/mandos/trunk : revision 24.1.81

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/usplash.xml

Committer: Björn Påhlsson
Date: 2008-09-03 18:47:50 UTC
mto: (24.1.154 mandos) (237.4.3 mandos-release)
mto: This revision was merged to the branch mainline in revision 149.
Revision ID: belorn@braxen-20080903184750-s0k0jrrq0lxiamwh

removed keyring pre-requirement for starting password-request.
Keys will now be imported in run-time to a run-time created keyring

Changed seckey and pubkey to be paths to private and public keys of the pgp encrypted password and gnutls authentication credentials.

files added:
plugins.d/usplash

files removed:
.bzr-builddeb

.bzr-builddeb/default.conf

DBUS-API

INSTALL

NEWS

README

common.ent

dbus-mandos.conf

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.examples

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/po

debian/rules

debian/source

debian/source/format

debian/source/local-options

debian/upstream

debian/upstream/signing-key.asc

debian/watch

default-mandos

init.d-mandos

initramfs-unpack

intro.xml

mandos-ctl

mandos-ctl.xml

mandos-monitor

mandos-monitor.xml

mandos.lsm

mandos.service

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

plugin-helpers

plugin-helpers/mandos-client-iprouteadddel.c

plugin-runner.conf

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files renamed:
plugins.d/mandos-client.c => plugins.d/password-request.c

plugins.d/mandos-client.xml => plugins.d/password-request.xml

files modified:
.bzrignore

Makefile

TODO

clients.conf

initramfs-tools-hook

initramfs-tools-hook-conf

initramfs-tools-script

legalnotice.xml

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.c

plugin-runner.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

Show diffs side-by-side

added added

removed removed

plugins.d/usplash.xml

<?xml version="1.0" encoding="UTF-8"?>

<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [

<!ENTITY COMMANDNAME "usplash">

<!ENTITY TIMESTAMP "2015-07-20">

<!ENTITY % common SYSTEM "../common.ent">

%common;

<title>Mandos Manual</title>

<productname>Mandos</productname>

<productnumber>&version;</productnumber>

<date>&TIMESTAMP;</date>

<firstname>Björn</firstname>

<surname>Påhlsson</surname>

<email>belorn@recompile.se</email>

</address>

</author>

<firstname>Teddy</firstname>

<surname>Hogeborn</surname>

<email>teddy@recompile.se</email>

</address>

</author>

</authorgroup>

<holder>Teddy Hogeborn</holder>

<holder>Björn Påhlsson</holder>

</copyright>

<xi:include href="../legalnotice.xml"/>

</refentryinfo>

<refentrytitle>&COMMANDNAME;</refentrytitle>

<manvolnum>8mandos</manvolnum>

</refmeta>

<refname><command>&COMMANDNAME;</command></refname>

<refpurpose>Mandos plugin to use usplash to get a

password.</refpurpose>

</refnamediv>

<command>&COMMANDNAME;</command>

</cmdsynopsis>

</refsynopsisdiv>

<title>DESCRIPTION</title>

<para>

This program prompts for a password using <citerefentry>

<refentrytitle>usplash</refentrytitle><manvolnum>8</manvolnum>

</citerefentry> and outputs any given password to standard

output. If no <citerefentry><refentrytitle

>usplash</refentrytitle><manvolnum>8</manvolnum></citerefentry>

process can be found, this program will immediately exit with an

exit code indicating failure.

</para>

<para>

This program is not very useful on its own. This program is

really meant to run as a plugin in the <application

>Mandos</application> client-side system, where it is used as a

fallback and alternative to retrieving passwords from a

<application >Mandos</application> server.

</para>

<para>

If this program is killed (presumably by

<citerefentry><refentrytitle>plugin-runner</refentrytitle>

<manvolnum>8mandos</manvolnum></citerefentry> because some other

plugin provided the password), it cannot tell <citerefentry>

<refentrytitle>usplash</refentrytitle><manvolnum>8</manvolnum>

</citerefentry> to abort requesting a password, because

<citerefentry><refentrytitle>usplash</refentrytitle>

<manvolnum>8</manvolnum></citerefentry> does not support this.

