/mandos/release : revision 237.2.55

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to plugins.d/mandos-client.c

Committer: Teddy Hogeborn
Date: 2009-02-03 22:41:49 UTC
mto: (24.1.131 mandos) (237.4.2 mandos-pipe-ipc) (299.1.1 release) (300.1.1 release) (301.1.1 release)
mto: This revision was merged to the branch mainline in revision 250.
Revision ID: teddy@fukt.bsnet.se-20090203224149-fc1301jojmusbzlx

* Makefile (run-server): Use "--no-dbus" unconditionally.

* initramfs-tools-script: Correct tests for writable "/conf/conf.d".

* mandos: Add process ID number to logging messages.
  (IPv6_TCPServer.server_bind): Use plain "raise".
  (main): Do not try to handle SIGSEGV; it does not work.  Use plain
         "raise".  Log KeyboardInterrupt and server exit.

files added:
.bzr-builddeb

.bzr-builddeb/default.conf

INSTALL

NEWS

common.ent

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/po

debian/rules

debian/watch

mandos-ctl

mandos.lsm

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files removed:
etc-plugins.d-README

plugins.d/usplash

files modified:
.bzrignore

Makefile

README

TODO

clients.conf

default-mandos

init.d-mandos

initramfs-tools-hook

initramfs-tools-script

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.c

plugin-runner.conf

plugin-runner.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

Show diffs side-by-side

added added

removed removed

plugins.d/mandos-client.c

/* -*- coding: utf-8 -*- */

* Mandos client - get and decrypt data from a Mandos server

* Mandos-client - get and decrypt data from a Mandos server

* This program is partly derived from an example program for an Avahi

* service browser, downloaded from

* "browse_callback", and parts of "main".

* Everything else is

* This program is free software: you can redistribute it and/or

* modify it under the terms of the GNU General Public License as

#define _GNU_SOURCE /* TEMP_FAILURE_RETRY(), asprintf() */

#include <stdio.h> /* fprintf(), stderr, fwrite(),

stdout, ferror() */

stdout, ferror(), sscanf(),

remove() */

#include <stdint.h> /* uint16_t, uint32_t */

#include <stddef.h> /* NULL, size_t, ssize_t */

#include <stdlib.h> /* free(), EXIT_SUCCESS, EXIT_FAILURE,

#include <sys/types.h> /* socket(), inet_pton(), sockaddr,

sockaddr_in6, PF_INET6,

SOCK_STREAM, INET6_ADDRSTRLEN,

uid_t, gid_t, open(), opendir(), DIR */

uid_t, gid_t, open(), opendir(),

DIR */

#include <sys/stat.h> /* open() */

#include <sys/socket.h> /* socket(), struct sockaddr_in6,

struct in6_addr, inet_pton(),

connect() */

#include <fcntl.h> /* open() */

#include <dirent.h> /* opendir(), struct dirent, readdir() */

#include <inttypes.h> /* PRIu16 */

#include <dirent.h> /* opendir(), struct dirent, readdir()

#include <inttypes.h> /* PRIu16, intmax_t, SCNdMAX */

#include <assert.h> /* assert() */

#include <errno.h> /* perror(), errno */

#include <time.h> /* time() */

#include <time.h> /* nanosleep(), time() */

#include <net/if.h> /* ioctl, ifreq, SIOCGIFFLAGS, IFF_UP,

SIOCSIFFLAGS, if_indextoname(),

if_nametoindex(), IF_NAMESIZE */

getuid(), getgid(), setuid(),

setgid() */

#include <arpa/inet.h> /* inet_pton(), htons */

#include <iso646.h> /* not, and */

#include <iso646.h> /* not, and, or */

#include <argp.h> /* struct argp_option, error_t, struct

argp_state, struct argp,

argp_parse(), ARGP_KEY_ARG,

ARGP_KEY_END, ARGP_ERR_UNKNOWN */

#include <sys/klog.h> /* klogctl() */

/* Avahi */

/* All Avahi types, constants and functions

gnutls_*

init_gnutls_session(),

GNUTLS_* */

#include <gnutls/openpgp.h> /* gnutls_certificate_set_openpgp_key_file(),

#include <gnutls/openpgp.h>

/* gnutls_certificate_set_openpgp_key_file(),

GNUTLS_OPENPGP_FMT_BASE64 */

100

101

/* GPGME */

101

107

102

108

#define BUFFER_SIZE 256

103

109

104

105

#define PATHDIR "/conf/conf.d/mandos"

106

107

108

110

#define PATHDIR "/conf/conf.d/mandos"

109

111

#define SECKEY "seckey.txt"

110

112

#define PUBKEY "pubkey.txt"

111

113

112

114

bool debug = false;

113

115

static const char mandos_protocol_version[] = "1";

114

const char *argp_program_version = "mandos-client 1.0";

116

const char *argp_program_version = "mandos-client " VERSION;

115

117

const char *argp_program_bug_address = "<mandos@fukt.bsnet.se>";

116

118

117

119

/* Used for passing in values through the Avahi callback functions */

132

134

133

135

size_t adjustbuffer(char **buffer, size_t buffer_length,

134

136

size_t buffer_capacity){

135

if (buffer_length + BUFFER_SIZE > buffer_capacity){

137

if(buffer_length + BUFFER_SIZE > buffer_capacity){

136

138

*buffer = realloc(*buffer, buffer_capacity + BUFFER_SIZE);

137

if (buffer == NULL){

139

if(buffer == NULL){

138

140

return 0;

139

141

}

140

142

buffer_capacity += BUFFER_SIZE;

153

155

154

156

155

157

156

* Helper function to insert pub and seckey to the enigne keyring.

