3
3
* Mandos plugin runner - Run Mandos plugins
5
* Copyright © 2007-2008 Teddy Hogeborn & Björn Påhlsson
5
* Copyright © 2008,2009 Teddy Hogeborn
6
* Copyright © 2008,2009 Björn Påhlsson
7
8
* This program is free software: you can redistribute it and/or
8
9
* modify it under the terms of the GNU General Public License as
27
28
#include <stdlib.h> /* malloc(), exit(), EXIT_FAILURE,
28
29
EXIT_SUCCESS, realloc() */
29
30
#include <stdbool.h> /* bool, true, false */
30
#include <stdio.h> /* perror, popen(), fileno(),
31
fprintf(), stderr, STDOUT_FILENO */
31
#include <stdio.h> /* perror, fileno(), fprintf(),
32
stderr, STDOUT_FILENO */
32
33
#include <sys/types.h> /* DIR, opendir(), stat(), struct
33
34
stat, waitpid(), WIFEXITED(),
34
35
WEXITSTATUS(), wait(), pid_t,
46
47
fcntl(), setuid(), setgid(),
47
48
F_GETFD, F_SETFD, FD_CLOEXEC,
48
49
access(), pipe(), fork(), close()
49
dup2, STDOUT_FILENO, _exit(),
50
dup2(), STDOUT_FILENO, _exit(),
50
51
execv(), write(), read(),
52
53
#include <fcntl.h> /* fcntl(), F_GETFD, F_SETFD,
69
70
#define PDIR "/lib/mandos/plugins.d"
70
71
#define AFILE "/conf/conf.d/mandos/plugin-runner.conf"
72
const char *argp_program_version = "plugin-runner 1.0";
73
const char *argp_program_version = "plugin-runner " VERSION;
73
74
const char *argp_program_bug_address = "<mandos@fukt.bsnet.se>";
77
76
typedef struct plugin{
78
77
char *name; /* can be NULL or any plugin name */
97
96
static plugin *plugin_list = NULL;
99
/* Gets a existing plugin based on name,
98
/* Gets an existing plugin based on name,
100
99
or if none is found, creates a new one */
101
100
static plugin *getplugin(char *name){
102
101
/* Check for exiting plugin with that name */
187
186
size_t namelen = (size_t)(strchrnul(def, '=') - def);
188
187
/* Search for this environment variable */
189
188
for(char **e = p->environ; *e != NULL; e++){
190
if(strncmp(*e, def, namelen+1) == 0){
189
if(strncmp(*e, def, namelen + 1) == 0){
191
190
/* It already exists */
193
char *new = realloc(*e, strlen(def));
192
char *new = realloc(*e, strlen(def) + 1);
208
207
* Descriptor Flags".
209
208
* *Note File Descriptor Flags:(libc)Descriptor Flags.
211
static int set_cloexec_flag(int fd)
210
static int set_cloexec_flag(int fd){
213
211
int ret = fcntl(fd, F_GETFD, 0);
214
212
/* If reading the flags failed, return error indication now. */
223
221
/* Mark processes as completed when they exit, and save their exit
225
void handle_sigchld(__attribute__((unused)) int sig){
223
static void handle_sigchld(__attribute__((unused)) int sig){
227
225
plugin *proc = plugin_list;
255
253
/* Prints out a password to stdout */
256
bool print_out_password(const char *buffer, size_t length){
254
static bool print_out_password(const char *buffer, size_t length){
258
if(length>0 and buffer[length-1] == '\n'){
261
256
for(size_t written = 0; written < length; written += (size_t)ret){
262
257
ret = TEMP_FAILURE_RETRY(write(STDOUT_FILENO, buffer + written,
263
258
length - written));
401
char *envdef = strdup(arg);
405
if(not add_environment(getplugin(NULL), envdef, true)){
406
perror("add_environment");
396
if(not add_environment(getplugin(NULL), arg, true)){
397
perror("add_environment");
410
400
case 'o': /* --options-for */
411
401
if (arg != NULL){
412
402
char *p_name = strsep(&arg, ":");
413
if(p_name[0] == '\0'){
403
if(p_name[0] == '\0' or arg == NULL){
416
406
char *opt = strsep(&arg, ":");
407
if(opt[0] == '\0' or opt == NULL){
422
while((p = strsep(&opt, ",")) != NULL){
426
if(not add_argument(getplugin(p_name), p)){
427
perror("add_argument");
428
return ARGP_ERR_UNKNOWN;
411
while((p = strsep(&opt, ",")) != NULL){
415
if(not add_argument(getplugin(p_name), p)){
416
perror("add_argument");
417
return ARGP_ERR_UNKNOWN;
440
428
if(envdef == NULL){
443
char *p_name = strndup(arg, (size_t) (envdef-arg));
448
if(not add_environment(getplugin(p_name), envdef, true)){
432
if(not add_environment(getplugin(arg), envdef+1, true)){
449
433
perror("add_environment");
478
463
/* This is already done by parse_opt_config_file() */
480
465
case 130: /* --userid */
481
uid = (uid_t)strtol(arg, NULL, 10);
466
/* In the GNU C library, uid_t is always unsigned int */
467
ret = sscanf(arg, "%u", &uid);
469
fprintf(stderr, "Bad user ID number: \"%s\", using %u\n", arg,
483
473
case 131: /* --groupid */
484
gid = (gid_t)strtol(arg, NULL, 10);
474
/* In the GNU C library, gid_t is always unsigned int */
475
ret = sscanf(arg, "%u", &gid);
477
fprintf(stderr, "Bad group ID number: \"%s\", using %u\n",
486
481
case 132: /* --debug */
485
* When adding more options before this line, remember to also add a
486
* "case" to the "parse_opt_config_file" function below.
