/mandos/trunk : revision 78

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/password-request.xml

Committer: Teddy Hogeborn
Date: 2008-08-16 03:29:08 UTC
Revision ID: teddy@fukt.bsnet.se-20080816032908-ihw7c05r2mnyk389

Add feature to specify custom environment variables for plugins.

* plugin-runner.c (plugin): New members "environ" and "envc" to
                            contain possible custom environment.
  (getplugin): Return NULL on failure instead of doing exit(); all
               callers changed.
  (add_to_char_array): New helper function for "add_argument" and
                       "add_environment".
  (addargument): Renamed to "add_argument".  Return bool.  Call
                 "add_to_char_array" to actually do things.
  (add_environment): New; analogous to "add_argument".
  (addcustomargument): Renamed to "add_to_argv" to avoid confusion
                       with "add_argument".
  (main): New options "--global-envs" and "--envs-for" to specify
          custom environment for plugins.  Print environment for
          plugins in debug mode.  Use asprintf instead of strcpy and
          strcat.  Use execve() for plugins with custom environments.
          Free environment for plugin when freeing plugin list.

files added:
network-protocol.txt

files removed:
.bzrignore

mandos-keygen.xml

mandos-options.xml

overview.xml

files modified:
Makefile

TODO

clients.conf

initramfs-tools-hook

mandos

mandos-clients.conf.xml

mandos-keygen

mandos.conf

mandos.conf.xml

mandos.xml

plugin-runner.c

plugin-runner.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/password-request.c

