Home Explore Help
Sign In
videogamepreservation
/
qc
mirror of https://github.com/videogamepreservation/qc
Watch 2
Star 0
Fork 0
Files Issues 0 Wiki
Tree: fb08f8cd2f
Branches Tags
qc
/
sys
/
linux
/
setup
/
lokisetup
/
xsu.diff

xsu.diff 4.6 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171 
  1. --- loki_setup/CHANGES	2004-11-20 07:43:42.000000000 -0600
    2. 

  2. +++ loki_setup.zinx/CHANGES	2005-03-16 16:56:46.400205504 -0600
    3. 

  3. @@ -1,4 +1,6 @@
    4. 

  4.  Current:
    5. 

  5. +Christopher Lais (Id Software) - Wed Mar 16 08:09:59 CST 2005
    6. 

  6. + * Fix handling of invalid password in xsu
    7. 

  7.  Ryan C. Gordon (icculus.org) - Sat Nov 20 08:42:16 EST 2004
    8. 

  8.   * Minor carbon_ui tweaks and corrections to update function.
    9. 

  9.  Ludwig Nussel - Wed Nov 10 14:21:21 PST 2004
    10. 

  10. --- loki_setup/xsu.c	2003-07-02 14:40:39.000000000 -0500
    11. 

  11. +++ loki_setup.zinx/xsu.c	2005-03-16 16:36:17.752988272 -0600
    12. 

  12. @@ -37,6 +37,7 @@
    13. 

  13.  #include "xsu.h"
    14. 

  14.  
    15. 

  15.  static int term = -1;
    16. 

  16. +static int term_status = 0;
    17. 

  17.  
    18. 

  18.  static gint
    19. 

  19.  exec_su_failed (gpointer user_data)
    20. 

  20. @@ -79,22 +80,25 @@
    21. 

  21.    if ( sig == SIGCHLD && term > 0 ) {
    22. 

  22.      int status;
    23. 

  23.      pid_t pid = wait(&status);
    24. 

  24. +
    25. 

  25. +    close(term); term = -1;
    26. 

  26. +    term_status = status;
    27. 

  27. +
    28. 

  28.      if ( WIFEXITED(status) ) {
    29. 

  29.  #ifdef DEBUG
    30. 

  30.        fprintf(stderr,"Child %d returned\n", pid);
    31. 

  31.  #endif
    32. 

  32. -      gtk_exit(WEXITSTATUS(status));
    33. 

  33. +      /* This is handled at the end of xsu_process */
    34. 

  34. +      return;
    35. 

  35.      } else if ( WIFSIGNALED(status) ) { 
    36. 

  36.  #ifdef DEBUG
    37. 

  37.        fprintf(stderr,"Xsu: subprocess %d has died from signal %d\n", pid, WTERMSIG(status));
    38. 

  38.  #endif
    39. 

  39.        gtk_exit(EXIT_ERROR);
    40. 

  40. +    } else {
    41. 

  41. +      fprintf(stderr, "Xsu: got SIGCHLD from %d for unknown reason (%08x)\n", pid, status);
    42. 

  42. +      gtk_exit(EXIT_ERROR);
    43. 

  43.      }
    44. 

  44. -    close(term); term = -1;
    45. 

  45. -
    46. 

  46. -    while (gtk_events_pending ())
    47. 

  47. -      gtk_main_iteration ();
    48. 

  48. -    gtk_main_quit ();
    49. 

  49.    }
    50. 

  50.  }
    51. 

  51.  
    52. 

  52. @@ -135,22 +139,27 @@
    53. 

  53.  	gchar *buffer;
    54. 

  54.  	char *argv[6], c;
    55. 

  55.  	fd_set fds;
    56. 

  56. -	struct timeval delay = { 0, 10*1000 }; /* 10 ms wait */
    57. 

  57. +	struct timeval delay;
    58. 

  58.  
    59. 

  59.  #ifdef DEBUG
    60. 

  60.      printf("void xsu_perform()\n");
    61. 

  61.  #endif
    62. 

  62.  
    63. 

  63. +	gtk_widget_hide (gtk_xsu_window);
    64. 

  64. +
    65. 

  65. +	if (password == NULL)
    66. 

  66. +		return;
    67. 

  67. +
    68. 

  68.  /* 0.2.1 *
    69. 

  69.  	Minor security fix. Password would remain in memory if we don't
    70. 

  70.  	clean the password textbox.
    71. 

  71.  */
    72. 

  72. -	gtk_entry_set_text(GTK_ENTRY(gtk_password_textbox),"");
    73. 

  73. -	gtk_widget_hide (gtk_xsu_window);
    74. 

  74. -	
    75. 

  75. -	if (password == NULL)
    76. 

  76. -		return;
    77. 

  77. +	password_return = g_strdup_printf ("%s\n", password);
    78. 

  78.  
    79. 

  79. +	/* Technically, we aren't supposed to modify this, but it should
    80. 

