| 1 | /* |
1 | /* |
| 2 | util.C -- process management and other utility functions |
2 | util.C -- process management and other utility functions |
| 3 | Copyright (C) 2003 Marc Lehmann <pcg@goof.com> |
3 | Copyright (C) 2003-2011 Marc Lehmann <gvpe@schmorp.de> |
| 4 | |
4 | |
| 5 | Some of these are taken from tinc, see the AUTHORS file. |
5 | Some of these are taken from tinc, see the AUTHORS file. |
| 6 | |
6 | |
|
|
7 | This file is part of GVPE. |
|
|
8 | |
| 7 | This program is free software; you can redistribute it and/or modify |
9 | GVPE is free software; you can redistribute it and/or modify it |
| 8 | it under the terms of the GNU General Public License as published by |
10 | under the terms of the GNU General Public License as published by the |
| 9 | the Free Software Foundation; either version 2 of the License, or |
11 | Free Software Foundation; either version 3 of the License, or (at your |
| 10 | (at your option) any later version. |
12 | option) any later version. |
| 11 | |
13 | |
| 12 | This program is distributed in the hope that it will be useful, |
14 | This program is distributed in the hope that it will be useful, but |
| 13 | but WITHOUT ANY WARRANTY; without even the implied warranty of |
15 | WITHOUT ANY WARRANTY; without even the implied warranty of |
| 14 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
16 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General |
| 15 | GNU General Public License for more details. |
17 | Public License for more details. |
| 16 | |
18 | |
| 17 | You should have received a copy of the GNU General Public License |
19 | You should have received a copy of the GNU General Public License along |
| 18 | along with this program; if not, write to the Free Software |
20 | with this program; if not, see <http://www.gnu.org/licenses/>. |
| 19 | Foundation, Inc. 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA |
21 | |
|
|
22 | Additional permission under GNU GPL version 3 section 7 |
|
|
23 | |
|
|
24 | If you modify this Program, or any covered work, by linking or |
|
|
25 | combining it with the OpenSSL project's OpenSSL library (or a modified |
|
|
26 | version of that library), containing parts covered by the terms of the |
|
|
27 | OpenSSL or SSLeay licenses, the licensors of this Program grant you |
|
|
28 | additional permission to convey the resulting work. Corresponding |
|
|
29 | Source for a non-source form of such a combination shall include the |
|
|
30 | source code for the parts of OpenSSL used as well as that of the |
|
|
31 | covered work. |
| 20 | */ |
32 | */ |
| 21 | |
33 | |
| 22 | #include "config.h" |
34 | #include "config.h" |
| 23 | |
35 | |
| 24 | #include <cstdio> |
36 | #include <cstdio> |
| 25 | #include <cstdlib> |
37 | #include <cstdlib> |
| 26 | #include <cstring> |
38 | #include <cstring> |
|
|
39 | |
|
|
40 | #include <queue> |
| 27 | |
41 | |
| 28 | #include <errno.h> |
42 | #include <errno.h> |
| 29 | #include <signal.h> |
43 | #include <signal.h> |
| 30 | #include <sys/types.h> |
44 | #include <sys/types.h> |
| 31 | #include <sys/wait.h> |
45 | #include <sys/wait.h> |
| 32 | #include <unistd.h> |
46 | #include <unistd.h> |
| 33 | #include <time.h> |
47 | #include <time.h> |
| 34 | |
48 | |
|
|
49 | #if ENABLE_PTHREADS |
|
|
50 | # include <pthread.h> |
