1
/* -*- coding: utf-8 -*- */
3
* Splashy - Read a password from splashy and output it
5
* Copyright © 2008,2009 Teddy Hogeborn
6
* Copyright © 2008,2009 Björn Påhlsson
8
* This program is free software: you can redistribute it and/or
9
* modify it under the terms of the GNU General Public License as
10
* published by the Free Software Foundation, either version 3 of the
11
* License, or (at your option) any later version.
13
* This program is distributed in the hope that it will be useful, but
14
* WITHOUT ANY WARRANTY; without even the implied warranty of
15
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16
* General Public License for more details.
18
* You should have received a copy of the GNU General Public License
19
* along with this program. If not, see
20
* <http://www.gnu.org/licenses/>.
22
* Contact the authors at <mandos@fukt.bsnet.se>.
25
#define _GNU_SOURCE /* TEMP_FAILURE_RETRY(), asprintf() */
1
#define _GNU_SOURCE /* asprintf() */
26
2
#include <signal.h> /* sig_atomic_t, struct sigaction,
27
sigemptyset(), sigaddset(), SIGINT,
28
SIGHUP, SIGTERM, sigaction,
29
SIG_IGN, kill(), SIGKILL */
3
sigemptyset(), sigaddset(),
4
sigaction, SIGINT, SIG_IGN, SIGHUP,
5
SIGTERM, kill(), SIGKILL */
30
6
#include <stddef.h> /* NULL */
31
7
#include <stdlib.h> /* getenv() */
32
8
#include <stdio.h> /* asprintf(), perror() */
33
#include <stdlib.h> /* EXIT_FAILURE, free(),
9
#include <stdlib.h> /* EXIT_FAILURE, EXIT_SUCCESS,
35
11
#include <sys/types.h> /* pid_t, DIR, struct dirent,
37
13
#include <dirent.h> /* opendir(), readdir(), closedir() */
38
#include <inttypes.h> /* intmax_t, strtoimax() */
39
#include <sys/stat.h> /* struct stat, lstat(), S_ISLNK */
40
#include <iso646.h> /* not, or, and */
41
14
#include <unistd.h> /* readlink(), fork(), execl(),
42
sleep(), dup2() STDERR_FILENO,
43
STDOUT_FILENO, _exit(),
45
16
#include <string.h> /* memcmp() */
17
#include <iso646.h> /* and */
46
18
#include <errno.h> /* errno */
47
19
#include <sys/wait.h> /* waitpid(), WIFEXITED(),
50
22
sig_atomic_t interrupted_by_signal = 0;
53
static void termination_handler(int signum){
54
if(interrupted_by_signal){
24
static void termination_handler(__attribute__((unused))int signum){
57
25
interrupted_by_signal = 1;
58
signal_received = signum;
61
int main(__attribute__((unused))int argc,
62
__attribute__((unused))char **argv){
28
int main(__attribute__((unused))int argc, char **argv){
31
/* Create prompt string */
64
32
char *prompt = NULL;
66
pid_t splashy_pid = 0;
67
pid_t splashy_command_pid = 0;
69
/* Create prompt string */
71
34
const char *const cryptsource = getenv("cryptsource");
72
35
const char *const crypttarget = getenv("crypttarget");
97
59
/* Find splashy process */
60
pid_t splashy_pid = 0;
99
62
const char splashy_name[] = "/sbin/splashy";
100
proc_dir = opendir("/proc");
63
DIR *proc_dir = opendir("/proc");
101
64
if(proc_dir == NULL){
102
66
perror("opendir");
105
69
for(struct dirent *proc_ent = readdir(proc_dir);
107
71
proc_ent = readdir(proc_dir)){
113
tmpmax = strtoimax(proc_ent->d_name, &tmp, 10);
114
if(errno != 0 or tmp == proc_ent->d_name or *tmp != '\0'
115
or tmpmax != (pid_t)tmpmax){
72
pid_t pid = (pid_t) strtoul(proc_ent->d_name, NULL, 10);
121
77
/* Find the executable name by doing readlink() on the
122
78
/proc/<pid>/exe link */
80
ret = asprintf(&exe_link, "/proc/%s/exe", proc_ent->d_name);
123
87
char exe_target[sizeof(splashy_name)];
127
ret = asprintf(&exe_link, "/proc/%s/exe", proc_ent->d_name);
133
/* Check that it refers to a symlink owned by root:root */
134
struct stat exe_stat;
135
ret = lstat(exe_link, &exe_stat);
145
if(not S_ISLNK(exe_stat.st_mode)
146
or exe_stat.st_uid != 0
147
or exe_stat.st_gid != 0){
152
sret = readlink(exe_link, exe_target, sizeof(exe_target));
88
ssize_t sret = readlink(exe_link, exe_target,
155
90
if((sret == ((ssize_t)sizeof(exe_target)-1))
156
91
and (memcmp(splashy_name, exe_target,
