1
/* -*- coding: utf-8 -*- */
3
* Mandos plugin runner - Run Mandos plugins
5
* Copyright © 2007-2008 Teddy Hogeborn and Björn Påhlsson.
7
* This program is free software: you can redistribute it and/or
8
* modify it under the terms of the GNU General Public License as
9
* published by the Free Software Foundation, either version 3 of the
10
* License, or (at your option) any later version.
12
* This program is distributed in the hope that it will be useful, but
13
* WITHOUT ANY WARRANTY; without even the implied warranty of
14
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15
* General Public License for more details.
17
* You should have received a copy of the GNU General Public License
18
* along with this program. If not, see
19
* <http://www.gnu.org/licenses/>.
21
* Contact the authors at <https://www.fukt.bsnet.se/~belorn/> and
22
* <https://www.fukt.bsnet.se/~teddy/>.
25
#define _FORTIFY_SOURCE 2
27
1
#include <stdio.h> /* popen, fileno */
28
2
#include <iso646.h> /* and, or, not */
29
3
#include <sys/types.h> /* DIR, opendir, stat, struct stat, waitpid,
33
7
#include <sys/stat.h> /* stat, struct stat */
34
8
#include <unistd.h> /* stat, struct stat, chdir */
35
9
#include <stdlib.h> /* EXIT_FAILURE */
36
#include <sys/select.h> /* fd_set, select, FD_ZERO, FD_SET,
10
#include <sys/select.h> /* fd_set, select, FD_ZERO, FD_SET, FD_ISSET */
38
11
#include <string.h> /* strlen, strcpy, strcat */
39
12
#include <stdbool.h> /* true */
40
13
#include <sys/wait.h> /* waitpid, WIFEXITED, WEXITSTATUS */
41
14
#include <errno.h> /* errno */
42
#include <argp.h> /* argp */
52
24
struct process *next;
55
typedef struct plugin{
56
char *name; /* can be "global" and any plugin name */
63
plugin *getplugin(char *name, plugin **plugin_list){
64
for (plugin *p = *plugin_list; p != NULL; p = p->next){
66
or (p->name and name and (strcmp(p->name, name) == 0))){
70
/* Create a new plugin */
71
plugin *new_plugin = malloc(sizeof(plugin));
72
if (new_plugin == NULL){
76
new_plugin->name = name;
77
new_plugin->argv = malloc(sizeof(char *) * 2);
78
if (new_plugin->argv == NULL){
82
new_plugin->argv[0] = name;
83
new_plugin->argv[1] = NULL;
85
new_plugin->disable = false;
86
new_plugin->next = *plugin_list;
87
/* Append the new plugin to the list */
88
*plugin_list = new_plugin;
92
void addarguments(plugin *p, char *arg){
93
p->argv[p->argc] = arg;
94
p->argv = realloc(p->argv, sizeof(char *) * (size_t)(p->argc + 2));
100
p->argv[p->argc] = NULL;
103
27
#define BUFFER_SIZE 256
105
const char *argp_program_version =
106
"plugbasedclient 0.9";
107
const char *argp_program_bug_address =
108
"<mandos@fukt.bsnet.se>";
110
"Mandos plugin runner -- Run Mandos plugins";
111
/* A description of the arguments we accept. */
112
static char args_doc[] = "";
114
29
int main(int argc, char *argv[]){
115
const char *plugindir = "plugins.d";
30
char plugindir[] = "plugins.d";
31
size_t d_name_len, plugindir_len = sizeof(plugindir)-1;
118
33
struct dirent *dirst;
121
36
int ret, maxfd = 0;
122
37
process *process_list = NULL;
124
/* The options we understand. */
125
struct argp_option options[] = {
126
{ .name = "global-options", .key = 'g',
127
.arg = "option[,option[,...]]", .flags = 0,
128
.doc = "Options effecting all plugins" },
129
{ .name = "options-for", .key = 'o',
130
.arg = "plugin:option[,option[,...]]", .flags = 0,
131
.doc = "Options effecting only specified plugins" },
132
{ .name = "disable-plugin", .key = 'd',
