To get this branch, use:
bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk
« back to all changes in this revision
Viewing changes to plugin-runner.c
- browse files at revision 264
- compare with another revision
- download diff
- download tarball
- view history from revision 264
- Committer: Teddy Hogeborn
- Date: 2009-01-13 01:36:46 UTC
- Revision ID: teddy@fukt.bsnet.se-20090113013646-1u21ie2oaotcekdz
* plugin-runner.c (main): Use "sscanf" instead of "strtol"; using the
correct type instead of casting.
* plugins.d/mandos-cliend.c (main): Detect an empty string when
parsing DH bits and port number.
* plugins.d/splashy.c (main): Use "sscanf" instead of "strtoul"; using
the correct type instead of casting.
* plugins.d/usplash.c (main): - '' -
correct type instead of casting.
* plugins.d/mandos-cliend.c (main): Detect an empty string when
parsing DH bits and port number.
* plugins.d/splashy.c (main): Use "sscanf" instead of "strtoul"; using
the correct type instead of casting.
* plugins.d/usplash.c (main): - '' -
- files added:
- .bzr-builddeb
- debian
- debian/po
- files removed:
- plugins.d/usplash
- files renamed:
- plugins.d/password-request.c => plugins.d/mandos-client.c
- plugins.d/password-request.xml => plugins.d/mandos-client.xml
- files modified:
- .bzrignore
added
removed
plugin-runner.c
2
2
/*
3
3
* Mandos plugin runner - Run Mandos plugins
4
4
*
5
* Copyright © 2007-2008 Teddy Hogeborn & Björn Påhlsson
5
* Copyright © 2008,2009 Teddy Hogeborn
6
* Copyright © 2008,2009 Björn Påhlsson
6
7
*
7
8
* This program is free software: you can redistribute it and/or
8
9
* modify it under the terms of the GNU General Public License as
27
28
#include <stdlib.h> /* malloc(), exit(), EXIT_FAILURE,
28
29
EXIT_SUCCESS, realloc() */
29
30
#include <stdbool.h> /* bool, true, false */
30
#include <stdio.h> /* perror, popen(), fileno(),
31
fprintf(), stderr, STDOUT_FILENO */
31
#include <stdio.h> /* perror, fileno(), fprintf(),
32
stderr, STDOUT_FILENO */
32
33
#include <sys/types.h> /* DIR, opendir(), stat(), struct
33
34
stat, waitpid(), WIFEXITED(),
34
35
WEXITSTATUS(), wait(), pid_t,
46
47
fcntl(), setuid(), setgid(),
47
48
F_GETFD, F_SETFD, FD_CLOEXEC,
48
49
access(), pipe(), fork(), close()
49
dup2, STDOUT_FILENO, _exit(),
50
dup2(), STDOUT_FILENO, _exit(),
50
51
execv(), write(), read(),
51
52
close() */
52
53
#include <fcntl.h> /* fcntl(), F_GETFD, F_SETFD,
69
70
#define PDIR "/lib/mandos/plugins.d"
70
71
#define AFILE "/conf/conf.d/mandos/plugin-runner.conf"
71
72
72
const char *argp_program_version = "plugin-runner 1.0";
73
const char *argp_program_version = "plugin-runner " VERSION;
73
74
const char *argp_program_bug_address = "<mandos@fukt.bsnet.se>";
74
75
75
struct plugin;
76
77
76
typedef struct plugin{
78
77
char *name; /* can be NULL or any plugin name */
79
78
char **argv;
96
95
97
96
static plugin *plugin_list = NULL;
98
97
99
/* Gets a existing plugin based on name,
98
/* Gets an existing plugin based on name,
100
99
or if none is found, creates a new one */
101
100
static plugin *getplugin(char *name){
102
101
/* Check for exiting plugin with that name */
118
117
return NULL;
119
118
}
120
119
}
121
120
122
121
*new_plugin = (plugin) { .name = copy_name,
123
122
.argc = 1,
124
123
.disabled = false,
187
186
size_t namelen = (size_t)(strchrnul(def, '=') - def);
188
187
/* Search for this environment variable */
189
188
for(char **e = p->environ; *e != NULL; e++){
190
if(strncmp(*e, def, namelen+1) == 0){
189
if(strncmp(*e, def, namelen + 1) == 0){
191
190
/* It already exists */
192
191
if(replace){
193
char *new = realloc(*e, strlen(def));
192
char *new = realloc(*e, strlen(def) + 1);
194
193
if(new == NULL){
195
194
return false;
196
195
}
208
207
* Descriptor Flags".
