~azzar1/unity/add-show-desktop-key

Viewing changes to trampoline/trampoline.c

Committer: mattgiuca
Date: 2008-01-11 06:52:24 UTC
Revision ID: svn-v3-trunk0:2b9c9e99-6f39-0410-b283-7f802c844ae2:trunk:183

browser: Added top level of response handling. Now determines handler type and
calls the appropriate handler. (Handlers just alert at the moment).

files added:
console/console.js

console/index.html

console/json2.js

console/md5.js

www/dispatch_handler.py

www/media/images

www/media/images/mime

www/media/images/mime/dir.png

files removed:
doc/setup

doc/setup/install_proc.txt

doc/setup/ivle.conf

doc/tutorial

doc/tutorial/TestSuite_output.txt

subjects

subjects/sample

subjects/sample/all_input.xml

subjects/sample/fib.xml

subjects/sample/hello.xml

subjects/sample/subject.xml

subjects/sample/ws1.xml

subjects/sample/ws2.xml

test

test/misc

test/misc/make_date_test.py

test/test_framework

test/test_framework/README-examples

test/test_framework/all_input.py

test/test_framework/all_input_text.xml

test/test_framework/fib.py

test/test_framework/fib_text.xml

test/test_framework/file_test.py

test/test_framework/filespace_test.py

test/test_framework/filesum.py

test/test_framework/filesum_text.xml

test/test_framework/hack_1.py

test/test_framework/hello.py

test/test_framework/hello_text.xml

test/test_framework/test.py

test/test_framework/test_framework_tests.py

test/test_framework/test_json.py

test/test_framework/tests.py

test/test_framework/tute_doc.tex

trampoline/Makefile

trampoline/norm.c

trampoline/norm.dot

trampoline/norm.h

trampoline/test.c

www/apps/console

www/apps/console/__init__.py

www/apps/console/help.html

www/apps/consoleservice

www/apps/consoleservice/__init__.py

www/apps/editor

www/apps/editor/__init__.py

www/apps/editor/help.html

www/apps/tutorial

www/apps/tutorial/__init__.py

www/apps/tutorial/help.html

www/apps/tutorialservice

www/apps/tutorialservice/__init__.py

www/apps/tutorialservice/test

www/apps/tutorialservice/test/README-framework

www/apps/tutorialservice/test/TestFramework.py

www/apps/tutorialservice/test/__init__.py

www/apps/tutorialservice/test/parse_tute.py

www/common/zip.py

www/media/browser/editor.js

www/media/browser/listing.js

www/media/common/edit_area

www/media/common/edit_area/edit_area.css

www/media/common/edit_area/edit_area.js

www/media/common/edit_area/edit_area_compressor.php

www/media/common/edit_area/edit_area_full.gz

www/media/common/edit_area/edit_area_full.js

www/media/common/edit_area/edit_area_full_with_plugins.gz

www/media/common/edit_area/edit_area_full_with_plugins.js

www/media/common/edit_area/edit_area_functions.js

www/media/common/edit_area/edit_area_loader.js

www/media/common/edit_area/elements_functions.js

www/media/common/edit_area/highlight.js

www/media/common/edit_area/images

www/media/common/edit_area/images/Thumbs.db

www/media/common/edit_area/images/close.gif

www/media/common/edit_area/images/fullscreen.gif

www/media/common/edit_area/images/go_to_line.gif

www/media/common/edit_area/images/help.gif

www/media/common/edit_area/images/highlight.gif

www/media/common/edit_area/images/load.gif

www/media/common/edit_area/images/move.gif

www/media/common/edit_area/images/newdocument.gif

www/media/common/edit_area/images/opacity.png

www/media/common/edit_area/images/processing.gif

www/media/common/edit_area/images/redo.gif

www/media/common/edit_area/images/reset_highlight.gif

www/media/common/edit_area/images/save.gif

www/media/common/edit_area/images/search.gif

www/media/common/edit_area/images/smooth_selection.gif

www/media/common/edit_area/images/spacer.gif

www/media/common/edit_area/images/statusbar_resize.gif

www/media/common/edit_area/images/undo.gif

