1 files changed, 41 insertions, 93 deletions

diff --git a/src/cgi-wrapper.c b/src/cgi-wrapper.c
index 37226adcb..6d45e4004 100644
--- a/src/cgi-wrapper.c
+++ b/src/cgi-wrapper.c
@@ -1,105 +1,53 @@
-/*
-** cgi-wrapper.c:
-** generic wrapper that will take info from a environment 
-** variable, and pass it to two commands.
-**
-** Copyright (C) 1998 by the Free Software Foundation, Inc.
-**
-** This program is free software; you can redistribute it and/or
-** modify it under the terms of the GNU General Public License
-** as published by the Free Software Foundation; either version 2
-** of the License, or (at your option) any later version.
-** 
-** This program is distributed in the hope that it will be useful,
-** but WITHOUT ANY WARRANTY; without even the implied warranty of
-** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-** GNU General Public License for more details.
-** 
-** You should have received a copy of the GNU General Public License
-** along with this program; if not, write to the Free Software 
-** Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
-**
-** 10-17-96 : Hal Schechner (hal-j@channel21.com)
-**
-** 12-14-96 : John Viega    (viega@list.org)
-**                          changed to work on 1 command, take a list of
-**                          valid commands, just pass on argv, and use
-**                          execvp() Also threw in some useful feedback for
-**                          when there's a failure, mainly for future
-**                          debugging.
-**
-** 03-31-98 : John Viega    (viega@list.org)
-**                          Consolidated all CGI wrappers into 1, removed
-**                          checking the command name, (it was not real
-**                          security anyway...) and changed it to use
-**                          syslog on error.  This definitely doesn't have
-**                          any of Hal's code left ;-)
-**                        
-*/
-
-#include <stdio.h>
-#include <stdarg.h>
-#include <syslog.h>
-
-#define COMMAND "/home/mailman/mailman/cgi/" ## SCRIPT 
-#define LOG_IDENT "Mailman-wrapper (" ## SCRIPT ## ")"
-
-const int  LEGAL_PARENT_UID = 60001;         /* nobody's UID */
-const int  LEGAL_PARENT_GID = 60001;         /* nobody's GID */
+/* cgi-wrapper.c --- Generic wrapper that will take info from a environment
+ * variable, and pass it to two commands.
+ *
+ * Copyright (C) 1998 by the Free Software Foundation, Inc.
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU General Public License
+ * as published by the Free Software Foundation; either version 2
+ * of the License, or (at your option) any later version.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software 
+ * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
+ *
+ */
 
-/*
-** Report an error then exit.
-*/
-void
-err(char *format, ...)
-{
-	char log_entry[1024];
+#include "common.h"
 
-	va_list arg_ptr;
-	va_start(arg_ptr, format);
-	vsprintf(log_entry, format, arg_ptr);
-	va_end(arg_ptr);
+/* passed in by configure */
+#define SCRIPTNAME  SCRIPT
+#define LOG_IDENT   "Mailman cgi-wrapper (" ## SCRIPT ## ")"
+#define LEGAL_PARENT_UID CGI_UID	     /* nobody's UID */
+#define LEGAL_PARENT_GID CGI_GID	     /* nobody's GID */
 
-	/* Write to the console, maillog is often mostly ignored, and root
-	 * should definitely know about any problems.
-	 */
-	openlog(LOG_IDENT, LOG_CONS, LOG_MAIL);
-	syslog(LOG_ERR, "%s", log_entry);
-	closelog();
-	exit(0);
-}
+const char* logident = LOG_IDENT;
+const char* script = SCRIPTNAME;
+const int parentuid = LEGAL_PARENT_UID;
+const int parentgid = LEGAL_PARENT_GID;
 
 
-/* 
-** is the parent process allowed to call us?
-*/
-void
-check_caller()
+int
+main(int argc, char** argv, char** env) 
 {
-	/* compare to our parent's uid */
-	if (LEGAL_PARENT_UID != getuid()) {
-		err("Attempt to exec cgi %d made by uid %d",
-		    LEGAL_PARENT_UID,
-		    getuid());
-	}
-	if (LEGAL_PARENT_GID != getgid()) {
-		err("Attempt to exec cgi %d made by gid %d",
-		    LEGAL_PARENT_GID,
-		    getgid());
-	}
-}
+	int status;
 
+	check_caller(logident, parentuid, parentgid);
 
-int
-main(int argc, char **argv, char **env) 
-{
-	int   i;
+	/* if we get here, the caller is OK */
+	status = setuid(geteuid());
+	if (status)
+		fatal(logident, "%s", strerror(errno));
 
-	check_caller();
-	/* If we get here, the caller is OK. */
-	setuid(geteuid());
-	execve(COMMAND, &argv[0], env);
-	err("execve of %s failed!", COMMAND);
+	status = run_script(script, argc, argv, env);
+	fatal(logident, "%s", strerror(errno));
+	return status;
 }