/mandos/release : revision 237.2.29

1

/* -*- coding: utf-8 -*- */

2

/*

3

* Mandos client - get and decrypt data from a Mandos server

3

* Mandos-client - get and decrypt data from a Mandos server

4

*

5

* This program is partly derived from an example program for an Avahi

6

* service browser, downloaded from

9

* "browse_callback", and parts of "main".

10

*

11

* Everything else is

12

13

14

*

14

15

* This program is free software: you can redistribute it and/or

15

16

* modify it under the terms of the GNU General Public License as

32

33

#define _LARGEFILE_SOURCE

33

34

#define _FILE_OFFSET_BITS 64

34

35

#define _GNU_SOURCE /* TEMP_FAILURE_RETRY() */

36

#define _GNU_SOURCE /* TEMP_FAILURE_RETRY(), asprintf() */

36

37

#include <stdio.h>

38

#include <assert.h>

39

#include <stdlib.h>

40

#include <time.h>

41

#include <net/if.h> /* if_nametoindex */

42

#include <sys/ioctl.h> /* ioctl, ifreq, SIOCGIFFLAGS, IFF_UP,

43

SIOCSIFFLAGS */

38

#include <stdio.h> /* fprintf(), stderr, fwrite(),

39

stdout, ferror(), sscanf */

40

#include <stdint.h> /* uint16_t, uint32_t */

41

#include <stddef.h> /* NULL, size_t, ssize_t */

42

#include <stdlib.h> /* free(), EXIT_SUCCESS, EXIT_FAILURE,

43

srand() */

44

#include <stdbool.h> /* bool, true */

45

#include <string.h> /* memset(), strcmp(), strlen(),

46

strerror(), asprintf(), strcpy() */

47

#include <sys/ioctl.h> /* ioctl */

48

#include <sys/types.h> /* socket(), inet_pton(), sockaddr,

49

sockaddr_in6, PF_INET6,

50

SOCK_STREAM, INET6_ADDRSTRLEN,

51

uid_t, gid_t, open(), opendir(),

52

DIR */

53

#include <sys/stat.h> /* open() */

54

#include <sys/socket.h> /* socket(), struct sockaddr_in6,

55

struct in6_addr, inet_pton(),

56

connect() */

57

#include <fcntl.h> /* open() */

58

#include <dirent.h> /* opendir(), struct dirent, readdir()

59

*/

60

#include <inttypes.h> /* PRIu16, SCNu16 */

61

#include <assert.h> /* assert() */

62

#include <errno.h> /* perror(), errno */

63

#include <time.h> /* time() */

44

64

#include <net/if.h> /* ioctl, ifreq, SIOCGIFFLAGS, IFF_UP,

45

SIOCSIFFLAGS */

65

SIOCSIFFLAGS, if_indextoname(),

66

if_nametoindex(), IF_NAMESIZE */

67

#include <netinet/in.h>

68

#include <unistd.h> /* close(), SEEK_SET, off_t, write(),

69

getuid(), getgid(), setuid(),

70

setgid() */

71

#include <arpa/inet.h> /* inet_pton(), htons */

72

#include <iso646.h> /* not, and, or */

73

#include <argp.h> /* struct argp_option, error_t, struct

74

argp_state, struct argp,

75

argp_parse(), ARGP_KEY_ARG,

76

ARGP_KEY_END, ARGP_ERR_UNKNOWN */

46

77

78

/* Avahi */

79

/* All Avahi types, constants and functions

80

Avahi*, avahi_*,

81

AVAHI_* */

47

82

#include <avahi-core/core.h>

48

83

#include <avahi-core/lookup.h>

49

84

#include <avahi-core/log.h>

51

86

#include <avahi-common/malloc.h>

52

87

#include <avahi-common/error.h>

53

88

54

/* Mandos client part */

55

#include <sys/types.h> /* socket(), inet_pton() */

56

#include <sys/socket.h> /* socket(), struct sockaddr_in6,

57

struct in6_addr, inet_pton() */

58

#include <gnutls/gnutls.h> /* All GnuTLS stuff */

59

#include <gnutls/openpgp.h> /* GnuTLS with openpgp stuff */

89

/* GnuTLS */

90

#include <gnutls/gnutls.h> /* All GnuTLS types, constants and

91

functions:

92

gnutls_*

93

init_gnutls_session(),

94

GNUTLS_* */

95

#include <gnutls/openpgp.h>

96

/* gnutls_certificate_set_openpgp_key_file(),

97

GNUTLS_OPENPGP_FMT_BASE64 */

60

98

61

#include <unistd.h> /* close() */

62

#include <netinet/in.h>

63

#include <stdbool.h> /* true */

64

#include <string.h> /* memset */

65

#include <arpa/inet.h> /* inet_pton() */

66

#include <iso646.h> /* not */

67

#include <net/if.h> /* IF_NAMESIZE */

68

#include <argp.h> /* struct argp_option,

69

struct argp_state, struct argp,

70

argp_parse() */

71

99

/* GPGME */

72

#include <errno.h> /* perror() */

73

#include <gpgme.h>

100

#include <gpgme.h> /* All GPGME types, constants and

101

functions:

102

gpgme_*

103

GPGME_PROTOCOL_OpenPGP,

104

GPG_ERR_NO_* */

74

105

75

106

#define BUFFER_SIZE 256

76

107

108

#define PATHDIR "/conf/conf.d/mandos"

109

#define SECKEY "seckey.txt"

110

#define PUBKEY "pubkey.txt"

111

77

112

bool debug = false;

78

static const char *keydir = "/conf/conf.d/mandos";

79

113

static const char mandos_protocol_version[] = "1";

80

const char *argp_program_version = "mandosclient 0.9";

114

const char *argp_program_version = "mandos-client " VERSION;

81

115

const char *argp_program_bug_address = "<mandos@fukt.bsnet.se>";

82

116

83

117

/* Used for passing in values through the Avahi callback functions */

88

122

unsigned int dh_bits;

89

123

gnutls_dh_params_t dh_params;

90

124

const char *priority;

125

gpgme_ctx_t ctx;

91

126

} mandos_context;

92

127

93

128

/*

97

132

*/

98

133

size_t adjustbuffer(char **buffer, size_t buffer_length,

99

134

size_t buffer_capacity){

100

if (buffer_length + BUFFER_SIZE > buffer_capacity){

135

if(buffer_length + BUFFER_SIZE > buffer_capacity){

101

136

*buffer = realloc(*buffer, buffer_capacity + BUFFER_SIZE);

102

if (buffer == NULL){

137

if(buffer == NULL){

103

138

return 0;

104

139

}

105

140

buffer_capacity += BUFFER_SIZE;

108

143

}

109

144

110

145

/*

111

* Decrypt OpenPGP data using keyrings in HOMEDIR.

