init.c revision 1.43
1 1.43 lukem /* $NetBSD: init.c,v 1.43 2001/06/18 01:38:05 lukem Exp $ */ 2 1.19 cgd 3 1.8 cgd /*- 4 1.15 pk * Copyright (c) 1991, 1993 5 1.15 pk * The Regents of the University of California. All rights reserved. 6 1.1 cgd * 7 1.8 cgd * This code is derived from software contributed to Berkeley by 8 1.8 cgd * Donn Seeley at Berkeley Software Design, Inc. 9 1.8 cgd * 10 1.1 cgd * Redistribution and use in source and binary forms, with or without 11 1.1 cgd * modification, are permitted provided that the following conditions 12 1.1 cgd * are met: 13 1.1 cgd * 1. Redistributions of source code must retain the above copyright 14 1.1 cgd * notice, this list of conditions and the following disclaimer. 15 1.1 cgd * 2. Redistributions in binary form must reproduce the above copyright 16 1.1 cgd * notice, this list of conditions and the following disclaimer in the 17 1.1 cgd * documentation and/or other materials provided with the distribution. 18 1.1 cgd * 3. All advertising materials mentioning features or use of this software 19 1.1 cgd * must display the following acknowledgement: 20 1.8 cgd * This product includes software developed by the University of 21 1.8 cgd * California, Berkeley and its contributors. 22 1.8 cgd * 4. Neither the name of the University nor the names of its contributors 23 1.8 cgd * may be used to endorse or promote products derived from this software 24 1.1 cgd * without specific prior written permission. 25 1.1 cgd * 26 1.8 cgd * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 27 1.1 cgd * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 28 1.1 cgd * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 29 1.8 cgd * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 30 1.1 cgd * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 31 1.1 cgd * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 32 1.1 cgd * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 33 1.1 cgd * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 34 1.1 cgd * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 35 1.1 cgd * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 36 1.1 cgd * SUCH DAMAGE. 37 1.1 cgd */ 38 1.3 cgd 39 1.26 perry #include <sys/cdefs.h> 40 1.8 cgd #ifndef lint 41 1.26 perry __COPYRIGHT("@(#) Copyright (c) 1991, 1993\n" 42 1.26 perry " The Regents of the University of California. All rights reserved.\n"); 43 1.8 cgd #endif /* not lint */ 44 1.8 cgd 45 1.8 cgd #ifndef lint 46 1.19 cgd #if 0 47 1.25 perry static char sccsid[] = "@(#)init.c 8.2 (Berkeley) 4/28/95"; 48 1.19 cgd #else 49 1.43 lukem __RCSID("$NetBSD: init.c,v 1.43 2001/06/18 01:38:05 lukem Exp $"); 50 1.19 cgd #endif 51 1.8 cgd #endif /* not lint */ 52 1.8 cgd 53 1.8 cgd #include <sys/param.h> 54 1.8 cgd #include <sys/sysctl.h> 55 1.1 cgd #include <sys/wait.h> 56 1.28 christos #include <sys/mman.h> 57 1.28 christos #include <sys/stat.h> 58 1.28 christos #include <sys/mount.h> 59 1.28 christos #ifdef DEBUG 60 1.28 christos #include <sys/sysctl.h> 61 1.28 christos #include <machine/cpu.h> 62 1.28 christos #endif 63 1.8 cgd 64 1.8 cgd #include <db.h> 65 1.8 cgd #include <errno.h> 66 1.8 cgd #include <fcntl.h> 67 1.8 cgd #include <signal.h> 68 1.8 cgd #include <stdio.h> 69 1.8 cgd #include <stdlib.h> 70 1.8 cgd #include <string.h> 71 1.8 cgd #include <syslog.h> 72 1.8 cgd #include <time.h> 73 1.1 cgd #include <ttyent.h> 74 1.1 cgd #include <unistd.h> 75 1.22 jtc #include <util.h> 76 1.28 christos #include <paths.h> 77 1.28 christos #include <err.h> 78 1.1 cgd 79 1.8 cgd #include <stdarg.h> 80 1.8 cgd 81 1.8 cgd #ifdef SECURE 82 1.5 cgd #include <pwd.h> 83 1.5 cgd #endif 84 1.5 cgd 85 1.8 cgd #include "pathnames.h" 86 1.8 cgd 87 1.8 cgd /* 88 1.8 cgd * Sleep times; used to prevent thrashing. 89 1.8 cgd */ 90 1.8 cgd #define GETTY_SPACING 5 /* N secs minimum getty spacing */ 91 1.8 cgd #define GETTY_SLEEP 30 /* sleep N secs after spacing problem */ 92 1.8 cgd #define WINDOW_WAIT 3 /* wait N secs after starting window */ 93 1.8 cgd #define STALL_TIMEOUT 30 /* wait N secs after warning */ 94 1.8 cgd #define DEATH_WATCH 10 /* wait N secs for procs to die */ 95 1.8 cgd 96 1.39 wiz int main(int, char *[]); 97 1.27 perry 98 1.39 wiz void handle(sig_t, ...); 99 1.39 wiz void delset(sigset_t *, ...); 100 1.8 cgd 101 1.39 wiz void stall(const char *, ...) 102 1.28 christos __attribute__((__format__(__printf__,1,2))); 103 1.39 wiz void warning(const char *, ...) 104 1.28 christos __attribute__((__format__(__printf__,1,2))); 105 1.39 wiz void emergency(const char *, ...) 106 1.28 christos __attribute__((__format__(__printf__,1,2))); 107 1.39 wiz void disaster(int); 108 1.39 wiz void badsys(int); 109 1.8 cgd 110 1.8 cgd /* 111 1.8 cgd * We really need a recursive typedef... 112 1.8 cgd * The following at least guarantees that the return type of (*state_t)() 113 1.8 cgd * is sufficiently wide to hold a function pointer. 114 1.8 cgd */ 115 1.39 wiz typedef long (*state_func_t)(void); 116 1.39 wiz typedef state_func_t (*state_t)(void); 117 1.8 cgd 118 1.39 wiz state_func_t single_user(void); 119 1.39 wiz state_func_t runcom(void); 120 1.39 wiz state_func_t read_ttys(void); 121 1.39 wiz state_func_t multi_user(void); 122 1.39 wiz state_func_t clean_ttys(void); 123 1.39 wiz state_func_t catatonia(void); 124 1.39 wiz state_func_t death(void); 125 1.8 cgd 126 1.8 cgd enum { AUTOBOOT, FASTBOOT } runcom_mode = AUTOBOOT; 127 1.8 cgd 128 1.39 wiz void transition(state_t); 129 1.13 cgd #ifndef LETS_GET_SMALL 130 1.8 cgd state_t requested_transition = runcom; 131 1.13 cgd #else /* LETS_GET_SMALL */ 132 1.13 cgd state_t requested_transition = single_user; 133 1.13 cgd #endif /* LETS_GET_SMALL */ 134 1.8 cgd 135 1.40 wiz void setctty(const char *); 136 1.8 cgd 137 1.8 cgd typedef struct init_session { 138 1.8 cgd int