/mandos/trunk

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/mandos-client.c

  • Committer: Teddy Hogeborn
  • Date: 2019-02-09 23:34:15 UTC
  • Revision ID: teddy@recompile.se-20190209233415-m1ntebuepwna1xg1
Doc fix: Change some "/etc/mandos" to "/etc/keys/mandos"

* clients.conf: Change "/etc/mandos" to "/etc/keys/mandos" where
                appropriate
* mandos-keygen.xml: - '' -

Show diffs side-by-side

added added

removed removed

Lines of Context:
plugins.d/mandos-client.c
9
9
 * "browse_callback", and parts of "main".
10
10
 * 
11
11
 * Everything else is
12
 
 * Copyright © 2008-2020 Teddy Hogeborn
13
 
 * Copyright © 2008-2020 Björn Påhlsson
 
12
 * Copyright © 2008-2018 Teddy Hogeborn
 
13
 * Copyright © 2008-2018 Björn Påhlsson
14
14
 * 
15
15
 * This file is part of Mandos.
16
16
 * 
396
396
        fprintf_plus(stderr,
397
397
                     "Setting system clock to key file mtime");
398
398
      }
399
 
      if(clock_settime(CLOCK_REALTIME, &keystat.st_mtim) != 0){
400
 
        perror_plus("clock_settime");
 
399
      time_t keytime = keystat.st_mtim.tv_sec;
 
400
      if(stime(&keytime) != 0){
 
401
        perror_plus("stime");
401
402
      }
402
403
      ret = lower_privileges();
403
404
      if(ret != 0){
1073
1074
      ret = setgid(0);
1074
1075
      if(ret == -1){
1075
1076
        perror_plus("setgid");
1076
 
        close(devnull);
1077
1077
        _exit(EX_NOPERM);
1078
1078
      }
1079
1079
      /* Reset supplementary groups */
1081
1081
      ret = setgroups(0, NULL);
1082
1082
      if(ret == -1){
1083
1083
        perror_plus("setgroups");
1084
 
        close(devnull);
1085
1084
        _exit(EX_NOPERM);
1086
1085
      }
1087
1086
    }
1088
1087
    ret = dup2(devnull, STDIN_FILENO);
1089
1088
    if(ret == -1){
1090
1089
      perror_plus("dup2(devnull, STDIN_FILENO)");
1091
 
      close(devnull);
1092
1090
      _exit(EX_OSERR);
1093
1091
    }
1094
1092
    ret = close(devnull);
1095
1093
    if(ret == -1){
1096
1094
      perror_plus("close");
 
1095
      _exit(EX_OSERR);
1097
1096
    }
1098
1097
    ret = dup2(STDERR_FILENO, STDOUT_FILENO);
1099
1098
    if(ret == -1){
1134
1133
  }
1135
1134
  if(pid == -1){
1136
1135
    perror_plus("fork");
1137
 
    close(devnull);
1138
1136
    return false;
1139
1137
  }
1140
 
  ret = close(devnull);
1141
 
  if(ret == -1){
1142
 
    perror_plus("close");
1143
 
  }
1144
1138
  int status;
1145
1139
  pid_t pret = -1;
1146
1140
  errno = 0;
2678
2672
        argp_state_help(state, state->out_stream,
2679
2673
                        (ARGP_HELP_STD_HELP | ARGP_HELP_EXIT_ERR)
2680
2674
                        & ~(unsigned int)ARGP_HELP_EXIT_OK);
2681
 
        __builtin_unreachable();
2682
2675
      case -3:                  /* --usage */
2683
2676
        argp_state_help(state, state->out_stream,
2684
2677
                        ARGP_HELP_USAGE | ARGP_HELP_EXIT_ERR);
2685
 
        __builtin_unreachable();
2686
2678
      case 'V':                 /* --version */
2687
2679
        fprintf_plus(state->out_stream, "%s\n", argp_program_version);
2688
2680
        exit(argp_err_exit_status);