  80. +	   usually be OK because we're explicitly clearing it afterwards. */
    81. 

  81. +	memset (password, 0, strlen (password));
    82. 

  82. +	gtk_entry_set_text(GTK_ENTRY(gtk_password_textbox),"");
    83. 

  83.  
    84. 

  84.  /* xsu 0.2.1 *
    85. 

  85.  	Option to set the DISPLAY environment
    86. 

  86. @@ -177,6 +186,9 @@
    87. 

  87.  	argv[2] = "-c";
    88. 

  88.  	argv[3] = buffer;
    89. 

  89.  	argv[4] = NULL;
    90. 

  90. +#ifdef DEBUG
    91. 

  91. +	fprintf(stderr, "%s %s -c %s\n", su_command, username, buffer);
    92. 

  92. +#endif
    93. 

  93.  	term = exec_program(su_command, argv);
    94. 

  94.  	/* We are not a gnome-application anymore but under control of su */
    95. 

  95.  
    96. 

  96. @@ -231,33 +243,65 @@
    97. 

  97.  	fprintf(stderr, "Got it!\n");
    98. 

  98.  #endif
    99. 

  99.  
    100. 

  100. -	/* Discard any remaining characters on stdin */
    101. 

  101. -	for(;;) {
    102. 

  102. +	/* Slurp up any extra characters immediately after the password prompt,
    103. 

  103. +	   because su might clear the buffer after we send the password if we
    104. 

  104. +	   don't. */
    105. 

  105. +	for (;;) {
    106. 

  106.  		FD_ZERO(&fds);
    107. 

  107.  		FD_SET(term, &fds);
    108. 

  108. -		if ( select(term+1, &fds, NULL, NULL, &delay) ) {
    109. 

  109. -		    if ( read(term, &c, 1) <= 0 )
    110. 

  110. -			break;
    111. 

  111. +
    112. 

  112. +		delay.tv_sec = 0;
    113. 

  113. +		delay.tv_usec = 10*1000; /* 10 ms wait */
    114. 

  114. +
    115. 

  115. +		if (select(term+1, &fds, NULL, NULL, &delay) > 0) {
    116. 

  116. +			if (read(term, &c, 1) < 0)
    117. 

  117. +				break;
    118. 

  118.  		} else
    119. 

  119.  			break;
    120. 

  120.  	}
    121. 

  121.  
    122. 

  122. -	password_return = g_strdup_printf ("%s\n", password);
    123. 

  123.  #ifdef DEBUG
    124. 

  124.   	fprintf(stderr,"Sending password\n");
    125. 

  125.  #endif
    126. 

  126.  /* 0.2.2 *
    127. 

  127.  	Minor security fix, clear the password from memory
    128. 

  128.  */  
    129. 

  129. -	memset (password, 0, strlen (password));	
    130. 

  130.  	if ( write(term, password_return, strlen(password_return)) < 0 ) {
    131. 

  131.  	    perror("write");
    132. 

  132.  	}
    133. 

  133. +
    134. 

  134.  	memset (password_return, 0, strlen (password_return));
    135. 

  135.  	g_free (password_return); password_return = NULL;
    136. 

  136. -	g_free (password); password = NULL;
    137. 

  137.  
    138. 

  138. -	//gtk_main();
    139. 

  139. +	/* Eat up any output, and wait for a SIGCHLD saying su exited */
    140. 

  140. +	while (term >= 0) {
    141. 

  141. +		FD_ZERO(&fds);
    142. 

  142. +		FD_SET(term, &fds);
    143. 

  143. +
    144. 

  144. +		delay.tv_sec = 0;
    145. 

  145. +		delay.tv_usec = 10*1000; /* 10 ms wait */
    146. 

  146. +
    147. 

  147. +		if ( select(term+1, &fds, NULL, NULL, &delay) > 0 ) {
    148. 

  148. +		    read(term, &c, 1);
    149. 

  149. +#ifdef DEBUG
    150. 

  150. +		    fprintf(stderr, "read from pty: %02x\n", c);
    151. 

  151. +#endif
    152. 

  152. +		}
    153. 

  153. +
    154. 

  154. +		while (gtk_events_pending ()) 
    155. 

  155. +		  gtk_main_iteration ();
    156. 

  156. +	}
    157. 

  157. +
    158. 

  158. +	if (WIFEXITED(term_status) && WEXITSTATUS(term_status)) {
    159. 

  159. +		/* su failed, so ask for the password again */
    160. 

  160. +#ifdef DEBUG
    161. 

  161. +		fprintf(stderr, "returning control to gtk\n");
    162. 

  162. +#endif
    163. 

  163. +		gtk_widget_show (gtk_xsu_window);
    164. 

  164. +	} else {
    165. 

  165. +		/* Exit normally */
    166. 

  166. +		gtk_main_quit();
    167. 

  167. +	}
    168. 

  168.  }
    169. 

  169.  
    170. 

  170.  
    171. 

  171.