/mandos/trunk : revision 110

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugin-runner.c

Committer: Teddy Hogeborn
Date: 2008-08-29 05:53:59 UTC
Revision ID: teddy@fukt.bsnet.se-20080829055359-wkdasnyxtylmnxus

* mandos.xml (EXAMPLE): Replaced all occurences of command name with
                        "&COMMANDNAME;".

* plugins.d/password-prompt.c (main): Improved some documentation
                                      strings.  Do perror() of
                                      tcgetattr() fails.  Add debug
                                      output if interrupted by signal.
                                      Loop over write() instead of
                                      using fwrite() when outputting
                                      password.  Add debug output if
                                      getline() returns 0, unless it
                                      was caused by a signal.  Add
                                      exit status code to debug
                                      output.

* plugins.d/password-prompt.xml: Changed all single quotes to double
                                 quotes for consistency.  Removed
                                 <?xml-stylesheet>.
  (ENTITY TIMESTAMP): New.  Automatically updated by Emacs time-stamp
                      by using Emacs local variables.
  (/refentry/refentryinfo/title): Changed to "Mandos Manual".
  (/refentry/refentryinfo/productname): Changed to "Mandos".
  (/refentry/refentryinfo/date): New; set to "&TIMESTAMP;".
  (/refentry/refentryinfo/copyright): Split copyright holders.
  (/refentry/refnamediv/refpurpose): Improved wording.
  (SYNOPSIS): Fix to use correct markup.  Add short options.
  (DESCRIPTION, OPTIONS): Improved wording.
  (OPTIONS): Improved wording.  Use more correct markup.  Document
             short options.
  (EXIT STATUS): Add text.
  (ENVIRONMENT): Document use of "cryptsource" and "crypttarget".
  (FILES): REMOVED.
  (BUGS): Add text.
  (EXAMPLE): Added some examples.
  (SECURITY): Added text.
  (SEE ALSO): Remove reference to mandos(8).  Add reference to
              crypttab(5).

files added:
plugins.d/usplash

files removed:
.bzr-builddeb

.bzr-builddeb/default.conf

DBUS-API

INSTALL

NEWS

README

common.ent

dbus-mandos.conf

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/po

debian/rules

debian/source

debian/source/format

debian/watch

default-mandos

init.d-mandos

legalnotice.xml

mandos-ctl

mandos-ctl.xml

mandos-monitor

mandos-monitor.xml

mandos.lsm

plugin-runner.conf

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files renamed:
plugins.d/mandos-client.c => plugins.d/password-request.c

plugins.d/mandos-client.xml => plugins.d/password-request.xml

files modified:
.bzrignore

Makefile

TODO

clients.conf

initramfs-tools-hook

initramfs-tools-hook-conf

initramfs-tools-script

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.c

plugin-runner.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

Show diffs side-by-side

added added

removed removed

plugin-runner.c

/* -*- coding: utf-8; mode: c; mode: orgtbl -*- */

/* -*- coding: utf-8 -*- */

* Mandos plugin runner - Run Mandos plugins

* This program is free software: you can redistribute it and/or

* modify it under the terms of the GNU General Public License as

#define _GNU_SOURCE /* TEMP_FAILURE_RETRY(), getline(),

asprintf(), O_CLOEXEC */

asprintf() */

#include <stddef.h> /* size_t, NULL */

#include <stdlib.h> /* malloc(), exit(), EXIT_SUCCESS,

realloc() */

#include <stdlib.h> /* malloc(), exit(), EXIT_FAILURE,

EXIT_SUCCESS, realloc() */

#include <stdbool.h> /* bool, true, false */

#include <stdio.h> /* fileno(), fprintf(),

stderr, STDOUT_FILENO */

#include <sys/types.h> /* DIR, fdopendir(), stat(), struct

#include <stdio.h> /* perror, popen(), fileno(),

fprintf(), stderr, STDOUT_FILENO */

#include <sys/types.h> /* DIR, opendir(), stat(), struct

stat, waitpid(), WIFEXITED(),

WEXITSTATUS(), wait(), pid_t,

uid_t, gid_t, getuid(), getgid(),

#include <sys/select.h> /* fd_set, select(), FD_ZERO(),

FD_SET(), FD_ISSET(), FD_CLR */

#include <sys/wait.h> /* wait(), waitpid(), WIFEXITED(),

WEXITSTATUS(), WTERMSIG(),

WCOREDUMP() */

WEXITSTATUS() */

#include <sys/stat.h> /* struct stat, stat(), S_ISREG() */

#include <iso646.h> /* and, or, not */

#include <dirent.h> /* DIR, struct dirent, fdopendir(),

#include <dirent.h> /* DIR, struct dirent, opendir(),

readdir(), closedir(), dirfd() */

#include <unistd.h> /* struct stat, stat(), S_ISREG(),

fcntl(), setuid(), setgid(),

F_GETFD, F_SETFD, FD_CLOEXEC,

access(), pipe(), fork(), close()

dup2(), STDOUT_FILENO, _exit(),

dup2, STDOUT_FILENO, _exit(),

execv(), write(), read(),

close() */

#include <fcntl.h> /* fcntl(), F_GETFD, F_SETFD,

FD_CLOEXEC */

#include <string.h> /* strsep, strlen(), asprintf(),

strsignal(), strcmp(), strncmp() */

#include <string.h> /* strsep, strlen(), asprintf() */

#include <errno.h> /* errno */

#include <argp.h> /* struct argp_option, struct

argp_state, struct argp,

#include <signal.h> /* struct sigaction, sigemptyset(),

sigaddset(), sigaction(),

sigprocmask(), SIG_BLOCK, SIGCHLD,

SIG_UNBLOCK, kill(), sig_atomic_t

SIG_UNBLOCK, kill() */

#include <errno.h> /* errno, EBADF */

#include <inttypes.h> /* intmax_t, PRIdMAX, strtoimax() */

#include <sysexits.h> /* EX_OSERR, EX_USAGE, EX_IOERR,

EX_CONFIG, EX_UNAVAILABLE, EX_OK */

#include <errno.h> /* errno */

#include <error.h> /* error() */

#define BUFFER_SIZE 256

#define PDIR "/lib/mandos/plugins.d"

#define AFILE "/conf/conf.d/mandos/plugin-runner.conf"

const char *argp_program_version = "plugin-runner " VERSION;

const char *argp_program_version = "plugin-runner 1.0";

const char *argp_program_bug_address = "<mandos@fukt.bsnet.se>";

struct process;

typedef struct process{

pid_t pid;

int fd;

char *buffer;

size_t buffer_size;

size_t buffer_length;

bool eof;

volatile bool completed;

volatile int status;

struct process *next;

} process;

typedef struct plugin{

char *name; /* can be NULL or any plugin name */

char **argv;

char **environ;

int envc;

bool disabled;

/* Variables used for running processes*/

pid_t pid;

int fd;

char *buffer;

size_t buffer_size;

size_t buffer_length;

bool eof;

volatile sig_atomic_t completed;

100

int status;

101

struct plugin *next;

102

} plugin;

103

104

static plugin *plugin_list = NULL;

105

106

/* Gets an existing plugin based on name,

107

or if none is found, creates a new one */

108

static plugin *getplugin(char *name){

109

/* Check for existing plugin with that name */

110

for(plugin *p = plugin_list; p != NULL; p = p->next){

111

if((p->name == name)

