Changeset 1644 in MondoRescue for branches/2.2.5/mondo/src/common

Timestamp:

Sep 23, 2007, 2:41:29 AM (17 years ago)

Author:

Bruno Cornec

Message:

Apply patch from Andree Leidenfrost, modified a bit to use bkpinfo->tmpdir instead of /tmp
or MINDI_CACHE when appropriate. Fix security issues in mondo
Thanks al ot Andree for catching all those issues.
Will not compile needs more work as bkpinfo->tmpdir isn't available everywhere
Should become a global in 3.x when only containing pointers.

Location:

branches/2.2.5/mondo/src/common

Files:

• libmondo-archive.c (modified) (5 diffs)
• libmondo-devices.c (modified) (4 diffs)
• libmondo-filelist.c (modified) (2 diffs)
• libmondo-fork.c (modified) (7 diffs)
• libmondo-tools.c (modified) (3 diffs)
• libmondo-verify.c (modified) (4 diffs)
• newt-specific.c (modified) (2 diffs)

branches/2.2.5/mondo/src/common/libmondo-archive.c

@@ -1474 +1474 @@
     }
 /* if not Debian then go ahead & use fdformat */
-    strcpy(tempfile,
-           call_program_and_get_last_line_of_output
-           ("mktemp -q /tmp/mondo.XXXXXXXX"));
+    sprintf(tempfile, "%s/mondo.floppy.log", bkpinfo->tmpdir);
     sprintf(command, "%s >> %s 2>> %s; rm -f %s", cmd, tempfile, tempfile,
             tempfile);
@@ -3195 +3193 @@
     }
     log_to_screen("Scanning CD-ROM drive...");
-    sprintf(mtpt, "/tmp/cd.mtpt.%ld.%ld", (long int) random(),
-            (long int) random());
+    sprintf(mtpt, "%s/cd.mtpt", bkpinfo->tmpdir);
     make_hole_for_dir(mtpt);
 
@@ -3959 +3956 @@
         log_msg(2,
                 "Not verifying again. Per-CD/ISO verification already carried out.");
-        paranoid_system
-            ("cat /tmp/changed.files.* > /tmp/changed.files 2> /dev/null");
+        sprintf(tmp, "cat %s/changed.files > %s/changed.files 2> /dev/null",bkpinfo->tmpdir, MINDI_CACHE);
+        paranoid_system(tmp);
     } else {
         g_current_media_number = cdno;
@@ -3996 +3993 @@
 */
         sprintf(tmp,
-                "grep 'afio: ' %s | sed 's/afio: //' | grep -vE '^/dev/.*$' >> /tmp/changed.files",
-                MONDO_LOGFILE);
+                "grep 'afio: ' %s | sed 's/afio: //' | grep -vE '^/dev/.*$' >> %s/changed.files",
+                MONDO_LOGFILE, MINDI_CACHE);
         system(tmp);
 
         sprintf(tmp,
-                "grep 'star: ' %s | sed 's/star: //' | grep -vE '^/dev/.*$' >> /tmp/changed.files",
-                MONDO_LOGFILE);
+                "grep 'star: ' %s | sed 's/star: //' | grep -vE '^/dev/.*$' >> %s/changed.files",
+                MONDO_LOGFILE, MINDI_CACHE);
         system(tmp);
         run_program_and_log_output("umount " MNT_CDROM, FALSE);
@@ -4010 +4007 @@
 //}
     }
-    diffs = count_lines_in_file("/tmp/changed.files");
+    sprintf(tmp, "%s/changed.files", MINDI_CACHE);
+    diffs = count_lines_in_file(tmp);
 
     if (diffs > 0) {

branches/2.2.5/mondo/src/common/libmondo-devices.c

@@ -855 +855 @@
     }
 
-    sprintf(mountpoint, "/tmp/cd.%d", (int) (random() % 32767));
+    sprintf(mountpoint, "%s/cd.mnt", bkpinfo->tmpdir);
     make_hole_for_dir(mountpoint);
 