se_index; /* index of entry in ttys file */ 139 1.8 cgd pid_t se_process; /* controlling process */ 140 1.8 cgd time_t se_started; /* used to avoid thrashing */ 141 1.8 cgd int se_flags; /* status of session */ 142 1.8 cgd #define SE_SHUTDOWN 0x1 /* session won't be restarted */ 143 1.21 mycroft #define SE_PRESENT 0x2 /* session is in /etc/ttys */ 144 1.8 cgd char *se_device; /* filename of port */ 145 1.8 cgd char *se_getty; /* what to run on that port */ 146 1.8 cgd char **se_getty_argv; /* pre-parsed argument array */ 147 1.8 cgd char *se_window; /* window system (started only once) */ 148 1.8 cgd char **se_window_argv; /* pre-parsed argument array */ 149 1.8 cgd struct init_session *se_prev; 150 1.8 cgd struct init_session *se_next; 151 1.8 cgd } session_t; 152 1.8 cgd 153 1.39 wiz void free_session(session_t *); 154 1.39 wiz session_t *new_session(session_t *, int, struct ttyent *); 155 1.8 cgd session_t *sessions; 156 1.8 cgd 157 1.39 wiz char **construct_argv(char *); 158 1.39 wiz void start_window_system(session_t *); 159 1.39 wiz void collect_child(pid_t); 160 1.39 wiz pid_t start_getty(session_t *); 161 1.39 wiz void transition_handler(int); 162 1.39 wiz void alrm_handler(int); 163 1.39 wiz void setsecuritylevel(int); 164 1.39 wiz int getsecuritylevel(void); 165 1.39 wiz int setupargv(session_t *, struct ttyent *); 166 1.8 cgd int clang; 167 1.8 cgd 168 1.39 wiz void clear_session_logs(session_t *); 169 1.8 cgd 170 1.39 wiz int start_session_db(void); 171 1.39 wiz void add_session(session_t *); 172 1.39 wiz void del_session(session_t *); 173 1.39 wiz session_t *find_session(pid_t); 174 1.8 cgd DB *session_db; 175 1.8 cgd 176 1.28 christos #ifdef MSDOSFS_ROOT 177 1.39 wiz static void msdosfs_root(void); 178 1.28 christos #endif 179 1.28 christos 180 1.8 cgd /* 181 1.8 cgd * The mother of all processes. 182 1.8 cgd */ 183 1.8 cgd int 184 1.43 lukem main(int argc, char **argv) 185 1.8 cgd { 186 1.8 cgd struct sigaction sa; 187 1.8 cgd sigset_t mask; 188 1.37 soren #ifndef LETS_GET_SMALL 189 1.37 soren int c; 190 1.8 cgd 191 1.8 cgd /* Dispose of random users. */ 192 1.8 cgd if (getuid() != 0) { 193 1.28 christos errno = EPERM; 194 1.35 drochner err(1, NULL); 195 1.8 cgd } 196 1.8 cgd 197 1.8 cgd /* System V users like to reexec init. */ 198 1.28 christos if (getpid() != 1) 199 1.28 christos errx(1, "already running"); 200 1.28 christos #endif 201 1.8 cgd 202 1.8 cgd /* 203 1.8 cgd * Create an initial session. 204 1.8 cgd */ 205 1.8 cgd if (setsid() < 0) 206 1.28 christos warn("initial setsid() failed"); 207 1.12 cgd 208 1.12 cgd /* 209 1.12 cgd * Establish an initial user so that programs running 210 1.12 cgd * single user do not freak out and die (like passwd). 211 1.12 cgd */ 212 1.12 cgd if (setlogin("root") < 0) 213 1.28 christos warn("setlogin() failed"); 214 1.28 christos 215 1.28 christos 216 1.28 christos #ifdef MSDOSFS_ROOT 217 1.28 christos msdosfs_root(); 218 1.28 christos #endif 219 1.28 christos 220 1.28 christos #ifndef LETS_GET_SMALL 221 1.28 christos /* 222 1.28 christos * Note that this does NOT open a file... 223 1.28 christos * Does 'init' deserve its own facility number? 224 1.28 christos */ 225 1.42 lukem openlog("init", LOG_CONS, LOG_AUTH); 226 1.28 christos #endif /* LETS_GET_SMALL */ 227 1.28 christos 228 1.8 cgd 229 1.13 cgd #ifndef LETS_GET_SMALL 230 1.8 cgd /* 231 1.8 cgd * This code assumes that we always get arguments through flags, 232 1.8 cgd * never through bits set in some random machine register. 233 1.8 cgd */ 234 1.8 cgd while ((c = getopt(argc, argv, "sf")) != -1) 235 1.8 cgd switch (c) { 236 1.8 cgd case 's': 237 1.8 cgd requested_transition = single_user; 238 1.8 cgd break; 239 1.8 cgd case 'f': 240 1.8 cgd runcom_mode = FASTBOOT; 241 1.8 cgd break; 242 1.8 cgd default: 243 1.8 cgd warning("unrecognized flag '-%c'", c); 244 1.8 cgd break; 245 1.8 cgd } 246 1.8 cgd 247 1.8 cgd if (optind != argc) 248 1.8 cgd warning("ignoring excess arguments"); 249 1.13 cgd #else /* LETS_GET_SMALL */ 250 1.13 cgd requested_transition = single_user; 251 1.13 cgd #endif /* LETS_GET_SMALL */ 252 1.8 cgd 253 1.8 cgd /* 254 1.8 cgd * We catch or block signals rather than ignore them, 255 1.8 cgd * so that they get reset on exec. 256 1.8 cgd */ 257 1.8 cgd handle(badsys, SIGSYS, 0); 258 1.8 cgd handle(disaster, SIGABRT, SIGFPE, SIGILL, SIGSEGV, 259 1.8 cgd SIGBUS, SIGXCPU, SIGXFSZ, 0); 260 1.8 cgd handle(transition_handler, SIGHUP, SIGTERM, SIGTSTP, 0); 261 1.8 cgd handle(alrm_handler, SIGALRM, 0); 262 1.8 cgd sigfillset(&mask); 263 1.8 cgd delset(&mask, SIGABRT, SIGFPE, SIGILL, SIGSEGV, SIGBUS, SIGSYS, 264 1.8 cgd SIGXCPU, SIGXFSZ, SIGHUP, SIGTERM, SIGTSTP, SIGALRM, 0); 265 1.8 cgd sigprocmask(SIG_SETMASK, &mask, (sigset_t *) 0); 266 1.8 cgd sigemptyset(&sa.sa_mask); 267 1.8 cgd sa.sa_flags = 0; 268 1.8 cgd sa.sa_handler = SIG_IGN; 269 1.8 cgd (void) sigaction(SIGTTIN, &sa, (struct sigaction *)0); 270 1.8 cgd (void) sigaction(SIGTTOU, &sa, (struct sigaction *)0); 271 1.8 cgd 272 1.8 cgd /* 273 1.8 cgd * Paranoia. 274 1.8 cgd */ 275 1.8 cgd close(0); 276 1.8 cgd close(1); 277 1.8 cgd close(2); 278 1.8 cgd 279 1.8 cgd /* 280 1.8 cgd * Start the state machine. 281 1.8 cgd */ 282 1.8 cgd transition(requested_transition); 283 1.8 cgd 284 1.8 cgd /* 285 1.8 cgd * Should never reach here. 286 1.8 cgd */ 287 1.8 cgd return 1; 288 1.8 cgd } 289 1.8 cgd 290 1.8 cgd /* 291 1.8 cgd * Associate a function with a signal handler. 292 1.8 cgd */ 293 1.8 cgd void 294 1.8 cgd handle(sig_t handler, ...) 