Set errno to 0 before getpwuid() and check it afterwards

[slock.git] / slock.c

diff --git a/slock.c b/slock.c
index 5f183a2..506231e 100644 (file)
--- a/slock.c
+++ b/slock.c
@@ -1,3 +1,4 @@
+
 /* See LICENSE file for license details. */
 #define _XOPEN_SOURCE 500
 #if HAVE_SHADOW_H
@@ -26,6 +27,7 @@ typedef struct {
        int screen;
        Window root, win;
        Pixmap pmap;
+       unsigned long colors[2];
 } Lock;
 
 static Lock **locks;
@@ -42,20 +44,38 @@ die(const char *errstr, ...) {
        exit(EXIT_FAILURE);
 }
 
+#ifdef __linux__
+#include <fcntl.h>
+
+static void
+dontkillme(void) {
+       int fd;
+
+       fd = open("/proc/self/oom_score_adj", O_WRONLY);
+       if (fd < 0 && errno == ENOENT)
+               return;
+       if (fd < 0 || write(fd, "-1000\n", 6) != 6 || close(fd) != 0)
+               die("cannot disable the out-of-memory killer for this process\n");
+}
+#endif
+
 #ifndef HAVE_BSD_AUTH
 static const char *
 getpw(void) { /* only run as root */
        const char *rval;
        struct passwd *pw;
 
+       errno = 0;
        pw = getpwuid(getuid());
-       if(!pw)
-               die("slock: cannot retrieve password entry (make sure to suid or sgid slock)");
+       if (errno)
+               die("slock: getpwuid: %s\n", strerror(errno));
+       else if (!pw)
+               die("slock: cannot retrieve password entry (make sure to suid or sgid slock)\n");
        endpwent();
        rval =  pw->pw_passwd;
 
 #if HAVE_SHADOW_H
-       {
+       if (strlen(rval) >= 1) { /* kludge, assumes pw placeholder entry has len >= 1 */
                struct spwd *sp;
                sp = getspnam(getenv("USER"));
                if(!sp)
@@ -66,8 +86,9 @@ getpw(void) { /* only run as root */
 #endif
 
        /* drop privileges */
-       if(setgid(pw->pw_gid) < 0 || setuid(pw->pw_uid) < 0)
-               die("slock: cannot drop privileges");
+       if (geteuid() == 0
+          && ((getegid() != pw->pw_gid && setgid(pw->pw_gid) < 0) || setuid(pw->pw_uid) < 0))
+               die("slock: cannot drop privileges\n");
        return rval;
 }
 #endif
@@ -81,11 +102,11 @@ readpw(Display *dpy, const char *pws)
 {
        char buf[32], passwd[256];
        int num, screen;
-       unsigned int len;
+       unsigned int len, llen;
        KeySym ksym;
        XEvent ev;
 
-       len = 0;
+       len = llen = 0;
        running = True;
 
        /* As "slock" stands for "Simple X display locker", the DPMS settings
@@ -112,9 +133,9 @@ readpw(Display *dpy, const char *pws)
 #ifdef HAVE_BSD_AUTH
                                running = !auth_userokay(getlogin(), NULL, "auth-xlock", passwd);
 #else
-                               running = strcmp(crypt(passwd, pws), pws);
+                               running = !!strcmp(crypt(passwd, pws), pws);
 #endif
-                               if(running != False)
+                               if(running)
                                        XBell(dpy, 100);
                                len = 0;
                                break;
@@ -132,6 +153,18 @@ readpw(Display *dpy, const char *pws)
                                }
                                break;
                        }
+                       if(llen == 0 && len != 0) {
+                               for(screen = 0; screen < nscreens; screen++) {
+                                       XSetWindowBackground(dpy, locks[screen]->win, locks[screen]->colors[1]);
+                                       XClearWindow(dpy, locks[screen]->win);
+                               }
+                       } else if(llen != 0 && len == 0) {
+                               for(screen = 0; screen < nscreens; screen++) {
+                                       XSetWindowBackground(dpy, locks[screen]->win, locks[screen]->colors[0]);
+                                       XClearWindow(dpy, locks[screen]->win);
+                               }
+                       }
+                       llen = len;
                }
                else for(screen = 0; screen < nscreens; screen++)
                        XRaiseWindow(dpy, locks[screen]->win);
@@ -144,6 +177,7 @@ unlockscreen(Display *dpy, Lock *lock) {
                return;
 
