/* -*-c-*-
*
- * $Id: exec.c,v 1.2 1999/10/22 22:46:17 mdw Exp $
+ * $Id: exec.c,v 1.8 2003/11/29 20:36:07 mdw Exp $
*
* Source and target for executable programs
*
/*----- Revision history --------------------------------------------------*
*
* $Log: exec.c,v $
+ * Revision 1.8 2003/11/29 20:36:07 mdw
+ * Privileged outgoing connections.
+ *
+ * Revision 1.7 2003/01/24 20:12:26 mdw
+ * Correctly cast uid and gid sentinel values. Parse full filenames in
+ * exec arguments (can't do it for program, unfortunately, since the die is
+ * cast).
+ *
+ * Revision 1.6 2002/02/22 23:43:32 mdw
+ * Call @xfree@ rather than @free@.
+ *
+ * Revision 1.5 2002/01/13 14:49:03 mdw
+ * Track @lbuf@ changes in mLib.
+ *
+ * Revision 1.4 2001/02/03 20:30:03 mdw
+ * Support re-reading config files on SIGHUP.
+ *
+ * Revision 1.3 2000/07/01 11:28:52 mdw
+ * Use new mLib selbuf features.
+ *
* Revision 1.2 1999/10/22 22:46:17 mdw
* When a non-file endpoint is attached to a file, keep the file endpoint
* open until the nonfile is done. This stops socket sources from
struct xept *next, *prev;
pid_t kid;
endpt *f;
- const char *desc;
+ char *desc;
int st;
xargs *xa;
xopts *xo;
while (xe) {
xenv *xxe = xe;
xe = xe->next;
- free(xxe->name);
+ xfree(xxe->name);
if (xxe->value)
- free(xxe->value);
+ xfree(xxe->value);
DESTROY(xxe);
}
}
{
xa->ref--;
if (!xa->ref)
- free(xa);
+ xfree(xa);
xo->ref--;
if (!xo->ref) {
/* --- @attach@ --- */
-static void xept_error(char */*p*/, void */*v*/);
+static void xept_error(char */*p*/, size_t /*len*/, void */*v*/);
static void xept_attach(endpt *e, reffd *in, reffd *out)
{
/* --- Set group id --- */
- if (xo->gid != -1) {
+ if (xo->gid != (gid_t)-1) {
if (setgid(xo->gid)) {
moan("couldn't set gid %i: %s", xo->gid, strerror(errno));
_exit(1);
/* --- Set uid --- */
- if (xo->uid != -1) {
+ if (xo->uid != (uid_t)-1) {
if (setuid(xo->uid)) {
moan("couldn't set uid %i: %s", xo->uid, strerror(errno));
_exit(1);
else
xept_list = xe->next;
+ xfree(xe->desc);
if (xe->f)
xe->f->ops->close(xe->f);
x_tidy(xe->xa, xe->xo);
/* --- @xept_error@ --- *
*
* Arguments: @char *p@ = pointer to string read from stderr
+ * @size_t len@ = length of the string
* @void *v@ = pointer to by endpoint
*
* Returns: ---
* Use: Handles error reports from a child process.
*/
-static void xept_error(char *p, void *v)
+static void xept_error(char *p, size_t len, void *v)
{
xept *xe = v;
if (p)
fw_log(-1, "[%s] pid %i: %s", xe->desc, xe->kid, p);
else {
- selbuf_disable(&xe->err);
close(xe->err.reader.fd);
+ selbuf_destroy(&xe->err);
xe->e.f |= XEF_CLOSE;
if (xe->e.f & XEF_EXIT)
xept_destroy(xe);
void exec_init(void)
{
+#ifdef HAVE_SETRLIMIT
rlimit_get(&exec_opts.xl);
+#endif
sig_add(&xept_sig, SIGCHLD, xept_chld, 0);
sym_create(&env);
env_import(&env, environ);
/* --- Now try resource limit settings --- */
+#ifdef HAVE_SETRLIMIT
if (rlimit_option(&xo->xl, sc))
CONF_ACCEPT;
+#endif
/* --- And then environment settings --- */
char *p, *q;
char **v;
- /* --- Strip off the leading `[' --- */
+ /* --- Strip off the leading `[' --- *
+ *
+ * Allow various handy filename characters to be entered without quoting.
+ */
+ conf_undelim(sc, "=:/.", "=:/.");
token(sc);
/* --- Read a sequence of arguments --- */
token(sc);
argc++;
}
+ conf_undelim(sc, 0, 0);
/* --- Expect the closing `]' --- */
xe->xo = x->xo; xe->xo->ref++;
xe->kid = -1;
xe->f = 0;
- xe->desc = desc;
+ xe->desc = xstrdup(desc);
return (&xe->e);
}
static void xsource_destroy(source *s)
{
xsource *xs = (xsource *)s;
+ xfree(xs->s.desc);
exec_destroy(&xs->x);
DESTROY(xs);
}
static void xtarget_destroy(target *t)
{
xtarget *xt = (xtarget *)t;
+ xfree(xt->t.desc);
exec_destroy(&xt->x);
DESTROY(xt);
}
target_ops xtarget_ops = {
"exec",
- xtarget_option, xtarget_read, xtarget_create, xtarget_destroy
+ xtarget_option, xtarget_read, 0, xtarget_create, xtarget_destroy
};
/*----- That's all, folks -------------------------------------------------*/