/mandos/trunk : revision 778

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/plymouth.xml

Committer: Teddy Hogeborn
Date: 2015-07-20 04:03:32 UTC
Revision ID: teddy@recompile.se-20150720040332-hw6s7nh14ju259z3

Update copyright year.

* debian/copyright (Copyright): Update copyright year.
* intro.xml (COPYRIGHT): - '' -
* mandos-clients.conf.xml (COPYRIGHT): - '' -
* mandos-ctl.xml (COPYRIGHT): - '' -
* mandos-keygen.xml (COPYRIGHT): - '' -
* mandos-monitor.xml (COPYRIGHT): - '' -
* mandos.conf.xml (COPYRIGHT): - '' -
* mandos.xml (COPYRIGHT): - '' -
* plugin-runner.c: - '' -
* plugin-runner.xml (COPYRIGHT): - '' -
* plugins.d/askpass-fifo.c: - '' -
* plugins.d/askpass-fifo.xml (COPYRIGHT): - '' -
* plugins.d/mandos-client.xml (COPYRIGHT): - '' -
* plugins.d/password-prompt.c: - '' -
* plugins.d/password-prompt.xml (COPYRIGHT): - '' -
* plugins.d/plymouth.c: - '' -
* plugins.d/plymouth.xml (COPYRIGHT): - '' -
* plugins.d/splashy.c: - '' -
* plugins.d/splashy.xml (COPYRIGHT): - '' -
* plugins.d/usplash.c: - '' -
* plugins.d/usplash.xml (COPYRIGHT): - '' -

files added:
.bzr-builddeb

.bzr-builddeb/default.conf

.bzrignore

COPYING

DBUS-API

INSTALL

NEWS

README

common.ent

dbus-mandos.conf

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.examples

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/po

debian/rules

debian/source

debian/source/format

debian/source/local-options

debian/upstream

debian/upstream/signing-key.asc

debian/watch

default-mandos

init.d-mandos

initramfs-tools-hook

initramfs-tools-hook-conf

initramfs-tools-script

initramfs-unpack

intro.xml

legalnotice.xml

mandos-clients.conf.xml

mandos-ctl

mandos-ctl.xml

mandos-keygen

mandos-keygen.xml

mandos-monitor

mandos-monitor.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.lsm

mandos.service

mandos.xml

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

overview.xml

plugin-helpers

plugin-helpers/mandos-client-iprouteadddel.c

plugin-runner.conf

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.xml

plugins.d/password-prompt.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files removed:
ca.pem

cert.pem

client-cert.pem

client-key.pem

crl.pem

key.pem

plugins.d/Makefile

files renamed:
mandos-clients.conf => clients.conf

server.py => mandos

plugbasedclient.c => plugin-runner.c

plugins.d/mandosclient.c => plugins.d/mandos-client.c

plugins.d/passprompt.c => plugins.d/password-prompt.c

files modified:
Makefile

TODO

Show diffs side-by-side

added added

removed removed

plugins.d/plymouth.xml

<?xml version="1.0" encoding="UTF-8"?>

<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [

<!ENTITY COMMANDNAME "plymouth">

<!ENTITY TIMESTAMP "2015-07-20">

<!ENTITY % common SYSTEM "../common.ent">

%common;

<title>Mandos Manual</title>

<productname>Mandos</productname>

<productnumber>&version;</productnumber>

<date>&TIMESTAMP;</date>

<firstname>Björn</firstname>

<surname>Påhlsson</surname>

<email>belorn@recompile.se</email>

</address>

</author>

<firstname>Teddy</firstname>

<surname>Hogeborn</surname>

<email>teddy@recompile.se</email>

</address>

</author>

</authorgroup>

<holder>Teddy Hogeborn</holder>

<holder>Björn Påhlsson</holder>

</copyright>

<xi:include href="../legalnotice.xml"/>

</refentryinfo>

<refentrytitle>&COMMANDNAME;</refentrytitle>

<manvolnum>8mandos</manvolnum>

</refmeta>

<refname><command>&COMMANDNAME;</command></refname>

<refpurpose>Mandos plugin to use plymouth to get a

password.</refpurpose>

</refnamediv>

<command>&COMMANDNAME;</command>

</cmdsynopsis>

</refsynopsisdiv>

<title>DESCRIPTION</title>

<para>

This program prompts for a password using <citerefentry>

<refentrytitle>plymouth</refentrytitle><manvolnum>8</manvolnum>

</citerefentry> and outputs any given password to standard

output. If no <citerefentry><refentrytitle

>plymouth</refentrytitle><manvolnum>8</manvolnum></citerefentry>

process can be found, this program will immediately exit with an

exit code indicating failure.

