/mandos/trunk : revision 263

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/usplash.c

Committer: Teddy Hogeborn
Date: 2009-01-12 22:02:33 UTC
Revision ID: teddy@fukt.bsnet.se-20090112220233-lawxo4uvyzb38u1f

* README (The Plugin System): Removed redundant text about options and
                              files for the plugins, this is now
                              documented in the manuals for the
                              plugins.

* plugins.d/mandos-client.c (main): Remove comment which was copied
                                    from another program by mistake.
                                    Use "sscanf" instead of "strtol"
                                    to parse numbers; this uses the
                                    correct type instead of casting.
                                    Don't report errors when removing
                                    temporary directory if directory
                                    is already gone.

files added:
NEWS

common.ent

mandos-list

mandos.lsm

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/splashy.xml

plugins.d/usplash.xml

files removed:
debian/mandos-client.config

debian/mandos-client.templates

debian/mandos.config

debian/mandos.templates

debian/po/POTFILES.in

debian/po/sv.po

files modified:
.bzrignore

INSTALL

Makefile

README

TODO

clients.conf

debian/changelog

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.docs

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos.README.Debian

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/rules

initramfs-tools-hook

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

plugin-runner.c

plugin-runner.conf

plugin-runner.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/splashy.c

plugins.d/usplash.c

Show diffs side-by-side

added added

removed removed

plugins.d/usplash.c

/* -*- coding: utf-8 -*- */

* Usplash - Read a password from usplash and output it

* This program is free software: you can redistribute it and/or

* modify it under the terms of the GNU General Public License as

* published by the Free Software Foundation, either version 3 of the

* License, or (at your option) any later version.

* This program is distributed in the hope that it will be useful, but

* WITHOUT ANY WARRANTY; without even the implied warranty of

* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU

* General Public License for more details.

* You should have received a copy of the GNU General Public License

* along with this program. If not, see

* <http://www.gnu.org/licenses/>.

* Contact the authors at <https://www.fukt.bsnet.se/~belorn/> and

* <https://www.fukt.bsnet.se/~teddy/>.

#define _GNU_SOURCE /* asprintf() */

#include <signal.h> /* sig_atomic_t, struct sigaction,

sigemptyset(), sigaddset(),

sigaction, SIGINT, SIG_IGN, SIGHUP,

SIGTERM, kill(), SIGKILL */

sigemptyset(), sigaddset(), SIGINT,

SIGHUP, SIGTERM, sigaction(),

SIG_IGN, kill(), SIGKILL */

#include <stdbool.h> /* bool, false, true */

#include <fcntl.h> /* open(), O_WRONLY, O_RDONLY */

#include <iso646.h> /* and, or, not*/

#include <errno.h> /* errno, EINTR */

#include <sys/types.h> /* size_t, ssize_t, pid_t, DIR, struct

dirent */

#include <stddef.h> /* NULL */

#include <string.h> /* strlen(), memcmp() */

#include <stdio.h> /* asprintf(), perror() */

#include <unistd.h> /* close(), write(), readlink(),

read(), STDOUT_FILENO, sleep(),

fork(), setuid(), geteuid(),

setsid(), chdir(), dup2(),

STDERR_FILENO, execv() */

#include <stdlib.h> /* free(), EXIT_FAILURE, strtoul(),

realloc(), EXIT_SUCCESS, malloc(),

_exit() */

#include <stdlib.h> /* getenv() */

#include <stdio.h> /* asprintf(), perror() */

#include <stdlib.h> /* EXIT_FAILURE, EXIT_SUCCESS,

strtoul(), free() */

#include <sys/types.h> /* pid_t, DIR, struct dirent,

ssize_t */

#include <dirent.h> /* opendir(), readdir(), closedir() */

#include <unistd.h> /* readlink(), fork(), execl(),

_exit */

#include <string.h> /* memcmp() */

#include <iso646.h> /* and */

#include <stdbool.h> /* bool, false, true */

#include <errno.h> /* errno */

#include <sys/wait.h> /* waitpid(), WIFEXITED(),

WEXITSTATUS() */

#include <fcntl.h> /* open(), O_RDONLY */

#include <sys/stat.h> /* struct stat, lstat(), S_ISLNK */

sig_atomic_t interrupted_by_signal = 0;

static bool usplash_write(const char *cmd, const char *arg){

* usplash_write("TIMEOUT", "15"); -> "TIMEOUT 15\0"

* usplash_write("PULSATE", NULL); -> "PULSATE\0"

* usplash_write("TIMEOUT", "15") will write "TIMEOUT 15\0"

* usplash_write("PULSATE", NULL) will write "PULSATE\0"

* SEE ALSO

* usplash_write(8)

}while(fifo_fd == -1);

const char *cmd_line;

size_t cmd_line_len;

char *cmd_line_alloc = NULL;

if(arg == NULL){

cmd_line = cmd;

ret = (int)strlen(cmd);

cmd_line_len = strlen(cmd);

}else{

do{

ret = asprintf(&cmd_line_alloc, "%s %s", cmd, arg);

}

}while(ret == -1);

cmd_line = cmd_line_alloc;

cmd_line_len = (size_t)ret + 1;

}

size_t cmd_line_len = (size_t)ret + 1;

size_t written = 0;

ssize_t sret = 0;

while(not interrupted_by_signal and written < cmd_line_len){

ret = write(fifo_fd, cmd_line + written,

cmd_line_len - written);

if(ret == -1){

sret = write(fifo_fd, cmd_line + written,

cmd_line_len - written);

if(sret == -1){

100

if(errno != EINTR or interrupted_by_signal){

101

int e = errno;

