/mandos/release : revision 237.2.29

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to plugins.d/mandos-client.c

Committer: Teddy Hogeborn
Date: 2009-01-13 04:35:19 UTC
mto: (24.1.123 mandos) (237.4.2 mandos-pipe-ipc) (299.1.1 release) (300.1.1 release) (301.1.1 release)
mto: This revision was merged to the branch mainline in revision 245.
Revision ID: teddy@fukt.bsnet.se-20090113043519-0yr39snphoegq8l1

* plugin-runner.c: Only space changes.
* plugins.d/mandos-client.c: - '' -
* plugins.d/password-prompt.c: - '' -

files added:
.bzr-builddeb

.bzr-builddeb/default.conf

.bzrignore

INSTALL

NEWS

README

common.ent

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/po

debian/rules

default-mandos

init.d-mandos

legalnotice.xml

mandos-list

mandos.lsm

plugin-runner.conf

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files removed:
plugins.d/usplash

files renamed:
plugins.d/password-request.c => plugins.d/mandos-client.c

plugins.d/password-request.xml => plugins.d/mandos-client.xml

files modified:
Makefile

TODO

clients.conf

initramfs-tools-hook

initramfs-tools-script

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.c

plugin-runner.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

Show diffs side-by-side

added added

removed removed

plugins.d/mandos-client.c

/* -*- coding: utf-8 -*- */

* Mandos client - get and decrypt data from a Mandos server

* Mandos-client - get and decrypt data from a Mandos server

* This program is partly derived from an example program for an Avahi

* service browser, downloaded from

* "browse_callback", and parts of "main".

* Everything else is

* This program is free software: you can redistribute it and/or

* modify it under the terms of the GNU General Public License as

#define _GNU_SOURCE /* TEMP_FAILURE_RETRY(), asprintf() */

#include <stdio.h> /* fprintf(), stderr, fwrite(),

stdout, ferror() */

stdout, ferror(), sscanf */

#include <stdint.h> /* uint16_t, uint32_t */

#include <stddef.h> /* NULL, size_t, ssize_t */

#include <stdlib.h> /* free(), EXIT_SUCCESS, EXIT_FAILURE,

#include <sys/types.h> /* socket(), inet_pton(), sockaddr,

sockaddr_in6, PF_INET6,

SOCK_STREAM, INET6_ADDRSTRLEN,

uid_t, gid_t */

#include <inttypes.h> /* PRIu16 */

uid_t, gid_t, open(), opendir(),

DIR */

#include <sys/stat.h> /* open() */

#include <sys/socket.h> /* socket(), struct sockaddr_in6,

struct in6_addr, inet_pton(),

connect() */

#include <fcntl.h> /* open() */

#include <dirent.h> /* opendir(), struct dirent, readdir()

#include <inttypes.h> /* PRIu16, SCNu16 */

#include <assert.h> /* assert() */

#include <errno.h> /* perror(), errno */

#include <time.h> /* time() */

#include <net/if.h> /* ioctl, ifreq, SIOCGIFFLAGS, IFF_UP,

SIOCSIFFLAGS, if_indextoname(),

if_nametoindex(), IF_NAMESIZE */

#include <netinet/in.h>

#include <unistd.h> /* close(), SEEK_SET, off_t, write(),

getuid(), getgid(), setuid(),

setgid() */

#include <netinet/in.h>

#include <arpa/inet.h> /* inet_pton(), htons */

#include <iso646.h> /* not, and */

#include <iso646.h> /* not, and, or */

#include <argp.h> /* struct argp_option, error_t, struct

argp_state, struct argp,

argp_parse(), ARGP_KEY_ARG,

gnutls_*

init_gnutls_session(),

GNUTLS_* */

#include <gnutls/openpgp.h> /* gnutls_certificate_set_openpgp_key_file(),

#include <gnutls/openpgp.h>

/* gnutls_certificate_set_openpgp_key_file(),

GNUTLS_OPENPGP_FMT_BASE64 */

/* GPGME */

105

106

#define BUFFER_SIZE 256

100

107

108

#define PATHDIR "/conf/conf.d/mandos"

109

#define SECKEY "seckey.txt"

110

#define PUBKEY "pubkey.txt"

111

101

112

bool debug = false;

102

static const char *keydir = "/conf/conf.d/mandos";

103

113

static const char mandos_protocol_version[] = "1";

104

const char *argp_program_version = "password-request 1.0";

114

const char *argp_program_version = "mandos-client " VERSION;

105

115

const char *argp_program_bug_address = "<mandos@fukt.bsnet.se>";

106

116

107

117

/* Used for passing in values through the Avahi callback functions */

112

122

unsigned int dh_bits;

113

123

gnutls_dh_params_t dh_params;

114

124

const char *priority;

125

gpgme_ctx_t ctx;

115

126

} mandos_context;

116

127

117

128

121

132

122

133

size_t adjustbuffer(char **buffer, size_t buffer_length,

123

134

size_t buffer_capacity){

124

if (buffer_length + BUFFER_SIZE > buffer_capacity){

135

if(buffer_length + BUFFER_SIZE > buffer_capacity){

125

136

*buffer = realloc(*buffer, buffer_capacity + BUFFER_SIZE);

126

if (buffer == NULL){

137

if(buffer == NULL){

127

138

return 0;

128

139

}

129

140

buffer_capacity += BUFFER_SIZE;

132

143

}

133

144

134

145

135

* Decrypt OpenPGP data using keyrings in HOMEDIR.

136

* Returns -1 on error

146

* Initialize GPGME.

