/mandos/trunk : revision 1152

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/plymouth.c

Committer: Teddy Hogeborn
Date: 2019-08-05 21:14:05 UTC
Revision ID: teddy@recompile.se-20190805211405-9m6hecekaihpttz9

Override lintian warnings about upgrading from old versions

There are some really things which are imperative that we fix in case
someone were to upgrade from a really old version.  We want to keep
these fixes in the postinst maintainer scripts, even though lintian
complains about such old upgrades not being supported by Debian in
general.  We prefer the code being there, for the sake of the users.

* debian/mandos-client.lintian-overrides
  (maintainer-script-supports-ancient-package-version): New.
  debian/mandos.lintian-overrides
  (maintainer-script-supports-ancient-package-version): - '' -

files added:
debian/mandos-client.templates

debian/mandos.templates

debian/po/POTFILES.in

debian/po/en_US.po

debian/po/templates.pot

debian/source/lintian-overrides

debian/tests

debian/tests/control

debian/upstream/metadata

dracut-module

dracut-module/ask-password-mandos.path

dracut-module/ask-password-mandos.service

dracut-module/cmdline-mandos.sh

dracut-module/module-setup.sh

dracut-module/password-agent.c

dracut-module/password-agent.xml

initramfs-tools-conf

initramfs-tools-conf-hook

initramfs-tools-script-stop

mandos-to-cryptroot-unlock

files removed:
initramfs-tools-hook-conf

files modified:
.bzrignore

DBUS-API

INSTALL

Makefile

NEWS

TODO

clients.conf

common.ent

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/rules

debian/watch

init.d-mandos

initramfs-tools-hook

initramfs-tools-script

initramfs-unpack

intro.xml

mandos

mandos-clients.conf.xml

mandos-ctl

mandos-ctl.xml

mandos-keygen

mandos-keygen.xml

mandos-monitor

mandos-monitor.xml

mandos-options.xml

mandos.conf.xml

mandos.lsm

mandos.xml

network-hooks.d/bridge

network-hooks.d/openvpn

network-hooks.d/wireless

overview.xml

plugin-helpers/mandos-client-iprouteadddel.c

plugin-runner.c

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

Show diffs side-by-side

added added

removed removed

plugins.d/plymouth.c

* Plymouth - Read a password from Plymouth and output it

* This file is part of Mandos.

#include <errno.h> /* TEMP_FAILURE_RETRY */

#include <argz.h> /* argz_count(), argz_extract() */

#include <stdarg.h> /* va_list, va_start(), ... */

#include <argp.h>

sig_atomic_t interrupted_by_signal = 0;

const char *argp_program_version = "plymouth " VERSION;

const char *argp_program_bug_address = "<mandos@recompile.se>";

/* Used by Ubuntu 11.04 (Natty Narwahl) */

const char plymouth_old_pid[] = "/dev/.initramfs/plymouth.pid";

const char plymouth_old_old_pid[] = "/dev/.initramfs/plymouth.pid";

/* Used by Ubuntu 11.10 (Oneiric Ocelot) */

const char plymouth_pid[] = "/run/initramfs/plymouth.pid";

const char plymouth_old_pid[] = "/run/initramfs/plymouth.pid";

/* Used by Debian 9 (stretch) */

const char plymouth_pid[] = "/run/plymouth/pid";

const char plymouth_path[] = "/bin/plymouth";

const char plymouthd_path[] = "/sbin/plymouthd";

"--mode=boot",

"--attach-to-session",

NULL };

bool debug = false;

static void termination_handler(__attribute__((unused))int signum){

if(interrupted_by_signal){

interrupted_by_signal = 1;

}

__attribute__((format (gnu_printf, 2, 3), nonnull))

int fprintf_plus(FILE *stream, const char *format, ...){

va_list ap;

va_start (ap, format);

fprintf(stream, "Mandos plugin %s: ", program_invocation_short_name);

return vfprintf(stream, format, ap);

}

/* Function to use when printing errors */

__attribute__((format (gnu_printf, 3, 4)))

void error_plus(int status, int errnum, const char *formatstring,

157

171

158

172

__attribute__((nonnull (2, 3)))

159

173

bool exec_and_wait(pid_t *pid_return, const char *path,

160

const char * const *argv, bool interruptable,

174

const char * const * const argv, bool interruptable,

161

175

bool daemonize){

162

176

int status;

163

177

int ret;

164

178

pid_t pid;

179

if(debug){

180

for(const char * const *arg = argv; *arg != NULL; arg++){

181

fprintf_plus(stderr, "exec_and_wait arg: %s\n", *arg);

182

}

183

fprintf_plus(stderr, "exec_and_wait end of args\n");

184

}

185

165

186

pid = fork();

166

187

if(pid == -1){

167

188

error_plus(0, errno, "fork");