133
.arg = "Plugin[,Plugin[,...]]", .flags = 0,
134
.doc = "Option to disable specififed plugins" },
135
{ .name = "plugin-dir", .key = 128,
136
.arg = "Directory", .flags = 0,
137
.doc = "Option to change directory to search for plugins" },
141
error_t parse_opt (int key, char *arg, struct argp_state *state) {
142
/* Get the INPUT argument from `argp_parse', which we
143
know is a pointer to our arguments structure. */
144
plugin **plugins = state->input;
148
char *p = strtok(arg, ",");
150
addarguments(getplugin(NULL, plugins), p);
151
p = strtok(NULL, ",");
157
char *name = strtok(arg, ":");
158
char *p = strtok(NULL, ":");
161
addarguments(getplugin(name, plugins), p);
162
p = strtok(NULL, ",");
168
char *p = strtok(arg, ",");
170
getplugin(p, plugins)->disable = true;
171
p = strtok(NULL, ",");
184
return ARGP_ERR_UNKNOWN;
189
plugin *plugin_list = NULL;
191
struct argp argp = { .options = options, .parser = parse_opt,
192
.args_doc = args_doc, .doc = doc };
194
argp_parse (&argp, argc, argv, 0, 0, &plugin_list);
196
/* for(plugin *p = plugin_list; p != NULL; p=p->next){ */
197
/* fprintf(stderr, "Plugin: %s has %d arguments\n", p->name ? p->name : "Global", p->argc); */
198
/* for(char **a = p->argv + 1; *a != NULL; a++){ */
199
/* fprintf(stderr, "\tArg: %s\n", *a); */
205
39
dir = opendir(plugindir);
208
42
fprintf(stderr, "Can not open directory\n");
209
43
return EXIT_FAILURE;
226
60
or dirst->d_name[d_name_len - 1] == '~'){
230
char *filename = malloc(d_name_len + strlen(plugindir) + 2);
64
char *filename = malloc(d_name_len + plugindir_len + 1);
231
65
strcpy(filename, plugindir);
232
66
strcat(filename, "/");
233
67
strcat(filename, dirst->d_name);
235
69
stat(filename, &st);
237
if (S_ISREG(st.st_mode)
238
and (access(filename, X_OK) == 0)
239
and not (getplugin(dirst->d_name, &plugin_list)->disable)){
71
if (S_ISREG(st.st_mode) and (access(filename, X_OK) == 0)){
240
72
// Starting a new process to be watched
241
73
process *new_process = malloc(sizeof(process));
248
76
new_process->pid = fork();
249
77
if(new_process->pid == 0){
250
78
/* this is the child process */
252
80
close(pipefd[0]); /* close unused read end of pipe */
253
81
dup2(pipefd[1], STDOUT_FILENO); /* replace our stdout */
255
plugin *p = getplugin(dirst->d_name, &plugin_list);
256
plugin *g = getplugin(NULL, &plugin_list);
257
for(char **a = g->argv + 1; *a != NULL; a++){
82
/* create a new modified argument list */
83
char **new_argv = malloc(sizeof(char *) * argc + 1);
84
new_argv[0] = filename;
85
for(int i = 1; i < argc; i++){
86
new_argv[i] = argv[i];
260
if(execv(filename, p->argv) < 0){
88
new_argv[argc] = NULL;
89
if(execv(filename, new_argv) < 0){
263
92
exit(EXIT_FAILURE);
312
141
ret = read(process_itr->fd, process_itr->buffer
313
142
+ process_itr->buffer_length, BUFFER_SIZE);
315
/* Read error from this process; ignore it */
318
process_itr->buffer_length += (size_t) ret;
143
process_itr->buffer_length+=ret;
321
146
/* wait for process exit */
323
148
waitpid(process_itr->pid, &status, 0);
324
149
if(WIFEXITED(status) and WEXITSTATUS(status) == 0){
325
for(size_t written = 0;
326
written < process_itr->buffer_length;){
327
ret = write(STDOUT_FILENO,
328
process_itr->buffer + written,
329
process_itr->buffer_length - written);
334
written += (size_t)ret;
150
write(STDOUT_FILENO, process_itr->buffer,
151
process_itr->buffer_length);
338
154
FD_CLR(process_itr->fd, &rfds_orig);