112

or (p->name and name and (strcmp(p->name, name) == 0))){

static plugin *getplugin(char *name, plugin **plugin_list){

100

for (plugin *p = *plugin_list; p != NULL; p = p->next){

101

if ((p->name == name)

102

or (p->name and name and (strcmp(p->name, name) == 0))){

113

103

return p;

114

104

}

115

105

}

116

106

/* Create a new plugin */

117

plugin *new_plugin = NULL;

118

do {

119

new_plugin = malloc(sizeof(plugin));

120

} while(new_plugin == NULL and errno == EINTR);

121

if(new_plugin == NULL){

107

plugin *new_plugin = malloc(sizeof(plugin));

108

if (new_plugin == NULL){

122

109

return NULL;

123

110

}

124

111

char *copy_name = NULL;

125

112

if(name != NULL){

126

do {

127

copy_name = strdup(name);

128

} while(copy_name == NULL and errno == EINTR);

113

copy_name = strdup(name);

129

114

if(copy_name == NULL){

130

int e = errno;

131

free(new_plugin);

132

errno = e;

133

115

return NULL;

134

116

}

135

117

}

136

118

137

*new_plugin = (plugin){ .name = copy_name,

138

.argc = 1,

139

.disabled = false,

140

.next = plugin_list };

119

*new_plugin = (plugin) { .name = copy_name,

120

.argc = 1,

121

.envc = 0,

122

.disabled = false,

123

.next = *plugin_list };

141

124

142

do {

143

new_plugin->argv = malloc(sizeof(char *) * 2);

144

} while(new_plugin->argv == NULL and errno == EINTR);

145

if(new_plugin->argv == NULL){

146

int e = errno;

125

new_plugin->argv = malloc(sizeof(char *) * 2);

126

if (new_plugin->argv == NULL){

147

127

free(copy_name);

148

128

free(new_plugin);

149

errno = e;

150

129

return NULL;

151

130

}

152

131

new_plugin->argv[0] = copy_name;

153

132

new_plugin->argv[1] = NULL;

154

155

do {

156

new_plugin->environ = malloc(sizeof(char *));

157

} while(new_plugin->environ == NULL and errno == EINTR);

133

134

new_plugin->environ = malloc(sizeof(char *));

158

135

if(new_plugin->environ == NULL){

159

int e = errno;

160

136

free(copy_name);

161

137

free(new_plugin->argv);

162

138

free(new_plugin);

163

errno = e;

164

139

return NULL;

165

140

}

166

141

new_plugin->environ[0] = NULL;

167

168

142

/* Append the new plugin to the list */

169

plugin_list = new_plugin;

143

*plugin_list = new_plugin;

170

144

return new_plugin;

171

145

}

172

146

174

148

static bool add_to_char_array(const char *new, char ***array,

175

149

int *len){

176

150

/* Resize the pointed-to array to hold one more pointer */

177

do {

178

*array = realloc(*array, sizeof(char *)

179

* (size_t) ((*len) + 2));

180

} while(*array == NULL and errno == EINTR);

151

*array = realloc(*array, sizeof(char *)

152

* (size_t) ((*len) + 2));

181

153

/* Malloc check */

182

154

if(*array == NULL){

183

155

return false;

184

156

}

185

157

/* Make a copy of the new string */

186

char *copy;

187

do {

188

copy = strdup(new);

189

} while(copy == NULL and errno == EINTR);

158

char *copy = strdup(new);

190

159

if(copy == NULL){

191

160

return false;

192

161

}

207

176

}

208

177

209

178

/* Add to a plugin's environment */

210

static bool add_environment(plugin *p, const char *def, bool replace){

179

static bool add_environment(plugin *p, const char *def){

211

180

if(p == NULL){

212

181

return false;

213

182

}

214

/* namelen = length of name of environment variable */

215

size_t namelen = (size_t)(strchrnul(def, '=') - def);

216

/* Search for this environment variable */

217

for(char **e = p->environ; *e != NULL; e++){

218

if(strncmp(*e, def, namelen + 1) == 0){

219

/* It already exists */

220

if(replace){

221

char *new;

222

do {

223

new = realloc(*e, strlen(def) + 1);

224

} while(new == NULL and errno == EINTR);

225

if(new == NULL){

226

return false;

227

}

228

*e = new;

229

strcpy(*e, def);

230

}

231

return true;

232

}

233

}

234

183

return add_to_char_array(def, &(p->environ), &(p->envc));

235

184

}

236

185

186

237

187

238

188

* Based on the example in the GNU LibC manual chapter 13.13 "File

239

189

* Descriptor Flags".

240

| [[info:libc:Descriptor%20Flags][File Descriptor Flags]] |

190

* *Note File Descriptor Flags:(libc)Descriptor Flags.

241

191

242

static int set_cloexec_flag(int fd){

243

int ret = (int)TEMP_FAILURE_RETRY(fcntl(fd, F_GETFD, 0));

192

static int set_cloexec_flag(int fd)

193

{

194

int ret = fcntl(fd, F_GETFD, 0);

244

195

/* If reading the flags failed, return error indication now. */

245

196

if(ret < 0){

246

197

return ret;

247

198

}

248

199

/* Store modified flag word in the descriptor. */

249

return (int)TEMP_FAILURE_RETRY(fcntl(fd, F_SETFD,

250

ret | FD_CLOEXEC));

200

return fcntl(fd, F_SETFD, ret | FD_CLOEXEC);

251

201

}

252

202

203

process *process_list = NULL;

253

204

254

205

/* Mark processes as completed when they exit, and save their exit

255

206

status. */

256

static void handle_sigchld(__attribute__((unused)) int sig){

257

int old_errno = errno;

207

void handle_sigchld(__attribute__((unused)) int sig){

258

208

while(true){

259

plugin *proc = plugin_list;

209

process *proc = process_list;

260

210

int status;

261

211

pid_t pid = waitpid(-1, &status, WNOHANG);

262

212

if(pid == 0){

264

214

break;

265

215

}

266

216

if(pid == -1){

267

if(errno == ECHILD){

268

/* No child processes */

269

break;

217

if (errno != ECHILD){

218

perror("waitpid");

270

219

}

271

error(0, errno, "waitpid");

220

/* No child processes */

221

break;

272

222

}

273

223

274

224

/* A child exited, find it in process_list */

275

225

while(proc != NULL and proc->pid != pid){

276

226

proc = proc->next;

280

230

continue;

281

231

}

282

232

proc->status = status;

283

proc->completed = 1;

233

proc->completed = true;

284

234

}

285

errno = old_errno;

286

235

}

287

236

288

/* Prints out a password to stdout */

289

static bool print_out_password(const char *buffer, size_t length){

237

bool print_out_password(const char *buffer, size_t length){

290

238

ssize_t ret;

239

if(length>0 and buffer[length-1] == '\n'){

240

length--;

241

}

291

242

for(size_t written = 0; written < length; written += (size_t)ret){

292

243

ret = TEMP_FAILURE_RETRY(write(STDOUT_FILENO, buffer + written,

293

244

length - written));

298

249

return true;

299

250

}

300

251

301

/* Removes and free a plugin from the plugin list */

302

static void free_plugin(plugin *plugin_node){

303

304

for(char **arg = plugin_node->argv; *arg != NULL; arg++){

305

free(*arg);

