[36517] | 1 | #!/bin/sh
|
---|
[36658] | 2 | # $Id: runasroot.sh 98103 2023-01-17 14:15:46Z vboxsync $
|
---|
[36542] | 3 | ## @file
|
---|
[36517] | 4 | # VirtualBox privileged execution helper script for Linux and Solaris
|
---|
| 5 | #
|
---|
| 6 |
|
---|
| 7 | #
|
---|
[98103] | 8 | # Copyright (C) 2009-2023 Oracle and/or its affiliates.
|
---|
[36517] | 9 | #
|
---|
[96407] | 10 | # This file is part of VirtualBox base platform packages, as
|
---|
| 11 | # available from https://www.virtualbox.org.
|
---|
[36517] | 12 | #
|
---|
[96407] | 13 | # This program is free software; you can redistribute it and/or
|
---|
| 14 | # modify it under the terms of the GNU General Public License
|
---|
| 15 | # as published by the Free Software Foundation, in version 3 of the
|
---|
| 16 | # License.
|
---|
| 17 | #
|
---|
| 18 | # This program is distributed in the hope that it will be useful, but
|
---|
| 19 | # WITHOUT ANY WARRANTY; without even the implied warranty of
|
---|
| 20 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
---|
| 21 | # General Public License for more details.
|
---|
| 22 | #
|
---|
| 23 | # You should have received a copy of the GNU General Public License
|
---|
| 24 | # along with this program; if not, see <https://www.gnu.org/licenses>.
|
---|
| 25 | #
|
---|
| 26 | # SPDX-License-Identifier: GPL-3.0-only
|
---|
| 27 | #
|
---|
[36517] | 28 |
|
---|
[58351] | 29 | # Deal with differing "which" semantics
|
---|
| 30 | mywhich() {
|
---|
| 31 | which "$1" 2>/dev/null | grep -v "no $1"
|
---|
| 32 | }
|
---|
[36517] | 33 |
|
---|
[58351] | 34 | # Get the name and execute switch for a useful terminal emulator
|
---|
| 35 | #
|
---|
| 36 | # Sets $gxtpath to the emulator path or empty
|
---|
| 37 | # Sets $gxttitle to the "title" switch for that emulator
|
---|
| 38 | # Sets $gxtexec to the "execute" switch for that emulator
|
---|
| 39 | # May clobber $gtx*
|
---|
| 40 | # Calls mywhich
|
---|
| 41 | getxterm() {
|
---|
| 42 | # gnome-terminal uses -e differently to other emulators
|
---|
| 43 | for gxti in "konsole --title -e" "gnome-terminal --title -x" "xterm -T -e"; do
|
---|
| 44 | set $gxti
|
---|
| 45 | gxtpath="`mywhich $1`"
|
---|
| 46 | case "$gxtpath" in ?*)
|
---|
| 47 | gxttitle=$2
|
---|
| 48 | gxtexec=$3
|
---|
| 49 | return
|
---|
| 50 | ;;
|
---|
| 51 | esac
|
---|
| 52 | done
|
---|
| 53 | }
|
---|
| 54 |
|
---|
| 55 | # Quotes its argument by inserting '\' in front of every character save
|
---|
| 56 | # for 'A-Za-z0-9/'. Prints the result to stdout.
|
---|
| 57 | quotify() {
|
---|
| 58 | echo "$1" | sed -e 's/\([^a-zA-Z0-9/]\)/\\\1/g'
|
---|
| 59 | }
|
---|
| 60 |
|
---|
[36517] | 61 | ostype=`uname -s`
|
---|
| 62 | if test "$ostype" != "Linux" && test "$ostype" != "SunOS" ; then
|
---|
| 63 | echo "Linux/Solaris not detected."
|
---|
| 64 | exit 1
|
---|
| 65 | fi
|
---|
| 66 |
|
---|
[36681] | 67 | HAS_TERMINAL=""
|
---|
| 68 | case "$1" in "--has-terminal")
|
---|
| 69 | shift
|
---|
| 70 | HAS_TERMINAL="yes"
|
---|
| 71 | ;;
|
---|
| 72 | esac
|
---|
| 73 |
|
---|
[36517] | 74 | case "$#" in "2"|"3")
|
---|
| 75 | ;;
|
---|
| 76 | *)
|
---|
| 77 | echo "Usage: `basename $0` DESCRIPTION COMMAND [ADVICE]" >&2
|
---|
| 78 | echo >&2
|
---|
| 79 | echo "Attempt to execute COMMAND with root privileges, displaying DESCRIPTION if" >&2
|
---|
| 80 | echo "possible and displaying ADVICE if possible if no su(1)-like tool is available." >&2
|
---|
| 81 | exit 1
|
---|
| 82 | ;;
|
---|
| 83 | esac
|
---|
| 84 |
|
---|
| 85 | DESCRIPTION=$1
|
---|
| 86 | COMMAND=$2
|
---|
| 87 | ADVICE=$3
|
---|
| 88 | PATH=$PATH:/bin:/usr/bin:/usr/local/bin:/sbin:/usr/sbin:/usr/local/sbin:/usr/X11/bin
|
---|
| 89 |
|
---|
| 90 | case "$ostype" in SunOS)
|
---|
| 91 | PATH=$PATH:/usr/sfw/bin:/usr/gnu/bin:/usr/xpg4/bin:/usr/xpg6/bin:/usr/openwin/bin:/usr/ucb
|
---|
| 92 | GKSU_SWITCHES="-au root"
|
---|
| 93 | ;;
|
---|
| 94 | *)
|
---|
| 95 | GKSU_SWITCHES=""
|
---|
| 96 | ;;
|
---|
| 97 | esac
|
---|
| 98 |
|
---|
[36759] | 99 | case "$HAS_TERMINAL" in "")
|
---|
| 100 | case "$DISPLAY" in ?*)
|
---|
| 101 | KDESUDO="`mywhich kdesudo`"
|
---|
| 102 | case "$KDESUDO" in ?*)
|
---|
| 103 | eval "`quotify "$KDESUDO"` --comment `quotify "$DESCRIPTION"` -- $COMMAND"
|
---|
| 104 | exit
|
---|
| 105 | ;;
|
---|
| 106 | esac
|
---|
[36517] | 107 |
|
---|
[36759] | 108 | KDESU="`mywhich kdesu`"
|
---|
| 109 | case "$KDESU" in ?*)
|
---|
| 110 | "$KDESU" -c "$COMMAND"
|
---|
| 111 | exit
|
---|
| 112 | ;;
|
---|
| 113 | esac
|
---|
| 114 |
|
---|
| 115 | GKSU="`mywhich gksu`"
|
---|
| 116 | case "$GKSU" in ?*)
|
---|
| 117 | # Older gksu does not grok --description nor '--' and multiple args.
