projects / project / procd.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
system: Fix possible integer overflows
[project/procd.git] / system.c
1 /*
2 * Copyright (C) 2013 Felix Fietkau <nbd@openwrt.org>
3 * Copyright (C) 2013 John Crispin <blogic@openwrt.org>
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU Lesser General Public License version 2.1
7 * as published by the Free Software Foundation
8 *
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
13 */
14
15 #include <sys/utsname.h>
16 #ifdef linux
17 #include <sys/sysinfo.h>
18 #endif
19 #include <sys/ioctl.h>
20 #include <sys/types.h>
21 #include <sys/reboot.h>
22 #include <sys/stat.h>
23 #include <fcntl.h>
24 #include <signal.h>
25 #include <unistd.h>
26 #include <stdlib.h>
27
28 #include <json-c/json_tokener.h>
29 #include <libubox/blobmsg_json.h>
30 #include <libubox/uloop.h>
31
32 #include "procd.h"
33 #include "sysupgrade.h"
34 #include "watchdog.h"
35
36 static struct blob_buf b;
37 static int notify;
38 static struct ubus_context *_ctx;
39
40 static int system_board(struct ubus_context *ctx, struct ubus_object *obj,
41 struct ubus_request_data *req, const char *method,
42 struct blob_attr *msg)
43 {
44 void *c;
45 char line[256];
46 char *key, *val, *next;
47 struct utsname utsname;
48 FILE *f;
49
50 blob_buf_init(&b, 0);
51
52 if (uname(&utsname) >= 0)
53 {
54 blobmsg_add_string(&b, "kernel", utsname.release);
55 blobmsg_add_string(&b, "hostname", utsname.nodename);
56 }
57
58 if ((f = fopen("/proc/cpuinfo", "r")) != NULL)
59 {
60 while(fgets(line, sizeof(line), f))
61 {
62 key = strtok(line, "\t:");
63 val = strtok(NULL, "\t\n");
64
65 if (!key || !val)
66 continue;
67
68 if (!strcasecmp(key, "system type") ||
69 !strcasecmp(key, "processor") ||
70 !strcasecmp(key, "cpu") ||
71 !strcasecmp(key, "model name"))
72 {
73 strtoul(val + 2, &key, 0);
74
75 if (key == (val + 2) || *key != 0)
76 {
77 blobmsg_add_string(&b, "system", val + 2);
78 break;
79 }
80 }
81 }
82
83 fclose(f);
84 }
85
86 if ((f = fopen("/tmp/sysinfo/model", "r")) != NULL ||
87 (f = fopen("/proc/device-tree/model", "r")) != NULL)
88 {
89 if (fgets(line, sizeof(line), f))
90 {
91 val = strtok(line, "\t\n");
92
93 if (val)
94 blobmsg_add_string(&b, "model", val);
95 }
96
97 fclose(f);
98 }
99 else if ((f = fopen("/proc/cpuinfo", "r")) != NULL)
100 {
101 while(fgets(line, sizeof(line), f))
102 {
103 key = strtok(line, "\t:");
104 val = strtok(NULL, "\t\n");
105
106 if (!key || !val)
107 continue;
108
109 if (!strcasecmp(key, "machine") ||
110 !strcasecmp(key, "hardware"))
111 {
112 blobmsg_add_string(&b, "model", val + 2);
113 break;
114 }
115 }
116
117 fclose(f);
118 }
119
120 if ((f = fopen("/tmp/sysinfo/board_name", "r")) != NULL)
121 {
122 if (fgets(line, sizeof(line), f))
123 {
124 val = strtok(line, "\t\n");
125
126 if (val)
127 blobmsg_add_string(&b, "board_name", val);