306

}

307

free(plugin_node->argv);

308

for(char **env = plugin_node->environ; *env != NULL; env++){

309

free(*env);

310

}

311

free(plugin_node->environ);

312

free(plugin_node->buffer);

313

314

/* Removes the plugin from the singly-linked list */

315

if(plugin_node == plugin_list){

316

/* First one - simple */

317

plugin_list = plugin_list->next;

318

} else {

319

/* Second one or later */

320

for(plugin *p = plugin_list; p != NULL; p = p->next){

321

if(p->next == plugin_node){

322

p->next = plugin_node->next;

323

break;

324

}

325

}

326

}

327

328

free(plugin_node);

329

}

330

331

static void free_plugin_list(void){

332

while(plugin_list != NULL){

333

free_plugin(plugin_list);

252

static void free_plugin_list(plugin *plugin_list){

253

for(plugin *next; plugin_list != NULL; plugin_list = next){

254

next = plugin_list->next;

255

for(char **arg = plugin_list->argv; *arg != NULL; arg++){

256

free(*arg);

257

}

258

free(plugin_list->argv);

259

for(char **env = plugin_list->environ; *env != NULL; env++){

260

free(*env);

261

}

262

free(plugin_list->environ);

263

free(plugin_list);

334

264

}

335

265

}

336

266

344

274

struct stat st;

345

275

fd_set rfds_all;

346

276

int ret, maxfd = 0;

347

ssize_t sret;

348

277

uid_t uid = 65534;

349

278

gid_t gid = 65534;

350

279

bool debug = false;

359

288

sigemptyset(&sigchld_action.sa_mask);

360

289

ret = sigaddset(&sigchld_action.sa_mask, SIGCHLD);

361

290

if(ret == -1){

362

error(0, errno, "sigaddset");

363

exitstatus = EX_OSERR;

291

perror("sigaddset");

292

exitstatus = EXIT_FAILURE;

364

293

goto fallback;

365

294

}

366

295

ret = sigaction(SIGCHLD, &sigchld_action, &old_sigchld_action);

367

296

if(ret == -1){

368

error(0, errno, "sigaction");

369

exitstatus = EX_OSERR;

297

perror("sigaction");

298

exitstatus = EXIT_FAILURE;

370

299

goto fallback;

371

300

}

372

301

375

304

{ .name = "global-options", .key = 'g',

376

305

.arg = "OPTION[,OPTION[,...]]",

377

306

.doc = "Options passed to all plugins" },

378

{ .name = "global-env", .key = 'G',

307

{ .name = "global-envs", .key = 'e',

379

308

.arg = "VAR=value",

380

309

.doc = "Environment variable passed to all plugins" },

381

310

{ .name = "options-for", .key = 'o',

382

311

.arg = "PLUGIN:OPTION[,OPTION[,...]]",

383

312

.doc = "Options passed only to specified plugin" },

384

{ .name = "env-for", .key = 'E',

313

{ .name = "envs-for", .key = 'f',

385

314

.arg = "PLUGIN:ENV=value",

386

315

.doc = "Environment variable passed to specified plugin" },

387

316

{ .name = "disable", .key = 'd',

388

317

.arg = "PLUGIN",

389

318

.doc = "Disable a specific plugin", .group = 1 },

390

{ .name = "enable", .key = 'e',

391

.arg = "PLUGIN",

392

.doc = "Enable a specific plugin", .group = 1 },

393

319

{ .name = "plugin-dir", .key = 128,

394

320

.arg = "DIRECTORY",

395

321

.doc = "Specify a different plugin directory", .group = 2 },

404

330

.doc = "Group ID the plugins will run as", .group = 3 },

405

331

{ .name = "debug", .key = 132,

406

332

.doc = "Debug mode", .group = 4 },

407

408

* These reproduce what we would get without ARGP_NO_HELP

409

410

{ .name = "help", .key = '?',

411

.doc = "Give this help list", .group = -1 },

412

{ .name = "usage", .key = -3,

413

.doc = "Give a short usage message", .group = -1 },

414

{ .name = "version", .key = 'V',

415

.doc = "Print program version", .group = -1 },

416

333

{ .name = NULL }

417

334

};

418

335

419

error_t parse_opt(int key, char *arg, struct argp_state *state){

420

errno = 0;

421

switch(key){

422

char *tmp;

423

intmax_t tmpmax;

424

case 'g': /* --global-options */

425

{

426

char *plugin_option;

427

while((plugin_option = strsep(&arg, ",")) != NULL){

428

if(not add_argument(getplugin(NULL), plugin_option)){

429

break;

430

}

431

}

432

}

433

break;

434

case 'G': /* --global-env */

435

add_environment(getplugin(NULL), arg, true);

436

break;

437

case 'o': /* --options-for */

438

{

439

char *option_list = strchr(arg, ':');

440

if(option_list == NULL){

441

argp_error(state, "No colon in \"%s\"", arg);

442

errno = EINVAL;

443

break;

444

}

445

*option_list = '\0';

446

option_list++;

447

if(arg[0] == '\0'){

448

argp_error(state, "Empty plugin name");

449

errno = EINVAL;

450

break;

451

}

452

char *option;

453

while((option = strsep(&option_list, ",")) != NULL){

454

if(not add_argument(getplugin(arg), option)){

455

break;

456

}

457

}

458

}

459

break;

460

case 'E': /* --env-for */

336

error_t parse_opt (int key, char *arg, struct argp_state *state) {

337

/* Get the INPUT argument from `argp_parse', which we know is a

338

pointer to our plugin list pointer. */

339

plugin **plugins = state->input;

340

switch (key) {

341

case 'g':

342

if (arg != NULL){

343

char *p;

344

while((p = strsep(&arg, ",")) != NULL){

345

if(p[0] == '\0'){

346

continue;

347

}

348

if(not add_argument(getplugin(NULL, plugins), p)){

349

perror("add_argument");

350

return ARGP_ERR_UNKNOWN;

351

}

352

}

353

}

354

break;

355

case 'e':

356

if(arg == NULL){

357

break;

358

}

359

{

360

char *envdef = strdup(arg);

361

if(envdef == NULL){

362

break;

363

}

364

if(not add_environment(getplugin(NULL, plugins), envdef)){

365

perror("add_environment");

366

}

367

}

368

break;

369

case 'o':

370

if (arg != NULL){

371

char *p_name = strsep(&arg, ":");

372

if(p_name[0] == '\0'){

373

break;

374

}

375

char *opt = strsep(&arg, ":");

376

if(opt[0] == '\0'){

377

break;

378

}

379

if(opt != NULL){

380

char *p;

381

while((p = strsep(&opt, ",")) != NULL){

382

if(p[0] == '\0'){

383

continue;

384

}

385

if(not add_argument(getplugin(p_name, plugins), p)){

386

perror("add_argument");

387

return ARGP_ERR_UNKNOWN;

388

}

389

}

390

}

391

}

392

break;

393

case 'f':

394

if(arg == NULL){

395

break;

396

}

461

397

{

462

398

char *envdef = strchr(arg, ':');

463

399

if(envdef == NULL){

464

argp_error(state, "No colon in \"%s\"", arg);

465

errno = EINVAL;

466

break;

