1
/* -*- coding: utf-8 -*- */
3
* Usplash - Read a password from usplash and output it
5
* Copyright © 2008,2009 Teddy Hogeborn
6
* Copyright © 2008,2009 Björn Påhlsson
8
* This program is free software: you can redistribute it and/or
9
* modify it under the terms of the GNU General Public License as
10
* published by the Free Software Foundation, either version 3 of the
11
* License, or (at your option) any later version.
13
* This program is distributed in the hope that it will be useful, but
14
* WITHOUT ANY WARRANTY; without even the implied warranty of
15
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16
* General Public License for more details.
18
* You should have received a copy of the GNU General Public License
19
* along with this program. If not, see
20
* <http://www.gnu.org/licenses/>.
22
* Contact the authors at <mandos@fukt.bsnet.se>.
25
#define _GNU_SOURCE /* asprintf(), TEMP_FAILURE_RETRY() */
1
#define _GNU_SOURCE /* asprintf() */
26
2
#include <signal.h> /* sig_atomic_t, struct sigaction,
27
sigemptyset(), sigaddset(), SIGINT,
28
SIGHUP, SIGTERM, sigaction(),
29
SIG_IGN, kill(), SIGKILL */
30
#include <stdbool.h> /* bool, false, true */
31
#include <fcntl.h> /* open(), O_WRONLY, O_RDONLY */
32
#include <iso646.h> /* and, or, not*/
33
#include <errno.h> /* errno, EINTR */
35
#include <sys/types.h> /* size_t, ssize_t, pid_t, DIR, struct
3
sigemptyset(), sigaddset(),
4
sigaction, SIGINT, SIG_IGN, SIGHUP,
5
SIGTERM, kill(), SIGKILL */
37
6
#include <stddef.h> /* NULL */
38
#include <string.h> /* strlen(), memcmp() */
39
#include <stdio.h> /* asprintf()*/
40
#include <unistd.h> /* close(), write(), readlink(),
41
read(), STDOUT_FILENO, sleep(),
42
fork(), setuid(), geteuid(),
43
setsid(), chdir(), dup2(),
44
STDERR_FILENO, execv() */
45
#include <stdlib.h> /* free(), EXIT_FAILURE, realloc(),
46
EXIT_SUCCESS, malloc(), _exit(),
7
#include <stdlib.h> /* getenv() */
8
#include <stdio.h> /* asprintf(), perror() */
9
#include <stdlib.h> /* EXIT_FAILURE, EXIT_SUCCESS,
11
#include <sys/types.h> /* pid_t, DIR, struct dirent,
48
13
#include <dirent.h> /* opendir(), readdir(), closedir() */
49
#include <inttypes.h> /* intmax_t, strtoimax() */
50
#include <sys/stat.h> /* struct stat, lstat(), S_ISLNK */
51
#include <sysexits.h> /* EX_OSERR, EX_UNAVAILABLE */
14
#include <unistd.h> /* readlink(), fork(), execl(),
16
#include <string.h> /* memcmp() */
17
#include <iso646.h> /* and */
18
#include <stdbool.h> /* bool, false, true */
19
#include <errno.h> /* errno */
20
#include <sys/wait.h> /* waitpid(), WIFEXITED(),
22
#include <fcntl.h> /* open(), O_RDONLY */
53
24
sig_atomic_t interrupted_by_signal = 0;
55
const char usplash_name[] = "/sbin/usplash";
57
static void termination_handler(int signum){
58
if(interrupted_by_signal){
26
static void termination_handler(__attribute__((unused))int signum){
61
27
interrupted_by_signal = 1;
62
signal_received = signum;
65
static bool usplash_write(int *fifo_fd_r,
66
const char *cmd, const char *arg){
68
* usplash_write(&fd, "TIMEOUT", "15") will write "TIMEOUT 15\0"
69
* usplash_write(&fd, "PULSATE", NULL) will write "PULSATE\0"
75
ret = open("/dev/.initramfs/usplash_fifo", O_WRONLY);
