mirror of
https://github.com/libguestfs/libguestfs.git
synced 2026-03-22 07:03:38 +00:00
606732d02e
The presumption is that all file descriptors should be created with
the close-on-exec flag set. The only exception are file descriptors
that we want passed through to exec'd subprocesses (mainly pipes and
stdin/stdout/stderr).
For open calls, we pass O_CLOEXEC as an extra flag, eg:
fd = open ("foo", O_RDONLY|O_CLOEXEC);
This is a Linux-ism, but using a macro we can easily make it portable.
For sockets, similarly:
sock = socket (..., SOCK_STREAM|SOCK_CLOEXEC, ...);
For accepted sockets, we use the Linux accept4 system call which
allows flags to be supplied, but we use the Gnulib 'accept4' module to
make this portable.
For dup, dup2, we use the Linux dup3 system call, and the Gnulib
modules 'dup3' and 'cloexec'.
205 lines
4.5 KiB
C
205 lines
4.5 KiB
C
/* libguestfs - the guestfsd daemon
|
|
* Copyright (C) 2009-2012 Red Hat Inc.
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
|
*/
|
|
|
|
#include <config.h>
|
|
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
#include <unistd.h>
|
|
#include <fcntl.h>
|
|
#include <sys/stat.h>
|
|
|
|
#include "guestfs_protocol.h"
|
|
#include "daemon.h"
|
|
#include "actions.h"
|
|
|
|
static const char *
|
|
program_of_csum (const char *csumtype)
|
|
{
|
|
if (STRCASEEQ (csumtype, "crc"))
|
|
return "cksum";
|
|
else if (STRCASEEQ (csumtype, "md5"))
|
|
return "md5sum";
|
|
else if (STRCASEEQ (csumtype, "sha1"))
|
|
return "sha1sum";
|
|
else if (STRCASEEQ (csumtype, "sha224"))
|
|
return "sha224sum";
|
|
else if (STRCASEEQ (csumtype, "sha256"))
|
|
return "sha256sum";
|
|
else if (STRCASEEQ (csumtype, "sha384"))
|
|
return "sha384sum";
|
|
else if (STRCASEEQ (csumtype, "sha512"))
|
|
return "sha512sum";
|
|
else {
|
|
reply_with_error ("unknown checksum type, expecting crc|md5|sha1|sha224|sha256|sha384|sha512");
|
|
return NULL;
|
|
}
|
|
}
|
|
|
|
static char *
|
|
checksum (const char *csumtype, int fd)
|
|
{
|
|
const char *program;
|
|
char *out, *err;
|
|
int flags, r;
|
|
size_t len;
|
|
|
|
program = program_of_csum (csumtype);
|
|
if (program == NULL) {
|
|
close (fd);
|
|
return NULL;
|
|
}
|
|
|
|
pulse_mode_start ();
|
|
|
|
flags = COMMAND_FLAG_CHROOT_COPY_FILE_TO_STDIN | fd;
|
|
r = commandf (&out, &err, flags, program, NULL);
|
|
if (r == -1) {
|
|
pulse_mode_cancel ();
|
|
reply_with_error ("%s: %s", program, err);
|
|
free (out);
|
|
free (err);
|
|
return NULL;
|
|
}
|
|
|
|
free (err);
|
|
|
|
/* Split it at the first whitespace. */
|
|
len = strcspn (out, " \t\n");
|
|
out[len] = '\0';
|
|
|
|
pulse_mode_end ();
|
|
|
|
return out; /* Caller frees. */
|
|
}
|
|
|
|
char *
|
|
do_checksum (const char *csumtype, const char *path)
|
|
{
|
|
int fd;
|
|
|
|
CHROOT_IN;
|
|
fd = open (path, O_RDONLY|O_CLOEXEC);
|
|
CHROOT_OUT;
|
|
|
|
if (fd == -1) {
|
|
reply_with_perror ("%s", path);
|
|
return NULL;
|
|
}
|
|
|
|
return checksum (csumtype, fd);
|
|
}
|
|
|
|
char *
|
|
do_checksum_device (const char *csumtype, const char *device)
|
|
{
|
|
int fd;
|
|
|
|
fd = open (device, O_RDONLY|O_CLOEXEC);
|
|
if (fd == -1) {
|
|
reply_with_perror ("%s", device);
|
|
return NULL;
|
|
}
|
|
|
|
return checksum (csumtype, fd);
|
|
}
|
|
|
|
/* Has one FileOut parameter. */
|
|
int
|
|
do_checksums_out (const char *csumtype, const char *dir)
|
|
{
|
|
struct stat statbuf;
|
|
int r;
|
|
|
|
const char *program = program_of_csum (csumtype);
|
|
if (program == NULL)
|
|
return -1;
|
|
|
|
char *sysrootdir = sysroot_path (dir);
|
|
if (!sysrootdir) {
|
|
reply_with_perror ("malloc");
|
|
return -1;
|
|
}
|
|
|
|
r = stat (sysrootdir, &statbuf);
|
|
if (r == -1) {
|
|
reply_with_perror ("%s", dir);
|
|
free (sysrootdir);
|
|
return -1;
|
|
}
|
|
if (!S_ISDIR (statbuf.st_mode)) {
|
|
reply_with_error ("%s: not a directory", dir);
|
|
free (sysrootdir);
|
|
return -1;
|
|
}
|
|
|
|
char *cmd;
|
|
if (asprintf_nowarn (&cmd, "cd %Q && find -type f -print0 | xargs -0 %s",
|
|
sysrootdir, program) == -1) {
|
|
reply_with_perror ("asprintf");
|
|
free (sysrootdir);
|
|
return -1;
|
|
}
|
|
free (sysrootdir);
|
|
|
|
if (verbose)
|
|
fprintf (stderr, "%s\n", cmd);
|
|
|
|
FILE *fp = popen (cmd, "r");
|
|
if (fp == NULL) {
|
|
reply_with_perror ("%s", cmd);
|
|
free (cmd);
|
|
return -1;
|
|
}
|
|
free (cmd);
|
|
|
|
/* Now we must send the reply message, before the file contents. After
|
|
* this there is no opportunity in the protocol to send any error
|
|
* message back. Instead we can only cancel the transfer.
|
|
*/
|
|
reply (NULL, NULL);
|
|
|
|
char str[GUESTFS_MAX_CHUNK_SIZE];
|
|
|
|
while ((r = fread (str, 1, GUESTFS_MAX_CHUNK_SIZE, fp)) > 0) {
|
|
if (send_file_write (str, r) < 0) {
|
|
pclose (fp);
|
|
return -1;
|
|
}
|
|
}
|
|
|
|
if (ferror (fp)) {
|
|
perror (dir);
|
|
send_file_end (1); /* Cancel. */
|
|
pclose (fp);
|
|
return -1;
|
|
}
|
|
|
|
if (pclose (fp) != 0) {
|
|
perror (dir);
|
|
send_file_end (1); /* Cancel. */
|
|
return -1;
|
|
}
|
|
|
|
if (send_file_end (0)) /* Normal end of file. */
|
|
return -1;
|
|
|
|
return 0;
|
|
}
|