467

}

468

*envdef = '\0';

400

break;

401

}

402

char *p_name = strndup(arg, (size_t) (envdef-arg));

403

if(p_name == NULL){

404

break;

405

}

469

406

envdef++;

470

if(arg[0] == '\0'){

471

argp_error(state, "Empty plugin name");

472

errno = EINVAL;

473

break;

474

}

475

add_environment(getplugin(arg), envdef, true);

476

}

477

break;

478

case 'd': /* --disable */

479

{

480

plugin *p = getplugin(arg);

481

if(p != NULL){

482

p->disabled = true;

483

}

484

}

485

break;

486

case 'e': /* --enable */

487

{

488

plugin *p = getplugin(arg);

489

if(p != NULL){

490

p->disabled = false;

491

}

492

}

493

break;

494

case 128: /* --plugin-dir */

495

free(plugindir);

407

if(not add_environment(getplugin(p_name, plugins), envdef)){

408

perror("add_environment");

409

}

410

}

411

break;

412

case 'd':

413

if (arg != NULL){

414

plugin *p = getplugin(arg, plugins);

415

if(p == NULL){

416

return ARGP_ERR_UNKNOWN;

417

}

418

p->disabled = true;

419

}

420

break;

421

case 128:

496

422

plugindir = strdup(arg);

497

break;

498

case 129: /* --config-file */

499

/* This is already done by parse_opt_config_file() */

500

break;

501

case 130: /* --userid */

502

tmpmax = strtoimax(arg, &tmp, 10);

503

if(errno != 0 or tmp == arg or *tmp != '\0'

504

or tmpmax != (uid_t)tmpmax){

505

argp_error(state, "Bad user ID number: \"%s\", using %"

506

PRIdMAX, arg, (intmax_t)uid);

507

break;

508

}

509

uid = (uid_t)tmpmax;

510

break;

511

case 131: /* --groupid */

512

tmpmax = strtoimax(arg, &tmp, 10);

513

if(errno != 0 or tmp == arg or *tmp != '\0'

514

or tmpmax != (gid_t)tmpmax){

515

argp_error(state, "Bad group ID number: \"%s\", using %"

516

PRIdMAX, arg, (intmax_t)gid);

517

break;

518

}

519

gid = (gid_t)tmpmax;

520

break;

521

case 132: /* --debug */

423

if(plugindir == NULL){

424

perror("strdup");

425

}

426

break;

427

case 129:

428

argfile = strdup(arg);

429

if(argfile == NULL){

430

perror("strdup");

431

}

432

break;

433

case 130:

434

uid = (uid_t)strtol(arg, NULL, 10);

435

break;

436

case 131:

437

gid = (gid_t)strtol(arg, NULL, 10);

438

break;

439

case 132:

522

440

debug = true;

523

441

break;

524

525

* These reproduce what we would get without ARGP_NO_HELP

526

527

case '?': /* --help */

528

state->flags &= ~(unsigned int)ARGP_NO_EXIT; /* force exit */

529

argp_state_help(state, state->out_stream, ARGP_HELP_STD_HELP);

530

case -3: /* --usage */

531

state->flags &= ~(unsigned int)ARGP_NO_EXIT; /* force exit */

532

argp_state_help(state, state->out_stream,

533

ARGP_HELP_USAGE | ARGP_HELP_EXIT_OK);

534

case 'V': /* --version */

535

fprintf(state->out_stream, "%s\n", argp_program_version);

536

exit(EXIT_SUCCESS);

537

break;

538

539

* When adding more options before this line, remember to also add a

540

* "case" to the "parse_opt_config_file" function below.

541

542

case ARGP_KEY_ARG:

543

/* Cryptsetup always passes an argument, which is an empty

544

string if "none" was specified in /etc/crypttab. So if

545

argument was empty, we ignore it silently. */

546

if(arg[0] == '\0'){

547

break;

548

}

549

default:

550

return ARGP_ERR_UNKNOWN;

551

}

552

return errno; /* Set to 0 at start */

553

}

554

555

/* This option parser is the same as parse_opt() above, except it

556

ignores everything but the --config-file option. */

557

error_t parse_opt_config_file(int key, char *arg,

558

__attribute__((unused))

559

struct argp_state *state){

560

errno = 0;

561

switch(key){

562

case 'g': /* --global-options */

563

case 'G': /* --global-env */

564

case 'o': /* --options-for */

565

case 'E': /* --env-for */

566

case 'd': /* --disable */

567

case 'e': /* --enable */

568

case 128: /* --plugin-dir */

569

break;

570

case 129: /* --config-file */

571

free(argfile);

572

argfile = strdup(arg);

573

break;

574

case 130: /* --userid */

575

case 131: /* --groupid */

576

case 132: /* --debug */

577

case '?': /* --help */

578

case -3: /* --usage */

579

case 'V': /* --version */

580

case ARGP_KEY_ARG:

581

break;

582

default:

583

return ARGP_ERR_UNKNOWN;

584

}

585

return errno;

586

}

587

588

struct argp argp = { .options = options,

589

.parser = parse_opt_config_file,

590

.args_doc = "",

442

case ARGP_KEY_ARG:

443

fprintf(stderr, "Ignoring unknown argument \"%s\"\n", arg);

444

break;

445

case ARGP_KEY_END:

446

break;

447

default:

448

return ARGP_ERR_UNKNOWN;

449

}

450

return 0;

451

}

452

453

plugin *plugin_list = NULL;

454

455

struct argp argp = { .options = options, .parser = parse_opt,

456

.args_doc = "[+PLUS_SEPARATED_OPTIONS]",

591

457

.doc = "Mandos plugin runner -- Run plugins" };

592

458

593

/* Parse using parse_opt_config_file() in order to get the custom

594

config file location, if any. */

595

ret = argp_parse(&argp, argc, argv,

596

ARGP_IN_ORDER | ARGP_NO_EXIT | ARGP_NO_HELP,

597

NULL, NULL);

598

switch(ret){

599

case 0:

600

break;

601

case ENOMEM:

602

default:

603

errno = ret;

604

error(0, errno, "argp_parse");

605

exitstatus = EX_OSERR;

606

goto fallback;

607

case EINVAL:

608

exitstatus = EX_USAGE;

459

ret = argp_parse (&argp, argc, argv, 0, 0, &plugin_list);

460

if (ret == ARGP_ERR_UNKNOWN){

461

fprintf(stderr, "Unknown error while parsing arguments\n");

462

exitstatus = EXIT_FAILURE;

609

463

goto fallback;

610

464

}

611

612

/* Reset to the normal argument parser */

613

argp.parser = parse_opt;

614

615

/* Open the configfile if available */

616

if(argfile == NULL){

465

466

if (argfile == NULL){

617

467

conffp = fopen(AFILE, "r");

618

468

} else {

619

469

conffp = fopen(argfile, "r");

620

470

}

471

621

472

if(conffp != NULL){

622

473

char *org_line = NULL;

623

474

char *p, *arg, *new_arg, *line;

624

475

size_t size = 0;

476

ssize_t sret;

625

477

const char whitespace_delims[] = " \r\t\f\v\n";

626

478

const char comment_delim[] = "#";

627

479

628

480

custom_argc = 1;

629

481

custom_argv = malloc(sizeof(char*) * 2);

