Add an ACL list for users connecting to the tmux socket. Users may be

forbidden from attaching, forced to attach read-only, or allowed to attach read-write. A new command, server-access, configures the list. tmux gets the user using getpeereid(3) of the client socket. Users must still configure file system permissions manually. From Dallas Lyons and others.
author: nicm <nicm> 2022-05-30 12:48:57 +0000
committer: nicm <nicm> 2022-05-30 12:48:57 +0000
commit: cd692b5a68be0eb95252380db97fbbec587d6350 (patch)
tree: 6135b8c3512fc0d882e990907cc98f88d63716a4 /server.c
parent: d4423dca19d6d5cbaa97336a744ec760841c3816 (diff)
1 files changed, 12 insertions, 4 deletions
diff --git a/server.c b/server.c
index f46dd056..3a2580a9 100644
--- a/server.c
+++ b/server.c
@@ -239,6 +239,8 @@ server_start(struct tmuxproc *client, int flags, struct event_base *base,
 	evtimer_set(&server_ev_tidy, server_tidy_event, NULL);
 	evtimer_add(&server_ev_tidy, &tv);
 
+	server_acl_init();
+
 	server_add_accept(0);
 	proc_loop(server_proc, server_loop);
 
@@ -355,9 +357,10 @@ server_update_socket(void)
 static void
 server_accept(int fd, short events, __unused void *data)
 {
-	struct sockaddr_storage	sa;
-	socklen_t		slen = sizeof sa;
-	int			newfd;
+	struct sockaddr_storage	 sa;
+	socklen_t		 slen = sizeof sa;
+	int			 newfd;
+	struct client		*c;
 
 	server_add_accept(0);
 	if (!(events & EV_READ))
@@ -374,11 +377,16 @@ server_accept(int fd, short events, __unused void *data)
 		}
 		fatal("accept failed");
 	}
+
 	if (server_exit) {
 		close(newfd);
 		return;
 	}
-	server_client_create(newfd);
+	c = server_client_create(newfd);
+	if (!server_acl_join(c)) {
+		c->exit_message = xstrdup("access not allowed");
+		c->flags |= CLIENT_EXIT;
+	}
 }
 
 /*
author	nicm <nicm>	2022-05-30 12:48:57 +0000
committer	nicm <nicm>	2022-05-30 12:48:57 +0000
commit	cd692b5a68be0eb95252380db97fbbec587d6350 (patch)
tree	6135b8c3512fc0d882e990907cc98f88d63716a4 /server.c
parent	d4423dca19d6d5cbaa97336a744ec760841c3816 (diff)