| … | |
… | |
| 46 | |
46 | |
| 47 | #ifdef HAVE_TERMIOS_H |
47 | #ifdef HAVE_TERMIOS_H |
| 48 | # include <termios.h> |
48 | # include <termios.h> |
| 49 | #endif |
49 | #endif |
| 50 | |
50 | |
|
|
51 | #if (defined(HAVE_SETEUID) || defined(HAVE_SETREUID)) && !defined(__CYGWIN32__) |
|
|
52 | static uid_t saved_euid; |
|
|
53 | static gid_t saved_egid; |
|
|
54 | #endif |
|
|
55 | |
|
|
56 | bool |
|
|
57 | rxvt_tainted () |
|
|
58 | { |
|
|
59 | #if (defined(HAVE_SETEUID) || defined(HAVE_SETREUID)) && !defined(__CYGWIN32__) |
|
|
60 | return getuid () != saved_euid || getgid () != saved_egid; |
|
|
61 | #else |
|
|
62 | return false; |
|
|
63 | #endif |
|
|
64 | } |
|
|
65 | |
| 51 | vector<rxvt_term *> rxvt_term::termlist; |
66 | vector<rxvt_term *> rxvt_term::termlist; |
| 52 | |
67 | |
| 53 | static char curlocale[128], savelocale[128]; |
68 | static char curlocale[128], savelocale[128]; |
| 54 | |
69 | |
| 55 | bool |
70 | bool |
| … | |
… | |
| 61 | strncpy (curlocale, locale, 128); |
76 | strncpy (curlocale, locale, 128); |
| 62 | setlocale (LC_CTYPE, curlocale); |
77 | setlocale (LC_CTYPE, curlocale); |
| 63 | return true; |
78 | return true; |
| 64 | } |
79 | } |
| 65 | |
80 | |
| 66 | bool |
81 | void |
| 67 | rxvt_push_locale (const char *locale) |
82 | rxvt_push_locale (const char *locale) |
| 68 | { |
83 | { |
| 69 | strcpy (savelocale, curlocale); |
84 | strcpy (savelocale, curlocale); |
| 70 | rxvt_set_locale (locale); |
85 | rxvt_set_locale (locale); |
| 71 | } |
86 | } |
| … | |
… | |
| 494 | |
509 | |
| 495 | if ((rs[Rs_perl_ext_1] && *rs[Rs_perl_ext_1]) |
510 | if ((rs[Rs_perl_ext_1] && *rs[Rs_perl_ext_1]) |
| 496 | || (rs[Rs_perl_ext_2] && *rs[Rs_perl_ext_2]) |
511 | || (rs[Rs_perl_ext_2] && *rs[Rs_perl_ext_2]) |
| 497 | || (rs[Rs_perl_eval] && *rs[Rs_perl_eval])) |
512 | || (rs[Rs_perl_eval] && *rs[Rs_perl_eval])) |
| 498 | { |
513 | { |
|
|
514 | #if (defined(HAVE_SETEUID) || defined(HAVE_SETREUID)) && !defined(__CYGWIN32__) |
|
|
515 | // ignore some perl-related arguments if some bozo installed us set[ug]id |
|
|
516 | if (rxvt_tainted ()) |
|
|
517 | { |
|
|
518 | if ((rs[Rs_perl_lib] && *rs[Rs_perl_lib]) |
|
|
519 | || (rs[Rs_perl_eval] && *rs[Rs_perl_eval])) |
|
|
520 | { |
|
|
521 | rxvt_warn ("running with elevated privileges: ignoring perl-lib and perl-eval.\n"); |
|
|
522 | rs[Rs_perl_lib] = 0; |
|
|
523 | rs[Rs_perl_eval] = 0; |
|
|
524 | } |
|
|
525 | } |
|
|
526 | #endif |
| 499 | rxvt_perl.init (); |
527 | rxvt_perl.init (); |
| 500 | HOOK_INVOKE ((this, HOOK_INIT, DT_END)); |
528 | HOOK_INVOKE ((this, HOOK_INIT, DT_END)); |
| 501 | } |
529 | } |
| 502 | #endif |
530 | #endif |
| 503 | |
531 | |
| … | |
… | |
| 613 | /* signal (SIGURG, SIG_DFL); */ |
641 | /* signal (SIGURG, SIG_DFL); */ |
| 614 | |
642 | |