630

482

if(custom_argv == NULL){

631

error(0, errno, "malloc");

632

exitstatus = EX_OSERR;

483

perror("malloc");

484

exitstatus = EXIT_FAILURE;

633

485

goto fallback;

634

486

}

635

487

custom_argv[0] = argv[0];

636

488

custom_argv[1] = NULL;

637

489

638

/* for each line in the config file, strip whitespace and ignore

639

commented text */

640

490

while(true){

641

491

sret = getline(&org_line, &size, conffp);

642

492

if(sret == -1){

643

493

break;

644

494

}

645

495

646

496

line = org_line;

647

497

arg = strsep(&line, comment_delim);

648

498

while((p = strsep(&arg, whitespace_delims)) != NULL){

651

501

}

652

502

new_arg = strdup(p);

653

503

if(new_arg == NULL){

654

error(0, errno, "strdup");

655

exitstatus = EX_OSERR;

504

perror("strdup");

505

exitstatus = EXIT_FAILURE;

656

506

free(org_line);

657

507

goto fallback;

658

508

}

661

511

custom_argv = realloc(custom_argv, sizeof(char *)

662

512

* ((unsigned int) custom_argc + 1));

663

513

if(custom_argv == NULL){

664

error(0, errno, "realloc");

665

exitstatus = EX_OSERR;

514

perror("realloc");

515

exitstatus = EXIT_FAILURE;

666

516

free(org_line);

667

517

goto fallback;

668

518

}

669

519

custom_argv[custom_argc-1] = new_arg;

670

custom_argv[custom_argc] = NULL;

520

custom_argv[custom_argc] = NULL;

671

521

}

672

522

}

673

do {

674

ret = fclose(conffp);

675

} while(ret == EOF and errno == EINTR);

676

if(ret == EOF){

677

error(0, errno, "fclose");

678

exitstatus = EX_IOERR;

679

goto fallback;

680

}

681

523

free(org_line);

682

} else {

524

} else{

683

525

/* Check for harmful errors and go to fallback. Other errors might

684

526

not affect opening plugins */

685

if(errno == EMFILE or errno == ENFILE or errno == ENOMEM){

686

error(0, errno, "fopen");

687

exitstatus = EX_OSERR;

527

if (errno == EMFILE or errno == ENFILE or errno == ENOMEM){

528

perror("fopen");

529

exitstatus = EXIT_FAILURE;

688

530

goto fallback;

689

531

}

690

532

}

691

/* If there were any arguments from the configuration file, pass

692

them to parser as command line arguments */

533

693

534

if(custom_argv != NULL){

694

ret = argp_parse(&argp, custom_argc, custom_argv,

695

ARGP_IN_ORDER | ARGP_NO_EXIT | ARGP_NO_HELP,

696

NULL, NULL);

697

switch(ret){

698

case 0:

699

break;

700

case ENOMEM:

701

default:

702

errno = ret;

703

error(0, errno, "argp_parse");

704

exitstatus = EX_OSERR;

705

goto fallback;

706

case EINVAL:

707

exitstatus = EX_CONFIG;

535

ret = argp_parse (&argp, custom_argc, custom_argv, 0, 0, &plugin_list);

536

if (ret == ARGP_ERR_UNKNOWN){

537

fprintf(stderr, "Unknown error while parsing arguments\n");

538

exitstatus = EXIT_FAILURE;

708

539

goto fallback;

709

540

}

710

541

}

711

542

712

/* Parse actual command line arguments, to let them override the

713

config file */

714

ret = argp_parse(&argp, argc, argv,

715

ARGP_IN_ORDER | ARGP_NO_EXIT | ARGP_NO_HELP,

716

NULL, NULL);

717

switch(ret){

718

case 0:

719

break;

720

case ENOMEM:

721

default:

722

errno = ret;

723

error(0, errno, "argp_parse");

724

exitstatus = EX_OSERR;

725

goto fallback;

726

case EINVAL:

727

exitstatus = EX_USAGE;

728

goto fallback;

729

}

730

731

543

if(debug){

732

544

for(plugin *p = plugin_list; p != NULL; p=p->next){

733

545

fprintf(stderr, "Plugin: %s has %d arguments\n",

735

547

for(char **a = p->argv; *a != NULL; a++){

736

548

fprintf(stderr, "\tArg: %s\n", *a);

737

549

}

738

fprintf(stderr, "...and %d environment variables\n", p->envc);

550

fprintf(stderr, "...and %u environment variables\n", p->envc);

739

551

for(char **a = p->environ; *a != NULL; a++){

740

552

fprintf(stderr, "\t%s\n", *a);

741

553

}

742

554

}

743

555

}

744

556

745

/* Strip permissions down to nobody */

557

ret = setuid(uid);

558

if (ret == -1){

559

perror("setuid");

560

}

561

746

562

setgid(gid);

747

if(ret == -1){

748

error(0, errno, "setgid");

749

}

750

ret = setuid(uid);

751

if(ret == -1){

752

error(0, errno, "setuid");

753

}

754

755

/* Open plugin directory with close_on_exec flag */

563

if (ret == -1){

564

perror("setgid");

565

}

566

567

if (plugindir == NULL){

568

dir = opendir(PDIR);

569

} else {

570

dir = opendir(plugindir);

571

}

572

573

if(dir == NULL){

574

perror("Could not open plugin dir");

575

exitstatus = EXIT_FAILURE;

576

goto fallback;

577

}

578

579

/* Set the FD_CLOEXEC flag on the directory, if possible */

756

580

{

757

int dir_fd = -1;

758

if(plugindir == NULL){

759

dir_fd = open(PDIR, O_RDONLY |

760

#ifdef O_CLOEXEC

761

O_CLOEXEC

762

#else /* not O_CLOEXEC */

763

764

#endif /* not O_CLOEXEC */

765

);

766

} else {

767

dir_fd = open(plugindir, O_RDONLY |

768

#ifdef O_CLOEXEC

769

O_CLOEXEC

770

#else /* not O_CLOEXEC */

771

772

#endif /* not O_CLOEXEC */

773

);

774

}

775

if(dir_fd == -1){

776

error(0, errno, "Could not open plugin dir");

777

exitstatus = EX_UNAVAILABLE;

778

goto fallback;

779

}

780

781

#ifndef O_CLOEXEC

782

/* Set the FD_CLOEXEC flag on the directory */

783

ret = set_cloexec_flag(dir_fd);

784

if(ret < 0){

785

error(0, errno, "set_cloexec_flag");

786

TEMP_FAILURE_RETRY(close(dir_fd));

787

exitstatus = EX_OSERR;

788

goto fallback;

789

}

790

#endif /* O_CLOEXEC */

791

792

dir = fdopendir(dir_fd);

793

if(dir == NULL){

794

error(0, errno, "Could not open plugin dir");

795

TEMP_FAILURE_RETRY(close(dir_fd));

796

exitstatus = EX_OSERR;

797

goto fallback;

581

int dir_fd = dirfd(dir);

582

if(dir_fd >= 0){

583

ret = set_cloexec_flag(dir_fd);

584

if(ret < 0){

585

perror("set_cloexec_flag");

586

exitstatus = EXIT_FAILURE;

587

goto fallback;

588

}

798

589

}

799

590

}

800

591

801

592

FD_ZERO(&rfds_all);