</para>

<para>

This program is not very useful on its own. This program is

really meant to run as a plugin in the <application

>Mandos</application> client-side system, where it is used as a

fallback and alternative to retrieving passwords from a

<application >Mandos</application> server.

</para>

<para>

If this program is killed (presumably by

<citerefentry><refentrytitle>plugin-runner</refentrytitle>

<manvolnum>8mandos</manvolnum></citerefentry> because some other

plugin provided the password), it cannot tell <citerefentry>

<refentrytitle>plymouth</refentrytitle><manvolnum>8</manvolnum>

</citerefentry> to abort requesting a password, because

<citerefentry><refentrytitle>plymouth</refentrytitle>

<manvolnum>8</manvolnum></citerefentry> does not support this.

Therefore, this program will then <emphasis>kill</emphasis> the

running <citerefentry><refentrytitle>plymouth</refentrytitle>

<manvolnum>8</manvolnum></citerefentry> process and start a

<emphasis>new</emphasis> one using the same command line

arguments as the old one was using.

</para>

</refsect1>

<title>OPTIONS</title>

100

<para>

101

This program takes no options.

102

</para>

103

</refsect1>

104

105

106

<title>EXIT STATUS</title>

107

<para>

108

If exit status is 0, the output from the program is the password

109

as it was read. Otherwise, if exit status is other than 0, the

110

program was interrupted or encountered an error, and any output

111

so far could be corrupt and/or truncated, and should therefore

112

be ignored.

113

</para>

114

</refsect1>

115

116

117

<title>ENVIRONMENT</title>

118

119

120

<term><envar>cryptsource</envar></term>

121

<term><envar>crypttarget</envar></term>

122

123

<para>

124

If set, these environment variables will be assumed to

125

contain the source device name and the target device

126

mapper name, respectively, and will be shown as part of

127

the prompt.

128

</para>

129

<para>

130

These variables will normally be inherited from

131

<citerefentry><refentrytitle>plugin-runner</refentrytitle>

132

<manvolnum>8mandos</manvolnum></citerefentry>, which will

133

normally have inherited them from

134

<filename>/scripts/local-top/cryptroot</filename> in the

135

initial <acronym>RAM</acronym> disk environment, which will

136

have set them from parsing kernel arguments and

137

<filename>/conf/conf.d/cryptroot</filename> (also in the

138

initial RAM disk environment), which in turn will have been

139

created when the initial RAM disk image was created by

140

<filename

141

>/usr/share/initramfs-tools/hooks/cryptroot</filename>, by

142

extracting the information of the root file system from

143

<filename >/etc/crypttab</filename>.

144

</para>

145

<para>

146

This behavior is meant to exactly mirror the behavior of

147

<command>askpass</command>, the default password prompter.

148

</para>

149

</listitem>

150

</varlistentry>

151

</variablelist>

152

</refsect1>

153

154

155

<title>FILES</title>

156

157

158

<term><filename>/bin/plymouth</filename></term>

159

160

<para>

161

This is the command run to retrieve a password from

162

<citerefentry><refentrytitle>plymouth</refentrytitle>

163

<manvolnum>8</manvolnum></citerefentry>.

164

</para>

165

</listitem>

166

</varlistentry>

167

168

169

170

<para>

171

To find the running <citerefentry><refentrytitle

172

>plymouth</refentrytitle><manvolnum>8</manvolnum>

173

</citerefentry>, this directory will be searched for

174

numeric entries which will be assumed to be directories.