137

147

138

static ssize_t pgp_packet_decrypt (const char *cryptotext,

139

size_t crypto_size,

140

char **plaintext,

141

const char *homedir){

142

gpgme_data_t dh_crypto, dh_plain;

143

gpgme_ctx_t ctx;

148

static bool init_gpgme(mandos_context *mc, const char *seckey,

149

const char *pubkey, const char *tempdir){

150

int ret;

144

151

gpgme_error_t rc;

145

ssize_t ret;

146

size_t plaintext_capacity = 0;

147

ssize_t plaintext_length = 0;

148

152

gpgme_engine_info_t engine_info;

149

153

150

if (debug){

151

fprintf(stderr, "Trying to decrypt OpenPGP data\n");

154

155

156

* Helper function to insert pub and seckey to the enigne keyring.

157

158

bool import_key(const char *filename){

159

int fd;

160

gpgme_data_t pgp_data;

161

162

fd = (int)TEMP_FAILURE_RETRY(open(filename, O_RDONLY));

163

if(fd == -1){

164

perror("open");

165

return false;

166

}

167

168

rc = gpgme_data_new_from_fd(&pgp_data, fd);

169

if(rc != GPG_ERR_NO_ERROR){

170

fprintf(stderr, "bad gpgme_data_new_from_fd: %s: %s\n",

171

gpgme_strsource(rc), gpgme_strerror(rc));

172

return false;

173

}

174

175

rc = gpgme_op_import(mc->ctx, pgp_data);

176

if(rc != GPG_ERR_NO_ERROR){

177

fprintf(stderr, "bad gpgme_op_import: %s: %s\n",

178

gpgme_strsource(rc), gpgme_strerror(rc));

179

return false;

180

}

181

182

ret = (int)TEMP_FAILURE_RETRY(close(fd));

183

if(ret == -1){

184

perror("close");

185

}

186

gpgme_data_release(pgp_data);

187

return true;

188

}

189

190

if(debug){

191

fprintf(stderr, "Initialize gpgme\n");

152

192

}

153

193

154

194

/* Init GPGME */

155

195

gpgme_check_version(NULL);

156

196

rc = gpgme_engine_check_version(GPGME_PROTOCOL_OpenPGP);

157

if (rc != GPG_ERR_NO_ERROR){

197

if(rc != GPG_ERR_NO_ERROR){

158

198

fprintf(stderr, "bad gpgme_engine_check_version: %s: %s\n",

159

199

gpgme_strsource(rc), gpgme_strerror(rc));

160

return -1;

200

return false;

161

201

}

162

202

163

/* Set GPGME home directory for the OpenPGP engine only */

164

rc = gpgme_get_engine_info (&engine_info);

165

if (rc != GPG_ERR_NO_ERROR){

203

/* Set GPGME home directory for the OpenPGP engine only */

204

rc = gpgme_get_engine_info(&engine_info);

205

if(rc != GPG_ERR_NO_ERROR){

166

206

fprintf(stderr, "bad gpgme_get_engine_info: %s: %s\n",

167

207

gpgme_strsource(rc), gpgme_strerror(rc));

168

return -1;

208

return false;

169

209

}

170

210

while(engine_info != NULL){

171

211

if(engine_info->protocol == GPGME_PROTOCOL_OpenPGP){

172

212

gpgme_set_engine_info(GPGME_PROTOCOL_OpenPGP,

173

engine_info->file_name, homedir);

213

engine_info->file_name, tempdir);

174

214

break;

175

215

}

176

216

engine_info = engine_info->next;

177

217

}

178

218

if(engine_info == NULL){

179

fprintf(stderr, "Could not set GPGME home dir to %s\n", homedir);

180

return -1;

219

fprintf(stderr, "Could not set GPGME home dir to %s\n", tempdir);

220

return false;

221

}

222

223

/* Create new GPGME "context" */

224

rc = gpgme_new(&(mc->ctx));

225

if(rc != GPG_ERR_NO_ERROR){

226

fprintf(stderr, "bad gpgme_new: %s: %s\n",

227

gpgme_strsource(rc), gpgme_strerror(rc));

228

return false;

229

}

230

231

if(not import_key(pubkey) or not import_key(seckey)){

232

return false;

233

}

234

235

return true;

236

}

237

238

239

* Decrypt OpenPGP data.

240

* Returns -1 on error

241

242

static ssize_t pgp_packet_decrypt(const mandos_context *mc,

243

const char *cryptotext,

244

size_t crypto_size,

245

char **plaintext){

246

gpgme_data_t dh_crypto, dh_plain;

247

gpgme_error_t rc;

248

ssize_t ret;

249

size_t plaintext_capacity = 0;

250

ssize_t plaintext_length = 0;

251

252

if(debug){

253

fprintf(stderr, "Trying to decrypt OpenPGP data\n");

181

254

}

182

255

183

256

/* Create new GPGME data buffer from memory cryptotext */

184

257

rc = gpgme_data_new_from_mem(&dh_crypto, cryptotext, crypto_size,

185

258

0);

186

if (rc != GPG_ERR_NO_ERROR){

259

if(rc != GPG_ERR_NO_ERROR){

187

260

fprintf(stderr, "bad gpgme_data_new_from_mem: %s: %s\n",

188

261

gpgme_strsource(rc), gpgme_strerror(rc));

189

262

return -1;

191

264

192

265

/* Create new empty GPGME data buffer for the plaintext */

193

266

rc = gpgme_data_new(&dh_plain);

