Re: GNOME System Monitor will use libgnomesu

From: Hongli Lai <h lai chello nl>
To: desktop-devel-list gnome org
Subject: Re: GNOME System Monitor will use libgnomesu
Date: Mon, 10 Jan 2005 21:25:56 +0100

Carlos Garnacho wrote:

which is exactly the technical problem? GST handles both su and ssh
quite successfully, and my authentication thingy try (system-auth-agent)
does this too in a g_spawn fashion.

You want the child process's stdin and stdout. However, su and ssh bothuse stdout to provide information, and read their password from theterminal. How do you detect whether your password is wrong? You readsu/ssh's output and check whether it contains 'Incorrect password'. Butwhat if the login actually succeeded, and the child process outputs'Incorrect password', not su/ssh?

And how do you know the login succeeded? What if you want to immediatelyreturn after the login succeeded, and you don't care about the child'soutput? You can't do that with plain su/ssh, unless you don't check for'Incorrect password' either.


And furthermore, it's very difficult to correctly use a pseudo terminal.

I wrote a program which communicates with 'su' using a pseudo terminal(using getpt() and grandpt(); this program is not related tolibgnomesu). For some reason, on my computer (FC1), I can't readanything from pseudo terminal after su prints the 'Password:' prompt, ifthe login succeeded. So if the child process prints something, I can'tread it. The strange thing is, I *can* read if the login failed. Ichecked my code 10 times and I went through all the manuals andtutorials I can find, and I couldn't figure out why it doesn't work.The su implementations on different distributions tend to behavedifferently. For example, on Slackware systems without Dropline, suinsists on reading the password from the *real* terminal, not the pseudoterminal I created. Installing Dropline (and PAM) mysteriously fixed theproblem. On some distributions, getpt() just fails for no good reason.And there are other distributions which show other problems.

Back to libgnomesu. I've thoroughly investigated GST's, kdesu's andgtksu's source code while writing libgnomesu. My first attempt was touse pipes, but newer su's don't like it. forkpty() somehow worked, butdoesn't work on post-RedHat 7 systems. getpt() is apparently notavailable on FreeBSD: GST uses a different function. But that functiondoesn't seem to work well with all su implementations. There doesn'tseem to be any other portable functions for creating a pseudo terminal.


Eventually I gave up and just modified GNU su.

Follow-Ups:
- Re: GNOME System Monitor will use libgnomesu
  - From: Carlos Garnacho

References:
- Re: GNOME System Monitor will use libgnomesu
  - From: Carlos Garnacho
- Re: GNOME System Monitor will use libgnomesu
  - From: Hongli Lai
- Re: GNOME System Monitor will use libgnomesu
  - From: Carlos Garnacho

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]