experiments/clixon
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add gid to clixon_process_register() for drop privs

Browse source
This commit is contained in:
Olof hagsand 2023-06-02 13:38:00 +02:00
parent 080eef0278
commit 8598fca688
6 changed files with 28 additions and 14 deletions
Download patch file Download diff file Expand all files Collapse all files

2
CHANGELOG.md
View file

@ -54,7 +54,7 @@ Expected: July 2023
### C/CLI-API changes on existing features ### C/CLI-API changes on existing features
Developers may need to change their code Developers may need to change their code
* Added `uid` parameter to `clixon_process_register()` * Added `uid` and `gid` parameters to `clixon_process_register()` for drop privs
* Added output function to JSON output: * Added output function to JSON output:
* `xml2json_vec(...,skiptop)` --> `xml2json_vec(..., cligen_output, skiptop)` * `xml2json_vec(...,skiptop)` --> `xml2json_vec(..., cligen_output, skiptop)`
* `yang2cli_yspec` removed last argument `printgen`. * `yang2cli_yspec` removed last argument `printgen`.

2
apps/backend/backend_plugin_restconf.c
View file

@ -314,7 +314,7 @@ restconf_pseudo_process_control(clicon_handle h)
if (clixon_process_register(h, RESTCONF_PROCESS, if (clixon_process_register(h, RESTCONF_PROCESS,
"Clixon RESTCONF process", "Clixon RESTCONF process",
NULL /* XXX network namespace */, NULL /* XXX network namespace */,
-1, -1, -1,
restconf_rpc_wrapper, restconf_rpc_wrapper,
argv, nr) < 0) argv, nr) < 0)
goto done; goto done;

2
lib/clixon/clixon_proc.h
View file

@ -70,7 +70,7 @@ int clixon_proc_socket_close(pid_t pid, int sock);
int clixon_process_pid(clicon_handle h, const char *name, pid_t *pid); int clixon_process_pid(clicon_handle h, const char *name, pid_t *pid);
proc_operation clixon_process_op_str2int(char *opstr); proc_operation clixon_process_op_str2int(char *opstr);
int clixon_process_argv_get(clicon_handle h, const char *name, char ***argv, int *argc); int clixon_process_argv_get(clicon_handle h, const char *name, char ***argv, int *argc);
int clixon_process_register(clicon_handle h, const char *name, const char *descr, const char *netns, uid_t uid, proc_cb_t *callback, char **argv, int argc); int clixon_process_register(clicon_handle h, const char *name, const char *descr, const char *netns, uid_t uid, gid_t gid, proc_cb_t *callback, char **argv, int argc);
int clixon_process_delete_all(clicon_handle h); int clixon_process_delete_all(clicon_handle h);
int clixon_process_operation(clicon_handle h, const char *name, proc_operation op, const int wrapit); int clixon_process_operation(clicon_handle h, const char *name, proc_operation op, const int wrapit);
int clixon_process_status(clicon_handle h, const char *name, cbuf *cbret); int clixon_process_status(clicon_handle h, const char *name, cbuf *cbret);

1
lib/clixon/clixon_string.h
View file

@ -107,7 +107,6 @@ char *clixon_trim(char *str);
char *clixon_trim2(char *str, char *trims); char *clixon_trim2(char *str, char *trims);
int clicon_strcmp(char *s1, char *s2); int clicon_strcmp(char *s1, char *s2);
#ifndef HAVE_STRNDUP #ifndef HAVE_STRNDUP
char *clicon_strndup (const char *, size_t); char *clicon_strndup (const char *, size_t);
#endif /* ! HAVE_STRNDUP */ #endif /* ! HAVE_STRNDUP */