30
int main(__attribute__((unused))int argc,
31
__attribute__((unused))char **argv){
34
bool an_error_occured = false;
36
/* Create prompt string */
39
const char *const cryptsource = getenv("cryptsource");
40
const char *const crypttarget = getenv("crypttarget");
41
const char *const prompt_start = "Enter passphrase to unlock the disk";
43
if(cryptsource == NULL){
44
if(crypttarget == NULL){
45
ret = asprintf(&prompt, "%s: ", prompt_start);
47
ret = asprintf(&prompt, "%s (%s): ", prompt_start,
51
if(crypttarget == NULL){
52
ret = asprintf(&prompt, "%s %s: ", prompt_start, cryptsource);
54
ret = asprintf(&prompt, "%s %s (%s): ", prompt_start,
55
cryptsource, crypttarget);
84
char *cmd_line_alloc = NULL;
87
cmd_line_len = strlen(cmd) + 1;
90
ret = asprintf(&cmd_line_alloc, "%s %s", cmd, arg);
93
TEMP_FAILURE_RETRY(close(*fifo_fd_r));
98
cmd_line = cmd_line_alloc;
99
cmd_line_len = (size_t)ret + 1;
104
while(written < cmd_line_len){
105
sret = write(*fifo_fd_r, cmd_line + written,
106
cmd_line_len - written);
109
TEMP_FAILURE_RETRY(close(*fifo_fd_r));
110
free(cmd_line_alloc);
114
written += (size_t)sret;
116
free(cmd_line_alloc);
121
/* Create prompt string */
122
char *makeprompt(void){
125
const char *const cryptsource = getenv("cryptsource");
126
const char *const crypttarget = getenv("crypttarget");
127
const char prompt_start[] = "Enter passphrase to unlock the disk";
129
if(cryptsource == NULL){
130
if(crypttarget == NULL){
131
ret = asprintf(&prompt, "%s: ", prompt_start);
133
ret = asprintf(&prompt, "%s (%s): ", prompt_start,
137
if(crypttarget == NULL){
138
ret = asprintf(&prompt, "%s %s: ", prompt_start, cryptsource);
140
ret = asprintf(&prompt, "%s %s (%s): ", prompt_start,
141
cryptsource, crypttarget);
150
pid_t find_usplash(char **cmdline_r, size_t *cmdline_len_r){
63
/* Find usplash process */
64
pid_t usplash_pid = 0;
153
65
char *cmdline = NULL;
154
66
size_t cmdline_len = 0;
155
DIR *proc_dir = opendir("/proc");
156
if(proc_dir == NULL){
157
error(0, errno, "opendir");
161
for(struct dirent *proc_ent = readdir(proc_dir);
163
proc_ent = readdir(proc_dir)){
168
tmpmax = strtoimax(proc_ent->d_name, &tmp, 10);
169
if(errno != 0 or tmp == proc_ent->d_name or *tmp != '\0'
170
or tmpmax != (pid_t)tmpmax){
68
const char usplash_name[] = "/sbin/usplash";
69
DIR *proc_dir = opendir("/proc");
75
for(struct dirent *proc_ent = readdir(proc_dir);
77
proc_ent = readdir(proc_dir)){
78
pid_t pid = (pid_t) strtoul(proc_ent->d_name, NULL, 10);
171
80
/* Not a process */
177
/* Find the executable name by doing readlink() on the
178
/proc/<pid>/exe link */
179
char exe_target[sizeof(usplash_name)];
181
/* create file name string */
183
ret = asprintf(&exe_link, "/proc/%s/exe", proc_ent->d_name);
185
error(0, errno, "asprintf");
186
goto fail_find_usplash;
189
/* Check that it refers to a symlink owned by root:root */
190
struct stat exe_stat;
191
ret = lstat(exe_link, &exe_stat);
197
error(0, errno, "lstat");
199
goto fail_find_usplash;
201
if(not S_ISLNK(exe_stat.st_mode)
202
or exe_stat.st_uid != 0
203
or exe_stat.st_gid != 0){
208
sret = readlink(exe_link, exe_target, sizeof(exe_target));
211
/* Compare executable name */
