/mandos/trunk : revision 205

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/splashy.c

Committer: Teddy Hogeborn
Date: 2008-09-23 18:46:17 UTC
Revision ID: teddy@fukt.bsnet.se-20080923184617-r2rd8r7o2jvgz5ey

* Makefile (PLUGINS, uninstall-client,
install-client-nokey): Added "plugins.d/splashy".

* plugin-runner.c: Change in comments.

* plugins.d/splashy: Removed; replaced by "splashy.c".
* plugins.d/splashy.c: New.

files added:
debian/mandos-client.config

debian/mandos-client.templates

debian/mandos.config

debian/mandos.templates

debian/po/POTFILES.in

debian/po/sv.po

plugins.d/usplash

files removed:
NEWS

common.ent

debian/watch

mandos-ctl

mandos.lsm

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files modified:
.bzrignore

INSTALL

Makefile

README

TODO

clients.conf

debian/changelog

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/rules

init.d-mandos

initramfs-tools-hook

initramfs-tools-hook-conf

initramfs-tools-script

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

plugin-runner.c

plugin-runner.conf

plugin-runner.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/splashy.c

Show diffs side-by-side

added added

removed removed

plugins.d/splashy.c

/* -*- coding: utf-8 -*- */

* Splashy - Read a password from splashy and output it

* This program is free software: you can redistribute it and/or

* modify it under the terms of the GNU General Public License as

* published by the Free Software Foundation, either version 3 of the

* License, or (at your option) any later version.

* This program is distributed in the hope that it will be useful, but

* WITHOUT ANY WARRANTY; without even the implied warranty of

* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU

* General Public License for more details.

* You should have received a copy of the GNU General Public License

* along with this program. If not, see

* <http://www.gnu.org/licenses/>.

* Contact the authors at <mandos@fukt.bsnet.se>.

#define _GNU_SOURCE /* TEMP_FAILURE_RETRY(), asprintf() */

#define _GNU_SOURCE /* asprintf() */

#include <signal.h> /* sig_atomic_t, struct sigaction,

sigemptyset(), sigaddset(), SIGINT,

SIGHUP, SIGTERM, sigaction,

SIG_IGN, kill(), SIGKILL */

sigemptyset(), sigaddset(),

sigaction, SIGINT, SIG_IGN, SIGHUP,

SIGTERM, kill(), SIGKILL */

#include <stddef.h> /* NULL */

#include <stdlib.h> /* getenv() */

#include <stdio.h> /* asprintf(), perror() */

#include <stdlib.h> /* EXIT_FAILURE, free(),

EXIT_SUCCESS */

#include <stdlib.h> /* EXIT_FAILURE, EXIT_SUCCESS,

strtoul(), free() */

#include <sys/types.h> /* pid_t, DIR, struct dirent,

ssize_t */

#include <dirent.h> /* opendir(), readdir(), closedir() */

#include <inttypes.h> /* intmax_t, strtoimax() */

#include <sys/stat.h> /* struct stat, lstat(), S_ISLNK */

#include <iso646.h> /* not, or, and */

#include <unistd.h> /* readlink(), fork(), execl(),

sleep(), dup2() STDERR_FILENO,

STDOUT_FILENO, _exit(),

pause() */

_exit */

#include <string.h> /* memcmp() */

#include <iso646.h> /* and */

#include <errno.h> /* errno */

#include <sys/wait.h> /* waitpid(), WIFEXITED(),

WEXITSTATUS() */

sig_atomic_t interrupted_by_signal = 0;

int signal_received;

static void termination_handler(int signum){

if(interrupted_by_signal){

return;

}

static void termination_handler(__attribute__((unused))int signum){

interrupted_by_signal = 1;

signal_received = signum;

}

int main(__attribute__((unused))int argc,

__attribute__((unused))char **argv){

int main(__attribute__((unused))int argc, char **argv){

int ret = 0;

/* Create prompt string */

char *prompt = NULL;

DIR *proc_dir = NULL;

pid_t splashy_pid = 0;

pid_t splashy_command_pid = 0;

/* Create prompt string */

{

const char *const cryptsource = getenv("cryptsource");

const char *const crypttarget = getenv("crypttarget");

}

if(ret == -1){

prompt = NULL;

goto failure;

return EXIT_FAILURE;

}

/* Find splashy process */

pid_t splashy_pid = 0;

{

const char splashy_name[] = "/sbin/splashy";

100

proc_dir = opendir("/proc");

DIR *proc_dir = opendir("/proc");

101

if(proc_dir == NULL){

free(prompt);

102

perror("opendir");

103

goto failure;

return EXIT_FAILURE;

104

}

105

for(struct dirent *proc_ent = readdir(proc_dir);

106

proc_ent != NULL;

107

proc_ent = readdir(proc_dir)){

108

pid_t pid;

109

{

110

intmax_t tmpmax;

111

char *tmp;

112

errno = 0;

113

tmpmax = strtoimax(proc_ent->d_name, &tmp, 10);

114

if(errno != 0 or tmp == proc_ent->d_name or *tmp != '\0'

115

or tmpmax != (pid_t)tmpmax){

116

/* Not a process */

117

continue;