|
---|
| 118 | # @todo which versions do?
|
---|
| 119 | # "$GKSU" --description "$DESCRIPTION" -- "$@"
|
---|
| 120 | # Note that $GKSU_SWITCHES is NOT quoted in the following
|
---|
| 121 | "$GKSU" $GKSU_SWITCHES "$COMMAND"
|
---|
| 122 | exit
|
---|
| 123 | ;;
|
---|
| 124 | esac
|
---|
[36517] | 125 | ;;
|
---|
[36759] | 126 | esac # $DISPLAY
|
---|
[36517] | 127 | ;;
|
---|
[36759] | 128 | esac # ! $HAS_TERMINAL
|
---|
[36517] | 129 |
|
---|
| 130 | # pkexec may work for ssh console sessions as well if the right agents
|
---|
| 131 | # are installed. However it is very generic and does not allow for any
|
---|
| 132 | # custom messages. Thus it comes after gksu.
|
---|
[36681] | 133 | ## @todo should we insist on either a display or a terminal?
|
---|
| 134 | # case "$DISPLAY$HAS_TERMINAL" in ?*)
|
---|
[36517] | 135 | PKEXEC="`mywhich pkexec`"
|
---|
| 136 | case "$PKEXEC" in ?*)
|
---|
| 137 | eval "\"$PKEXEC\" $COMMAND"
|
---|
| 138 | exit
|
---|
| 139 | ;;
|
---|
| 140 | esac
|
---|
[36681] | 141 | # ;;S
|
---|
| 142 | #esac
|
---|
[36517] | 143 |
|
---|
[36681] | 144 | case "$HAS_TERMINAL" in ?*)
|
---|
[36759] | 145 | USE_SUDO=
|
---|
[36785] | 146 | grep -q Ubuntu /etc/lsb-release 2>/dev/null && USE_SUDO=true
|
---|
[36759] | 147 | # On Ubuntu we need sudo instead of su. Assume this works, and is only
|
---|
| 148 | # needed for Ubuntu until proven wrong.
|
---|
| 149 | case $USE_SUDO in true)
|
---|
| 150 | SUDO_COMMAND="`quotify "$SUDO"` -- $COMMAND"
|
---|
| 151 | eval "$SUDO_COMMAND"
|
---|
| 152 | exit
|
---|
| 153 | ;;
|
---|
| 154 | esac
|
---|
| 155 |
|
---|
[36681] | 156 | SU="`mywhich su`"
|
---|
| 157 | case "$SU" in ?*)
|
---|
| 158 | "$SU" - root -c "$COMMAND"
|
---|
| 159 | exit
|
---|
| 160 | ;;
|
---|
| 161 | esac
|
---|
| 162 | ;;
|
---|
| 163 | esac
|
---|
| 164 |
|
---|
[36517] | 165 | # The ultimate fallback is running 'su -' within an xterm. We use the
|
---|
| 166 | # title of the xterm to tell what is going on.
|
---|
| 167 | case "$DISPLAY" in ?*)
|
---|
| 168 | SU="`mywhich su`"
|
---|
| 169 | case "$SU" in ?*)
|
---|
[36626] | 170 | getxterm
|
---|
| 171 | case "$gxtpath" in ?*)
|
---|
| 172 | "$gxtpath" "$gxttitle" "$DESCRIPTION - su" "$gxtexec" su - root -c "$COMMAND"
|
---|
[36517] | 173 | exit
|
---|
| 174 | ;;
|
---|
| 175 | esac
|
---|
| 176 | esac
|
---|
| 177 | esac # $DISPLAY
|
---|
| 178 |
|
---|
| 179 | # Failure...
|
---|
| 180 | case "$DISPLAY" in ?*)
|
---|
| 181 | echo "Unable to locate 'pkexec', 'gksu' or 'su+xterm'. $ADVICE" >&2
|
---|
| 182 | ;;
|
---|
| 183 | *)
|
---|
| 184 | echo "Unable to locate 'pkexec'. $ADVICE" >&2
|
---|
| 185 | ;;
|
---|
| 186 | esac
|
---|
| 187 |
|
---|
| 188 | exit 1
|
---|