[thirdparty/cups.git] / scheduler / process.c

/*
 * "$Id: process.c 6783 2007-08-10 19:48:57Z mike $"
 *
 *   Process management routines for the Common UNIX Printing System (CUPS).
 *
 *   Copyright 2007 by Apple Inc.
 *   Copyright 1997-2007 by Easy Software Products, all rights reserved.
 *
 *   These coded instructions, statements, and computer programs are the
 *   property of Apple Inc. and are protected by Federal copyright
 *   law.  Distribution and use rights are outlined in the file "LICENSE.txt"
 *   which should have been included with this file.  If this file is
 *   file is missing or damaged, see the license at "http://www.cups.org/".
 *
 * Contents:
 *
 *   cupsdEndProcess()    - End a process.
 *   cupsdFinishProcess() - Finish a process and get its name.
 *   cupsdStartProcess()  - Start a process.
 *   compare_procs()      - Compare two processes.
 */

/*
 * Include necessary headers...
 */

#include "cupsd.h"
#include <grp.h>
#if defined(__APPLE__)
#  include <libgen.h>
#endif /* __APPLE__ */ 


/*
 * Process structure...
 */

typedef struct
{
  int	pid;				/* Process ID */
  char	name[1];			/* Name of process */
} cupsd_proc_t;


/*
 * Local globals...
 */

static cups_array_t	*process_array = NULL;


/*
 * Local functions...
 */

static int	compare_procs(cupsd_proc_t *a, cupsd_proc_t *b);


/*
 * 'cupsdEndProcess()' - End a process.
 */

int					/* O - 0 on success, -1 on failure */
cupsdEndProcess(int pid,		/* I - Process ID */
                int force)		/* I - Force child to die */
{
  if (force)
    return (kill(pid, SIGKILL));
  else
    return (kill(pid, SIGTERM));
}


/*
 * 'cupsdFinishProcess()' - Finish a process and get its name.
 */

const char *				/* O - Process name */
cupsdFinishProcess(int  pid,		/* I - Process ID */
                   char *name,		/* I - Name buffer */
		   int  namelen)	/* I - Size of name buffer */
{
  cupsd_proc_t	key,			/* Search key */
		*proc;			/* Matching process */


  key.pid = pid;

  if ((proc = (cupsd_proc_t *)cupsArrayFind(process_array, &key)) != NULL)
  {
    strlcpy(name, proc->name, namelen);
    cupsArrayRemove(process_array, proc);
    free(proc);

    return (name);
  }
  else
    return ("unknown");
}


/*
 * 'cupsdStartProcess()' - Start a process.
 */

int					/* O - Process ID or 0 */
cupsdStartProcess(
    const char *command,		/* I - Full path to command */
    char       *argv[],			/* I - Command-line arguments */
    char       *envp[],			/* I - Environment */
    int        infd,			/* I - Standard input file descriptor */
    int        outfd,			/* I - Standard output file descriptor */
    int        errfd,			/* I - Standard error file descriptor */
    int        backfd,			/* I - Backchannel file descriptor */
    int        sidefd,			/* I - Sidechannel file descriptor */
    int        root,			/* I - Run as root? */
    int        *pid)			/* O - Process ID */
{
  cupsd_proc_t	*proc;			/* New process record */
#if defined(HAVE_SIGACTION) && !defined(HAVE_SIGSET)
  struct sigaction action;		/* POSIX signal handler */
#endif /* HAVE_SIGACTION && !HAVE_SIGSET */
#if defined(__APPLE__)
  char		processPath[1024],	/* CFProcessPath environment variable */
		linkpath[1024];		/* Link path for symlinks... */
  int		linkbytes;		/* Bytes for link path */
#endif /* __APPLE__ */


  cupsdLogMessage(CUPSD_LOG_DEBUG2,
                  "cupsdStartProcess(\"%s\", %p, %p, %d, %d, %d)",
                  command, argv, envp, infd, outfd, errfd);

  if (access(command, X_OK))
  {
    cupsdLogMessage(CUPSD_LOG_ERROR, "Unable to execute %s: %s", command,
                    strerror(errno));
    return (0);
  }

