diff options
| author | Kris Kennaway <kris@FreeBSD.org> | 2008-07-26 15:24:13 +0000 |
|---|---|---|
| committer | Kris Kennaway <kris@FreeBSD.org> | 2008-07-26 15:24:13 +0000 |
| commit | 88e9a3230843bf0b0b6d9127b823ef3dc45e2487 (patch) | |
| tree | 0200c1c6741731e83b49be6dcd930401d6549ff7 /Tools | |
| parent | d1aea0930d93817f80b59468c3d5c3b35d0690cb (diff) | |
| download | ports-88e9a3230843bf0b0b6d9127b823ef3dc45e2487.tar.gz ports-88e9a3230843bf0b0b6d9127b823ef3dc45e2487.zip | |
* Python daemon run as root that proxies privileged build commands for
the ports-* users. Currently it is not possible to delegate
management of ZFS filesystems to non-root users, so root privilege
is required to manipulate them. We validate the command passed on
a local domain socket and re-execute the build script with the requested
parameters.
Notes
Notes:
svn path=/head/; revision=217605
Diffstat (limited to 'Tools')
| -rwxr-xr-x | Tools/portbuild/scripts/buildproxy | 75 |
1 files changed, 75 insertions, 0 deletions
diff --git a/Tools/portbuild/scripts/buildproxy b/Tools/portbuild/scripts/buildproxy new file mode 100755 index 000000000000..fae88ab870b7 --- /dev/null +++ b/Tools/portbuild/scripts/buildproxy @@ -0,0 +1,75 @@ +#!/usr/bin/env python +# +# Allow access to privileged build commands to ports-* users for +# managing their own build spaces. + +import sys, socket, os, commands + +from freebsd import * + +SOCKET='/tmp/.build' + +def validate(uid, arch): + if uid == 0: + return True + + if getuidbyname("ports-%s" % arch) == uid: + return True + + return False + +def process(cmd, sockfile): + + if len(cmd) < 5: + return (254, "Wrong number of arguments") + + if cmd[0] != "build": + return (254, "Invalid command") + + try: + if not validate(uid, cmd[2]): + return (254, "Permission denied") + except: + return (254, "Internal error") + + for i in cmd: + for j in i: + if not j.isalnum() and not j in "-_.": + return (254, "Illegal characters in input") + + (status, out) = commands.getstatusoutput("/var/portbuild/scripts/build %s" % " ".join(cmd[1:])) + + return (status, out) + +if os.path.exists(SOCKET): + os.unlink(SOCKET) +s = socket.socket(socket.AF_UNIX, socket.SOCK_STREAM) +s.bind(SOCKET) +os.chmod(SOCKET, 0660) +os.chown(SOCKET, -1, getgidbyname('portmgr')) + +s.listen(10) + +while True: + try: + (conn, addr) = s.accept() + + (uid, gids) = getpeerid(conn) + + sockfile = conn.makefile() + cmd = sockfile.readline().rstrip().split() + print cmd + try: + (status, out) = process(cmd, sockfile) + except: + (status, out) = (254, "Internal error") + + sockfile.write("%d\n" % status) + sockfile.write(out) + sockfile.flush() + + sockfile.close() + conn.close() + except Exception: + pass + |