158

* Helper function to insert pub and seckey to the engine keyring.

157

159

158

160

bool import_key(const char *filename){

159

161

int fd;

160

162

gpgme_data_t pgp_data;

161

163

162

fd = TEMP_FAILURE_RETRY(open(filename, O_RDONLY));

164

fd = (int)TEMP_FAILURE_RETRY(open(filename, O_RDONLY));

163

165

if(fd == -1){

164

166

perror("open");

165

167

return false;

166

168

}

167

169

168

170

rc = gpgme_data_new_from_fd(&pgp_data, fd);

169

if (rc != GPG_ERR_NO_ERROR){

171

if(rc != GPG_ERR_NO_ERROR){

170

172

fprintf(stderr, "bad gpgme_data_new_from_fd: %s: %s\n",

171

173

gpgme_strsource(rc), gpgme_strerror(rc));

172

174

return false;

173

175

}

174

176

175

177

rc = gpgme_op_import(mc->ctx, pgp_data);

176

if (rc != GPG_ERR_NO_ERROR){

178

if(rc != GPG_ERR_NO_ERROR){

177

179

fprintf(stderr, "bad gpgme_op_import: %s: %s\n",

178

180

gpgme_strsource(rc), gpgme_strerror(rc));

179

181

return false;

180

182

}

181

183

182

ret = TEMP_FAILURE_RETRY(close(fd));

184

ret = (int)TEMP_FAILURE_RETRY(close(fd));

183

185

if(ret == -1){

184

186

perror("close");

185

187

}

187

189

return true;

188

190

}

189

191

190

if (debug){

192

if(debug){

191

193

fprintf(stderr, "Initialize gpgme\n");

192

194

}

193

195

194

196

/* Init GPGME */

195

197

gpgme_check_version(NULL);

196

198

rc = gpgme_engine_check_version(GPGME_PROTOCOL_OpenPGP);

197

if (rc != GPG_ERR_NO_ERROR){

199

if(rc != GPG_ERR_NO_ERROR){

198

200

fprintf(stderr, "bad gpgme_engine_check_version: %s: %s\n",

199

201

gpgme_strsource(rc), gpgme_strerror(rc));

200

202

return false;

201

203

}

202

204

203

205

/* Set GPGME home directory for the OpenPGP engine only */

204

rc = gpgme_get_engine_info (&engine_info);

205

if (rc != GPG_ERR_NO_ERROR){

206

rc = gpgme_get_engine_info(&engine_info);

207

if(rc != GPG_ERR_NO_ERROR){

206

208

fprintf(stderr, "bad gpgme_get_engine_info: %s: %s\n",

207

209

gpgme_strsource(rc), gpgme_strerror(rc));

208

210

return false;

222

224

223

225

/* Create new GPGME "context" */

224

226

rc = gpgme_new(&(mc->ctx));

225

if (rc != GPG_ERR_NO_ERROR){

227

if(rc != GPG_ERR_NO_ERROR){

226

228

fprintf(stderr, "bad gpgme_new: %s: %s\n",

227

229

gpgme_strsource(rc), gpgme_strerror(rc));

228

230

return false;

229

231

}

230

232

231

if (not import_key(pubkey) or not import_key(seckey)){

233

if(not import_key(pubkey) or not import_key(seckey)){

232

234

return false;

233

235

}

234

236

239

241

* Decrypt OpenPGP data.

240

242

* Returns -1 on error

241

243

242

static ssize_t pgp_packet_decrypt (const mandos_context *mc,

243

const char *cryptotext,

244

size_t crypto_size,

245

char **plaintext){

244

static ssize_t pgp_packet_decrypt(const mandos_context *mc,

245

const char *cryptotext,

246

size_t crypto_size,

247

char **plaintext){

246

248

gpgme_data_t dh_crypto, dh_plain;

247

249

gpgme_error_t rc;

248

250

ssize_t ret;

249

251

size_t plaintext_capacity = 0;

250

252

ssize_t plaintext_length = 0;

251

253

252

if (debug){

254

if(debug){

253

255

fprintf(stderr, "Trying to decrypt OpenPGP data\n");

254

256

}

255

257

256

258

/* Create new GPGME data buffer from memory cryptotext */

257

259

rc = gpgme_data_new_from_mem(&dh_crypto, cryptotext, crypto_size,

258

260

0);

