/mandos/trunk : revision 38

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/askpass-fifo.c

Committer: Teddy Hogeborn
Date: 2008-08-03 01:09:36 UTC
mfrom: (24.1.9 mandos)
Revision ID: teddy@fukt.bsnet.se-20080803010936-ujme8tgxceszfbi1

* plugbasedclient.c (main): New "--userid" and "--groupid" options.
                            Take an additional non-option argument and
                            parse it as a plus-separated and -prefixed
                            list of additional options.

* plugins.d/mandosclient.c (DH_BITS): Replaced with
                                      "mandos_context.dh_bits".  All
                                      users changed.
  (certdir): Renamed to "keydir".  All users changed.
  (certfile): Renamed to "pubkeyfile".  All users changed.
  (certkey): Renamed to "seckeyfile".  All users changed.
  (encrypted_session): Replaced with "mandos_context".  All users
                       changed.
  (initgnutls): Take additional "session" and "dh_params" arguments.
                All callers changed.
  (start_mandos_communication): Take additional "mc" argument.  All
                                callers changed.  Print target IPv6
                                address if different than supplied
                                string.
  (simple_poll) Replaced with "mandos_context.simple_poll".  All users
                changed.
  (server): Replaced with "mandos_context.server".  All users changed.
  (main): Default interface to "eth0".  Rename "--certdir" to
          "--keydir", "--certkey" to "--seckey", and "--certfile" to
          "--pubkey".  New options "--dh-bits" and "--priority".  If
          the interface is not up, bring it up.

files added:
ca.pem

cert.pem

client-cert.pem

client-key.pem

crl.pem

key.pem

files removed:
.bzr-builddeb

.bzr-builddeb/default.conf

.bzrignore

COPYING

INSTALL

NEWS

README

common.ent

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/po

debian/rules

debian/watch

default-mandos

init.d-mandos

initramfs-tools-hook

initramfs-tools-hook-conf

initramfs-tools-script

legalnotice.xml

mandos-clients.conf.xml

mandos-ctl

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf.xml

mandos.lsm

mandos.xml

overview.xml

plugin-runner.conf

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.xml

plugins.d/password-prompt.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files renamed:
plugin-runner.c => plugbasedclient.c

plugins.d/mandos-client.c => plugins.d/mandosclient.c

plugins.d/password-prompt.c => plugins.d/passprompt.c

mandos.conf => server.conf

mandos => server.py

files modified:
Makefile

TODO

clients.conf

Show diffs side-by-side

added added

removed removed

plugins.d/askpass-fifo.c

/* -*- coding: utf-8 -*- */

* Askpass-FIFO - Read a password from a FIFO and output it

* This program is free software: you can redistribute it and/or

* modify it under the terms of the GNU General Public License as

* published by the Free Software Foundation, either version 3 of the

* License, or (at your option) any later version.

* This program is distributed in the hope that it will be useful, but

* WITHOUT ANY WARRANTY; without even the implied warranty of

* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU

* General Public License for more details.

* You should have received a copy of the GNU General Public License

* along with this program. If not, see

* <http://www.gnu.org/licenses/>.

* Contact the authors at <mandos@fukt.bsnet.se>.

#define _GNU_SOURCE /* TEMP_FAILURE_RETRY() */

#include <sys/types.h> /* ssize_t */

#include <sys/stat.h> /* mkfifo(), S_IRUSR, S_IWUSR */

#include <iso646.h> /* and */

#include <errno.h> /* errno, EEXIST */

#include <stdio.h> /* perror() */

#include <stdlib.h> /* EXIT_FAILURE, NULL, size_t, free(),

realloc(), EXIT_SUCCESS */

#include <fcntl.h> /* open(), O_RDONLY */

#include <unistd.h> /* read(), close(), write(),

STDOUT_FILENO */

int main(__attribute__((unused))int argc,

__attribute__((unused))char **argv){

int ret = 0;

ssize_t sret;

/* Create FIFO */

const char passfifo[] = "/lib/cryptsetup/passfifo";

ret = mkfifo(passfifo, S_IRUSR | S_IWUSR);

if(ret == -1 and errno != EEXIST){

perror("mkfifo");

return EXIT_FAILURE;

}

/* Open FIFO */

int fifo_fd = open(passfifo, O_RDONLY);

if(fifo_fd == -1){

perror("open");

return EXIT_FAILURE;

}

/* Read from FIFO */

char *buf = NULL;

size_t buf_len = 0;

{

size_t buf_allocated = 0;

const size_t blocksize = 1024;

do {

if(buf_len + blocksize > buf_allocated){

char *tmp = realloc(buf, buf_allocated + blocksize);

if(tmp == NULL){

perror("realloc");

free(buf);

return EXIT_FAILURE;

}

buf = tmp;

buf_allocated += blocksize;

}

sret = read(fifo_fd, buf + buf_len, buf_allocated - buf_len);

if(sret == -1){

perror("read");

free(buf);

return EXIT_FAILURE;

}

buf_len += (size_t)sret;

} while(sret != 0);

}

/* Close FIFO */

close(fifo_fd);

/* Print password to stdout */

size_t written = 0;

while(written < buf_len){

sret = write(STDOUT_FILENO, buf + written, buf_len - written);

if(sret == -1){

perror("write");

free(buf);

return EXIT_FAILURE;

}

written += (size_t)sret;

}

free(buf);

100

101

return EXIT_SUCCESS;

102

}

Older »