#if defined(__APPLE__)
  if (envp)
  {
   /*
    * Add special voodoo magic for MacOS X - this allows MacOS X 
    * programs to access their bundle resources properly...
    */

    if ((linkbytes = readlink(command, linkpath, sizeof(linkpath) - 1)) > 0)
    {
     /*
      * Yes, this is a symlink to the actual program, nul-terminate and
      * use it...
      */

      linkpath[linkbytes] = '\0';

      if (linkpath[0] == '/')
	snprintf(processPath, sizeof(processPath), "CFProcessPath=%s",
		 linkpath);
      else
	snprintf(processPath, sizeof(processPath), "CFProcessPath=%s/%s",
		 dirname((char *)command), linkpath);
    }
    else
      snprintf(processPath, sizeof(processPath), "CFProcessPath=%s", command);

    envp[0] = processPath;		/* Replace <CFProcessPath> string */
  }
#endif	/* __APPLE__ */

 /*
  * Block signals before forking...
  */

  cupsdHoldSignals();

  if ((*pid = fork()) == 0)
  {
   /*
    * Child process goes here...
    *
    * Update stdin/stdout/stderr as needed...
    */

    if (infd != 0)
    {
      close(0);
      if (infd > 0)
        dup(infd);
      else
        open("/dev/null", O_RDONLY);
    }
    if (outfd != 1)
    {
      close(1);
      if (outfd > 0)
	dup(outfd);
      else
        open("/dev/null", O_WRONLY);
    }
    if (errfd != 2)
    {
      close(2);
      if (errfd > 0)
        dup(errfd);
      else
        open("/dev/null", O_WRONLY);
    }
    if (backfd != 3)
    {
      close(3);
      if (backfd > 0)
	dup(backfd);
      else
        open("/dev/null", O_RDWR);
      fcntl(3, F_SETFL, O_NDELAY);
    }
    if (sidefd != 4 && sidefd > 0)
    {
      close(4);
      dup(sidefd);
      fcntl(4, F_SETFL, O_NDELAY);
    }

   /*
    * Change the priority of the process based on the FilterNice setting.
    * (this is not done for backends...)
    */

    if (!root)
      nice(FilterNice);

   /*
    * Change user to something "safe"...
    */

    if (!root && !RunUser)
    {
     /*
      * Running as root, so change to non-priviledged user...
      */

      if (setgid(Group))
	exit(errno);

      if (setgroups(1, &Group))
	exit(errno);

      if (setuid(User))
        exit(errno);
    }
    else
    {
     /*
      * Reset group membership to just the main one we belong to.
      */

      setgid(Group);
      setgroups(1, &Group);
    }

   /*
    * Change umask to restrict permissions on created files...
    */

    umask(077);

   /*
    * Unblock signals before doing the exec...
    */

#ifdef HAVE_SIGSET
    sigset(SIGTERM, SIG_DFL);
    sigset(SIGCHLD, SIG_DFL);
#elif defined(HAVE_SIGACTION)
    memset(&action, 0, sizeof(action));

    sigemptyset(&action.sa_mask);
    action.sa_handler = SIG_DFL;

    sigaction(SIGTERM, &action, NULL);
    sigaction(SIGCHLD, &action, NULL);
#else
    signal(SIGTERM, SIG_DFL);
    signal(SIGCHLD, SIG_DFL);
#endif /* HAVE_SIGSET */

    cupsdReleaseSignals();

   /*
    * Execute the command; if for some reason this doesn't work,
    * return the error code...
    */

    if (envp)
      execve(command, argv, envp);
    else
      execv(command, argv);

    perror(command);

    exit(errno);
  }
  else if (*pid < 0)
  {
   /*
    * Error - couldn't fork a new process!
    */

    cupsdLogMessage(CUPSD_LOG_ERROR, "Unable to fork %s - %s.", command,
                    strerror(errno));