295 1.8 cgd { 296 1.8 cgd int sig; 297 1.8 cgd struct sigaction sa; 298 1.33 thorpej sigset_t mask_everything; 299 1.8 cgd va_list ap; 300 1.8 cgd 301 1.8 cgd va_start(ap, handler); 302 1.7 cgd 303 1.8 cgd sa.sa_handler = handler; 304 1.8 cgd sigfillset(&mask_everything); 305 1.1 cgd 306 1.27 perry while ((sig = va_arg(ap, int)) != 0) { 307 1.8 cgd sa.sa_mask = mask_everything; 308 1.8 cgd /* XXX SA_RESTART? */ 309 1.8 cgd sa.sa_flags = sig == SIGCHLD ? SA_NOCLDSTOP : 0; 310 1.8 cgd sigaction(sig, &sa, (struct sigaction *) 0); 311 1.8 cgd } 312 1.8 cgd va_end(ap); 313 1.8 cgd } 314 1.1 cgd 315 1.8 cgd /* 316 1.8 cgd * Delete a set of signals from a mask. 317 1.8 cgd */ 318 1.8 cgd void 319 1.8 cgd delset(sigset_t *maskp, ...) 320 1.8 cgd { 321 1.8 cgd int sig; 322 1.8 cgd va_list ap; 323 1.8 cgd 324 1.8 cgd va_start(ap, maskp); 325 1.1 cgd 326 1.27 perry while ((sig = va_arg(ap, int)) != 0) 327 1.8 cgd sigdelset(maskp, sig); 328 1.8 cgd va_end(ap); 329 1.8 cgd } 330 1.8 cgd 331 1.8 cgd /* 332 1.8 cgd * Log a message and sleep for a while (to give someone an opportunity 333 1.8 cgd * to read it and to save log or hardcopy output if the problem is chronic). 334 1.8 cgd * NB: should send a message to the session logger to avoid blocking. 335 1.8 cgd */ 336 1.8 cgd void 337 1.28 christos stall(const char *message, ...) 338 1.8 cgd { 339 1.8 cgd va_list ap; 340 1.8 cgd 341 1.8 cgd va_start(ap, message); 342 1.8 cgd vsyslog(LOG_ALERT, message, ap); 343 1.8 cgd va_end(ap); 344 1.24 mycroft closelog(); 345 1.8 cgd sleep(STALL_TIMEOUT); 346 1.8 cgd } 347 1.8 cgd 348 1.8 cgd /* 349 1.8 cgd * Like stall(), but doesn't sleep. 350 1.8 cgd * If cpp had variadic macros, the two functions could be #defines for another. 351 1.8 cgd * NB: should send a message to the session logger to avoid blocking. 352 1.8 cgd */ 353 1.8 cgd void 354 1.28 christos warning(const char *message, ...) 355 1.8 cgd { 356 1.8 cgd va_list ap; 357 1.8 cgd 358 1.8 cgd va_start(ap, message); 359 1.8 cgd vsyslog(LOG_ALERT, message, ap); 360 1.8 cgd va_end(ap); 361 1.24 mycroft closelog(); 362 1.8 cgd } 363 1.1 cgd 364 1.8 cgd /* 365 1.8 cgd * Log an emergency message. 366 1.8 cgd * NB: should send a message to the session logger to avoid blocking. 367 1.8 cgd */ 368 1.8 cgd void 369 1.28 christos emergency(const char *message, ...) 370 1.8 cgd { 371 1.8 cgd va_list ap; 372 1.8 cgd 373 1.8 cgd va_start(ap, message); 374 1.8 cgd vsyslog(LOG_EMERG, message, ap); 375 1.8 cgd va_end(ap); 376 1.24 mycroft closelog(); 377 1.8 cgd } 378 1.1 cgd 379 1.8 cgd /* 380 1.8 cgd * Catch a SIGSYS signal. 381 1.8 cgd * 382 1.8 cgd * These may arise if a system does not support sysctl. 383 1.8 cgd * We tolerate up to 25 of these, then throw in the towel. 384 1.8 cgd */ 385 1.1 cgd void 386 1.39 wiz badsys(int sig) 387 1.1 cgd { 388 1.8 cgd static int badcount = 0; 389 1.8 cgd 390 1.8 cgd if (badcount++ < 25) 391 1.8 cgd return; 392 1.8 cgd disaster(sig); 393 1.1 cgd } 394 1.1 cgd 395 1.8 cgd /* 396 1.8 cgd * Catch an unexpected signal. 397 1.8 cgd */ 398 1.1 cgd void 399 1.39 wiz disaster(int sig) 400 1.8 cgd { 401 1.43 lukem 402 1.20 jtc emergency("fatal signal: %s", strsignal(sig)); 403 1.8 cgd sleep(STALL_TIMEOUT); 404 1.8 cgd _exit(sig); /* reboot */ 405 1.8 cgd } 406 1.8 cgd 407 1.8 cgd /* 408 1.8 cgd * Get the security level of the kernel. 409 1.8 cgd */ 410 1.8 cgd int 411 1.39 wiz getsecuritylevel(void) 412 1.1 cgd { 413 1.8 cgd #ifdef KERN_SECURELVL 414 1.8 cgd int name[2], curlevel; 415 1.8 cgd size_t len; 416 1.8 cgd 417 1.8 cgd name[0] = CTL_KERN; 418 1.8 cgd name[1] = KERN_SECURELVL; 419 1.8 cgd len = sizeof curlevel; 420 1.8 cgd if (sysctl(name, 2, &curlevel, &len, NULL, 0) == -1) { 421 1.8 cgd emergency("cannot get kernel security level: %s", 422 1.8 cgd strerror(errno)); 423 1.8 cgd return (-1); 424 1.8 cgd } 425 1.8 cgd return (curlevel); 426 1.8 cgd #else 427 1.8 cgd return (-1); 428 1.8 cgd #endif 429 1.1 cgd } 430 1.1 cgd 431 1.8 cgd /* 432 1.8 cgd * Set the security level of the kernel. 433 1.8 cgd */ 434 1.1 cgd void 435 1.39 wiz setsecuritylevel(int newlevel) 436 1.1 cgd { 437 1.8 cgd #ifdef KERN_SECURELVL 438 1.8 cgd int name[2], curlevel; 439 1.1 cgd 440 1.8 cgd curlevel = getsecuritylevel(); 441 1.8 cgd if (newlevel == curlevel) 442 1.8 cgd return; 443 1.8 cgd name[0] = CTL_KERN; 444 1.8 cgd name[1] = KERN_SECURELVL; 445 1.8 cgd if (sysctl(name, 2, NULL, NULL, &newlevel, sizeof newlevel) == -1) { 446 1.8 cgd emergency( 447 1.8 cgd "cannot change kernel security level from %d to %d: %s", 448 1.8 cgd curlevel, newlevel, strerror(errno)); 449 1.8 cgd return; 450 1.1 cgd } 451 1.8 cgd #ifdef SECURE 452 1.8 cgd warning("kernel security level changed from %d to %d", 453 1.8 cgd curlevel, newlevel); 454 1.8 cgd #endif 455 1.8 cgd #endif 456 1.1 cgd } 457 1.1 cgd 458 1.8 cgd /* 459 1.8 cgd * Change states in the finite state machine. 460 1.8 cgd * The initial state is passed as an argument. 461 1.8 cgd */ 462 1.1 cgd void 463 1.39 wiz transition(state_t s) 464 1.1 cgd { 465 1.43 lukem 466 1.8 cgd for (;;) 467 1.8 cgd s = (state_t) (*s)(); 468 1.1 cgd } 469 1.1 cgd 470 1.8 cgd /* 471 1.8 cgd * Close out the accounting files for a login session. 472 1.8 cgd * NB: should send a message to the session logger to avoid blocking. 473 1.8 cgd */ 474 1.8 cgd void 475 1.39 wiz clear_session_logs(session_t *sp) 476 1.8 cgd { 477 1.8 cgd char *line = sp->se_device + sizeof(_PATH_DEV) - 1; 478 1.8 cgd 479 1.8 cgd if (logout(line)) 480 1.8 cgd logwtmp(line, "", ""); 481 1.8 cgd } 482 1.1 cgd 483 1.8 cgd /* 484 1.8 cgd * Start a session and allocate a controlling terminal. 485 1.8 cgd * Only called by children of init after forking. 