www/media/common/edit_area/keyboard.js

www/media/common/edit_area/langs

www/media/common/edit_area/langs/de.js

www/media/common/edit_area/langs/dk.js

www/media/common/edit_area/langs/en.js

www/media/common/edit_area/langs/es.js

www/media/common/edit_area/langs/fr.js

www/media/common/edit_area/langs/hr.js

www/media/common/edit_area/langs/it.js

www/media/common/edit_area/langs/ja.js

www/media/common/edit_area/langs/nl.js

www/media/common/edit_area/langs/pl.js

www/media/common/edit_area/langs/pt.js

www/media/common/edit_area/langs/sk.js

www/media/common/edit_area/license.txt

www/media/common/edit_area/manage_area.js

www/media/common/edit_area/plugins

www/media/common/edit_area/plugins/charmap

www/media/common/edit_area/plugins/charmap/charmap.js

www/media/common/edit_area/plugins/charmap/css

www/media/common/edit_area/plugins/charmap/css/charmap.css

www/media/common/edit_area/plugins/charmap/images

www/media/common/edit_area/plugins/charmap/images/Thumbs.db

www/media/common/edit_area/plugins/charmap/images/charmap.gif

www/media/common/edit_area/plugins/charmap/jscripts

www/media/common/edit_area/plugins/charmap/jscripts/map.js

www/media/common/edit_area/plugins/charmap/langs

www/media/common/edit_area/plugins/charmap/langs/de.js

www/media/common/edit_area/plugins/charmap/langs/dk.js

www/media/common/edit_area/plugins/charmap/langs/en.js

www/media/common/edit_area/plugins/charmap/langs/es.js

www/media/common/edit_area/plugins/charmap/langs/fr.js

www/media/common/edit_area/plugins/charmap/langs/hr.js

www/media/common/edit_area/plugins/charmap/langs/it.js

www/media/common/edit_area/plugins/charmap/langs/ja.js

www/media/common/edit_area/plugins/charmap/langs/nl.js

www/media/common/edit_area/plugins/charmap/langs/pl.js

www/media/common/edit_area/plugins/charmap/langs/pt.js

www/media/common/edit_area/plugins/charmap/langs/sk.js

www/media/common/edit_area/plugins/charmap/popup.html

www/media/common/edit_area/plugins/test

www/media/common/edit_area/plugins/test/css

www/media/common/edit_area/plugins/test/css/test.css

www/media/common/edit_area/plugins/test/images

www/media/common/edit_area/plugins/test/images/test.gif

www/media/common/edit_area/plugins/test/langs

www/media/common/edit_area/plugins/test/langs/de.js

www/media/common/edit_area/plugins/test/langs/dk.js

www/media/common/edit_area/plugins/test/langs/en.js

www/media/common/edit_area/plugins/test/langs/es.js

www/media/common/edit_area/plugins/test/langs/fr.js

www/media/common/edit_area/plugins/test/langs/hr.js

www/media/common/edit_area/plugins/test/langs/it.js

www/media/common/edit_area/plugins/test/langs/ja.js

www/media/common/edit_area/plugins/test/langs/nl.js

www/media/common/edit_area/plugins/test/langs/pl.js

www/media/common/edit_area/plugins/test/langs/pt.js

www/media/common/edit_area/plugins/test/langs/sk.js

www/media/common/edit_area/plugins/test/test.js

www/media/common/edit_area/plugins/test/test2.js

www/media/common/edit_area/reg_syntax

www/media/common/edit_area/reg_syntax.js

www/media/common/edit_area/reg_syntax/basic.js

www/media/common/edit_area/reg_syntax/brainfuck.js

www/media/common/edit_area/reg_syntax/c.js

www/media/common/edit_area/reg_syntax/cpp.js

www/media/common/edit_area/reg_syntax/css.js

www/media/common/edit_area/reg_syntax/html.js

www/media/common/edit_area/reg_syntax/js.js

www/media/common/edit_area/reg_syntax/pas.js

www/media/common/edit_area/reg_syntax/php.js

www/media/common/edit_area/reg_syntax/python.js

www/media/common/edit_area/reg_syntax/sql.js

www/media/common/edit_area/reg_syntax/vb.js

www/media/common/edit_area/reg_syntax/xml.js

www/media/common/edit_area/regexp.js

www/media/common/edit_area/resize_area.js