128 }
129
130 fclose(f);
131 }
132 else if ((f = fopen("/proc/device-tree/compatible", "r")) != NULL)
133 {
134 if (fgets(line, sizeof(line), f))
135 {
136 val = strtok(line, "\t\n");
137
138 if (val)
139 {
140 next = val;
141 while ((next = strchr(next, ',')) != NULL)
142 {
143 *next = '-';
144 next++;
145 }
146
147 blobmsg_add_string(&b, "board_name", val);
148 }
149 }
150
151 fclose(f);
152 }
153
154 if ((f = fopen("/etc/openwrt_release", "r")) != NULL)
155 {
156 c = blobmsg_open_table(&b, "release");
157
158 while (fgets(line, sizeof(line), f))
159 {
160 char *dest;
161 char ch;
162
163 key = line;
164 val = strchr(line, '=');
165 if (!val)
166 continue;
167
168 *(val++) = 0;
169
170 if (!strcasecmp(key, "DISTRIB_ID"))
171 key = "distribution";
172 else if (!strcasecmp(key, "DISTRIB_RELEASE"))
173 key = "version";
174 else if (!strcasecmp(key, "DISTRIB_REVISION"))
175 key = "revision";
176 else if (!strcasecmp(key, "DISTRIB_CODENAME"))
177 key = "codename";
178 else if (!strcasecmp(key, "DISTRIB_TARGET"))
179 key = "target";
180 else if (!strcasecmp(key, "DISTRIB_DESCRIPTION"))
181 key = "description";
182 else
183 continue;
184
185 dest = blobmsg_alloc_string_buffer(&b, key, strlen(val));
186 if (!dest) {
187 ERROR("Failed to allocate blob.\n");
188 continue;
189 }
190
191 while (val && (ch = *(val++)) != 0) {
192 switch (ch) {
193 case '\'':
194 case '"':
195 next = strchr(val, ch);
196 if (next)
197 *next = 0;
198
199 strcpy(dest, val);
200
201 if (next)
202 val = next + 1;
203
204 dest += strlen(dest);
205 break;
206 case '\\':
207 *(dest++) = *(val++);
208 break;
209 }
210 }
211 blobmsg_add_string_buffer(&b);
212 }
213
214 blobmsg_close_array(&b, c);
215
216 fclose(f);
217 }
218
219 ubus_send_reply(ctx, req, b.head);
220
221 return UBUS_STATUS_OK;
222 }
223
224 static int system_info(struct ubus_context *ctx, struct ubus_object *obj,
225 struct ubus_request_data *req, const char *method,
226 struct blob_attr *msg)
227 {
228 time_t now;
229 struct tm *tm;
230 #ifdef linux
231 struct sysinfo info;
232 void *c;
233
234 if (sysinfo(&info))
235 return UBUS_STATUS_UNKNOWN_ERROR;
236 #endif
237
238 now = time(NULL);
239
240 if (!(tm = localtime(&now)))
241 return UBUS_STATUS_UNKNOWN_ERROR;
242
243 blob_buf_init(&b, 0);
244
245 blobmsg_add_u32(&b, "localtime", now + tm->tm_gmtoff);
246
247 #ifdef linux
248 blobmsg_add_u32(&b, "uptime", info.uptime);
249
250 c = blobmsg_open_array(&b, "load");
251 blobmsg_add_u32(&b, NULL, info.loads[0]);
252 blobmsg_add_u32(&b, NULL, info.loads[1]);
253 blobmsg_add_u32(&b, NULL, info.loads[2]);
254 blobmsg_close_array(&b, c);
255
256 c = blobmsg_open_table(&b, "memory");
257 blobmsg_add_u64(&b, "total",
258 (uint64_t)info.mem_unit * (uint64_t)info.totalram);
259 blobmsg_add_u64(&b, "free",
260 (uint64_t)info.mem_unit * (uint64_t)info.freeram);
261 blobmsg_add_u64(&b, "shared",