118

}

119

pid = (pid_t)tmpmax;

pid_t pid = (pid_t) strtoul(proc_ent->d_name, NULL, 10);

if(pid == 0){

/* Not a process */

continue;

120

}

121

/* Find the executable name by doing readlink() on the

122

/proc/<pid>/exe link */

char *exe_link;

ret = asprintf(&exe_link, "/proc/%s/exe", proc_ent->d_name);

if(ret == -1){

perror("asprintf");

free(prompt);

closedir(proc_dir);

return EXIT_FAILURE;

}

123

char exe_target[sizeof(splashy_name)];

124

ssize_t sret;

125

{

126

char *exe_link;

127

ret = asprintf(&exe_link, "/proc/%s/exe", proc_ent->d_name);

128

if(ret == -1){

129

perror("asprintf");

130

goto failure;

131

}

132

133

/* Check that it refers to a symlink owned by root:root */

134

struct stat exe_stat;

135

ret = lstat(exe_link, &exe_stat);

136

if(ret == -1){

137

if(errno == ENOENT){

138

free(exe_link);

139

continue;

140

}

141

perror("lstat");

142

free(exe_link);

143

goto failure;

144

}

145

if(not S_ISLNK(exe_stat.st_mode)

146

or exe_stat.st_uid != 0

147

or exe_stat.st_gid != 0){

148

free(exe_link);

149

continue;

150

}

151

152

sret = readlink(exe_link, exe_target, sizeof(exe_target));

153

free(exe_link);

154

}

ssize_t sret = readlink(exe_link, exe_target,

sizeof(exe_target));

155

if((sret == ((ssize_t)sizeof(exe_target)-1))

156

and (memcmp(splashy_name, exe_target,

157

sizeof(exe_target)-1) == 0)){

160

}

161

}

162

closedir(proc_dir);

163

proc_dir = NULL;

164

}

165

if(splashy_pid == 0){

166

goto failure;

100

free(prompt);

101

return EXIT_FAILURE;

167

102

}

168

103

169

104

/* Set up the signal handler */

172

107

new_action = { .sa_handler = termination_handler,

173

108

.sa_flags = 0 };

174

109

sigemptyset(&new_action.sa_mask);

175

ret = sigaddset(&new_action.sa_mask, SIGINT);

176

if(ret == -1){

177

perror("sigaddset");

178

goto failure;

179

}

180

ret = sigaddset(&new_action.sa_mask, SIGHUP);

181

if(ret == -1){

182

perror("sigaddset");

183

goto failure;

184

}

185

ret = sigaddset(&new_action.sa_mask, SIGTERM);

186

if(ret == -1){

187

perror("sigaddset");

188

goto failure;

189

}

110

sigaddset(&new_action.sa_mask, SIGINT);

111

sigaddset(&new_action.sa_mask, SIGHUP);

112

sigaddset(&new_action.sa_mask, SIGTERM);

190

113

ret = sigaction(SIGINT, NULL, &old_action);

191

114

if(ret == -1){

192

115

perror("sigaction");

193

goto failure;

116

free(prompt);

117

return EXIT_FAILURE;

194

118

}

195

if(old_action.sa_handler != SIG_IGN){

119

if (old_action.sa_handler != SIG_IGN){

196

120

ret = sigaction(SIGINT, &new_action, NULL);

197

121

if(ret == -1){

198

122

perror("sigaction");

199

goto failure;

123

free(prompt);

124

return EXIT_FAILURE;

200

125

}

201

126

}

202

127

ret = sigaction(SIGHUP, NULL, &old_action);

203

128

if(ret == -1){

204

129

perror("sigaction");

205

goto failure;

130

free(prompt);

131

return EXIT_FAILURE;

206

132

}

207

if(old_action.sa_handler != SIG_IGN){

133

if (old_action.sa_handler != SIG_IGN){

208

134

ret = sigaction(SIGHUP, &new_action, NULL);

209

135

if(ret == -1){

210

136

perror("sigaction");

211

goto failure;

137

free(prompt);

138

return EXIT_FAILURE;

212

139

}

213

140

}

214

141

ret = sigaction(SIGTERM, NULL, &old_action);

215

142

if(ret == -1){

216

143

perror("sigaction");

217

goto failure;

144

free(prompt);

145

return EXIT_FAILURE;

218

146

}

219

if(old_action.sa_handler != SIG_IGN){

147

if (old_action.sa_handler != SIG_IGN){

220

148

ret = sigaction(SIGTERM, &new_action, NULL);

221

149

if(ret == -1){

222

150

perror("sigaction");

223

goto failure;

151

free(prompt);

152

return EXIT_FAILURE;

224

153

}

225

154

}

226

155

}

227

156

228

if(interrupted_by_signal){

229

goto failure;

230

}

231

232

157

/* Fork off the splashy command to prompt for password */

233

splashy_command_pid = fork();

234

if(splashy_command_pid != 0 and interrupted_by_signal){

235

goto failure;

236

}

237

if(splashy_command_pid == -1){

238

perror("fork");

239

goto failure;