Therefore, this program will then <emphasis>kill</emphasis> the

running <citerefentry><refentrytitle>usplash</refentrytitle>

<manvolnum>8</manvolnum></citerefentry> process and start a

<emphasis>new</emphasis> one using the same command line

arguments as the old one was using.

</para>

</refsect1>

100

101

<title>OPTIONS</title>

102

<para>

103

This program takes no options.

104

</para>

105

</refsect1>

106

107

108

<title>EXIT STATUS</title>

109

<para>

110

If exit status is 0, the output from the program is the password

111

as it was read. Otherwise, if exit status is other than 0, the

112

program was interrupted or encountered an error, and any output

113

so far could be corrupt and/or truncated, and should therefore

114

be ignored.

115

</para>

116

</refsect1>

117

118

119

<title>ENVIRONMENT</title>

120

121

122

<term><envar>cryptsource</envar></term>

123

<term><envar>crypttarget</envar></term>

124

125

<para>

126

If set, these environment variables will be assumed to

127

contain the source device name and the target device

128

mapper name, respectively, and will be shown as part of

129

the prompt.

130

</para>

131

<para>

132

These variables will normally be inherited from

133

<citerefentry><refentrytitle>plugin-runner</refentrytitle>

134

<manvolnum>8mandos</manvolnum></citerefentry>, which will

135

normally have inherited them from

136

<filename>/scripts/local-top/cryptroot</filename> in the

137

initial <acronym>RAM</acronym> disk environment, which will

138

have set them from parsing kernel arguments and

139

<filename>/conf/conf.d/cryptroot</filename> (also in the

140

initial RAM disk environment), which in turn will have been

141

created when the initial RAM disk image was created by

142

<filename

143

>/usr/share/initramfs-tools/hooks/cryptroot</filename>, by

144

extracting the information of the root file system from

145

<filename >/etc/crypttab</filename>.

146

</para>

147

<para>

148

This behavior is meant to exactly mirror the behavior of

149

<command>askpass</command>, the default password prompter.

150

</para>

151

</listitem>

152

</varlistentry>

153

</variablelist>

154

</refsect1>

155

156

157

<title>FILES</title>

158

159

160

<term><filename>/dev/.initramfs/usplash_fifo</filename></term>

161

162

<para>

163

This is the <acronym>FIFO</acronym> to where this program

164

will write the commands for <citerefentry><refentrytitle

165

>usplash</refentrytitle><manvolnum>8</manvolnum>

166

</citerefentry>. See <citerefentry><refentrytitle

167

>fifo</refentrytitle><manvolnum>7</manvolnum>

168

</citerefentry>.

169

</para>

170

</listitem>

171

</varlistentry>

172

173

<term><filename>/dev/.initramfs/usplash_outfifo</filename></term>

174

175

<para>

176

This is the <acronym>FIFO</acronym> where this program

177

will read the password from <citerefentry><refentrytitle

178

>usplash</refentrytitle><manvolnum>8</manvolnum>

179

</citerefentry>. See <citerefentry><refentrytitle

180

>fifo</refentrytitle><manvolnum>7</manvolnum>

181

</citerefentry>.

182

</para>

183

</listitem>

184

</varlistentry>

185

186

187

188

<para>

189

To find the running <citerefentry><refentrytitle

190

>usplash</refentrytitle><manvolnum>8</manvolnum>

191

</citerefentry>, this directory will be searched for

192

numeric entries which will be assumed to be directories.

193

In all those directories, the <filename>exe</filename> and

194

<filename>cmdline</filename> entries will be used to

195

determine the name of the running binary, effective user

196

and group <abbrev>ID</abbrev>, and the command line

197

arguments. See <citerefentry><refentrytitle

198

>proc</refentrytitle><manvolnum>5</manvolnum>

199

</citerefentry>.