207

228

and ((not interrupted_by_signal)

208

229

or (not interruptable)));

209

230

if(interrupted_by_signal and interruptable){

231

if(debug){

232

fprintf_plus(stderr, "Interrupted by signal\n");

233

}

210

234

return false;

211

235

}

212

236

if(ret == -1){

213

237

error_plus(0, errno, "waitpid");

214

238

return false;

215

239

}

240

if(debug){

241

if(WIFEXITED(status)){

242

fprintf_plus(stderr, "exec_and_wait exited: %d\n",

243

WEXITSTATUS(status));

244

} else if(WIFSIGNALED(status)) {

245

fprintf_plus(stderr, "exec_and_wait signaled: %d\n",

246

WTERMSIG(status));

247

}

248

}

216

249

if(WIFEXITED(status) and (WEXITSTATUS(status) == 0)){

217

250

return true;

218

251

}

291

324

fclose(pidfile);

292

325

}

293

326

}

327

/* Try the old old pid file location */

328

if(proc_id == 0){

329

pidfile = fopen(plymouth_old_old_pid, "r");

330

if(pidfile != NULL){

331

ret = fscanf(pidfile, "%" SCNuMAX, &proc_id);

332

if(ret != 1){

333

proc_id = 0;

334

}

335

fclose(pidfile);

336

}

337

}

294

338

/* Look for a plymouth process */

295

339

if(proc_id == 0){

296

340

struct dirent **direntries = NULL;

394

438

395

439

int main(__attribute__((unused))int argc,

396

440

__attribute__((unused))char **argv){

397

char *prompt;

441

char *prompt = NULL;

398

442

char *prompt_arg;

399

443

pid_t plymouth_command_pid;

400

444

int ret;

401

445

bool bret;

402

446

447

{

448

struct argp_option options[] = {

449

{ .name = "prompt", .key = 128, .arg = "PROMPT",

450

.doc = "The prompt to show" },

451

{ .name = "debug", .key = 129,

452

.doc = "Debug mode" },

453

{ .name = NULL }

454

};

455

456

__attribute__((nonnull(3)))

457

error_t parse_opt (int key, char *arg, __attribute__((unused))

458

struct argp_state *state){

459

errno = 0;

460

switch (key){

461

case 128: /* --prompt */

462

prompt = arg;

463

if(debug){

464

fprintf_plus(stderr, "Custom prompt \"%s\"\n", prompt);

465

}

466

break;

467

case 129: /* --debug */

468

debug = true;

469

break;

470

default:

471

return ARGP_ERR_UNKNOWN;

472

}

473

return errno;

474

}

475

476

struct argp argp = { .options = options, .parser = parse_opt,

477

.args_doc = "",

478

.doc = "Mandos plymouth -- Read and"

479

" output a password" };

480

ret = argp_parse(&argp, argc, argv, ARGP_IN_ORDER, NULL, NULL);

481

switch(ret){

482

case 0:

483

break;

484

case ENOMEM:

485

default:

486

errno = ret;

487

error_plus(0, errno, "argp_parse");

488

return EX_OSERR;

489

case EINVAL:

490

error_plus(0, errno, "argp_parse");

491

return EX_USAGE;

492

}

493

}

494

403

495

/* test -x /bin/plymouth */

404

496

ret = access(plymouth_path, X_OK);

405

497

if(ret == -1){

406

498

/* Plymouth is probably not installed. Don't print an error

407

499

message, just exit. */

500

if(debug){

501

fprintf_plus(stderr, "Plymouth (%s) not found\n",

502

plymouth_path);

503

}

408

504

exit(EX_UNAVAILABLE);

409

505

}

410

506

444

540

}

445

541

/* Plymouth is probably not running. Don't print an error

446

542

message, just exit. */

543

if(debug){

544

fprintf_plus(stderr, "Plymouth not running\n");

545

}

447

546

exit(EX_UNAVAILABLE);

448

547

}

449

548

450

prompt = makeprompt();

451

ret = asprintf(&prompt_arg, "--prompt=%s", prompt);

452

free(prompt);

549

if(prompt != NULL){

550

ret = asprintf(&prompt_arg, "--prompt=%s", prompt);

551

} else {

552

char *made_prompt = makeprompt();

553

ret = asprintf(&prompt_arg, "--prompt=%s", made_prompt);

554

free(made_prompt);

555

}

453

556

if(ret == -1){

454

557

error_plus(EX_OSERR, errno, "asprintf");

455

558

}

456

559

457

560

/* plymouth ask-for-password --prompt="$prompt" */

561

if(debug){

562

fprintf_plus(stderr, "Prompting for password via Plymouth\n");

563

}

458

564

bret = exec_and_wait(&plymouth_command_pid,

459

565

plymouth_path, (const char *[])

460

566

{ plymouth_path, "ask-for-password",

Older »