        XUngrabPointer(dpy, CurrentTime);
+       XFreeColors(dpy, DefaultColormap(dpy, lock->screen), lock->colors, 2, 0);
        XFreePixmap(dpy, lock->pmap);
        XDestroyWindow(dpy, lock->win);
 
@@ -155,7 +189,7 @@ lockscreen(Display *dpy, int screen) {
        char curs[] = {0, 0, 0, 0, 0, 0, 0, 0};
        unsigned int len;
        Lock *lock;
-       XColor black, dummy;
+       XColor color, dummy;
        XSetWindowAttributes wa;
        Cursor invisible;
 
@@ -176,9 +210,12 @@ lockscreen(Display *dpy, int screen) {
        lock->win = XCreateWindow(dpy, lock->root, 0, 0, DisplayWidth(dpy, lock->screen), DisplayHeight(dpy, lock->screen),
                        0, DefaultDepth(dpy, lock->screen), CopyFromParent,
                        DefaultVisual(dpy, lock->screen), CWOverrideRedirect | CWBackPixel, &wa);
-       XAllocNamedColor(dpy, DefaultColormap(dpy, lock->screen), "black", &black, &dummy);
+       XAllocNamedColor(dpy, DefaultColormap(dpy, lock->screen), COLOR2, &color, &dummy);
+       lock->colors[1] = color.pixel;
+       XAllocNamedColor(dpy, DefaultColormap(dpy, lock->screen), COLOR1, &color, &dummy);
+       lock->colors[0] = color.pixel;
        lock->pmap = XCreateBitmapFromData(dpy, lock->win, curs, 8, 8);
-       invisible = XCreatePixmapCursor(dpy, lock->pmap, lock->pmap, &black, &black, 0, 0);
+       invisible = XCreatePixmapCursor(dpy, lock->pmap, lock->pmap, &color, &color, 0, 0);
        XDefineCursor(dpy, lock->win, invisible);
        XMapRaised(dpy, lock->win);
        for(len = 1000; len; len--) {
@@ -194,20 +231,22 @@ lockscreen(Display *dpy, int screen) {
                                break;
                        usleep(1000);
                }
-               running = (len > 0);
        }
 
+       running &= (len > 0);
        if(!running) {
                unlockscreen(dpy, lock);
                lock = NULL;
        }
+       else 
+               XSelectInput(dpy, lock->root, SubstructureNotifyMask);
 
        return lock;
 }
 
 static void
 usage(void) {
-       fprintf(stderr, "usage: slock [-v]");
+       fprintf(stderr, "usage: slock [-v]\n");
        exit(EXIT_FAILURE);
 }
 
@@ -220,28 +259,42 @@ main(int argc, char **argv) {
        int screen;
 
        if((argc == 2) && !strcmp("-v", argv[1]))
-               die("slock-%s, © 2006-2012 Anselm R Garbe", VERSION);
+               die("slock-%s, © 2006-2012 Anselm R Garbe\n", VERSION);
        else if(argc != 1)
                usage();
 
+#ifdef __linux__
+       dontkillme();
+#endif
+
        if(!getpwuid(getuid()))
-               die("slock: no passwd entry for you");
+               die("slock: no passwd entry for you\n");
 
 #ifndef HAVE_BSD_AUTH
        pws = getpw();
 #endif
 
        if(!(dpy = XOpenDisplay(0)))
-               die("slock: cannot open display");
+               die("slock: cannot open display\n");
        /* Get the number of screens in display "dpy" and blank them all. */
        nscreens = ScreenCount(dpy);
        locks = malloc(sizeof(Lock *) * nscreens);
        if(locks == NULL)
-               die("slock: malloc: %s", strerror(errno));
-       for(screen = 0; screen < nscreens; screen++)
-               locks[screen] = lockscreen(dpy, screen);
+               die("slock: malloc: %s\n", strerror(errno));
+       int nlocks = 0;
+       for(screen = 0; screen < nscreens; screen++) {
+               if ( (locks[screen] = lockscreen(dpy, screen)) != NULL)
+                       nlocks++;
+       }
        XSync(dpy, False);
 
+       /* Did we actually manage to lock something? */
+       if (nlocks == 0) { // nothing to protect
+               free(locks);
+               XCloseDisplay(dpy);
+               return 1;
+       }
+
        /* Everything is now blank. Now wait for the correct password. */
 #ifdef HAVE_BSD_AUTH
        readpw(dpy);