259

if (rc != GPG_ERR_NO_ERROR){

261

if(rc != GPG_ERR_NO_ERROR){

260

262

fprintf(stderr, "bad gpgme_data_new_from_mem: %s: %s\n",

261

263

gpgme_strsource(rc), gpgme_strerror(rc));

262

264

return -1;

264

266

265

267

/* Create new empty GPGME data buffer for the plaintext */

266

268

rc = gpgme_data_new(&dh_plain);

267

if (rc != GPG_ERR_NO_ERROR){

269

if(rc != GPG_ERR_NO_ERROR){

268

270

fprintf(stderr, "bad gpgme_data_new: %s: %s\n",

269

271

gpgme_strsource(rc), gpgme_strerror(rc));

270

272

gpgme_data_release(dh_crypto);

274

276

/* Decrypt data from the cryptotext data buffer to the plaintext

275

277

data buffer */

276

278

rc = gpgme_op_decrypt(mc->ctx, dh_crypto, dh_plain);

277

if (rc != GPG_ERR_NO_ERROR){

279

if(rc != GPG_ERR_NO_ERROR){

278

280

fprintf(stderr, "bad gpgme_op_decrypt: %s: %s\n",

279

281

gpgme_strsource(rc), gpgme_strerror(rc));

280

282

plaintext_length = -1;

281

if (debug){

283

if(debug){

282

284

gpgme_decrypt_result_t result;

283

285

result = gpgme_op_decrypt_result(mc->ctx);

284

if (result == NULL){

286

if(result == NULL){

285

287

fprintf(stderr, "gpgme_op_decrypt_result failed\n");

286

288

} else {

287

289

fprintf(stderr, "Unsupported algorithm: %s\n",

314

316

}

315

317

316

318

/* Seek back to the beginning of the GPGME plaintext data buffer */

317

if (gpgme_data_seek(dh_plain, (off_t) 0, SEEK_SET) == -1){

318

perror("pgpme_data_seek");

319

if(gpgme_data_seek(dh_plain, (off_t)0, SEEK_SET) == -1){

320

perror("gpgme_data_seek");

319

321

plaintext_length = -1;

320

322

goto decrypt_end;

321

323

}

325

327

plaintext_capacity = adjustbuffer(plaintext,

326

328

(size_t)plaintext_length,

327

329

plaintext_capacity);

328

if (plaintext_capacity == 0){

330

if(plaintext_capacity == 0){

329

331

perror("adjustbuffer");

330

332

plaintext_length = -1;

331

333

goto decrypt_end;

334

336

ret = gpgme_data_read(dh_plain, *plaintext + plaintext_length,

335

337

BUFFER_SIZE);

336

338

/* Print the data, if any */

337

if (ret == 0){

339

if(ret == 0){

338

340

/* EOF */

339

341

break;

340

342

}

364

366

return plaintext_length;

365

367

}

366

368

367

static const char * safer_gnutls_strerror (int value) {

368

const char *ret = gnutls_strerror (value); /* Spurious warning */

369

if (ret == NULL)

369

static const char * safer_gnutls_strerror(int value) {

370

const char *ret = gnutls_strerror(value); /* Spurious warning from

371

-Wunreachable-code */

372

if(ret == NULL)

370

373

ret = "(unknown)";

371

374

return ret;

372

375

}

387

390

}

388

391

389

392

ret = gnutls_global_init();

390

if (ret != GNUTLS_E_SUCCESS) {

391

fprintf (stderr, "GnuTLS global_init: %s\n",

392

safer_gnutls_strerror(ret));

393

if(ret != GNUTLS_E_SUCCESS) {

394

fprintf(stderr, "GnuTLS global_init: %s\n",

395

safer_gnutls_strerror(ret));

393

396

return -1;

394

397

}

395

398

396

if (debug){

399

if(debug){

397

400

/* "Use a log level over 10 to enable all debugging options."

398

401

* - GnuTLS manual

399

402

403

406

404

407

/* OpenPGP credentials */

405

408

gnutls_certificate_allocate_credentials(&mc->cred);

406

if (ret != GNUTLS_E_SUCCESS){

407

fprintf (stderr, "GnuTLS memory error: %s\n", /* Spurious

408

warning */

409

safer_gnutls_strerror(ret));

410

gnutls_global_deinit ();

409

if(ret != GNUTLS_E_SUCCESS){

410

fprintf(stderr, "GnuTLS memory error: %s\n", /* Spurious warning

411

* from

412

* -Wunreachable-code

413

414

safer_gnutls_strerror(ret));

415

gnutls_global_deinit();

411

416

return -1;

412

417

}

413

418

420

425

ret = gnutls_certificate_set_openpgp_key_file

421

426

(mc->cred, pubkeyfilename, seckeyfilename,

422

427

GNUTLS_OPENPGP_FMT_BASE64);

423

if (ret != GNUTLS_E_SUCCESS) {

428

if(ret != GNUTLS_E_SUCCESS) {

424

429

fprintf(stderr,

425

430

"Error[%d] while reading the OpenPGP key pair ('%s',"

426

431

" '%s')\n", ret, pubkeyfilename, seckeyfilename);

