1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
25 #include <sys/inotify.h>
28 #include <sys/socket.h>
32 #include <sys/signalfd.h>
38 #include "ask-password-api.h"
40 static void backspace_chars(int ttyfd, size_t p) {
48 loop_write(ttyfd, "\b \b", 3, false);
55 const char *flag_file,
58 struct termios old_termios, new_termios;
59 char passphrase[LINE_MAX];
61 int r, ttyfd = -1, notify = -1;
62 struct pollfd pollfd[2];
63 bool reset_tty = false;
64 bool silent_mode = false;
75 if ((notify = inotify_init1(IN_CLOEXEC|IN_NONBLOCK)) < 0) {
80 if (inotify_add_watch(notify, flag_file, IN_ATTRIB /* for the link count */) < 0) {
81 log_error("Failed to add watch on %s: %m", flag_file);
87 if ((ttyfd = open("/dev/tty", O_RDWR|O_NOCTTY|O_CLOEXEC)) >= 0) {
89 if (tcgetattr(ttyfd, &old_termios) < 0) {
94 loop_write(ttyfd, ANSI_HIGHLIGHT_ON, sizeof(ANSI_HIGHLIGHT_ON)-1, false);
95 loop_write(ttyfd, message, strlen(message), false);
96 loop_write(ttyfd, " ", 1, false);
97 loop_write(ttyfd, ANSI_HIGHLIGHT_OFF, sizeof(ANSI_HIGHLIGHT_OFF)-1, false);
99 new_termios = old_termios;
100 new_termios.c_lflag &= ~(ICANON|ECHO);
101 new_termios.c_cc[VMIN] = 1;
102 new_termios.c_cc[VTIME] = 0;
104 if (tcsetattr(ttyfd, TCSADRAIN, &new_termios) < 0) {
114 pollfd[POLL_TTY].fd = ttyfd >= 0 ? ttyfd : STDIN_FILENO;
115 pollfd[POLL_TTY].events = POLLIN;
116 pollfd[POLL_INOTIFY].fd = notify;
117 pollfd[POLL_INOTIFY].events = POLLIN;
121 int sleep_for = -1, k;
127 y = now(CLOCK_MONOTONIC);
134 sleep_for = (int) ((until - y) / USEC_PER_MSEC);
138 if (access(flag_file, F_OK) < 0) {
143 if ((k = poll(pollfd, notify > 0 ? 2 : 1, sleep_for)) < 0) {
155 if (notify > 0 && pollfd[POLL_INOTIFY].revents != 0)
158 if (pollfd[POLL_TTY].revents == 0)
161 if ((n = read(ttyfd >= 0 ? ttyfd : STDIN_FILENO, &c, 1)) < 0) {
163 if (errno == EINTR || errno == EAGAIN)
174 else if (c == 21) { /* C-u */
177 backspace_chars(ttyfd, p);
180 } else if (c == '\b' || c == 127) {
185 backspace_chars(ttyfd, 1);
188 } else if (!dirty && !silent_mode) {
192 /* There are two ways to enter silent
193 * mode. Either by pressing backspace
194 * as first key (and only as first key),
197 loop_write(ttyfd, "(no echo) ", 10, false);
199 } else if (ttyfd >= 0)
200 loop_write(ttyfd, "\a", 1, false);
202 } else if (c == '\t' && !silent_mode) {
204 backspace_chars(ttyfd, p);
207 /* ... or by pressing TAB at any time. */
210 loop_write(ttyfd, "(no echo) ", 10, false);
214 if (!silent_mode && ttyfd >= 0)
215 loop_write(ttyfd, "*", 1, false);
223 if (!(*_passphrase = strdup(passphrase))) {
232 close_nointr_nofail(notify);
237 loop_write(ttyfd, "\n", 1, false);
238 tcsetattr(ttyfd, TCSADRAIN, &old_termios);
241 close_nointr_nofail(ttyfd);
247 static int create_socket(char **name) {
251 struct sockaddr_un un;
259 if ((fd = socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0)) < 0) {
260 log_error("socket() failed: %m");
265 sa.un.sun_family = AF_UNIX;
266 snprintf(sa.un.sun_path, sizeof(sa.un.sun_path)-1, "/run/systemd/ask-password/sck.%llu", random_ull());
269 r = bind(fd, &sa.sa, offsetof(struct sockaddr_un, sun_path) + strlen(sa.un.sun_path));
274 log_error("bind() failed: %m");
278 if (setsockopt(fd, SOL_SOCKET, SO_PASSCRED, &one, sizeof(one)) < 0) {
280 log_error("SO_PASSCRED failed: %m");
284 if (!(c = strdup(sa.un.sun_path))) {
293 close_nointr_nofail(fd);
298 int ask_password_agent(
303 char ***_passphrases) {
311 char temp[] = "/run/systemd/ask-password/tmp.XXXXXX";
312 char final[sizeof(temp)] = "";