112

* Returns -1 on error

146

* Initialize GPGME.

113

147

*/

114

static ssize_t pgp_packet_decrypt (const char *cryptotext,

115

size_t crypto_size,

116

char **plaintext,

117

const char *homedir){

118

gpgme_data_t dh_crypto, dh_plain;

119

gpgme_ctx_t ctx;

148

static bool init_gpgme(mandos_context *mc, const char *seckey,

149

const char *pubkey, const char *tempdir){

150

int ret;

120

151

gpgme_error_t rc;

121

ssize_t ret;

122

size_t plaintext_capacity = 0;

123

ssize_t plaintext_length = 0;

124

152

gpgme_engine_info_t engine_info;

125

153

126

if (debug){

127

fprintf(stderr, "Trying to decrypt OpenPGP data\n");

154

155

/*

156

* Helper function to insert pub and seckey to the enigne keyring.

157

*/

158

bool import_key(const char *filename){

159

int fd;

160

gpgme_data_t pgp_data;

161

162

fd = (int)TEMP_FAILURE_RETRY(open(filename, O_RDONLY));

163

if(fd == -1){

164

perror("open");

165

return false;

166

}

167

168

rc = gpgme_data_new_from_fd(&pgp_data, fd);

169

if(rc != GPG_ERR_NO_ERROR){

170

fprintf(stderr, "bad gpgme_data_new_from_fd: %s: %s\n",

171

gpgme_strsource(rc), gpgme_strerror(rc));

172

return false;

173

}

174

175

rc = gpgme_op_import(mc->ctx, pgp_data);

176

if(rc != GPG_ERR_NO_ERROR){

177

fprintf(stderr, "bad gpgme_op_import: %s: %s\n",

178

gpgme_strsource(rc), gpgme_strerror(rc));

179

return false;

180

}

181

182

ret = (int)TEMP_FAILURE_RETRY(close(fd));

183

if(ret == -1){

184

perror("close");

185

}

186

gpgme_data_release(pgp_data);

187

return true;

188

}

189

190

if(debug){

191

fprintf(stderr, "Initialize gpgme\n");

128

192

}

129

193

130

194

/* Init GPGME */

131

195

gpgme_check_version(NULL);

132

196

rc = gpgme_engine_check_version(GPGME_PROTOCOL_OpenPGP);

133

if (rc != GPG_ERR_NO_ERROR){

197

if(rc != GPG_ERR_NO_ERROR){

134

198

fprintf(stderr, "bad gpgme_engine_check_version: %s: %s\n",

135

199

gpgme_strsource(rc), gpgme_strerror(rc));

136

return -1;

200

return false;

137

201

}

138

202

139

/* Set GPGME home directory for the OpenPGP engine only */

140

rc = gpgme_get_engine_info (&engine_info);

141

if (rc != GPG_ERR_NO_ERROR){

203

/* Set GPGME home directory for the OpenPGP engine only */

204

rc = gpgme_get_engine_info(&engine_info);

205

if(rc != GPG_ERR_NO_ERROR){

142

206

fprintf(stderr, "bad gpgme_get_engine_info: %s: %s\n",

143

207

gpgme_strsource(rc), gpgme_strerror(rc));

144

return -1;

208

return false;

145

209

}

146

210

while(engine_info != NULL){

147

211

if(engine_info->protocol == GPGME_PROTOCOL_OpenPGP){

148

212

gpgme_set_engine_info(GPGME_PROTOCOL_OpenPGP,

149

engine_info->file_name, homedir);

213

engine_info->file_name, tempdir);

150

214

break;

151

215

}

152

216

engine_info = engine_info->next;

153

217

}

154

218

if(engine_info == NULL){

155

fprintf(stderr, "Could not set GPGME home dir to %s\n", homedir);

156

return -1;

219

fprintf(stderr, "Could not set GPGME home dir to %s\n", tempdir);

220

return false;

221

}

222

223

/* Create new GPGME "context" */

224

rc = gpgme_new(&(mc->ctx));

225

if(rc != GPG_ERR_NO_ERROR){

226

fprintf(stderr, "bad gpgme_new: %s: %s\n",

227

gpgme_strsource(rc), gpgme_strerror(rc));

228

return false;

229

}

230

231

if(not import_key(pubkey) or not import_key(seckey)){

232

return false;

233

}

234

235

return true;

236

}

237

238

/*

239

* Decrypt OpenPGP data.

240

* Returns -1 on error

241

*/

242

static ssize_t pgp_packet_decrypt(const mandos_context *mc,

243

const char *cryptotext,

244

size_t crypto_size,

245

char **plaintext){

246

gpgme_data_t dh_crypto, dh_plain;

247

gpgme_error_t rc;

248

ssize_t ret;

249

size_t plaintext_capacity = 0;

250

ssize_t plaintext_length = 0;

251

252

if(debug){

253

fprintf(stderr, "Trying to decrypt OpenPGP data\n");

157

254

}

158

255

159

256

/* Create new GPGME data buffer from memory cryptotext */

160

257

rc = gpgme_data_new_from_mem(&dh_crypto, cryptotext, crypto_size,

161

258

0);

162

if (rc != GPG_ERR_NO_ERROR){

259

if(rc != GPG_ERR_NO_ERROR){

163

260

fprintf(stderr, "bad gpgme_data_new_from_mem: %s: %s\n",

164

261

gpgme_strsource(rc), gpgme_strerror(rc));

165

262

return -1;

167

264

168

265

/* Create new empty GPGME data buffer for the plaintext */

169

266

rc = gpgme_data_new(&dh_plain);

170

if (rc != GPG_ERR_NO_ERROR){

267

if(rc != GPG_ERR_NO_ERROR){

171

268

fprintf(stderr, "bad gpgme_data_new: %s: %s\n",

172

269

gpgme_strsource(rc), gpgme_strerror(rc));