486 1.8 cgd */ 487 1.8 cgd void 488 1.40 wiz setctty(const char *name) 489 1.1 cgd { 490 1.8 cgd int fd; 491 1.1 cgd 492 1.8 cgd (void) revoke(name); 493 1.8 cgd sleep (2); /* leave DTR low */ 494 1.8 cgd if ((fd = open(name, O_RDWR)) == -1) { 495 1.8 cgd stall("can't open %s: %m", name); 496 1.8 cgd _exit(1); 497 1.7 cgd } 498 1.8 cgd if (login_tty(fd) == -1) { 499 1.8 cgd stall("can't get %s for controlling terminal: %m", name); 500 1.8 cgd _exit(1); 501 1.8 cgd } 502 1.8 cgd } 503 1.8 cgd 504 1.8 cgd /* 505 1.8 cgd * Bring the system up single user. 506 1.8 cgd */ 507 1.8 cgd state_func_t 508 1.39 wiz single_user(void) 509 1.8 cgd { 510 1.8 cgd pid_t pid, wpid; 511 1.8 cgd int status; 512 1.34 tls int from_securitylevel; 513 1.8 cgd sigset_t mask; 514 1.31 perry #ifdef ALTSHELL 515 1.40 wiz const char *shell = _PATH_BSHELL; 516 1.31 perry #endif 517 1.8 cgd char *argv[2]; 518 1.8 cgd #ifdef SECURE 519 1.8 cgd struct ttyent *typ; 520 1.10 cgd struct passwd *pp; 521 1.8 cgd char *clear, *password; 522 1.7 cgd #endif 523 1.26 perry #ifdef ALTSHELL 524 1.26 perry char altshell[128]; 525 1.26 perry #endif /* ALTSHELL */ 526 1.7 cgd 527 1.8 cgd /* 528 1.8 cgd * If the kernel is in secure mode, downgrade it to insecure mode. 529 1.8 cgd */ 530 1.34 tls from_securitylevel = getsecuritylevel(); 531 1.34 tls if (from_securitylevel > 0) 532 1.8 cgd setsecuritylevel(0); 533 1.8 cgd 534 1.8 cgd if ((pid = fork()) == 0) { 535 1.8 cgd /* 536 1.8 cgd * Start the single user session. 537 1.8 cgd */ 538 1.8 cgd setctty(_PATH_CONSOLE); 539 1.8 cgd 540 1.8 cgd #ifdef SECURE 541 1.8 cgd /* 542 1.8 cgd * Check the root password. 543 1.8 cgd * We don't care if the console is 'on' by default; 544 1.8 cgd * it's the only tty that can be 'off' and 'secure'. 545 1.8 cgd */ 546 1.10 cgd typ = getttynam("console"); 547 1.10 cgd pp = getpwnam("root"); 548 1.34 tls if (typ && (from_securitylevel >=2 || (typ->ty_status 549 1.34 tls & TTY_SECURE) == 0) && pp && *pp->pw_passwd != '\0') { 550 1.26 perry fprintf(stderr, 551 1.26 perry "Enter root password, or ^D to go multi-user\n"); 552 1.8 cgd for (;;) { 553 1.8 cgd clear = getpass("Password:"); 554 1.8 cgd if (clear == 0 || *clear == '\0') 555 1.8 cgd _exit(0); 556 1.8 cgd password = crypt(clear, pp->pw_passwd); 557 1.18 mycroft memset(clear, 0, _PASSWORD_LEN); 558 1.8 cgd if (strcmp(password, pp->pw_passwd) == 0) 559 1.8 cgd break; 560 1.8 cgd warning("single-user login failed\n"); 561 1.1 cgd } 562 1.8 cgd } 563 1.8 cgd endttyent(); 564 1.10 cgd endpwent(); 565 1.9 cgd #endif /* SECURE */ 566 1.1 cgd 567 1.26 perry #ifdef ALTSHELL 568 1.26 perry fprintf(stderr, "Enter pathname of shell or RETURN for sh: "); 569 1.38 wiz if (fgets(altshell, sizeof(altshell), stdin) == NULL) { 570 1.38 wiz altshell[0] = '\0'; 571 1.38 wiz } else { 572 1.38 wiz /* nuke \n */ 573 1.38 wiz char *p; 574 1.38 wiz 575 1.41 wiz if ((p = strchr(altshell, '\n')) != NULL) 576 1.38 wiz *p = '\0'; 577 1.38 wiz } 578 1.26 perry 579 1.26 perry if (altshell[0]) 580 1.26 perry shell = altshell; 581 1.26 perry #endif /* ALTSHELL */ 582 1.8 cgd 583 1.8 cgd /* 584 1.8 cgd * Unblock signals. 585 1.8 cgd * We catch all the interesting ones, 586 1.8 cgd * and those are reset to SIG_DFL on exec. 587 1.8 cgd */ 588 1.8 cgd sigemptyset(&mask); 589 1.8 cgd sigprocmask(SIG_SETMASK, &mask, (sigset_t *) 0); 590 1.8 cgd 591 1.8 cgd /* 592 1.8 cgd * Fire off a shell. 593 1.8 cgd * If the default one doesn't work, try the Bourne shell. 594 1.8 cgd */ 595 1.8 cgd argv[0] = "-sh"; 596 1.8 cgd argv[1] = 0; 597 1.17 deraadt setenv("PATH", _PATH_STDPATH, 1); 598 1.26 perry #ifdef ALTSHELL 599 1.26 perry if (altshell[0]) 600 1.26 perry argv[0] = altshell; 601 1.8 cgd execv(shell, argv); 602 1.8 cgd emergency("can't exec %s for single user: %m", shell); 603 1.26 perry argv[0] = "-sh"; 604 1.26 perry #endif /* ALTSHELL */ 605 1.8 cgd execv(_PATH_BSHELL, argv); 606 1.8 cgd emergency("can't exec %s for single user: %m", _PATH_BSHELL); 607 1.8 cgd sleep(STALL_TIMEOUT); 608 1.8 cgd _exit(1); 609 1.8 cgd } 610 1.8 cgd 611 1.8 cgd if (pid == -1) { 612 1.8 cgd /* 613 1.8 cgd * We are seriously hosed. Do our best. 614 1.8 cgd */ 615 1.8 cgd emergency("can't fork single-user shell, trying again"); 616 1.8 cgd while (waitpid(-1, (int *) 0, WNOHANG) > 0) 617 1.8 cgd continue; 618 1.8 cgd return (state_func_t) single_user; 619 1.1 cgd } 620 1.8 cgd 621 1.8 cgd requested_transition = 0; 622 1.8 cgd do { 623 1.8 cgd if ((wpid = waitpid(-1, &status, WUNTRACED)) != -1) 624 1.8 cgd collect_child(wpid); 625 1.8 cgd if (wpid == -1) { 626 1.8 cgd if (errno == EINTR) 627 1.8 cgd continue; 628 1.8 cgd warning("wait for single-user shell failed: %m; restarting"); 629 1.8 cgd return (state_func_t) single_user; 630 1.8 cgd } 631 1.8 cgd if (wpid == pid && WIFSTOPPED(status)) { 632 1.8 cgd warning("init: shell stopped, restarting\n"); 633 1.8 cgd kill(pid, SIGCONT); 634 1.8 cgd wpid = -1; 635 1.8 cgd } 636 1.8 cgd } while (wpid != pid && !requested_transition); 637 1.1 cgd 638 1.8 cgd if (requested_transition) 639 1.8 cgd return (state_func_t) requested_transition; 640 1.1 cgd 641 1.8 cgd if (!WIFEXITED(status)) { 642 1.8 cgd if (WTERMSIG(status) == SIGKILL) { 643 1.8 cgd /* 644 1.8 cgd * reboot(8) killed shell? 645 1.8 cgd */ 646 1.8 cgd warning("single user shell terminated."); 647 1.8 cgd sleep(STALL_TIMEOUT); 648 1.8 cgd _exit(0); 649 1.8 cgd } else { 650 1.8 cgd warning("single user shell terminated, restarting"); 651 1.8 cgd return (state_func_t) single_user; 652 1.1 cgd } 653 1.8 cgd } 654 1.8 cgd 655 1.8 cgd runcom_mode = FASTBOOT; 656 1.13 cgd #ifndef LETS_GET_SMALL 657 1.8 cgd return (state_func_t) runcom; 658 1.13 cgd #else /* LETS_GET_SMALL */ 659 1.13 cgd return (state_func_t) single_user; 660 1.13 cgd #endif /* LETS_GET_SMALL */ 661 1.8 cgd } 662 1.8 cgd 663 1.13 cgd #ifndef LETS_GET_SMALL 664 1.8 cgd /* 665 1.8 cgd * Run the system startup script. 