[thirdparty/man-pages.git] / man2 / setfsgid.2

.\" Copyright (C) 1995, Thomas K. Dyas <tdyas@eden.rutgers.edu>
.\"
.\" Permission is granted to make and distribute verbatim copies of this
.\" manual provided the copyright notice and this permission notice are
.\" preserved on all copies.
.\"
.\" Permission is granted to copy and distribute modified versions of this
.\" manual under the conditions for verbatim copying, provided that the
.\" entire resulting derived work is distributed under the terms of a
.\" permission notice identical to this one.
.\"
.\" Since the Linux kernel and libraries are constantly changing, this
.\" manual page may be incorrect or out-of-date.  The author(s) assume no
.\" responsibility for errors or omissions, or for damages resulting from
.\" the use of the information contained herein.  The author(s) may not
.\" have taken the same level of care in the production of this manual,
.\" which is licensed free of charge, as they might when working
.\" professionally.
.\"
.\" Formatted or processed versions of this manual, if unaccompanied by
.\" the source, must acknowledge the copyright and authors of this work.
.\"
.\" Created   1995-08-06 Thomas K. Dyas <tdyas@eden.rutgers.edu>
.\" Modified  2000-07-01 aeb
.\" Modified  2002-07-23 aeb
.\" Modified, 27 May 2004, Michael Kerrisk <mtk-manpages@gmx.net>
.\"     Added notes on capability requirements
.\"
.TH SETFSGID 2 2004-05-27 "Linux 2.6.6" "Linux Programmer's Manual"
.SH NAME
setfsgid \- set group identity used for file system checks
.SH SYNOPSIS
.B #include <unistd.h>
/* glibc uses <sys/fsuid.h> */
.sp
.BI "int setfsgid(uid_t " fsgid );
.SH DESCRIPTION
The system call
.BR setfsgid ()
sets the group ID that the Linux kernel uses to check for all accesses
to the file system.
Normally, the value of
.I fsgid
will shadow the value of the effective group ID.
In fact, whenever the
effective group ID is changed,
.I fsgid
will also be changed to the new value of the effective group ID.

Explicit calls to
.BR setfsuid ()
and
.BR setfsgid ()
are usually only used by programs such as the Linux NFS server that
need to change what user and group ID is used for file access without a
corresponding change in the real and effective user and group IDs.
A change in the normal user IDs for a program such as the NFS server
is a security hole that can expose it to unwanted signals. (But see below.)