157
92
sizeof(exe_target)-1) == 0)){
174
109
sigemptyset(&new_action.sa_mask);
175
110
sigaddset(&new_action.sa_mask, SIGINT);
180
111
sigaddset(&new_action.sa_mask, SIGHUP);
185
112
sigaddset(&new_action.sa_mask, SIGTERM);
190
113
ret = sigaction(SIGINT, NULL, &old_action);
192
115
perror("sigaction");
195
if(old_action.sa_handler != SIG_IGN){
119
if (old_action.sa_handler != SIG_IGN){
196
120
ret = sigaction(SIGINT, &new_action, NULL);
198
122
perror("sigaction");
202
127
ret = sigaction(SIGHUP, NULL, &old_action);
204
129
perror("sigaction");
207
if(old_action.sa_handler != SIG_IGN){
133
if (old_action.sa_handler != SIG_IGN){
208
134
ret = sigaction(SIGHUP, &new_action, NULL);
210
136
perror("sigaction");
214
141
ret = sigaction(SIGTERM, NULL, &old_action);
216
143
perror("sigaction");
219
if(old_action.sa_handler != SIG_IGN){
147
if (old_action.sa_handler != SIG_IGN){
220
148
ret = sigaction(SIGTERM, &new_action, NULL);
222
150
perror("sigaction");
228
if(interrupted_by_signal){
232
157
/* Fork off the splashy command to prompt for password */
233
splashy_command_pid = fork();
234
if(splashy_command_pid != 0 and interrupted_by_signal){
237
if(splashy_command_pid == -1){
242
if(splashy_command_pid == 0){
243
if(not interrupted_by_signal){
158
pid_t splashy_command_pid = 0;
159
if(not interrupted_by_signal){
160
splashy_command_pid = fork();
161
if(splashy_command_pid == -1){
162
if(not interrupted_by_signal){
168
if(splashy_command_pid == 0){
244
169
const char splashy_command[] = "/sbin/splashy_update";
245
execl(splashy_command, splashy_command, prompt, (char *)NULL);
170
ret = execl(splashy_command, splashy_command, prompt,
172
if(not interrupted_by_signal and errno != ENOENT){
173
/* Don't report "File not found", since splashy might not be
256
if(interrupted_by_signal){
260
185
/* Wait for command to complete */
264
ret = waitpid(splashy_command_pid, &status, 0);
265
} while(ret == -1 and errno == EINTR
266
and not interrupted_by_signal);
267
if(interrupted_by_signal){
273
splashy_command_pid = 0;
276
/* The child process has exited */
277
splashy_command_pid = 0;
278
if(WIFEXITED(status) and WEXITSTATUS(status) == 0){
288
if(proc_dir != NULL){
289
TEMP_FAILURE_RETRY(closedir(proc_dir));
292
if(splashy_command_pid != 0){
293
TEMP_FAILURE_RETRY(kill(splashy_command_pid, SIGTERM));
295
TEMP_FAILURE_RETRY(kill(splashy_pid, SIGTERM));
297
while(TEMP_FAILURE_RETRY(kill(splashy_pid, 0)) == 0){
298
TEMP_FAILURE_RETRY(kill(splashy_pid, SIGKILL));
187
while(not interrupted_by_signal){
188
waitpid(splashy_command_pid, &status, 0);
189
if(not interrupted_by_signal
190
and WIFEXITED(status) and WEXITSTATUS(status)==0){
194
kill(splashy_pid, SIGTERM);
195
if(interrupted_by_signal){
196
kill(splashy_command_pid, SIGTERM);
199
pid_t new_splashy_pid = fork();
200
if(new_splashy_pid == 0){
201
while(kill(splashy_pid, 0)){
203
kill(splashy_pid, SIGKILL);
301
pid_t new_splashy_pid = TEMP_FAILURE_RETRY(fork());
302
if(new_splashy_pid == 0){
303
/* Child; will become new splashy process */
305
/* Make the effective user ID (root) the only user ID instead of
306
the real user ID (_mandos) */
307
ret = setuid(geteuid());
317
/* if(fork() != 0){ */
318
/* _exit(EXIT_SUCCESS); */
320
ret = dup2(STDERR_FILENO, STDOUT_FILENO); /* replace stdout */
326
execl("/sbin/splashy", "/sbin/splashy", "boot", (char *)NULL);
206
ret = dup2(STDERR_FILENO, STDOUT_FILENO); /* replace our stdout */
328
209
_exit(EXIT_FAILURE);
332
if(interrupted_by_signal){
333
struct sigaction signal_action;
334
sigemptyset(&signal_action.sa_mask);
335
signal_action.sa_handler = SIG_DFL;
336
ret = TEMP_FAILURE_RETRY(sigaction(signal_received,
337
&signal_action, NULL));
342
ret = raise(signal_received);
343
} while(ret != 0 and errno == EINTR);
348
TEMP_FAILURE_RETRY(pause());
211
execl("/sbin/splashy", "/sbin/splashy", "boot", (char *)NULL);
351
214
return EXIT_FAILURE;