/* -*-c-*-
- *
- * $Id: exec.c,v 1.3 2000/07/01 11:28:52 mdw Exp $
*
* Source and target for executable programs
*
* (c) 1999 Straylight/Edgeware
*/
-/*----- Licensing notice --------------------------------------------------*
+/*----- Licensing notice --------------------------------------------------*
*
- * This file is part of the `fw' port forwarder.
+ * This file is part of the `fwd' port forwarder.
*
- * `fw' is free software; you can redistribute it and/or modify
+ * `fwd' is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
- *
- * `fw' is distributed in the hope that it will be useful,
+ *
+ * `fwd' is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
- *
+ *
* You should have received a copy of the GNU General Public License
- * along with `fw'; if not, write to the Free Software Foundation,
+ * along with `fwd'; if not, write to the Free Software Foundation,
* Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
*/
-/*----- Revision history --------------------------------------------------*
- *
- * $Log: exec.c,v $
- * Revision 1.3 2000/07/01 11:28:52 mdw
- * Use new mLib selbuf features.
- *
- * Revision 1.2 1999/10/22 22:46:17 mdw
- * When a non-file endpoint is attached to a file, keep the file endpoint
- * open until the nonfile is done. This stops socket sources from
- * resetting their connection limits too early.
- *
- * Revision 1.1 1999/07/26 23:33:32 mdw
- * New sources and targets.
- *
- */
-
-/*----- Header files ------------------------------------------------------*/
-
-#include "config.h"
-
-#define _GNU_SOURCE
-
-#include <ctype.h>
-#include <errno.h>
-#include <signal.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <sys/types.h>
-#include <sys/stat.h>
-#include <unistd.h>
-#include <fcntl.h>
-#include <sys/wait.h>
-
-#ifdef HAVE_SETRLIMIT
-# include <sys/resource.h>
-#endif
-
-#ifndef DECL_ENVIRON
- extern char **environ;
-#endif
-
-#include <pwd.h>
-#include <grp.h>
-
-#include <syslog.h>
-
-#include <mLib/alloc.h>
-#include <mLib/dstr.h>
-#include <mLib/env.h>
-#include <mLib/fdflags.h>
-#include <mLib/report.h>
-#include <mLib/sel.h>
-#include <mLib/selbuf.h>
-#include <mLib/sig.h>
-#include <mLib/sub.h>
-#include <mLib/sym.h>
-
-#include "conf.h"
-#include "endpt.h"
-#include "exec.h"
-#include "fattr.h"
-#include "fw.h"
-#include "reffd.h"
-#include "scan.h"
-#include "source.h"
-#include "target.h"
+#include "fwd.h"
/*----- Data structures ---------------------------------------------------*/
struct xept *next, *prev;
pid_t kid;
endpt *f;
- const char *desc;
+ char *desc;
int st;
xargs *xa;
xopts *xo;
while (xe) {
xenv *xxe = xe;
xe = xe->next;
- free(xxe->name);
+ xfree(xxe->name);
if (xxe->value)
- free(xxe->value);
+ xfree(xxe->value);
DESTROY(xxe);
}
}
{
xa->ref--;
if (!xa->ref)
- free(xa);
+ xfree(xa);
xo->ref--;
if (!xo->ref) {
/* --- @attach@ --- */
-static void xept_error(char */*p*/, void */*v*/);
+static void xept_error(char */*p*/, size_t /*len*/, void */*v*/);
static void xept_attach(endpt *e, reffd *in, reffd *out)
{
/* --- Set group id --- */
- if (xo->gid != -1) {
+ if (xo->gid != (gid_t)-1) {
if (setgid(xo->gid)) {
moan("couldn't set gid %i: %s", xo->gid, strerror(errno));
_exit(1);
/* --- Set uid --- */
- if (xo->uid != -1) {
+ if (xo->uid != (uid_t)-1) {
if (setuid(xo->uid)) {
moan("couldn't set uid %i: %s", xo->uid, strerror(errno));
_exit(1);
else
xept_list = xe->next;
+ xfree(xe->desc);
if (xe->f)
xe->f->ops->close(xe->f);
x_tidy(xe->xa, xe->xo);
/* --- @xept_error@ --- *
*
* Arguments: @char *p@ = pointer to string read from stderr
+ * @size_t len@ = length of the string
* @void *v@ = pointer to by endpoint
*
* Returns: ---
* Use: Handles error reports from a child process.
*/
-static void xept_error(char *p, void *v)
+static void xept_error(char *p, size_t len, void *v)
{
xept *xe = v;
if (p)
void exec_init(void)
{
+#ifdef HAVE_SETRLIMIT
rlimit_get(&exec_opts.xl);
+#endif
sig_add(&xept_sig, SIGCHLD, xept_chld, 0);
sym_create(&env);
env_import(&env, environ);
/* --- Set a chroot prison --- */
if (strcmp(sc->d.buf, "root") == 0 ||
- strcmp(sc->d.buf, "chroot") == 0) {
+ strcmp(sc->d.buf, "chroot") == 0) {
dstr d = DSTR_INIT;
token(sc);
if (sc->t == '=')
/* --- Now try resource limit settings --- */
+#ifdef HAVE_SETRLIMIT
if (rlimit_option(&xo->xl, sc))
CONF_ACCEPT;
+#endif
/* --- And then environment settings --- */
char *p, *q;
char **v;
- /* --- Strip off the leading `[' --- */
+ /* --- Strip off the leading `[' --- *
+ *
+ * Allow various handy filename characters to be entered without quoting.
+ */
+ conf_undelim(sc, "=:/.", "=:/.");
token(sc);
/* --- Read a sequence of arguments --- */
token(sc);
argc++;
}
+ conf_undelim(sc, 0, 0);
/* --- Expect the closing `]' --- */
xe->xo = x->xo; xe->xo->ref++;
xe->kid = -1;
xe->f = 0;
- xe->desc = desc;
+ xe->desc = xstrdup(desc);
return (&xe->e);
}
static void xsource_destroy(source *s)
{
xsource *xs = (xsource *)s;
+ xfree(xs->s.desc);
exec_destroy(&xs->x);
DESTROY(xs);
}
static void xtarget_destroy(target *t)
{
xtarget *xt = (xtarget *)t;
+ xfree(xt->t.desc);
exec_destroy(&xt->x);
DESTROY(xt);
}
target_ops xtarget_ops = {
"exec",
- xtarget_option, xtarget_read, xtarget_create, xtarget_destroy
+ xtarget_option, xtarget_read, 0, xtarget_create, xtarget_destroy
};
/*----- That's all, folks -------------------------------------------------*/