194

if (rc != GPG_ERR_NO_ERROR){

267

if(rc != GPG_ERR_NO_ERROR){

195

268

fprintf(stderr, "bad gpgme_data_new: %s: %s\n",

196

269

gpgme_strsource(rc), gpgme_strerror(rc));

197

270

gpgme_data_release(dh_crypto);

198

271

return -1;

199

272

}

200

273

201

/* Create new GPGME "context" */

202

rc = gpgme_new(&ctx);

203

if (rc != GPG_ERR_NO_ERROR){

204

fprintf(stderr, "bad gpgme_new: %s: %s\n",

205

gpgme_strsource(rc), gpgme_strerror(rc));

206

plaintext_length = -1;

207

goto decrypt_end;

208

}

209

210

274

/* Decrypt data from the cryptotext data buffer to the plaintext

211

275

data buffer */

212

rc = gpgme_op_decrypt(ctx, dh_crypto, dh_plain);

213

if (rc != GPG_ERR_NO_ERROR){

276

rc = gpgme_op_decrypt(mc->ctx, dh_crypto, dh_plain);

277

if(rc != GPG_ERR_NO_ERROR){

214

278

fprintf(stderr, "bad gpgme_op_decrypt: %s: %s\n",

215

279

gpgme_strsource(rc), gpgme_strerror(rc));

216

280

plaintext_length = -1;

281

if(debug){

282

gpgme_decrypt_result_t result;

283

result = gpgme_op_decrypt_result(mc->ctx);

284

if(result == NULL){

285

fprintf(stderr, "gpgme_op_decrypt_result failed\n");

286

} else {

287

fprintf(stderr, "Unsupported algorithm: %s\n",

288

result->unsupported_algorithm);

289

fprintf(stderr, "Wrong key usage: %u\n",

290

result->wrong_key_usage);

291

if(result->file_name != NULL){

292

fprintf(stderr, "File name: %s\n", result->file_name);

293

}

294

gpgme_recipient_t recipient;

295

recipient = result->recipients;

296

if(recipient){

297

while(recipient != NULL){

298

fprintf(stderr, "Public key algorithm: %s\n",

299

gpgme_pubkey_algo_name(recipient->pubkey_algo));

300

fprintf(stderr, "Key ID: %s\n", recipient->keyid);

301

fprintf(stderr, "Secret key available: %s\n",

302

recipient->status == GPG_ERR_NO_SECKEY

303

? "No" : "Yes");

304

recipient = recipient->next;

305

}

306

}

307

}

308

}

217

309

goto decrypt_end;

218

310

}

219

311

221

313

fprintf(stderr, "Decryption of OpenPGP data succeeded\n");

222

314

}

223

315

224

if (debug){

225

gpgme_decrypt_result_t result;

226

result = gpgme_op_decrypt_result(ctx);

227

if (result == NULL){

228

fprintf(stderr, "gpgme_op_decrypt_result failed\n");

229

} else {

230

fprintf(stderr, "Unsupported algorithm: %s\n",

231

result->unsupported_algorithm);

232

fprintf(stderr, "Wrong key usage: %u\n",

233

result->wrong_key_usage);

234

if(result->file_name != NULL){

235

fprintf(stderr, "File name: %s\n", result->file_name);

236

}

237

gpgme_recipient_t recipient;

238

recipient = result->recipients;

239

if(recipient){

240

while(recipient != NULL){

241

fprintf(stderr, "Public key algorithm: %s\n",

242

gpgme_pubkey_algo_name(recipient->pubkey_algo));

243

fprintf(stderr, "Key ID: %s\n", recipient->keyid);

244

fprintf(stderr, "Secret key available: %s\n",

245

recipient->status == GPG_ERR_NO_SECKEY

246

? "No" : "Yes");

247

recipient = recipient->next;

248

}

249

}

250

}

251

}

252

253

316

/* Seek back to the beginning of the GPGME plaintext data buffer */

254

if (gpgme_data_seek(dh_plain, (off_t) 0, SEEK_SET) == -1){

255

perror("pgpme_data_seek");

317

if(gpgme_data_seek(dh_plain, (off_t)0, SEEK_SET) == -1){

318

perror("gpgme_data_seek");

256

319

plaintext_length = -1;

257

320

goto decrypt_end;

258

321

}

262

325

plaintext_capacity = adjustbuffer(plaintext,

263

326

(size_t)plaintext_length,

264

327

plaintext_capacity);

265

if (plaintext_capacity == 0){

328

if(plaintext_capacity == 0){

266

329

perror("adjustbuffer");

267

330

plaintext_length = -1;

268

331

goto decrypt_end;

271

334

ret = gpgme_data_read(dh_plain, *plaintext + plaintext_length,

272

335

BUFFER_SIZE);

273

336

/* Print the data, if any */

274

if (ret == 0){

337

if(ret == 0){

275

338

/* EOF */

276

339

break;

277

340

}

282

345

}

283

346

plaintext_length += ret;

284

347

}

285

348

286

349

if(debug){

287

350

fprintf(stderr, "Decrypted password is: ");

288

351

for(ssize_t i = 0; i < plaintext_length; i++){

301

364

return plaintext_length;

302

365

}

303

366

304

static const char * safer_gnutls_strerror (int value) {

305

const char *ret = gnutls_strerror (value); /* Spurious warning */

306

if (ret == NULL)

367

static const char * safer_gnutls_strerror(int value) {

368

const char *ret = gnutls_strerror(value); /* Spurious warning */

369

if(ret == NULL)

307

370

ret = "(unknown)";

308

371

return ret;

309

372

}

324

387

}

325

388

326

389

ret = gnutls_global_init();

327

if (ret != GNUTLS_E_SUCCESS) {

328

fprintf (stderr, "GnuTLS global_init: %s\n",

329

safer_gnutls_strerror(ret));

390

if(ret != GNUTLS_E_SUCCESS) {

391

fprintf(stderr, "GnuTLS global_init: %s\n",

392

safer_gnutls_strerror(ret));

330

393

return -1;

331

394

}

332

395

333

if (debug){

396

if(debug){

334

397

/* "Use a log level over 10 to enable all debugging options."

