44
44
#include <stdint.h> /* uint16_t, uint32_t */
45
45
#include <stddef.h> /* NULL, size_t, ssize_t */
46
46
#include <stdlib.h> /* free(), EXIT_SUCCESS, EXIT_FAILURE,
47
srand(), strtof(), abort() */
48
48
#include <stdbool.h> /* bool, false, true */
49
49
#include <string.h> /* memset(), strcmp(), strlen(),
50
50
strerror(), asprintf(), strcpy() */
73
73
#include <unistd.h> /* close(), SEEK_SET, off_t, write(),
74
74
getuid(), getgid(), seteuid(),
76
76
#include <arpa/inet.h> /* inet_pton(), htons */
77
77
#include <iso646.h> /* not, or, and */
78
78
#include <argp.h> /* struct argp_option, error_t, struct
82
82
#include <signal.h> /* sigemptyset(), sigaddset(),
83
83
sigaction(), SIGTERM, sig_atomic_t,
85
#include <sysexits.h> /* EX_OSERR, EX_USAGE */
88
87
#include <sys/klog.h> /* klogctl() */
143
142
.dh_bits = 1024, .priority = "SECURE256"
144
143
":!CTYPE-X.509:+CTYPE-OPENPGP" };
146
sig_atomic_t quit_now = 0;
147
int signal_received = 0;
150
146
* Make additional room in "buffer" for at least BUFFER_SIZE more
151
147
* bytes. "buffer_capacity" is how much is currently allocated,
478
474
static int init_gnutls_session(gnutls_session_t *session){
480
476
/* GnuTLS session creation */
482
ret = gnutls_init(session, GNUTLS_SERVER);
486
} while(ret == GNUTLS_E_INTERRUPTED or ret == GNUTLS_E_AGAIN);
477
ret = gnutls_init(session, GNUTLS_SERVER);
487
478
if(ret != GNUTLS_E_SUCCESS){
488
479
fprintf(stderr, "Error in GnuTLS session initialization: %s\n",
489
480
safer_gnutls_strerror(ret));
495
ret = gnutls_priority_set_direct(*session, mc.priority, &err);
497
gnutls_deinit(*session);
500
} while(ret == GNUTLS_E_INTERRUPTED or ret == GNUTLS_E_AGAIN);
485
ret = gnutls_priority_set_direct(*session, mc.priority, &err);
501
486
if(ret != GNUTLS_E_SUCCESS){
502
487
fprintf(stderr, "Syntax error at: %s\n", err);
503
488
fprintf(stderr, "GnuTLS error: %s\n",
511
ret = gnutls_credentials_set(*session, GNUTLS_CRD_CERTIFICATE,
514
gnutls_deinit(*session);
517
} while(ret == GNUTLS_E_INTERRUPTED or ret == GNUTLS_E_AGAIN);
495
ret = gnutls_credentials_set(*session, GNUTLS_CRD_CERTIFICATE,
518
497
if(ret != GNUTLS_E_SUCCESS){
519
498
fprintf(stderr, "Error setting GnuTLS credentials: %s\n",
520
499
safer_gnutls_strerror(ret));
525
504
/* ignore client certificate if any. */
526
gnutls_certificate_server_set_request(*session, GNUTLS_CERT_IGNORE);
505
gnutls_certificate_server_set_request(*session,
528
508
gnutls_dh_set_prime_bits(*session, mc.dh_bits);
534
514
static void empty_log(__attribute__((unused)) AvahiLogLevel level,
535
515
__attribute__((unused)) const char *txt){}
517
sig_atomic_t quit_now = 0;
518
int signal_received = 0;
537
520
/* Called when a Mandos server is found */
538
521
static int start_mandos_communication(const char *ip, uint16_t port,
539
522
AvahiIfIndex if_index,
545
528
struct sockaddr_in6 in6;
547
530
char *buffer = NULL;
548
char *decrypted_buffer = NULL;
531
char *decrypted_buffer;
549
532
size_t buffer_length = 0;
550
533
size_t buffer_capacity = 0;
553
536
gnutls_session_t session;
554
537
int pf; /* Protocol family */
616
602
if(if_index == AVAHI_IF_UNSPEC){
617
603
fprintf(stderr, "An IPv6 link-local address is incomplete"
618
604
" without a network interface\n");
621
608
/* Set the network interface number as scope */
783
774
fprintf(stderr, "*** GnuTLS Re-handshake failed ***\n");
784
775
gnutls_perror(ret);
789
781
fprintf(stderr, "Unknown error while reading data from"
790
782
" encrypted session with Mandos server\n");
791
784
gnutls_bye(session, GNUTLS_SHUT_RDWR);
808
ret = gnutls_bye(session, GNUTLS_SHUT_RDWR);
812
} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);
800
gnutls_bye(session, GNUTLS_SHUT_RDWR);
814
806
if(buffer_length > 0){
815
807
ssize_t decrypted_buffer_size;
999
995
bool gpgme_initialized = false;
1000
996
float delay = 2.5f;
1002
struct sigaction old_sigterm_action = { .sa_handler = SIG_DFL };