262 (uint64_t)info.mem_unit * (uint64_t)info.sharedram);
263 blobmsg_add_u64(&b, "buffered",
264 (uint64_t)info.mem_unit * (uint64_t)info.bufferram);
265 blobmsg_close_table(&b, c);
266
267 c = blobmsg_open_table(&b, "swap");
268 blobmsg_add_u64(&b, "total",
269 (uint64_t)info.mem_unit * (uint64_t)info.totalswap);
270 blobmsg_add_u64(&b, "free",
271 (uint64_t)info.mem_unit * (uint64_t)info.freeswap);
272 blobmsg_close_table(&b, c);
273 #endif
274
275 ubus_send_reply(ctx, req, b.head);
276
277 return UBUS_STATUS_OK;
278 }
279
280 static int system_reboot(struct ubus_context *ctx, struct ubus_object *obj,
281 struct ubus_request_data *req, const char *method,
282 struct blob_attr *msg)
283 {
284 procd_shutdown(RB_AUTOBOOT);
285 return 0;
286 }
287
288 enum {
289 WDT_FREQUENCY,
290 WDT_TIMEOUT,
291 WDT_MAGICCLOSE,
292 WDT_STOP,
293 __WDT_MAX
294 };
295
296 static const struct blobmsg_policy watchdog_policy[__WDT_MAX] = {
297 [WDT_FREQUENCY] = { .name = "frequency", .type = BLOBMSG_TYPE_INT32 },
298 [WDT_TIMEOUT] = { .name = "timeout", .type = BLOBMSG_TYPE_INT32 },
299 [WDT_MAGICCLOSE] = { .name = "magicclose", .type = BLOBMSG_TYPE_BOOL },
300 [WDT_STOP] = { .name = "stop", .type = BLOBMSG_TYPE_BOOL },
301 };
302
303 static int watchdog_set(struct ubus_context *ctx, struct ubus_object *obj,
304 struct ubus_request_data *req, const char *method,
305 struct blob_attr *msg)
306 {
307 struct blob_attr *tb[__WDT_MAX];
308 const char *status;
309
310 if (!msg)
311 return UBUS_STATUS_INVALID_ARGUMENT;
312
313 blobmsg_parse(watchdog_policy, __WDT_MAX, tb, blob_data(msg), blob_len(msg));
314 if (tb[WDT_FREQUENCY]) {
315 unsigned int timeout = tb[WDT_TIMEOUT] ? blobmsg_get_u32(tb[WDT_TIMEOUT]) :
316 watchdog_timeout(0);
317 unsigned int freq = blobmsg_get_u32(tb[WDT_FREQUENCY]);
318
319 if (freq) {
320 if (freq > timeout / 2)
321 freq = timeout / 2;
322 watchdog_frequency(freq);
323 }
324 }
325
326 if (tb[WDT_TIMEOUT]) {
327 unsigned int timeout = blobmsg_get_u32(tb[WDT_TIMEOUT]);
328 unsigned int frequency = watchdog_frequency(0);
329
330 if (timeout <= frequency)
331 timeout = frequency * 2;
332 watchdog_timeout(timeout);
333 }
334
335 if (tb[WDT_MAGICCLOSE])
336 watchdog_set_magicclose(blobmsg_get_bool(tb[WDT_MAGICCLOSE]));
337
338 if (tb[WDT_STOP])
339 watchdog_set_stopped(blobmsg_get_bool(tb[WDT_STOP]));
340
341 if (watchdog_fd() == NULL)
342 status = "offline";
343 else if (watchdog_get_stopped())
344 status = "stopped";
345 else
346 status = "running";
347
348 blob_buf_init(&b, 0);
349 blobmsg_add_string(&b, "status", status);
350 blobmsg_add_u32(&b, "timeout", watchdog_timeout(0));
351 blobmsg_add_u32(&b, "frequency", watchdog_frequency(0));
352 blobmsg_add_u8(&b, "magicclose", watchdog_get_magicclose());
353 ubus_send_reply(ctx, req, b.head);
354
355 return 0;
356 }
357
358 enum {
359 SIGNAL_PID,
360 SIGNAL_NUM,
361 __SIGNAL_MAX
