| blob | 09f90ef917141ce0d53c48121e4c825a8e28ae5b |
1 /* exechelp.c - fork and exec helpers
2 * Copyright (C) 2004, 2007, 2008 Free Software Foundation, Inc.
3 *
4 * This file is part of GnuPG.
5 *
6 * GnuPG is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 3 of the License, or
9 * (at your option) any later version.
10 *
11 * GnuPG is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
15 *
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, see <http://www.gnu.org/licenses/>.
18 */
20 #include <config.h>
22 #include <stdio.h>
23 #include <stdlib.h>
24 #include <string.h>
25 #include <errno.h>
26 #include <assert.h>
27 #include <signal.h>
28 #include <unistd.h>
29 #include <fcntl.h>
32 #undef HAVE_PTH
33 #undef USE_GNU_PTH
34 #endif
36 #ifdef USE_GNU_PTH
37 #include <pth.h>
38 #endif
39 #ifndef HAVE_W32_SYSTEM
40 #include <sys/wait.h>
41 #endif
47 /* Define to 1 do enable debugging. */
48 #define DEBUG_W32_SPAWN 1
51 #ifdef _POSIX_OPEN_MAX
52 #define MAX_OPEN_FDS _POSIX_OPEN_MAX
53 #else
54 #define MAX_OPEN_FDS 20
55 #endif
57 /* We have the usual problem here: Some modules are linked against pth
58 and some are not. However we want to use pth_fork and pth_waitpid
59 here. Using a weak symbol works but is not portable - we should
60 provide a an explicit dummy pth module instead of using the
61 pragma. */
62 #ifndef _WIN32
63 #pragma weak pth_fork
64 #pragma weak pth_waitpid
65 #endif
67 #ifdef HAVE_W32_SYSTEM
68 /* It seems Vista doesn't grok X_OK and so fails access() tests.
69 Previous versions interpreted X_OK as F_OK anyway, so we'll just
70 use F_OK directly. */
71 #undef X_OK
72 #define X_OK F_OK
76 #ifdef HAVE_W32_SYSTEM
77 /* We assume that a HANDLE can be represented by an int which should
78 be true for all i386 systems (HANDLE is defined as void *) and
79 these are the only systems for which Windows is available. Further
80 we assume that -1 denotes an invalid handle. */
81 # define fd_to_handle(a) ((HANDLE)(a))
82 # define handle_to_fd(a) ((int)(a))
83 # define pid_to_handle(a) ((HANDLE)(a))
84 # define handle_to_pid(a) ((int)(a))
85 #endif
88 #ifdef HAVE_W32_SYSTEM
89 /* Helper function to build_w32_commandline. */
92 {
99 {
100 /* Need top do some kind of quoting. */
103 {
107 }
110 }
111 else
115 }
117 /* Build a command line for use with W32's CreateProcess. On success
118 CMDLINE gets the address of a newly allocated string. */
119 static gpg_error_t
122 {
135 {
140 }
141 n++;
149 {
152 }
156 }
160 #ifdef HAVE_W32_SYSTEM
161 /* Create pipe where the write end is inheritable. */
162 static int
164 {
166 SECURITY_ATTRIBUTES sec_attr;
178 {
183 }
190 }
194 #ifdef HAVE_W32_SYSTEM
195 static HANDLE
197 {
198 HANDLE hfile;
207 }
211 #ifndef HAVE_W32_SYSTEM
212 /* The exec core used right after the fork. This will never return. */
213 static void
217 {
226 /* Create the command line argument array. */
230 i++;
235 else
241 /* Connect the standard files. */
243 {
245 {
250 }
254 }
256 /* Close all other files. */
267 /* No way to print anything, as we have closed all streams. */
269 }
273 /* Portable function to create a pipe. Under Windows the write end is
274 inheritable. */
275 gpg_error_t
277 {
279 #if HAVE_W32_SYSTEM
285 {
288 {
291 }
292 else
293 {
296 {
301 }
302 else
304 }
305 }
306 #else
308 {
311 }
312 #endif
314 }
317 /* Fork and exec the PGMNAME, connect the file descriptor of INFILE to
318 stdin, write the output to OUTFILE, return a new stream in
319 STATUSFILE for stderr and the pid of the process in PID. The
320 arguments for the process are expected in the NULL terminated array
321 ARGV. The program name itself should not be included there. If
322 PREEXEC is not NULL, that function will be called right before the
323 exec. Calling gnupg_wait_process is required.