plugins.d/password-request.xml

Show diffs side-by-side

added added

removed removed

plugins.d/password-request.xml

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [

<!ENTITY VERSION "1.0">

<!ENTITY COMMANDNAME "password-request">

<!ENTITY TIMESTAMP "2008-08-31">

<title>Mandos Manual</title>

<title>&COMMANDNAME;</title>

<productname>Mandos</productname>

<productname>&COMMANDNAME;</productname>

<productnumber>&VERSION;</productnumber>

<date>&TIMESTAMP;</date>

<firstname>Björn</firstname>

</authorgroup>

<holder>Teddy Hogeborn</holder>

<holder>Björn Påhlsson</holder>

<holder>Teddy Hogeborn & Björn Påhlsson</holder>

</copyright>

<para>

<command>&COMMANDNAME;</command>

<group>

<arg choice="plain"><option>--connect

<replaceable>IPADDR</replaceable><literal>:</literal

><replaceable>PORT</replaceable></option></arg>

<arg choice="plain"><option>-c

<replaceable>IPADDR</replaceable><literal>:</literal

><replaceable>PORT</replaceable></option></arg>

</group>

<sbr/>

<group>

<arg choice="plain"><option>--keydir

<replaceable>DIRECTORY</replaceable></option></arg>

<arg choice="plain"><option>-d

<replaceable>DIRECTORY</replaceable></option></arg>

</group>

<sbr/>

<group>

<arg choice="plain"><option>--interface

<arg choice="plain"><option>-i

100

</group>

101

<sbr/>

102

<group>

103

<arg choice="plain"><option>--pubkey

104

105

<arg choice="plain"><option>-p

106

107

</group>

108

<sbr/>

109

<group>

110

<arg choice="plain"><option>--seckey

111

112

<arg choice="plain"><option>-s

113

114

</group>

115

<sbr/>

116

<arg>

117

<option>--priority <replaceable>STRING</replaceable></option>

118

</arg>

119

<sbr/>

120

<arg>

121

122

</arg>

123

<sbr/>

124

<arg>

125

<option>--debug</option>

126

</arg>

127

</cmdsynopsis>

128

129

<command>&COMMANDNAME;</command>

130

131

132

133

</group>

134

</cmdsynopsis>

135

136

<command>&COMMANDNAME;</command>

137

<arg choice='plain'><option>--usage</option></arg>

138

</cmdsynopsis>

139

140

<command>&COMMANDNAME;</command>

141

142

<arg choice='plain'><option>--version</option></arg>

143

144

</group>

145

</cmdsynopsis>

<arg choice='opt'>--connect<arg choice='plain'>IP</arg></arg>

<arg choice='opt'>--keydir<arg choice='plain'>KEYDIR</arg></arg>

<arg choice='opt'>--interface<arg choice='plain'>INTERFACE</arg></arg>

<arg choice='opt'>--pubkey<arg choice='plain'>PUBKEY</arg></arg>

<arg choice='opt'>--seckey<arg choice='plain'>SECKEY</arg></arg>

<arg choice='opt'>--priority<arg choice='plain'>PRIORITY</arg></arg>

<arg choice='opt'>--debug</arg>

</cmdsynopsis>

<command>&COMMANDNAME;</command>

</cmdsynopsis>

<command>&COMMANDNAME;</command>

<arg choice='plain'>--usage</arg>

</cmdsynopsis>

<command>&COMMANDNAME;</command>

<arg choice='plain'>--version</arg>

</cmdsynopsis>

146

</refsynopsisdiv>

147

148

154

105

passwords given is automaticly decrypted and passed to

155

106

cryptsetup.

156

107

</para>

157

</refsect1>

158

159

160

<title>OPTIONS</title>

161

<para>

162

Commonly not invoked as command lines but from configuration

163

file of plugin runner.