362 };
363
364 static const struct blobmsg_policy signal_policy[__SIGNAL_MAX] = {
365 [SIGNAL_PID] = { .name = "pid", .type = BLOBMSG_TYPE_INT32 },
366 [SIGNAL_NUM] = { .name = "signum", .type = BLOBMSG_TYPE_INT32 },
367 };
368
369 static int proc_signal(struct ubus_context *ctx, struct ubus_object *obj,
370 struct ubus_request_data *req, const char *method,
371 struct blob_attr *msg)
372 {
373 struct blob_attr *tb[__SIGNAL_MAX];
374
375 if (!msg)
376 return UBUS_STATUS_INVALID_ARGUMENT;
377
378 blobmsg_parse(signal_policy, __SIGNAL_MAX, tb, blob_data(msg), blob_len(msg));
379 if (!tb[SIGNAL_PID || !tb[SIGNAL_NUM]])
380 return UBUS_STATUS_INVALID_ARGUMENT;
381
382 kill(blobmsg_get_u32(tb[SIGNAL_PID]), blobmsg_get_u32(tb[SIGNAL_NUM]));
383
384 return 0;
385 }
386
387 /**
388 * validate_firmware_image_call - perform validation & store result in global b
389 *
390 * @file: firmware image path
391 */
392 static int validate_firmware_image_call(const char *file)
393 {
394 const char *path = "/usr/libexec/validate_firmware_image";
395 json_object *jsobj = NULL;
396 json_tokener *tok;
397 char buf[64];
398 ssize_t len;
399 int fds[2];
400 int err;
401 int fd;
402
403 if (pipe(fds))
404 return -errno;
405
406 switch (fork()) {
407 case -1:
408 return -errno;
409 case 0:
410 /* Set stdin & stderr to /dev/null */
411 fd = open("/dev/null", O_RDWR);
412 if (fd >= 0) {
413 dup2(fd, 0);
414 dup2(fd, 2);
415 close(fd);
416 }
417
418 /* Set stdout to the shared pipe */
419 dup2(fds[1], 1);
420 close(fds[0]);
421 close(fds[1]);
422
423 execl(path, path, file, NULL);
424 exit(errno);
425 }
426
427 /* Parent process */
428
429 tok = json_tokener_new();
430 if (!tok) {
431 close(fds[0]);
432 close(fds[1]);
433 return -ENOMEM;
434 }
435
436 blob_buf_init(&b, 0);
437 while ((len = read(fds[0], buf, sizeof(buf)))) {
438 jsobj = json_tokener_parse_ex(tok, buf, len);
439
440 if (json_tokener_get_error(tok) == json_tokener_success)
441 break;
442 else if (json_tokener_get_error(tok) == json_tokener_continue)
443 continue;
444 else
445 fprintf(stderr, "Failed to parse JSON: %d\n",
446 json_tokener_get_error(tok));
447 }
448
449 close(fds[0]);
450 close(fds[1]);
451
452 err = -ENOENT;
453 if (jsobj) {
454 if (json_object_get_type(jsobj) == json_type_object) {
455 blobmsg_add_object(&b, jsobj);
456 err = 0;
457 }
458
459 json_object_put(jsobj);
460 }
461
462 json_tokener_free(tok);
463
464 return err;
465 }
466
467 enum {
468 VALIDATE_FIRMWARE_IMAGE_PATH,
469 __VALIDATE_FIRMWARE_IMAGE_MAX,
470 };
471
472 static const struct blobmsg_policy validate_firmware_image_policy[__VALIDATE_FIRMWARE_IMAGE_MAX] = {
473 [VALIDATE_FIRMWARE_IMAGE_PATH] = { .name = "path", .type = BLOBMSG_TYPE_STRING },
474 };
475
476 static int validate_firmware_image(struct ubus_context *ctx,
477 struct ubus_object *obj,
478 struct ubus_request_data *req,
479 const char *method, struct blob_attr *msg)