    *pid = 0;
  }
  else
  {
    if (!process_array)
      process_array = cupsArrayNew((cups_array_func_t)compare_procs, NULL);
 
    if (process_array)
    {
      if ((proc = calloc(1, sizeof(cupsd_proc_t) + strlen(command))) != NULL)
      {
        proc->pid = *pid;
	strcpy(proc->name, command);

	cupsArrayAdd(process_array, proc);
      }
    }
  }

  cupsdReleaseSignals();

  return (*pid);
}


/*
 * 'compare_procs()' - Compare two processes.
 */

static int				/* O - Result of comparison */
compare_procs(cupsd_proc_t *a,		/* I - First process */
              cupsd_proc_t *b)		/* I - Second process */
{
  return (a->pid - b->pid);
}


/*
 * End of "$Id: process.c 6783 2007-08-10 19:48:57Z mike $".
 */
Commit	Line	Data
ef416fc2	1	/*
db1f069b	2	* "$Id: process.c 6783 2007-08-10 19:48:57Z mike $"
ef416fc2	3	*
	4	* Process management routines for the Common UNIX Printing System (CUPS).
	5	*
bc44d920	6	* Copyright 2007 by Apple Inc.
f7deaa1a	7	* Copyright 1997-2007 by Easy Software Products, all rights reserved.
ef416fc2	8	*
ef416fc2	9	* These coded instructions, statements, and computer programs are the
bc44d920	10	* property of Apple Inc. and are protected by Federal copyright
	11	* law. Distribution and use rights are outlined in the file "LICENSE.txt"
	12	* which should have been included with this file. If this file is
	13	* file is missing or damaged, see the license at "http://www.cups.org/".
ef416fc2	14	*
	15	* Contents:
	16	*
e00b005a	17	* cupsdEndProcess() - End a process.
	18	* cupsdFinishProcess() - Finish a process and get its name.
	19	* cupsdStartProcess() - Start a process.
	20	* compare_procs() - Compare two processes.
ef416fc2	21	*/
	22
	23	/*
	24	* Include necessary headers...
	25	*/
	26
	27	#include "cupsd.h"
	28	#include <grp.h>
e53920b9	29	#if defined(__APPLE__)
4400e98d	30	# include <libgen.h>
e53920b9	31	#endif /* __APPLE__ */
ef416fc2	32
ef416fc2	33
e00b005a	34	/*
	35	* Process structure...
	36	*/
	37
	38	typedef struct
	39	{
	40	int pid; /* Process ID */
	41	char name[1]; /* Name of process */
	42	} cupsd_proc_t;
	43
	44
	45	/*
	46	* Local globals...
	47	*/
	48
	49	static cups_array_t *process_array = NULL;
	50
	51
	52	/*
	53	* Local functions...
	54	*/
	55
	56	static int compare_procs(cupsd_proc_t a, cupsd_proc_t b);
	57
	58
ef416fc2	59	/*
	60	* 'cupsdEndProcess()' - End a process.
	61	*/
	62
	63	int /* O - 0 on success, -1 on failure */
	64	cupsdEndProcess(int pid, /* I - Process ID */
	65	int force) /* I - Force child to die */
	66	{
	67	if (force)
	68	return (kill(pid, SIGKILL));
	69	else
	70	return (kill(pid, SIGTERM));
	71	}
	72
	73
e00b005a	74	/*
	75	* 'cupsdFinishProcess()' - Finish a process and get its name.
	76	*/
	77
	78	const char * /* O - Process name */
	79	cupsdFinishProcess(int pid, /* I - Process ID */
	80	char name, / I - Name buffer */
	81	int namelen) /* I - Size of name buffer */
	82	{
	83	cupsd_proc_t key, /* Search key */
	84	proc; / Matching process */
	85
	86
	87	key.pid = pid;
	88
	89	if ((proc = (cupsd_proc_t *)cupsArrayFind(process_array, &key)) != NULL)
	90	{
	91	strlcpy(name, proc->name, namelen);
