From 032346f479a53683139a52baeb30b7399bc6df5e Mon Sep 17 00:00:00 2001 From: John Crispin Date: Thu, 20 Aug 2015 22:49:43 +0200 Subject: [PATCH] add a system object that allows us to set passwords and trigger sysupgrade Signed-off-by: John Crispin --- CMakeLists.txt | 8 ++ sys.c | 250 +++++++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 258 insertions(+) create mode 100644 sys.c diff --git a/CMakeLists.txt b/CMakeLists.txt index f1e283d..60959d5 100644 --- a/CMakeLists.txt +++ b/CMakeLists.txt @@ -8,6 +8,7 @@ INCLUDE_DIRECTORIES(include) OPTION(FILE_SUPPORT "File plugin support" ON) OPTION(IWINFO_SUPPORT "libiwinfo plugin support" ON) +OPTION(RPCSYS_SUPPORT "rpc-sys plugin support" ON) SET(CMAKE_SHARED_LIBRARY_LINK_C_FLAGS "") @@ -39,6 +40,13 @@ IF(FILE_SUPPORT) SET_TARGET_PROPERTIES(file_plugin PROPERTIES OUTPUT_NAME file PREFIX "") ENDIF() +IF(RPCSYS_SUPPORT) + SET(PLUGINS ${PLUGINS} rpcsys_plugin) + ADD_LIBRARY(rpcsys_plugin MODULE sys.c) + TARGET_LINK_LIBRARIES(rpcsys_plugin ubox ubus) + SET_TARGET_PROPERTIES(rpcsys_plugin PROPERTIES OUTPUT_NAME rpcsys PREFIX "") +ENDIF() + IF (IWINFO_SUPPORT) SET(PLUGINS ${PLUGINS} iwinfo_plugin) ADD_LIBRARY(iwinfo_plugin MODULE iwinfo.c) diff --git a/sys.c b/sys.c new file mode 100644 index 0000000..b90aa6b --- /dev/null +++ b/sys.c @@ -0,0 +1,250 @@ +/* + * rpcd - UBUS RPC server + * + * Copyright (C) 2013-2014 Jo-Philipp Wich + * + * Permission to use, copy, modify, and/or distribute this software for any + * purpose with or without fee is hereby granted, provided that the above + * copyright notice and this permission notice appear in all copies. + * + * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES + * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF + * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR + * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES + * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN + * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF + * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. + */ + +#include + +#include +#include +#include +#include + +static const struct rpc_daemon_ops *ops; + +enum { + RPC_P_USER, + RPC_P_PASSWORD, + __RPC_P_MAX +}; + +static const struct blobmsg_policy rpc_password_policy[__RPC_P_MAX] = { + [RPC_P_USER] = { .name = "user", .type = BLOBMSG_TYPE_STRING }, + [RPC_P_PASSWORD] = { .name = "password", .type = BLOBMSG_TYPE_STRING }, +}; + +enum { + RPC_UPGRADE_KEEP, + __RPC_UPGRADE_MAX +}; + +static const struct blobmsg_policy rpc_upgrade_policy[__RPC_UPGRADE_MAX] = { + [RPC_UPGRADE_KEEP] = { .name = "keep", .type = BLOBMSG_TYPE_BOOL }, +}; + +static int +rpc_errno_status(void) +{ + switch (errno) + { + case EACCES: + return UBUS_STATUS_PERMISSION_DENIED; + + case ENOTDIR: + return UBUS_STATUS_INVALID_ARGUMENT; + + case ENOENT: + return UBUS_STATUS_NOT_FOUND; + + case EINVAL: + return UBUS_STATUS_INVALID_ARGUMENT; + + default: + return UBUS_STATUS_UNKNOWN_ERROR; + } +} + +static int +rpc_cgi_password_set(struct ubus_context *ctx, struct ubus_object *obj, + struct ubus_request_data *req, const char *method, + struct blob_attr *msg) +{ + pid_t pid; + int fd, fds[2]; + struct stat s; + struct blob_attr *tb[__RPC_P_MAX]; + + blobmsg_parse(rpc_password_policy, __RPC_P_MAX, tb, + blob_data(msg), blob_len(msg)); + + if (!tb[RPC_P_USER] || !tb[RPC_P_PASSWORD]) + return UBUS_STATUS_INVALID_ARGUMENT; + + if (stat("/usr/bin/passwd", &s)) + return UBUS_STATUS_NOT_FOUND; + + if (!