480 {
481 struct blob_attr *tb[__VALIDATE_FIRMWARE_IMAGE_MAX];
482
483 if (!msg)
484 return UBUS_STATUS_INVALID_ARGUMENT;
485
486 blobmsg_parse(validate_firmware_image_policy, __VALIDATE_FIRMWARE_IMAGE_MAX, tb, blob_data(msg), blob_len(msg));
487 if (!tb[VALIDATE_FIRMWARE_IMAGE_PATH])
488 return UBUS_STATUS_INVALID_ARGUMENT;
489
490 if (validate_firmware_image_call(blobmsg_get_string(tb[VALIDATE_FIRMWARE_IMAGE_PATH])))
491 return UBUS_STATUS_UNKNOWN_ERROR;
492
493 ubus_send_reply(ctx, req, b.head);
494
495 return UBUS_STATUS_OK;
496 }
497
498 enum {
499 SYSUPGRADE_PATH,
500 SYSUPGRADE_FORCE,
501 SYSUPGRADE_BACKUP,
502 SYSUPGRADE_PREFIX,
503 SYSUPGRADE_COMMAND,
504 SYSUPGRADE_OPTIONS,
505 __SYSUPGRADE_MAX
506 };
507
508 static const struct blobmsg_policy sysupgrade_policy[__SYSUPGRADE_MAX] = {
509 [SYSUPGRADE_PATH] = { .name = "path", .type = BLOBMSG_TYPE_STRING },
510 [SYSUPGRADE_FORCE] = { .name = "force", .type = BLOBMSG_TYPE_BOOL },
511 [SYSUPGRADE_BACKUP] = { .name = "backup", .type = BLOBMSG_TYPE_STRING },
512 [SYSUPGRADE_PREFIX] = { .name = "prefix", .type = BLOBMSG_TYPE_STRING },
513 [SYSUPGRADE_COMMAND] = { .name = "command", .type = BLOBMSG_TYPE_STRING },
514 [SYSUPGRADE_OPTIONS] = { .name = "options", .type = BLOBMSG_TYPE_TABLE },
515 };
516
517 static void sysupgrade_error(struct ubus_context *ctx,
518 struct ubus_request_data *req,
519 const char *message)
520 {
521 void *c;
522
523 blob_buf_init(&b, 0);
524
525 c = blobmsg_open_table(&b, "error");
526 blobmsg_add_string(&b, "message", message);
527 blobmsg_close_table(&b, c);
528
529 ubus_send_reply(ctx, req, b.head);
530 }
531
532 static int sysupgrade(struct ubus_context *ctx, struct ubus_object *obj,
533 struct ubus_request_data *req, const char *method,
534 struct blob_attr *msg)
535 {
536 enum {
537 VALIDATION_VALID,
538 VALIDATION_FORCEABLE,
539 VALIDATION_ALLOW_BACKUP,
540 __VALIDATION_MAX
541 };
542 static const struct blobmsg_policy validation_policy[__VALIDATION_MAX] = {
543 [VALIDATION_VALID] = { .name = "valid", .type = BLOBMSG_TYPE_BOOL },
544 [VALIDATION_FORCEABLE] = { .name = "forceable", .type = BLOBMSG_TYPE_BOOL },
545 [VALIDATION_ALLOW_BACKUP] = { .name = "allow_backup", .type = BLOBMSG_TYPE_BOOL },
546 };
547 struct blob_attr *validation[__VALIDATION_MAX];
548 struct blob_attr *tb[__SYSUPGRADE_MAX];
549 bool valid, forceable, allow_backup;
550
551 if (!msg)
552 return UBUS_STATUS_INVALID_ARGUMENT;
553
554 blobmsg_parse(sysupgrade_policy, __SYSUPGRADE_MAX, tb, blob_data(msg), blob_len(msg));
555 if (!tb[SYSUPGRADE_PATH] || !tb[SYSUPGRADE_PREFIX])
556 return UBUS_STATUS_INVALID_ARGUMENT;
557
558 if (validate_firmware_image_call(blobmsg_get_string(tb[SYSUPGRADE_PATH]))) {
559 sysupgrade_error(ctx, req, "Firmware image couldn't be validated");
560 return UBUS_STATUS_UNKNOWN_ERROR;
561 }
562
