vasilito
f31522130f
Build system (5 gaps hardened): - COOKBOOK_OFFLINE defaults to true (fork-mode) - normalize_patch handles diff -ruN format - New 'repo validate-patches' command (25/25 relibc patches) - 14 patched Qt/Wayland/display recipes added to protected list - relibc archive regenerated with current patch chain Boot fixes (fixable): - Full ISO EFI partition: 16 MiB → 1 MiB (matches mini, BIOS hardcoded 2 MiB offset) - D-Bus system bus: absolute /usr/bin/dbus-daemon path (was skipped) - redbear-sessiond: absolute /usr/bin/redbear-sessiond path (was skipped) - daemon framework: silenced spurious INIT_NOTIFY warnings for oneshot_async services (P0-daemon-silence-init-notify.patch) - udev-shim: demoted INIT_NOTIFY warning to INFO (expected for oneshot_async) - relibc: comprehensive named semaphores (sem_open/close/unlink) replacing upstream todo!() stubs - greeterd: Wayland socket timeout 15s → 30s (compositor DRM wait) - greeter-ui: built and linked (header guard unification, sem_compat stubs removed) - mc: un-ignored in both configs, fixed glib/libiconv/pcre2 transitive deps - greeter config: removed stale keymapd dependency from display/greeter services - prefix toolchain: relibc headers synced, _RELIBC_STDLIB_H guard unified Unfixable (diagnosed, upstream): - i2c-hidd: abort on no-I2C-hardware (QEMU) — process::exit → relibc abort - kded6/greeter-ui: page fault 0x8 — Qt library null deref - Thread panics fd != -1 — Rust std library on Redox - DHCP timeout / eth0 MAC — QEMU user-mode networking - hwrngd/thermald — no hardware RNG/thermal in VM - live preload allocation — BIOS memory fragmentation, continues on demand
175 lines
3.8 KiB
C
175 lines
3.8 KiB
C
#include <errno.h>
|
|
#include <poll.h>
|
|
#include <signal.h>
|
|
#include <stdbool.h>
|
|
#include <stddef.h>
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
#include <sys/stat.h>
|
|
#include <sys/wait.h>
|
|
#include <unistd.h>
|
|
|
|
int main(int argc, char *argv[]) {
|
|
const char *usage = "Usage: seatd-launch [options] [--] command\n"
|
|
"\n"
|
|
" -l <loglevel> Log-level to pass to seatd\n"
|
|
" -h Show this help message\n"
|
|
" -v Show the version number\n"
|
|
"\n";
|
|
|
|
int c;
|
|
char loglevel[16] = "info";
|
|
while ((c = getopt(argc, argv, "vhl:")) != -1) {
|
|
switch (c) {
|
|
case 'l':
|
|
strncpy(loglevel, optarg, sizeof loglevel);
|
|
loglevel[sizeof loglevel - 1] = '\0';
|
|
break;
|
|
case 'v':
|
|
printf("seatd-launch version %s\n", SEATD_VERSION);
|
|
return 0;
|
|
case 'h':
|
|
printf("%s", usage);
|
|
return 0;
|
|
case '?':
|
|
fprintf(stderr, "Try 'seatd-launch -h' for more information.\n");
|
|
return 1;
|
|
default:
|
|
abort();
|
|
}
|
|
}
|
|
|
|
if (optind >= argc) {
|
|
fprintf(stderr, "A command must be specified\n\n%s", usage);
|
|
return 1;
|
|
}
|
|
char **command = &argv[optind];
|
|
|
|
int readiness_pipe[2];
|
|
if (pipe(readiness_pipe) == -1) {
|
|
perror("Could not create pipe");
|
|
goto error;
|
|
}
|
|
|
|
// Start seatd
|
|