@@ -1732 +1732 @@
             run_program_and_log_output("umount " MNT_CDROM, 5);
         }
-        system("mkdir -p /tmp/isodir &> /dev/null");
+        sprintf(tmp, "mkdir -p %s/isodir &> /dev/null", bkpinfo->tmpdir);
+        system(tmp);
         sprintf(tmp, "%s/%s/%s-%d.iso", bkpinfo->isodir,
                 bkpinfo->nfs_remote_dir, bkpinfo->prefix,
                 cd_number_i_want);
         if (!does_file_exist(tmp)) {
-            sprintf(tmp, "/tmp/isodir/%s/%s-%d.iso",
+            sprintf(tmp, "%s/isodir/%s/%s-%d.iso", bkpinfo->tmpdir,
                     bkpinfo->nfs_remote_dir, bkpinfo->prefix,
                     cd_number_i_want);
             if (does_file_exist(tmp)) {
                 log_msg(1,
-                        "FIXME - hacking bkpinfo->isodir from '%s' to /tmp/isodir",
-                        bkpinfo->isodir);
-                strcpy(bkpinfo->isodir, "/tmp/isodir");
+                        "FIXME - hacking bkpinfo->isodir from '%s' to %s/isodir",
+                        bkpinfo->isodir, bkpinfo->tmpdir);
+                sprintf(bkpinfo->isodir, "%s/isodir", bkpinfo->tmpdir);
             }
         }
@@ -2117 +2118 @@
         }
         if (bkpinfo->disaster_recovery) {
-            system("umount /tmp/isodir 2> /dev/null");
+            sprintf(command ,"umount %s/isodir 2> /dev/null", bkpinfo->tmpdir);
+            system(command);
             if (!popup_and_get_string
                 ("NFS share", "Which remote NFS share should I mount?",
@@ -2126 +2128 @@
         }
         if (!is_this_device_mounted(bkpinfo->nfs_mount)) {
-            sprintf(bkpinfo->isodir, "/tmp/isodir.mondo.%d",
-                    (int) (random() % 32768));
+            sprintf(bkpinfo->isodir, "%s/nfsdir", bkpinfo->tmpdir);
             sprintf(command, "mkdir -p %s", bkpinfo->isodir);
             run_program_and_log_output(command, 5);

branches/2.2.5/mondo/src/common/libmondo-filelist.c

@@ -268 +268 @@
     malloc_string(tmp_fname);
     malloc_string(command);
-    sprintf(tmp_fname, "/tmp/sort.%d.%d.%d", (int) (random() % 32768),
-            (int) (random() % 32768), (int) (random() % 32768));
+    sprintf(tmp_fname, "%s/sortfile", bkpinfo->tmpdir);
 
     if (!does_file_exist(orig_fname)) {
@@ -683 +682 @@
     malloc_string(syscall_pin);
     malloc_string(syscall_pout);
-    sprintf(masklist, "/tmp/%d.%d.mask", (int) (random() % 32768),
-            (int) (random() % 32768));
+    sprintf(masklist, "%s/masklist", bkpinfo->tmpdir);
     sprintf(command, "cp -f %s %s", orig_msklist, masklist);
     run_program_and_log_output(command, 1);

branches/2.2.5/mondo/src/common/libmondo-fork.c

@@ -339 +339 @@
         log_if_failure = TRUE;
     }
-    sprintf(callstr,
-            "%s > /tmp/mondo-run-prog-thing.tmp 2> /tmp/mondo-run-prog-thing.err",
-            program);
+    sprintf(callstr, "%s > %s/mondo-run-prog-thing.tmp 2> %s/mondo-run-prog-thing.err",
+             program, bkpinfo->tmpdir, bkpinfo->tmpdir);
     while ((p = strchr(callstr, '\r'))) {
         *p = ' ';
@@ -368 +367 @@
                 "--------------------------------start of output-----------------------------");
     }
-    if (log_if_failure
-        &&
-        system
-        ("cat /tmp/mondo-run-prog-thing.err >> /tmp/mondo-run-prog-thing.tmp 2> /dev/null"))
-    {
+    sprintf(callstr, "cat %s/mondo-run-prog-thing.err >> %s/mondo-run-prog-thing.tmp 2> /dev/null", bkpinfo->tmpdir, bkpinfo->tmpdir);
+    if (log_if_failure && system(callstr)) {
         log_OS_error("Command failed");
     }
-    unlink("/tmp/mondo-run-prog-thing.err");
-    fin = fopen("/tmp/mondo-run-prog-thing.tmp", "r");
+    sprintf(tmp, "%s/mondo-run-prog-thing.err", bkpinfo->tmpdir);
+    unlink(tmp);
+    sprintf(tmp, "%s/mondo-run-prog-thing.tmp", bkpinfo->tmpdir);
+    fin = fopen(tmp, "r");
     if (fin) {
         for (fgets(incoming, MAX_STR_LEN, fin); !feof(fin);
@@ -397 +395 @@
         paranoid_fclose(fin);
     }
-    unlink("/tmp/mondo-run-prog-thing.tmp");
+    unlink(tmp);
     if ((res == 0 && log_if_success) || (res != 0 && log_if_failure)) {
         log_msg(0,
@@ -441 +439 @@
     assert_string_is_neither_NULL_nor_zerolength(basic_call);
 