563 blobmsg_parse(validation_policy, __VALIDATION_MAX, validation, blob_data(b.head), blob_len(b.head));
564
565 valid = validation[VALIDATION_VALID] && blobmsg_get_bool(validation[VALIDATION_VALID]);
566 forceable = validation[VALIDATION_FORCEABLE] && blobmsg_get_bool(validation[VALIDATION_FORCEABLE]);
567 allow_backup = validation[VALIDATION_ALLOW_BACKUP] && blobmsg_get_bool(validation[VALIDATION_ALLOW_BACKUP]);
568
569 if (!valid) {
570 if (!forceable) {
571 sysupgrade_error(ctx, req, "Firmware image is broken and cannot be installed");
572 return UBUS_STATUS_NOT_SUPPORTED;
573 } else if (!tb[SYSUPGRADE_FORCE] || !blobmsg_get_bool(tb[SYSUPGRADE_FORCE])) {
574 sysupgrade_error(ctx, req, "Firmware image is invalid");
575 return UBUS_STATUS_NOT_SUPPORTED;
576 }
577 } else if (!allow_backup && tb[SYSUPGRADE_BACKUP]) {
578 sysupgrade_error(ctx, req, "Firmware image doesn't allow preserving a backup");
579 return UBUS_STATUS_NOT_SUPPORTED;
580 }
581
582 sysupgrade_exec_upgraded(blobmsg_get_string(tb[SYSUPGRADE_PREFIX]),
583 blobmsg_get_string(tb[SYSUPGRADE_PATH]),
584 tb[SYSUPGRADE_BACKUP] ? blobmsg_get_string(tb[SYSUPGRADE_BACKUP]) : NULL,
585 tb[SYSUPGRADE_COMMAND] ? blobmsg_get_string(tb[SYSUPGRADE_COMMAND]) : NULL,
586 tb[SYSUPGRADE_OPTIONS]);
587
588 /* sysupgrade_exec_upgraded() will never return unless something has gone wrong */
589 return UBUS_STATUS_UNKNOWN_ERROR;
590 }
591
592 static void
593 procd_subscribe_cb(struct ubus_context *ctx, struct ubus_object *obj)
594 {
595 notify = obj->has_subscribers;
596 }
597
598
599 static const struct ubus_method system_methods[] = {
600 UBUS_METHOD_NOARG("board", system_board),
601 UBUS_METHOD_NOARG("info", system_info),
602 UBUS_METHOD_NOARG("reboot", system_reboot),
603 UBUS_METHOD("watchdog", watchdog_set, watchdog_policy),
604 UBUS_METHOD("signal", proc_signal, signal_policy),
605 UBUS_METHOD("validate_firmware_image", validate_firmware_image, validate_firmware_image_policy),
606 UBUS_METHOD("sysupgrade", sysupgrade, sysupgrade_policy),
607 };
608
609 static struct ubus_object_type system_object_type =
610 UBUS_OBJECT_TYPE("system", system_methods);
611
612 static struct ubus_object system_object = {
613 .name = "system",
614 .type = &system_object_type,
615 .methods = system_methods,
616 .n_methods = ARRAY_SIZE(system_methods),
617 .subscribe_cb = procd_subscribe_cb,
618 };
619
620 void
621 procd_bcast_event(char *event, struct blob_attr *msg)
622 {
623 int ret;
624
625 if (!notify)
626 return;
627
628 ret = ubus_notify(_ctx, &system_object, event, msg, -1);
629 if (ret)
630 fprintf(stderr, "Failed to notify log: %s\n", ubus_strerror(ret));
631 }
632
633 void ubus_init_system(struct ubus_context *ctx)
634 {
635 int ret;
636
637 _ctx = ctx;
638 ret = ubus_add_object(ctx, &system_object);
639 if (ret)
640 ERROR("Failed to add object: %s\n", ubus_strerror(ret));
641 }
OpenWrt service / process manager