2 Copyright (c) 2001-2006, Gerrit Pape
5 Redistribution and use in source and binary forms, with or without
6 modification, are permitted provided that the following conditions are met:
8 1. Redistributions of source code must retain the above copyright notice,
9 this list of conditions and the following disclaimer.
10 2. Redistributions in binary form must reproduce the above copyright
11 notice, this list of conditions and the following disclaimer in the
12 documentation and/or other materials provided with the distribution.
13 3. The name of the author may not be used to endorse or promote products
14 derived from this software without specific prior written permission.
16 THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED
17 WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
18 MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO
19 EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
20 SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
21 PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS;
22 OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
23 WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
24 OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
25 ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
28 /* Busyboxed by Denys Vlasenko <vda.linux@googlemail.com> */
31 //config: bool "chpst (8.7 kb)"
34 //config: chpst changes the process state according to the given options, and
35 //config: execs specified program.
37 //config:config SETUIDGID
38 //config: bool "setuidgid (4.2 kb)"
41 //config: Sets soft resource limits as specified by options
43 //config:config ENVUIDGID
44 //config: bool "envuidgid (3.6 kb)"
47 //config: Sets $UID to account's uid and $GID to account's gid
49 //config:config ENVDIR
50 //config: bool "envdir (2.5 kb)"
53 //config: Sets various environment variables as specified by files
54 //config: in the given directory
56 //config:config SOFTLIMIT
57 //config: bool "softlimit (4.3 kb)"
60 //config: Sets soft resource limits as specified by options
62 //applet:IF_CHPST(APPLET(chpst, BB_DIR_USR_BIN, BB_SUID_DROP))
63 // APPLET_ODDNAME:name main location suid_type help
64 //applet:IF_ENVDIR( APPLET_ODDNAME(envdir, chpst, BB_DIR_USR_BIN, BB_SUID_DROP, envdir))
65 //applet:IF_ENVUIDGID(APPLET_ODDNAME(envuidgid, chpst, BB_DIR_USR_BIN, BB_SUID_DROP, envuidgid))
66 //applet:IF_SETUIDGID(APPLET_ODDNAME(setuidgid, chpst, BB_DIR_USR_BIN, BB_SUID_DROP, setuidgid))
67 //applet:IF_SOFTLIMIT(APPLET_ODDNAME(softlimit, chpst, BB_DIR_USR_BIN, BB_SUID_DROP, softlimit))
69 //kbuild:lib-$(CONFIG_CHPST) += chpst.o
70 //kbuild:lib-$(CONFIG_ENVDIR) += chpst.o
71 //kbuild:lib-$(CONFIG_ENVUIDGID) += chpst.o
72 //kbuild:lib-$(CONFIG_SETUIDGID) += chpst.o
73 //kbuild:lib-$(CONFIG_SOFTLIMIT) += chpst.o
75 //usage:#define chpst_trivial_usage
76 //usage: "[-vP012] [-u USER[:GRP]] [-U USER[:GRP]] [-e DIR]\n"
77 //usage: " [-/ DIR] [-n NICE] [-m BYTES] [-d BYTES] [-o N]\n"
78 //usage: " [-p N] [-f BYTES] [-c BYTES] PROG ARGS"
79 //usage:#define chpst_full_usage "\n\n"
80 //usage: "Change the process state, run PROG\n"
81 //usage: "\n -u USER[:GRP] Set uid and gid"
82 //usage: "\n -U USER[:GRP] Set $UID and $GID in environment"
83 //usage: "\n -e DIR Set environment variables as specified by files"
84 //usage: "\n in DIR: file=1st_line_of_file"
85 //usage: "\n -/ DIR Chroot to DIR"
86 //usage: "\n -n NICE Add NICE to nice value"
87 //usage: "\n -m BYTES Same as -d BYTES -s BYTES -l BYTES"
88 //usage: "\n -d BYTES Limit data segment"
89 //usage: "\n -o N Limit number of open files per process"
90 //usage: "\n -p N Limit number of processes per uid"
91 //usage: "\n -f BYTES Limit output file sizes"
92 //usage: "\n -c BYTES Limit core file size"
93 //usage: "\n -v Verbose"
94 //usage: "\n -P Create new process group"
95 //usage: "\n -0 Close stdin"
96 //usage: "\n -1 Close stdout"
97 //usage: "\n -2 Close stderr"
99 //usage:#define envdir_trivial_usage
100 //usage: "DIR PROG ARGS"
