1
/* -*- coding: utf-8 -*- */
3
* Usplash - Read a password from usplash and output it
5
* Copyright © 2008,2009 Teddy Hogeborn
6
* Copyright © 2008,2009 Björn Påhlsson
8
* This program is free software: you can redistribute it and/or
9
* modify it under the terms of the GNU General Public License as
10
* published by the Free Software Foundation, either version 3 of the
11
* License, or (at your option) any later version.
13
* This program is distributed in the hope that it will be useful, but
14
* WITHOUT ANY WARRANTY; without even the implied warranty of
15
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16
* General Public License for more details.
18
* You should have received a copy of the GNU General Public License
19
* along with this program. If not, see
20
* <http://www.gnu.org/licenses/>.
22
* Contact the authors at <https://www.fukt.bsnet.se/~belorn/> and
23
* <https://www.fukt.bsnet.se/~teddy/>.
26
#define _GNU_SOURCE /* asprintf() */
27
#include <signal.h> /* sig_atomic_t, struct sigaction,
28
sigemptyset(), sigaddset(), SIGINT,
29
SIGHUP, SIGTERM, sigaction(),
30
SIG_IGN, kill(), SIGKILL */
31
#include <stdbool.h> /* bool, false, true */
32
#include <fcntl.h> /* open(), O_WRONLY, O_RDONLY */
33
#include <iso646.h> /* and, or, not*/
34
#include <errno.h> /* errno, EINTR */
35
#include <sys/types.h> /* size_t, ssize_t, pid_t, DIR, struct
37
#include <stddef.h> /* NULL */
38
#include <string.h> /* strlen(), memcmp() */
39
#include <stdio.h> /* asprintf(), perror() */
40
#include <unistd.h> /* close(), write(), readlink(),
41
read(), STDOUT_FILENO, sleep(),
42
fork(), setuid(), geteuid(),
43
setsid(), chdir(), dup2(),
44
STDERR_FILENO, execv() */
45
#include <stdlib.h> /* free(), EXIT_FAILURE, realloc(),
46
EXIT_SUCCESS, malloc(), _exit() */
47
#include <stdlib.h> /* getenv() */
48
#include <dirent.h> /* opendir(), readdir(), closedir() */
49
#include <inttypes.h> /* intmax_t, strtoimax() */
50
#include <sys/stat.h> /* struct stat, lstat(), S_ISLNK */
52
sig_atomic_t interrupted_by_signal = 0;
54
static void termination_handler(__attribute__((unused))int signum){
55
interrupted_by_signal = 1;
58
static bool usplash_write(const char *cmd, const char *arg){
60
* usplash_write("TIMEOUT", "15") will write "TIMEOUT 15\0"
61
* usplash_write("PULSATE", NULL) will write "PULSATE\0"
68
fifo_fd = open("/dev/.initramfs/usplash_fifo", O_WRONLY);
69
if((fifo_fd == -1) and (errno != EINTR or interrupted_by_signal)){
72
}while(fifo_fd == -1);
76
char *cmd_line_alloc = NULL;
79
cmd_line_len = strlen(cmd);
82
ret = asprintf(&cmd_line_alloc, "%s %s", cmd, arg);
83
if(ret == -1 and (errno != EINTR or interrupted_by_signal)){
90
cmd_line = cmd_line_alloc;
91
cmd_line_len = (size_t)ret + 1;
96
while(not interrupted_by_signal and written < cmd_line_len){
97
sret = write(fifo_fd, cmd_line + written,
98
cmd_line_len - written);
100
if(errno != EINTR or interrupted_by_signal){
103
free(cmd_line_alloc);
110
written += (size_t)sret;
112
free(cmd_line_alloc);
114
ret = close(fifo_fd);
115
if(ret == -1 and (errno != EINTR or interrupted_by_signal)){
119
if(interrupted_by_signal){
125
int main(__attribute__((unused))int argc,
126
__attribute__((unused))char **argv){
129
bool an_error_occured = false;
131
/* Create prompt string */
134
const char *const cryptsource = getenv("cryptsource");
135
const char *const crypttarget = getenv("crypttarget");
136
const char prompt_start[] = "Enter passphrase to unlock the disk";
138
if(cryptsource == NULL){
139
if(crypttarget == NULL){
140
ret = asprintf(&prompt, "%s: ", prompt_start);
142
ret = asprintf(&prompt, "%s (%s): ", prompt_start,
146
if(crypttarget == NULL){
147
ret = asprintf(&prompt, "%s %s: ", prompt_start, cryptsource);
149
ret = asprintf(&prompt, "%s %s (%s): ", prompt_start,
150
cryptsource, crypttarget);
158
/* Find usplash process */
159
pid_t usplash_pid = 0;
160
char *cmdline = NULL;
161
size_t cmdline_len = 0;
162
const char usplash_name[] = "/sbin/usplash";
164
DIR *proc_dir = opendir("/proc");
165
if(proc_dir == NULL){
170
for(struct dirent *proc_ent = readdir(proc_dir);
172
proc_ent = readdir(proc_dir)){
178
tmpmax = strtoimax(proc_ent->d_name, &tmp, 10);
179
if(errno != 0 or tmp == proc_ent->d_name or *tmp != '\0'
180
or tmpmax != (pid_t)tmpmax){
186
/* Find the executable name by doing readlink() on the
187
/proc/<pid>/exe link */
188
char exe_target[sizeof(usplash_name)];
190
/* create file name string */
192
ret = asprintf(&exe_link, "/proc/%s/exe", proc_ent->d_name);
200
/* Check that it refers to a symlink owned by root:root */
201
struct stat exe_stat;