212
if((sret != ((ssize_t)sizeof(exe_target)-1))
213
or (memcmp(usplash_name, exe_target,
214
sizeof(exe_target)-1) != 0)){
219
/* Read and save the command line of usplash in "cmdline" */
221
/* Open /proc/<pid>/cmdline */
83
/* Find the executable name by doing readlink() on the
84
/proc/<pid>/exe link */
85
char exe_target[sizeof(usplash_name)];
224
char *cmdline_filename;
225
ret = asprintf(&cmdline_filename, "/proc/%s/cmdline",
88
ret = asprintf(&exe_link, "/proc/%s/exe", proc_ent->d_name);
228
error(0, errno, "asprintf");
229
goto fail_find_usplash;
231
cl_fd = open(cmdline_filename, O_RDONLY);
232
free(cmdline_filename);
234
error(0, errno, "open");
235
goto fail_find_usplash;
95
sret = readlink(exe_link, exe_target, sizeof(exe_target));
238
size_t cmdline_allocated = 0;
240
const size_t blocksize = 1024;
242
/* Allocate more space? */
243
if(cmdline_len + blocksize > cmdline_allocated){
244
tmp = realloc(cmdline, cmdline_allocated + blocksize);
246
error(0, errno, "realloc");
248
goto fail_find_usplash;
98
if((sret == ((ssize_t)sizeof(exe_target)-1))
99
and (memcmp(usplash_name, exe_target,
100
sizeof(exe_target)-1) == 0)){
102
/* Read and save the command line of usplash in "cmdline" */
104
/* Open /proc/<pid>/cmdline */
107
char *cmdline_filename;
108
ret = asprintf(&cmdline_filename, "/proc/%s/cmdline",
116
cl_fd = open(cmdline_filename, O_RDONLY);
119
free(cmdline_filename);
124
free(cmdline_filename);
251
cmdline_allocated += blocksize;
254
sret = read(cl_fd, cmdline + cmdline_len,
255
cmdline_allocated - cmdline_len);
257
error(0, errno, "read");
126
size_t cmdline_allocated = 0;
128
const size_t blocksize = 1024;
130
if(cmdline_len + blocksize > cmdline_allocated){
131
tmp = realloc(cmdline, cmdline_allocated + blocksize);
140
cmdline_allocated += blocksize;
142
sret = read(cl_fd, cmdline + cmdline_len,
143
cmdline_allocated - cmdline_len);
151
cmdline_len += (size_t)sret;
259
goto fail_find_usplash;
261
cmdline_len += (size_t)sret;
265
error(0, errno, "close");
266
goto fail_find_usplash;
269
/* Close directory */
270
ret = closedir(proc_dir);
272
error(0, errno, "closedir");
273
goto fail_find_usplash;
276
*cmdline_r = cmdline;
277
*cmdline_len_r = cmdline_len;
284
if(proc_dir != NULL){
286
158
closedir(proc_dir);
292
int main(__attribute__((unused))int argc,
293
__attribute__((unused))char **argv){
300
pid_t usplash_pid = -1;
301
bool usplash_accessed = false;
302
int status = EXIT_FAILURE; /* Default failure exit status */
304
char *prompt = makeprompt();
310
/* Find usplash process */
311
char *cmdline = NULL;
312
size_t cmdline_len = 0;
313
usplash_pid = find_usplash(&cmdline, &cmdline_len);
314
160
if(usplash_pid == 0){
315
status = EX_UNAVAILABLE;
319
165
/* Set up the signal handler */
322
168
new_action = { .sa_handler = termination_handler,
324
170
sigemptyset(&new_action.sa_mask);
325
ret = sigaddset(&new_action.sa_mask, SIGINT);
327
error(0, errno, "sigaddset");
331
ret = sigaddset(&new_action.sa_mask, SIGHUP);
333
error(0, errno, "sigaddset");
337
ret = sigaddset(&new_action.sa_mask, SIGTERM);
339
error(0, errno, "sigaddset");
171
sigaddset(&new_action.sa_mask, SIGINT);
172