173

270

gpgme_data_release(dh_crypto);

174

271

return -1;

175

272

}

176

273

177

/* Create new GPGME "context" */

178

rc = gpgme_new(&ctx);

179

if (rc != GPG_ERR_NO_ERROR){

180

fprintf(stderr, "bad gpgme_new: %s: %s\n",

181

gpgme_strsource(rc), gpgme_strerror(rc));

182

plaintext_length = -1;

183

goto decrypt_end;

184

}

185

186

274

/* Decrypt data from the cryptotext data buffer to the plaintext

187

275

data buffer */

188

rc = gpgme_op_decrypt(ctx, dh_crypto, dh_plain);

189

if (rc != GPG_ERR_NO_ERROR){

276

rc = gpgme_op_decrypt(mc->ctx, dh_crypto, dh_plain);

277

if(rc != GPG_ERR_NO_ERROR){

190

278

fprintf(stderr, "bad gpgme_op_decrypt: %s: %s\n",

191

279

gpgme_strsource(rc), gpgme_strerror(rc));

192

280

plaintext_length = -1;

281

if(debug){

282

gpgme_decrypt_result_t result;

283

result = gpgme_op_decrypt_result(mc->ctx);

284

if(result == NULL){

285

fprintf(stderr, "gpgme_op_decrypt_result failed\n");

286

} else {

287

fprintf(stderr, "Unsupported algorithm: %s\n",

288

result->unsupported_algorithm);

289

fprintf(stderr, "Wrong key usage: %u\n",

290

result->wrong_key_usage);

291

if(result->file_name != NULL){

292

fprintf(stderr, "File name: %s\n", result->file_name);

293

}

294

gpgme_recipient_t recipient;

295

recipient = result->recipients;

296

if(recipient){

297

while(recipient != NULL){

298

fprintf(stderr, "Public key algorithm: %s\n",

299

gpgme_pubkey_algo_name(recipient->pubkey_algo));

300

fprintf(stderr, "Key ID: %s\n", recipient->keyid);

301

fprintf(stderr, "Secret key available: %s\n",

302

recipient->status == GPG_ERR_NO_SECKEY

303

? "No" : "Yes");

304

recipient = recipient->next;

305

}

306

}

307

}

308

}

193

309

goto decrypt_end;

194

310

}

195

311

197

313

fprintf(stderr, "Decryption of OpenPGP data succeeded\n");

198

314

}

199

315

200

if (debug){

201

gpgme_decrypt_result_t result;

202

result = gpgme_op_decrypt_result(ctx);

203

if (result == NULL){

204

fprintf(stderr, "gpgme_op_decrypt_result failed\n");

205

} else {

206

fprintf(stderr, "Unsupported algorithm: %s\n",

207

result->unsupported_algorithm);

208

fprintf(stderr, "Wrong key usage: %d\n",

209

result->wrong_key_usage);

210

if(result->file_name != NULL){

211

fprintf(stderr, "File name: %s\n", result->file_name);

212

}

213

gpgme_recipient_t recipient;

214

recipient = result->recipients;

215

if(recipient){

216

while(recipient != NULL){

217

fprintf(stderr, "Public key algorithm: %s\n",

218

gpgme_pubkey_algo_name(recipient->pubkey_algo));

219

fprintf(stderr, "Key ID: %s\n", recipient->keyid);

220

fprintf(stderr, "Secret key available: %s\n",

221

recipient->status == GPG_ERR_NO_SECKEY

222

? "No" : "Yes");

223

recipient = recipient->next;

224

}

225

}

226

}

227

}

228

229

316

/* Seek back to the beginning of the GPGME plaintext data buffer */

230

if (gpgme_data_seek(dh_plain, (off_t) 0, SEEK_SET) == -1){

231

perror("pgpme_data_seek");

317

if(gpgme_data_seek(dh_plain, (off_t)0, SEEK_SET) == -1){

318

perror("gpgme_data_seek");

232

319

plaintext_length = -1;

233

320

goto decrypt_end;

234

321

}

238

325

plaintext_capacity = adjustbuffer(plaintext,

239

326

(size_t)plaintext_length,

240

327

plaintext_capacity);

241

if (plaintext_capacity == 0){

328

if(plaintext_capacity == 0){

242

329

perror("adjustbuffer");

243

330

plaintext_length = -1;

244

331

goto decrypt_end;

247

334

ret = gpgme_data_read(dh_plain, *plaintext + plaintext_length,

248

335

BUFFER_SIZE);

249

336

/* Print the data, if any */

250

if (ret == 0){

337

if(ret == 0){

251

338

/* EOF */

252

339

break;

253

340

}

258

345

}

259

346

plaintext_length += ret;

260

347

}

261

348

262

349

if(debug){

263

350

fprintf(stderr, "Decrypted password is: ");

264

351

for(ssize_t i = 0; i < plaintext_length; i++){

277

364

return plaintext_length;

278

365

}

279

366

280

static const char * safer_gnutls_strerror (int value) {

281

const char *ret = gnutls_strerror (value);

282

if (ret == NULL)

367

static const char * safer_gnutls_strerror(int value) {

368

const char *ret = gnutls_strerror(value); /* Spurious warning */

369

if(ret == NULL)

283

370

ret = "(unknown)";

284

371

return ret;

285

372

}

291

378

}

292

379

293

380

static int init_gnutls_global(mandos_context *mc,

294

const char *pubkeyfile,

295

const char *seckeyfile){

381

const char *pubkeyfilename,

382

const char *seckeyfilename){

296

383

int ret;

297

384

298

385

if(debug){

299

386

fprintf(stderr, "Initializing GnuTLS\n");

300

387

}

301

302

if ((ret = gnutls_global_init ())

303

!= GNUTLS_E_SUCCESS) {

304

fprintf (stderr, "GnuTLS global_init: %s\n",

305

safer_gnutls_strerror(ret));

388

389

ret = gnutls_global_init();

390

if(ret != GNUTLS_E_SUCCESS) {

391

fprintf(stderr, "GnuTLS global_init: %s\n",

392

safer_gnutls_strerror(ret));

306

393

return -1;

307

394

}

308

395

309

if (debug){

396

if(debug){

310

397

/* "Use a log level over 10 to enable all debugging options."