666 1.8 cgd */ 667 1.8 cgd state_func_t 668 1.39 wiz runcom(void) 669 1.8 cgd { 670 1.8 cgd pid_t pid, wpid; 671 1.8 cgd int status; 672 1.8 cgd char *argv[4]; 673 1.8 cgd struct sigaction sa; 674 1.8 cgd 675 1.8 cgd if ((pid = fork()) == 0) { 676 1.8 cgd sigemptyset(&sa.sa_mask); 677 1.8 cgd sa.sa_flags = 0; 678 1.8 cgd sa.sa_handler = SIG_IGN; 679 1.8 cgd (void) sigaction(SIGTSTP, &sa, (struct sigaction *)0); 680 1.8 cgd (void) sigaction(SIGHUP, &sa, (struct sigaction *)0); 681 1.8 cgd 682 1.8 cgd setctty(_PATH_CONSOLE); 683 1.8 cgd 684 1.8 cgd argv[0] = "sh"; 685 1.8 cgd argv[1] = _PATH_RUNCOM; 686 1.8 cgd argv[2] = runcom_mode == AUTOBOOT ? "autoboot" : 0; 687 1.8 cgd argv[3] = 0; 688 1.8 cgd 689 1.8 cgd sigprocmask(SIG_SETMASK, &sa.sa_mask, (sigset_t *) 0); 690 1.8 cgd 691 1.8 cgd execv(_PATH_BSHELL, argv); 692 1.8 cgd stall("can't exec %s for %s: %m", _PATH_BSHELL, _PATH_RUNCOM); 693 1.8 cgd _exit(1); /* force single user mode */ 694 1.1 cgd } 695 1.1 cgd 696 1.8 cgd if (pid == -1) { 697 1.8 cgd emergency("can't fork for %s on %s: %m", 698 1.8 cgd _PATH_BSHELL, _PATH_RUNCOM); 699 1.8 cgd while (waitpid(-1, (int *) 0, WNOHANG) > 0) 700 1.1 cgd continue; 701 1.8 cgd sleep(STALL_TIMEOUT); 702 1.8 cgd return (state_func_t) single_user; 703 1.8 cgd } 704 1.8 cgd 705 1.8 cgd /* 706 1.8 cgd * Copied from single_user(). This is a bit paranoid. 707 1.8 cgd */ 708 1.8 cgd do { 709 1.8 cgd if ((wpid = waitpid(-1, &status, WUNTRACED)) != -1) 710 1.8 cgd collect_child(wpid); 711 1.8 cgd if (wpid == -1) { 712 1.8 cgd if (errno == EINTR) 713 1.8 cgd continue; 714 1.8 cgd warning("wait for %s on %s failed: %m; going to single user mode", 715 1.8 cgd _PATH_BSHELL, _PATH_RUNCOM); 716 1.8 cgd return (state_func_t) single_user; 717 1.8 cgd } 718 1.8 cgd if (wpid == pid && WIFSTOPPED(status)) { 719 1.8 cgd warning("init: %s on %s stopped, restarting\n", 720 1.8 cgd _PATH_BSHELL, _PATH_RUNCOM); 721 1.8 cgd kill(pid, SIGCONT); 722 1.8 cgd wpid = -1; 723 1.8 cgd } 724 1.8 cgd } while (wpid != pid); 725 1.8 cgd 726 1.8 cgd if (WIFSIGNALED(status) && WTERMSIG(status) == SIGTERM && 727 1.8 cgd requested_transition == catatonia) { 728 1.8 cgd /* /etc/rc executed /sbin/reboot; wait for the end quietly */ 729 1.8 cgd sigset_t s; 730 1.8 cgd 731 1.8 cgd sigfillset(&s); 732 1.8 cgd for (;;) 733 1.8 cgd sigsuspend(&s); 734 1.8 cgd } 735 1.8 cgd 736 1.8 cgd if (!WIFEXITED(status)) { 737 1.8 cgd warning("%s on %s terminated abnormally, going to single user mode", 738 1.8 cgd _PATH_BSHELL, _PATH_RUNCOM); 739 1.8 cgd return (state_func_t) single_user; 740 1.8 cgd } 741 1.8 cgd 742 1.8 cgd if (WEXITSTATUS(status)) 743 1.8 cgd return (state_func_t) single_user; 744 1.8 cgd 745 1.8 cgd runcom_mode = AUTOBOOT; /* the default */ 746 1.8 cgd /* NB: should send a message to the session logger to avoid blocking. */ 747 1.8 cgd logwtmp("~", "reboot", ""); 748 1.8 cgd return (state_func_t) read_ttys; 749 1.8 cgd } 750 1.8 cgd 751 1.8 cgd /* 752 1.8 cgd * Open the session database. 753 1.8 cgd * 754 1.8 cgd * NB: We could pass in the size here; is it necessary? 755 1.8 cgd */ 756 1.8 cgd int 757 1.39 wiz start_session_db(void) 758 1.8 cgd { 759 1.43 lukem 760 1.8 cgd if (session_db && (*session_db->close)(session_db)) 761 1.8 cgd emergency("session database close: %s", strerror(errno)); 762 1.8 cgd if ((session_db = dbopen(NULL, O_RDWR, 0, DB_HASH, NULL)) == 0) { 763 1.8 cgd emergency("session database open: %s", strerror(errno)); 764 1.8 cgd return (1); 765 1.8 cgd } 766 1.8 cgd return (0); 767 1.8 cgd 768 1.8 cgd } 769 1.8 cgd 770 1.8 cgd /* 771 1.8 cgd * Add a new login session. 772 1.8 cgd */ 773 1.8 cgd void 774 1.39 wiz add_session(session_t *sp) 775 1.8 cgd { 776 1.8 cgd DBT key; 777 1.8 cgd DBT data; 778 1.8 cgd 779 1.8 cgd key.data = &sp->se_process; 780 1.8 cgd key.size = sizeof sp->se_process; 781 1.8 cgd data.data = &sp; 782 1.8 cgd data.size = sizeof sp; 783 1.8 cgd 784 1.8 cgd if ((*session_db->put)(session_db, &key, &data, 0)) 785 1.8 cgd emergency("insert %d: %s", sp->se_process, strerror(errno)); 786 1.8 cgd } 787 1.8 cgd 788 1.8 cgd /* 789 1.8 cgd * Delete an old login session. 790 1.8 cgd */ 791 1.8 cgd void 792 1.39 wiz del_session(session_t *sp) 793 1.8 cgd { 794 1.8 cgd DBT key; 795 1.8 cgd 796 1.8 cgd key.data = &sp->se_process; 797 1.8 cgd key.size = sizeof sp->se_process; 798 1.8 cgd 799 1.8 cgd if ((*session_db->del)(session_db, &key, 0)) 800 1.8 cgd emergency("delete %d: %s", sp->se_process, strerror(errno)); 801 1.8 cgd } 802 1.8 cgd 803 1.8 cgd /* 804 1.8 cgd * Look up a login session by pid. 805 1.8 cgd */ 806 1.8 cgd session_t * 807 1.8 cgd find_session(pid_t pid) 808 1.8 cgd { 809 1.8 cgd DBT key; 810 1.8 cgd DBT data; 811 1.8 cgd session_t *ret; 812 1.8 cgd 813 1.8 cgd key.data = &pid; 814 1.8 cgd key.size = sizeof pid; 815 1.8 cgd if ((*session_db->get)(session_db, &key, &data, 0) != 0) 816 1.8 cgd return 0; 817 1.25 perry memmove(&ret, data.data, sizeof(ret)); 818 1.8 cgd return ret; 819 1.8 cgd } 820 1.8 cgd 821 1.8 cgd /* 822 1.8 cgd * Construct an argument vector from a command line. 823 1.8 cgd */ 824 1.8 cgd char ** 825 1.39 wiz construct_argv(char *command) 826 1.8 cgd { 827 1.27 perry int argc = 0; 828 1.27 perry char **argv = (char **) malloc(((strlen(command) + 1) / 2 + 1) 829 1.8 cgd * sizeof (char *)); 830 1.8 cgd static const char separators[] = " \t"; 831 1.8 cgd 832 1.8 cgd if ((argv[argc++] = strtok(command, separators)) == 0) 833 1.27 perry return (NULL); 834 1.27 perry while ((argv[argc++] = strtok((char *) 0, separators))) 835 1.8 cgd continue; 836 1.27 perry return (argv); 837 1.8 cgd } 838 1.8 cgd 839 1.8 cgd /* 840 1.8 cgd * Deallocate a session descriptor. 841 1.8 cgd */ 842 1.8 cgd void 843 1.39 wiz free_session(session_t *sp) 844 1.8 cgd { 845 1.43 lukem 846 1.8 cgd free(sp->se_device); 847 1.8 cgd if (sp->se_getty) { 848 1.8 cgd free(sp->se_getty); 849 1.8 cgd free(sp->se_getty_argv); 850 1.8 cgd } 851 1.8 cgd if (sp->se_window) { 852 1.8 cgd free(sp->se_window); 853 1.8 cgd free(sp->se_window_argv); 854 1.8 cgd } 855 1.8 cgd free(sp); 856 1.8 cgd } 857 1.8 cgd 858 1.8 cgd /* 859 1.8 cgd * Allocate a new session descriptor. 