(s.st_mode & S_IXUSR)) + return UBUS_STATUS_PERMISSION_DENIED; + + if (pipe(fds)) + return rpc_errno_status(); + + switch ((pid = fork())) + { + case -1: + close(fds[0]); + close(fds[1]); + return rpc_errno_status(); + + case 0: + uloop_done(); + + dup2(fds[0], 0); + close(fds[0]); + close(fds[1]); + + if ((fd = open("/dev/null", O_RDWR)) > -1) + { + dup2(fd, 1); + dup2(fd, 2); + close(fd); + } + + chdir("/"); + + if (execl("/usr/bin/passwd", "/usr/bin/passwd", + blobmsg_data(tb[RPC_P_USER]), NULL)) + return rpc_errno_status(); + + default: + close(fds[0]); + + write(fds[1], blobmsg_data(tb[RPC_P_PASSWORD]), + blobmsg_data_len(tb[RPC_P_PASSWORD]) - 1); + write(fds[1], "\n", 1); + + usleep(100 * 1000); + + write(fds[1], blobmsg_data(tb[RPC_P_PASSWORD]), + blobmsg_data_len(tb[RPC_P_PASSWORD]) - 1); + write(fds[1], "\n", 1); + + close(fds[1]); + + waitpid(pid, NULL, 0); + + return 0; + } +} + +static int +rpc_sys_upgrade_test(struct ubus_context *ctx, struct ubus_object *obj, + struct ubus_request_data *req, const char *method, + struct blob_attr *msg) +{ + const char *cmd[4] = { "sysupgrade", "--test", "/tmp/firmware.bin", NULL }; + return ops->exec(cmd, NULL, NULL, NULL, NULL, NULL, ctx, req); +} + +static int +rpc_sys_upgrade_start(struct ubus_context *ctx, struct ubus_object *obj, + struct ubus_request_data *req, const char *method, + struct blob_attr *msg) +{ + struct blob_attr *tb[__RPC_UPGRADE_MAX]; + char * const cmd[4] = { "/sbin/sysupgrade", "-n", "/tmp/firmware.bin", NULL }; + char * const cmd_keep[3] = { "/sbin/sysupgrade", "/tmp/firmware.bin", NULL }; + char * const * c = cmd; + + blobmsg_parse(rpc_upgrade_policy, __RPC_UPGRADE_MAX, tb, + blob_data(msg), blob_len(msg)); + + if (tb[RPC_UPGRADE_KEEP] && blobmsg_get_bool(tb[RPC_UPGRADE_KEEP])) + c = cmd_keep; + + if (!fork()) { + /* wait for the RPC call to complete */ + sleep(2); + return execv(c[0], c); + } + + return 0; +} + +static int +rpc_sys_upgrade_clean(struct ubus_context *ctx, struct ubus_object *obj, + struct ubus_request_data *req, const char *method, + struct blob_attr *msg) +{ + if (unlink("/tmp/firmware.bin")) + return rpc_errno_status(); + + return 0; +} + +static int +rpc_sys_factory(struct ubus_context *ctx, struct ubus_object *obj, + struct ubus_request_data *req, const char *method, + struct blob_attr *msg) +{ + char * const cmd[4] = { "/sbin/jffs2reset", "-y", "-r", NULL }; + + if (!fork()) { + /* wait for the RPC call to complete */ + sleep(2); + return execv(cmd[0], cmd); + } + + return 0; +} + +static int +rpc_sys_reboot(struct ubus_context *ctx, struct ubus_object *obj, + struct ubus_request_data *req, const char *method, + struct blob_attr *msg) +{ + if (!fork()) { + sync(); + sleep(2); + reboot(RB_AUTOBOOT); + while (1) + ; + } + + return 0; +} + +static int +rpc_sys_api_init(const struct rpc_daemon_ops *o, struct ubus_context *ctx) +{ + static const struct ubus_method sys_methods[] = { + UBUS_METHOD("password_set", rpc_cgi_password_set, rpc_password_policy), + UBUS_METHOD_NOARG("upgrade_test", rpc_sys_upgrade_test), + UBUS_METHOD("upgrade_start", rpc_sys_upgrade_start, + rpc_upgrade_policy), + UBUS_METHOD_NOARG("upgrade_clean", rpc_sys_upgrade_clean), + UBUS_METHOD_NOARG("factory", rpc_sys_factory), + UBUS_METHOD_NOARG("reboot", rpc_sys_reboot), + }; + + static struct ubus_object_type sys_type = + UBUS_OBJECT_TYPE("luci-rpc-sys", sys_methods); + + static struct ubus_object obj = { + .name = "rpc-sys", + .type = &sys_type, + .methods = sys_methods, + .n_methods = ARRAY_SIZE(sys_methods), + }; + + ops = o; + + return ubus_add_object(ctx, &obj); +} + +struct rpc_plugin rpc_plugin = { + .init = rpc_sys_api_init +}; -- 2.25.1