mirror of
https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git
synced 2025-01-11 17:04:19 +01:00
bc407914f9
From NetBSD via OpenBSD to fix NetBSD PR #506 More descriptive message for printer status (OpenBSD: 1.2) Various warnings cleaned up (OpenBSD: 1.4) lpc/lpc.c: Various warnings cleaned up (OpenBSD: 1.3) lpd/lpd.c: Remove trailing blank lines (OpenBSD: 1.2) Potential umask problem with creating /dev/printer (OpenBSD: 1.4 and 1.5) Ftp bounce attack (untested on FreeBSD) (OpenBSD: 1.6, 1.8, 1.9) Fencepost in strncpy (OpenBSD: 1.6) lpd/printjob.c: Fix from freebsd for waiting for an exiting filter, that appears not in the FreeBSD CVS tree. (OpenBSD: 1.6) lpd/recvjob.c: Buffer overflow protection: use strncpy rather than strcpy. (OpenBSD: 1.3) lpr/lpr.c: NetBSD change of return type for main() (OpenBSD: 1.2) Restrict time running as root (OpenBSD: 1.7) Use getcwd rather than getwd (from NetBSD) Use snprintf rather than sprintf (OpenBSD: 1.8) Minor tweak to end of loop and buffer overflow sanity. card() overflow already in FreeBSD (OpenBSD: 1.9) lptest/lptest.c: void -> int return type of main, from NetBSD via OpenBSD (OpenBSD: 1.2) pac/pac.c: void -> int return type of main, from NetBSD via OpenBSD (OpenBSD: 1.3) Obtained from: OpenBSD
360 lines
8.2 KiB
C
360 lines
8.2 KiB
C
/*
|
|
* Copyright (c) 1983, 1993
|
|
* The Regents of the University of California. All rights reserved.
|
|
*
|
|
*
|
|
* Redistribution and use in source and binary forms, with or without
|
|
* modification, are permitted provided that the following conditions
|
|
* are met:
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
* notice, this list of conditions and the following disclaimer.
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
* documentation and/or other materials provided with the distribution.
|
|
* 3. All advertising materials mentioning features or use of this software
|
|
* must display the following acknowledgement:
|
|
* This product includes software developed by the University of
|
|
* California, Berkeley and its contributors.
|
|
* 4. Neither the name of the University nor the names of its contributors
|
|
* may be used to endorse or promote products derived from this software
|
|
* without specific prior written permission.
|
|
*
|
|
* THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
|
|
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
|
* ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
|
|
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
|
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
|
|
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
|
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
|
|
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
|
* SUCH DAMAGE.
|
|
*/
|
|
|
|
#ifndef lint
|
|
static char copyright[] =
|
|
"@(#) Copyright (c) 1983, 1993\n\
|
|
The Regents of the University of California. All rights reserved.\n";
|
|
#endif /* not lint */
|
|
|
|
#ifndef lint
|
|
static char sccsid[] = "@(#)recvjob.c 8.2 (Berkeley) 4/27/95";
|
|
#endif /* not lint */
|
|
|
|
/*
|
|
* Receive printer jobs from the network, queue them and
|
|
* start the printer daemon.