29
lib/src/clixon_proc.c
View file

@ -146,6 +146,7 @@ struct process_entry_t {
char *pe_description; /* Description of service */ char *pe_description; /* Description of service */
char *pe_netns; /* Network namespace */ char *pe_netns; /* Network namespace */
uid_t pe_uid; /* UID of process or -1 to keep same as backend */ uid_t pe_uid; /* UID of process or -1 to keep same as backend */
gid_t pe_gid; /* GID of process or -1 to keep same as backend */
char **pe_argv; /* argv with command as element 0 and NULL-terminated */ char **pe_argv; /* argv with command as element 0 and NULL-terminated */
int pe_argc; /* Length of argc */ int pe_argc; /* Length of argc */
pid_t pe_pid; /* Running process id (state) or 0 if dead (pid is set if exiting=1) */ pid_t pe_pid; /* Running process id (state) or 0 if dead (pid is set if exiting=1) */
@ -273,6 +274,7 @@ static int
clixon_proc_background(char **argv, clixon_proc_background(char **argv,
const char *netns, const char *netns,
uid_t uid, uid_t uid,
gid_t gid,
pid_t *pid0) pid_t *pid0)
{ {
int retval = -1; int retval = -1;
@ -313,10 +315,7 @@ clixon_proc_background(char **argv,
char nsfile[PATH_MAX]; char nsfile[PATH_MAX];
int nsfd; int nsfd;
#endif #endif
if (uid != -1){
if (drop_priv_perm(uid) < 0)
goto done;
}
clicon_debug(1, "%s child", __FUNCTION__); clicon_debug(1, "%s child", __FUNCTION__);
clicon_signal_unblock(0); clicon_signal_unblock(0);
signal(SIGTSTP, SIG_IGN); signal(SIGTSTP, SIG_IGN);
@ -352,6 +351,16 @@ clixon_proc_background(char **argv,
} }
} }
#endif /* HAVE_SETNS */ #endif /* HAVE_SETNS */
if (gid != -1){
if (setgid(gid) == -1) {
clicon_err(OE_DAEMON, errno, "setgid %d", gid);
goto done;
}
}
if (uid != -1){
if (drop_priv_perm(uid) < 0)
goto done;
}
if (execvp(argv[0], argv) < 0) { if (execvp(argv[0], argv) < 0) {
clicon_err(OE_UNIX, errno, "execv(%s)", argv[0]); clicon_err(OE_UNIX, errno, "execv(%s)", argv[0]);
exit(1); exit(1);
@ -435,6 +444,7 @@ clixon_process_argv_get(clicon_handle h,
* @param[in] description Description of process * @param[in] description Description of process
* @param[in] netns Namespace netspace (or NULL) * @param[in] netns Namespace netspace (or NULL)
* @param[in] uid UID of process (or -1 to keep same) * @param[in] uid UID of process (or -1 to keep same)
* @param[in] gid GID of process (or -1 to keep same)
* @param[in] callback Wrapper function * @param[in] callback Wrapper function
* @param[in] argv NULL-terminated vector of vectors * @param[in] argv NULL-terminated vector of vectors
* @param[in] argc Length of argv * @param[in] argc Length of argv
@ -448,6 +458,7 @@ clixon_process_register(clicon_handle h,
const char *description, const char *description,
const char *netns, const char *netns,
const uid_t uid, const uid_t uid,
const gid_t gid,
proc_cb_t *callback, proc_cb_t *callback,
char **argv, char **argv,
int argc) int argc)
@ -482,6 +493,7 @@ clixon_process_register(clicon_handle h,
goto done; goto done;
} }
pe->pe_uid = uid; pe->pe_uid = uid;
pe->pe_gid = gid;
pe->pe_argc = argc; pe->pe_argc = argc;
if ((pe->pe_argv = calloc(argc, sizeof(char *))) == NULL){ if ((pe->pe_argv = calloc(argc, sizeof(char *))) == NULL){
clicon_err(OE_UNIX, errno, "calloc"); clicon_err(OE_UNIX, errno, "calloc");
@ -852,7 +864,8 @@ clixon_process_sched(int fd,
goto done; goto done;
if (!isrunning) if (!isrunning)
if (clixon_proc_background(pe->pe_argv, pe->pe_netns, if (clixon_proc_background(pe->pe_argv, pe->pe_netns,
pe->pe_uid, &pe->pe_pid) < 0) pe->pe_uid, pe->pe_gid,
&pe->pe_pid) < 0)
goto done; goto done;
clicon_debug(1, "%s %s(%d) %s --%s--> %s", __FUNCTION__, clicon_debug(1, "%s %s(%d) %s --%s--> %s", __FUNCTION__,
pe->pe_name, pe->pe_pid, pe->pe_name, pe->pe_pid,
@ -878,7 +891,8 @@ clixon_process_sched(int fd,
if (isrunning) /* Already runs */ if (isrunning) /* Already runs */
break; break;
if (clixon_proc_background(pe->pe_argv, pe->pe_netns, if (clixon_proc_background(pe->pe_argv, pe->pe_netns,
pe->pe_uid, &pe->pe_pid) < 0) pe->pe_uid, pe->pe_gid,
&pe->pe_pid) < 0)
goto done; goto done;
clicon_debug(1, "%s %s(%d) %s --%s--> %s", __FUNCTION__, clicon_debug(1, "%s %s(%d) %s --%s--> %s", __FUNCTION__,
pe->pe_name, pe->pe_pid, pe->pe_name, pe->pe_pid,
@ -982,7 +996,8 @@ clixon_process_waitpid(clicon_handle h)
/* This is the case where there is an existing process running. /* This is the case where there is an existing process running.
* it was killed above but still runs and needs to be reaped */ * it was killed above but still runs and needs to be reaped */
if (clixon_proc_background(pe->pe_argv, pe->pe_netns, if (clixon_proc_background(pe->pe_argv, pe->pe_netns,
pe->pe_uid, &pe->pe_pid) < 0) pe->pe_uid, pe->pe_gid,
&pe->pe_pid) < 0)
goto done; goto done;
gettimeofday(&pe->pe_starttime, NULL); gettimeofday(&pe->pe_starttime, NULL);
clicon_debug(1, "%s %s(%d) %s --%s--> %s", __FUNCTION__, clicon_debug(1, "%s %s(%d) %s --%s--> %s", __FUNCTION__,

6
lib/src/clixon_string.c
View file

@ -125,9 +125,9 @@ clicon_strsep(char *string,
* @retval NULL Failure * @retval NULL Failure
*/ */
char * char *
clicon_strjoin(int argc, clicon_strjoin(int argc,
char **argv, char **argv,
char *delim) char *delim)
{ {
int i; int i;
int len; int len;