202
ret = lstat(exe_link, &exe_stat);
214
if(not S_ISLNK(exe_stat.st_mode)
215
or exe_stat.st_uid != 0
216
or exe_stat.st_gid != 0){
221
sret = readlink(exe_link, exe_target, sizeof(exe_target));
224
if((sret == ((ssize_t)sizeof(exe_target)-1))
225
and (memcmp(usplash_name, exe_target,
226
sizeof(exe_target)-1) == 0)){
228
/* Read and save the command line of usplash in "cmdline" */
230
/* Open /proc/<pid>/cmdline */
233
char *cmdline_filename;
234
ret = asprintf(&cmdline_filename, "/proc/%s/cmdline",
242
cl_fd = open(cmdline_filename, O_RDONLY);
245
free(cmdline_filename);
250
free(cmdline_filename);
252
size_t cmdline_allocated = 0;
254
const size_t blocksize = 1024;
256
if(cmdline_len + blocksize > cmdline_allocated){
257
tmp = realloc(cmdline, cmdline_allocated + blocksize);
266
cmdline_allocated += blocksize;
268
sret = read(cl_fd, cmdline + cmdline_len,
269
cmdline_allocated - cmdline_len);
277
cmdline_len += (size_t)sret;
286
if(usplash_pid == 0){
291
/* Set up the signal handler */
293
struct sigaction old_action,
294
new_action = { .sa_handler = termination_handler,
296
sigemptyset(&new_action.sa_mask);
297
sigaddset(&new_action.sa_mask, SIGINT);
298
sigaddset(&new_action.sa_mask, SIGHUP);
299
sigaddset(&new_action.sa_mask, SIGTERM);
300
ret = sigaction(SIGINT, NULL, &old_action);
306
if(old_action.sa_handler != SIG_IGN){
307
ret = sigaction(SIGINT, &new_action, NULL);
314
ret = sigaction(SIGHUP, NULL, &old_action);
320
if(old_action.sa_handler != SIG_IGN){
321
ret = sigaction(SIGHUP, &new_action, NULL);
328
ret = sigaction(SIGTERM, NULL, &old_action);
334
if(old_action.sa_handler != SIG_IGN){
335
ret = sigaction(SIGTERM, &new_action, NULL);
344
/* Write command to FIFO */
345
if(not interrupted_by_signal){
346
if(not usplash_write("TIMEOUT", "0")
347
and (errno != EINTR)){
348
perror("usplash_write");
349
an_error_occured = true;
352
if(not interrupted_by_signal and not an_error_occured){
353
if(not usplash_write("INPUTQUIET", prompt)
354
and (errno != EINTR)){
355
perror("usplash_write");
356
an_error_occured = true;
361
/* This is not really a loop; while() is used to be able to "break"
362
out of it; those breaks are marked "Big" */
363
while(not interrupted_by_signal and not an_error_occured){
370
fifo_fd = open("/dev/.initramfs/usplash_outfifo", O_RDONLY);
374
an_error_occured = true;
377
if(interrupted_by_signal){
381
}while(fifo_fd == -1);
382
if(interrupted_by_signal or an_error_occured){
387
size_t buf_allocated = 0;
388
const size_t blocksize = 1024;
390
if(buf_len + blocksize > buf_allocated){
391
char *tmp = realloc(buf, buf_allocated + blocksize);
394
an_error_occured = true;
398
buf_allocated += blocksize;
401
sret = read(fifo_fd, buf + buf_len, buf_allocated - buf_len);
405
an_error_occured = true;
408
if(interrupted_by_signal){
413
if(interrupted_by_signal or an_error_occured){
417
buf_len += (size_t)sret;
420
if(interrupted_by_signal or an_error_occured){
424
if(not usplash_write("TIMEOUT", "15")
425
and (errno != EINTR)){
426
perror("usplash_write");
427
an_error_occured = true;
429
if(interrupted_by_signal or an_error_occured){
433
/* Print password to stdout */
435
while(written < buf_len){
437
sret = write(STDOUT_FILENO, buf + written, buf_len - written);
441
an_error_occured = true;
444
if(interrupted_by_signal){
449
if(interrupted_by_signal or an_error_occured){
452
written += (size_t)sret;
455
if(not interrupted_by_signal and not an_error_occured){
460
} /* end of non-loop while() */
462
/* If we got here, an error or interrupt must have happened */
464
/* Create argc and argv for new usplash*/
465
int cmdline_argc = 0;
466
char **cmdline_argv = malloc(sizeof(char *));
469
while(position < cmdline_len){
470
char **tmp = realloc(cmdline_argv,
472
* (size_t)(cmdline_argc + 2)));
479
cmdline_argv[cmdline_argc] = cmdline + position;
481
position += strlen(cmdline + position) + 1;
483
cmdline_argv[cmdline_argc] = NULL;
485
/* Kill old usplash */
486
kill(usplash_pid, SIGTERM);
488
while(kill(usplash_pid, 0) == 0){
489
kill(usplash_pid, SIGKILL);
492
pid_t new_usplash_pid = fork();
493
if(new_usplash_pid == 0){
494
/* Child; will become new usplash process */
496
/* Make the effective user ID (root) the only user ID instead of
497
the real user ID (_mandos) */
498
ret = setuid(geteuid());
505
/* if(fork() != 0){ */
506
/* _exit(EXIT_SUCCESS); */
508
ret = dup2(STDERR_FILENO, STDOUT_FILENO); /* replace our stdout */
514
execv(usplash_name, cmdline_argv);
515
if(not interrupted_by_signal){
525
if(not usplash_write("PULSATE", NULL)
526
and (errno != EINTR)){
527
perror("usplash_write");