www/media/common/edit_area/search_replace.js

www/media/common/edit_area/template.html

www/media/common/md5.js

www/media/console

www/media/console/console.css

www/media/console/console.js

www/media/console/console_app.css

www/media/console/console_app.js

www/media/images

www/media/images/README

www/media/images/apps

www/media/images/apps/browser.png

www/media/images/apps/console.png

www/media/images/apps/editor.png

www/media/images/apps/help.png

www/media/images/apps/small

www/media/images/apps/small/browser.png

www/media/images/apps/small/console.png

www/media/images/apps/small/editor.png

www/media/images/apps/small/help.png

www/media/images/apps/small/tutorial.png

www/media/images/apps/tutorial.png

www/media/images/interface

www/media/images/interface/maximize.png

www/media/images/interface/minimize.png

www/media/images/interface/published.png

www/media/images/interface/sortdown.png

www/media/images/interface/sortup.png

www/media/images/mime

www/media/images/mime/dir.png

www/media/images/mime/large

www/media/images/mime/large/dir.png

www/media/images/mime/large/multi.png

www/media/images/mime/large/py.png

www/media/images/mime/large/txt.png

www/media/images/mime/py.png

www/media/images/mime/txt.png

www/media/images/svn

www/media/images/svn/added.png

www/media/images/svn/deleted.png

www/media/images/svn/missing.png

www/media/images/svn/modified.png

www/media/images/svn/normal.png

www/media/images/tutorial

www/media/images/tutorial/exception.png

www/media/images/tutorial/fail.png

www/media/images/tutorial/pass.png

www/media/tutorial

www/media/tutorial/tutorial.css

www/media/tutorial/tutorial.js

www/plugins

www/plugins/__init__.py

www/plugins/console

www/plugins/console/__init__.py

files modified:
console/python-console

doc/app_howto.txt

doc/dependencies.txt

setup.py

trampoline/trampoline.c

userdb/users.sql

www/README

www/apps/browser/__init__.py

www/apps/debuginfo/__init__.py

www/apps/download/__init__.py

www/apps/dummy/__init__.py

www/apps/fileservice/__init__.py

www/apps/fileservice/action.py

www/apps/fileservice/listing.py

www/apps/help/__init__.py

www/apps/server/__init__.py

www/auth/authenticate.py

www/common/interpret.py

www/common/studpath.py

www/common/util.py

www/conf/__init__.py

www/conf/app/server.py

www/conf/apps.py

www/conf/mimetypes.py

www/dispatch/__init__.py

www/dispatch/html.py

www/dispatch/login.py

www/dispatch/request.py

www/media/browser/browser.css

www/media/browser/browser.js

www/media/common/ivle.css

www/media/common/util.js

Show diffs side-by-side

added added

removed removed

trampoline/trampoline.c

#include <stdlib.h>

#include <string.h>

#include <unistd.h>

#include <sys/types.h>

#include <sys/stat.h>

#include <limits.h>

/* conf.h is admin-configured by the setup process.

* It defines jail_base.

#include "conf.h"

/* Argument names */

#define ARG_UID 1

#define ARG_JAILPATH 2

#define ARG_CWD 3

#define ARG_PROG 4

#define MIN_ARGC 5

#define UID_ROOT 0

/* Returns TRUE if the given uid is allowed to execute trampoline.

* Only root or the web server should be allowed to execute.

* This is determined by the whitelist allowed_uids in conf.h.

return 0;

}

/* Turn the process into a daemon using the standard

* 2-fork technique.

void daemonize(void)

{

pid_t pid, sid;

/* already a daemon */

if ( getppid() == 1 ) return;

/* Fork off the parent process */

pid = fork();

if (pid < 0) {

exit(1);

}

/* If we got a good PID, then we can exit the parent process. */

if (pid > 0) {

exit(0);

}

/* At this point we are executing as the child process */

/* Change the file mode mask */

umask(0);

/* Create a new SID for the child process */

sid = setsid();

if (sid < 0) {

exit(1);

