/mandos/trunk : revision 171

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/splashy.c

Committer: Teddy Hogeborn
Date: 2008-09-06 16:31:49 UTC
Revision ID: teddy@fukt.bsnet.se-20080906163149-1ddq2klhdwwiw1ry

Renamed "password-request" to "mandos-client".

* Makefile: - '' -
* mandos-keygen.xml: - '' -
* mandos-options.xml: - '' -
* mandos.xml: - '' -
* plugin-runner.conf: - '' -
* plugin-runner.xml: - '' -
* plugins.d/password-prompt.xml: - '' -
* plugins.d/password-request.c: Renamed to "mandos-client.c".
* plugins.d/password-request.xml: Renamed to "mandos-client.xml".

files added:
etc-plugins.d-README

plugins.d/usplash

files removed:
.bzr-builddeb

.bzr-builddeb/default.conf

INSTALL

NEWS

common.ent

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/po

debian/rules

mandos-list

mandos.lsm

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files modified:
.bzrignore

Makefile

README

TODO

clients.conf

default-mandos

init.d-mandos

initramfs-tools-hook

initramfs-tools-script

legalnotice.xml

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.c

plugin-runner.conf

plugin-runner.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

Show diffs side-by-side

added added

removed removed

plugins.d/splashy.c

/* -*- coding: utf-8 -*- */

* Passprompt - Read a password from splashy and output it

* This program is free software: you can redistribute it and/or

* modify it under the terms of the GNU General Public License as

* published by the Free Software Foundation, either version 3 of the

* License, or (at your option) any later version.

* This program is distributed in the hope that it will be useful, but

* WITHOUT ANY WARRANTY; without even the implied warranty of

* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU

* General Public License for more details.

* You should have received a copy of the GNU General Public License

* along with this program. If not, see

* <http://www.gnu.org/licenses/>.

* Contact the authors at <https://www.fukt.bsnet.se/~belorn/> and

* <https://www.fukt.bsnet.se/~teddy/>.

#define _GNU_SOURCE /* asprintf() */

#include <signal.h> /* sig_atomic_t, struct sigaction,

sigemptyset(), sigaddset(), SIGINT,

SIGHUP, SIGTERM, sigaction,

SIG_IGN, kill(), SIGKILL */

#include <stddef.h> /* NULL */

#include <stdlib.h> /* getenv() */

#include <stdio.h> /* asprintf(), perror() */

#include <stdlib.h> /* EXIT_FAILURE, free(), strtoul(),

EXIT_SUCCESS */

#include <sys/types.h> /* pid_t, DIR, struct dirent,

ssize_t */

#include <dirent.h> /* opendir(), readdir(), closedir() */

#include <sys/stat.h> /* struct stat, lstat(), S_ISLNK */

#include <iso646.h> /* not, or, and */

#include <unistd.h> /* readlink(), fork(), execl(),

sleep(), dup2() STDERR_FILENO,

STDOUT_FILENO, _exit() */

#include <string.h> /* memcmp() */

#include <errno.h> /* errno */

#include <sys/wait.h> /* waitpid(), WIFEXITED(),

WEXITSTATUS() */

sig_atomic_t interrupted_by_signal = 0;

static void termination_handler(__attribute__((unused))int signum){

interrupted_by_signal = 1;

}

int main(__attribute__((unused))int argc,

__attribute__((unused))char **argv){

int ret = 0;

/* Create prompt string */

char *prompt = NULL;

{

const char *const cryptsource = getenv("cryptsource");

const char *const crypttarget = getenv("crypttarget");

const char *const prompt_start = "getpass "

"Enter passphrase to unlock the disk";

if(cryptsource == NULL){

if(crypttarget == NULL){

ret = asprintf(&prompt, "%s: ", prompt_start);

} else {

ret = asprintf(&prompt, "%s (%s): ", prompt_start,

crypttarget);

}

} else {

if(crypttarget == NULL){

ret = asprintf(&prompt, "%s %s: ", prompt_start, cryptsource);

} else {

ret = asprintf(&prompt, "%s %s (%s): ", prompt_start,

cryptsource, crypttarget);

}

if(ret == -1){

return EXIT_FAILURE;

}

/* Find splashy process */

pid_t splashy_pid = 0;

{

const char splashy_name[] = "/sbin/splashy";

DIR *proc_dir = opendir("/proc");

if(proc_dir == NULL){

free(prompt);

perror("opendir");

return EXIT_FAILURE;

}

for(struct dirent *proc_ent = readdir(proc_dir);

proc_ent != NULL;

proc_ent = readdir(proc_dir)){

100

pid_t pid = (pid_t) strtoul(proc_ent->d_name, NULL, 10);

101

if(pid == 0){

102

/* Not a process */

103

continue;

104

}

105

/* Find the executable name by doing readlink() on the

106

/proc/<pid>/exe link */

107

char exe_target[sizeof(splashy_name)];

108

ssize_t sret;

109

{

110

char *exe_link;

111

ret = asprintf(&exe_link, "/proc/%s/exe", proc_ent->d_name);

112

if(ret == -1){

113

perror("asprintf");

114

free(prompt);

115

closedir(proc_dir);

116

return EXIT_FAILURE;

117

}

118

119

/* Check that it refers to a symlink owned by root:root */

120

struct stat exe_stat;

121

ret = lstat(exe_link, &exe_stat);

122

if(ret == -1){

123

perror("lstat");