335

398

* - GnuTLS manual

336

399

340

403

341

404

/* OpenPGP credentials */

342

405

gnutls_certificate_allocate_credentials(&mc->cred);

343

if (ret != GNUTLS_E_SUCCESS){

344

fprintf (stderr, "GnuTLS memory error: %s\n", /* Spurious

345

warning */

346

safer_gnutls_strerror(ret));

347

gnutls_global_deinit ();

406

if(ret != GNUTLS_E_SUCCESS){

407

fprintf(stderr, "GnuTLS memory error: %s\n", /* Spurious

408

warning */

409

safer_gnutls_strerror(ret));

410

gnutls_global_deinit();

348

411

return -1;

349

412

}

350

413

351

414

if(debug){

352

fprintf(stderr, "Attempting to use OpenPGP certificate %s"

353

" and keyfile %s as GnuTLS credentials\n", pubkeyfilename,

415

fprintf(stderr, "Attempting to use OpenPGP public key %s and"

416

" secret key %s as GnuTLS credentials\n", pubkeyfilename,

354

417

seckeyfilename);

355

418

}

356

419

357

420

ret = gnutls_certificate_set_openpgp_key_file

358

421

(mc->cred, pubkeyfilename, seckeyfilename,

359

422

GNUTLS_OPENPGP_FMT_BASE64);

360

if (ret != GNUTLS_E_SUCCESS) {

423

if(ret != GNUTLS_E_SUCCESS) {

361

424

fprintf(stderr,

362

425

"Error[%d] while reading the OpenPGP key pair ('%s',"

363

426

" '%s')\n", ret, pubkeyfilename, seckeyfilename);

364

fprintf(stdout, "The GnuTLS error is: %s\n",

427

fprintf(stderr, "The GnuTLS error is: %s\n",

365

428

safer_gnutls_strerror(ret));

366

429

goto globalfail;

367

430

}

368

431

369

432

/* GnuTLS server initialization */

370

433

ret = gnutls_dh_params_init(&mc->dh_params);

371

if (ret != GNUTLS_E_SUCCESS) {

372

fprintf (stderr, "Error in GnuTLS DH parameter initialization:"

373

" %s\n", safer_gnutls_strerror(ret));

434

if(ret != GNUTLS_E_SUCCESS) {

435

fprintf(stderr, "Error in GnuTLS DH parameter initialization:"

436

" %s\n", safer_gnutls_strerror(ret));

374

437

goto globalfail;

375

438

}

376

439

ret = gnutls_dh_params_generate2(mc->dh_params, mc->dh_bits);

377

if (ret != GNUTLS_E_SUCCESS) {

378

fprintf (stderr, "Error in GnuTLS prime generation: %s\n",

379

safer_gnutls_strerror(ret));

440

if(ret != GNUTLS_E_SUCCESS) {

441

fprintf(stderr, "Error in GnuTLS prime generation: %s\n",

442

safer_gnutls_strerror(ret));

380

443

goto globalfail;

381

444

}

382

445

383

446

gnutls_certificate_set_dh_params(mc->cred, mc->dh_params);

384

447

385

448

return 0;

386

449

387

450

globalfail:

388

451

389

452

gnutls_certificate_free_credentials(mc->cred);

390

453

gnutls_global_deinit();

454

gnutls_dh_params_deinit(mc->dh_params);

391

455

return -1;

392

393

456

}

394

457

395

458

static int init_gnutls_session(mandos_context *mc,

397

460

int ret;

398

461

/* GnuTLS session creation */

399

462

ret = gnutls_init(session, GNUTLS_SERVER);

400

if (ret != GNUTLS_E_SUCCESS){

463

if(ret != GNUTLS_E_SUCCESS){

401

464

fprintf(stderr, "Error in GnuTLS session initialization: %s\n",

402

465

safer_gnutls_strerror(ret));

403

466

}

405

468

{

406

469

const char *err;

407

470

ret = gnutls_priority_set_direct(*session, mc->priority, &err);

408

if (ret != GNUTLS_E_SUCCESS) {

471

if(ret != GNUTLS_E_SUCCESS) {

409

472

fprintf(stderr, "Syntax error at: %s\n", err);

410

473

fprintf(stderr, "GnuTLS error: %s\n",

411

474

safer_gnutls_strerror(ret));

412

gnutls_deinit (*session);

475

gnutls_deinit(*session);

413

476

return -1;

414

477

}

415

478

}

416

479

417

480

ret = gnutls_credentials_set(*session, GNUTLS_CRD_CERTIFICATE,

418

481

mc->cred);

419

if (ret != GNUTLS_E_SUCCESS) {

482

if(ret != GNUTLS_E_SUCCESS) {

420

483

fprintf(stderr, "Error setting GnuTLS credentials: %s\n",

421

484

safer_gnutls_strerror(ret));

422

gnutls_deinit (*session);

485

gnutls_deinit(*session);