|
|
51 | #endif |
|
|
52 | |
|
|
53 | #include <openssl/rand.h> |
|
|
54 | |
| 35 | #include "netcompat.h" |
55 | #include "netcompat.h" |
| 36 | |
56 | |
| 37 | #include "gettext.h" |
57 | #include "gettext.h" |
| 38 | #include "pidfile.h" |
58 | #include "pidfile.h" |
| 39 | #include "dropin.h" |
59 | #include "dropin.h" |
| … | |
… | |
| 46 | int |
66 | int |
| 47 | write_pidfile (void) |
67 | write_pidfile (void) |
| 48 | { |
68 | { |
| 49 | int pid; |
69 | int pid; |
| 50 | |
70 | |
| 51 | pid = check_pid (pidfilename); |
71 | pid = check_pid (conf.pidfilename); |
| 52 | |
72 | |
| 53 | if (pid) |
73 | if (pid) |
| 54 | { |
74 | { |
| 55 | fprintf (stderr, _("A vped is already running with pid %d.\n"), pid); |
75 | fprintf (stderr, _("A gvpe daemon is already running with pid %d.\n"), pid); |
| 56 | return 1; |
76 | return 1; |
| 57 | } |
77 | } |
| 58 | |
78 | |
| 59 | /* if it's locked, write-protected, or whatever */ |
79 | /* if it's locked, write-protected, or whatever */ |
| 60 | if (!write_pid (pidfilename)) |
80 | if (!write_pid (conf.pidfilename)) |
| 61 | return 1; |
81 | return 1; |
| 62 | |
82 | |
| 63 | return 0; |
83 | return 0; |
| 64 | } |
84 | } |
| 65 | |
85 | |
| 66 | int |
86 | int |
| 67 | kill_other (int signal) |
87 | kill_other (int signal) |
| 68 | { |
88 | { |
| 69 | int pid; |
89 | int pid; |
| 70 | |
90 | |
| 71 | pid = read_pid (pidfilename); |
91 | pid = read_pid (conf.pidfilename); |
| 72 | |
92 | |
| 73 | if (!pid) |
93 | if (!pid) |
| 74 | { |
94 | { |
| 75 | fprintf (stderr, _("No other vped is running.\n")); |
95 | fprintf (stderr, _("No other gvpe daemon is running.\n")); |
| 76 | return 1; |
96 | return 1; |
| 77 | } |
97 | } |
| 78 | |
98 | |
| 79 | errno = 0; /* No error, sometimes errno is only changed on error */ |
99 | errno = 0; /* No error, sometimes errno is only changed on error */ |
| 80 | |
100 | |
| 81 | /* ESRCH is returned when no process with that pid is found */ |
101 | /* ESRCH is returned when no process with that pid is found */ |
| 82 | if (kill (pid, signal) && errno == ESRCH) |
102 | if (kill (pid, signal) && errno == ESRCH) |
| 83 | { |
103 | { |
| 84 | fprintf (stderr, _("The vped is no longer running. ")); |
104 | fprintf (stderr, _("The gvpe daemon is no longer running. ")); |
| 85 | |
105 | |
| 86 | fprintf (stderr, _("Removing stale lock file.\n")); |
106 | fprintf (stderr, _("Removing stale lock file.\n")); |
| 87 | remove_pid (pidfilename); |
107 | remove_pid (conf.pidfilename); |
| 88 | } |
108 | } |
| 89 | |
109 | |
| 90 | return 0; |
110 | return 0; |
| 91 | } |
111 | } |
| 92 | |
112 | |
| … | |
… | |
| 112 | return -1; |
132 | return -1; |
| 113 | } |
133 | } |
| 114 | |
134 | |
| 115 | /* Now UPDATE the pid in the pidfile, because we changed it... */ |
135 | /* Now UPDATE the pid in the pidfile, because we changed it... */ |
| 116 | |
136 | |
| 117 | if (!write_pid (pidfilename)) |
137 | if (!write_pid (conf.pidfilename)) |
| 118 | return -1; |
138 | return -1; |
| 119 | |
139 | |
| 120 | log_to (LOGTO_SYSLOG); |
140 | log_to (LOGTO_SYSLOG); |
| 121 | } |
141 | } |
| 122 | else |
142 | else |
| 123 | log_to (LOGTO_SYSLOG | LOGTO_STDERR); |
143 | log_to (LOGTO_SYSLOG | LOGTO_STDERR); |
| 124 | |
144 | |
| 125 | slog (L_INFO, _("vped %s (%s %s) starting"), VERSION, __DATE__, __TIME__); |