sigaddset(&new_action.sa_mask, SIGHUP);
173
sigaddset(&new_action.sa_mask, SIGTERM);
343
174
ret = sigaction(SIGINT, NULL, &old_action);
346
error(0, errno, "sigaction");
351
if(old_action.sa_handler != SIG_IGN){
180
if (old_action.sa_handler != SIG_IGN){
352
181
ret = sigaction(SIGINT, &new_action, NULL);
355
error(0, errno, "sigaction");
361
188
ret = sigaction(SIGHUP, NULL, &old_action);
364
error(0, errno, "sigaction");
369
if(old_action.sa_handler != SIG_IGN){
194
if (old_action.sa_handler != SIG_IGN){
370
195
ret = sigaction(SIGHUP, &new_action, NULL);
373
error(0, errno, "sigaction");
379
202
ret = sigaction(SIGTERM, NULL, &old_action);
382
error(0, errno, "sigaction");
387
if(old_action.sa_handler != SIG_IGN){
208
if (old_action.sa_handler != SIG_IGN){
388
209
ret = sigaction(SIGTERM, &new_action, NULL);
391
error(0, errno, "sigaction");
399
usplash_accessed = true;
400
218
/* Write command to FIFO */
401
if(not usplash_write(&fifo_fd, "TIMEOUT", "0")){
403
error(0, errno, "usplash_write");
409
if(interrupted_by_signal){
413
if(not usplash_write(&fifo_fd, "INPUTQUIET", prompt)){
415
error(0, errno, "usplash_write");
421
if(interrupted_by_signal){
428
/* Read reply from usplash */
430
outfifo_fd = open("/dev/.initramfs/usplash_outfifo", O_RDONLY);
431
if(outfifo_fd == -1){
433
error(0, errno, "open");
439
if(interrupted_by_signal){
444
size_t buf_allocated = 0;
445
const size_t blocksize = 1024;
447
/* Allocate more space */
448
if(buf_len + blocksize > buf_allocated){
449
char *tmp = realloc(buf, buf_allocated + blocksize);
452
error(0, errno, "realloc");
458
buf_allocated += blocksize;
460
sret = read(outfifo_fd, buf + buf_len,
461
buf_allocated - buf_len);
464
error(0, errno, "read");
467
TEMP_FAILURE_RETRY(close(outfifo_fd));
470
if(interrupted_by_signal){
474
buf_len += (size_t)sret;
476
ret = close(outfifo_fd);
479
error(0, errno, "close");
486
if(interrupted_by_signal){
490
if(not usplash_write(&fifo_fd, "TIMEOUT", "15")){
492
error(0, errno, "usplash_write");
498
if(interrupted_by_signal){
502
ret = close(fifo_fd);
505
error(0, errno, "close");
512
/* Print password to stdout */
514
while(written < buf_len){
516
sret = write(STDOUT_FILENO, buf + written, buf_len - written);
519
error(0, errno, "write");
526
if(interrupted_by_signal){
529
written += (size_t)sret;
534
if(interrupted_by_signal){
547
/* If usplash was never accessed, we can stop now */
548
if(not usplash_accessed){
554
ret = (int)TEMP_FAILURE_RETRY(close(fifo_fd));
555
if(ret == -1 and errno != EINTR){
556
error(0, errno, "close");
561
/* Close output FIFO */
562
if(outfifo_fd != -1){
563
ret = (int)TEMP_FAILURE_RETRY(close(outfifo_fd));
219
if(not interrupted_by_signal){
220
int fifo_fd = open("/dev/.initramfs/usplash_fifo", O_WRONLY);
227
ret = asprintf(&command, "INPUTQUIET %s", prompt);
565
error(0, errno, "close");
569
/* Create argc and argv for new usplash*/
235
size_t command_len = (size_t)ret + 1;
237
while(not interrupted_by_signal and written < command_len){
238
ret = write(fifo_fd, command + written, command_len - written);
240
if(interrupted_by_signal){
248
an_error_occured = true;
251
written += (size_t)ret;
253
ret = close(fifo_fd);