164

</para>

165

108

166

109

167

110

168

<term><option>--connect=<replaceable

169

>IPADDR</replaceable><literal>:</literal><replaceable

170

>PORT</replaceable></option></term>

171

<term><option>-c

172

<replaceable>IPADDR</replaceable><literal>:</literal

173

><replaceable>PORT</replaceable></option></term>

111

<term><literal>-c</literal>, <literal>--connect=<replaceable>

112

IP</replaceable></literal></term>

174

113

175

114

<para>

176

Connect directly to a specified mandos server

115

Connect directly to a sepcified mandos server

177

116

</para>

178

117

</listitem>

179

118

</varlistentry>

180

119

181

120

182

<term><option>--keydir=<replaceable

183

>DIRECTORY</replaceable></option></term>

184

<term><option>-d

185

<replaceable>DIRECTORY</replaceable></option></term>

121

<term><literal>-d</literal>, <literal>--keydir=<replaceable>

122

KEYDIR</replaceable></literal></term>

186

123

187

124

<para>

188

125

Directory where the openpgp keyring is

189

126

</para>

190

127

</listitem>

191

</varlistentry>

128

</varlistentry>

192

129

193

130

194

<term><option>--interface=

195

196

<term><option>-i

197

131

<term><literal>-i</literal>, <literal>--interface=

132

<replaceable>INTERFACE</replaceable></literal></term>

198

133

199

134

<para>

200

Interface that Avahi will connect through

135

Interface that Avahi will conntect through

201

136

</para>

202

137

</listitem>

203

</varlistentry>

138

</varlistentry>

204

139

205

140

206

<term><option>--pubkey=<replaceable

207

>FILE</replaceable></option></term>

208

<term><option>-p

209

141

<term><literal>-p</literal>, <literal>--pubkey=<replaceable>

142

PUBKEY</replaceable></literal></term>

210

143

211

144

<para>

212

145

Public openpgp key for gnutls authentication

213

146

</para>

214

147

</listitem>

215

</varlistentry>

216

217

218

<term><option>--seckey=<replaceable

219

>FILE</replaceable></option></term>

220

<term><option>-s

221

222

223

<para>

224

Secret OpenPGP key for GnuTLS authentication

225

</para>

226

</listitem>

227

</varlistentry>

228

229

230

<term><option>--priority=<replaceable

231

>STRING</replaceable></option></term>

232

233

<para>

234

GnuTLS priority

235

</para>

236

</listitem>

237

</varlistentry>

238

239

240

<term><option>--dh-bits=<replaceable

241

>BITS</replaceable></option></term>

242

243

<para>

244

DH bits to use in gnutls communication

245

</para>

246

</listitem>

247

</varlistentry>

248

249

250

<term><option>--debug</option></term>

148

</varlistentry>

149

150

151

<term><literal>-s</literal>, <literal>--seckey=<replaceable>

152

SECKEY</replaceable></literal></term>

153

154

<para>

155

Secret openpgp key for gnutls authentication

156

</para>

157

</listitem>

158

</varlistentry>

159

160

161

<term><literal>--priority=<replaceable>PRIORITY</replaceable>

162

</literal></term>

163

164

<para>

165

GNUTLS priority

166

</para>

167

</listitem>

168

</varlistentry>

169

170

171

172

</literal></term>

173

174

<para>

175

dh-bits to use in gnutls communication

176

</para>

177

</listitem>

178

</varlistentry>

179

180

181

<term><literal>--debug</literal></term>

251

182

252

183

<para>

253

184

Debug mode

256

187

</varlistentry>

257

188

258

189

259

260

190

261

191

262

192

<para>

263

193

Gives a help message

266

196

</varlistentry>

267

197

268

198

269

<term><option>--usage</option></term>

199

<term><literal>--usage</literal></term>

270

200

271

201

<para>

272

202

Gives a short usage message

275

205

</varlistentry>

276

206

277

207

278

<term><option>--version</option></term>

279

208

<term><literal>-V</literal>, <literal>--version</literal></term>

280

209

281

210

<para>

282

211

Prints the program version

283

212

</para>

284

213

</listitem>

285

</varlistentry>

214

</varlistentry>

286

215

</variablelist>

287

216

</refsect1>

288

289

290

<title>EXIT STATUS</title>

291

<para>

292

</para>

293

</refsect1>

294

295

296

<title>ENVIRONMENT</title>

297

<para>

298

</para>

299

</refsect1>

300

301

302

<title>FILES</title>

303

<para>

304

</para>

305

</refsect1>

306

307

308

309

<para>

310

</para>

311

</refsect1>

312

313

314

<title>EXAMPLE</title>

315

<para>

316

</para>

317

</refsect1>

318

319

320

<title>SECURITY</title>

321

<para>

322

</para>

323

</refsect1>

324

325

326

327

<para>

328

<citerefentry><refentrytitle>mandos</refentrytitle>

329

<manvolnum>8</manvolnum></citerefentry>,

330

<citerefentry><refentrytitle>password-prompt</refentrytitle>

331

<manvolnum>8mandos</manvolnum></citerefentry>,

332

<citerefentry><refentrytitle>plugin-runner</refentrytitle>

333

<manvolnum>8mandos</manvolnum></citerefentry>

334

</para>

335

336

337

<ulink url="http://www.zeroconf.org/">Zeroconf</ulink>

338

</para></listitem>

339

340

341

<ulink url="http://www.avahi.org/">Avahi</ulink>

342

</para></listitem>

343

344

345

<ulink

346

url="http://www.gnu.org/software/gnutls/">GnuTLS</ulink>

347

</para></listitem>

348

349

350

<ulink

351

url="http://www.gnupg.org/related_software/gpgme/">

352

GPGME</ulink>

353

</para></listitem>

354

355

356

<citation>RFC 4880: <citetitle>OpenPGP Message

357

Format</citetitle></citation>

358

</para></listitem>

359

360

361

<citation>RFC 5081: <citetitle>Using OpenPGP Keys for

362

Transport Layer Security</citetitle></citation>

363

</para></listitem>

364

365

366

<citation>RFC 4291: <citetitle>IP Version 6 Addressing

367

Architecture</citetitle>, section 2.5.6, Link-Local IPv6

368

Unicast Addresses</citation>

369

</para></listitem>

370

</itemizedlist>

371

</refsect1>

372

373

217

</refentry>

374

375

376

377

378

Older »