To get this branch, use:
bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk
« back to all changes in this revision
Viewing changes to plugins.d/usplash.c
- browse files at revision 211
- compare with another revision
- download diff
- download tarball
- view history from revision 211
- Committer: Teddy Hogeborn
- Date: 2008-09-26 05:04:15 UTC
- Revision ID: teddy@fukt.bsnet.se-20080926050415-20l2y561cgyaq97i
* .bzrignore: Added "plugins/splashy", "plugins/usplash", and a couple
of intermediate files in "debian/po".
of intermediate files in "debian/po".
- files added:
- debian/mandos-client.config
- files removed:
- NEWS
- files modified:
- .bzrignore
added
removed
plugins.d/usplash.c
1
/* -*- coding: utf-8 -*- */
2
/*
3
* Usplash - Read a password from usplash and output it
4
*
5
* Copyright © 2008,2009 Teddy Hogeborn
6
* Copyright © 2008,2009 Björn Påhlsson
7
*
8
* This program is free software: you can redistribute it and/or
9
* modify it under the terms of the GNU General Public License as
10
* published by the Free Software Foundation, either version 3 of the
11
* License, or (at your option) any later version.
12
*
13
* This program is distributed in the hope that it will be useful, but
14
* WITHOUT ANY WARRANTY; without even the implied warranty of
15
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16
* General Public License for more details.
17
*
18
* You should have received a copy of the GNU General Public License
19
* along with this program. If not, see
20
* <http://www.gnu.org/licenses/>.
21
*
22
* Contact the authors at <https://www.fukt.bsnet.se/~belorn/> and
23
* <https://www.fukt.bsnet.se/~teddy/>.
24
*/
25
26
1
#define _GNU_SOURCE /* asprintf() */
27
2
#include <signal.h> /* sig_atomic_t, struct sigaction,
28
sigemptyset(), sigaddset(), SIGINT,
29
SIGHUP, SIGTERM, sigaction(),
30
SIG_IGN, kill(), SIGKILL */
31
#include <stdbool.h> /* bool, false, true */
32
#include <fcntl.h> /* open(), O_WRONLY, O_RDONLY */
33
#include <iso646.h> /* and, or, not*/
34
#include <errno.h> /* errno, EINTR */
35
#include <sys/types.h> /* size_t, ssize_t, pid_t, DIR, struct
36
dirent */
3
sigemptyset(), sigaddset(),
4
sigaction, SIGINT, SIG_IGN, SIGHUP,
5
SIGTERM, kill(), SIGKILL */
37
6
#include <stddef.h> /* NULL */
38
#include <string.h> /* strlen(), memcmp() */
39
#include <stdio.h> /* asprintf(), perror(), sscanf() */
40
#include <unistd.h> /* close(), write(), readlink(),
41
read(), STDOUT_FILENO, sleep(),
42
fork(), setuid(), geteuid(),
43
setsid(), chdir(), dup2(),
44
STDERR_FILENO, execv() */
45
#include <stdlib.h> /* free(), EXIT_FAILURE, realloc(),
46
EXIT_SUCCESS, malloc(), _exit() */
47
7
#include <stdlib.h> /* getenv() */
8
#include <stdio.h> /* asprintf(), perror() */
9
#include <stdlib.h> /* EXIT_FAILURE, EXIT_SUCCESS,
10
strtoul(), free() */
11
#include <sys/types.h> /* pid_t, DIR, struct dirent,
12
ssize_t */
48
13
#include <dirent.h> /* opendir(), readdir(), closedir() */
49
#include <inttypes.h> /* intmax_t, SCNdMAX */
50
#include <sys/stat.h> /* struct stat, lstat(), S_ISLNK */
14
#include <unistd.h> /* readlink(), fork(), execl(),
15
_exit */
16
#include <string.h> /* memcmp() */
17
