hal/hald/util_helper.c

18c2aff776a775d34a4c9893a4c72e0434d68e36artem/***************************************************************************
18c2aff776a775d34a4c9893a4c72e0434d68e36artem *
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * util_helper.c - HAL utilities for helper (as e.g. prober/addons) et al.
18c2aff776a775d34a4c9893a4c72e0434d68e36artem *
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * Copyright (C) 2006 David Zeuthen, <david@fubar.dk>
18c2aff776a775d34a4c9893a4c72e0434d68e36artem *
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * Licensed under the Academic Free License version 2.1
18c2aff776a775d34a4c9893a4c72e0434d68e36artem *
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * This program is free software; you can redistribute it and/or modify
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * it under the terms of the GNU General Public License as published by
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * the Free Software Foundation; either version 2 of the License, or
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * (at your option) any later version.
18c2aff776a775d34a4c9893a4c72e0434d68e36artem *
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * This program is distributed in the hope that it will be useful,
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * but WITHOUT ANY WARRANTY; without even the implied warranty of
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * GNU General Public License for more details.
18c2aff776a775d34a4c9893a4c72e0434d68e36artem *
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * You should have received a copy of the GNU General Public License
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * along with this program; if not, write to the Free Software
18c2aff776a775d34a4c9893a4c72e0434d68e36artem * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
18c2aff776a775d34a4c9893a4c72e0434d68e36artem *
18c2aff776a775d34a4c9893a4c72e0434d68e36artem **************************************************************************/
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#ifdef HAVE_CONFIG_H
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#  include <config.h>
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#endif
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#include <grp.h>
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#include <stdarg.h>
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#include <stdlib.h>
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#include <string.h>
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#include <sys/time.h>
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#include <time.h>
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#include <pwd.h>
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#include <unistd.h>
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#include "logger.h"
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#include "util_helper.h"
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#ifdef __linux__
18c2aff776a775d34a4c9893a4c72e0434d68e36artemextern char **environ;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#endif
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artemstatic char **argv_buffer = NULL;
18c2aff776a775d34a4c9893a4c72e0434d68e36artemstatic size_t argv_size = 0;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#ifdef sun
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#include <priv.h>
18c2aff776a775d34a4c9893a4c72e0434d68e36artemvoid
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliamdrop_privileges(int keep_auxgroups)
18c2aff776a775d34a4c9893a4c72e0434d68e36artem{
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam    priv_set_t *pPrivSet;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    /*
18c2aff776a775d34a4c9893a4c72e0434d68e36artem     * Start with the 'basic' privilege set and then remove any
18c2aff776a775d34a4c9893a4c72e0434d68e36artem     * of the 'basic' privileges that will not be needed.
18c2aff776a775d34a4c9893a4c72e0434d68e36artem     */
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam    if ((pPrivSet = priv_allocset()) == NULL) {
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        return;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    }
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam    /*
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam     * Establish the basic set of privileges.
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam     * Note: fork/exec required for libdevinfo devlink
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam     * interfaces are included in the basic set.
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam     */
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam    priv_basicset(pPrivSet);
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    /* Clear privileges we will not need from the 'basic' set */
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    (void) priv_delset(pPrivSet, PRIV_FILE_LINK_ANY);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    (void) priv_delset(pPrivSet, PRIV_PROC_INFO);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    (void) priv_delset(pPrivSet, PRIV_PROC_SESSION);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    /* for sysevent need to be root and have this privilege */
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    (void) priv_addset(pPrivSet, PRIV_SYS_CONFIG);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
73a8c195d0dfb19a2b8814d9df1ae6459c88d5a6fei feng - Sun Microsystems - Beijing China    /* need proc_audit privilege */
73a8c195d0dfb19a2b8814d9df1ae6459c88d5a6fei feng - Sun Microsystems - Beijing China    (void) priv_addset(pPrivSet, PRIV_PROC_AUDIT);
73a8c195d0dfb19a2b8814d9df1ae6459c88d5a6fei feng - Sun Microsystems - Beijing China
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    /* Set the permitted privilege set. */
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam    (void) setppriv(PRIV_SET, PRIV_PERMITTED, pPrivSet);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam    /* Set the limit privilege set. */
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam    (void) setppriv(PRIV_SET, PRIV_LIMIT, pPrivSet);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
f5f5f433be0d7353b064a34c51f926e86885670eJerry Gilliam    priv_freeset(pPrivSet);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem}
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#else /* !sun */
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem/** Drop root privileges: Set the running user id to HAL_USER and
18c2aff776a775d34a4c9893a4c72e0434d68e36artem *  group to HAL_GROUP, and optionally retain auxiliary groups of HAL_USER.