|
|
*/
|
|
#include <sys/param.h>
|
|
#include <sys/mount.h>
|
|
#include <sys/stat.h>
|
|
|
|
#include <unistd.h>
|
|
#include <signal.h>
|
|
#include <fcntl.h>
|
|
#include <dirent.h>
|
|
#include <syslog.h>
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
#include "lp.h"
|
|
#include "lp.local.h"
|
|
#include "extern.h"
|
|
#include "pathnames.h"
|
|
|
|
#define ack() (void) write(1, sp, 1);
|
|
|
|
static char dfname[40]; /* data files */
|
|
static int minfree; /* keep at least minfree blocks available */
|
|
static char *sp = "";
|
|
static char tfname[40]; /* tmp copy of cf before linking */
|
|
|
|
static int chksize __P((int));
|
|
static void frecverr __P((const char *, ...));
|
|
static int noresponse __P((void));
|
|
static void rcleanup __P((int));
|
|
static int read_number __P((char *));
|
|
static int readfile __P((char *, int));
|
|
static int readjob __P((void));
|
|
|
|
|
|
void
|
|
recvjob()
|
|
{
|
|
struct stat stb;
|
|
int status;
|
|
|
|
/*
|
|
* Perform lookup for printer name or abbreviation
|
|
*/
|
|
if ((status = cgetent(&bp, printcapdb, printer)) == -2)
|
|
frecverr("cannot open printer description file");
|
|
else if (status == -1)
|
|
frecverr("unknown printer %s", printer);
|
|
else if (status == -3)
|
|
fatal("potential reference loop detected in printcap file");
|
|
|
|
if (cgetstr(bp, "lf", &LF) == -1)
|
|
LF = _PATH_CONSOLE;
|
|
if (cgetstr(bp, "sd", &SD) == -1)
|
|
SD = _PATH_DEFSPOOL;
|
|
if (cgetstr(bp, "lo", &LO) == -1)
|
|
LO = DEFLOCK;
|
|
|
|
(void) close(2); /* set up log file */
|
|
if (open(LF, O_WRONLY|O_APPEND, 0664) < 0) {
|
|
syslog(LOG_ERR, "%s: %m", LF);
|
|
(void) open(_PATH_DEVNULL, O_WRONLY);
|
|
}
|
|
|
|
if (chdir(SD) < 0)
|
|
frecverr("%s: %s: %m", printer, SD);
|
|
if (stat(LO, &stb) == 0) {
|
|
if (stb.st_mode & 010) {
|
|
/* queue is disabled */
|
|
putchar('\1'); /* return error code */
|
|
exit(1);
|
|
}
|
|
} else if (stat(SD, &stb) < 0)
|
|
frecverr("%s: %s: %m", printer, SD);
|
|
minfree = 2 * read_number("minfree"); /* scale KB to 512 blocks */
|
|
signal(SIGTERM, rcleanup);
|
|
signal(SIGPIPE, rcleanup);
|
|
|
|
if (readjob())
|
|
printjob();
|
|
}
|
|
|
|
/*
|
|
* Read printer jobs sent by lpd and copy them to the spooling directory.
|
|
* Return the number of jobs successfully transfered.
|
|
*/
|
|
static int
|
|
readjob()
|
|
{
|
|
register int size, nfiles;
|
|
register char *cp;
|
|
|
|
ack();
|
|
nfiles = 0;
|
|
for (;;) {
|
|
/*
|
|
* Read a command to tell us what to do
|
|
*/
|
|
cp = line;
|
|
do {
|
|
if ((size = read(1, cp, 1)) != 1) {
|
|
if (size < 0)
|
|
frecverr("%s: Lost connection",printer);
|
|
return(nfiles);
|
|
}
|
|
} while (*cp++ != '\n');
|
|
*--cp = '\0';
|
|
cp = line;
|
|
switch (*cp++) {
|
|
case '\1': /* cleanup because data sent was bad */
|
|
rcleanup(0);
|
|
continue;
|
|
|
|
case '\2': /* read cf file */
|
|
size = 0;
|
|
while (*cp >= '0' && *cp <= '9')
|
|
size = size * 10 + (*cp++ - '0');
|
|
if (*cp++ != ' ')
|
|
break;
|
|
/*
|
|
* host name has been authenticated, we use our
|
|
* view of the host name since we may be passed
|
|
* something different than what gethostbyaddr()
|
|
* returns
|
|
*/
|
|
strcpy(cp + 6, from);
|
|
strncpy(tfname, cp, sizeof tfname-1);
|
|
tfname[sizeof tfname-1] = '\0';
|
|
tfname[0] = 't';
|
|
if (!chksize(size)) {
|
|
(void) write(1, "\2", 1);
|
|
continue;
|
|
}
|
|
if (!readfile(tfname, size)) {
|
|
rcleanup(0);
|
|
continue;
|
|
}
|
|
if (link(tfname, cp) < 0)
|
|
frecverr("%s: %m", tfname);
|
|
(void) unlink(tfname);
|
|
tfname[0] = '\0';
|
|
nfiles++;
|
|
continue;
|
|
|
|
case '\3': /* read df file */
|
|
size = 0;
|
|
while (*cp >= '0' && *cp <= '9')
|
|
size = size * 10 + (*cp++ - '0');
|
|
if (*cp++ != ' ')
|
|
break;
|
|
if (!chksize(size)) {
|
|
(void) write(1, "\2", 1);
|
|
continue;
|
|
}
|
|
(void) strncpy(dfname, cp, sizeof dfname-1);
|
|
dfname[sizeof dfname-1] = '\0';
|
|
if (index(dfname, '/'))
|
|
frecverr("readjob: %s: illegal path name",
|
|
dfname);
|
|
(void) readfile(dfname, size);
|
|
continue;
|
|
}
|
|
frecverr("protocol screwup: %s", line);
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Read files send by lpd and copy them to the spooling directory.
