/mandos/trunk : revision 140

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugin-runner.xml

Committer: Teddy Hogeborn
Date: 2008-09-02 13:04:42 UTC
Revision ID: teddy@fukt.bsnet.se-20080902130442-ytnjsmllaph18e20

* plugin-runner.xml (PLUGINS/WRITING PLUGINS): New section.
  (BUGS): Commented out.  There are no bugs.
  (EXAMPLE): Added lots of examples.
  (SECURITY): Added text.
  (SEE ALSO): Added "crypttab(5)" and "execve(2)".

files added:
plugins.d/usplash

files removed:
.bzr-builddeb

.bzr-builddeb/default.conf

DBUS-API

INSTALL

NEWS

README

common.ent

dbus-mandos.conf

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.examples

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/po

debian/rules

debian/source

debian/source/format

debian/source/local-options

debian/upstream

debian/upstream/signing-key.asc

debian/watch

default-mandos

init.d-mandos

initramfs-unpack

intro.xml

mandos-ctl

mandos-ctl.xml

mandos-monitor

mandos-monitor.xml

mandos.lsm

mandos.service

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

plugin-runner.conf

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files renamed:
plugins.d/mandos-client.c => plugins.d/password-request.c

plugins.d/mandos-client.xml => plugins.d/password-request.xml

files modified:
.bzrignore

Makefile

TODO

clients.conf

initramfs-tools-hook

initramfs-tools-hook-conf

initramfs-tools-script

legalnotice.xml

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.c

plugin-runner.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

Show diffs side-by-side

added added

removed removed

plugin-runner.xml

<?xml version="1.0" encoding="UTF-8"?>

<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [

<!ENTITY VERSION "1.0">

<!ENTITY COMMANDNAME "plugin-runner">

<!ENTITY TIMESTAMP "2015-06-28">

<!ENTITY % common SYSTEM "common.ent">

%common;

<!ENTITY TIMESTAMP "2008-09-02">

<title>Mandos Manual</title>

<productname>Mandos</productname>

<productnumber>&version;</productnumber>

<productnumber>&VERSION;</productnumber>

<date>&TIMESTAMP;</date>

<firstname>Björn</firstname>

<surname>Påhlsson</surname>

<email>belorn@recompile.se</email>

<email>belorn@fukt.bsnet.se</email>

</address>

</author>

<firstname>Teddy</firstname>

<surname>Hogeborn</surname>

<email>teddy@recompile.se</email>

<email>teddy@fukt.bsnet.se</email>

</address>

</author>

</authorgroup>

<holder>Teddy Hogeborn</holder>

<holder>Björn Påhlsson</holder>

</copyright>

<xi:include href="legalnotice.xml"/>

</refentryinfo>

<refentrytitle>&COMMANDNAME;</refentrytitle>

<manvolnum>8mandos</manvolnum>

<refname><command>&COMMANDNAME;</command></refname>

Run Mandos plugins, pass data from first to succeed.

Run Mandos plugins. Pass data from first succesful one.

</refpurpose>

</refnamediv>

<command>&COMMANDNAME;</command>

<arg choice="plain"><option>--global-env=<replaceable

>ENV</replaceable><literal>=</literal><replaceable

>VAR</replaceable><literal>=</literal><replaceable

>value</replaceable></option></arg>

<arg choice="plain"><option>-G

<replaceable>ENV</replaceable><literal>=</literal><replaceable

<replaceable>VAR</replaceable><literal>=</literal><replaceable

>value</replaceable> </option></arg>

</group>

<sbr/>

143

140

<title>DESCRIPTION</title>

144

141

<para>

145

142

<command>&COMMANDNAME;</command> is a program which is meant to

146

be specified as a <quote>keyscript</quote> for the root disk in

147

<citerefentry><refentrytitle>crypttab</refentrytitle>

148

<manvolnum>5</manvolnum></citerefentry>. The aim of this

149

program is therefore to output a password, which then

150

<citerefentry><refentrytitle>cryptsetup</refentrytitle>

143

be specified as <quote>keyscript</quote> in <citerefentry>

144

<refentrytitle>crypttab</refentrytitle>

145

<manvolnum>5</manvolnum></citerefentry> for the root disk. The

146

aim of this program is therefore to output a password, which

147

then <citerefentry><refentrytitle>cryptsetup</refentrytitle>

151

148

<manvolnum>8</manvolnum></citerefentry> will use to unlock the

152

149

root disk.

153

150

</para>

173

170

174

171

175

172

<term><option>--global-env

176

<replaceable>ENV</replaceable><literal>=</literal><replaceable

173

<replaceable>VAR</replaceable><literal>=</literal><replaceable

177

174

>value</replaceable></option></term>

178

175

<term><option>-G

179

<replaceable>ENV</replaceable><literal>=</literal><replaceable

176

<replaceable>VAR</replaceable><literal>=</literal><replaceable

180

177

>value</replaceable></option></term>

181

178

182

179

<para>

250

247

</para>

251

248

</listitem>

252

249

</varlistentry>

253

250

254

251

255

252

<term><option>--disable

256

253

<replaceable>PLUGIN</replaceable></option></term>

261

258

Disable the plugin named

262

259

<replaceable>PLUGIN</replaceable>. The plugin will not be

263

260

started.

264

</para>

261

</para>

265

262

</listitem>

266

263

</varlistentry>

267

264

268

265

269

266

<term><option>--enable

270

267

<replaceable>PLUGIN</replaceable></option></term>

275

272

Re-enable the plugin named

276

273

<replaceable>PLUGIN</replaceable>. This is only useful to

277

274

undo a previous <option>--disable</option> option, maybe

278

from the configuration file.