489
488
case ARGP_KEY_ARG:
490
fprintf(stderr, "Ignoring unknown argument \"%s\"\n", arg);
489
/* Cryptsetup always passes an argument, which is an empty
490
string if "none" was specified in /etc/crypttab. So if
491
argument was empty, we ignore it silently. */
493
fprintf(stderr, "Ignoring unknown argument \"%s\"\n", arg);
492
496
case ARGP_KEY_END:
535
540
.doc = "Mandos plugin runner -- Run plugins" };
537
/* Parse using the parse_opt_config_file in order to get the custom
542
/* Parse using parse_opt_config_file() in order to get the custom
538
543
config file location, if any. */
539
544
ret = argp_parse (&argp, argc, argv, ARGP_IN_ORDER, 0, NULL);
540
545
if (ret == ARGP_ERR_UNKNOWN){
556
561
char *org_line = NULL;
557
562
char *p, *arg, *new_arg, *line;
560
564
const char whitespace_delims[] = " \r\t\f\v\n";
561
565
const char comment_delim[] = "#";
712
716
const char const *bad_suffixes[] = { "~", "#", ".dpkg-new",
714
719
".dpkg-divert", NULL };
715
720
for(const char **pre = bad_prefixes; *pre != NULL; pre++){
716
721
size_t pre_len = strlen(*pre);
750
ret = asprintf(&filename, "%s/%s", plugindir, dirst->d_name);
755
if(plugindir == NULL){
756
ret = asprintf(&filename, PDIR "/%s", dirst->d_name);
758
ret = asprintf(&filename, "%s/%s", plugindir, dirst->d_name);
752
761
perror("asprintf");
853
862
perror("sigaction");
854
863
_exit(EXIT_FAILURE);
856
ret = sigprocmask (SIG_UNBLOCK, &sigchld_action.sa_mask, NULL);
865
ret = sigprocmask(SIG_UNBLOCK, &sigchld_action.sa_mask, NULL);
858
867
perror("sigprocmask");
859
868
_exit(EXIT_FAILURE);
862
871
ret = dup2(pipefd[1], STDOUT_FILENO); /* replace our stdout */
943
951
/* OK, now either a process completed, or something can be read
944
952
from one of them */
945
for(plugin *proc = plugin_list; proc != NULL; proc = proc->next){
953
for(plugin *proc = plugin_list; proc != NULL;){
946
954
/* Is this process completely done? */
947
955
if(proc->eof and proc->completed){
948
956
/* Only accept the plugin output if it exited cleanly */
960
968
(unsigned int) (proc->pid),
961
969
WTERMSIG(proc->status));
962
970
} else if(WCOREDUMP(proc->status)){
963
fprintf(stderr, "Plugin %d dumped core\n",
971
fprintf(stderr, "Plugin %u dumped core\n",
964
972
(unsigned int) (proc->pid));
975
983
exitstatus = EXIT_FAILURE;
987
plugin *next_plugin = proc->next;
978
988
free_plugin(proc);
979
991
/* We are done modifying process list, so unblock signal */
980
992
ret = sigprocmask (SIG_UNBLOCK, &sigchld_action.sa_mask,
1005
1018
/* This process has not completed. Does it have any output? */
1006
1019
if(proc->eof or not FD_ISSET(proc->fd, &rfds)){
1007
1020
/* This process had nothing to say at this time */
1010
1024
/* Before reading, make the process' data buffer large enough */
1019
1033
proc->buffer_size += BUFFER_SIZE;
1021
1035
/* Read from the process */
1022
ret = read(proc->fd, proc->buffer + proc->buffer_length,
1036
sret = read(proc->fd, proc->buffer + proc->buffer_length,
1025
1039
/* Read error from this process; ignore the error */
1030
1045
proc->eof = true;
1032
proc->buffer_length += (size_t) ret;
1047
proc->buffer_length += (size_t) sret;
1044
1059
fprintf(stderr, "Going to fallback mode using getpass(3)\n");
1045
1060
char *passwordbuffer = getpass("Password: ");
1046
bret = print_out_password(passwordbuffer, strlen(passwordbuffer));
1061
size_t len = strlen(passwordbuffer);
1062
/* Strip trailing newline */
1063
if(len > 0 and passwordbuffer[len-1] == '\n'){
1064
passwordbuffer[len-1] = '\0'; /* not strictly necessary */
1067
bret = print_out_password(passwordbuffer, len);
1048
1069
perror("print_out_password");
1049
1070
exitstatus = EXIT_FAILURE;