to pull
        // out as the primary GID.
        if raw_xucred.cr_ngroups < 1 {
            return Err(io::Error::from_raw_os_error(libc::EINVAL));
        }
    }

    Ok(Xucred {
        #[cfg(target_os = "freebsd")]
        pid: unsafe { raw_xucred.cr_pid() },
        uid: raw_xucred.cr_uid,
        // OpenBSD has a separate field for the GID.
        #[cfg(target_os = "openbsd")]
        gid: raw_xucred.cr_gid,
        // FreeBSD, DragonflyBSD, and macOS just use the first
        // ID from `cr_groups`.
        #[cfg(not(target_os = "openbsd"))]
        gid: raw_xucred.cr_groups[0],
        groups: raw_xucred.cr_groups[..raw_xucred.cr_ngroups as usize].into(),
    })
}

#[inline]
pub fn get_xucred(sock: &unix::net::UnixStream) -> io::Result<Xucred> {
    get_xucred_raw(sock.as_raw_fd())
}

#[cfg(test)]
mod tests {
    use super::*;

    use std::os::unix::net::UnixStream;

    use crate::process;

    #[test]
    fn test_get_xucred() {
        let (a, b) = UnixStream::pair().unwrap();

        let mut groups = process::getgroups().unwrap();
        groups.sort();

        let mut acred = get_xucred(&a).unwrap();
        assert_eq!(acred.uid, process::geteuid());
        assert_eq!(acred.gid, process::getegid());

        acred.groups.sort();
        assert_eq!(acred.groups, groups);

        #[cfg(target_os = "freebsd")]
        assert_eq!(acred.pid, process::getpid());

        let mut bcred = get_xucred(&b).unwrap();
        assert_eq!(bcred.uid, process::geteuid());
        assert_eq!(bcred.gid, process::getegid());

        bcred.groups.sort();
        assert_eq!(bcred.groups, groups);

        #[cfg(target_os = "freebsd")]
        assert_eq!(acred.pid, process::getpid());
    }
}