431

436

432

437

/* GnuTLS server initialization */

433

438

ret = gnutls_dh_params_init(&mc->dh_params);

434

if (ret != GNUTLS_E_SUCCESS) {

435

fprintf (stderr, "Error in GnuTLS DH parameter initialization:"

436

" %s\n", safer_gnutls_strerror(ret));

439

if(ret != GNUTLS_E_SUCCESS) {

440

fprintf(stderr, "Error in GnuTLS DH parameter initialization:"

441

" %s\n", safer_gnutls_strerror(ret));

437

442

goto globalfail;

438

443

}

439

444

ret = gnutls_dh_params_generate2(mc->dh_params, mc->dh_bits);

440

if (ret != GNUTLS_E_SUCCESS) {

441

fprintf (stderr, "Error in GnuTLS prime generation: %s\n",

442

safer_gnutls_strerror(ret));

445

if(ret != GNUTLS_E_SUCCESS) {

446

fprintf(stderr, "Error in GnuTLS prime generation: %s\n",

447

safer_gnutls_strerror(ret));

443

448

goto globalfail;

444

449

}

445

450

451

456

452

457

gnutls_certificate_free_credentials(mc->cred);

453

458

gnutls_global_deinit();

459

gnutls_dh_params_deinit(mc->dh_params);

454

460

return -1;

455

461

}

456

462

459

465

int ret;

460

466

/* GnuTLS session creation */

461

467

ret = gnutls_init(session, GNUTLS_SERVER);

462

if (ret != GNUTLS_E_SUCCESS){

468

if(ret != GNUTLS_E_SUCCESS){

463

469

fprintf(stderr, "Error in GnuTLS session initialization: %s\n",

464

470

safer_gnutls_strerror(ret));

465

471

}

467

473

{

468

474

const char *err;

469

475

ret = gnutls_priority_set_direct(*session, mc->priority, &err);

470

if (ret != GNUTLS_E_SUCCESS) {

476

if(ret != GNUTLS_E_SUCCESS) {

471

477

fprintf(stderr, "Syntax error at: %s\n", err);

472

478

fprintf(stderr, "GnuTLS error: %s\n",

473

479

safer_gnutls_strerror(ret));

474

gnutls_deinit (*session);

480

gnutls_deinit(*session);

475

481

return -1;

476

482

}

477

483

}

478

484

479

485

ret = gnutls_credentials_set(*session, GNUTLS_CRD_CERTIFICATE,

480

486

mc->cred);

481

if (ret != GNUTLS_E_SUCCESS) {

487

if(ret != GNUTLS_E_SUCCESS) {

482

488

fprintf(stderr, "Error setting GnuTLS credentials: %s\n",

483

489

safer_gnutls_strerror(ret));

484

gnutls_deinit (*session);

490

gnutls_deinit(*session);

485

491

return -1;

486

492

}

487

493

488

494

/* ignore client certificate if any. */

489

gnutls_certificate_server_set_request (*session,

490

GNUTLS_CERT_IGNORE);

495

gnutls_certificate_server_set_request(*session,

496

GNUTLS_CERT_IGNORE);

491

497

492

gnutls_dh_set_prime_bits (*session, mc->dh_bits);

498

gnutls_dh_set_prime_bits(*session, mc->dh_bits);

493

499

494

500

return 0;

495

501

}

503

509

AvahiIfIndex if_index,

504

510

mandos_context *mc){

505

511

int ret, tcp_sd;

512

ssize_t sret;

506

513

union { struct sockaddr in; struct sockaddr_in6 in6; } to;

507

514

char *buffer = NULL;

508

515

char *decrypted_buffer;

514

521

char interface[IF_NAMESIZE];

515

522

gnutls_session_t session;

516

523

517

ret = init_gnutls_session (mc, &session);

518

if (ret != 0){

524

ret = init_gnutls_session(mc, &session);

525

if(ret != 0){

519

526

return -1;

520

527

}

521

528

543

550

/* It would be nice to have a way to detect if we were passed an

544

551

IPv4 address here. Now we assume an IPv6 address. */

545

552

ret = inet_pton(AF_INET6, ip, &to.in6.sin6_addr);

546

if (ret < 0 ){

553

if(ret < 0 ){

547

554

perror("inet_pton");

548

555

return -1;

549

556

}

551

558

fprintf(stderr, "Bad address: %s\n", ip);

552

559

return -1;

553

560

}

554

to.in6.sin6_port = htons(port); /* Spurious warning */

561

to.in6.sin6_port = htons(port); /* Spurious warnings from

562

-Wconversion and

563

-Wunreachable-code */

555

564

556

565

to.in6.sin6_scope_id = (uint32_t)if_index;

557

566

570

579

}

571

580

572

581

ret = connect(tcp_sd, &to.in, sizeof(to));

573

if (ret < 0){

582

if(ret < 0){

574

583

perror("connect");

575

584

return -1;

576

585

}

577

586

578

587

const char *out = mandos_protocol_version;

579

588

written = 0;

580

while (true){

589

while(true){

581

590

size_t out_size = strlen(out);