311

398

* - GnuTLS manual

312

399

*/

315

402

}

316

403

317

404

/* OpenPGP credentials */

318

if ((ret = gnutls_certificate_allocate_credentials (&mc->cred))

319

!= GNUTLS_E_SUCCESS) {

320

fprintf (stderr, "GnuTLS memory error: %s\n",

321

safer_gnutls_strerror(ret));

322

gnutls_global_deinit ();

405

gnutls_certificate_allocate_credentials(&mc->cred);

406

if(ret != GNUTLS_E_SUCCESS){

407

fprintf(stderr, "GnuTLS memory error: %s\n", /* Spurious

408

warning */

409

safer_gnutls_strerror(ret));

410

gnutls_global_deinit();

323

411

return -1;

324

412

}

325

413

326

414

if(debug){

327

fprintf(stderr, "Attempting to use OpenPGP certificate %s"

328

" and keyfile %s as GnuTLS credentials\n", pubkeyfile,

329

seckeyfile);

415

fprintf(stderr, "Attempting to use OpenPGP public key %s and"

416

" secret key %s as GnuTLS credentials\n", pubkeyfilename,

417

seckeyfilename);

330

418

}

331

419

332

420

ret = gnutls_certificate_set_openpgp_key_file

333

(mc->cred, pubkeyfile, seckeyfile, GNUTLS_OPENPGP_FMT_BASE64);

334

if (ret != GNUTLS_E_SUCCESS) {

421

(mc->cred, pubkeyfilename, seckeyfilename,

422

GNUTLS_OPENPGP_FMT_BASE64);

423

if(ret != GNUTLS_E_SUCCESS) {

335

424

fprintf(stderr,

336

425

"Error[%d] while reading the OpenPGP key pair ('%s',"

337

" '%s')\n", ret, pubkeyfile, seckeyfile);

338

fprintf(stdout, "The GnuTLS error is: %s\n",

426

" '%s')\n", ret, pubkeyfilename, seckeyfilename);

427

fprintf(stderr, "The GnuTLS error is: %s\n",

339

428

safer_gnutls_strerror(ret));

340

429

goto globalfail;

341

430

}

342

431

343

432

/* GnuTLS server initialization */

344

433

ret = gnutls_dh_params_init(&mc->dh_params);

345

if (ret != GNUTLS_E_SUCCESS) {

346

fprintf (stderr, "Error in GnuTLS DH parameter initialization:"

347

" %s\n", safer_gnutls_strerror(ret));

434

if(ret != GNUTLS_E_SUCCESS) {

435

fprintf(stderr, "Error in GnuTLS DH parameter initialization:"

436

" %s\n", safer_gnutls_strerror(ret));

348

437

goto globalfail;

349

438

}

350

439

ret = gnutls_dh_params_generate2(mc->dh_params, mc->dh_bits);

351

if (ret != GNUTLS_E_SUCCESS) {

352

fprintf (stderr, "Error in GnuTLS prime generation: %s\n",

353

safer_gnutls_strerror(ret));

440

if(ret != GNUTLS_E_SUCCESS) {

441

fprintf(stderr, "Error in GnuTLS prime generation: %s\n",

442

safer_gnutls_strerror(ret));

354

443

goto globalfail;

355

444

}

356

445

357

446

gnutls_certificate_set_dh_params(mc->cred, mc->dh_params);

358

447

359

448

return 0;

360

449

361

450

globalfail:

362

363

gnutls_certificate_free_credentials (mc->cred);

364

gnutls_global_deinit ();

451

452

gnutls_certificate_free_credentials(mc->cred);

453

gnutls_global_deinit();

454

gnutls_dh_params_deinit(mc->dh_params);

365

455

return -1;

366

367

456

}

368

457

369

458

static int init_gnutls_session(mandos_context *mc,

371

460

int ret;

372

461

/* GnuTLS session creation */

373

462

ret = gnutls_init(session, GNUTLS_SERVER);

374

if (ret != GNUTLS_E_SUCCESS){

463

if(ret != GNUTLS_E_SUCCESS){

375

464

fprintf(stderr, "Error in GnuTLS session initialization: %s\n",

376

465

safer_gnutls_strerror(ret));

377

466

}

379

468

{

380

469

const char *err;

381

470

ret = gnutls_priority_set_direct(*session, mc->priority, &err);

382

if (ret != GNUTLS_E_SUCCESS) {

471

if(ret != GNUTLS_E_SUCCESS) {

383

472

fprintf(stderr, "Syntax error at: %s\n", err);

384

473

fprintf(stderr, "GnuTLS error: %s\n",

385

474

safer_gnutls_strerror(ret));

386

gnutls_deinit (*session);

475

gnutls_deinit(*session);

387

476

return -1;

388

477

}

389

478

}

390

479

391

480

ret = gnutls_credentials_set(*session, GNUTLS_CRD_CERTIFICATE,

392

481

mc->cred);

393

if (ret != GNUTLS_E_SUCCESS) {

482

if(ret != GNUTLS_E_SUCCESS) {

394

483

fprintf(stderr, "Error setting GnuTLS credentials: %s\n",

395

484

safer_gnutls_strerror(ret));

396

gnutls_deinit (*session);

485

gnutls_deinit(*session);

397

486

return -1;

398

487

}

399

488

400

489

/* ignore client certificate if any. */

401

gnutls_certificate_server_set_request (*session,

402

GNUTLS_CERT_IGNORE);

490

gnutls_certificate_server_set_request(*session,

491

GNUTLS_CERT_IGNORE);

403

492

404

gnutls_dh_set_prime_bits (*session, mc->dh_bits);

493

gnutls_dh_set_prime_bits(*session, mc->dh_bits);

405

494

406

495

return 0;

407

496

}

415

504

AvahiIfIndex if_index,

416

505

mandos_context *mc){

417

506

int ret, tcp_sd;

507

ssize_t sret;

418

508

union { struct sockaddr in; struct sockaddr_in6 in6; } to;

419

509

char *buffer = NULL;

420

510

char *decrypted_buffer;

426

516

char interface[IF_NAMESIZE];

427

517

gnutls_session_t session;

428

518

429

ret = init_gnutls_session (mc, &session);

430

if (ret != 0){

519

ret = init_gnutls_session(mc, &session);