315 char *socket_name = NULL;
316 int socket_fd = -1, signal_fd = -1;
317 sigset_t mask, oldmask;
318 struct pollfd pollfd[_FD_MAX];
321 assert(_passphrases);
323 assert_se(sigemptyset(&mask) == 0);
324 sigset_add_many(&mask, SIGINT, SIGTERM, -1);
325 assert_se(sigprocmask(SIG_BLOCK, &mask, &oldmask) == 0);
327 mkdir_p_label("/run/systemd/ask-password", 0755);
330 fd = mkostemp(temp, O_CLOEXEC|O_CREAT|O_WRONLY);
334 log_error("Failed to create password file: %m");
341 if (!(f = fdopen(fd, "w"))) {
342 log_error("Failed to allocate FILE: %m");
349 if ((signal_fd = signalfd(-1, &mask, SFD_NONBLOCK|SFD_CLOEXEC)) < 0) {
350 log_error("signalfd(): %m");
355 if ((socket_fd = create_socket(&socket_name)) < 0) {
366 (unsigned long) getpid(),
368 accept_cached ? 1 : 0,
369 (unsigned long long) until);
372 fprintf(f, "Message=%s\n", message);
375 fprintf(f, "Icon=%s\n", icon);
380 log_error("Failed to write query file: %m");
385 memcpy(final, temp, sizeof(temp));
387 final[sizeof(final)-11] = 'a';
388 final[sizeof(final)-10] = 's';
389 final[sizeof(final)-9] = 'k';
391 if (rename(temp, final) < 0) {
392 log_error("Failed to rename query file: %m");
398 pollfd[FD_SOCKET].fd = socket_fd;
399 pollfd[FD_SOCKET].events = POLLIN;
400 pollfd[FD_SIGNAL].fd = signal_fd;
401 pollfd[FD_SIGNAL].events = POLLIN;
404 char passphrase[LINE_MAX+1];
405 struct msghdr msghdr;
409 struct cmsghdr cmsghdr;
410 uint8_t buf[CMSG_SPACE(sizeof(struct ucred))];
416 t = now(CLOCK_MONOTONIC);
418 if (until > 0 && until <= t) {
419 log_notice("Timed out");
424 if ((k = poll(pollfd, _FD_MAX, until > 0 ? (int) ((until-t)/USEC_PER_MSEC) : -1)) < 0) {
429 log_error("poll() failed: %m");
435 log_notice("Timed out");
440 if (pollfd[FD_SIGNAL].revents & POLLIN) {
445 if (pollfd[FD_SOCKET].revents != POLLIN) {
446 log_error("Unexpected poll() event.");
452 iovec.iov_base = passphrase;
453 iovec.iov_len = sizeof(passphrase);
457 msghdr.msg_iov = &iovec;
458 msghdr.msg_iovlen = 1;
459 msghdr.msg_control = &control;
460 msghdr.msg_controllen = sizeof(control);
462 if ((n = recvmsg(socket_fd, &msghdr, 0)) < 0) {
464 if (errno == EAGAIN ||
468 log_error("recvmsg() failed: %m");
474 log_error("Message too short");
478 if (msghdr.msg_controllen < CMSG_LEN(sizeof(struct ucred)) ||
479 control.cmsghdr.cmsg_level != SOL_SOCKET ||
480 control.cmsghdr.cmsg_type != SCM_CREDENTIALS ||
481 control.cmsghdr.cmsg_len != CMSG_LEN(sizeof(struct ucred))) {
482 log_warning("Received message without credentials. Ignoring.");
486 ucred = (struct ucred*) CMSG_DATA(&control.cmsghdr);
487 if (ucred->uid != 0) {
488 log_warning("Got request from unprivileged user. Ignoring.");
492 if (passphrase[0] == '+') {
496 l = strv_new("", NULL);
498 l = strv_parse_nulstr(passphrase+1, n-1);
499 /* An empty message refers to the empty password */
506 if (strv_length(l) <= 0) {
508 log_error("Invalid packet");
514 } else if (passphrase[0] == '-') {
518 log_error("Invalid packet");
529 close_nointr_nofail(fd);
537 close_nointr_nofail(socket_fd);
540 close_nointr_nofail(signal_fd);
550 assert_se(sigprocmask(SIG_SETMASK, &oldmask, NULL) == 0);
555 int ask_password_auto(const char *message, const char *icon, usec_t until, bool accept_cached, char ***_passphrases) {
557 assert(_passphrases);
559 if (isatty(STDIN_FILENO)) {
561 char *s = NULL, **l = NULL;
563 if ((r = ask_password_tty(message, until, NULL, &s)) < 0)
566 l = strv_new(s, NULL);
576 return ask_password_agent(message, icon, until, accept_cached, _passphrases);
~ianmdlvl / elogind.git / blob