325 FLAGS is a bit vector with just one bit defined for now:
327 Bit 7: If set the process will be started as a background process.
328 This flag is only useful under W32 systems, so that no new
329 console is created and pops up a console window when
330 starting the server
332 Returns 0 on success or an error code. */
333 gpg_error_t
338 {
339 #ifdef HAVE_W32_SYSTEM
340 gpg_error_t err;
341 SECURITY_ATTRIBUTES sec_attr;
342 PROCESS_INFORMATION pi =
343 {
348 };
349 STARTUPINFO si;
354 /* Setup return values. */
364 /* Prepare security attributes. */
369 /* Build the command line. */
374 /* Create a pipe. */
376 {
381 }
383 /* Start the process. Note that we can't run the PREEXEC function
384 because this would change our own environment. */
393 cr_flags = (CREATE_DEFAULT_ERROR_MODE
408 ))
409 {
415 }
419 /* Close the other end of the pipe. */
427 /* Process has been created suspended; resume it now. */
431 {
437 else
439 }
441 {
446 }
452 gpg_error_t err;
465 {
469 }
471 #ifdef USE_GNU_PTH
473 #else
475 #endif
477 {
483 }
486 {
488 /* Run child. */
490 /*NOTREACHED*/
491 }
493 /* Parent. */
498 {
504 }
508 }
512 /* Simplified version of gnupg_spawn_process. This function forks and
513 then execs PGMNAME, while connecting INFD to stdin, OUTFD to stdout
514 and ERRFD to stderr (any of them may be -1 to connect them to
515 /dev/null). The arguments for the process are expected in the NULL
516 terminated array ARGV. The program name itself should not be
517 included there. Calling gnupg_wait_process is required.
519 Returns 0 on success or an error code. */
520 gpg_error_t
523 {
524 #ifdef HAVE_W32_SYSTEM
525 gpg_error_t err;
526 SECURITY_ATTRIBUTES sec_attr;
528 STARTUPINFO si;
533 /* Setup return values. */
536 /* Prepare security attributes. */
541 /* Build the command line. */
563 (CREATE_DEFAULT_ERROR_MODE
570 ))
571 {
574 }
575 else
589 /* Process has been created suspended; resume it now. */
597 gpg_error_t err;
599 #ifdef USE_GNU_PTH
601 #else
603 #endif
605 {
609 }
612 {
614 /* Run child. */
616 /*NOTREACHED*/
617 }
621 }
624 /* Wait for the process identified by PID to terminate. PGMNAME should
625 be the same as supplied to the spawn function and is only used for
626 diagnostics. Returns 0 if the process succeeded, GPG_ERR_GENERAL
627 for any failures of the spawned program or other error codes. If
628 EXITCODE is not NULL the exit code of the process is stored at this
629 address or -1 if it could not be retrieved. */
630 gpg_error_t
632 {
633 gpg_err_code_t ec;
635 #ifdef HAVE_W32_SYSTEM
638 DWORD exc;
646 /* FIXME: We should do a pth_waitpid here. However this has not yet
647 been implemented. A special W32 pth system call would even be
648 better. */
651 {
660 {
664 }
666 {
672 }
673 else
674 {
678 }
687 }
698 #ifdef USE_GNU_PTH
700 #else
702 ;
703 #endif
705 {
709 }
711 {
714 }
716 {
722 }
724 {
727 }
728 else
729 {
733 }
737 }
740 /* Spawn a new process and immediatley detach from it. The name of
741 the program to exec is PGMNAME and its arguments are in ARGV (the
742 programname is automatically passed as first argument).
743 Environment strings in ENVP are set. An error is returned if
744 pgmname is not executable; to make this work it is necessary to
745 provide an absolute file name. All standard file descriptors are
746 connected to /dev/null. */
747 gpg_error_t
750 {
751 #ifdef HAVE_W32_SYSTEM
752 gpg_error_t err;
753 SECURITY_ATTRIBUTES sec_attr;
754 PROCESS_INFORMATION pi =
755 {
760 };
761 STARTUPINFO si;
766 /* FIXME: We don't make use of ENVP yet. It is currently only used
767 to pass the GPG_AGENT_INFO variable to gpg-agent. As the default
768 on windows is to use a standard socket, this does not really
769 matter. */
775 /* Prepare security attributes. */
780 /* Build the command line. */
785 /* Start the process. */
791 cr_flags = (CREATE_DEFAULT_ERROR_MODE
793 | CREATE_NEW_PROCESS_GROUP
807 ))
808 {
812 }
825 #else
826 pid_t pid;
835 #ifdef USE_GNU_PTH
837 #else
839 #endif
841 {
844 }
846 {
862 /*NOTREACHED*/
863 }
871 }