520

if(ret != 0){

431

521

return -1;

432

522

}

433

523

434

524

if(debug){

435

fprintf(stderr, "Setting up a tcp connection to %s, port %d\n",

436

ip, port);

525

fprintf(stderr, "Setting up a tcp connection to %s, port %" PRIu16

526

"\n", ip, port);

437

527

}

438

528

439

529

tcp_sd = socket(PF_INET6, SOCK_STREAM, 0);

441

531

perror("socket");

442

532

return -1;

443

533

}

444

534

445

535

if(debug){

446

536

if(if_indextoname((unsigned int)if_index, interface) == NULL){

447

537

perror("if_indextoname");

450

540

fprintf(stderr, "Binding to interface %s\n", interface);

451

541

}

452

542

453

memset(&to,0,sizeof(to)); /* Spurious warning */

543

memset(&to, 0, sizeof(to));

454

544

to.in6.sin6_family = AF_INET6;

455

545

/* It would be nice to have a way to detect if we were passed an

456

546

IPv4 address here. Now we assume an IPv6 address. */

457

547

ret = inet_pton(AF_INET6, ip, &to.in6.sin6_addr);

458

if (ret < 0 ){

548

if(ret < 0 ){

459

549

perror("inet_pton");

460

550

return -1;

461

551

}

463

553

fprintf(stderr, "Bad address: %s\n", ip);

464

554

return -1;

465

555

}

466

to.in6.sin6_port = htons(port); /* Spurious warning */

556

to.in6.sin6_port = htons(port); /* Spurious warning */

467

557

468

558

to.in6.sin6_scope_id = (uint32_t)if_index;

469

559

470

560

if(debug){

471

fprintf(stderr, "Connection to: %s, port %d\n", ip, port);

561

fprintf(stderr, "Connection to: %s, port %" PRIu16 "\n", ip,

562

port);

472

563

char addrstr[INET6_ADDRSTRLEN] = "";

473

564

if(inet_ntop(to.in6.sin6_family, &(to.in6.sin6_addr), addrstr,

474

565

sizeof(addrstr)) == NULL){

481

572

}

482

573

483

574

ret = connect(tcp_sd, &to.in, sizeof(to));

484

if (ret < 0){

575

if(ret < 0){

485

576

perror("connect");

486

577

return -1;

487

578

}

488

579

489

580

const char *out = mandos_protocol_version;

490

581

written = 0;

491

while (true){

582

while(true){

492

583

size_t out_size = strlen(out);

493

ret = TEMP_FAILURE_RETRY(write(tcp_sd, out + written,

584

ret = (int)TEMP_FAILURE_RETRY(write(tcp_sd, out + written,

494

585

out_size - written));

495

if (ret == -1){

586

if(ret == -1){

496

587

perror("write");

497

588

retval = -1;

498

589

goto mandos_end;

501

592

if(written < out_size){

502

593

continue;

503

594

} else {

504

if (out == mandos_protocol_version){

595

if(out == mandos_protocol_version){

505

596

written = 0;

506

597

out = "\r\n";

507

598

} else {

509

600

}

510

601

}

511

602

}

512

603

513

604

if(debug){

514

605

fprintf(stderr, "Establishing TLS session with %s\n", ip);

515

606

}

516

607

517

gnutls_transport_set_ptr (session, (gnutls_transport_ptr_t) tcp_sd);

518

519

ret = gnutls_handshake (session);

520

521

if (ret != GNUTLS_E_SUCCESS){

608

gnutls_transport_set_ptr(session, (gnutls_transport_ptr_t) tcp_sd);

609

610

do{

611

ret = gnutls_handshake(session);

612

} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);

613

614

if(ret != GNUTLS_E_SUCCESS){

522

615

if(debug){

523

616

fprintf(stderr, "*** GnuTLS Handshake failed ***\n");

524

gnutls_perror (ret);

617

gnutls_perror(ret);

525

618

}

526

619

retval = -1;

527

620

goto mandos_end;

533

626

fprintf(stderr, "Retrieving pgp encrypted password from %s\n",

534

627

ip);

535

628

}

536

629

537

630

while(true){

538

631

buffer_capacity = adjustbuffer(&buffer, buffer_length,

539

632

buffer_capacity);

540

if (buffer_capacity == 0){

633

if(buffer_capacity == 0){

541

634

perror("adjustbuffer");

542

635

retval = -1;

543

636

goto mandos_end;

544

637

}

545

638

546

ret = gnutls_record_recv(session, buffer+buffer_length,

547

BUFFER_SIZE);

548

if (ret == 0){

639

sret = gnutls_record_recv(session, buffer+buffer_length,

640

BUFFER_SIZE);

641

if(sret == 0){

549

642

break;

550

643

}

551

if (ret < 0){

552

switch(ret){

644

if(sret < 0){

645

switch(sret){

553

646

case GNUTLS_E_INTERRUPTED:

554

647

case GNUTLS_E_AGAIN:

555

648

break;

556

649

case GNUTLS_E_REHANDSHAKE:

557

ret = gnutls_handshake (session);

558

if (ret < 0){

650

do{

651

ret = gnutls_handshake(session);

652

} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);

653

if(ret < 0){

559

654

fprintf(stderr, "*** GnuTLS Re-handshake failed ***\n");

560

gnutls_perror (ret);

655

gnutls_perror(ret);

561

656

retval = -1;

562

657

goto mandos_end;

563

658

}

566

661

fprintf(stderr, "Unknown error while reading data from"

567

662

" encrypted session with Mandos server\n");

568

663

retval = -1;

569

gnutls_bye (session, GNUTLS_SHUT_RDWR);

664

gnutls_bye(session, GNUTLS_SHUT_RDWR);

570

665

goto mandos_end;

571

666

}

572

667

} else {

573

buffer_length += (size_t) ret;

668

buffer_length += (size_t) sret;

574

669

}

575

670

}

576

671

578

673

fprintf(stderr, "Closing TLS session\n");

579

674

}

580

675

581

gnutls_bye (session, GNUTLS_SHUT_RDWR);

676

gnutls_bye(session, GNUTLS_SHUT_RDWR);