860 1.8 cgd */ 861 1.8 cgd session_t * 862 1.39 wiz new_session(session_t *sprev, int session_index, struct ttyent *typ) 863 1.8 cgd { 864 1.27 perry session_t *sp; 865 1.8 cgd 866 1.8 cgd if ((typ->ty_status & TTY_ON) == 0 || 867 1.27 perry typ->ty_name == NULL || 868 1.27 perry typ->ty_getty == NULL) 869 1.27 perry return (NULL); 870 1.8 cgd 871 1.8 cgd sp = (session_t *) malloc(sizeof (session_t)); 872 1.18 mycroft memset(sp, 0, sizeof *sp); 873 1.8 cgd 874 1.21 mycroft sp->se_flags = SE_PRESENT; 875 1.8 cgd sp->se_index = session_index; 876 1.8 cgd 877 1.8 cgd sp->se_device = malloc(sizeof(_PATH_DEV) + strlen(typ->ty_name)); 878 1.8 cgd (void) sprintf(sp->se_device, "%s%s", _PATH_DEV, typ->ty_name); 879 1.8 cgd 880 1.8 cgd if (setupargv(sp, typ) == 0) { 881 1.8 cgd free_session(sp); 882 1.27 perry return (NULL); 883 1.8 cgd } 884 1.8 cgd 885 1.27 perry sp->se_next = NULL; 886 1.27 perry if (sprev == NULL) { 887 1.8 cgd sessions = sp; 888 1.27 perry sp->se_prev = NULL; 889 1.8 cgd } else { 890 1.8 cgd sprev->se_next = sp; 891 1.8 cgd sp->se_prev = sprev; 892 1.8 cgd } 893 1.8 cgd 894 1.27 perry return (sp); 895 1.8 cgd } 896 1.8 cgd 897 1.8 cgd /* 898 1.8 cgd * Calculate getty and if useful window argv vectors. 899 1.8 cgd */ 900 1.8 cgd int 901 1.39 wiz setupargv(session_t *sp, struct ttyent *typ) 902 1.8 cgd { 903 1.8 cgd 904 1.8 cgd if (sp->se_getty) { 905 1.8 cgd free(sp->se_getty); 906 1.8 cgd free(sp->se_getty_argv); 907 1.8 cgd } 908 1.8 cgd sp->se_getty = malloc(strlen(typ->ty_getty) + strlen(typ->ty_name) + 2); 909 1.8 cgd (void) sprintf(sp->se_getty, "%s %s", typ->ty_getty, typ->ty_name); 910 1.8 cgd sp->se_getty_argv = construct_argv(sp->se_getty); 911 1.27 perry if (sp->se_getty_argv == NULL) { 912 1.8 cgd warning("can't parse getty for port %s", sp->se_device); 913 1.8 cgd free(sp->se_getty); 914 1.27 perry sp->se_getty = NULL; 915 1.8 cgd return (0); 916 1.8 cgd } 917 1.8 cgd if (typ->ty_window) { 918 1.8 cgd if (sp->se_window) 919 1.8 cgd free(sp->se_window); 920 1.8 cgd sp->se_window = strdup(typ->ty_window); 921 1.8 cgd sp->se_window_argv = construct_argv(sp->se_window); 922 1.27 perry if (sp->se_window_argv == NULL) { 923 1.8 cgd warning("can't parse window for port %s", 924 1.8 cgd sp->se_device); 925 1.8 cgd free(sp->se_window); 926 1.27 perry sp->se_window = NULL; 927 1.8 cgd return (0); 928 1.1 cgd } 929 1.8 cgd } 930 1.8 cgd return (1); 931 1.8 cgd } 932 1.8 cgd 933 1.8 cgd /* 934 1.8 cgd * Walk the list of ttys and create sessions for each active line. 935 1.8 cgd */ 936 1.8 cgd state_func_t 937 1.39 wiz read_ttys(void) 938 1.8 cgd { 939 1.8 cgd int session_index = 0; 940 1.27 perry session_t *sp, *snext; 941 1.27 perry struct ttyent *typ; 942 1.8 cgd 943 1.8 cgd /* 944 1.8 cgd * Destroy any previous session state. 945 1.8 cgd * There shouldn't be any, but just in case... 946 1.8 cgd */ 947 1.8 cgd for (sp = sessions; sp; sp = snext) { 948 1.8 cgd if (sp->se_process) 949 1.8 cgd clear_session_logs(sp); 950 1.8 cgd snext = sp->se_next; 951 1.8 cgd free_session(sp); 952 1.8 cgd } 953 1.27 perry sessions = NULL; 954 1.8 cgd if (start_session_db()) 955 1.8 cgd return (state_func_t) single_user; 956 1.8 cgd 957 1.8 cgd /* 958 1.8 cgd * Allocate a session entry for each active port. 959 1.8 cgd * Note that sp starts at 0. 960 1.8 cgd */ 961 1.27 perry while ((typ = getttyent()) != NULL) 962 1.27 perry if ((snext = new_session(sp, ++session_index, typ)) != NULL) 963 1.8 cgd sp = snext; 964 1.8 cgd 965 1.8 cgd endttyent(); 966 1.8 cgd 967 1.8 cgd return (state_func_t) multi_user; 968 1.8 cgd } 969 1.8 cgd 970 1.8 cgd /* 971 1.8 cgd * Start a window system running. 972 1.8 cgd */ 973 1.8 cgd void 974 1.39 wiz start_window_system(session_t *sp) 975 1.8 cgd { 976 1.8 cgd pid_t pid; 977 1.8 cgd sigset_t mask; 978 1.8 cgd 979 1.8 cgd if ((pid = fork()) == -1) { 980 1.8 cgd emergency("can't fork for window system on port %s: %m", 981 1.8 cgd sp->se_device); 982 1.8 cgd /* hope that getty fails and we can try again */ 983 1.8 cgd return; 984 1.8 cgd } 985 1.8 cgd 986 1.8 cgd if (pid) 987 1.8 cgd return; 988 1.8 cgd 989 1.8 cgd sigemptyset(&mask); 990 1.8 cgd sigprocmask(SIG_SETMASK, &mask, (sigset_t *) 0); 991 1.8 cgd 992 1.8 cgd if (setsid() < 0) 993 1.8 cgd emergency("setsid failed (window) %m"); 994 1.8 cgd 995 1.8 cgd execv(sp->se_window_argv[0], sp->se_window_argv); 996 1.8 cgd stall("can't exec window system '%s' for port %s: %m", 997 1.8 cgd sp->se_window_argv[0], sp->se_device); 998 1.8 cgd _exit(1); 999 1.8 cgd } 1000 1.8 cgd 1001 1.8 cgd /* 1002 1.8 cgd * Start a login session running. 1003 1.8 cgd */ 1004 1.8 cgd pid_t 1005 1.39 wiz start_getty(session_t *sp) 1006 1.8 cgd { 1007 1.8 cgd pid_t pid; 1008 1.8 cgd sigset_t mask; 1009 1.8 cgd time_t current_time = time((time_t *) 0); 1010 1.8 cgd 1011 1.8 cgd /* 1012 1.8 cgd * fork(), not vfork() -- we can't afford to block. 1013 1.8 cgd */ 1014 1.8 cgd if ((pid = fork()) == -1) { 1015 1.8 cgd emergency("can't fork for getty on port %s: %m", sp->se_device); 1016 1.8 cgd return -1; 1017 1.8 cgd } 1018 1.8 cgd 1019 1.8 cgd if (pid) 1020 1.8 cgd return pid; 1021 1.8 cgd 1022 1.8 cgd if (current_time > sp->se_started && 1023 1.8 cgd current_time - sp->se_started < GETTY_SPACING) { 1024 1.8 cgd warning("getty repeating too quickly on port %s, sleeping", 1025 1.8 cgd sp->se_device); 1026 1.8 cgd sleep((unsigned) GETTY_SLEEP); 1027 1.8 cgd } 1028 1.8 cgd 1029 1.8 cgd if (sp->se_window) { 1030 1.8 cgd start_window_system(sp); 1031 1.8 cgd sleep(WINDOW_WAIT); 1032 1.1 cgd } 1033 1.8 cgd 1034 1.8 cgd sigemptyset(&mask); 1035 1.8 cgd sigprocmask(SIG_SETMASK, &mask, (sigset_t *) 0); 1036 1.8 cgd 1037 1.8 cgd execv(sp->se_getty_argv[0], sp->se_getty_argv); 1038 1.8 cgd stall("can't exec getty '%s' for port %s: %m", 1039 1.8 cgd sp->se_getty_argv[0], sp->se_device); 1040 1.8 cgd _exit(1); 1041 1.1 cgd } 1042 1.13 cgd #endif /* LETS_GET_SMALL */ 1043 1.1 cgd 1044 1.8 cgd /* 1045 1.8 cgd * Collect exit status for a child. 