423

486

return -1;

424

487

}

425

488

426

489

/* ignore client certificate if any. */

427

gnutls_certificate_server_set_request (*session,

428

GNUTLS_CERT_IGNORE);

490

gnutls_certificate_server_set_request(*session,

491

GNUTLS_CERT_IGNORE);

429

492

430

gnutls_dh_set_prime_bits (*session, mc->dh_bits);

493

gnutls_dh_set_prime_bits(*session, mc->dh_bits);

431

494

432

495

return 0;

433

496

}

441

504

AvahiIfIndex if_index,

442

505

mandos_context *mc){

443

506

int ret, tcp_sd;

507

ssize_t sret;

444

508

union { struct sockaddr in; struct sockaddr_in6 in6; } to;

445

509

char *buffer = NULL;

446

510

char *decrypted_buffer;

452

516

char interface[IF_NAMESIZE];

453

517

gnutls_session_t session;

454

518

455

ret = init_gnutls_session (mc, &session);

456

if (ret != 0){

519

ret = init_gnutls_session(mc, &session);

520

if(ret != 0){

457

521

return -1;

458

522

}

459

523

467

531

perror("socket");

468

532

return -1;

469

533

}

470

534

471

535

if(debug){

472

536

if(if_indextoname((unsigned int)if_index, interface) == NULL){

473

537

perror("if_indextoname");

481

545

/* It would be nice to have a way to detect if we were passed an

482

546

IPv4 address here. Now we assume an IPv6 address. */

483

547

ret = inet_pton(AF_INET6, ip, &to.in6.sin6_addr);

484

if (ret < 0 ){

548

if(ret < 0 ){

485

549

perror("inet_pton");

486

550

return -1;

487

551

}

508

572

}

509

573

510

574

ret = connect(tcp_sd, &to.in, sizeof(to));

511

if (ret < 0){

575

if(ret < 0){

512

576

perror("connect");

513

577

return -1;

514

578

}

515

579

516

580

const char *out = mandos_protocol_version;

517

581

written = 0;

518

while (true){

582

while(true){

519

583

size_t out_size = strlen(out);

520

ret = TEMP_FAILURE_RETRY(write(tcp_sd, out + written,

584

ret = (int)TEMP_FAILURE_RETRY(write(tcp_sd, out + written,

521

585

out_size - written));

522

if (ret == -1){

586

if(ret == -1){

523

587

perror("write");

524

588

retval = -1;

525

589

goto mandos_end;

528

592

if(written < out_size){

529

593

continue;

530

594

} else {

531

if (out == mandos_protocol_version){

595

if(out == mandos_protocol_version){

532

596

written = 0;

533

597

out = "\r\n";

534

598

} else {

536

600

}

537

601

}

538

602

}

539

603

540

604

if(debug){

541

605

fprintf(stderr, "Establishing TLS session with %s\n", ip);

542

606

}

543

607

544

gnutls_transport_set_ptr (session, (gnutls_transport_ptr_t) tcp_sd);

545

608

gnutls_transport_set_ptr(session, (gnutls_transport_ptr_t) tcp_sd);

609

546

610

do{

547

ret = gnutls_handshake (session);

611

ret = gnutls_handshake(session);

548

612

} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);

549

613

550

if (ret != GNUTLS_E_SUCCESS){

614

if(ret != GNUTLS_E_SUCCESS){

551

615

if(debug){

552

616

fprintf(stderr, "*** GnuTLS Handshake failed ***\n");

553

gnutls_perror (ret);

617

gnutls_perror(ret);

554

618

}

555

619

retval = -1;

556

620

goto mandos_end;

562

626

fprintf(stderr, "Retrieving pgp encrypted password from %s\n",

563

627

ip);

564

628

}

565

629

566

630

while(true){

567

631

buffer_capacity = adjustbuffer(&buffer, buffer_length,

568

632

buffer_capacity);

569

if (buffer_capacity == 0){

633

if(buffer_capacity == 0){

570

634

perror("adjustbuffer");

571

635

retval = -1;

572

636

goto mandos_end;

573

637

}

574

638

575

ret = gnutls_record_recv(session, buffer+buffer_length,

576

BUFFER_SIZE);

577

if (ret == 0){

639

sret = gnutls_record_recv(session, buffer+buffer_length,

640

BUFFER_SIZE);

641

if(sret == 0){

578

642

break;

579

643

}

580

if (ret < 0){

581

switch(ret){

644

if(sret < 0){

645

switch(sret){

582

646

case GNUTLS_E_INTERRUPTED:

583

647

case GNUTLS_E_AGAIN:

584

648

break;

585

649

case GNUTLS_E_REHANDSHAKE:

586

650

do{

587

ret = gnutls_handshake (session);

651

ret = gnutls_handshake(session);

588

652

} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);

589

if (ret < 0){

653

if(ret < 0){

590

654

fprintf(stderr, "*** GnuTLS Re-handshake failed ***\n");

591

gnutls_perror (ret);

655

gnutls_perror(ret);

592

656

retval = -1;

593

657

goto mandos_end;

594

658

}

597

661

fprintf(stderr, "Unknown error while reading data from"

598

662

" encrypted session with Mandos server\n");

599

663

retval = -1;

600

gnutls_bye (session, GNUTLS_SHUT_RDWR);

664

gnutls_bye(session, GNUTLS_SHUT_RDWR);

601

665

goto mandos_end;

602

666

}

603

667

} else {

604

buffer_length += (size_t) ret;

668

buffer_length += (size_t) sret;