582

677

583

if (buffer_length > 0){

584

decrypted_buffer_size = pgp_packet_decrypt(buffer,

678

if(buffer_length > 0){

679

decrypted_buffer_size = pgp_packet_decrypt(mc, buffer,

585

680

buffer_length,

586

&decrypted_buffer,

587

keydir);

588

if (decrypted_buffer_size >= 0){

681

&decrypted_buffer);

682

if(decrypted_buffer_size >= 0){

589

683

written = 0;

590

684

while(written < (size_t) decrypted_buffer_size){

591

ret = (int)fwrite (decrypted_buffer + written, 1,

592

(size_t)decrypted_buffer_size - written,

593

stdout);

685

ret = (int)fwrite(decrypted_buffer + written, 1,

686

(size_t)decrypted_buffer_size - written,

687

stdout);

594

688

if(ret == 0 and ferror(stdout)){

595

689

if(debug){

596

690

fprintf(stderr, "Error writing encrypted data: %s\n",

605

699

} else {

606

700

retval = -1;

607

701

}

702

} else {

703

retval = -1;

608

704

}

609

705

610

706

/* Shutdown procedure */

611

707

612

708

mandos_end:

613

709

free(buffer);

614

close(tcp_sd);

615

gnutls_deinit (session);

710

ret = (int)TEMP_FAILURE_RETRY(close(tcp_sd));

711

if(ret == -1){

712

perror("close");

713

}

714

gnutls_deinit(session);

616

715

return retval;

617

716

}

618

717

631

730

flags,

632

731

void* userdata) {

633

732

mandos_context *mc = userdata;

634

assert(r); /* Spurious warning */

733

assert(r);

635

734

636

735

/* Called whenever a service has been resolved successfully or

637

736

timed out */

638

737

639

switch (event) {

738

switch(event) {

640

739

default:

641

740

case AVAHI_RESOLVER_FAILURE:

642

741

fprintf(stderr, "(Avahi Resolver) Failed to resolve service '%s'"

649

748

char ip[AVAHI_ADDRESS_STR_MAX];

650

749

avahi_address_snprint(ip, sizeof(ip), address);

651

750

if(debug){

652

fprintf(stderr, "Mandos server \"%s\" found on %s (%s, %d) on"

653

" port %d\n", name, host_name, ip, interface, port);

751

fprintf(stderr, "Mandos server \"%s\" found on %s (%s, %"

752

PRIu16 ") on port %d\n", name, host_name, ip,

753

interface, port);

654

754

}

655

755

int ret = start_mandos_communication(ip, port, interface, mc);

656

if (ret == 0){

657

exit(EXIT_SUCCESS);

756

if(ret == 0){

757

avahi_simple_poll_quit(mc->simple_poll);

658

758

}

659

759

}

660

760

}

672

772

flags,

673

773

void* userdata) {

674

774

mandos_context *mc = userdata;

675

assert(b); /* Spurious warning */

775

assert(b);

676

776

677

777

/* Called whenever a new services becomes available on the LAN or

678

778

is removed from the LAN */

679

779

680

switch (event) {

780

switch(event) {

681

781

default:

682

782

case AVAHI_BROWSER_FAILURE:

683

783

692

792

the callback function is called the Avahi server will free the

693

793

resolver for us. */

694

794

695

if (!(avahi_s_service_resolver_new(mc->server, interface,

795

if(!(avahi_s_service_resolver_new(mc->server, interface,

696

796

protocol, name, type, domain,

697

797

AVAHI_PROTO_INET6, 0,

698

798

resolve_callback, mc)))

712

812

}

713

813

}

714

814

715

/* Combines file name and path and returns the malloced new

716

string. some sane checks could/should be added */

717

static const char *combinepath(const char *first, const char *second){

718

size_t f_len = strlen(first);

719

size_t s_len = strlen(second);

720

char *tmp = malloc(f_len + s_len + 2);

721

if (tmp == NULL){

722

return NULL;

723

}

724

if(f_len > 0){

725

memcpy(tmp, first, f_len); /* Spurious warning */

726

}

727

tmp[f_len] = '/';

728

if(s_len > 0){

729

memcpy(tmp + f_len + 1, second, s_len); /* Spurious warning */

730

}

731

tmp[f_len + 1 + s_len] = '\0';

732

return tmp;

733

}

734

735

736

815

int main(int argc, char *argv[]){

737

816

AvahiSServiceBrowser *sb = NULL;

738

817

int error;

744

823

uid_t uid;

745

824

gid_t gid;

746

825

char *connect_to = NULL;

826

char tempdir[] = "/tmp/mandosXXXXXX";

747

827

AvahiIfIndex if_index = AVAHI_IF_UNSPEC;

748

const char *pubkeyfile = "pubkey.txt";

749

const char *seckeyfile = "seckey.txt";

828

const char *seckey = PATHDIR "/" SECKEY;

829

const char *pubkey = PATHDIR "/" PUBKEY;

830

750

831

mandos_context mc = { .simple_poll = NULL, .server = NULL,

751

.dh_bits = 1024, .priority = "SECURE256"};

832

.dh_bits = 1024, .priority = "SECURE256"

833

":!CTYPE-X.509:+CTYPE-OPENPGP" };

752

834

bool gnutls_initalized = false;

835

bool gpgme_initalized = false;

753

836

754

837

{

755

838

struct argp_option options[] = {

756

839

{ .name = "debug", .key = 128,

757

840

.doc = "Debug mode", .group = 3 },

758

841

{ .name = "connect", .key = 'c',

759

.arg = "IP",

760

.doc = "Connect directly to a sepcified mandos server",

842

.arg = "ADDRESS:PORT",

843

.doc = "Connect directly to a specific Mandos server",

761

844

.group = 1 },

762

845

{ .name = "interface", .key = 'i',

763

.arg = "INTERFACE",

764

.doc = "Interface that Avahi will conntect through",

765

.group = 1 },

766

{ .name = "keydir", .key = 'd',

767

.arg = "KEYDIR",

768

.doc = "Directory where the openpgp keyring is",

846

.arg = "NAME",

847

.doc = "Interface that will be used to search for Mandos"