802

593

803

/* Read and execute any executable in the plugin directory*/

804

594

while(true){

805

do {

806

dirst = readdir(dir);

807

} while(dirst == NULL and errno == EINTR);

595

dirst = readdir(dir);

808

596

809

/* All directory entries have been processed */

597

// All directory entries have been processed

810

598

if(dirst == NULL){

811

if(errno == EBADF){

812

error(0, errno, "readdir");

813

exitstatus = EX_IOERR;

599

if (errno == EBADF){

600

perror("readdir");

601

exitstatus = EXIT_FAILURE;

814

602

goto fallback;

815

603

}

816

604

break;

818

606

819

607

d_name_len = strlen(dirst->d_name);

820

608

821

/* Ignore dotfiles, backup files and other junk */

609

// Ignore dotfiles, backup files and other junk

822

610

{

823

611

bool bad_name = false;

824

612

826

614

827

615

const char const *bad_suffixes[] = { "~", "#", ".dpkg-new",

828

616

".dpkg-old",

829

".dpkg-bak",

830

617

".dpkg-divert", NULL };

831

618

for(const char **pre = bad_prefixes; *pre != NULL; pre++){

832

619

size_t pre_len = strlen(*pre);

840

627

break;

841

628

}

842

629

}

630

843

631

if(bad_name){

844

632

continue;

845

633

}

634

846

635

for(const char **suf = bad_suffixes; *suf != NULL; suf++){

847

636

size_t suf_len = strlen(*suf);

848

637

if((d_name_len >= suf_len)

849

and (strcmp((dirst->d_name) + d_name_len-suf_len, *suf)

638

and (strcmp((dirst->d_name)+d_name_len-suf_len, *suf)

850

639

== 0)){

851

640

if(debug){

852

641

fprintf(stderr, "Ignoring plugin dir entry \"%s\""

861

650

continue;

862

651

}

863

652

}

864

653

865

654

char *filename;

866

if(plugindir == NULL){

867

ret = (int)TEMP_FAILURE_RETRY(asprintf(&filename, PDIR "/%s",

868

dirst->d_name));

869

} else {

870

ret = (int)TEMP_FAILURE_RETRY(asprintf(&filename, "%s/%s",

871

plugindir,

872

dirst->d_name));

873

}

655

ret = asprintf(&filename, "%s/%s", plugindir, dirst->d_name);

874

656

if(ret < 0){

875

error(0, errno, "asprintf");

657

perror("asprintf");

876

658

continue;

877

659

}

878

660

879

ret = (int)TEMP_FAILURE_RETRY(stat(filename, &st));

880

if(ret == -1){

881

error(0, errno, "stat");

661

ret = stat(filename, &st);

662

if (ret == -1){

663

perror("stat");

882

664

free(filename);

883

665

continue;

884

666

}

885

667

886

/* Ignore non-executable files */

887

if(not S_ISREG(st.st_mode)

888

or (TEMP_FAILURE_RETRY(access(filename, X_OK)) != 0)){

668

if (not S_ISREG(st.st_mode) or (access(filename, X_OK) != 0)){

889

669

if(debug){

890

670

fprintf(stderr, "Ignoring plugin dir entry \"%s\""

891

671

" with bad type or mode\n", filename);

893

673

free(filename);

894

674

continue;

895

675

}

896

897

plugin *p = getplugin(dirst->d_name);

676

plugin *p = getplugin(dirst->d_name, &plugin_list);

898

677

if(p == NULL){

899

error(0, errno, "getplugin");

678

perror("getplugin");

900

679

free(filename);

901

680

continue;

902

681

}

910

689

}

911

690

{

912

691

/* Add global arguments to argument list for this plugin */

913

plugin *g = getplugin(NULL);

692

plugin *g = getplugin(NULL, &plugin_list);

914

693

if(g != NULL){

915

694

for(char **a = g->argv + 1; *a != NULL; a++){

916

695

if(not add_argument(p, *a)){

917

error(0, errno, "add_argument");

696

perror("add_argument");

918

697

}

919

698

}

920

699

/* Add global environment variables */

921

700

for(char **e = g->environ; *e != NULL; e++){

922

if(not add_environment(p, *e, false)){

923

error(0, errno, "add_environment");

701

if(not add_environment(p, *e)){

702

perror("add_environment");

924

703

}

925

704

}

926

705

}

930

709

process, too. */

931

710

if(p->environ[0] != NULL){

932

711

for(char **e = environ; *e != NULL; e++){

933

if(not add_environment(p, *e, false)){

934

error(0, errno, "add_environment");

712

char *copy = strdup(*e);

713

if(copy == NULL){

714

perror("strdup");

715

continue;

716

}

717

if(not add_environment(p, copy)){

718

perror("add_environment");

935

719

}

936

720

}

937

721

}

938

722

939

723

int pipefd[2];

940

ret = (int)TEMP_FAILURE_RETRY(pipe(pipefd));

941

if(ret == -1){

942

error(0, errno, "pipe");

943

exitstatus = EX_OSERR;

724

ret = pipe(pipefd);

725

if (ret == -1){

726

perror("pipe");

727

exitstatus = EXIT_FAILURE;

944

728

goto fallback;

945

729

}

946

/* Ask OS to automatic close the pipe on exec */

947

730

ret = set_cloexec_flag(pipefd[0]);

948

731

if(ret < 0){

949

error(0, errno, "set_cloexec_flag");

950

exitstatus = EX_OSERR;

732

perror("set_cloexec_flag");

733

exitstatus = EXIT_FAILURE;

951

734

goto fallback;

952

735

}

953

736

ret = set_cloexec_flag(pipefd[1]);

954

737

if(ret < 0){

955

error(0, errno, "set_cloexec_flag");

956

exitstatus = EX_OSERR;

738

perror("set_cloexec_flag");

739

exitstatus = EXIT_FAILURE;

957

740

goto fallback;

958

741

}

959

742

/* Block SIGCHLD until process is safely in process list */

960

ret = (int)TEMP_FAILURE_RETRY(sigprocmask(SIG_BLOCK,

961

&sigchld_action.sa_mask,

962

NULL));

743

ret = sigprocmask (SIG_BLOCK, &sigchld_action.sa_mask, NULL);

963

744

if(ret < 0){

964

error(0, errno, "sigprocmask");

965

exitstatus = EX_OSERR;

745

perror("sigprocmask");

746

exitstatus = EXIT_FAILURE;

966

747

goto fallback;

967

748

}

968

/* Starting a new process to be watched */

969

pid_t pid;

970

do {

971

pid = fork();

972

} while(pid == -1 and errno == EINTR);

749

// Starting a new process to be watched

750

pid_t pid = fork();

973

751

if(pid == -1){

974

error(0, errno, "fork");

975

exitstatus = EX_OSERR;

752

perror("fork");

753

exitstatus = EXIT_FAILURE;

976

754

goto fallback;

977

755

}

978

756

if(pid == 0){

979

757

/* this is the child process */

980

758

ret = sigaction(SIGCHLD, &old_sigchld_action, NULL);

981

759

if(ret < 0){

982

error(0, errno, "sigaction");

983

_exit(EX_OSERR);

760

perror("sigaction");

761

_exit(EXIT_FAILURE);

984

762

}

985

ret = sigprocmask(SIG_UNBLOCK, &sigchld_action.sa_mask, NULL);