18c2aff776a775d34a4c9893a4c72e0434d68e36artem */
18c2aff776a775d34a4c9893a4c72e0434d68e36artemvoid
18c2aff776a775d34a4c9893a4c72e0434d68e36artemdrop_privileges (int keep_auxgroups)
18c2aff776a775d34a4c9893a4c72e0434d68e36artem{
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    struct passwd *pw = NULL;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    struct group *gr = NULL;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    /* determine user id */
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    pw = getpwnam (HAL_USER);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    if (!pw)  {
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        HAL_DEBUG (("drop_privileges: user " HAL_USER " does not exist"));
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        exit (-1);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    }
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    /* determine primary group id */
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    gr = getgrnam (HAL_GROUP);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    if (!gr) {
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        HAL_DEBUG (("drop_privileges: group " HAL_GROUP " does not exist"));
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        exit (-1);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    }
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    if (keep_auxgroups) {
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        if (initgroups (HAL_USER, gr->gr_gid)) {
18c2aff776a775d34a4c9893a4c72e0434d68e36artem            HAL_DEBUG(("drop_privileges: could not initialize groups"));
18c2aff776a775d34a4c9893a4c72e0434d68e36artem            exit (-1);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        }
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    }
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    if (setgid (gr->gr_gid)) {
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        HAL_DEBUG (("drop_privileges: could not set group id"));
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        exit (-1);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    }
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    if (setuid (pw->pw_uid)) {
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        HAL_DEBUG (("drop_privileges: could not set user id"));
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        exit (-1);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    }
18c2aff776a775d34a4c9893a4c72e0434d68e36artem}
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#endif /* !sun */
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artemvoid
18c2aff776a775d34a4c9893a4c72e0434d68e36artemhal_set_proc_title_init (int argc, char *argv[])
18c2aff776a775d34a4c9893a4c72e0434d68e36artem{
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#ifdef __linux__
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    unsigned int i;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    char **new_environ, *endptr;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    /* This code is really really ugly. We make some memory layout
18c2aff776a775d34a4c9893a4c72e0434d68e36artem     * assumptions and reuse the environment array as memory to store
18c2aff776a775d34a4c9893a4c72e0434d68e36artem     * our process title in */
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    for (i = 0; environ[i] != NULL; i++)
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        ;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    endptr = i ? environ[i-1] + strlen (environ[i-1]) : argv[argc-1] + strlen (argv[argc-1]);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    argv_buffer = argv;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    argv_size = endptr - argv_buffer[0];
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    /* Make a copy of environ */
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    new_environ = malloc (sizeof(char*) * (i + 1));
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    for (i = 0; environ[i] != NULL; i++)
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        new_environ[i] = strdup (environ[i]);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    new_environ[i] = NULL;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    environ = new_environ;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#endif
18c2aff776a775d34a4c9893a4c72e0434d68e36artem}
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem/* this code borrowed from avahi-daemon's setproctitle.c (LGPL v2) */
18c2aff776a775d34a4c9893a4c72e0434d68e36artemvoid
18c2aff776a775d34a4c9893a4c72e0434d68e36artemhal_set_proc_title (const char *format, ...)
18c2aff776a775d34a4c9893a4c72e0434d68e36artem{
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#ifdef __linux__
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    size_t len;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    va_list ap;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    if (argv_buffer == NULL)
18c2aff776a775d34a4c9893a4c72e0434d68e36artem        goto out;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    va_start (ap, format);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    vsnprintf (argv_buffer[0], argv_size, format, ap);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    va_end (ap);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    len = strlen (argv_buffer[0]);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    memset (argv_buffer[0] + len, 0, argv_size - len);
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    argv_buffer[1] = NULL;
18c2aff776a775d34a4c9893a4c72e0434d68e36artemout:
18c2aff776a775d34a4c9893a4c72e0434d68e36artem    ;
18c2aff776a775d34a4c9893a4c72e0434d68e36artem#endif
18c2aff776a775d34a4c9893a4c72e0434d68e36artem}
18c2aff776a775d34a4c9893a4c72e0434d68e36artem