582

ret = TEMP_FAILURE_RETRY(write(tcp_sd, out + written,

591

ret = (int)TEMP_FAILURE_RETRY(write(tcp_sd, out + written,

583

592

out_size - written));

584

if (ret == -1){

593

if(ret == -1){

585

594

perror("write");

586

595

retval = -1;

587

596

goto mandos_end;

590

599

if(written < out_size){

591

600

continue;

592

601

} else {

593

if (out == mandos_protocol_version){

602

if(out == mandos_protocol_version){

594

603

written = 0;

595

604

out = "\r\n";

596

605

} else {

603

612

fprintf(stderr, "Establishing TLS session with %s\n", ip);

604

613

}

605

614

606

gnutls_transport_set_ptr (session, (gnutls_transport_ptr_t) tcp_sd);

615

gnutls_transport_set_ptr(session, (gnutls_transport_ptr_t) tcp_sd);

607

616

608

617

do{

609

ret = gnutls_handshake (session);

618

ret = gnutls_handshake(session);

610

619

} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);

611

620

612

if (ret != GNUTLS_E_SUCCESS){

621

if(ret != GNUTLS_E_SUCCESS){

613

622

if(debug){

614

623

fprintf(stderr, "*** GnuTLS Handshake failed ***\n");

615

gnutls_perror (ret);

624

gnutls_perror(ret);

616

625

}

617

626

retval = -1;

618

627

goto mandos_end;

628

637

while(true){

629

638

buffer_capacity = adjustbuffer(&buffer, buffer_length,

630

639

buffer_capacity);

631

if (buffer_capacity == 0){

640

if(buffer_capacity == 0){

632

641

perror("adjustbuffer");

633

642

retval = -1;

634

643

goto mandos_end;

635

644

}

636

645

637

ret = gnutls_record_recv(session, buffer+buffer_length,

638

BUFFER_SIZE);

639

if (ret == 0){

646

sret = gnutls_record_recv(session, buffer+buffer_length,

647

BUFFER_SIZE);

648

if(sret == 0){

640

649

break;

641

650

}

642

if (ret < 0){

643

switch(ret){

651

if(sret < 0){

652

switch(sret){

644

653

case GNUTLS_E_INTERRUPTED:

645

654

case GNUTLS_E_AGAIN:

646

655

break;

647

656

case GNUTLS_E_REHANDSHAKE:

648

657

do{

649

ret = gnutls_handshake (session);

658

ret = gnutls_handshake(session);

650

659

} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);

651

if (ret < 0){

660

if(ret < 0){

652

661

fprintf(stderr, "*** GnuTLS Re-handshake failed ***\n");

653

gnutls_perror (ret);

662

gnutls_perror(ret);

654

663

retval = -1;

655

664

goto mandos_end;

656

665

}

659

668

fprintf(stderr, "Unknown error while reading data from"

660

669

" encrypted session with Mandos server\n");

661

670

retval = -1;

662

gnutls_bye (session, GNUTLS_SHUT_RDWR);

671

gnutls_bye(session, GNUTLS_SHUT_RDWR);

663

672

goto mandos_end;

664

673

}

665

674

} else {

666

buffer_length += (size_t) ret;

675

buffer_length += (size_t) sret;

667

676

}

668

677

}

669

678

671

680

fprintf(stderr, "Closing TLS session\n");

672

681

}

673

682

674

gnutls_bye (session, GNUTLS_SHUT_RDWR);

683

gnutls_bye(session, GNUTLS_SHUT_RDWR);

675

684

676

if (buffer_length > 0){

685

if(buffer_length > 0){

677

686

decrypted_buffer_size = pgp_packet_decrypt(mc, buffer,

678

687

buffer_length,

679

688

&decrypted_buffer);

680

if (decrypted_buffer_size >= 0){

689

if(decrypted_buffer_size >= 0){

681

690

written = 0;

682

691

while(written < (size_t) decrypted_buffer_size){

683

ret = (int)fwrite (decrypted_buffer + written, 1,

684

(size_t)decrypted_buffer_size - written,

685

stdout);

692

ret = (int)fwrite(decrypted_buffer + written, 1,

693

(size_t)decrypted_buffer_size - written,

694

stdout);

686

695

if(ret == 0 and ferror(stdout)){

687

696

if(debug){

688

697

fprintf(stderr, "Error writing encrypted data: %s\n",

705

714

706

715

mandos_end:

707

716

free(buffer);

708

ret = TEMP_FAILURE_RETRY(close(tcp_sd));

717

ret = (int)TEMP_FAILURE_RETRY(close(tcp_sd));

709

718

if(ret == -1){

710

719

perror("close");

711

720

}

712

gnutls_deinit (session);

721

gnutls_deinit(session);

713

722

return retval;

714

723

}

715

724

733

742

/* Called whenever a service has been resolved successfully or

734

743

timed out */

735

744

736

switch (event) {

745

switch(event) {

737

746

default:

738

747

case AVAHI_RESOLVER_FAILURE:

739

748

fprintf(stderr, "(Avahi Resolver) Failed to resolve service '%s'"