-    sprintf(lockfile, "/tmp/mojo-jojo.blah.XXXXXX");
-    mkstemp(lockfile);
+    sprintf(lockfile, "%s/mojo-jojo.bla.bla", bkpinfo->tmpdir);
+
     sprintf(command,
             "echo hi > %s ; %s >> %s 2>> %s; res=$?; sleep 1; rm -f %s; exit $res",
@@ -514 +512 @@
     char *tmp;
     char *buf;
+    char filestr[MAX_STR_LEN];
     long int bytes_to_be_read, bytes_read_in, bytes_written_out =
         0, bufcap, subsliceno = 0;
@@ -614 +613 @@
             log_msg(5, "tmpB is %s", tmp);
             if (!strstr(tmp, PIMP_END_SZ)) {
-                ftmp = fopen("/tmp/out.leftover", "w");
+                sprintf(filestr, "%s/out.leftover", bkpinfo->tmpdir);
+                ftmp = fopen(filestr, "w");
                 bytes_read_in = fread(tmp, 1, 64, fin);
                 log_msg(1, "bytes_read_in = %ld", bytes_read_in);
@@ -693 +693 @@
 
     strcpy(title, tt);
-    strcpy(tempfile,
-           call_program_and_get_last_line_of_output
-           ("mktemp -q /tmp/mondo.XXXXXXXX"));
+    sprintf(tempfile, "%s/mondo.binperc", bkpinfo->tmpdir);
     sprintf(command, "%s >> %s 2>> %s; rm -f %s", cmd, tempfile, tempfile,
             tempfile);

branches/2.2.5/mondo/src/common/libmondo-tools.c

@@ -999 +999 @@
     bkpinfo->scratchdir[0] = '\0';
     bkpinfo->make_filelist = TRUE;  // unless -J supplied to mondoarchive
-    sprintf(bkpinfo->tmpdir, "/tmp/tmpfs/mondo.tmp.%d", (int) (random() % 32768));  // for mondorestore
+    sprintf(bkpinfo->tmpdir, "%s/tmpfs/mondo.tmp.%d", "/tmp", (int) (random() % 32768));    // for mondorestore
     bkpinfo->optimal_set_size = 0;
     bkpinfo->backup_media_type = none;
@@ -1227 +1227 @@
         fatal_error("Please reinstall Mondo and Mindi.");
     }
-    if (run_program_and_log_output
-        ("mindi --makemountlist /tmp/mountlist.txt.test", 5)) {
-        log_to_screen
-            ("Mindi --makemountlist /tmp/mountlist.txt.test failed for some reason.");
+    sprintf(tmp, "mindi --makemountlist %s/mountlist.txt.test", bkpinfo->tmpdir);
+    if (run_program_and_log_output(tmp, 5)) {
+        sprintf(tmp, "mindi --makemountlist %s/mountlist.txt.test failed for some reason.", bkpinfo->tmpdir);
+        log_to_screen(tmp);
         log_to_screen
             ("Please run that command by hand and examine /var/log/mindi.log");
@@ -1494 +1494 @@
         return (1);
     }
-    strcpy(tempfile,
-           call_program_and_get_last_line_of_output
-           ("mktemp -q /tmp/mojo-jojo.blah.XXXXXX"));
+    sprintf(tempfile, "%s/mojo-jojo.blah", bkpinfo->tmpdir);
     if (does_file_exist(config_file)) {
         sprintf(command, "grep -vE '^%s .*$' %s > %s",

