Qubes
/
core-agent-linux


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120
							/*
 * The Qubes OS Project, http://www.qubes-os.org
 *
 * Copyright (C) 2015  Marek Marczykowski-Górecki  <marmarek@invisiblethingslab.com>
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
 *
 */

#define _GNU_SOURCE
#include <stdio.h>
#include <stdlib.h>
#include <signal.h>
#include <string.h>
#include <unistd.h>
#include <fcntl.h>
#include <sys/socket.h>
#include <sys/un.h>
#include "qrexec.h"
#include <libvchan.h>
#include "libqrexec-utils.h"
#include "qrexec-agent.h"

void do_exec(const char *cmd)
{
	char buf[strlen(QUBES_RPC_MULTIPLEXER_PATH) + strlen(cmd) - strlen(RPC_REQUEST_COMMAND) + 1];
	/* replace magic RPC cmd with RPC multiplexer path */
	if (strncmp(cmd, RPC_REQUEST_COMMAND " ", strlen(RPC_REQUEST_COMMAND)+1)==0) {
		strcpy(buf, QUBES_RPC_MULTIPLEXER_PATH);
		strcpy(buf + strlen(QUBES_RPC_MULTIPLEXER_PATH), cmd + strlen(RPC_REQUEST_COMMAND));
		cmd = buf;
	}
	signal(SIGCHLD, SIG_DFL);
	signal(SIGPIPE, SIG_DFL);

	execl("/bin/sh", "sh", "-c", cmd, NULL);
	perror("execl");
	exit(1);
}

void handle_vchan_error(const char *op)
{
    fprintf(stderr, "Error while vchan %s, exiting\n", op);
    exit(1);
}

void handle_single_command(int fd, struct qrexec_cmd_info *info) {
	char cmdline[info->cmdline_len+1];

	if (!read_all(fd, cmdline, info->cmdline_len))
		return;
	cmdline[info->cmdline_len] = 0;

	handle_new_process(info->type, info->connect_domain,
			info->connect_port,
			cmdline, info->cmdline_len);
}

int main(int argc, char **argv) {
	int s, fd;
	char *socket_path;
	struct qrexec_cmd_info info;
	struct sockaddr_un peer;
	unsigned int addrlen;


	if (argc == 2) {
		socket_path = argv[1];
	} else if (argc == 1) {
		/* this will be leaked, but we don't care as the process will then terminate */
		if (asprintf(&socket_path, QREXEC_FORK_SERVER_SOCKET, getenv("USER")) < 0) {
			fprintf(stderr, "Memory allocation failed\n");
			exit(1);
		}
	} else {
		fprintf(stderr, "Usage: %s [socket path]\n", argv[0]);
		exit(1);
	}

	s = get_server_socket(socket_path);
	if (fcntl(s, F_SETFD, O_CLOEXEC) < 0) {
		perror("fcntl");
		exit(1);
	}
    /* fork into background */
    switch (fork()) {
        case -1:
            perror("fork");
            exit(1);
        case 0:
            break;
        default:
            exit(0);
    }
	signal(SIGCHLD, SIG_IGN);
    register_exec_func(do_exec);

	while ((fd = accept(s, (struct sockaddr *) &peer, &addrlen)) >= 0) {
		if (read_all(fd, &info, sizeof(info))) {
			handle_single_command(fd, &info);
		}
		close(fd);
		addrlen = sizeof(peer);
	}
	close(s);
	unlink(socket_path);
	return 0;
}