}

100

/* Change the current working directory. This prevents the current

101

directory from being locked; hence not being able to remove it. */

102

if ((chdir("/")) < 0) {

103

exit(1);

104

}

105

106

/* Redirect standard files to /dev/null */

107

freopen( "/dev/null", "r", stdin);

108

freopen( "/dev/null", "w", stdout);

109

freopen( "/dev/null", "w", stderr);

110

}

111

112

static void usage(const char* nm)

113

{

114

fprintf(stderr,

115

"usage: %s [-d] <uid> <jail> <cwd> <program> [args...]\n", nm);

116

exit(1);

117

}

118

119

int main(int argc, char* const argv[])

120

{

121

char* jailpath;

122

char* work_dir;

123

char* prog;

124

char* const * args;

125

int uid;

126

int arg_num = 1;

127

int daemon_mode = 0;

128

char canonical_jailpath[PATH_MAX];

129

130

/* Disallow execution from all users but the whitelisted ones, and root */

131

if (!uid_allowed(getuid()))

135

}

136

137

/* Args check and usage */

138

if (argc < 5)

139

{

140

usage(argv[0]);

141

}

142

143

if (strcmp(argv[arg_num], "-d") == 0)

144

{

145

if (argc < 6)

146

{

147

usage(argv[0]);

148

}

149

daemon_mode = 1;

150

arg_num++;

151

}

152

uid = atoi(argv[arg_num++]);

153

jailpath = argv[arg_num++];

154

work_dir = argv[arg_num++];

155

prog = argv[arg_num];

156

args = argv + arg_num;

if (argc < MIN_ARGC)

{

fprintf(stderr, "usage: %s <uid> <jail> <cwd> <program> [args...]\n",

argv[0]);

exit(EXIT_FAILURE);

}

157

158

/* Disallow suiding to the root user */

159

if (uid == 0)

uid = atoi(argv[ARG_UID]);

if (uid == UID_ROOT)

160

{

161

100

fprintf(stderr, "cannot set up a jail as root\n");

162

101

exit(1);

163

102

}

164

103

165

/* Jail path must be an absolute path,

166

* and it must begin with jail_base.

104

/* Jail path must:

105

* Be non-empty

106

* Start with a '/'

107

* Not contain "/.."

108

* Begin with jail_base

167

109

168

if (norm(canonical_jailpath, PATH_MAX, jailpath) != 0)

169

{

170

fprintf(stderr, "bad jail path: %s\n", jailpath);

171

exit(1);

172

}

173

if (strncmp(canonical_jailpath, jail_base, strlen(jail_base)))

110

jailpath = argv[ARG_JAILPATH];

111

if (strlen(jailpath) < 1 || jailpath[0] != '/'

112

|| strstr(jailpath, "/..")

113

|| strncmp(jailpath, jail_base, strlen(jail_base)))

174

114

{

175

115

fprintf(stderr, "bad jail path: %s\n", jailpath);

176

116

exit(1);

178

118

179

119

/* chroot into the jail.

180

120

* Henceforth this process, and its children, cannot see anything above

181

* canoncial_jailpath. */

182

if (chroot(canonical_jailpath))

121

* jailpath. */

122

if (chroot(jailpath))

183

123

{

184

124

perror("could not chroot");

185

125

exit(1);

186

126

}

187

127

188

128

/* chdir into the specified working directory */

189

if (chdir(work_dir))

129

if (chdir(argv[ARG_CWD]))

190

130

{

191

131

perror("could not chdir");

192

132

exit(1);

201

141

exit(1);

202

142

}

203

143

204

if (daemon_mode)

205

{

206

daemonize();

207

}

208

209

144

/* exec (replace this process with the a new instance of the target

210

145

* program). Pass along all the arguments.

211

146

* Note that for script execution, the "program" will be the interpreter,

212

147

* and the first argument will be the script. */

213

execv(prog, args);

148

execv(argv[ARG_PROG], argv + ARG_PROG);

214

149

215

/* XXX if (daemon_mode) use syslog? */

216

150

/* nb exec won't return unless there was an error */

217

151

perror("could not exec");

218

return 1;

152

return EXIT_FAILURE;

219

153

}

Older »