747

756

avahi_address_snprint(ip, sizeof(ip), address);

748

757

if(debug){

749

758

fprintf(stderr, "Mandos server \"%s\" found on %s (%s, %"

750

PRIu16 ") on port %d\n", name, host_name, ip,

751

interface, port);

759

PRIdMAX ") on port %" PRIu16 "\n", name, host_name,

760

ip, (intmax_t)interface, port);

752

761

}

753

762

int ret = start_mandos_communication(ip, port, interface, mc);

754

if (ret == 0){

763

if(ret == 0){

755

764

avahi_simple_poll_quit(mc->simple_poll);

756

765

}

757

766

}

775

784

/* Called whenever a new services becomes available on the LAN or

776

785

is removed from the LAN */

777

786

778

switch (event) {

787

switch(event) {

779

788

default:

780

789

case AVAHI_BROWSER_FAILURE:

781

790

799

the callback function is called the Avahi server will free the

791

800

resolver for us. */

792

801

793

if (!(avahi_s_service_resolver_new(mc->server, interface,

802

if(!(avahi_s_service_resolver_new(mc->server, interface,

794

803

protocol, name, type, domain,

795

804

AVAHI_PROTO_INET6, 0,

796

805

resolve_callback, mc)))

814

823

AvahiSServiceBrowser *sb = NULL;

815

824

int error;

816

825

int ret;

826

intmax_t tmpmax;

827

int numchars;

817

828

int exitcode = EXIT_SUCCESS;

818

829

const char *interface = "eth0";

819

830

struct ifreq network;

822

833

gid_t gid;

823

834

char *connect_to = NULL;

824

835

char tempdir[] = "/tmp/mandosXXXXXX";

836

bool tempdir_created = false;

825

837

AvahiIfIndex if_index = AVAHI_IF_UNSPEC;

826

838

const char *seckey = PATHDIR "/" SECKEY;

827

839

const char *pubkey = PATHDIR "/" PUBKEY;

829

841

mandos_context mc = { .simple_poll = NULL, .server = NULL,

830

842

.dh_bits = 1024, .priority = "SECURE256"

831

843

":!CTYPE-X.509:+CTYPE-OPENPGP" };

832

bool gnutls_initalized = false;

833

bool pgpme_initalized = false;

844

bool gnutls_initialized = false;

845

bool gpgme_initialized = false;

846

double delay = 2.5;

834

847

835

848

{

836

849

struct argp_option options[] = {

862

875

.arg = "STRING",

863

876

.doc = "GnuTLS priority string for the TLS handshake",

864

877

.group = 1 },

878

{ .name = "delay", .key = 131,

879

.arg = "SECONDS",

880

.doc = "Maximum delay to wait for interface startup",

881

.group = 2 },

865

882

{ .name = NULL }

866

883

};

867

884

868

error_t parse_opt (int key, char *arg,

869

struct argp_state *state) {

870

/* Get the INPUT argument from `argp_parse', which we know is

871

a pointer to our plugin list pointer. */

872

switch (key) {

885

error_t parse_opt(int key, char *arg,

886

struct argp_state *state) {

887

switch(key) {

873

888

case 128: /* --debug */

874

889

debug = true;

875

890

break;

886

901

pubkey = arg;

887

902

break;

888

903

case 129: /* --dh-bits */

889

errno = 0;

890

mc.dh_bits = (unsigned int) strtol(arg, NULL, 10);

891

if (errno){

892

perror("strtol");

904

ret = sscanf(arg, "%" SCNdMAX "%n", &tmpmax, &numchars);

905

if(ret < 1 or tmpmax != (typeof(mc.dh_bits))tmpmax

906

or arg[numchars] != '\0'){

907

fprintf(stderr, "Bad number of DH bits\n");

893

908

exit(EXIT_FAILURE);

894

909

}

910

mc.dh_bits = (typeof(mc.dh_bits))tmpmax;

895

911

break;

896

912

case 130: /* --priority */

897

913

mc.priority = arg;

898

914

break;

915

case 131: /* --delay */

916

ret = sscanf(arg, "%lf%n", &delay, &numchars);

917

if(ret < 1 or arg[numchars] != '\0'){

918

fprintf(stderr, "Bad delay\n");

919

exit(EXIT_FAILURE);

920

}

921

break;

899

922

case ARGP_KEY_ARG:

900

argp_usage (state);

923

argp_usage(state);

901

924

case ARGP_KEY_END:

902

925

break;

903

926

default:

910

933

.args_doc = "",

911

934

.doc = "Mandos client -- Get and decrypt"

912

935

" passwords from a Mandos server" };

913

ret = argp_parse (&argp, argc, argv, 0, 0, NULL);

914

if (ret == ARGP_ERR_UNKNOWN){

936

ret = argp_parse(&argp, argc, argv, 0, 0, NULL);

937

if(ret == ARGP_ERR_UNKNOWN){

915

938

fprintf(stderr, "Unknown error while parsing arguments\n");

916

939

exitcode = EXIT_FAILURE;

917

940

goto end;