.BR setfsgid ()
will only succeed if the caller is the superuser or if
.I fsgid
matches either the real group ID, effective group ID,
saved set-group-ID, or the current value of
.IR fsgid .
.SH "RETURN VALUE"
On success, the previous value of
.I fsgid
is returned.
On error, the current value of
.I fsgid
is returned.
.SH "CONFORMING TO"
.BR setfsgid ()
is Linux specific and should not be used in programs intended
to be portable.
It is present since Linux 1.1.44 and in libc since libc 4.7.6.
.SH BUGS
No error messages of any kind are returned to the caller.
At the very
least,
.B EPERM
should be returned when the call fails (because the caller lacks the
.B CAP_SETGID
capability).
.SH NOTES
When glibc determines that the argument is not a valid group ID,
it will return \-1 and set \fIerrno\fP to EINVAL without attempting
the system call.
.LP
Note that at the time this system call was introduced, a process
could send a signal to a process with the same effective user ID.
Today signal permission handling is slightly different.
.SH "SEE ALSO"
.BR kill (2),
.BR setfsuid (2),
.BR capabilities (7)
Commit	Line	Data
fea681da MK	1	.\" Copyright (C) 1995, Thomas K. Dyas <tdyas@eden.rutgers.edu>
	2	.\"
	3	.\" Permission is granted to make and distribute verbatim copies of this
	4	.\" manual provided the copyright notice and this permission notice are
	5	.\" preserved on all copies.
	6	.\"
	7	.\" Permission is granted to copy and distribute modified versions of this
	8	.\" manual under the conditions for verbatim copying, provided that the
	9	.\" entire resulting derived work is distributed under the terms of a
	10	.\" permission notice identical to this one.
c13182ef	11	.\"
fea681da MK	12	.\" Since the Linux kernel and libraries are constantly changing, this
	13	.\" manual page may be incorrect or out-of-date. The author(s) assume no
	14	.\" responsibility for errors or omissions, or for damages resulting from
	15	.\" the use of the information contained herein. The author(s) may not
	16	.\" have taken the same level of care in the production of this manual,
	17	.\" which is licensed free of charge, as they might when working
	18	.\" professionally.
c13182ef	19	.\"
fea681da MK	20	.\" Formatted or processed versions of this manual, if unaccompanied by
	21	.\" the source, must acknowledge the copyright and authors of this work.
	22	.\"
	23	.\" Created 1995-08-06 Thomas K. Dyas <tdyas@eden.rutgers.edu>
	24	.\" Modified 2000-07-01 aeb
	25	.\" Modified 2002-07-23 aeb
305a0578	26	.\" Modified, 27 May 2004, Michael Kerrisk <mtk-manpages@gmx.net>
fea681da MK	27	.\" Added notes on capability requirements
	28	.\"
	29	.TH SETFSGID 2 2004-05-27 "Linux 2.6.6" "Linux Programmer's Manual"
	30	.SH NAME
	31	setfsgid \- set group identity used for file system checks
	32	.SH SYNOPSIS
	33	.B #include <unistd.h>
	34	/* glibc uses <sys/fsuid.h> */
	35	.sp
	36	.BI "int setfsgid(uid_t " fsgid );
	37	.SH DESCRIPTION
	38	The system call
e511ffb6	39	.BR setfsgid ()
fea681da	40	sets the group ID that the Linux kernel uses to check for all accesses
c13182ef MK	41	to the file system.
c13182ef MK	42	Normally, the value of
fea681da	43	.I fsgid
c13182ef MK	44	will shadow the value of the effective group ID.
c13182ef MK	45	In fact, whenever the
fea681da MK	46	effective group ID is changed,
	47	.I fsgid
	48	will also be changed to the new value of the effective group ID.
	49
	50	Explicit calls to
e1d6264d	51	.BR setfsuid ()
fea681da	52	and
e511ffb6	53	.BR setfsgid ()
fea681da MK	54	are usually only used by programs such as the Linux NFS server that
	55	need to change what user and group ID is used for file access without a
	56	corresponding change in the real and effective user and group IDs.
	57	A change in the normal user IDs for a program such as the NFS server
	58	is a security hole that can expose it to unwanted signals. (But see below.)
	59
e511ffb6	60	.BR setfsgid ()
fea681da MK	61	will only succeed if the caller is the superuser or if
	62	.I fsgid
	63	matches either the real group ID, effective group ID,
	64	saved set-group-ID, or the current value of
	65	.IR fsgid .
	66	.SH "RETURN VALUE"
	67	On success, the previous value of
	68	.I fsgid
c13182ef MK	69	is returned.
c13182ef MK	70	On error, the current value of
fea681da MK	71	.I fsgid
	72	is returned.
	73	.SH "CONFORMING TO"
e511ffb6	74	.BR setfsgid ()
c13182ef	75	is Linux specific and should not be used in programs intended
97c1eac8	76	to be portable.
fea681da MK	77	It is present since Linux 1.1.44 and in libc since libc 4.7.6.
fea681da MK	78	.SH BUGS
c13182ef MK	79	No error messages of any kind are returned to the caller.
c13182ef MK	80	At the very
fea681da MK	81	least,
	82	.B EPERM
	83	should be returned when the call fails (because the caller lacks the
	84	.B CAP_SETGID
	85	capability).
	86	.SH NOTES
	87	When glibc determines that the argument is not a valid group ID,
	88	it will return \-1 and set \fIerrno\fP to EINVAL without attempting
	89	the system call.
	90	.LP
	91	Note that at the time this system call was introduced, a process
	92	could send a signal to a process with the same effective user ID.
	93	Today signal permission handling is slightly different.
	94	.SH "SEE ALSO"
	95	.BR kill (2),
	96	.BR setfsuid (2),
	97	.BR capabilities (7)