| 615 | old_xerror_handler = XSetErrorHandler ((XErrorHandler) rxvt_xerror_handler); |
643 | old_xerror_handler = XSetErrorHandler ((XErrorHandler) rxvt_xerror_handler); |
| 616 | // TODO: handle this with exceptions and tolerate the memory loss |
644 | // TODO: handle this with exceptions and tolerate the memory loss |
| 617 | XSetIOErrorHandler (rxvt_xioerror_handler); |
645 | XSetIOErrorHandler (rxvt_xioerror_handler); |
|
|
646 | |
|
|
647 | XrmInitialize (); |
| 618 | } |
648 | } |
| 619 | |
649 | |
| 620 | /* ------------------------------------------------------------------------- * |
650 | /* ------------------------------------------------------------------------- * |
| 621 | * MEMORY ALLOCATION WRAPPERS * |
651 | * MEMORY ALLOCATION WRAPPERS * |
| 622 | * ------------------------------------------------------------------------- */ |
652 | * ------------------------------------------------------------------------- */ |
| … | |
… | |
| 658 | * ------------------------------------------------------------------------- */ |
688 | * ------------------------------------------------------------------------- */ |
| 659 | /* take care of suid/sgid super-user (root) privileges */ |
689 | /* take care of suid/sgid super-user (root) privileges */ |
| 660 | void |
690 | void |
| 661 | rxvt_privileges (rxvt_privaction action) |
691 | rxvt_privileges (rxvt_privaction action) |
| 662 | { |
692 | { |
| 663 | #if (defined(HAVE_SETEUID) || defined(HAVE_SETREUID)) && !defined(__CYGWIN32__) |
|
|
| 664 | static uid_t euid; |
|
|
| 665 | static gid_t egid; |
|
|
| 666 | #endif |
|
|
| 667 | |
|
|
| 668 | #if ! defined(__CYGWIN32__) |
693 | #if ! defined(__CYGWIN32__) |
| 669 | # if !defined(HAVE_SETEUID) && defined(HAVE_SETREUID) |
694 | # if !defined(HAVE_SETEUID) && defined(HAVE_SETREUID) |
| 670 | /* setreuid () is the poor man's setuid (), seteuid () */ |
695 | /* setreuid () is the poor man's setuid (), seteuid () */ |
| 671 | # define seteuid(a) setreuid(-1, (a)) |
696 | # define seteuid(a) setreuid(-1, (a)) |
| 672 | # define setegid(a) setregid(-1, (a)) |
697 | # define setegid(a) setregid(-1, (a)) |
| … | |
… | |
| 682 | */ |
707 | */ |
| 683 | seteuid (getuid ()); |
708 | seteuid (getuid ()); |
| 684 | setegid (getgid ()); |
709 | setegid (getgid ()); |
| 685 | break; |
710 | break; |
| 686 | case SAVE: |
711 | case SAVE: |
| 687 | euid = geteuid (); |
712 | saved_euid = geteuid (); |
| 688 | egid = getegid (); |
713 | saved_egid = getegid (); |
| 689 | break; |
714 | break; |
| 690 | case RESTORE: |
715 | case RESTORE: |
| 691 | seteuid (euid); |
716 | seteuid (saved_euid); |
| 692 | setegid (egid); |
717 | setegid (saved_egid); |
| 693 | break; |
718 | break; |
| 694 | } |
719 | } |
| 695 | # else |
720 | # else |
| 696 | switch (action) |
721 | switch (action) |
| 697 | { |
722 | { |