254
if(ret == -1 and not interrupted_by_signal){
255
an_error_occured = true;
267
if(not interrupted_by_signal and not an_error_occured){
268
int fifo_fd = open("/dev/.initramfs/usplash_outfifo", O_RDONLY);
269
if(fifo_fd == -1 and not interrupted_by_signal){
273
size_t buf_allocated = 0;
274
const int blocksize = 1024;
276
if(buf_len + blocksize > buf_allocated){
277
char *tmp = realloc(buf, buf_allocated + blocksize);
280
an_error_occured = true;
284
buf_allocated += blocksize;
286
sret = read(fifo_fd, buf + buf_len, buf_allocated - buf_len);
289
an_error_occured = true;
292
buf_len += (size_t)sret;
293
}while(not interrupted_by_signal and sret != 0);
297
/* Print password to stdout */
298
if(not interrupted_by_signal and not an_error_occured){
301
sret = write(STDOUT_FILENO, buf + written, buf_len - written);
302
if(sret == -1 and not interrupted_by_signal){
304
an_error_occured = true;
307
written += (size_t)sret;
308
}while(written < buf_len);
309
if(not interrupted_by_signal and not an_error_occured){
315
kill(usplash_pid, SIGTERM);
570
317
int cmdline_argc = 0;
571
318
char **cmdline_argv = malloc(sizeof(char *));
319
/* Create argv and argc for new usplash*/
574
while(position < cmdline_len){
321
ptrdiff_t position = 0;
322
while((size_t)position < cmdline_len){
575
323
char **tmp = realloc(cmdline_argv,
577
* (size_t)(cmdline_argc + 2)));
324
(sizeof(char *) * (size_t)(cmdline_argc + 2)));
579
error(0, errno, "realloc");
580
327
free(cmdline_argv);
583
330
cmdline_argv = tmp;
584
331
cmdline_argv[cmdline_argc] = cmdline + position;
586
position += strlen(cmdline + position) + 1;
333
position = (char *)rawmemchr(cmdline + position, '\0')
588
336
cmdline_argv[cmdline_argc] = NULL;
590
/* Kill old usplash */
591
kill(usplash_pid, SIGTERM);
593
while(kill(usplash_pid, 0) == 0){
594
kill(usplash_pid, SIGKILL);
598
338
pid_t new_usplash_pid = fork();
599
339
if(new_usplash_pid == 0){
600
340
/* Child; will become new usplash process */
602
/* Make the effective user ID (root) the only user ID instead of
603
the real user ID (_mandos) */
604
ret = setuid(geteuid());
606
error(0, errno, "setuid");
612
error(0, errno, "chdir");
615
/* if(fork() != 0){ */
616
/* _exit(EXIT_SUCCESS); */
341
while(kill(usplash_pid, 0)){
343
kill(usplash_pid, SIGKILL);
618
346
ret = dup2(STDERR_FILENO, STDOUT_FILENO); /* replace our stdout */
620
error(0, errno, "dup2");
624
execv(usplash_name, cmdline_argv);
625
if(not interrupted_by_signal){
626
error(0, errno, "execv");
635
if(not usplash_write(&fifo_fd, "PULSATE", NULL)){
637
error(0, errno, "usplash_write");
641
/* Close FIFO (again) */
643
ret = (int)TEMP_FAILURE_RETRY(close(fifo_fd));
644
if(ret == -1 and errno != EINTR){
645
error(0, errno, "close");
650
if(interrupted_by_signal){
651
struct sigaction signal_action = { .sa_handler = SIG_DFL };
652
sigemptyset(&signal_action.sa_mask);
653
ret = (int)TEMP_FAILURE_RETRY(sigaction(signal_received,
654
&signal_action, NULL));
656
error(0, errno, "sigaction");
659
ret = raise(signal_received);
660
} while(ret != 0 and errno == EINTR);
662
error(0, errno, "raise");
665
TEMP_FAILURE_RETRY(pause());
351
execv("/sbin/usplash", cmdline_argv);