branches/2.2.5/mondo/src/common/libmondo-verify.c

@@ -395 +395 @@
                             bkpinfo->restore_path,
                             biggiestruct.filename);
-                asprintf(&tmp, "echo \"%s/%s not found\" >> /tmp/biggies.changed",
+                asprintf(&tmp, "echo \"%s/%s not found\" >> %s/biggies.changed",
                             bkpinfo->restore_path,
-                            biggiestruct.filename);
+                            biggiestruct.filename,
+                            bkpinfo->tmpdir);
                 system(tmp);
                 paranoid_free(tmp);
@@ -786 +787 @@
                     biggie_fname);
             log_to_screen(tmp);
-            sprintf(tmp, "echo \"%s\" >> /tmp/biggies.changed",
-                    biggie_fname);
+            sprintf(tmp, "echo \"%s\" >> %s/biggies.changed",
+                    biggie_fname, bkpinfo->tmpdir);
             system(tmp);
         }
@@ -1181 +1182 @@
 /* close tape; exit */
 //  fclose(g_tape_stream); <-- not needed; is handled by closein_tape()
-    paranoid_system
-        ("rm -f /tmp/biggies.changed /tmp/changed.files.[0-9]* 2> /dev/null");
-    sprintf(changed_files_fname, "/tmp/changed.files.%d",
-            (int) (random() % 32767));
+    sprintf(tmp, "rm -f %s/biggies.changed %s/changed.files 2> /dev/null", bkpinfo->tmpdir, bkpinfo->tmpdir);
+    paranoid_system(tmp);
+    sprintf(changed_files_fname, "%s/changed.files", bkpinfo->tmpdir);
     sprintf(tmp,
             "grep -E '^%s:.*$' %s | cut -d'\"' -f2 | sort -u | awk '{print \"/\"$0;};' | tr -s '/' '/' | grep -v \"(total of\" | grep -v \"incheckentry.*xwait\" | grep -vE '^/afio:.*$' | grep -vE '^dev/.*$'  > %s",
@@ -1201 +1201 @@
         }
     }
-    sprintf(tmp, "cat /tmp/biggies.changed >> %s", changed_files_fname);
+    sprintf(tmp, "cat %s/biggies.changed >> %s", bkpinfo->tmpdir, changed_files_fname);
     paranoid_system(tmp);
 
     diffs = count_lines_in_file(changed_files_fname);
     if (diffs > 0) {
-        sprintf(tmp, "cp -f %s %s", changed_files_fname,
-                "/tmp/changed.files");
+        sprintf(tmp, "cp -f %s %s/changed.files", changed_files_fname,
+                MINDI_CACHE);
         run_program_and_log_output(tmp, FALSE);
         sprintf(tmp,
-                "%ld files differed from live filesystem; type less %s or less %s to see",
-                diffs, changed_files_fname, "/tmp/changed.files");
+                "%ld files differed from live filesystem; type less %s or less %s/changed.files to see",
+                diffs, changed_files_fname, MINDI_CACHE);
         log_msg(0, tmp);
-        log_to_screen
-            ("See /tmp/changed.files for a list of nonmatching files.");
-        log_to_screen
-            ("The files probably changed on filesystem, not on backup media.");
+        log_to_screen("See "MINDI_CACHE"/changed.files for a list of nonmatching files.");
+        log_to_screen("The files probably changed on filesystem, not on backup media.");
         //      retval++;
     }

branches/2.2.5/mondo/src/common/newt-specific.c

@@ -437 +437 @@
 
         printf("---FATALERROR--- %s\n", error_string);
-        sprintf(command, "gzip -9c %s > /tmp/MA.log.gz 2> /dev/null", MONDO_LOGFILE);
+        sprintf(command, "gzip -9c %s > %s/MA.log.gz 2> /dev/null", MONDO_LOGFILE, MINDI_CACHE);
         system(command);
         printf
@@ -445 +445 @@
                 ("The list's members can help you, if you attach that file to your e-mail.\n");
         printf("Log file: %s\n", MONDO_LOGFILE);
-        if (does_file_exist("/tmp/MA.log.gz")) {
-            printf
-                ("FYI, I have gzipped the log and saved it to /tmp/MA.log.gz\n");
+        if (does_file_exist(MINDI_CACHE"/MA.log.gz")) {
+            printf("FYI, I have gzipped the log and saved it to "MINDI_CACHE"/MA.log.gz.\n");
         }
         printf("Mondo has aborted.\n");