920

943

921

944

/* If the interface is down, bring it up */

922

945

{

946

/* Lower kernel loglevel to KERN_NOTICE to avoid KERN_INFO

947

messages to mess up the prompt */

948

ret = klogctl(8, NULL, 5);

949

if(ret == -1){

950

perror("klogctl");

951

}

952

923

953

sd = socket(PF_INET6, SOCK_DGRAM, IPPROTO_IP);

924

954

if(sd < 0) {

925

955

perror("socket");

926

956

exitcode = EXIT_FAILURE;

957

ret = klogctl(7, NULL, 0);

958

if(ret == -1){

959

perror("klogctl");

960

}

927

961

goto end;

928

962

}

929

963

strcpy(network.ifr_name, interface);

930

964

ret = ioctl(sd, SIOCGIFFLAGS, &network);

931

965

if(ret == -1){

932

966

perror("ioctl SIOCGIFFLAGS");

967

ret = klogctl(7, NULL, 0);

968

if(ret == -1){

969

perror("klogctl");

970

}

933

971

exitcode = EXIT_FAILURE;

934

972

goto end;

935

973

}

939

977

if(ret == -1){

940

978

perror("ioctl SIOCSIFFLAGS");

941

979

exitcode = EXIT_FAILURE;

980

ret = klogctl(7, NULL, 0);

981

if(ret == -1){

982

perror("klogctl");

983

}

942

984

goto end;

943

985

}

944

986

}

945

ret = TEMP_FAILURE_RETRY(close(sd));

987

/* sleep checking until interface is running */

988

for(int i=0; i < delay * 4; i++){

989

ret = ioctl(sd, SIOCGIFFLAGS, &network);

990

if(ret == -1){

991

perror("ioctl SIOCGIFFLAGS");

992

} else if(network.ifr_flags & IFF_RUNNING){

993

break;

994

}

995

struct timespec sleeptime = { .tv_nsec = 250000000 };

996

nanosleep(&sleeptime, NULL);

997

}

998

ret = (int)TEMP_FAILURE_RETRY(close(sd));

946

999

if(ret == -1){

947

1000

perror("close");

948

1001

}

1002

/* Restores kernel loglevel to default */

1003

ret = klogctl(7, NULL, 0);

1004

if(ret == -1){

1005

perror("klogctl");

1006

}

949

1007

}

950

1008

951

1009

uid = getuid();

952

1010

gid = getgid();

953

1011

1012

setgid(gid);

1013

if(ret == -1){

1014

perror("setgid");

1015

}

1016

954

1017

ret = setuid(uid);

955

if (ret == -1){

1018

if(ret == -1){

956

1019

perror("setuid");

957

1020

}

958

1021

959

setgid(gid);

960

if (ret == -1){

961

perror("setgid");

962

}

963

964

1022

ret = init_gnutls_global(&mc, pubkey, seckey);

965

if (ret == -1){

1023

if(ret == -1){

966

1024

fprintf(stderr, "init_gnutls_global failed\n");

967

1025

exitcode = EXIT_FAILURE;

968

1026

goto end;

969

1027

} else {

970

gnutls_initalized = true;

1028

gnutls_initialized = true;

971

1029

}

972

1030

973

1031

if(mkdtemp(tempdir) == NULL){

974

1032

perror("mkdtemp");

975

tempdir[0] = '\0';

976

1033

goto end;

977

1034

}

1035

tempdir_created = true;

978

1036

979

1037

if(not init_gpgme(&mc, pubkey, seckey, tempdir)){

980

fprintf(stderr, "pgpme_initalized failed\n");

1038

fprintf(stderr, "init_gpgme failed\n");

981

1039

exitcode = EXIT_FAILURE;

982

1040

goto end;

983

1041

} else {

984

pgpme_initalized = true;

1042

gpgme_initialized = true;

985

1043

}

986

1044

987

1045

if_index = (AvahiIfIndex) if_nametoindex(interface);

988

1046

if(if_index == 0){

989

1047

fprintf(stderr, "No such interface: \"%s\"\n", interface);

990

exit(EXIT_FAILURE);

1048

exitcode = EXIT_FAILURE;

1049

goto end;

991

1050

}

992

1051

993

1052

if(connect_to != NULL){

999

1058

exitcode = EXIT_FAILURE;

1000

1059

goto end;

1001

1060

}

1002

errno = 0;

1003

uint16_t port = (uint16_t) strtol(address+1, NULL, 10);

1004

if(errno){

1005

perror("Bad port number");

1061

uint16_t port;

1062

ret = sscanf(address+1, "%" SCNdMAX "%n", &tmpmax, &numchars);

1063

if(ret < 1 or tmpmax != (uint16_t)tmpmax

1064

or address[numchars+1] != '\0'){

1065

fprintf(stderr, "Bad port number\n");

1006

1066

exitcode = EXIT_FAILURE;

1007

1067

goto end;

1008

1068

}

1069

port = (uint16_t)tmpmax;

1009

1070

*address = '\0';

1010

1071

address = connect_to;

1011

1072

ret = start_mandos_communication(address, port, if_index, &mc);

1017

1078

goto end;