101 //usage:#define envdir_full_usage "\n\n"
102 //usage: "Set various environment variables as specified by files\n"
103 //usage: "in the directory DIR, run PROG"
105 //usage:#define envuidgid_trivial_usage
106 //usage: "USER PROG ARGS"
107 //usage:#define envuidgid_full_usage "\n\n"
108 //usage: "Set $UID to USER's uid and $GID to USER's gid, run PROG"
110 //usage:#define setuidgid_trivial_usage
111 //usage: "USER PROG ARGS"
112 //usage:#define setuidgid_full_usage "\n\n"
113 //usage: "Set uid and gid to USER's uid and gid, drop supplementary group ids,\n"
116 //usage:#define softlimit_trivial_usage
117 //usage: "[-a BYTES] [-m BYTES] [-d BYTES] [-s BYTES] [-l BYTES]\n"
118 //usage: " [-f BYTES] [-c BYTES] [-r BYTES] [-o N] [-p N] [-t N]\n"
119 //usage: " PROG ARGS"
120 //usage:#define softlimit_full_usage "\n\n"
121 //usage: "Set soft resource limits, then run PROG\n"
122 //usage: "\n -a BYTES Limit total size of all segments"
123 //usage: "\n -m BYTES Same as -d BYTES -s BYTES -l BYTES -a BYTES"
124 //usage: "\n -d BYTES Limit data segment"
125 //usage: "\n -s BYTES Limit stack segment"
126 //usage: "\n -l BYTES Limit locked memory size"
127 //usage: "\n -o N Limit number of open files per process"
128 //usage: "\n -p N Limit number of processes per uid"
129 //usage: "\nOptions controlling file sizes:"
130 //usage: "\n -f BYTES Limit output file sizes"
131 //usage: "\n -c BYTES Limit core file size"
132 //usage: "\nEfficiency opts:"
133 //usage: "\n -r BYTES Limit resident set size"
134 //usage: "\n -t N Limit CPU time, process receives"
135 //usage: "\n a SIGXCPU after N seconds"
138 #include <sys/resource.h> /* getrlimit */
141 Five applets here: chpst, envdir, envuidgid, setuidgid, softlimit.
143 Only softlimit and chpst are taking options:
146 -o N Limit number of open files per process
147 -p N Limit number of processes per uid
148 -m BYTES Same as -d BYTES -s BYTES -l BYTES [-a BYTES]
149 -d BYTES Limit data segment
150 -f BYTES Limit output file sizes
151 -c BYTES Limit core file size
153 -a BYTES Limit total size of all segments
154 -s BYTES Limit stack segment
155 -l BYTES Limit locked memory size
156 -r BYTES Limit resident set size
159 -u USER[:GRP] Set uid and gid
160 -U USER[:GRP] Set $UID and $GID in environment
161 -e DIR Set environment variables as specified by files in DIR
163 -n NICE Add NICE to nice value
165 -P Create new process group
166 -0 -1 -2 Close fd 0,1,2
168 Even though we accept all these options for both softlimit and chpst,
169 they are not to be advertised on their help texts.
170 We have enough problems with feature creep in other people's
171 software, don't want to add our own.
173 envdir, envuidgid, setuidgid take no options, but they reuse code which
174 handles -e, -U and -u.
178 OPT_a = (1 << 0) * ENABLE_SOFTLIMIT,
179 OPT_c = (1 << 1) * (ENABLE_SOFTLIMIT || ENABLE_CHPST),
180 OPT_d = (1 << 2) * (ENABLE_SOFTLIMIT || ENABLE_CHPST),
181 OPT_f = (1 << 3) * (ENABLE_SOFTLIMIT || ENABLE_CHPST),
182 OPT_l = (1 << 4) * ENABLE_SOFTLIMIT,
183 OPT_m = (1 << 5) * (ENABLE_SOFTLIMIT || ENABLE_CHPST),
184 OPT_o = (1 << 6) * (ENABLE_SOFTLIMIT || ENABLE_CHPST),
185 OPT_p = (1 << 7) * (ENABLE_SOFTLIMIT || ENABLE_CHPST),
186 OPT_r = (1 << 8) * ENABLE_SOFTLIMIT,
187 OPT_s = (1 << 9) * ENABLE_SOFTLIMIT,
188 OPT_t = (1 << 10) * ENABLE_SOFTLIMIT,
189 OPT_u = (1 << 11) * (ENABLE_CHPST || ENABLE_SETUIDGID),
190 OPT_U = (1 << 12) * (ENABLE_CHPST || ENABLE_ENVUIDGID),
191 OPT_e = (1 << 13) * (ENABLE_CHPST || ENABLE_ENVDIR),
192 OPT_root = (1 << 14) * ENABLE_CHPST,
193 OPT_n = (1 << 15) * ENABLE_CHPST,
194 OPT_v = (1 << 16) * ENABLE_CHPST,
195 OPT_P = (1 << 17) * ENABLE_CHPST,
196 OPT_0 = (1 << 18) * ENABLE_CHPST,
197 OPT_1 = (1 << 19) * ENABLE_CHPST,
198 OPT_2 = (1 << 20) * ENABLE_CHPST,
201 /* TODO: use recursive_action? */
202 static NOINLINE void edir(const char *directory_name)
209 wdir = xopen(".", O_RDONLY | O_NDELAY);
210 xchdir(directory_name);
221 bb_perror_msg_and_die("readdir %s",
225 if (d->d_name[0] == '.')