1046 1.8 cgd * If an exiting login, start a new login running. 1047 1.8 cgd */ 1048 1.8 cgd void 1049 1.8 cgd collect_child(pid_t pid) 1050 1.1 cgd { 1051 1.13 cgd #ifndef LETS_GET_SMALL 1052 1.27 perry session_t *sp, *sprev, *snext; 1053 1.8 cgd 1054 1.8 cgd if (! sessions) 1055 1.8 cgd return; 1056 1.8 cgd 1057 1.8 cgd if (! (sp = find_session(pid))) 1058 1.8 cgd return; 1059 1.1 cgd 1060 1.8 cgd clear_session_logs(sp); 1061 1.8 cgd del_session(sp); 1062 1.8 cgd sp->se_process = 0; 1063 1.8 cgd 1064 1.8 cgd if (sp->se_flags & SE_SHUTDOWN) { 1065 1.27 perry if ((sprev = sp->se_prev) != NULL) 1066 1.8 cgd sprev->se_next = sp->se_next; 1067 1.8 cgd else 1068 1.8 cgd sessions = sp->se_next; 1069 1.27 perry if ((snext = sp->se_next) != NULL) 1070 1.8 cgd snext->se_prev = sp->se_prev; 1071 1.8 cgd free_session(sp); 1072 1.1 cgd return; 1073 1.1 cgd } 1074 1.8 cgd 1075 1.8 cgd if ((pid = start_getty(sp)) == -1) { 1076 1.8 cgd /* serious trouble */ 1077 1.8 cgd requested_transition = clean_ttys; 1078 1.1 cgd return; 1079 1.1 cgd } 1080 1.8 cgd 1081 1.8 cgd sp->se_process = pid; 1082 1.8 cgd sp->se_started = time((time_t *) 0); 1083 1.8 cgd add_session(sp); 1084 1.13 cgd #endif /* LETS_GET_SMALL */ 1085 1.8 cgd } 1086 1.8 cgd 1087 1.8 cgd /* 1088 1.8 cgd * Catch a signal and request a state transition. 1089 1.8 cgd */ 1090 1.8 cgd void 1091 1.39 wiz transition_handler(int sig) 1092 1.8 cgd { 1093 1.8 cgd 1094 1.8 cgd switch (sig) { 1095 1.13 cgd #ifndef LETS_GET_SMALL 1096 1.8 cgd case SIGHUP: 1097 1.8 cgd requested_transition = clean_ttys; 1098 1.8 cgd break; 1099 1.8 cgd case SIGTERM: 1100 1.8 cgd requested_transition = death; 1101 1.8 cgd break; 1102 1.8 cgd case SIGTSTP: 1103 1.8 cgd requested_transition = catatonia; 1104 1.8 cgd break; 1105 1.13 cgd #endif /* LETS_GET_SMALL */ 1106 1.8 cgd default: 1107 1.8 cgd requested_transition = 0; 1108 1.8 cgd break; 1109 1.8 cgd } 1110 1.8 cgd } 1111 1.8 cgd 1112 1.13 cgd #ifndef LETS_GET_SMALL 1113 1.8 cgd /* 1114 1.8 cgd * Take the system multiuser. 1115 1.8 cgd */ 1116 1.8 cgd state_func_t 1117 1.39 wiz multi_user(void) 1118 1.8 cgd { 1119 1.8 cgd pid_t pid; 1120 1.27 perry session_t *sp; 1121 1.8 cgd 1122 1.8 cgd requested_transition = 0; 1123 1.8 cgd 1124 1.8 cgd /* 1125 1.8 cgd * If the administrator has not set the security level to -1 1126 1.8 cgd * to indicate that the kernel should not run multiuser in secure 1127 1.8 cgd * mode, and the run script has not set a higher level of security 1128 1.8 cgd * than level 1, then put the kernel into secure mode. 1129 1.8 cgd */ 1130 1.8 cgd if (getsecuritylevel() == 0) 1131 1.8 cgd setsecuritylevel(1); 1132 1.8 cgd 1133 1.8 cgd for (sp = sessions; sp; sp = sp->se_next) { 1134 1.8 cgd if (sp->se_process) 1135 1.8 cgd continue; 1136 1.8 cgd if ((pid = start_getty(sp)) == -1) { 1137 1.8 cgd /* serious trouble */ 1138 1.8 cgd requested_transition = clean_ttys; 1139 1.1 cgd break; 1140 1.8 cgd } 1141 1.8 cgd sp->se_process = pid; 1142 1.8 cgd sp->se_started = time((time_t *) 0); 1143 1.8 cgd add_session(sp); 1144 1.1 cgd } 1145 1.8 cgd 1146 1.8 cgd while (!requested_transition) 1147 1.8 cgd if ((pid = waitpid(-1, (int *) 0, 0)) != -1) 1148 1.8 cgd collect_child(pid); 1149 1.8 cgd 1150 1.8 cgd return (state_func_t) requested_transition; 1151 1.1 cgd } 1152 1.1 cgd 1153 1.8 cgd /* 1154 1.8 cgd * This is an n-squared algorithm. We hope it isn't run often... 1155 1.8 cgd */ 1156 1.8 cgd state_func_t 1157 1.39 wiz clean_ttys(void) 1158 1.1 cgd { 1159 1.27 perry session_t *sp, *sprev; 1160 1.27 perry struct ttyent *typ; 1161 1.27 perry int session_index = 0; 1162 1.27 perry int devlen; 1163 1.8 cgd 1164 1.21 mycroft for (sp = sessions; sp; sp = sp->se_next) 1165 1.21 mycroft sp->se_flags &= ~SE_PRESENT; 1166 1.21 mycroft 1167 1.8 cgd devlen = sizeof(_PATH_DEV) - 1; 1168 1.27 perry while ((typ = getttyent()) != NULL) { 1169 1.8 cgd ++session_index; 1170 1.8 cgd 1171 1.8 cgd for (sprev = 0, sp = sessions; sp; sprev = sp, sp = sp->se_next) 1172 1.8 cgd if (strcmp(typ->ty_name, sp->se_device + devlen) == 0) 1173 1.8 cgd break; 1174 1.8 cgd 1175 1.8 cgd if (sp) { 1176 1.21 mycroft sp->se_flags |= SE_PRESENT; 1177 1.8 cgd if (sp->se_index != session_index) { 1178 1.8 cgd warning("port %s changed utmp index from %d to %d", 1179 1.8 cgd sp->se_device, sp->se_index, 1180 1.8 cgd session_index); 1181 1.8 cgd sp->se_index = session_index; 1182 1.8 cgd } 1183 1.8 cgd if ((typ->ty_status & TTY_ON) == 0 || 1184 1.8 cgd typ->ty_getty == 0) { 1185 1.8 cgd sp->se_flags |= SE_SHUTDOWN; 1186 1.8 cgd kill(sp->se_process, SIGHUP); 1187 1.8 cgd continue; 1188 1.8 cgd } 1189 1.8 cgd sp->se_flags &= ~SE_SHUTDOWN; 1190 1.8 cgd if (setupargv(sp, typ) == 0) { 1191 1.8 cgd warning("can't parse getty for port %s", 1192 1.8 cgd sp->se_device); 1193 1.8 cgd sp->se_flags |= SE_SHUTDOWN; 1194 1.8 cgd kill(sp->se_process, SIGHUP); 1195 1.8 cgd } 1196 1.8 cgd continue; 1197 1.8 cgd } 1198 1.8 cgd 1199 1.8 cgd new_session(sprev, session_index, typ); 1200 1.8 cgd } 1201 1.8 cgd 1202 1.8 cgd endttyent(); 1203 1.21 mycroft 1204 1.21 mycroft for (sp = sessions; sp; sp = sp->se_next) 1205 1.21 mycroft if ((sp->se_flags & SE_PRESENT) == 0) { 1206 1.21 mycroft sp->se_flags |= SE_SHUTDOWN; 1207 1.21 mycroft kill(sp->se_process, SIGHUP); 1208 1.21 mycroft } 1209 1.1 cgd 1210 1.8 cgd return (state_func_t) multi_user; 1211 1.1 cgd } 1212 1.1 cgd 1213 1.8 cgd /* 1214 1.8 cgd * Block further logins. 1215 1.8 cgd */ 1216 1.8 cgd state_func_t 1217 1.39 wiz catatonia(void) 1218 1.1 cgd { 1219 1.27 perry session_t *sp; 1220 1.8 cgd 1221 1.8 cgd for (sp = sessions; sp; sp = sp->se_next) 1222 1.8 cgd sp->se_flags |= SE_SHUTDOWN; 1223 1.1 cgd 1224 1.8 cgd return (state_func_t) multi_user; 1225 1.1 cgd } 1226 1.13 cgd #endif /* LETS_GET_SMALL */ 1227 1.1 cgd 1228 1.8 cgd /* 1229 1.8 cgd * Note SIGALRM. 