#include <iso646.h> /* and */
18
#include <stdbool.h> /* bool, false, true */
19
#include <errno.h> /* errno */
20
#include <sys/wait.h> /* waitpid(), WIFEXITED(),
21
WEXITSTATUS() */
22
#include <fcntl.h> /* open(), O_RDONLY */
51
23
52
24
sig_atomic_t interrupted_by_signal = 0;
53
25
57
29
58
30
static bool usplash_write(const char *cmd, const char *arg){
59
31
/*
60
* usplash_write("TIMEOUT", "15") will write "TIMEOUT 15\0"
61
* usplash_write("PULSATE", NULL) will write "PULSATE\0"
32
* usplash_write("TIMEOUT", "15"); -> "TIMEOUT 15\0"
33
* usplash_write("PULSATE", NULL); -> "PULSATE\0"
62
34
* SEE ALSO
63
35
* usplash_write(8)
64
36
*/
72
44
}while(fifo_fd == -1);
73
45
74
46
const char *cmd_line;
75
size_t cmd_line_len;
76
47
char *cmd_line_alloc = NULL;
77
48
if(arg == NULL){
78
49
cmd_line = cmd;
79
cmd_line_len = strlen(cmd);
50
ret = (int)strlen(cmd);
80
51
}else{
81
52
do{
82
53
ret = asprintf(&cmd_line_alloc, "%s %s", cmd, arg);
88
59
}
89
60
}while(ret == -1);
90
61
cmd_line = cmd_line_alloc;
91
cmd_line_len = (size_t)ret + 1;
92
62
}
93
63
64
size_t cmd_line_len = (size_t)ret + 1;
94
65
size_t written = 0;
95
ssize_t sret = 0;
96
66
while(not interrupted_by_signal and written < cmd_line_len){
97
sret = write(fifo_fd, cmd_line + written,
98
cmd_line_len - written);
99
if(sret == -1){
67
ret = write(fifo_fd, cmd_line + written,
68
cmd_line_len - written);
69
if(ret == -1){
100
70
if(errno != EINTR or interrupted_by_signal){
101
71
int e = errno;
102
72
close(fifo_fd);
107
77
continue;
108
78
}
109
79
}
110
written += (size_t)sret;
80
written += (size_t)ret;
111
81
}
112
82
free(cmd_line_alloc);
113
83
do{
133
103
{
134
104
const char *const cryptsource = getenv("cryptsource");
135
105
const char *const crypttarget = getenv("crypttarget");
136
const char prompt_start[] = "Enter passphrase to unlock the disk";
106
const char *const prompt_start = "Enter passphrase to unlock the disk";
137
107
138
108
if(cryptsource == NULL){
139
109
if(crypttarget == NULL){
170
140
for(struct dirent *proc_ent = readdir(proc_dir);
171
141
proc_ent != NULL;
172
142
proc_ent = readdir(proc_dir)){
173
pid_t pid;
174
{
175
intmax_t tmpmax;
176
int numchars;
177
ret = sscanf(proc_ent->d_name, "%" SCNdMAX "%n", &tmpmax,
178
&numchars);
179
if(ret < 1 or tmpmax != (pid_t)tmpmax
180
or proc_ent->d_name[numchars] != '\0'){
181
/* Not a process */
182
continue;
183
}
184
pid = (pid_t)tmpmax;
143
pid_t pid = (pid_t) strtoul(proc_ent->d_name, NULL, 10);
144
if(pid == 0){
145
/* Not a process */
146
continue;
185
147
}
186
148
/* Find the executable name by doing readlink() on the
187
149
/proc/<pid>/exe link */
188
150
char exe_target[sizeof(usplash_name)];
189
151
{
190
/* create file name string */
191
152
char *exe_link;
192
153
ret = asprintf(&exe_link, "/proc/%s/exe", proc_ent->d_name);
193
154
if(ret == -1){
196
157
closedir(proc_dir);
197
158
return EXIT_FAILURE;
198
159
}
199
200
/* Check that it refers to a symlink owned by root:root */
201
struct stat exe_stat;
202
ret = lstat(exe_link, &exe_stat);
203
if(ret == -1){
204
if(errno == ENOENT){
205
free(exe_link);
206
continue;
207
}
208
perror("lstat");
209
free(exe_link);
210
free(prompt);
211