200

</para>

201

</listitem>

202

</varlistentry>

203

204

<term><filename>/sbin/usplash</filename></term>

205

206

<para>

207

This is the name of the binary which will be searched for

208

in the process list. See <citerefentry><refentrytitle

209

>usplash</refentrytitle><manvolnum>8</manvolnum>

210

</citerefentry>.

211

</para>

212

</listitem>

213

</varlistentry>

214

</variablelist>

215

</refsect1>

216

217

218

219

<para>

220

Killing <citerefentry><refentrytitle>usplash</refentrytitle>

221

<manvolnum>8</manvolnum></citerefentry> and starting a new one

222

is ugly, but necessary as long as it does not support aborting a

223

password request.

224

</para>

225

</refsect1>

226

227

228

<title>EXAMPLE</title>

229

<para>

230

Note that normally, this program will not be invoked directly,

231

but instead started by the Mandos <citerefentry><refentrytitle

232

>plugin-runner</refentrytitle><manvolnum>8mandos</manvolnum>

233

</citerefentry>.

234

</para>

235

236

<para>

237

This program takes no options.

238

</para>

239

<para>

240

<userinput>&COMMANDNAME;</userinput>

241

</para>

242

</informalexample>

243

</refsect1>

244

245

246

<title>SECURITY</title>

247

<para>

248

If this program is killed by a signal, it will kill the process

249

<abbrev>ID</abbrev> which at the start of this program was

250

determined to run <citerefentry><refentrytitle

251

>usplash</refentrytitle><manvolnum>8</manvolnum></citerefentry>

252

as root (see also <xref linkend="files"/>). There is a very

253

slight risk that, in the time between those events, that process

254

<abbrev>ID</abbrev> was freed and then taken up by another

255

process; the wrong process would then be killed. Now, this

256

program can only be killed by the user who started it; see

257

<citerefentry><refentrytitle>plugin-runner</refentrytitle>

258

<manvolnum>8mandos</manvolnum></citerefentry>. This program

259

should therefore be started by a completely separate

260

non-privileged user, and no other programs should be allowed to

261

run as that special user. This means that it is not recommended

262

to use the user "nobody" to start this program, as other

263

possibly less trusted programs could be running as "nobody", and

264

they would then be able to kill this program, triggering the

265

killing of the process <abbrev>ID</abbrev> which may or may not

266

be <citerefentry><refentrytitle>usplash</refentrytitle>

267

<manvolnum>8</manvolnum></citerefentry>.

268

</para>

269

<para>

270

The only other thing that could be considered worthy of note is

271

this: This program is meant to be run by <citerefentry>

272

<refentrytitle>plugin-runner</refentrytitle><manvolnum

273

>8mandos</manvolnum></citerefentry>, and will, when run

274

standalone, outside, in a normal environment, immediately output

275

on its standard output any presumably secret password it just

276

received. Therefore, when running this program standalone

277

(which should never normally be done), take care not to type in

278

any real secret password by force of habit, since it would then

279

immediately be shown as output.

280

</para>

281

</refsect1>

282

283

284

285

<para>

286

<citerefentry><refentrytitle>intro</refentrytitle>

287

<manvolnum>8mandos</manvolnum></citerefentry>,

288

<citerefentry><refentrytitle>crypttab</refentrytitle>

289

<manvolnum>5</manvolnum></citerefentry>,

290

291

<manvolnum>7</manvolnum></citerefentry>,

292

<citerefentry><refentrytitle>plugin-runner</refentrytitle>

293

<manvolnum>8mandos</manvolnum></citerefentry>,

294

295

<manvolnum>5</manvolnum></citerefentry>,

296

<citerefentry><refentrytitle>usplash</refentrytitle>

297

298

</para>

299

</refsect1>

300

</refentry>

301

302

303

304

305

Older »