209
208
* *Note File Descriptor Flags:(libc)Descriptor Flags.
210
209
*/
211
static int set_cloexec_flag(int fd)
212
{
210
static int set_cloexec_flag(int fd){
213
211
int ret = fcntl(fd, F_GETFD, 0);
214
212
/* If reading the flags failed, return error indication now. */
215
213
if(ret < 0){
222
220
223
221
/* Mark processes as completed when they exit, and save their exit
224
222
status. */
225
void handle_sigchld(__attribute__((unused)) int sig){
223
static void handle_sigchld(__attribute__((unused)) int sig){
226
224
while(true){
227
225
plugin *proc = plugin_list;
228
226
int status;
238
236
/* No child processes */
239
237
break;
240
238
}
241
239
242
240
/* A child exited, find it in process_list */
243
241
while(proc != NULL and proc->pid != pid){
244
242
proc = proc->next;
253
251
}
254
252
255
253
/* Prints out a password to stdout */
256
bool print_out_password(const char *buffer, size_t length){
254
static bool print_out_password(const char *buffer, size_t length){
257
255
ssize_t ret;
258
if(length>0 and buffer[length-1] == '\n'){
259
length--;
260
}
261
256
for(size_t written = 0; written < length; written += (size_t)ret){
262
257
ret = TEMP_FAILURE_RETRY(write(STDOUT_FILENO, buffer + written,
263
258
length - written));
314
309
struct stat st;
315
310
fd_set rfds_all;
316
311
int ret, maxfd = 0;
312
ssize_t sret;
317
313
uid_t uid = 65534;
318
314
gid_t gid = 65534;
319
315
bool debug = false;
397
393
if(arg == NULL){
398
394
break;
399
395
}
400
{
401
char *envdef = strdup(arg);
402
if(envdef == NULL){
403
break;
404
}
405
if(not add_environment(getplugin(NULL), envdef, true)){
406
perror("add_environment");
407
}
396
if(not add_environment(getplugin(NULL), arg, true)){
397
perror("add_environment");
408
398
}
409
399
break;
410
400
case 'o': /* --options-for */
411
401
if (arg != NULL){
412
402
char *p_name = strsep(&arg, ":");
413
if(p_name[0] == '\0'){
403
if(p_name[0] == '\0' or arg == NULL){
414
404
break;
415
405
}
416
406
char *opt = strsep(&arg, ":");
417
if(opt[0] == '\0'){
407
if(opt[0] == '\0' or opt == NULL){
418
408
break;
419
409
}
420
if(opt != NULL){
421
char *p;
422
while((p = strsep(&opt, ",")) != NULL){
423
if(p[0] == '\0'){
424
continue;
425
}
426
if(not add_argument(getplugin(p_name), p)){
427
perror("add_argument");
428
return ARGP_ERR_UNKNOWN;
429
}
410
char *p;
411
while((p = strsep(&opt, ",")) != NULL){
412
if(p[0] == '\0'){
413
continue;
414
}
415
if(not add_argument(getplugin(p_name), p)){
416
perror("add_argument");
417
return ARGP_ERR_UNKNOWN;
430
418
}
431
419
}
432
420
}
440
428
if(envdef == NULL){
441
429
break;
442
430
}
443
char *p_name = strndup(arg, (size_t) (envdef-arg));
444
if(p_name == NULL){
445
break;
446
}
447
envdef++;
448
if(not add_environment(getplugin(p_name), envdef, true)){
431
*envdef = '\0';
432
if(not add_environment(getplugin(arg), envdef+1, true)){
449
433
perror("add_environment");
450
434
}
451
435
}
469
453
}
470
454
break;
471
455
case 128: /* --plugin-dir */
456
free(plugindir);
472
457
plugindir = strdup(arg);
473
458
if(plugindir == NULL){
474
459
perror("strdup");
478
463
/* This is already done by parse_opt_config_file() */
479
464
break;
480
465
case 130: /* --userid */
481
uid = (uid_t)strtol(arg, NULL, 10);
466
/* In the GNU C library, uid_t is always unsigned int */
467
ret = sscanf(arg, "%ud", &uid);
468
if(ret != 1){
469
fprintf(stderr, "Bad user ID number: \"%s\", using %ud\n",
470
arg, uid);
471
}
482
472
break;
483
473
case 131: /* --groupid */
484
gid = (gid_t)strtol(arg, NULL, 10);
474
/* In the GNU C library, gid_t is always unsigned int */
475
ret = sscanf(arg, "%ud", &gid);
476
if(ret != 1){
477
fprintf(stderr, "Bad group ID number: \"%s\", using %ud\n",
478
arg, gid);
479
}
485
480
break;
486
481
case 132: /* --debug */
487
482
debug = true;
488
483
break;
484
/*
485
* When adding more options before this line, remember to also add a
486
* "case" to the "parse_opt_config_file" function below.