	92	cupsArrayRemove(process_array, proc);
	93	free(proc);
	94
	95	return (name);
	96	}
	97	else
	98	return ("unknown");
	99	}
	100
	101
ef416fc2	102	/*
	103	* 'cupsdStartProcess()' - Start a process.
	104	*/
	105
	106	int /* O - Process ID or 0 */
	107	cupsdStartProcess(
	108	const char command, / I - Full path to command */
	109	char argv[], / I - Command-line arguments */
	110	char envp[], / I - Environment */
	111	int infd, /* I - Standard input file descriptor */
	112	int outfd, /* I - Standard output file descriptor */
	113	int errfd, /* I - Standard error file descriptor */
	114	int backfd, /* I - Backchannel file descriptor */
f7deaa1a	115	int sidefd, /* I - Sidechannel file descriptor */
ef416fc2	116	int root, /* I - Run as root? */
	117	int pid) / O - Process ID */
	118	{
e00b005a	119	cupsd_proc_t proc; / New process record */
ef416fc2	120	#if defined(HAVE_SIGACTION) && !defined(HAVE_SIGSET)
e00b005a	121	struct sigaction action; /* POSIX signal handler */
ef416fc2	122	#endif /* HAVE_SIGACTION && !HAVE_SIGSET */
e53920b9	123	#if defined(__APPLE__)
e00b005a	124	char processPath[1024], /* CFProcessPath environment variable */
	125	linkpath[1024]; /* Link path for symlinks... */
	126	int linkbytes; /* Bytes for link path */
e53920b9	127	#endif /* __APPLE__ */
ef416fc2	128
	129
	130	cupsdLogMessage(CUPSD_LOG_DEBUG2,
	131	"cupsdStartProcess(\"%s\", %p, %p, %d, %d, %d)",
	132	command, argv, envp, infd, outfd, errfd);
	133
76cd9e37 MS	134	if (access(command, X_OK))
	135	{
	136	cupsdLogMessage(CUPSD_LOG_ERROR, "Unable to execute %s: %s", command,
	137	strerror(errno));
	138	return (0);
	139	}
	140
e53920b9	141	#if defined(__APPLE__)
e53920b9	142	if (envp)
e00b005a	143	{
e00b005a	144	/*
e53920b9	145	* Add special voodoo magic for MacOS X - this allows MacOS X
e53920b9	146	* programs to access their bundle resources properly...
e00b005a	147	*/
e00b005a	148
e53920b9	149	if ((linkbytes = readlink(command, linkpath, sizeof(linkpath) - 1)) > 0)
	150	{
	151	/*
	152	* Yes, this is a symlink to the actual program, nul-terminate and
	153	* use it...
	154	*/
	155
	156	linkpath[linkbytes] = '\0';
e00b005a	157
e53920b9	158	if (linkpath[0] == '/')
	159	snprintf(processPath, sizeof(processPath), "CFProcessPath=%s",
	160	linkpath);
	161	else
	162	snprintf(processPath, sizeof(processPath), "CFProcessPath=%s/%s",
f7deaa1a	163	dirname((char *)command), linkpath);
e53920b9	164	}
e00b005a	165	else
e53920b9	166	snprintf(processPath, sizeof(processPath), "CFProcessPath=%s", command);
bd7854cb	167
e53920b9	168	envp[0] = processPath; /* Replace <CFProcessPath> string */
	169	}
	170	#endif /* __APPLE__ */
e00b005a	171
ef416fc2	172	/*
	173	* Block signals before forking...
	174	*/
	175
	176	cupsdHoldSignals();
	177
	178	if ((*pid = fork()) == 0)
	179	{
	180	/*
	181	* Child process goes here...
	182	*
	183	* Update stdin/stdout/stderr as needed...
	184	*/
	185
	186	if (infd != 0)
	187	{
	188	close(0);
	189	if (infd > 0)
	190	dup(infd);
	191	else
	192	open("/dev/null", O_RDONLY);
	193	}
	194	if (outfd != 1)
	195	{
	196	close(1);
	197	if (outfd > 0)
	198	dup(outfd);
	199	else
	200	open("/dev/null", O_WRONLY);
