#include <cassert>
#include <clocale>
#include <cstring>
+#include <unistd.h>
+#include <errno.h>
+#include <pwd.h>
+#include <grp.h>
+#include <sys/types.h>
#include "config.hh"
#include "kpath.hh"
#include "lily-guile.hh"
#include "lily-version.hh"
+#include "version.hh"
#include "misc.hh"
#include "output-def.hh"
#include "warn.hh"
#include "freetype.hh"
+#include "string-convert.hh"
/*
* Global options that can be overridden through command line.
/* Name of initialisation file. */
String init_name_global;
-/* Do not calculate and write layout output? */
-bool skip_layout_global = false;
-
/* Selected output format.
One of tex, ps, scm, as.
*/
static char const *PROGRAM_URL = "http://lilypond.org";
static char const *NOTICE =
-_i ("This program is free software. It is covered by the GNU General Public\n"
+_f ("This program is free software. It is covered by the GNU General Public\n"
"License and you are welcome to change it and/or distribute copies of it\n"
- "under certain conditions. Invoke as `lilypond --warranty' for more\n"
- "information.\n");
+ "under certain conditions. Invoke as `%s --warranty' for more\n"
+ "information.\n", "lilypond").to_str0 ();
static char const *WARRANTY =
_i (" This program is free software; you can redistribute it and/or\n"
/* Where the init files live. Typically:
LILYPOND_DATADIR = /usr/share/lilypond
- LOCAL_LILYPOND_DATADIR = /usr/share/lilypond/<VERSION> */
-char const *prefix_directories[] = {LILYPOND_DATADIR, LOCAL_LILYPOND_DATADIR, 0};
+*/
+String prefix_directory;
+
+/* The jail specification: USER,GROUP,JAIL,DIR. */
+String jail_spec;
/* The option parser */
static Getopt_long *option_parser = 0;
{_i ("FIELD"), "header", 'H', _i ("write header field to BASENAME.FIELD")},
{_i ("DIR"), "include", 'I', _i ("add DIR to search path")},
{_i ("FILE"), "init", 'i', _i ("use FILE as init file")},
- {0, "no-layout", 'm', _i ("produce MIDI output only")},
{_i ("FILE"), "output", 'o', _i ("write output to FILE (suffix will be added)")},
+ {_i ("USER,GROUP,JAIL,DIR"), "jail", 'j', _i ("chroot to JAIL, become USER:GROUP and cd into DIR")},
{0, "preview", 'p', _i ("generate a preview")},
{0, "no-pages", 0, _i ("don't generate full pages")},
{0, "png", 0, _i ("generate PNG")},
{0, "version", 'v', _i ("print version number")},
{0, "verbose", 'V', _i ("be verbose")},
{0, "warranty", 'w', _i ("show warranty and copyright")},
- {0,0,0,0}
+ {0, 0, 0, 0}
};
static void
dir_info (FILE *out)
{
fputs ("\n", out);
- fprintf (out, "LILYPOND_DATADIR =\"%s\"\n", LILYPOND_DATADIR);
- fprintf (out, "LOCAL_LILYPOND_DATADIR =\"\%s\"\n", LOCAL_LILYPOND_DATADIR);
- fprintf (out, "LOCALEDIR =\"%s\"\n", LOCALEDIR);
-
- char *lilypond_prefix = getenv ("LILYPONDPREFIX");
- fprintf (out, "LILYPONDPREFIX =\"%s\"\n",
- (lilypond_prefix ? lilypond_prefix : ""));
+ fprintf (out, "Directory prefix: \"%s\"\n", prefix_directory.to_str0());
}
static void
static void
setup_paths ()
{
- if (char const *lilypond_prefix = getenv ("LILYPONDPREFIX"))
- prefix_directories[1] = lilypond_prefix;
+ prefix_directory = DATADIR "/lilypond/" MAJOR_VERSION "." MINOR_VERSION;
+ if (char const * env = getenv ("LILYPONDPREFIX"))
+ prefix_directory = env;
global_path.append ("");
char *suffixes[] = {"ly", "cff", "otf", "mf/out", "scm", "tfm", "ps", "svg",
0};
- for (unsigned i = 0; prefix_directories[i]; i++)
- for (char **s = suffixes; *s; s++)
- {
- String p = prefix_directories[i] + to_string ('/') + String (*s);
- global_path.prepend (p);