487
*/
489
488
case ARGP_KEY_ARG:
490
fprintf(stderr, "Ignoring unknown argument \"%s\"\n", arg);
489
/* Cryptsetup always passes an argument, which is an empty
490
string if "none" was specified in /etc/crypttab. So if
491
argument was empty, we ignore it silently. */
492
if(arg[0] != '\0'){
493
fprintf(stderr, "Ignoring unknown argument \"%s\"\n", arg);
494
}
491
495
break;
492
496
case ARGP_KEY_END:
493
497
break;
512
516
case 128: /* --plugin-dir */
513
517
break;
514
518
case 129: /* --config-file */
519
free(argfile);
515
520
argfile = strdup(arg);
516
521
if(argfile == NULL){
517
522
perror("strdup");
556
561
char *org_line = NULL;
557
562
char *p, *arg, *new_arg, *line;
558
563
size_t size = 0;
559
ssize_t sret;
560
564
const char whitespace_delims[] = " \r\t\f\v\n";
561
565
const char comment_delim[] = "#";
562
566
711
715
712
716
const char const *bad_suffixes[] = { "~", "#", ".dpkg-new",
713
717
".dpkg-old",
718
".dpkg-bak",
714
719
".dpkg-divert", NULL };
715
720
for(const char **pre = bad_prefixes; *pre != NULL; pre++){
716
721
size_t pre_len = strlen(*pre);
747
752
}
748
753
749
754
char *filename;
750
ret = asprintf(&filename, "%s/%s", plugindir, dirst->d_name);
755
if(plugindir == NULL){
756
ret = asprintf(&filename, PDIR "/%s", dirst->d_name);
757
} else {
758
ret = asprintf(&filename, "%s/%s", plugindir, dirst->d_name);
759
}
751
760
if(ret < 0){
752
761
perror("asprintf");
753
762
continue;
853
862
perror("sigaction");
854
863
_exit(EXIT_FAILURE);
855
864
}
856
ret = sigprocmask (SIG_UNBLOCK, &sigchld_action.sa_mask, NULL);
865
ret = sigprocmask(SIG_UNBLOCK, &sigchld_action.sa_mask, NULL);
857
866
if(ret < 0){
858
867
perror("sigprocmask");
859
868
_exit(EXIT_FAILURE);
860
869
}
861
870
862
871
ret = dup2(pipefd[1], STDOUT_FILENO); /* replace our stdout */
863
872
if(ret == -1){
864
873
perror("dup2");
914
923
if (maxfd < new_plugin->fd){
915
924
maxfd = new_plugin->fd;
916
925
}
917
918
926
}
919
927
920
928
closedir(dir);
921
929
dir = NULL;
922
930
923
931
for(plugin *p = plugin_list; p != NULL; p = p->next){
924
932
if(p->pid != 0){
925
933
break;
930
938
free_plugin_list();
931
939
}
932
940
}
933
941
934
942
/* Main loop while running plugins exist */
935
943
while(plugin_list){
936
944
fd_set rfds = rfds_all;
942
950
}
943
951
/* OK, now either a process completed, or something can be read
944
952
from one of them */
945
for(plugin *proc = plugin_list; proc != NULL; proc = proc->next){
953
for(plugin *proc = plugin_list; proc != NULL;){
946
954
/* Is this process completely done? */
947
955
if(proc->eof and proc->completed){
948
956
/* Only accept the plugin output if it exited cleanly */
975
983
exitstatus = EXIT_FAILURE;
976
984
goto fallback;
977
985
}
986
987