124

free(exe_link);

125

free(prompt);

126

closedir(proc_dir);

127

return EXIT_FAILURE;

128

}

129

if(not S_ISLNK(exe_stat.st_mode)

130

or exe_stat.st_uid != 0

131

or exe_stat.st_gid != 0){

132

free(exe_link);

133

continue;

134

}

135

136

sret = readlink(exe_link, exe_target, sizeof(exe_target));

137

free(exe_link);

138

}

139

if((sret == ((ssize_t)sizeof(exe_target)-1))

140

and (memcmp(splashy_name, exe_target,

141

sizeof(exe_target)-1) == 0)){

142

splashy_pid = pid;

143

break;

144

}

145

}

146

closedir(proc_dir);

147

}

148

if(splashy_pid == 0){

149

free(prompt);

150

return EXIT_FAILURE;

151

}

152

153

/* Set up the signal handler */

154

{

155

struct sigaction old_action,

156

new_action = { .sa_handler = termination_handler,

157

.sa_flags = 0 };

158

sigemptyset(&new_action.sa_mask);

159

sigaddset(&new_action.sa_mask, SIGINT);

160

sigaddset(&new_action.sa_mask, SIGHUP);

161

sigaddset(&new_action.sa_mask, SIGTERM);

162

ret = sigaction(SIGINT, NULL, &old_action);

163

if(ret == -1){

164

perror("sigaction");

165

free(prompt);

166

return EXIT_FAILURE;

167

}

168

if(old_action.sa_handler != SIG_IGN){

169

ret = sigaction(SIGINT, &new_action, NULL);

170

if(ret == -1){

171

perror("sigaction");

172

free(prompt);

173

return EXIT_FAILURE;

174

}

175

}

176

ret = sigaction(SIGHUP, NULL, &old_action);

177

if(ret == -1){

178

perror("sigaction");

179

free(prompt);

180

return EXIT_FAILURE;

181

}

182

if(old_action.sa_handler != SIG_IGN){

183

ret = sigaction(SIGHUP, &new_action, NULL);

184

if(ret == -1){

185

perror("sigaction");

186

free(prompt);

187

return EXIT_FAILURE;

188

}

189

}

190

ret = sigaction(SIGTERM, NULL, &old_action);

191

if(ret == -1){

192

perror("sigaction");

193

free(prompt);

194

return EXIT_FAILURE;

195

}

196

if(old_action.sa_handler != SIG_IGN){

197

ret = sigaction(SIGTERM, &new_action, NULL);

198

if(ret == -1){

199

perror("sigaction");

200

free(prompt);

201

return EXIT_FAILURE;

202

}

203

}

204

}

205

206

/* Fork off the splashy command to prompt for password */

207

pid_t splashy_command_pid = 0;

208

if(not interrupted_by_signal){

209

splashy_command_pid = fork();

210

if(splashy_command_pid == -1){

211

if(not interrupted_by_signal){

212

perror("fork");

213

}

214

return EXIT_FAILURE;

215

}

216

/* Child */

217

if(splashy_command_pid == 0){

218

const char splashy_command[] = "/sbin/splashy_update";

219

ret = execl(splashy_command, splashy_command, prompt,

220

(char *)NULL);

221

if(not interrupted_by_signal){

222

perror("execl");

223

}

224

free(prompt);

225

_exit(EXIT_FAILURE);

226

}

227

}

228

229

/* Parent */

230

free(prompt);

231

232

/* Wait for command to complete */

233

if(not interrupted_by_signal and splashy_command_pid != 0){

234

int status;

235

ret = waitpid(splashy_command_pid, &status, 0);

236

if(ret == -1){

237

if(errno != EINTR){

238

perror("waitpid");

239

}

240

if(errno == ECHILD){

241

splashy_command_pid = 0;

242

}

243

} else {

244

/* The child process has exited */

245

splashy_command_pid = 0;

246

if(not interrupted_by_signal and WIFEXITED(status)

247

and WEXITSTATUS(status)==0){

248

return EXIT_SUCCESS;

249

}

250

}

251

}

252

kill(splashy_pid, SIGTERM);

253

if(interrupted_by_signal and splashy_command_pid != 0){

254

kill(splashy_command_pid, SIGTERM);

255

}

256

sleep(2);

257

while(kill(splashy_pid, 0) == 0){

258

kill(splashy_pid, SIGKILL);

259

sleep(1);

260

}

261

pid_t new_splashy_pid = fork();

262

if(new_splashy_pid == 0){

263

/* Child; will become new splashy process */

264

265

/* Make the effective user ID (root) the only user ID instead of

266

the real user ID (mandos) */

267

ret = setuid(geteuid());

268

if(ret == -1){

269

perror("setuid");

270

}

271

272

setsid();

273

ret = chdir("/");

274

/* if(fork() != 0){ */

275

/* _exit(EXIT_SUCCESS); */

276

/* } */

277

ret = dup2(STDERR_FILENO, STDOUT_FILENO); /* replace our stdout */

278

if(ret == -1){

279

perror("dup2");

280

_exit(EXIT_FAILURE);

281

}

282

283

execl("/sbin/splashy", "/sbin/splashy", "boot", (char *)NULL);

284

if(not interrupted_by_signal){

285

perror("execl");

286

}

287

_exit(EXIT_FAILURE);

288

}

289

290

return EXIT_FAILURE;

291

}

Older »