763

ret = sigprocmask (SIG_UNBLOCK, &sigchld_action.sa_mask, NULL);

986

764

if(ret < 0){

987

error(0, errno, "sigprocmask");

988

_exit(EX_OSERR);

765

perror("sigprocmask");

766

_exit(EXIT_FAILURE);

989

767

}

990

768

991

769

ret = dup2(pipefd[1], STDOUT_FILENO); /* replace our stdout */

992

770

if(ret == -1){

993

error(0, errno, "dup2");

994

_exit(EX_OSERR);

771

perror("dup2");

772

_exit(EXIT_FAILURE);

995

773

}

996

774

997

775

if(dirfd(dir) < 0){

1001

779

}

1002

780

if(p->environ[0] == NULL){

1003

781

if(execv(filename, p->argv) < 0){

1004

error(0, errno, "execv for %s", filename);

1005

_exit(EX_OSERR);

782

perror("execv");

783

_exit(EXIT_FAILURE);

1006

784

}

1007

785

} else {

1008

786

if(execve(filename, p->argv, p->environ) < 0){

1009

error(0, errno, "execve for %s", filename);

1010

_exit(EX_OSERR);

787

perror("execve");

788

_exit(EXIT_FAILURE);

1011

789

}

1012

790

}

1013

791

/* no return */

1014

792

}

1015

/* Parent process */

1016

TEMP_FAILURE_RETRY(close(pipefd[1])); /* Close unused write end of

1017

pipe */

793

/* parent process */

1018

794

free(filename);

1019

plugin *new_plugin = getplugin(dirst->d_name);

1020

if(new_plugin == NULL){

1021

error(0, errno, "getplugin");

1022

ret = (int)(TEMP_FAILURE_RETRY

1023

(sigprocmask(SIG_UNBLOCK, &sigchld_action.sa_mask,

1024

NULL)));

795

close(pipefd[1]); /* close unused write end of pipe */

796

process *new_process = malloc(sizeof(process));

797

if (new_process == NULL){

798

perror("malloc");

799

ret = sigprocmask (SIG_UNBLOCK, &sigchld_action.sa_mask, NULL);

1025

800

if(ret < 0){

1026

error(0, errno, "sigprocmask");

801

perror("sigprocmask");

1027

802

}

1028

exitstatus = EX_OSERR;

803

exitstatus = EXIT_FAILURE;

1029

804

goto fallback;

1030

805

}

1031

806

1032

new_plugin->pid = pid;

1033

new_plugin->fd = pipefd[0];

1034

807

*new_process = (struct process){ .pid = pid,

808

.fd = pipefd[0],

809

.next = process_list };

810

// List handling

811

process_list = new_process;

1035

812

/* Unblock SIGCHLD so signal handler can be run if this process

1036

813

has already completed */

1037

ret = (int)TEMP_FAILURE_RETRY(sigprocmask(SIG_UNBLOCK,

1038

&sigchld_action.sa_mask,

1039

NULL));

814

ret = sigprocmask (SIG_UNBLOCK, &sigchld_action.sa_mask, NULL);

1040

815

if(ret < 0){

1041

error(0, errno, "sigprocmask");

1042

exitstatus = EX_OSERR;

816

perror("sigprocmask");

817

exitstatus = EXIT_FAILURE;

1043

818

goto fallback;

1044

819

}

1045

820

1046

FD_SET(new_plugin->fd, &rfds_all); /* Spurious warning from

1047

-Wconversion */

821

FD_SET(new_process->fd, &rfds_all);

1048

822

1049

if(maxfd < new_plugin->fd){

1050

maxfd = new_plugin->fd;

823

if (maxfd < new_process->fd){

824

maxfd = new_process->fd;

1051

825

}

826

1052

827

}

828

829

free_plugin_list(plugin_list);

830

plugin_list = NULL;

1053

831

1054

TEMP_FAILURE_RETRY(closedir(dir));

832

closedir(dir);

1055

833

dir = NULL;

1056

free_plugin(getplugin(NULL));

1057

1058

for(plugin *p = plugin_list; p != NULL; p = p->next){

1059

if(p->pid != 0){

1060

break;

1061

}

1062

if(p->next == NULL){

1063

fprintf(stderr, "No plugin processes started. Incorrect plugin"

1064

" directory?\n");

1065

free_plugin_list();

1066

}

834

835

if (process_list == NULL){

836

fprintf(stderr, "No plugin processes started. Incorrect plugin"

837

" directory?\n");

838

process_list = NULL;

1067

839

}

1068

1069

/* Main loop while running plugins exist */

1070

while(plugin_list){

840

while(process_list){

1071

841

fd_set rfds = rfds_all;

1072

842

int select_ret = select(maxfd+1, &rfds, NULL, NULL, NULL);

1073

if(select_ret == -1 and errno != EINTR){

1074

error(0, errno, "select");

1075

exitstatus = EX_OSERR;

843

if (select_ret == -1){

844

perror("select");

845

exitstatus = EXIT_FAILURE;

1076

846

goto fallback;

1077

847

}

1078

848

/* OK, now either a process completed, or something can be read

1079

849

from one of them */

1080

for(plugin *proc = plugin_list; proc != NULL;){

850

for(process *proc = process_list; proc ; proc = proc->next){

1081

851

/* Is this process completely done? */

1082

if(proc->completed and proc->eof){

852

if(proc->eof and proc->completed){

1083

853

/* Only accept the plugin output if it exited cleanly */

1084

854

if(not WIFEXITED(proc->status)

1085

855

or WEXITSTATUS(proc->status) != 0){

1086

856

/* Bad exit by plugin */

1087

1088

857

if(debug){

1089

858

if(WIFEXITED(proc->status)){

1090

fprintf(stderr, "Plugin %s [%" PRIdMAX "] exited with"

1091

" status %d\n", proc->name,

1092

(intmax_t) (proc->pid),

859

fprintf(stderr, "Plugin %u exited with status %d\n",

860

(unsigned int) (proc->pid),

1093

861

WEXITSTATUS(proc->status));

1094

} else if(WIFSIGNALED(proc->status)){

1095

fprintf(stderr, "Plugin %s [%" PRIdMAX "] killed by"

1096

" signal %d: %s\n", proc->name,

1097

(intmax_t) (proc->pid),

1098

WTERMSIG(proc->status),

1099

strsignal(WTERMSIG(proc->status)));

862

} else if(WIFSIGNALED(proc->status)) {

863

fprintf(stderr, "Plugin %u killed by signal %d\n",

864

(unsigned int) (proc->pid),

865

WTERMSIG(proc->status));

1100

866

} else if(WCOREDUMP(proc->status)){

1101

fprintf(stderr, "Plugin %s [%" PRIdMAX "] dumped"

1102

" core\n", proc->name, (intmax_t) (proc->pid));

867

fprintf(stderr, "Plugin %d dumped core\n",

868

(unsigned int) (proc->pid));

1103

869

}

1104

870

}

1105

1106

871

/* Remove the plugin */

1107

FD_CLR(proc->fd, &rfds_all); /* Spurious warning from

1108

-Wconversion */

1109

872

FD_CLR(proc->fd, &rfds_all);

1110

873

/* Block signal while modifying process_list */

1111

ret = (int)TEMP_FAILURE_RETRY(sigprocmask

1112

(SIG_BLOCK,

1113

&sigchld_action.sa_mask,

1114

NULL));