275

from the config file.

279

276

</para>

280

277

</listitem>

281

278

</varlistentry>

282

279

283

280

284

281

<term><option>--groupid

285

282

292

289

</para>

293

290

</listitem>

294

291

</varlistentry>

295

292

296

293

297

294

<term><option>--userid

298

295

305

302

</para>

306

303

</listitem>

307

304

</varlistentry>

308

305

309

306

310

307

<term><option>--plugin-dir

311

308

<replaceable>DIRECTORY</replaceable></option></term>

368

365

</para>

369

366

</listitem>

370

367

</varlistentry>

371

368

372

369

373

370

<term><option>--version</option></term>

374

371

380

377

</varlistentry>

381

378

</variablelist>

382

379

</refsect1>

383

380

384

381

385

382

<title>OVERVIEW</title>

386

383

<xi:include href="overview.xml"/>

406

403

code will make this plugin-runner output the password from that

407

404

plugin, stop any other plugins, and exit.

408

405

</para>

409

406

410

407

411

408

<title>WRITING PLUGINS</title>

412

409

<para>

419

416

console.

420

417

</para>

421

418

<para>

422

If the password is a single-line, manually entered passprase,

423

a final trailing newline character should

424

<emphasis>not</emphasis> be printed.

425

</para>

426

<para>

427

419

The plugin will run in the initial RAM disk environment, so

428

420

care must be taken not to depend on any files or running

429

421

services not available there.

436

428

</para>

437

429

<para>

438

430

The plugin must not use resources, like for instance reading

439

from the standard input, without knowing that no other plugin

440

is also using it.

431

from the standard input, without knowing that no other plugins

432

are also using it.

441

433

</para>

442

434

<para>

443

435

It is useful, but not required, for the plugin to take the

475

467

only passes on its environment to all the plugins. The

476

468

environment passed to plugins can be modified using the

477

469

<option>--global-env</option> and <option>--env-for</option>

478

options.

470

optins.

479

471

</para>

480

472

</refsect1>

481

473

518

510

</para>

519

511

</refsect1>

520

512

521

522

523

<para>

524

The <option>--config-file</option> option is ignored when

525

specified from within a configuration file.

526

</para>

527

</refsect1>

513

514

515

516

517

528

518

529

519

530

520

<title>EXAMPLE</title>

572

562

</informalexample>

573

563

574

564

<para>

575

Read a different configuration file, run plugins from a

576

different directory, specify an alternate plugin helper

577

directory and add two options to the

578

<citerefentry><refentrytitle >mandos-client</refentrytitle>

565

Run plugins from a different directory and add a special

566

option to the <citerefentry><refentrytitle

567

>password-request</refentrytitle>

579

568

<manvolnum>8mandos</manvolnum></citerefentry> plugin:

580

569

</para>

581

570

<para>

582

571

583

572

584

<userinput>cd /etc/keys/mandos; &COMMANDNAME; --config-file=/etc/mandos/plugin-runner.conf --plugin-dir /usr/lib/x86_64-linux-gnu/mandos/plugins.d --plugin-helper-dir /usr/lib/x86_64-linux-gnu/mandos/plugin-helpers --options-for=mandos-client:--pubkey=pubkey.txt,--seckey=seckey.txt</userinput>

573

<userinput>&COMMANDNAME; --plugin-dir=plugins.d --options-for=password-request:--keydir=keydir</userinput>

585

574

586

575

</para>

587

576

</informalexample>

595

584

non-privileged. This user and group is then what all plugins

596

585

will be started as. Therefore, the only way to run a plugin as

597

586

a privileged user is to have the set-user-ID or set-group-ID bit

598

set on the plugin executable file (see <citerefentry>

587

set on the plugin executable files (see <citerefentry>

599

588

<refentrytitle>execve</refentrytitle><manvolnum>2</manvolnum>

600

589

</citerefentry>).

601

590

</para>

602

591

<para>

603

592

If this program is used as a keyscript in <citerefentry

604

593

><refentrytitle>crypttab</refentrytitle><manvolnum>5</manvolnum>

605

</citerefentry>, there is a slight risk that if this program

606

fails to work, there might be no way to boot the system except

607

for booting from another media and editing the initial RAM disk

594

</citerefentry>, there is a risk that if this program fails to

595

work, there might be no way to boot the system except for

596

booting from another media and editing the initial RAM disk

608

597

image to not run this program. This is, however, unlikely,

609

598

since the <citerefentry><refentrytitle

610

599

>password-prompt</refentrytitle><manvolnum>8mandos</manvolnum>

619

608

620

609

621

610

<para>

622

<citerefentry><refentrytitle>intro</refentrytitle>

623

<manvolnum>8mandos</manvolnum></citerefentry>,

624

611

<citerefentry><refentrytitle>cryptsetup</refentrytitle>

625

612

<manvolnum>8</manvolnum></citerefentry>,

626

613

<citerefentry><refentrytitle>crypttab</refentrytitle>

631

618

<manvolnum>8</manvolnum></citerefentry>,

632

619

<citerefentry><refentrytitle>password-prompt</refentrytitle>

633

620

<manvolnum>8mandos</manvolnum></citerefentry>,

634

<citerefentry><refentrytitle>mandos-client</refentrytitle>

621

<citerefentry><refentrytitle>password-request</refentrytitle>

635

622

<manvolnum>8mandos</manvolnum></citerefentry>

636

623

</para>

637

624

</refsect1>

Older »