605

669

}

606

670

}

607

671

609

673

fprintf(stderr, "Closing TLS session\n");

610

674

}

611

675

612

gnutls_bye (session, GNUTLS_SHUT_RDWR);

676

gnutls_bye(session, GNUTLS_SHUT_RDWR);

613

677

614

if (buffer_length > 0){

615

decrypted_buffer_size = pgp_packet_decrypt(buffer,

678

if(buffer_length > 0){

679

decrypted_buffer_size = pgp_packet_decrypt(mc, buffer,

616

680

buffer_length,

617

&decrypted_buffer,

618

keydir);

619

if (decrypted_buffer_size >= 0){

681

&decrypted_buffer);

682

if(decrypted_buffer_size >= 0){

620

683

written = 0;

621

684

while(written < (size_t) decrypted_buffer_size){

622

ret = (int)fwrite (decrypted_buffer + written, 1,

623

(size_t)decrypted_buffer_size - written,

624

stdout);

685

ret = (int)fwrite(decrypted_buffer + written, 1,

686

(size_t)decrypted_buffer_size - written,

687

stdout);

625

688

if(ret == 0 and ferror(stdout)){

626

689

if(debug){

627

690

fprintf(stderr, "Error writing encrypted data: %s\n",

636

699

} else {

637

700

retval = -1;

638

701

}

702

} else {

703

retval = -1;

639

704

}

640

705

641

706

/* Shutdown procedure */

642

707

643

708

mandos_end:

644

709

free(buffer);

645

close(tcp_sd);

646

gnutls_deinit (session);

710

ret = (int)TEMP_FAILURE_RETRY(close(tcp_sd));

711

if(ret == -1){

712

perror("close");

713

}

714

gnutls_deinit(session);

647

715

return retval;

648

716

}

649

717

667

735

/* Called whenever a service has been resolved successfully or

668

736

timed out */

669

737

670

switch (event) {

738

switch(event) {

671

739

default:

672

740

case AVAHI_RESOLVER_FAILURE:

673

741

fprintf(stderr, "(Avahi Resolver) Failed to resolve service '%s'"

685

753

interface, port);

686

754

}

687

755

int ret = start_mandos_communication(ip, port, interface, mc);

688

if (ret == 0){

756

if(ret == 0){

689

757

avahi_simple_poll_quit(mc->simple_poll);

690

758

}

691

759

}

709

777

/* Called whenever a new services becomes available on the LAN or

710

778

is removed from the LAN */

711

779

712

switch (event) {

780

switch(event) {

713

781

default:

714

782

case AVAHI_BROWSER_FAILURE:

715

783

724

792

the callback function is called the Avahi server will free the

725

793

resolver for us. */

726

794

727

if (!(avahi_s_service_resolver_new(mc->server, interface,

795

if(!(avahi_s_service_resolver_new(mc->server, interface,

728

796

protocol, name, type, domain,

729

797

AVAHI_PROTO_INET6, 0,

730

798

resolve_callback, mc)))

744

812

}

745

813

}

746

814

747

/* Combines file name and path and returns the malloced new

748

string. some sane checks could/should be added */

749

static char *combinepath(const char *first, const char *second){

750

char *tmp;

751

int ret = asprintf(&tmp, "%s/%s", first, second);

752

if(ret < 0){

753

return NULL;

754

}

755

return tmp;

756

}

757

758

759

815

int main(int argc, char *argv[]){

760

816

AvahiSServiceBrowser *sb = NULL;

761

817

int error;

767

823

uid_t uid;

768

824

gid_t gid;

769

825

char *connect_to = NULL;

826

char tempdir[] = "/tmp/mandosXXXXXX";

770

827

AvahiIfIndex if_index = AVAHI_IF_UNSPEC;

771

char *pubkeyfilename = NULL;

772

char *seckeyfilename = NULL;

773

const char *pubkeyname = "pubkey.txt";

774

const char *seckeyname = "seckey.txt";

828

const char *seckey = PATHDIR "/" SECKEY;

829

const char *pubkey = PATHDIR "/" PUBKEY;

830

775

831

mandos_context mc = { .simple_poll = NULL, .server = NULL,

776

.dh_bits = 1024, .priority = "SECURE256"};

832

.dh_bits = 1024, .priority = "SECURE256"

833

":!CTYPE-X.509:+CTYPE-OPENPGP" };

777

834

bool gnutls_initalized = false;

835

bool gpgme_initalized = false;

778

836

779

837

{

780

838

struct argp_option options[] = {

781

839

{ .name = "debug", .key = 128,

782

840

.doc = "Debug mode", .group = 3 },

783

841

{ .name = "connect", .key = 'c',

784

.arg = "IP",

785

.doc = "Connect directly to a sepcified mandos server",

842

.arg = "ADDRESS:PORT",

843

.doc = "Connect directly to a specific Mandos server",

786

844

.group = 1 },

787

845

{ .name = "interface", .key = 'i',

788

.arg = "INTERFACE",

789

.doc = "Interface that Avahi will conntect through",

790

.group = 1 },

791

{ .name = "keydir", .key = 'd',

792

.arg = "KEYDIR",

793

.doc = "Directory where the openpgp keyring is",

846

.arg = "NAME",

847

.doc = "Interface that will be used to search for Mandos"

