core-admin/qubes-rpc/admin.vm.Console

#!/bin/bash --
set -euo pipefail

lock="/run/qubes/$QREXEC_REQUESTED_TARGET.terminal.lock"

# use temporary file, because env variables deal poorly with \0 inside
tmpfile=$(mktemp)
trap 'rm -f -- "$tmpfile"' EXIT
# exit if qubesd returned an error
if ! qubesd-query -e --fail -- \
        "$QREXEC_REMOTE_DOMAIN" \
        "admin.vm.Console" \
        "$QREXEC_REQUESTED_TARGET" \
        ${1+"$1"} >"$tmpfile"; then
    cat -- "$tmpfile"
    exit 1
fi
path=$(tail -c +3 -- "$tmpfile")

# Create an exclusive lock to ensure that multiple qubes cannot access to the same socket
# In the case of multiple qrexec calls it returns a specific exit code
sudo flock -n -E 200 -x "$lock" socat - OPEN:"$path"
Enhance qvm-console-dispvm and admin.vm.Console - use `/run` instead of deprecated symlink `/var/run` - add `--autostart` option to automatically start the qube - check for invalid qube name before querying qubesd - use `--fail` option of qubesd-query instead of parsing its output file - add `--` and double quotes in various places - allow `--` to be passed to `qvm-console-dispvm` to mark end of options 2020-11-27 03:15:34 +01:00			`#!/bin/bash --`
			`set -euo pipefail`
Add qubes.ShowTerminal service 2019-04-30 11:23:23 +02:00
Enhance qvm-console-dispvm and admin.vm.Console - use `/run` instead of deprecated symlink `/var/run` - add `--autostart` option to automatically start the qube - check for invalid qube name before querying qubesd - use `--fail` option of qubesd-query instead of parsing its output file - add `--` and double quotes in various places - allow `--` to be passed to `qvm-console-dispvm` to mark end of options 2020-11-27 03:15:34 +01:00			`lock="/run/qubes/$QREXEC_REQUESTED_TARGET.terminal.lock"`
Add qubes.ShowTerminal service 2019-04-30 11:23:23 +02:00
api/admin: make admin.vm.Console call go through qubesd Ask qubesd for admin.vm.Console call. This allows to intercept it with admin-permission event. While at it, extract tty path extraction to python, where libvirt domain object is already available. Fixes QubesOS/qubes-issues#5030 2019-06-09 18:03:18 +02:00			`# use temporary file, because env variables deal poorly with \0 inside`
			`tmpfile=$(mktemp)`
Enhance qvm-console-dispvm and admin.vm.Console - use `/run` instead of deprecated symlink `/var/run` - add `--autostart` option to automatically start the qube - check for invalid qube name before querying qubesd - use `--fail` option of qubesd-query instead of parsing its output file - add `--` and double quotes in various places - allow `--` to be passed to `qvm-console-dispvm` to mark end of options 2020-11-27 03:15:34 +01:00			`trap 'rm -f -- "$tmpfile"' EXIT`
			`# exit if qubesd returned an error`
			`if ! qubesd-query -e --fail -- \`
api/admin: make admin.vm.Console call go through qubesd Ask qubesd for admin.vm.Console call. This allows to intercept it with admin-permission event. While at it, extract tty path extraction to python, where libvirt domain object is already available. Fixes QubesOS/qubes-issues#5030 2019-06-09 18:03:18 +02:00			`"$QREXEC_REMOTE_DOMAIN" \`
			`"admin.vm.Console" \`
			`"$QREXEC_REQUESTED_TARGET" \`
Enhance qvm-console-dispvm and admin.vm.Console - use `/run` instead of deprecated symlink `/var/run` - add `--autostart` option to automatically start the qube - check for invalid qube name before querying qubesd - use `--fail` option of qubesd-query instead of parsing its output file - add `--` and double quotes in various places - allow `--` to be passed to `qvm-console-dispvm` to mark end of options 2020-11-27 03:15:34 +01:00			`${1+"$1"} >"$tmpfile"; then`
			`cat -- "$tmpfile"`
api/admin: make admin.vm.Console call go through qubesd Ask qubesd for admin.vm.Console call. This allows to intercept it with admin-permission event. While at it, extract tty path extraction to python, where libvirt domain object is already available. Fixes QubesOS/qubes-issues#5030 2019-06-09 18:03:18 +02:00			`exit 1`
			`fi`
Enhance qvm-console-dispvm and admin.vm.Console - use `/run` instead of deprecated symlink `/var/run` - add `--autostart` option to automatically start the qube - check for invalid qube name before querying qubesd - use `--fail` option of qubesd-query instead of parsing its output file - add `--` and double quotes in various places - allow `--` to be passed to `qvm-console-dispvm` to mark end of options 2020-11-27 03:15:34 +01:00			`path=$(tail -c +3 -- "$tmpfile")`
admin.vm.Console: check if requested VM exists/is_running 2019-05-11 12:11:31 +02:00
Add qubes.ShowTerminal service 2019-04-30 11:23:23 +02:00			`# Create an exclusive lock to ensure that multiple qubes cannot access to the same socket`
			`# In the case of multiple qrexec calls it returns a specific exit code`
api/admin: make admin.vm.Console call go through qubesd Ask qubesd for admin.vm.Console call. This allows to intercept it with admin-permission event. While at it, extract tty path extraction to python, where libvirt domain object is already available. Fixes QubesOS/qubes-issues#5030 2019-06-09 18:03:18 +02:00			`sudo flock -n -E 200 -x "$lock" socat - OPEN:"$path"`