1
/*
2
 * Copyright (c) 1995 - 2005 Kungliga Tekniska Högskolan
3
 * (Royal Institute of Technology, Stockholm, Sweden).
4
 * All rights reserved.
5
 *
6
 * Redistribution and use in source and binary forms, with or without
7
 * modification, are permitted provided that the following conditions
8
 * are met:
9
 *
10
 * 1. Redistributions of source code must retain the above copyright
11
 *    notice, this list of conditions and the following disclaimer.
12
 *
13
 * 2. Redistributions in binary form must reproduce the above copyright
14
 *    notice, this list of conditions and the following disclaimer in the
15
 *    documentation and/or other materials provided with the distribution.
16
 *
17
 * 3. Neither the name of the Institute nor the names of its contributors
18
 *    may be used to endorse or promote products derived from this software
19
 *    without specific prior written permission.
20
 *
21
 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31
 * SUCH DAMAGE.
32
 */
33

34
#ifdef HAVE_CONFIG_H
35
#include <config.h>
36
#endif
37

38
RCSID("$Id$");
39

40
#include <stdio.h>
41
#include <stdlib.h>
42
#include <string.h>
43
#include <unistd.h>
44
#ifdef HAVE_SYS_TYPES_H
45
#include <sys/types.h>
46
#endif
47
#include <time.h>
48
#ifdef HAVE_FCNTL_H
49
#include <fcntl.h>
50
#endif
51
#ifdef HAVE_PWD_H
52
#include <pwd.h>
53
#endif
54

55
#ifdef KRB5
56
#include <krb5.h>
57
#endif
58
#include <kafs.h>
59

60
#include <err.h>
61
#include <roken.h>
62
#include <getarg.h>
63

64
#ifndef TKT_ROOT
65
#define TKT_ROOT "/tmp/tkt"
66
#endif
67

68
static int help_flag;
69
static int version_flag;
70
static int c_flag;
71
#ifdef KRB5
72
static char *typename_arg;
73
#endif
74

75
struct getargs getargs[] = {
76
    { NULL,	'c', arg_flag, &c_flag },
77
#ifdef KRB5
78
    { "cache-type", 0,  arg_string, &typename_arg },
79
#endif
80
    { "version", 0,  arg_flag, &version_flag },
81
    { "help",	'h', arg_flag, &help_flag },
82
};
83

84
static int num_args = sizeof(getargs) / sizeof(getargs[0]);
85

86
static void
87
usage(int ecode)
88
{
89
    arg_printusage(getargs, num_args, NULL, "command [args...]");
90
    exit(ecode);
91
}
92

93
/*
94
 * Run command with a new ticket file / credentials cache / token
95
 */
96

97
int
98
main(int argc, char **argv)
99
{
100
    int f;
101
    char tf[1024];
102
    char *p;
103

104
    char *path;
105
    char **args;
106
    unsigned int i;
107
    int optind = 0;
108

109
    setprogname(argv[0]);
110
    if(getarg(getargs, num_args, argc, argv, &optind))
111
	usage(1);
112
    if(help_flag)
113
	usage(0);
114
    if(version_flag) {
115
	print_version(NULL);
116
	exit(0);
117
    }
118

119
    argc -= optind;
120
    argv += optind;
121

122
#ifdef KRB5
123
    {
124
	krb5_error_code ret;
125
	krb5_context context;
126
	krb5_ccache id;
127
	const char *name;
128

129
	ret = krb5_init_context(&context);
130
	if (ret) /* XXX should this really call exit ? */
131
	    errx(1, "no kerberos 5 support");
132

133
	ret = krb5_cc_new_unique(context, typename_arg, NULL, &id);
134
	if (ret)
135
	    krb5_err(context, 1, ret, "Failed generating credential cache");
136

137
	name = krb5_cc_get_name(context, id);
138
	if (name == NULL)
139
	    krb5_errx(context, 1, "Generated credential cache have no name");
140

141
	snprintf(tf, sizeof(tf), "%s:%s", krb5_cc_get_type(context, id), name);
142

143
	ret = krb5_cc_close(context, id);
144
	if (ret)
145
	    krb5_err(context, 1, ret, "Failed closing credential cache");
146

147
	krb5_free_context(context);
148

149
	esetenv("KRB5CCNAME", tf, 1);
150
    }
151
#endif
152

153
    snprintf (tf, sizeof(tf), "%s_XXXXXX", TKT_ROOT);
154
    f = mkstemp (tf);
155
    if (f < 0)
156
	err(1, "mkstemp failed");
157
    close (f);
158
    unlink (tf);
159
    esetenv("KRBTKFILE", tf, 1);
160

161
    i = 0;
162

163
    args = (char **) malloc((argc + 10)*sizeof(char *));
164
    if (args == NULL)
165
	errx (1, "Out of memory allocating %lu bytes",
166
	      (unsigned long)((argc + 10)*sizeof(char *)));
167

168
    if(*argv == NULL) {
169
	path = getenv("SHELL");
170
	if(path == NULL){
171
	    struct passwd *pw = k_getpwuid(geteuid());
172
	    if (pw == NULL)
173
		errx(1, "no such user: %d", (int)geteuid());
174
	    path = strdup(pw->pw_shell);
175
	}
176
    } else {
177
	path = strdup(*argv++);
178
    }
179
    if (path == NULL)
180
	errx (1, "Out of memory copying path");
181

182
    p=strrchr(path, '/');
183
    if(p)
184
	args[i] = strdup(p+1);
185
    else
186
	args[i] = strdup(path);
187

188
    if (args[i++] == NULL)
189
	errx (1, "Out of memory copying arguments");
190

191
    while(*argv)
192
	args[i++] = *argv++;
193

194
    args[i++] = NULL;
195

196
    if(k_hasafs())
197
	k_setpag();
198

199
    unsetenv("PAGPID");
200
    execvp(path, args);
201
    if (errno == ENOENT || c_flag) {
202
	char **sh_args = malloc ((i + 2) * sizeof(char *));
203
	unsigned int j;
204

205
	if (sh_args == NULL)
206
	    errx (1, "Out of memory copying sh arguments");
207
	for (j = 1; j < i; ++j)
208
	    sh_args[j + 2] = args[j];
209
	sh_args[0] = "sh";
210
	sh_args[1] = "-c";
211
	sh_args[2] = path;
212
	execv ("/bin/sh", sh_args);
213
    }
214
    err (1, "execvp");
215
}
216

217