closedir(proc_dir);
212
return EXIT_FAILURE;
213
}
214
if(not S_ISLNK(exe_stat.st_mode)
215
or exe_stat.st_uid != 0
216
or exe_stat.st_gid != 0){
217
free(exe_link);
218
continue;
219
}
220
221
160
sret = readlink(exe_link, exe_target, sizeof(exe_target));
222
161
free(exe_link);
223
162
}
303
242
free(prompt);
304
243
return EXIT_FAILURE;
305
244
}
306
if(old_action.sa_handler != SIG_IGN){
245
if (old_action.sa_handler != SIG_IGN){
307
246
ret = sigaction(SIGINT, &new_action, NULL);
308
247
if(ret == -1){
309
248
perror("sigaction");
317
256
free(prompt);
318
257
return EXIT_FAILURE;
319
258
}
320
if(old_action.sa_handler != SIG_IGN){
259
if (old_action.sa_handler != SIG_IGN){
321
260
ret = sigaction(SIGHUP, &new_action, NULL);
322
261
if(ret == -1){
323
262
perror("sigaction");
331
270
free(prompt);
332
271
return EXIT_FAILURE;
333
272
}
334
if(old_action.sa_handler != SIG_IGN){
273
if (old_action.sa_handler != SIG_IGN){
335
274
ret = sigaction(SIGTERM, &new_action, NULL);
336
275
if(ret == -1){
337
276
perror("sigaction");
432
371
433
372
/* Print password to stdout */
434
373
size_t written = 0;
435
while(written < buf_len){
374
do{
436
375
do{
437
376
sret = write(STDOUT_FILENO, buf + written, buf_len - written);
438
377
if(sret == -1){
449
388
if(interrupted_by_signal or an_error_occured){
450
389
break;
451
390
}
391
452
392
written += (size_t)sret;
453
}
454
free(buf);
393
}while(written < buf_len);
455
394
if(not interrupted_by_signal and not an_error_occured){
456
free(cmdline);
457
395
return EXIT_SUCCESS;
458
396
}
459
397
break; /* Big */
460
} /* end of non-loop while() */
398
}
461
399
462
400
/* If we got here, an error or interrupt must have happened */
463
401
464
/* Create argc and argv for new usplash*/
465
402
int cmdline_argc = 0;
466
403
char **cmdline_argv = malloc(sizeof(char *));
404
/* Create argv and argc for new usplash*/
467
405
{
468
406
size_t position = 0;
469
407
while(position < cmdline_len){
470
408
char **tmp = realloc(cmdline_argv,
471
(sizeof(char *)
472
* (size_t)(cmdline_argc + 2)));
409
(sizeof(char *) * (size_t)(cmdline_argc + 2)));
473
410
if(tmp == NULL){
474
411
perror("realloc");
475
412
free(cmdline_argv);
483
420
cmdline_argv[cmdline_argc] = NULL;
484
421
}
485
422
/* Kill old usplash */
486
kill(usplash_pid, SIGTERM);
487
sleep(2);
423
kill(usplash_pid, SIGTERM);
424
sleep(2);
488
425
while(kill(usplash_pid, 0) == 0){
489
426
kill(usplash_pid, SIGKILL);
490
427
sleep(1);
494
431
/* Child; will become new usplash process */
495
432
496
433
/* Make the effective user ID (root) the only user ID instead of
497
the real user ID (_mandos) */
434
the real user ID (mandos) */
498
435
ret = setuid(geteuid());
499
if(ret == -1){
436
if (ret == -1){
500
437
perror("setuid");
501
438
}
502
439
512
449
}
513
450
514
451
execv(usplash_name, cmdline_argv);
515
if(not interrupted_by_signal){
516
perror("execv");
517
}
518
free(cmdline);
519
free(cmdline_argv);
520
_exit(EXIT_FAILURE);
521
452
}
522
free(cmdline);
523
free(cmdline_argv);
524
453
sleep(2);
525
454
if(not usplash_write("PULSATE", NULL)
526
455
and (errno != EINTR)){
Loggerhead is a web-based interface for Breezy
Version: 2.0.2.dev0