848

" servers",

794

849

.group = 1 },

795

850

{ .name = "seckey", .key = 's',

796

.arg = "SECKEY",

797

.doc = "Secret openpgp key for gnutls authentication",

851

.arg = "FILE",

852

.doc = "OpenPGP secret key file base name",

798

853

.group = 1 },

799

854

{ .name = "pubkey", .key = 'p',

800

.arg = "PUBKEY",

801

.doc = "Public openpgp key for gnutls authentication",

855

.arg = "FILE",

856

.doc = "OpenPGP public key file base name",

802

857

.group = 2 },

803

858

{ .name = "dh-bits", .key = 129,

804

859

.arg = "BITS",

805

.doc = "dh-bits to use in gnutls communication",

860

.doc = "Bit length of the prime number used in the"

861

" Diffie-Hellman key exchange",

806

862

.group = 2 },

807

863

{ .name = "priority", .key = 130,

808

.arg = "PRIORITY",

809

.doc = "GNUTLS priority", .group = 1 },

864

.arg = "STRING",

865

.doc = "GnuTLS priority string for the TLS handshake",

866

.group = 1 },

810

867

{ .name = NULL }

811

868

};

812

813

869

814

error_t parse_opt (int key, char *arg,

815

struct argp_state *state) {

816

/* Get the INPUT argument from `argp_parse', which we know is

817

a pointer to our plugin list pointer. */

818

switch (key) {

819

case 128:

870

error_t parse_opt(int key, char *arg,

871

struct argp_state *state) {

872

switch(key) {

873

case 128: /* --debug */

820

874

debug = true;

821

875

break;

822

case 'c':

876

case 'c': /* --connect */

823

877

connect_to = arg;

824

878

break;

825

case 'i':

879

case 'i': /* --interface */

826

880

interface = arg;

827

881

break;

828

case 'd':

829

keydir = arg;

830

break;

831

case 's':

832

seckeyname = arg;

833

break;

834

case 'p':

835

pubkeyname = arg;

836

break;

837

case 129:

838

errno = 0;

839

mc.dh_bits = (unsigned int) strtol(arg, NULL, 10);

840

if (errno){

841

perror("strtol");

882

case 's': /* --seckey */

883

seckey = arg;

884

break;

885

case 'p': /* --pubkey */

886

pubkey = arg;

887

break;

888

case 129: /* --dh-bits */

889

ret = sscanf(arg, "%u", &mc.dh_bits);

890

if(ret != 1){

891

fprintf(stderr, "Bad number of DH bits\n");

842

892

exit(EXIT_FAILURE);

843

893

}

844

894

break;

845

case 130:

895

case 130: /* --priority */

846

896

mc.priority = arg;

847

897

break;

848

898

case ARGP_KEY_ARG:

849

argp_usage (state);

899

argp_usage(state);

850

900

case ARGP_KEY_END:

851

901

break;

852

902

default:

854

904

}

855

905

return 0;

856

906

}

857

907

858

908

struct argp argp = { .options = options, .parser = parse_opt,

859

909

.args_doc = "",

860

910

.doc = "Mandos client -- Get and decrypt"

861

" passwords from mandos server" };

862

ret = argp_parse (&argp, argc, argv, 0, 0, NULL);

863

if (ret == ARGP_ERR_UNKNOWN){

911

" passwords from a Mandos server" };

912

ret = argp_parse(&argp, argc, argv, 0, 0, NULL);

913

if(ret == ARGP_ERR_UNKNOWN){

864

914

fprintf(stderr, "Unknown error while parsing arguments\n");

865

915

exitcode = EXIT_FAILURE;

866

916

goto end;

867

917

}

868

918

}

869

870

pubkeyfilename = combinepath(keydir, pubkeyname);

871

if (pubkeyfilename == NULL){

872

perror("combinepath");

873

exitcode = EXIT_FAILURE;

874

goto end;

875

}

876

877

seckeyfilename = combinepath(keydir, seckeyname);

878

if (seckeyfilename == NULL){

879

perror("combinepath");

880

exitcode = EXIT_FAILURE;

881

goto end;

882

}

883

884

ret = init_gnutls_global(&mc, pubkeyfilename, seckeyfilename);

885

if (ret == -1){

886

fprintf(stderr, "init_gnutls_global failed\n");

887

exitcode = EXIT_FAILURE;

888

goto end;

889

} else {

890

gnutls_initalized = true;

891

}

892

919

893

920

/* If the interface is down, bring it up */

894

921

{

914

941

goto end;

915

942

}

916

943

}

917

close(sd);

944

ret = (int)TEMP_FAILURE_RETRY(close(sd));

945

if(ret == -1){

946

perror("close");

947

}

918

948

}

919

949

920

950

uid = getuid();

921

951

gid = getgid();

922

952

923

953

ret = setuid(uid);

924

if (ret == -1){

954

if(ret == -1){

925

955

perror("setuid");

926

956

}

927

957

928

958

setgid(gid);

929

if (ret == -1){

959

if(ret == -1){

930

960

perror("setgid");

931

961

}

932

962

963

ret = init_gnutls_global(&mc, pubkey, seckey);

964

if(ret == -1){

965

fprintf(stderr, "init_gnutls_global failed\n");

966

exitcode = EXIT_FAILURE;

967

goto end;

968

} else {

969

gnutls_initalized = true;

970

}

971

972

if(mkdtemp(tempdir) == NULL){

973

perror("mkdtemp");

974

tempdir[0] = '\0';

975

goto end;

976

}

977

978

if(not init_gpgme(&mc, pubkey, seckey, tempdir)){

979

fprintf(stderr, "gpgme_initalized failed\n");

980

exitcode = EXIT_FAILURE;

981

goto end;

982

} else {

983

gpgme_initalized = true;