145 | slog (L_INFO, _("gvpe daemon %s (%s %s) starting up."), VERSION, __DATE__, __TIME__); |
| 126 | |
146 | |
| 127 | return 0; |
147 | return 0; |
| 128 | } |
148 | } |
| 129 | |
149 | |
| 130 | void |
150 | /*****************************************************************************/ |
| 131 | make_names (void) |
|
|
| 132 | { |
|
|
| 133 | if (!pidfilename) |
|
|
| 134 | pidfilename = LOCALSTATEDIR "/run/vped.pid"; |
|
|
| 135 | |
151 | |
| 136 | if (!confbase) |
152 | pid_t |
| 137 | asprintf (&confbase, "%s/vpe", CONFDIR); |
|
|
| 138 | } |
|
|
| 139 | |
|
|
| 140 | void run_script (const run_script_cb &cb, bool wait) |
153 | run_script (const run_script_cb &cb, bool wait) |
| 141 | { |
154 | { |
| 142 | int pid; |
155 | sigset_t oldset; |
| 143 | |
156 | |
| 144 | if ((pid = fork ()) == 0) |
157 | if (wait) |
|
|
158 | { |
|
|
159 | sigset_t sigchld; |
|
|
160 | sigemptyset (&sigchld); |
|
|
161 | sigaddset (&sigchld, SIGCHLD); |
|
|
162 | sigprocmask (SIG_BLOCK, &sigchld, &oldset); |
| 145 | { |
163 | } |
| 146 | char *filename; |
164 | |
| 147 | asprintf (&filename, "%s/%s", confbase, cb()); |
165 | pid_t pid = fork (); |
| 148 | execl (filename, filename, (char *) 0); |
166 | |
| 149 | exit (126); |
167 | if (pid == 0) |
|
|
168 | { |
|
|
169 | sigprocmask (SIG_SETMASK, &oldset, 0); |
|
|
170 | |
|
|
171 | execl ("/bin/sh", "/bin/sh", "-c", cb (), (char *) 0); |
|
|
172 | exit (EXIT_FAILURE); |
| 150 | } |
173 | } |
| 151 | else if (pid > 0) |
174 | else if (pid > 0) |
| 152 | { |
175 | { |
| 153 | if (wait) |
176 | if (wait) |
| 154 | { |
177 | { |
|
|
178 | int status; |
| 155 | waitpid (pid, 0, 0); |
179 | int res = waitpid (pid, &status, 0); |
| 156 | /* TODO: check status */ |
180 | |
|
|
181 | sigprocmask (SIG_SETMASK, &oldset, 0); |
|
|
182 | |
|
|
183 | if (res < 0) |
|
|
184 | { |
|
|
185 | slog (L_WARN, _("waiting for an external command failed: %s."), |
|
|
186 | strerror (errno)); |
|
|
187 | return 0; |
|
|
188 | } |
|
|
189 | else if (!WIFEXITED (status) || WEXITSTATUS (status) != EXIT_SUCCESS) |
|
|
190 | { |
|
|
191 | slog (L_WARN, _("external command returned with exit status %d (%04x)."), |
|
|
192 | WEXITSTATUS (status), status); |
|
|
193 | return 0; |
|
|
194 | } |
| 157 | } |
195 | } |
| 158 | } |
196 | } |
|
|
197 | else |
|
|
198 | { |
|
|
199 | slog (L_ERR, _("unable to fork, exiting: %s"), strerror (errno)); |
|
|
200 | exit (EXIT_FAILURE); |
|
|
201 | } |
|
|
202 | |
|
|
203 | return pid; |
| 159 | } |
204 | } |
|
|
205 | |
|
|
206 | /*****************************************************************************/ |
|
|
207 | |
|
|
208 | #if 0 /* not yet used */ |
|
|
209 | |
|
|
210 | #if ENABLE_PTHREADS |
|
|
211 | struct async_cb |
|
|
212 | { |
|
|
213 | callback<void ()> work_cb; |
|
|
214 | callback<void ()> done_cb; |
|
|
215 | }; |
|
|
216 | |
|
|
217 | static ev::async async_done_w; |
|
|
218 | static std::queue< callback<void ()> > async_q; |
|
|
219 | |
|
|
220 | static callback<void ()> work_cb; |
|
|
221 | |
|
|
222 | static void * |
|
|
223 | async_exec (void *) |
|
|
224 | { |
|
|
225 | work_cb (); |
|
|
226 | async_done_w.send (); |
|
|
227 | |
|
|
228 | return 0; |
|
|
229 | } |
|
|
230 | |
|
|
231 | static void |
|
|
232 | async_q_next () |
|
|
233 | { |
|
|