848

" servers",

769

849

.group = 1 },

770

850

{ .name = "seckey", .key = 's',

771

.arg = "SECKEY",

772

.doc = "Secret openpgp key for gnutls authentication",

851

.arg = "FILE",

852

.doc = "OpenPGP secret key file base name",

773

853

.group = 1 },

774

854

{ .name = "pubkey", .key = 'p',

775

.arg = "PUBKEY",

776

.doc = "Public openpgp key for gnutls authentication",

855

.arg = "FILE",

856

.doc = "OpenPGP public key file base name",

777

857

.group = 2 },

778

858

{ .name = "dh-bits", .key = 129,

779

859

.arg = "BITS",

780

.doc = "dh-bits to use in gnutls communication",

860

.doc = "Bit length of the prime number used in the"

861

" Diffie-Hellman key exchange",

781

862

.group = 2 },

782

863

{ .name = "priority", .key = 130,

783

.arg = "PRIORITY",

784

.doc = "GNUTLS priority", .group = 1 },

864

.arg = "STRING",

865

.doc = "GnuTLS priority string for the TLS handshake",

866

.group = 1 },

785

867

{ .name = NULL }

786

868

};

787

788

869

789

error_t parse_opt (int key, char *arg,

790

struct argp_state *state) {

791

/* Get the INPUT argument from `argp_parse', which we know is

792

a pointer to our plugin list pointer. */

793

switch (key) {

794

case 128:

870

error_t parse_opt(int key, char *arg,

871

struct argp_state *state) {

872

switch(key) {

873

case 128: /* --debug */

795

874

debug = true;

796

875

break;

797

case 'c':

876

case 'c': /* --connect */

798

877

connect_to = arg;

799

878

break;

800

case 'i':

879

case 'i': /* --interface */

801

880

interface = arg;

802

881

break;

803

case 'd':

804

keydir = arg;

805

break;

806

case 's':

807

seckeyfile = arg;

808

break;

809

case 'p':

810

pubkeyfile = arg;

811

break;

812

case 129:

813

errno = 0;

814

mc.dh_bits = (unsigned int) strtol(arg, NULL, 10);

815

if (errno){

816

perror("strtol");

882

case 's': /* --seckey */

883

seckey = arg;

884

break;

885

case 'p': /* --pubkey */

886

pubkey = arg;

887

break;

888

case 129: /* --dh-bits */

889

ret = sscanf(arg, "%u", &mc.dh_bits);

890

if(ret != 1){

891

fprintf(stderr, "Bad number of DH bits\n");

817

892

exit(EXIT_FAILURE);

818

893

}

819

894

break;

820

case 130:

895

case 130: /* --priority */

821

896

mc.priority = arg;

822

897

break;

823

898

case ARGP_KEY_ARG:

824

argp_usage (state);

899

argp_usage(state);

900

case ARGP_KEY_END:

825

901

break;

826

case ARGP_KEY_END:

827

break;

828

902

default:

829

903

return ARGP_ERR_UNKNOWN;

830

904

}

831

905

return 0;

832

906

}

833

907

834

908

struct argp argp = { .options = options, .parser = parse_opt,

835

909

.args_doc = "",

836

910

.doc = "Mandos client -- Get and decrypt"

837

" passwords from mandos server" };

838

argp_parse (&argp, argc, argv, 0, 0, NULL);

839

}

840

841

pubkeyfile = combinepath(keydir, pubkeyfile);

842

if (pubkeyfile == NULL){

843

perror("combinepath");

844

exitcode = EXIT_FAILURE;

845

goto end;

846

}

847

848

seckeyfile = combinepath(keydir, seckeyfile);

849

if (seckeyfile == NULL){

850

perror("combinepath");

851

goto end;

852

}

853

854

ret = init_gnutls_global(&mc, pubkeyfile, seckeyfile);

855

if (ret == -1){

856

fprintf(stderr, "init_gnutls_global\n");

857

goto end;

858

} else {

859

gnutls_initalized = true;

860

}

861

911

" passwords from a Mandos server" };

912

ret = argp_parse(&argp, argc, argv, 0, 0, NULL);

913

if(ret == ARGP_ERR_UNKNOWN){

914

fprintf(stderr, "Unknown error while parsing arguments\n");

915

exitcode = EXIT_FAILURE;

916

goto end;

917

}

918

}

919

920

/* If the interface is down, bring it up */

921

{

922

sd = socket(PF_INET6, SOCK_DGRAM, IPPROTO_IP);

923

if(sd < 0) {

924

perror("socket");

925

exitcode = EXIT_FAILURE;

926

goto end;

927

}

928

strcpy(network.ifr_name, interface);

929

ret = ioctl(sd, SIOCGIFFLAGS, &network);

930

if(ret == -1){

931

perror("ioctl SIOCGIFFLAGS");

932

exitcode = EXIT_FAILURE;

933

goto end;

934

}

935

if((network.ifr_flags & IFF_UP) == 0){

936

network.ifr_flags |= IFF_UP;

937

ret = ioctl(sd, SIOCSIFFLAGS, &network);

938

if(ret == -1){

939

perror("ioctl SIOCSIFFLAGS");

940

exitcode = EXIT_FAILURE;

941

goto end;

942

}

943

}

944

ret = (int)TEMP_FAILURE_RETRY(close(sd));

945

if(ret == -1){

946

perror("close");

947

}

948

}

949

862

950

uid = getuid();

863

951

gid = getgid();

864

952

865

953

ret = setuid(uid);

866

if (ret == -1){

954

if(ret == -1){

867

955

perror("setuid");

868

956

}

869

957

870

958

setgid(gid);

871

if (ret == -1){

959

if(ret == -1){

872

960

perror("setgid");

873

961

}

874

962

963

ret = init_gnutls_global(&mc, pubkey, seckey);

964

if(ret == -1){

965

fprintf(stderr, "init_gnutls_global failed\n");

966

exitcode = EXIT_FAILURE;

967

goto end;

968

} else {

969

gnutls_initalized = true;

970

}

971

972

if(mkdtemp(tempdir) == NULL){

973

perror("mkdtemp");

974

tempdir[0] = '\0';

975

goto end;

976

}

977

978

if(not init_gpgme(&mc, pubkey, seckey, tempdir)){

979

fprintf(stderr, "gpgme_initalized failed\n");

980

exitcode = EXIT_FAILURE;

981

goto end;

982

} else {

983

gpgme_initalized = true;

984

}

985

875

986

if_index = (AvahiIfIndex) if_nametoindex(interface);