plugin *next_plugin = proc->next;
978
988
free_plugin(proc);
989
proc = next_plugin;
990
979
991
/* We are done modifying process list, so unblock signal */
980
992
ret = sigprocmask (SIG_UNBLOCK, &sigchld_action.sa_mask,
981
993
NULL);
988
1000
if(plugin_list == NULL){
989
1001
break;
990
1002
}
1003
991
1004
continue;
992
1005
}
993
1006
994
1007
/* This process exited nicely, so print its buffer */
995
1008
996
1009
bool bret = print_out_password(proc->buffer,
997
1010
proc->buffer_length);
998
1011
if(not bret){
1005
1018
/* This process has not completed. Does it have any output? */
1006
1019
if(proc->eof or not FD_ISSET(proc->fd, &rfds)){
1007
1020
/* This process had nothing to say at this time */
1021
proc = proc->next;
1008
1022
continue;
1009
1023
}
1010
1024
/* Before reading, make the process' data buffer large enough */
1019
1033
proc->buffer_size += BUFFER_SIZE;
1020
1034
}
1021
1035
/* Read from the process */
1022
ret = read(proc->fd, proc->buffer + proc->buffer_length,
1023
BUFFER_SIZE);
1024
if(ret < 0){
1036
sret = read(proc->fd, proc->buffer + proc->buffer_length,
1037
BUFFER_SIZE);
1038
if(sret < 0){
1025
1039
/* Read error from this process; ignore the error */
1040
proc = proc->next;
1026
1041
continue;
1027
1042
}
1028
if(ret == 0){
1043
if(sret == 0){
1029
1044
/* got EOF */
1030
1045
proc->eof = true;
1031
1046
} else {
1032
proc->buffer_length += (size_t) ret;
1047
proc->buffer_length += (size_t) sret;
1033
1048
}
1034
1049
}
1035
1050
}
1043
1058
bool bret;
1044
1059
fprintf(stderr, "Going to fallback mode using getpass(3)\n");
1045
1060
char *passwordbuffer = getpass("Password: ");
1046
bret = print_out_password(passwordbuffer, strlen(passwordbuffer));
1061
size_t len = strlen(passwordbuffer);
1062
/* Strip trailing newline */
1063
if(len > 0 and passwordbuffer[len-1] == '\n'){
1064
passwordbuffer[len-1] = '\0'; /* not strictly necessary */
1065
len--;
1066
}
1067
bret = print_out_password(passwordbuffer, len);
1047
1068
if(not bret){
1048
1069
perror("print_out_password");
1049
1070
exitstatus = EXIT_FAILURE;
1056
1077
perror("sigaction");
1057
1078
exitstatus = EXIT_FAILURE;
1058
1079
}
1059
1080
1060
1081
if(custom_argv != NULL){
1061
1082
for(char **arg = custom_argv+1; *arg != NULL; arg++){
1062
1083
free(*arg);
1068
1089
closedir(dir);
1069
1090
}
1070
1091
1071
/* Free the process list and kill the processes */
1092
/* Kill the processes */
1072
1093
for(plugin *p = plugin_list; p != NULL; p = p->next){
1073
1094
if(p->pid != 0){
1074
1095
close(p->fd);
1087
1108
if(errno != ECHILD){
1088
1109
perror("wait");
1089
1110
}
1090
1111
1091
1112
free_plugin_list();
1092
1113
1093
1114
free(plugindir);
Loggerhead is a web-based interface for Breezy
Version: 2.0.2.dev0