234 | work_cb = async_q.front (); async_q.pop (); |
|
|
235 | |
|
|
236 | sigset_t fullsigset, oldsigset; |
|
|
237 | pthread_attr_t attr; |
|
|
238 | pthread_t tid; |
|
|
239 | |
|
|
240 | pthread_attr_init (&attr); |
|
|
241 | pthread_attr_setdetachstate (&attr, PTHREAD_CREATE_DETACHED); |
|
|
242 | //pthread_attr_setstacksize (&attr, PTHREAD_STACK_MIN < X_STACKSIZE ? X_STACKSIZE : PTHREAD_STACK_MIN); |
|
|
243 | sigfillset (&fullsigset); |
|
|
244 | pthread_sigmask (SIG_SETMASK, &fullsigset, &oldsigset); |
|
|
245 | |
|
|
246 | if (pthread_create (&tid, &attr, async_exec, 0)) |
|
|
247 | async_exec (0); |
|
|
248 | |
|
|
249 | pthread_sigmask (SIG_SETMASK, &oldsigset, 0); |
|
|
250 | pthread_attr_destroy (&attr); |
|
|
251 | } |
|
|
252 | |
|
|
253 | namespace { |
|
|
254 | void |
|
|
255 | async_done (ev::async &w, int revents) |
|
|
256 | { |
|
|
257 | callback<void ()> done_cb = async_q.front (); async_q.pop (); |
|
|
258 | |
|
|
259 | if (async_q.empty ()) |
|
|
260 | async_done_w.stop (); |
|
|
261 | else |
|
|
262 | async_q_next (); |
|
|
263 | |
|
|
264 | done_cb (); |
|
|
265 | } |
|
|
266 | }; |
|
|
267 | |
|
|
268 | void |
|
|
269 | async (callback<void ()> work_cb, callback<void ()> done_cb) |
|
|
270 | { |
|
|
271 | bool was_empty = async_q.empty (); |
|
|
272 | |
|
|
273 | async_q.push (work_cb); |
|
|
274 | async_q.push (done_cb); |
|
|
275 | |
|
|
276 | if (was_empty) |
|
|
277 | { |
|
|
278 | async_done_w.set<async_done> (); |
|
|
279 | async_done_w.start (); |
|
|
280 | async_q_next (); |
|
|
281 | } |
|
|
282 | } |
|
|
283 | |
|
|
284 | #else |
|
|
285 | |
|
|
286 | void |
|
|
287 | async (callback<void ()> work_cb, callback<void ()> done_cb) |
|
|
288 | { |
|
|
289 | work_cb (); |
|
|
290 | done_cb (); |
|
|
291 | } |
|
|
292 | |
|
|
293 | #endif |
|
|
294 | |
|
|
295 | #endif |
|
|
296 | |
|
|
297 | /*****************************************************************************/ |
|
|
298 | |
|
|
299 | void hexdump (const char *header, void *data, int len) |
|
|
300 | { |
|
|
301 | u8 *p = (u8 *)data; |
|
|
302 | |
|
|
303 | printf ("%s:", header); |
|
|
304 | |
|
|
305 | while (len--) |
|
|
306 | printf (" %02x", *p++); |
|
|
307 | |
|
|
308 | printf ("\n"); |
|
|
309 | } |
|
|
310 | |
|
|
311 | /*****************************************************************************/ |
| 160 | |
312 | |
| 161 | #if ENABLE_HTTP_PROXY |
313 | #if ENABLE_HTTP_PROXY |
| 162 | // works like strdup |
314 | // works like strdup |
| 163 | u8 * |
315 | u8 * |
| 164 | base64_encode (const u8 *data, unsigned int len) |
316 | base64_encode (const u8 *data, unsigned int len) |
| … | |
… | |
| 229 | p[4] = 0xff; |
381 | p[4] = 0xff; |
| 230 | p[5] = 0xff; |
382 | p[5] = 0xff; |
| 231 | } |
383 | } |
| 232 | } |
384 | } |
| 233 | |
385 | |
|
|
386 | /*****************************************************************************/ |
|
|
387 | |
|
|
388 | void rand_fill (void *data, int len) |
|
|
389 | { |
|
|
390 | int l = RAND_bytes ((unsigned char *)data, len); |
|
|
391 | |
|
|
392 | if (l > 0) |
|
|
393 | return; |
|
|
394 | else if (l == 0) |
|
|
395 | slog (L_WARN, _("Not enough random entropy to generate secure keys. Using weaker pseudo-random session keys.")); |
|
|
396 | else |
|
|
397 | fatal (_("RAND_bytes failed, aborting.")); |
|
|
398 | } |
|
|
399 | |