984

}

985

933

986

if_index = (AvahiIfIndex) if_nametoindex(interface);

934

987

if(if_index == 0){

935

988

fprintf(stderr, "No such interface: \"%s\"\n", interface);

945

998

exitcode = EXIT_FAILURE;

946

999

goto end;

947

1000

}

948

errno = 0;

949

uint16_t port = (uint16_t) strtol(address+1, NULL, 10);

950

if(errno){

951

perror("Bad port number");

1001

uint16_t port;

1002

ret = sscanf(address+1, "%" SCNu16, &port);

1003

if(ret != 1){

1004

fprintf(stderr, "Bad port number\n");

952

1005

exitcode = EXIT_FAILURE;

953

1006

goto end;

954

1007

}

963

1016

goto end;

964

1017

}

965

1018

966

if (not debug){

1019

if(not debug){

967

1020

avahi_set_log_function(empty_log);

968

1021

}

969

1022

972

1025

973

1026

/* Allocate main Avahi loop object */

974

1027

mc.simple_poll = avahi_simple_poll_new();

975

if (mc.simple_poll == NULL) {

1028

if(mc.simple_poll == NULL) {

976

1029

fprintf(stderr, "Avahi: Failed to create simple poll"

977

1030

" object.\n");

978

1031

exitcode = EXIT_FAILURE;

979

1032

goto end;

980

1033

}

981

1034

982

1035

{

983

1036

AvahiServerConfig config;

984

1037

/* Do not publish any local Zeroconf records */

987

1040

config.publish_addresses = 0;

988

1041

config.publish_workstation = 0;

989

1042

config.publish_domain = 0;

990

1043

991

1044

/* Allocate a new server */

992

1045

mc.server = avahi_server_new(avahi_simple_poll_get

993

1046

(mc.simple_poll), &config, NULL,

994

1047

NULL, &error);

995

1048

996

1049

/* Free the Avahi configuration data */

997

1050

avahi_server_config_free(&config);

998

1051

}

999

1052

1000

1053

/* Check if creating the Avahi server object succeeded */

1001

if (mc.server == NULL) {

1054

if(mc.server == NULL) {

1002

1055

fprintf(stderr, "Failed to create Avahi server: %s\n",

1003

1056

avahi_strerror(error));

1004

1057

exitcode = EXIT_FAILURE;

1010

1063

AVAHI_PROTO_INET6,

1011

1064

"_mandos._tcp", NULL, 0,

1012

1065

browse_callback, &mc);

1013

if (sb == NULL) {

1066

if(sb == NULL) {

1014

1067

fprintf(stderr, "Failed to create service browser: %s\n",

1015

1068

avahi_strerror(avahi_server_errno(mc.server)));

1016

1069

exitcode = EXIT_FAILURE;

1018

1071

}

1019

1072

1020

1073

/* Run the main loop */

1021

1022

if (debug){

1074

1075

if(debug){

1023

1076

fprintf(stderr, "Starting Avahi loop search\n");

1024

1077

}

1025

1078

1026

1079

avahi_simple_poll_loop(mc.simple_poll);

1027

1080

1028

1081

end:

1029

1030

if (debug){

1082

1083

if(debug){

1031

1084

fprintf(stderr, "%s exiting\n", argv[0]);

1032

1085

}

1033

1086

1034

1087

/* Cleanup things */

1035

if (sb != NULL)

1088

if(sb != NULL)

1036

1089

avahi_s_service_browser_free(sb);

1037

1090

1038

if (mc.server != NULL)

1091

if(mc.server != NULL)

1039

1092

avahi_server_free(mc.server);

1040

1041

if (mc.simple_poll != NULL)

1093

1094

if(mc.simple_poll != NULL)

1042

1095

avahi_simple_poll_free(mc.simple_poll);

1043

free(pubkeyfilename);

1044

free(seckeyfilename);

1045

1046

if (gnutls_initalized){

1096

1097

if(gnutls_initalized){

1047

1098

gnutls_certificate_free_credentials(mc.cred);

1048

gnutls_global_deinit ();

1049

}

1050

1099

gnutls_global_deinit();

1100

gnutls_dh_params_deinit(mc.dh_params);

1101

}

1102

1103

if(gpgme_initalized){

1104

gpgme_release(mc.ctx);

1105

}

1106

1107

/* Removes the temp directory used by GPGME */

1108

if(tempdir[0] != '\0'){

1109

DIR *d;

1110

struct dirent *direntry;

1111

d = opendir(tempdir);

1112

if(d == NULL){

1113

if(errno != ENOENT){

1114

perror("opendir");

1115

}

1116

} else {

1117

while(true){

1118

direntry = readdir(d);

1119

if(direntry == NULL){

1120

break;

1121

}

1122

if(direntry->d_type == DT_REG){

1123

char *fullname = NULL;

1124

ret = asprintf(&fullname, "%s/%s", tempdir,

1125

direntry->d_name);

1126

if(ret < 0){

1127

perror("asprintf");

1128

continue;

1129

}

1130

ret = unlink(fullname);

1131

if(ret == -1){

1132

fprintf(stderr, "unlink(\"%s\"): %s",

1133

fullname, strerror(errno));

1134

}

1135

free(fullname);

1136

}

1137

}

1138

closedir(d);

1139

}

1140

ret = rmdir(tempdir);

1141

if(ret == -1 and errno != ENOENT){

1142

perror("rmdir");

1143

}

1144

}

1145

1051

1146

return exitcode;

1052

1147

}

Older »