240

}

241

/* Child */

242

if(splashy_command_pid == 0){

243

if(not interrupted_by_signal){

158

pid_t splashy_command_pid = 0;

159

if(not interrupted_by_signal){

160

splashy_command_pid = fork();

161

if(splashy_command_pid == -1){

162

if(not interrupted_by_signal){

163

perror("fork");

164

}

165

return EXIT_FAILURE;

166

}

167

/* Child */

168

if(splashy_command_pid == 0){

244

169

const char splashy_command[] = "/sbin/splashy_update";

245

execl(splashy_command, splashy_command, prompt, (char *)NULL);

246

perror("execl");

170

ret = execl(splashy_command, splashy_command, prompt,

171

(char *)NULL);

172

if(not interrupted_by_signal and errno != ENOENT){

173

/* Don't report "File not found", since splashy might not be

174

installed. */

175

perror("execl");

176

}

177

free(prompt);

178

return EXIT_FAILURE;

247

179

}

248

free(prompt);

249

_exit(EXIT_FAILURE);

250

180

}

251

181

252

182

/* Parent */

253

183

free(prompt);

254

prompt = NULL;

255

256

if(interrupted_by_signal){

257

goto failure;

258

}

259

184

260

185

/* Wait for command to complete */

261

{

262

int status;

263

do {

264

ret = waitpid(splashy_command_pid, &status, 0);

265

} while(ret == -1 and errno == EINTR

266

and not interrupted_by_signal);

267

if(interrupted_by_signal){

268

goto failure;

269

}

270

if(ret == -1){

271

perror("waitpid");

272

if(errno == ECHILD){

273

splashy_command_pid = 0;

274

}

275

} else {

276

/* The child process has exited */

277

splashy_command_pid = 0;

278

if(WIFEXITED(status) and WEXITSTATUS(status) == 0){

279

return EXIT_SUCCESS;

280

}

281

}

282

}

283

284

failure:

285

286

free(prompt);

287

288

if(proc_dir != NULL){

289

TEMP_FAILURE_RETRY(closedir(proc_dir));

290

}

291

292

if(splashy_command_pid != 0){

293

TEMP_FAILURE_RETRY(kill(splashy_command_pid, SIGTERM));

294

295

TEMP_FAILURE_RETRY(kill(splashy_pid, SIGTERM));

296

sleep(2);

297

while(TEMP_FAILURE_RETRY(kill(splashy_pid, 0)) == 0){

298

TEMP_FAILURE_RETRY(kill(splashy_pid, SIGKILL));

186

int status;

187

while(not interrupted_by_signal){

188

waitpid(splashy_command_pid, &status, 0);

189

if(not interrupted_by_signal

190

and WIFEXITED(status) and WEXITSTATUS(status)==0){

191

return EXIT_SUCCESS;

192

}

193

}

194

kill(splashy_pid, SIGTERM);

195

if(interrupted_by_signal){

196

kill(splashy_command_pid, SIGTERM);

197

}

198

199

pid_t new_splashy_pid = fork();

200

if(new_splashy_pid == 0){

201

while(kill(splashy_pid, 0)){

202

sleep(2);

203

kill(splashy_pid, SIGKILL);

299

204

sleep(1);

300

205

}

301

pid_t new_splashy_pid = (pid_t)TEMP_FAILURE_RETRY(fork());

302

if(new_splashy_pid == 0){

303

/* Child; will become new splashy process */

304

305

/* Make the effective user ID (root) the only user ID instead of

306

the real user ID (_mandos) */

307

ret = setuid(geteuid());

308

if(ret == -1){

309

perror("setuid");

310

}

311

312

setsid();

313

ret = chdir("/");

314

if(ret == -1){

315

perror("chdir");

316

}

317

/* if(fork() != 0){ */

318

/* _exit(EXIT_SUCCESS); */

319

/* } */

320

ret = dup2(STDERR_FILENO, STDOUT_FILENO); /* replace stdout */

321

if(ret == -1){

322

perror("dup2");

323

_exit(EXIT_FAILURE);

324

}

325

326

execl("/sbin/splashy", "/sbin/splashy", "boot", (char *)NULL);

327

perror("execl");

206

ret = dup2(STDERR_FILENO, STDOUT_FILENO); /* replace our stdout */

207

if(ret == -1){

208

perror("dup2");

328

209

_exit(EXIT_FAILURE);

329

210

}

330

}

331

332

if(interrupted_by_signal){

333

struct sigaction signal_action;

334

sigemptyset(&signal_action.sa_mask);

335

signal_action.sa_handler = SIG_DFL;

336

ret = (int)TEMP_FAILURE_RETRY(sigaction(signal_received,

337

&signal_action, NULL));

338

if(ret == -1){

339

perror("sigaction");

340

}

341

do {

342

ret = raise(signal_received);

343

} while(ret != 0 and errno == EINTR);

344

if(ret != 0){

345

perror("raise");

346

abort();

347

}

348

TEMP_FAILURE_RETRY(pause());

211

execl("/sbin/splashy", "/sbin/splashy", "boot", (char *)NULL);

349

212

}

350

213

351

214

return EXIT_FAILURE;

Older »