	201	}
	202	if (errfd != 2)
	203	{
	204	close(2);
	205	if (errfd > 0)
	206	dup(errfd);
	207	else
	208	open("/dev/null", O_WRONLY);
	209	}
	210	if (backfd != 3)
	211	{
	212	close(3);
	213	if (backfd > 0)
	214	dup(backfd);
	215	else
	216	open("/dev/null", O_RDWR);
	217	fcntl(3, F_SETFL, O_NDELAY);
	218	}
f7deaa1a	219	if (sidefd != 4 && sidefd > 0)
	220	{
	221	close(4);
	222	dup(sidefd);
	223	fcntl(4, F_SETFL, O_NDELAY);
	224	}
ef416fc2	225
	226	/*
	227	* Change the priority of the process based on the FilterNice setting.
	228	* (this is not done for backends...)
	229	*/
	230
	231	if (!root)
	232	nice(FilterNice);
	233
	234	/*
	235	* Change user to something "safe"...
	236	*/
	237
	238	if (!root && !RunUser)
	239	{
	240	/*
	241	* Running as root, so change to non-priviledged user...
	242	*/
	243
	244	if (setgid(Group))
e00b005a	245	exit(errno);
ef416fc2	246
ef416fc2	247	if (setgroups(1, &Group))
e00b005a	248	exit(errno);
ef416fc2	249
	250	if (setuid(User))
	251	exit(errno);
	252	}
	253	else
	254	{
	255	/*
	256	* Reset group membership to just the main one we belong to.
	257	*/
	258
e00b005a	259	setgid(Group);
ef416fc2	260	setgroups(1, &Group);
	261	}
	262
	263	/*
	264	* Change umask to restrict permissions on created files...
	265	*/
	266
	267	umask(077);
	268
	269	/*
	270	* Unblock signals before doing the exec...
	271	*/
	272
	273	#ifdef HAVE_SIGSET
	274	sigset(SIGTERM, SIG_DFL);
	275	sigset(SIGCHLD, SIG_DFL);
	276	#elif defined(HAVE_SIGACTION)
	277	memset(&action, 0, sizeof(action));
	278
	279	sigemptyset(&action.sa_mask);
	280	action.sa_handler = SIG_DFL;
	281
	282	sigaction(SIGTERM, &action, NULL);
	283	sigaction(SIGCHLD, &action, NULL);
	284	#else
	285	signal(SIGTERM, SIG_DFL);
	286	signal(SIGCHLD, SIG_DFL);
	287	#endif /* HAVE_SIGSET */
	288
	289	cupsdReleaseSignals();
	290
	291	/*
	292	* Execute the command; if for some reason this doesn't work,
	293	* return the error code...
	294	*/
	295
	296	if (envp)
	297	execve(command, argv, envp);
	298	else
	299	execv(command, argv);
	300
	301	perror(command);
	302
	303	exit(errno);
	304	}
	305	else if (*pid < 0)
	306	{
	307	/*
	308	* Error - couldn't fork a new process!
	309	*/
	310
	311	cupsdLogMessage(CUPSD_LOG_ERROR, "Unable to fork %s - %s.", command,
	312	strerror(errno));
	313
	314	*pid = 0;
	315	}
e00b005a	316	else
	317	{
	318	if (!process_array)
	319	process_array = cupsArrayNew((cups_array_func_t)compare_procs, NULL);
	320
	321	if (process_array)
	322	{
	323	if ((proc = calloc(1, sizeof(cupsd_proc_t) + strlen(command))) != NULL)
	324	{
	325	proc->pid = *pid;
	326	strcpy(proc->name, command);
	327
	328	cupsArrayAdd(process_array, proc);
	329	}
	330	}
	331	}
ef416fc2	332
	333	cupsdReleaseSignals();
	334
	335	return (*pid);
	336	}
	337
	338
	339	/*
e00b005a	340	* 'compare_procs()' - Compare two processes.
	341	*/
	342
	343	static int /* O - Result of comparison */
	344	compare_procs(cupsd_proc_t a, / I - First process */
	345	cupsd_proc_t b) / I - Second process */
	346	{
	347	return (a->pid - b->pid);
	348	}
	349
	350
	351	/*
db1f069b	352	* End of "$Id: process.c 6783 2007-08-10 19:48:57Z mike $".
ef416fc2	353	*/