1230 1.8 cgd */ 1231 1.8 cgd void 1232 1.39 wiz alrm_handler(int sig) 1233 1.1 cgd { 1234 1.43 lukem 1235 1.8 cgd clang = 1; 1236 1.1 cgd } 1237 1.1 cgd 1238 1.13 cgd #ifndef LETS_GET_SMALL 1239 1.8 cgd /* 1240 1.8 cgd * Bring the system down to single user. 1241 1.8 cgd */ 1242 1.8 cgd state_func_t 1243 1.39 wiz death(void) 1244 1.1 cgd { 1245 1.27 perry session_t *sp; 1246 1.27 perry int i; 1247 1.8 cgd pid_t pid; 1248 1.8 cgd static const int death_sigs[3] = { SIGHUP, SIGTERM, SIGKILL }; 1249 1.8 cgd 1250 1.8 cgd for (sp = sessions; sp; sp = sp->se_next) 1251 1.8 cgd sp->se_flags |= SE_SHUTDOWN; 1252 1.8 cgd 1253 1.8 cgd /* NB: should send a message to the session logger to avoid blocking. */ 1254 1.8 cgd logwtmp("~", "shutdown", ""); 1255 1.8 cgd 1256 1.8 cgd for (i = 0; i < 3; ++i) { 1257 1.8 cgd if (kill(-1, death_sigs[i]) == -1 && errno == ESRCH) 1258 1.8 cgd return (state_func_t) single_user; 1259 1.8 cgd 1260 1.8 cgd clang = 0; 1261 1.8 cgd alarm(DEATH_WATCH); 1262 1.8 cgd do 1263 1.8 cgd if ((pid = waitpid(-1, (int *)0, 0)) != -1) 1264 1.8 cgd collect_child(pid); 1265 1.8 cgd while (clang == 0 && errno != ECHILD); 1266 1.8 cgd 1267 1.8 cgd if (errno == ECHILD) 1268 1.8 cgd return (state_func_t) single_user; 1269 1.8 cgd } 1270 1.8 cgd 1271 1.8 cgd warning("some processes would not die; ps axl advised"); 1272 1.8 cgd 1273 1.8 cgd return (state_func_t) single_user; 1274 1.1 cgd } 1275 1.13 cgd #endif /* LETS_GET_SMALL */ 1276 1.28 christos 1277 1.28 christos #ifdef MSDOSFS_ROOT 1278 1.28 christos 1279 1.28 christos static void 1280 1.39 wiz msdosfs_root(void) 1281 1.28 christos { 1282 1.28 christos /* 1283 1.28 christos * We cannot print errors so we bail out silently... 1284 1.28 christos */ 1285 1.28 christos int fd = -1; 1286 1.28 christos struct stat st; 1287 1.28 christos pid_t pid; 1288 1.30 drochner int status; 1289 1.28 christos void *ptr; 1290 1.28 christos struct statfs sfs; 1291 1.28 christos 1292 1.28 christos if (statfs("/", &sfs) == -1) 1293 1.28 christos return; 1294 1.28 christos 1295 1.28 christos if (strcmp(sfs.f_fstypename, MOUNT_MSDOS) != 0) 1296 1.28 christos return; 1297 1.28 christos 1298 1.28 christos /* If we have devices, we cannot be on msdosfs */ 1299 1.28 christos if (access(_PATH_CONSOLE, F_OK) != -1) 1300 1.28 christos return; 1301 1.28 christos 1302 1.28 christos /* Grab the contents of MAKEDEV */ 1303 1.28 christos if ((fd = open("/dev/MAKEDEV", O_RDONLY)) == -1) 1304 1.28 christos return; 1305 1.28 christos 1306 1.28 christos if (fstat(fd, &st) == -1) 1307 1.28 christos goto done; 1308 1.28 christos 1309 1.32 mycroft if ((ptr = mmap(0, 1310 1.32 mycroft st.st_size, PROT_READ, MAP_FILE|MAP_SHARED, fd, 0)) == (void *) -1) 1311 1.28 christos goto done; 1312 1.28 christos 1313 1.28 christos (void) close(fd); 1314 1.28 christos fd = -1; 1315 1.28 christos 1316 1.28 christos /* Mount an mfs over /dev so we can create devices */ 1317 1.28 christos switch ((pid = fork())) { 1318 1.28 christos case 0: 1319 1.29 christos (void) execl("/sbin/mount_mfs", "mount_mfs", "-i", "256", 1320 1.29 christos "-s", "384", "-b", "4096", "-f", "512", "swap", "/dev", 1321 1.28 christos NULL); 1322 1.28 christos goto done; 1323 1.28 christos 1324 1.28 christos case -1: 1325 1.28 christos goto done; 1326 1.28 christos 1327 1.28 christos default: 1328 1.28 christos if (waitpid(pid, &status, 0) == -1) 1329 1.28 christos goto done; 1330 1.28 christos if (status != 0) 1331 1.28 christos goto done; 1332 1.28 christos break; 1333 1.28 christos } 1334 1.28 christos 1335 1.28 christos /* Create a MAKEDEV script in /dev */ 1336 1.28 christos if ((fd = open("/dev/MAKEDEV", O_WRONLY|O_CREAT|O_TRUNC, 0755)) == -1) 1337 1.28 christos goto done; 1338 1.28 christos 1339 1.28 christos if (write(fd, ptr, st.st_size) != st.st_size) 1340 1.28 christos goto done; 1341 1.28 christos 1342 1.28 christos (void) munmap(ptr, st.st_size); 1343 1.28 christos 1344 1.28 christos (void) close(fd); 1345 1.28 christos fd = -1; 1346 1.28 christos 1347 1.28 christos #ifdef DEBUG 1348 1.28 christos { 1349 1.28 christos mode_t mode = 0666 | S_IFCHR; 1350 1.28 christos dev_t dev; 1351 1.28 christos #ifdef CPU_CONSDEV 1352 1.28 christos int s = sizeof(dev); 1353 1.28 christos static int name[2] = { CTL_MACHDEP, CPU_CONSDEV }; 1354 1.28 christos 1355 1.28 christos if (sysctl(name, sizeof(name) / sizeof(name[0]), &dev, &s, 1356 1.28 christos NULL, 0) == -1) 1357 1.28 christos goto done; 1358 1.28 christos #else 1359 1.28 christos dev = makedev(0, 0); 1360 1.28 christos #endif 1361 1.28 christos 1362 1.28 christos /* Make a console for us, so we can see things happening */ 1363 1.28 christos if (mknod(_PATH_CONSOLE, mode, dev) == -1) 1364 1.28 christos goto done; 1365 1.28 christos } 1366 1.28 christos #endif 1367 1.28 christos 1368 1.28 christos /* Run the makedev script to create devices */ 1369 1.28 christos switch ((pid = fork())) { 1370 1.28 christos case 0: 1371 1.28 christos if (chdir("/dev") == -1) 1372 1.28 christos goto done; 1373 1.28 christos (void) execl("/bin/sh", "sh", "./MAKEDEV", "all", NULL); 1374 1.28 christos goto done; 1375 1.28 christos 1376 1.28 christos case -1: 1377 1.28 christos goto done; 1378 1.28 christos 1379 1.28 christos default: 1380 1.28 christos if (waitpid(pid, &status, 0) == -1) 1381 1.28 christos goto done; 1382 1.28 christos if (status != 0) 1383 1.28 christos goto done; 1384 1.28 christos break; 1385 1.28 christos } 1386 1.28 christos 1387 1.28 christos done: 1388 1.28 christos if (fd != -1) 1389 1.28 christos (void) close(fd); 1390 1.28 christos } 1391 1.28 christos #endif 1392
Indexes created Fri Sep 26 08:10:20 GMT 2025