|
|
*/
|
|
static int
|
|
readfile(file, size)
|
|
char *file;
|
|
int size;
|
|
{
|
|
register char *cp;
|
|
char buf[BUFSIZ];
|
|
register int i, j, amt;
|
|
int fd, err;
|
|
|
|
fd = open(file, O_CREAT|O_EXCL|O_WRONLY, FILMOD);
|
|
if (fd < 0)
|
|
frecverr("readfile: %s: illegal path name: %m", file);
|
|
ack();
|
|
err = 0;
|
|
for (i = 0; i < size; i += BUFSIZ) {
|
|
amt = BUFSIZ;
|
|
cp = buf;
|
|
if (i + amt > size)
|
|
amt = size - i;
|
|
do {
|
|
j = read(1, cp, amt);
|
|
if (j <= 0)
|
|
frecverr("Lost connection");
|
|
amt -= j;
|
|
cp += j;
|
|
} while (amt > 0);
|
|
amt = BUFSIZ;
|
|
if (i + amt > size)
|
|
amt = size - i;
|
|
if (write(fd, buf, amt) != amt) {
|
|
err++;
|
|
break;
|
|
}
|
|
}
|
|
(void) close(fd);
|
|
if (err)
|
|
frecverr("%s: write error", file);
|
|
if (noresponse()) { /* file sent had bad data in it */
|
|
(void) unlink(file);
|
|
return(0);
|
|
}
|
|
ack();
|
|
return(1);
|
|
}
|
|
|
|
static int
|
|
noresponse()
|
|
{
|
|
char resp;
|
|
|
|
if (read(1, &resp, 1) != 1)
|
|
frecverr("Lost connection");
|
|
if (resp == '\0')
|
|
return(0);
|
|
return(1);
|
|
}
|
|
|
|
/*
|
|
* Check to see if there is enough space on the disk for size bytes.
|
|
* 1 == OK, 0 == Not OK.
|
|
*/
|
|
static int
|
|
chksize(size)
|
|
int size;
|
|
{
|
|
int spacefree;
|
|
struct statfs sfb;
|
|
|
|
if (statfs(".", &sfb) < 0) {
|
|
syslog(LOG_ERR, "%s: %m", "statfs(\".\")");
|
|
return (1);
|
|
}
|
|
spacefree = sfb.f_bavail * (sfb.f_bsize / 512);
|
|
size = (size + 511) / 512;
|
|
if (minfree + size > spacefree)
|
|
return(0);
|
|
return(1);
|
|
}
|
|
|
|
static int
|
|
read_number(fn)
|
|
char *fn;
|
|
{
|
|
char lin[80];
|
|
register FILE *fp;
|
|
|
|
if ((fp = fopen(fn, "r")) == NULL)
|
|
return (0);
|
|
if (fgets(lin, 80, fp) == NULL) {
|
|
fclose(fp);
|
|
return (0);
|
|
}
|
|
fclose(fp);
|
|
return (atoi(lin));
|
|
}
|
|
|
|
/*
|
|
* Remove all the files associated with the current job being transfered.
|
|
*/
|
|
static void
|
|
rcleanup(signo)
|
|
int signo;
|
|
{
|
|
if (tfname[0])
|
|
(void) unlink(tfname);
|
|
if (dfname[0])
|
|
do {
|
|
do
|
|
(void) unlink(dfname);
|
|
while (dfname[2]-- != 'A');
|
|
dfname[2] = 'z';
|
|
} while (dfname[0]-- != 'd');
|
|
dfname[0] = '\0';
|
|
}
|
|
|
|
#if __STDC__
|
|
#include <stdarg.h>
|
|
#else
|
|
#include <varargs.h>
|
|
#endif
|
|
|
|
static void
|
|
#if __STDC__
|
|
frecverr(const char *msg, ...)
|
|
#else
|
|
frecverr(msg, va_alist)
|
|
char *msg;
|
|
va_dcl
|
|
#endif
|
|
{
|
|
va_list ap;
|
|
#if __STDC__
|
|
va_start(ap, msg);
|
|
#else
|
|
va_start(ap);
|
|
#endif
|
|
rcleanup(0);
|
|
syslog(LOG_ERR, "%s", fromb);
|
|
vsyslog(LOG_ERR, msg, ap);
|
|
va_end(ap);
|
|
putchar('\1'); /* return error code */
|
|
exit(1);
|
|
}
|