2 * Receive wall messages and pass them to a notification program via stdin.
4 * Copyright (C) 2014 Simon Ruderich
6 * This program is free software: you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation, either version 3 of the License, or
9 * (at your option) any later version.
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with this program. If not, see <http://www.gnu.org/licenses/>.
32 #include <sys/select.h>
35 #include <sys/types.h>
40 # include <utempter.h>
47 # include <X11/Xlib.h>
51 static void sig_handler(int signal) {
54 static void setup_signals(void) {
55 struct sigaction action;
57 memset(&action, 0, sizeof(action));
58 sigemptyset(&action.sa_mask);
59 action.sa_handler = sig_handler;
61 /* Handle all important signals which might be sent to us so we break out
62 * of the read()-loop below and can perform our cleanup. */
63 sigaction(SIGHUP, &action, NULL);
64 sigaction(SIGINT, &action, NULL);
65 sigaction(SIGQUIT, &action, NULL);
66 sigaction(SIGUSR1, &action, NULL);
67 sigaction(SIGUSR2, &action, NULL);
70 static int set_cloexec(int fd) {
71 int flags = fcntl(fd, F_GETFD);
75 if (fcntl(fd, F_SETFD, flags | FD_CLOEXEC) == -1) {
81 static int open_tty(int public) {
85 ptm = posix_openpt(O_RDWR);
89 if (grantpt(ptm) != 0) {
92 if (!set_cloexec(ptm)) {
96 /* Prevent write access for other users so they can't use wall to send
97 * messages to this program. */
103 if (chmod(name, S_IRUSR | S_IWUSR) != 0) {
108 if (unlockpt(ptm) != 0) {
116 static const char *skip_prefix(const char *string, const char *prefix) {
117 size_t length = strlen(prefix);
119 if (!strncmp(string, prefix, length)) {
120 return string + length;
125 static int set_utmpx(short type, int ptm) {
128 const char *tty, *user, *id, *line;
131 user = getpwuid(getuid())->pw_name;
132 gettimeofday(&now, NULL);
139 id = skip_prefix(tty, "/dev/pts/");
140 line = skip_prefix(tty, "/dev/");
142 /* Create utmp entry for the given terminal. */
143 memset(&entry, 0, sizeof(entry));
145 snprintf(entry.ut_user, sizeof(entry.ut_user), "%s", user);
146 snprintf(entry.ut_id, sizeof(entry.ut_id), "%s", id);
147 snprintf(entry.ut_line, sizeof(entry.ut_line), "%s", line);
149 entry.ut_pid = getpid();
150 entry.ut_type = type;
151 entry.ut_tv.tv_sec = now.tv_sec;
152 entry.ut_tv.tv_usec = now.tv_usec;
154 /* Write the entry to the utmp file. */
156 if (!pututxline(&entry)) {
164 static int login(int ptm) {
165 #if defined(USE_UTEMPTER)
166 int result = utempter_add_record(ptm, NULL);
167 /* Exit value of utempter_*() is not correct on all systems, e.g.