pid_t seatd_child = fork();
|
|
if (seatd_child == -1) {
|
|
perror("Could not fork seatd process");
|
|
goto error;
|
|
} else if (seatd_child == 0) {
|
|
close(readiness_pipe[0]);
|
|
|
|
char pipebuf[16] = {0};
|
|
snprintf(pipebuf, sizeof pipebuf, "%d", readiness_pipe[1]);
|
|
|
|
char *env[1] = {NULL};
|
|
char *command[] = {"seatd", "-n", pipebuf, "-l", loglevel, "-z", NULL};
|
|
execve(SEATD_INSTALLPATH, command, env);
|
|
perror("Could not start seatd");
|
|
_exit(1);
|
|
}
|
|
close(readiness_pipe[1]);
|
|
|
|
// Wait for seatd to be ready
|
|
char buf[1] = {0};
|
|
while (true) {
|
|
pid_t p = waitpid(seatd_child, NULL, WNOHANG);
|
|
if (p == seatd_child) {
|
|
fprintf(stderr, "seatd exited prematurely\n");
|
|
goto error_seatd;
|
|
} else if (p == -1 && (errno != EINTR && errno != ECHILD)) {
|
|
perror("Could not wait for seatd process");
|
|
goto error_seatd;
|
|
}
|
|
|
|
struct pollfd fd = {
|
|
.fd = readiness_pipe[0],
|
|
.events = POLLIN,
|
|
};
|
|
|
|
// We poll with timeout to avoid a racing on a blocking read
|
|
if (poll(&fd, 1, 1000) == -1) {
|
|
if (errno == EAGAIN || errno == EINTR) {
|
|
continue;
|
|
} else {
|
|
perror("Could not poll notification fd");
|
|
goto error_seatd;
|
|
}
|
|
}
|
|
|
|
if (fd.revents & POLLIN) {
|
|
ssize_t n = read(readiness_pipe[0], buf, 1);
|
|
if (n == -1 && errno != EINTR) {
|
|
perror("Could not read from pipe");
|
|
goto error_seatd;
|
|
} else if (n > 0) {
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
close(readiness_pipe[0]);
|
|
|
|
uid_t uid = getuid();
|
|
gid_t gid = getgid();
|
|
|
|
// Restrict access to the socket to just us
|
|
if (chown(SEATD_DEFAULTPATH, uid, gid) == -1) {
|
|
perror("Could not chown seatd socket");
|
|
goto error_seatd;
|
|
}
|
|
if (chmod(SEATD_DEFAULTPATH, 0700) == -1) {
|
|
perror("Could not chmod socket");
|
|
goto error_seatd;
|
|
}
|
|
|
|
// Drop privileges
|
|
if (setgid(gid) == -1) {
|
|
perror("Could not set gid to drop privileges");
|
|
goto error_seatd;
|
|
}
|
|
if (setuid(uid) == -1) {
|
|
perror("Could not set uid to drop privileges");
|
|
goto error_seatd;
|
|
}
|
|
|
|
pid_t child = fork();
|
|
if (child == -1) {
|
|
perror("Could not fork target process");
|
|
goto error_seatd;
|
|
} else if (child == 0) {
|
|
setenv("SEATD_SOCK", SEATD_DEFAULTPATH, 1);
|
|
execvp(command[0], command);
|
|
perror("Could not start target");
|
|
_exit(1);
|
|
}
|
|
|
|
int status = 0;
|
|
while (true) {
|
|
pid_t p = waitpid(child, &status, 0);
|
|
if (p == child) {
|
|
break;
|
|
} else if (p == -1 && errno != EINTR) {
|
|
perror("Could not wait for target process");
|
|
goto error_seatd;
|
|
}
|
|
}
|
|
|
|
if (kill(seatd_child, SIGTERM) != 0) {
|
|
perror("Could not kill seatd");
|
|
}
|
|
|
|
if (WIFEXITED(status)) {
|
|
return WEXITSTATUS(status);
|
|
} else if (WIFSIGNALED(status)) {
|
|
return 128 + WTERMSIG(status);
|
|
} else {
|
|
abort(); // unreachable
|
|
}
|
|
|
|
error_seatd:
|
|
kill(seatd_child, SIGTERM);
|
|
error:
|
|
return 1;
|
|
}
|