1018

1079

}

1019

1080

1020

if (not debug){

1081

if(not debug){

1021

1082

avahi_set_log_function(empty_log);

1022

1083

}

1023

1084

1026

1087

1027

1088

/* Allocate main Avahi loop object */

1028

1089

mc.simple_poll = avahi_simple_poll_new();

1029

if (mc.simple_poll == NULL) {

1090

if(mc.simple_poll == NULL) {

1030

1091

fprintf(stderr, "Avahi: Failed to create simple poll"

1031

1092

" object.\n");

1032

1093

exitcode = EXIT_FAILURE;

1052

1113

}

1053

1114

1054

1115

/* Check if creating the Avahi server object succeeded */

1055

if (mc.server == NULL) {

1116

if(mc.server == NULL) {

1056

1117

fprintf(stderr, "Failed to create Avahi server: %s\n",

1057

1118

avahi_strerror(error));

1058

1119

exitcode = EXIT_FAILURE;

1064

1125

AVAHI_PROTO_INET6,

1065

1126

"_mandos._tcp", NULL, 0,

1066

1127

browse_callback, &mc);

1067

if (sb == NULL) {

1128

if(sb == NULL) {

1068

1129

fprintf(stderr, "Failed to create service browser: %s\n",

1069

1130

avahi_strerror(avahi_server_errno(mc.server)));

1070

1131

exitcode = EXIT_FAILURE;

1073

1134

1074

1135

/* Run the main loop */

1075

1136

1076

if (debug){

1137

if(debug){

1077

1138

fprintf(stderr, "Starting Avahi loop search\n");

1078

1139

}

1079

1140

1080

1141

avahi_simple_poll_loop(mc.simple_poll);

1081

1142

1082

1143

end:

1083

1144

1084

if (debug){

1145

if(debug){

1085

1146

fprintf(stderr, "%s exiting\n", argv[0]);

1086

1147

}

1087

1148

1088

1149

/* Cleanup things */

1089

if (sb != NULL)

1150

if(sb != NULL)

1090

1151

avahi_s_service_browser_free(sb);

1091

1152

1092

if (mc.server != NULL)

1153

if(mc.server != NULL)

1093

1154

avahi_server_free(mc.server);

1094

1155

1095

if (mc.simple_poll != NULL)

1156

if(mc.simple_poll != NULL)

1096

1157

avahi_simple_poll_free(mc.simple_poll);

1097

1158

1098

if (gnutls_initalized){

1159

if(gnutls_initialized){

1099

1160

gnutls_certificate_free_credentials(mc.cred);

1100

gnutls_global_deinit ();

1161

gnutls_global_deinit();

1162

gnutls_dh_params_deinit(mc.dh_params);

1101

1163

}

1102

1164

1103

if(pgpme_initalized){

1165

if(gpgme_initialized){

1104

1166

gpgme_release(mc.ctx);

1105

1167

}

1106

1168

1107

1169

/* Removes the temp directory used by GPGME */

1108

if(tempdir[0] != '\0'){

1170

if(tempdir_created){

1109

1171

DIR *d;

1110

1172

struct dirent *direntry;

1111

1173

d = opendir(tempdir);

1112

1174

if(d == NULL){

1113

perror("opendir");

1175

if(errno != ENOENT){

1176

perror("opendir");

1177

}

1114

1178

} else {

1115

1179

while(true){

1116

1180

direntry = readdir(d);

1117

1181

if(direntry == NULL){

1118

1182

break;

1119

1183

}

1120

if (direntry->d_type == DT_REG){

1121

char *fullname = NULL;

1122

ret = asprintf(&fullname, "%s/%s", tempdir,

1123

direntry->d_name);

1124

if(ret < 0){

1125

perror("asprintf");

1126

continue;

1127

}

1128

ret = unlink(fullname);

1129

if(ret == -1){

1130

fprintf(stderr, "unlink(\"%s\"): %s",

1131

fullname, strerror(errno));

1132

}

1133

free(fullname);

1134

}

1184

/* Skip "." and ".." */

1185

if(direntry->d_name[0] == '.'

1186

and (direntry->d_name[1] == '\0'

1187

or (direntry->d_name[1] == '.'

1188

and direntry->d_name[2] == '\0'))){

1189

continue;

1190

}

1191

char *fullname = NULL;

1192

ret = asprintf(&fullname, "%s/%s", tempdir,

1193

direntry->d_name);

1194

if(ret < 0){

1195

perror("asprintf");

1196

continue;

1197

}

1198

ret = remove(fullname);

1199

if(ret == -1){

1200

fprintf(stderr, "remove(\"%s\"): %s\n", fullname,

1201

strerror(errno));

1202

}

1203

free(fullname);

1135

1204

}

1205

closedir(d);

1136

1206

}

1137

1207

ret = rmdir(tempdir);

1138

if(ret == -1){

1208

if(ret == -1 and errno != ENOENT){

1139

1209

perror("rmdir");

1140

1210

}

1141

1211

}

1142

1212

1143

1213

return exitcode;

1144

1214

}

Older »