168 * FreeBSD() always returns 0. Checking the utmpx database manually is
169 * difficult because we don't know the exact values for ut_id and ut_line,
170 * therefore we only check the return value on systems known to return a
176 #elif defined(USE_UTMPX)
177 return set_utmpx(USER_PROCESS, ptm);
179 # error "neither USE_UTEMPTER nor USE_UTMPX defined"
182 static int logout(int ptm) {
183 #if defined(USE_UTEMPTER)
184 int result = utempter_remove_record(ptm);
190 #elif defined(USE_UTMPX)
191 return set_utmpx(DEAD_PROCESS, ptm);
193 # error "neither USE_UTEMPTER nor USE_UTMPX defined"
197 static int wait_for_write(int fd, int timeout) {
208 result = select(fd + 1, &rfds, NULL, NULL, &tv);
218 /* Got more data to read. */
223 static void drop_privileges(void) {
224 uid_t uid, ruid, euid, suid;
225 gid_t gid, rgid, egid, sgid;
230 /* Drop all privileges. */
231 if (setresgid(gid, gid, gid) != 0) {
235 if (setresuid(uid, uid, uid) != 0) {
240 /* Verify all privileges were dropped. */
241 if (getresuid(&ruid, &euid, &suid) != 0) {
245 if (getresgid(&rgid, &egid, &sgid) != 0) {
249 if (uid == ruid && uid == euid && uid == suid
250 && gid == rgid && gid == egid && gid == sgid) {
251 /* Everything fine. */
255 fprintf(stderr, "failed to drop privileges, aborting\n");
260 static void pass_buffer_to_program(const char *buffer, size_t length, char **argv) {
266 if (pipe(fds) != 0) {
271 fh = fdopen(fds[1] /* write side */, "w");
283 } else if (pid == 0) {
290 close(fds[1]); /* write side */
292 /* Pass read side as stdin to the program. */
293 if (dup2(fds[0], STDIN_FILENO) < 0) {
299 /* Double fork so `wall-notify` doesn't have to wait for the
300 * notification process to terminate. We can't just use
301 * signal(SIGCHLD, SIG_IGN); because utempter on at least FreeBSD
302 * doesn't work if SIGCHLD is ignored. */
307 } else if (pid == 0) {
308 execvp(argv[0], argv);
317 if (fwrite(buffer, 1, length, fh) != length) {
319 /* continue to perform cleanup */
323 close(fds[0]); /* read side */
326 if (waitpid(pid, NULL, 0) < 0) {
330 static void handle_wall(int fd, char **argv) {
334 assert(SSIZE_MAX <= SIZE_MAX);
335 while ((r = read(fd, buffer, sizeof(buffer))) > 0) {
339 /* To prevent partial messages (sometimes it takes multiple reads to
340 * get the complete message) wait for a short time to get the rest of
342 space = sizeof(buffer) - (size_t)r;
343 while (space > 0 && wait_for_write(fd, 1 /* second */)) {
344 r2 = read(fd, buffer + r, space);
352 pass_buffer_to_program(buffer, (size_t)r, argv);
356 static void *x11_event_loop_thread(void *unused) {
362 pthread_detach(pthread_self());
364 display = XOpenDisplay(NULL);
366 fprintf(stderr, "failed to connect to X server\n");
370 /* Do nothing. We just want to die if the X11 session is closed. */
372 XNextEvent(display, &event);
377 static void usage(const char *argv0) {
378 fprintf(stderr, "usage: %s [-X] [-m] [-v] <cmd args..>\n", argv0);
379 fprintf(stderr, "Pass wall messages to <cmd args..>.\n");
380 fprintf(stderr, "\n");
381 fprintf(stderr, "-X quit when the current X session terminates\n");
382 fprintf(stderr, "-m allow messages from normal users (like `mesg y`)\n");
383 fprintf(stderr, "-v display version\n");
385 fprintf(stderr, "\n");
386 fprintf(stderr, "compiled without X11 support, -X disabled\n");
392 int main(int argc, char **argv) {
393 int option, enable_x11, mesg_yes;
398 /* Don't display error messages for unknown options. */
407 * Glibc violates POSIX by default and skips over non-option arguments and
408 * parses later arguments which look like options as well. But we want to
409 * pass everything except the options unmodified to execvp(). Prefixing
410 * the optstring with "+" fixes this behaver. This is not POSIX
411 * compatible, but the option should be ignored on other systems.
413 while ((option = getopt(argc, argv, "+Xmhv")) != -1) {
427 strlen(GIT_VERSION) ? " (Git " GIT_VERSION ")" : "");
431 fprintf(stderr, "%s: unknown option '%s'!\n\n",
432 argv0, argv[optind - 1]);
438 /* No arguments remaining, abort. */
442 /* Arguments for notification program. */
445 ptm = open_tty(mesg_yes);
457 printf("%s\n", name);
460 /* We need to open the slave or reading from the master yields EOF after
461 * the first wall write to it. */
462 pts = open(name, O_RDWR | O_CLOEXEC);
468 /* Start a thread which connects to X11. This way we die if the user logs
469 * out of its X11 session. */
472 fprintf(stderr, "%s: option -X is disabled!\n\n", argv0);
477 if (pthread_create(&tid, NULL, x11_event_loop_thread, NULL) != 0) {
478 perror("pthread_create");
484 /* Cleanup on signals. Necessary before login(). */
492 /* Main loop. Handle all wall messages sent to our PTY. */
493 handle_wall(ptm, argv);