227 fd = open(d->d_name, O_RDONLY | O_NDELAY);
229 if ((errno == EISDIR) && directory_name) {
230 if (option_mask32 & OPT_v)
231 bb_perror_msg("warning: %s/%s is a directory",
232 directory_name, d->d_name);
235 bb_perror_msg_and_die("open %s/%s",
236 directory_name, d->d_name);
238 size = full_read(fd, buf, sizeof(buf)-1);
241 bb_perror_msg_and_die("read %s/%s",
242 directory_name, d->d_name);
248 tail = strchr(buf, '\n');
249 /* skip trailing whitespace */
253 if (tail < buf || !isspace(*tail))
256 xsetenv(d->d_name, buf);
263 static void limit(int what, long l)
267 /* Never fails under Linux (except if you pass it bad arguments) */
269 if ((l < 0) || (l > r.rlim_max))
270 r.rlim_cur = r.rlim_max;
273 if (setrlimit(what, &r) == -1)
274 bb_perror_msg_and_die("setrlimit");
277 int chpst_main(int argc, char **argv) MAIN_EXTERNALLY_VISIBLE;
278 int chpst_main(int argc UNUSED_PARAM, char **argv)
280 struct bb_uidgid_t ugid;
281 char *set_user = set_user; /* for compiler */
282 char *env_dir = env_dir;
298 if ((ENABLE_CHPST && applet_name[0] == 'c')
299 || (ENABLE_SOFTLIMIT && applet_name[1] == 'o')
301 // FIXME: can we live with int-sized limits?
302 // can we live with 40000 days?
303 // if yes -> getopt converts strings to numbers for us
304 opt_complementary = "-1";
305 opt = getopt32(argv, "+a:+c:+d:+f:+l:+m:+o:+p:+r:+s:+t:+u:U:e:"
306 IF_CHPST("/:n:vP012"),
307 &limita, &limitc, &limitd, &limitf, &limitl,
308 &limitm, &limito, &limitp, &limitr, &limits, &limitt,
309 &set_user, &set_user, &env_dir
310 IF_CHPST(, &root, &nicestr));
312 if (opt & OPT_m) { // -m means -asld
313 limita = limits = limitl = limitd = limitm;
314 opt |= (OPT_s | OPT_l | OPT_a | OPT_d);
317 option_mask32 = opt = 0;
324 if (ENABLE_ENVDIR && applet_name[3] == 'd') {
330 if (ENABLE_SETUIDGID && applet_name[1] == 'e') {
336 if (ENABLE_ENVUIDGID && applet_name[0] == 'e' && applet_name[3] == 'u') {
341 // we must have PROG [ARGS]
348 limit(RLIMIT_DATA, limitd);
351 bb_error_msg("system does not support RLIMIT_%s",
357 limit(RLIMIT_STACK, limits);
360 bb_error_msg("system does not support RLIMIT_%s",
365 #ifdef RLIMIT_MEMLOCK
366 limit(RLIMIT_MEMLOCK, limitl);
369 bb_error_msg("system does not support RLIMIT_%s",
375 limit(RLIMIT_VMEM, limita);
378 limit(RLIMIT_AS, limita);
381 bb_error_msg("system does not support RLIMIT_%s",
388 limit(RLIMIT_NOFILE, limito);
391 limit(RLIMIT_OFILE, limito);
394 bb_error_msg("system does not support RLIMIT_%s",
401 limit(RLIMIT_NPROC, limitp);
404 bb_error_msg("system does not support RLIMIT_%s",
410 limit(RLIMIT_FSIZE, limitf);
413 bb_error_msg("system does not support RLIMIT_%s",
419 limit(RLIMIT_CORE, limitc);
422 bb_error_msg("system does not support RLIMIT_%s",
428 limit(RLIMIT_RSS, limitr);
431 bb_error_msg("system does not support RLIMIT_%s",
437 limit(RLIMIT_CPU, limitt);
440 bb_error_msg("system does not support RLIMIT_%s",
451 if (opt & (OPT_u|OPT_U))
452 xget_uidgid(&ugid, set_user);
454 // chrooted jail must have /etc/passwd if we move this after chroot.
455 // OTOH chroot fails for non-roots.
456 // Solution: cache uid/gid before chroot, apply uid/gid after.
458 xsetenv("GID", utoa(ugid.gid));
459 xsetenv("UID", utoa(ugid.uid));
462 if (opt & OPT_root) {
466 /* nice should be done before xsetuid */
469 if (nice(xatoi(nicestr)) == -1)
470 bb_perror_msg_and_die("nice");
474 if (setgroups(1, &ugid.gid) == -1)
475 bb_perror_msg_and_die("setgroups");
483 close(STDOUT_FILENO);
485 close(STDERR_FILENO);
487 BB_EXECVP_or_die(argv);