+ for (char **s = suffixes; *s; s++)
+ {
+ String path = prefix_directory + to_string ('/') + String (*s);
+ global_path.prepend (path);
#if !KPATHSEA
/* Urg: GNU make's $ (word) index starts at 1 */
int i = 1;
- while (global_path.try_append (p + to_string (".") + to_string (i)))
+ while (global_path.try_append (path + to_string (".") + to_string (i)))
i++;
#endif
- }
+ }
}
static void
void init_global_tweak_registry ();
void init_fontconfig ();
+static void
+do_chroot_jail ()
+{
+ /* Now we chroot, setuid/setgrp and chdir. If something goes wrong,
+ we exit (this is a security-sensitive area). First we split
+ jail_spec into its components, then we retrieve the user/group id
+ (necessarily *before* chroot'ing) and finally we perform the
+ actual actions. */
+ enum Jail
+ {
+ USER_NAME, GROUP_NAME, JAIL, DIR, JAIL_MAX
+ };
+
+ Array<String> components = String_convert::split (jail_spec, ',');
+ if (components.size () != JAIL_MAX)
+ {
+ error (_f ("expected %d arguments with jail, found: %d", JAIL_MAX,
+ components.size ()));
+ exit (2);
+ }
+
+ /* Hmm. */
+ errno = 0;
+
+ int uid;
+ if (passwd *passwd = getpwnam (components[USER_NAME].to_str0 ()))
+ uid = passwd->pw_uid;
+ else
+ {
+ if (errno == 0)
+ error (_f ("no such user: %s", components[USER_NAME]));
+ else
+ error(_f ("can't get user id from user name: %s: %s",
+ components[USER_NAME],
+ strerror (errno)));
+ exit (3);
+ }
+
+ /* Hmm. */
+ errno = 0;
+
+ int gid;
+ if (group *group = getgrnam (components[GROUP_NAME].to_str0 ()))
+ gid = group->gr_gid;
+ else
+ {
+ if (errno == 0)
+ error (_f ("no such group: %s", components[GROUP_NAME]));
+ else
+ error (_f ("can't get group id from group name: %s: ",
+ components[GROUP_NAME],
+ strerror (errno)));
+ exit (3);
+ }
+
+ if (chroot (components[JAIL].to_str0 ()))
+ {
+ error (_f ("can't chroot to: %s: %s", components[JAIL],
+ strerror (errno)));
+ exit (3);
+ }
+
+ if (setgid (gid))
+ {
+ error (_f ("can't change group id to: %d: %s", gid, strerror (errno)));
+ exit (3);
+ }
+
+ if (setuid (uid))
+ {
+ error (_f ("can't change user id to: %d: %s", uid, strerror (errno)));
+ exit (3);
+ }
+
+ if (chdir (components[DIR].to_str0 ()))
+ {
+ error (_f ("can't change working directory to: %s: %s", components[DIR],
+ strerror (errno)));
+ exit (3);
+ }
+}
+void test_pango();
static void
main_with_guile (void *, int, char **)
{
/* Engravers use lily.scm contents, need to make Guile find it.
Prepend onto GUILE %load-path, very ugh. */
- for (unsigned i = 0; prefix_directories[i]; i++)
- {
- prepend_load_path (prefix_directories[i]);
- /* Junk this. We should make real modules iso. just loading files. */
- prepend_load_path (String (prefix_directories[i]) + "/scm");
- }
+
+ prepend_load_path (prefix_directory);
+ prepend_load_path (prefix_directory + "/scm");
if (be_verbose_global)
dir_info (stderr);
call_constructors ();
init_global_tweak_registry ();
init_fontconfig ();
+ test_pango();
+
init_freetype ();
is_pango_format_global = (output_backend_global != "tex"
exit (2);
}
+ if (! jail_spec.is_empty ())
+ do_chroot_jail ();
+
SCM result = scm_call_1 (ly_lily_module_constant ("lilypond-main"), files);
(void) result;
output_name_global = file_name.to_string ();
}
break;
+ case 'j':
+ jail_spec = option_parser->optional_argument_str0_;
+ break;
case 'e':
init_scheme_code_string += option_parser->optional_argument_str0_;
break;
case 's':
be_safe_global = true;
break;
- case 'm':
- skip_layout_global = true;
- break;
case 'p':
make_preview = true;
break;