175

In all those directories, the <filename>exe</filename> and

176

<filename>cmdline</filename> entries will be used to

177

determine the name of the running binary, effective user

178

and group <abbrev>ID</abbrev>, and the command line

179

arguments. See <citerefentry><refentrytitle

180

>proc</refentrytitle><manvolnum>5</manvolnum>

181

</citerefentry>.

182

</para>

183

</listitem>

184

</varlistentry>

185

186

<term><filename>/sbin/plymouthd</filename></term>

187

188

<para>

189

This is the name of the binary which will be searched for

190

in the process list. See <citerefentry><refentrytitle

191

>plymouth</refentrytitle><manvolnum>8</manvolnum>

192

</citerefentry>.

193

</para>

194

</listitem>

195

</varlistentry>

196

</variablelist>

197

</refsect1>

198

199

200

201

<para>

202

Killing the <citerefentry><refentrytitle

203

>plymouth</refentrytitle><manvolnum>8</manvolnum></citerefentry>

204

daemon and starting a new one is ugly, but necessary as long as

205

it does not support aborting a password request.

206

</para>

207

</refsect1>

208

209

210

<title>EXAMPLE</title>

211

<para>

212

Note that normally, this program will not be invoked directly,

213

but instead started by the Mandos <citerefentry><refentrytitle

214

>plugin-runner</refentrytitle><manvolnum>8mandos</manvolnum>

215

</citerefentry>.

216

</para>

217

218

<para>

219

This program takes no options.

220

</para>

221

<para>

222

<userinput>&COMMANDNAME;</userinput>

223

</para>

224

</informalexample>

225

</refsect1>

226

227

228

<title>SECURITY</title>

229

<para>

230

If this program is killed by a signal, it will kill the process

231

<abbrev>ID</abbrev> which at the start of this program was

232

determined to run <citerefentry><refentrytitle

233

>plymouth</refentrytitle><manvolnum>8</manvolnum></citerefentry>

234

as root (see also <xref linkend="files"/>). There is a very

235

slight risk that, in the time between those events, that process

236

<abbrev>ID</abbrev> was freed and then taken up by another

237

process; the wrong process would then be killed. Now, this

238

program can only be killed by the user who started it; see

239

<citerefentry><refentrytitle>plugin-runner</refentrytitle>

240

<manvolnum>8mandos</manvolnum></citerefentry>. This program

241

should therefore be started by a completely separate

242

non-privileged user, and no other programs should be allowed to

243

run as that special user. This means that it is not recommended

244

to use the user "nobody" to start this program, as other

245

possibly less trusted programs could be running as "nobody", and

246

they would then be able to kill this program, triggering the

247

killing of the process <abbrev>ID</abbrev> which may or may not

248

be <citerefentry><refentrytitle>plymouth</refentrytitle>

249

<manvolnum>8</manvolnum></citerefentry>.

250

</para>

251

<para>

252

The only other thing that could be considered worthy of note is

253

this: This program is meant to be run by <citerefentry>

254

<refentrytitle>plugin-runner</refentrytitle><manvolnum

255

>8mandos</manvolnum></citerefentry>, and will, when run

256

standalone, outside, in a normal environment, immediately output

257

on its standard output any presumably secret password it just

258

received. Therefore, when running this program standalone

259

(which should never normally be done), take care not to type in

260

any real secret password by force of habit, since it would then

261

immediately be shown as output.

262

</para>

263

</refsect1>

264

265

266

267

<para>

268

<citerefentry><refentrytitle>intro</refentrytitle>

269

<manvolnum>8mandos</manvolnum></citerefentry>,

270

<citerefentry><refentrytitle>crypttab</refentrytitle>

271

<manvolnum>5</manvolnum></citerefentry>,

272

<citerefentry><refentrytitle>plugin-runner</refentrytitle>

273

<manvolnum>8mandos</manvolnum></citerefentry>,

274

275

<manvolnum>5</manvolnum></citerefentry>,

276

<citerefentry><refentrytitle>plymouth</refentrytitle>

277

278

</para>

279

</refsect1>

280

</refentry>

281

282

283

284

285

Older »