|
| 1 | +#!/bin/sh |
| 2 | +# |
| 3 | +# Copyright (c) 2024 Red Hat, Inc. |
| 4 | +# Author: Oldřich Jedlička <oldium.pro@gmail.com> |
| 5 | +# |
| 6 | +# This program is free software: you can redistribute it and/or modify |
| 7 | +# it under the terms of the GNU General Public License as published by |
| 8 | +# the Free Software Foundation, either version 3 of the License, or |
| 9 | +# (at your option) any later version. |
| 10 | +# |
| 11 | +# This program is distributed in the hope that it will be useful, |
| 12 | +# but WITHOUT ANY WARRANTY; without even the implied warranty of |
| 13 | +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
| 14 | +# GNU General Public License for more details. |
| 15 | +# |
| 16 | +# You should have received a copy of the GNU General Public License |
| 17 | +# along with this program. If not, see <http://www.gnu.org/licenses/>. |
| 18 | +# |
| 19 | + |
| 20 | +start_tcsd() { |
| 21 | + [ -s /run/tcsd.pid ] && return 0 |
| 22 | + |
| 23 | + if ! ip link show up dev lo | grep -qw UP; then |
| 24 | + ip link set dev lo up && echo "lo" > /tmp/tcsd.if || : |
| 25 | + if ! ip link show up dev lo | grep -qw UP; then |
| 26 | + echo "Unable to set-up loopback network device" |
| 27 | + return 1 |
| 28 | + fi |
| 29 | + fi |
| 30 | + |
| 31 | + if ! temp_dir="$(mktemp -d)"; then |
| 32 | + echo "Unable to create temporary directory" |
| 33 | + return 1 |
| 34 | + fi |
| 35 | + |
| 36 | + fifo_file="$temp_dir/fifo" |
| 37 | + output_file="$temp_dir/output" |
| 38 | + |
| 39 | + # If we have udev, let the initialization on udev |
| 40 | + if ! [ -f /lib/udev/rules.d/60-tpm-udev.rules ]; then |
| 41 | + chown tss: /dev/tpm0 |
| 42 | + chmod 660 /dev/tpm0 |
| 43 | + fi |
| 44 | + |
| 45 | + mkfifo "$fifo_file" |
| 46 | + |
| 47 | + # Start timeout to finish TCSD startup |
| 48 | + sleep 10 & |
| 49 | + sleep_pid=$! |
| 50 | + |
| 51 | + # The following loop ends when output side of FIFO closes (i.e. TCSD ends) |
| 52 | + { while IFS= read -r LINE; do |
| 53 | + echo "$LINE" |
| 54 | + case "$LINE" in |
| 55 | + *"TCSD up and running"*) |
| 56 | + kill $sleep_pid 2>/dev/null |
| 57 | + ;; |
| 58 | + esac |
| 59 | + done < $fifo_file && kill $sleep_pid; } >> "$output_file" 2>&1 & |
| 60 | + |
| 61 | + # TCSD in background mode logs into syslogd, so we would not have any logs |
| 62 | + # available for debugging, so start TCSD in foreground mode, but as a |
| 63 | + # background job. Unfortunatelly the redirected output to pipe is |
| 64 | + # block-buffered (see `man 3 setbuf`), so in order to see any output we |
| 65 | + # need to set it to line-buffered with stdbuf tool |
| 66 | + stdbuf -oL tcsd -f >$fifo_file 2>&1 & |
| 67 | + tcsd_pid=$! |
| 68 | + |
| 69 | + wait $sleep_pid 2>/dev/null |
| 70 | + |
| 71 | + if ps -A -o pid | awk -v pid="$tcsd_pid" '$1==pid {found=1} END {exit !found}'; then |
| 72 | + ret=0 |
| 73 | + echo $tcsd_pid > /run/tcsd.pid |
| 74 | + else |
| 75 | + ret=1 |
| 76 | + [ -s "$output_file" ] && cat "$output_file" |
| 77 | + fi |
| 78 | + |
| 79 | + rm -rf "$temp_dir" |
| 80 | + |
| 81 | + return $ret |
| 82 | +} |
| 83 | + |
| 84 | +stop_tcsd() { |
| 85 | + [ -s /run/tcsd.pid ] && { |
| 86 | + pid=$(cat /run/tcsd.pid) |
| 87 | + kill $pid >/dev/null 2>&1 || : |
| 88 | + rm -f /run/tcsd.pid |
| 89 | + } |
| 90 | + |
| 91 | + [ -s /tmp/tcsd.if ] && { |
| 92 | + ip link set dev lo down || : |
| 93 | + ip addr flush dev lo || : |
| 94 | + rm -f /tmp/tcsd.if |
| 95 | + } |
| 96 | +} |
0 commit comments