998
struct sigaction old_sigterm_action;
1003
999
struct sigaction sigterm_action = { .sa_handler = handle_sigterm };
1008
/* Lower any group privileges we might have, just to be safe */
1015
/* Lower user privileges (temporarily) */
1027
1002
struct argp_option options[] = {
1028
1003
{ .name = "debug", .key = 128,
1057
1032
.arg = "SECONDS",
1058
1033
.doc = "Maximum delay to wait for interface startup",
1061
* These reproduce what we would get without ARGP_NO_HELP
1063
{ .name = "help", .key = '?',
1064
.doc = "Give this help list", .group = -1 },
1065
{ .name = "usage", .key = -3,
1066
.doc = "Give a short usage message", .group = -1 },
1067
{ .name = "version", .key = 'V',
1068
.doc = "Print program version", .group = -1 },
1069
1035
{ .name = NULL }
1072
1038
error_t parse_opt(int key, char *arg,
1073
1039
struct argp_state *state){
1076
1041
case 128: /* --debug */
1093
1058
tmpmax = strtoimax(arg, &tmp, 10);
1094
1059
if(errno != 0 or tmp == arg or *tmp != '\0'
1095
1060
or tmpmax != (typeof(mc.dh_bits))tmpmax){
1096
argp_error(state, "Bad number of DH bits");
1061
fprintf(stderr, "Bad number of DH bits\n");
1098
1064
mc.dh_bits = (typeof(mc.dh_bits))tmpmax;
1105
1071
delay = strtof(arg, &tmp);
1106
1072
if(errno != 0 or tmp == arg or *tmp != '\0'){
1107
argp_error(state, "Bad delay");
1073
fprintf(stderr, "Bad delay\n");
1111
* These reproduce what we would get without ARGP_NO_HELP
1113
case '?': /* --help */
1114
argp_state_help(state, state->out_stream,
1115
(ARGP_HELP_STD_HELP | ARGP_HELP_EXIT_ERR)
1116
& ~(unsigned int)ARGP_HELP_EXIT_OK);
1117
case -3: /* --usage */
1118
argp_state_help(state, state->out_stream,
1119
ARGP_HELP_USAGE | ARGP_HELP_EXIT_ERR);
1120
case 'V': /* --version */
1121
fprintf(state->out_stream, "%s\n", argp_program_version);
1122
exit(argp_err_exit_status);
1125
1082
return ARGP_ERR_UNKNOWN;
1130
1087
struct argp argp = { .options = options, .parser = parse_opt,
1131
1088
.args_doc = "",
1132
1089
.doc = "Mandos client -- Get and decrypt"
1133
1090
" passwords from a Mandos server" };
1134
ret = argp_parse(&argp, argc, argv,
1135
ARGP_IN_ORDER | ARGP_NO_HELP, 0, NULL);
1142
perror("argp_parse");
1143
exitcode = EX_OSERR;
1146
exitcode = EX_USAGE;
1091
ret = argp_parse(&argp, argc, argv, 0, 0, NULL);
1092
if(ret == ARGP_ERR_UNKNOWN){
1093
fprintf(stderr, "Unknown error while parsing arguments\n");
1094
exitcode = EXIT_FAILURE;
1242
/* Re-raise priviliges */
1249
1190
#ifdef __linux__
1250
1191
/* Lower kernel loglevel to KERN_NOTICE to avoid KERN_INFO
1251
messages about the network interface to mess up the prompt */
1192
messages to mess up the prompt */
1252
1193
ret = klogctl(8, NULL, 5);
1253
1194
bool restore_loglevel = true;
1355
1278
#endif /* __linux__ */
1356
/* Lower privileges */
1358
if(take_down_interface){
1359
/* Lower privileges */
1365
/* Lower privileges permanently */
1288
/* Drop any group privileges we might have, just to be safe */
1295
/* Drop user privileges */
1297
/* Will we need privileges later? */
1298
if(take_down_interface){
1299
/* Drop user privileges temporarily */
1305
/* Drop user privileges permanently */
1559
1498
perror("ioctl SIOCGIFFLAGS");
1560
1499
} else if(network.ifr_flags & IFF_UP) {
1561
network.ifr_flags &= ~(short)IFF_UP; /* clear flag */
1500
network.ifr_flags &= ~IFF_UP; /* clear flag */
1562
1501
ret = ioctl(sd, SIOCSIFFLAGS, &network);
1564
1503
perror("ioctl SIOCSIFFLAGS");
1625
1564
sigemptyset(&old_sigterm_action.sa_mask);
1626
1565
old_sigterm_action.sa_handler = SIG_DFL;
1627
ret = (int)TEMP_FAILURE_RETRY(sigaction(signal_received,
1628
&old_sigterm_action,
1566
ret = sigaction(signal_received, &old_sigterm_action, NULL);
1631
1568
perror("sigaction");
1634
ret = raise(signal_received);
1635
} while(ret != 0 and errno == EINTR);
1640
TEMP_FAILURE_RETRY(pause());
1570
raise(signal_received);
1643
1573
return exitcode;