876

987

if(if_index == 0){

877

988

fprintf(stderr, "No such interface: \"%s\"\n", interface);

887

998

exitcode = EXIT_FAILURE;

888

999

goto end;

889

1000

}

890

errno = 0;

891

uint16_t port = (uint16_t) strtol(address+1, NULL, 10);

892

if(errno){

893

perror("Bad port number");

1001

uint16_t port;

1002

ret = sscanf(address+1, "%" SCNu16, &port);

1003

if(ret != 1){

1004

fprintf(stderr, "Bad port number\n");

894

1005

exitcode = EXIT_FAILURE;

895

1006

goto end;

896

1007

}

905

1016

goto end;

906

1017

}

907

1018

908

/* If the interface is down, bring it up */

909

{

910

sd = socket(PF_INET6, SOCK_DGRAM, IPPROTO_IP);

911

if(sd < 0) {

912

perror("socket");

913

exitcode = EXIT_FAILURE;

914

goto end;

915

}

916

strcpy(network.ifr_name, interface); /* Spurious warning */

917

ret = ioctl(sd, SIOCGIFFLAGS, &network);

918

if(ret == -1){

919

perror("ioctl SIOCGIFFLAGS");

920

exitcode = EXIT_FAILURE;

921

goto end;

922

}

923

if((network.ifr_flags & IFF_UP) == 0){

924

network.ifr_flags |= IFF_UP;

925

ret = ioctl(sd, SIOCSIFFLAGS, &network);

926

if(ret == -1){

927

perror("ioctl SIOCSIFFLAGS");

928

exitcode = EXIT_FAILURE;

929

goto end;

930

}

931

}

932

close(sd);

933

}

934

935

if (not debug){

1019

if(not debug){

936

1020

avahi_set_log_function(empty_log);

937

1021

}

938

1022

941

1025

942

1026

/* Allocate main Avahi loop object */

943

1027

mc.simple_poll = avahi_simple_poll_new();

944

if (mc.simple_poll == NULL) {

1028

if(mc.simple_poll == NULL) {

945

1029

fprintf(stderr, "Avahi: Failed to create simple poll"

946

1030

" object.\n");

947

1031

exitcode = EXIT_FAILURE;

948

1032

goto end;

949

1033

}

950

1034

951

1035

{

952

1036

AvahiServerConfig config;

953

1037

/* Do not publish any local Zeroconf records */

956

1040

config.publish_addresses = 0;

957

1041

config.publish_workstation = 0;

958

1042

config.publish_domain = 0;

959

1043

960

1044

/* Allocate a new server */

961

1045

mc.server = avahi_server_new(avahi_simple_poll_get

962

1046

(mc.simple_poll), &config, NULL,

963

1047

NULL, &error);

964

1048

965

1049

/* Free the Avahi configuration data */

966

1050

avahi_server_config_free(&config);

967

1051

}

968

1052

969

1053

/* Check if creating the Avahi server object succeeded */

970

if (mc.server == NULL) {

1054

if(mc.server == NULL) {

971

1055

fprintf(stderr, "Failed to create Avahi server: %s\n",

972

1056

avahi_strerror(error));

973

1057

exitcode = EXIT_FAILURE;

979

1063

AVAHI_PROTO_INET6,

980

1064

"_mandos._tcp", NULL, 0,

981

1065

browse_callback, &mc);

982

if (sb == NULL) {

1066

if(sb == NULL) {

983

1067

fprintf(stderr, "Failed to create service browser: %s\n",

984

1068

avahi_strerror(avahi_server_errno(mc.server)));

985

1069

exitcode = EXIT_FAILURE;

987

1071

}

988

1072

989

1073

/* Run the main loop */

990

991

if (debug){

1074

1075

if(debug){

992

1076

fprintf(stderr, "Starting Avahi loop search\n");

993

1077

}

994

1078

995

1079

avahi_simple_poll_loop(mc.simple_poll);

996

1080

997

1081

end:

998

999

if (debug){

1082

1083

if(debug){

1000

1084

fprintf(stderr, "%s exiting\n", argv[0]);

1001

1085

}

1002

1086

1003

1087

/* Cleanup things */

1004

if (sb != NULL)

1088

if(sb != NULL)

1005

1089

avahi_s_service_browser_free(sb);

1006

1090

1007

if (mc.server != NULL)

1091

if(mc.server != NULL)

1008

1092

avahi_server_free(mc.server);

1009

1010

if (mc.simple_poll != NULL)

1093

1094

if(mc.simple_poll != NULL)

1011

1095

avahi_simple_poll_free(mc.simple_poll);

1012

free(pubkeyfile);

1013

free(seckeyfile);

1014

1015

if (gnutls_initalized){

1016

gnutls_certificate_free_credentials (mc.cred);

1017

gnutls_global_deinit ();

1018

}

1019

1096

1097

if(gnutls_initalized){

1098

gnutls_certificate_free_credentials(mc.cred);

1099

gnutls_global_deinit();

1100

gnutls_dh_params_deinit(mc.dh_params);

1101

}

1102

1103

if(gpgme_initalized){

1104

gpgme_release(mc.ctx);

1105

}

1106

1107

/* Removes the temp directory used by GPGME */

1108

if(tempdir[0] != '\0'){

1109

DIR *d;

1110

struct dirent *direntry;

1111

d = opendir(tempdir);

1112

if(d == NULL){

1113

if(errno != ENOENT){

1114

perror("opendir");

1115

}

1116

} else {

1117

while(true){

1118

direntry = readdir(d);

1119

if(direntry == NULL){

1120

break;

1121

}

1122

if(direntry->d_type == DT_REG){

1123

char *fullname = NULL;

1124

ret = asprintf(&fullname, "%s/%s", tempdir,

1125

direntry->d_name);

1126

if(ret < 0){

1127

perror("asprintf");

1128

continue;

1129

}

1130

ret = unlink(fullname);

1131

if(ret == -1){

1132

fprintf(stderr, "unlink(\"%s\"): %s",

1133

fullname, strerror(errno));

1134

}

1135

free(fullname);

1136

}

1137

}

1138

closedir(d);

1139

}

1140

ret = rmdir(tempdir);

1141

if(ret == -1 and errno != ENOENT){

1142

perror("rmdir");

1143

}

1144

}

1145

1020

1146

return exitcode;

1021

1147

}