102

close(fifo_fd);

107

continue;

108

}

109

}

written += (size_t)ret;

110

written += (size_t)sret;

111

}

112

free(cmd_line_alloc);

113

do{

103

133

{

104

134

const char *const cryptsource = getenv("cryptsource");

105

135

const char *const crypttarget = getenv("crypttarget");

106

const char *const prompt_start = "Enter passphrase to unlock the disk";

136

const char prompt_start[] = "Enter passphrase to unlock the disk";

107

137

108

138

if(cryptsource == NULL){

109

139

if(crypttarget == NULL){

149

179

/proc/<pid>/exe link */

150

180

char exe_target[sizeof(usplash_name)];

151

181

{

182

/* create file name string */

152

183

char *exe_link;

153

184

ret = asprintf(&exe_link, "/proc/%s/exe", proc_ent->d_name);

154

185

if(ret == -1){

157

188

closedir(proc_dir);

158

189

return EXIT_FAILURE;

159

190

}

191

192

/* Check that it refers to a symlink owned by root:root */

193

struct stat exe_stat;

194

ret = lstat(exe_link, &exe_stat);

195

if(ret == -1){

196

if(errno == ENOENT){

197

free(exe_link);

198

continue;

199

}

200

perror("lstat");

201

free(exe_link);

202

free(prompt);

203

closedir(proc_dir);

204

return EXIT_FAILURE;

205

}

206

if(not S_ISLNK(exe_stat.st_mode)

207

or exe_stat.st_uid != 0

208

or exe_stat.st_gid != 0){

209

free(exe_link);

210

continue;

211

}

212

160

213

sret = readlink(exe_link, exe_target, sizeof(exe_target));

161

214

free(exe_link);

162

215

}

242

295

free(prompt);

243

296

return EXIT_FAILURE;

244

297

}

245

if (old_action.sa_handler != SIG_IGN){

298

if(old_action.sa_handler != SIG_IGN){

246

299

ret = sigaction(SIGINT, &new_action, NULL);

247

300

if(ret == -1){

248

301

perror("sigaction");

256

309

free(prompt);

257

310

return EXIT_FAILURE;

258

311

}

259

if (old_action.sa_handler != SIG_IGN){

312

if(old_action.sa_handler != SIG_IGN){

260

313

ret = sigaction(SIGHUP, &new_action, NULL);

261

314

if(ret == -1){

262

315

perror("sigaction");

270

323

free(prompt);

271

324

return EXIT_FAILURE;

272

325

}

273

if (old_action.sa_handler != SIG_IGN){

326

if(old_action.sa_handler != SIG_IGN){

274

327

ret = sigaction(SIGTERM, &new_action, NULL);

275

328

if(ret == -1){

276

329

perror("sigaction");

371

424

372

425

/* Print password to stdout */

373

426

size_t written = 0;

374

do{

427

while(written < buf_len){

375

428

do{

376

429

sret = write(STDOUT_FILENO, buf + written, buf_len - written);

377

430

if(sret == -1){

388

441

if(interrupted_by_signal or an_error_occured){

389

442

break;

390

443

}

391

392

444

written += (size_t)sret;

393

}while(written < buf_len);

445

}

446

free(buf);

394

447

if(not interrupted_by_signal and not an_error_occured){

448

free(cmdline);

395

449

return EXIT_SUCCESS;

396

450

}

397

451

break; /* Big */

398

}

452

} /* end of non-loop while() */

399

453

400

454

/* If we got here, an error or interrupt must have happened */

401

455

456

/* Create argc and argv for new usplash*/

402

457

int cmdline_argc = 0;

403

458

char **cmdline_argv = malloc(sizeof(char *));

404

/* Create argv and argc for new usplash*/

405

459

{

406

460

size_t position = 0;

407

461

while(position < cmdline_len){

408

462

char **tmp = realloc(cmdline_argv,

409

(sizeof(char *) * (size_t)(cmdline_argc + 2)));

463

(sizeof(char *)

464

* (size_t)(cmdline_argc + 2)));

410

465

if(tmp == NULL){

411

466

perror("realloc");

412

467

free(cmdline_argv);

420

475

cmdline_argv[cmdline_argc] = NULL;

421

476

}

422

477

/* Kill old usplash */

423

kill(usplash_pid, SIGTERM);

424

sleep(2);

478

kill(usplash_pid, SIGTERM);

479

sleep(2);

425

480

while(kill(usplash_pid, 0) == 0){

426

481

kill(usplash_pid, SIGKILL);

427

482

sleep(1);

433

488

/* Make the effective user ID (root) the only user ID instead of

434

489

the real user ID (mandos) */

435

490

ret = setuid(geteuid());

436

if (ret == -1){

491

if(ret == -1){

437

492

perror("setuid");

438

493

}

439

494

449

504

}

450

505

451

506

execv(usplash_name, cmdline_argv);

507

if(not interrupted_by_signal){

508

perror("execv");

509

}

510

free(cmdline);

511

free(cmdline_argv);

512

_exit(EXIT_FAILURE);

452

513

}

514

free(cmdline);

515

free(cmdline_argv);

453

516

sleep(2);

454

517

if(not usplash_write("PULSATE", NULL)

455

518

and (errno != EINTR)){

Older »