874

ret = sigprocmask(SIG_BLOCK, &sigchld_action.sa_mask, NULL);

1115

875

if(ret < 0){

1116

error(0, errno, "sigprocmask");

1117

exitstatus = EX_OSERR;

876

perror("sigprocmask");

877

exitstatus = EXIT_FAILURE;

1118

878

goto fallback;

1119

879

}

1120

1121

plugin *next_plugin = proc->next;

1122

free_plugin(proc);

1123

proc = next_plugin;

1124

880

/* Delete this process entry from the list */

881

if(process_list == proc){

882

/* First one - simple */

883

process_list = proc->next;

884

} else {

885

/* Second one or later */

886

for(process *p = process_list; p != NULL; p = p->next){

887

if(p->next == proc){

888

p->next = proc->next;

889

break;

890

}

891

}

892

}

1125

893

/* We are done modifying process list, so unblock signal */

1126

ret = (int)(TEMP_FAILURE_RETRY

1127

(sigprocmask(SIG_UNBLOCK,

1128

&sigchld_action.sa_mask, NULL)));

894

ret = sigprocmask (SIG_UNBLOCK, &sigchld_action.sa_mask,

895

NULL);

1129

896

if(ret < 0){

1130

error(0, errno, "sigprocmask");

1131

exitstatus = EX_OSERR;

1132

goto fallback;

1133

}

1134

1135

if(plugin_list == NULL){

1136

break;

1137

}

1138

1139

continue;

897

perror("sigprocmask");

898

}

899

free(proc->buffer);

900

free(proc);

901

/* We deleted this process from the list, so we can't go

902

proc->next. Therefore, start over from the beginning of

903

the process list */

904

break;

1140

905

}

1141

1142

906

/* This process exited nicely, so print its buffer */

1143

907

1144

908

bool bret = print_out_password(proc->buffer,

1145

909

proc->buffer_length);

1146

910

if(not bret){

1147

error(0, errno, "print_out_password");

1148

exitstatus = EX_IOERR;

911

perror("print_out_password");

912

exitstatus = EXIT_FAILURE;

1149

913

}

1150

914

goto fallback;

1151

915

}

1152

1153

916

/* This process has not completed. Does it have any output? */

1154

if(proc->eof or not FD_ISSET(proc->fd, &rfds)){ /* Spurious

1155

warning from

1156

-Wconversion */

917

if(proc->eof or not FD_ISSET(proc->fd, &rfds)){

1157

918

/* This process had nothing to say at this time */

1158

proc = proc->next;

1159

919

continue;

1160

920

}

1161

921

/* Before reading, make the process' data buffer large enough */

1162

922

if(proc->buffer_length + BUFFER_SIZE > proc->buffer_size){

1163

923

proc->buffer = realloc(proc->buffer, proc->buffer_size

1164

924

+ (size_t) BUFFER_SIZE);

1165

if(proc->buffer == NULL){

1166

error(0, errno, "malloc");

1167

exitstatus = EX_OSERR;

925

if (proc->buffer == NULL){

926

perror("malloc");

927

exitstatus = EXIT_FAILURE;

1168

928

goto fallback;

1169

929

}

1170

930

proc->buffer_size += BUFFER_SIZE;

1171

931

}

1172

932

/* Read from the process */

1173

sret = TEMP_FAILURE_RETRY(read(proc->fd,

1174

proc->buffer

1175

+ proc->buffer_length,

1176

BUFFER_SIZE));

1177

if(sret < 0){

933

ret = read(proc->fd, proc->buffer + proc->buffer_length,

934

BUFFER_SIZE);

935

if(ret < 0){

1178

936

/* Read error from this process; ignore the error */

1179

proc = proc->next;

1180

937

continue;

1181

938

}

1182

if(sret == 0){

939

if(ret == 0){

1183

940

/* got EOF */

1184

941

proc->eof = true;

1185

942

} else {

1186

proc->buffer_length += (size_t) sret;

943

proc->buffer_length += (size_t) ret;

1187

944

}

1188

945

}

1189

946

}

1190

1191

947

948

1192

949

fallback:

1193

950

1194

if(plugin_list == NULL or (exitstatus != EXIT_SUCCESS

1195

and exitstatus != EX_OK)){

951

if(process_list == NULL or exitstatus != EXIT_SUCCESS){

1196

952

/* Fallback if all plugins failed, none are found or an error

1197

953

occured */

1198

954

bool bret;

1199

955

fprintf(stderr, "Going to fallback mode using getpass(3)\n");

1200

956

char *passwordbuffer = getpass("Password: ");

1201

size_t len = strlen(passwordbuffer);

1202

/* Strip trailing newline */

1203

if(len > 0 and passwordbuffer[len-1] == '\n'){

1204

passwordbuffer[len-1] = '\0'; /* not strictly necessary */

1205

len--;

1206

}

1207

bret = print_out_password(passwordbuffer, len);

957

bret = print_out_password(passwordbuffer, strlen(passwordbuffer));

1208

958

if(not bret){

1209

error(0, errno, "print_out_password");

1210

exitstatus = EX_IOERR;

959

perror("print_out_password");

960

exitstatus = EXIT_FAILURE;

1211

961

}

1212

962

}

1213

963

1214

964

/* Restore old signal handler */

1215

965

ret = sigaction(SIGCHLD, &old_sigchld_action, NULL);

1216

966

if(ret == -1){

1217

error(0, errno, "sigaction");

1218

exitstatus = EX_OSERR;

967

perror("sigaction");

968

exitstatus = EXIT_FAILURE;

1219

969

}

1220

970

1221

971

if(custom_argv != NULL){

1222

972

for(char **arg = custom_argv+1; *arg != NULL; arg++){

1223

973

free(*arg);

1224

974

}

1225

975

free(custom_argv);

1226

976

}

977

free_plugin_list(plugin_list);

1227

978

1228

979

if(dir != NULL){

1229

980

closedir(dir);

1230

981

}

1231

982

1232

/* Kill the processes */

1233

for(plugin *p = plugin_list; p != NULL; p = p->next){

1234

if(p->pid != 0){

1235

close(p->fd);

1236

ret = kill(p->pid, SIGTERM);

1237

if(ret == -1 and errno != ESRCH){

1238

/* Set-uid proccesses might not get closed */

1239

error(0, errno, "kill");

1240

}

983

/* Free the process list and kill the processes */

984

for(process *next; process_list != NULL; process_list = next){

985

next = process_list->next;

986

close(process_list->fd);

987

ret = kill(process_list->pid, SIGTERM);

988

if(ret == -1 and errno != ESRCH){

989

/* set-uid proccesses migth not get closed */

990

perror("kill");

1241

991

}

992

free(process_list->buffer);

993

free(process_list);

1242

994

}

1243

995

1244

996

/* Wait for any remaining child processes to terminate */

1245

do {

997

do{

1246

998

ret = wait(NULL);

1247

999

} while(ret >= 0);

1248

1000

if(errno != ECHILD){

1249

error(0, errno, "wait");

1001

perror("wait");

1250

1002

}

1251

1252

free_plugin_list();

1253

1003

1254

1004

free(plugindir);

1255

1005

free(argfile);

1256

1006

Older »