9
9
* "browse_callback", and parts of "main".
11
11
* Everything else is
12
* Copyright © 2008-2018 Teddy Hogeborn
13
* Copyright © 2008-2018 Björn Påhlsson
15
* This file is part of Mandos.
17
* Mandos is free software: you can redistribute it and/or modify it
18
* under the terms of the GNU General Public License as published by
19
* the Free Software Foundation, either version 3 of the License, or
20
* (at your option) any later version.
22
* Mandos is distributed in the hope that it will be useful, but
12
* Copyright © 2008-2015 Teddy Hogeborn
13
* Copyright © 2008-2015 Björn Påhlsson
15
* This program is free software: you can redistribute it and/or
16
* modify it under the terms of the GNU General Public License as
17
* published by the Free Software Foundation, either version 3 of the
18
* License, or (at your option) any later version.
20
* This program is distributed in the hope that it will be useful, but
23
21
* WITHOUT ANY WARRANTY; without even the implied warranty of
24
22
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
25
23
* General Public License for more details.
27
25
* You should have received a copy of the GNU General Public License
28
* along with Mandos. If not, see <http://www.gnu.org/licenses/>.
26
* along with this program. If not, see
27
* <http://www.gnu.org/licenses/>.
30
29
* Contact the authors at <mandos@recompile.se>.
48
47
strtof(), abort() */
49
48
#include <stdbool.h> /* bool, false, true */
50
49
#include <string.h> /* strcmp(), strlen(), strerror(),
51
asprintf(), strncpy(), strsignal()
50
asprintf(), strcpy() */
53
51
#include <sys/ioctl.h> /* ioctl */
54
52
#include <sys/types.h> /* socket(), inet_pton(), sockaddr,
55
53
sockaddr_in6, PF_INET6,
59
57
#include <sys/socket.h> /* socket(), struct sockaddr_in6,
60
58
inet_pton(), connect(),
62
#include <fcntl.h> /* open(), unlinkat(), AT_REMOVEDIR */
60
#include <fcntl.h> /* open(), unlinkat() */
63
61
#include <dirent.h> /* opendir(), struct dirent, readdir()
65
63
#include <inttypes.h> /* PRIu16, PRIdMAX, intmax_t,
67
#include <errno.h> /* perror(), errno, EINTR, EINVAL,
68
EAI_SYSTEM, ENETUNREACH,
69
EHOSTUNREACH, ECONNREFUSED, EPROTO,
70
EIO, ENOENT, ENXIO, ENOMEM, EISDIR,
65
#include <errno.h> /* perror(), errno,
72
66
program_invocation_short_name */
73
67
#include <time.h> /* nanosleep(), time(), sleep() */
74
68
#include <net/if.h> /* ioctl, ifreq, SIOCGIFFLAGS, IFF_UP,
356
350
/* Create new GPGME "context" */
357
351
rc = gpgme_new(&(mc->ctx));
358
352
if(rc != GPG_ERR_NO_ERROR){
359
fprintf_plus(stderr, "bad gpgme_new: %s: %s\n",
360
gpgme_strsource(rc), gpgme_strerror(rc));
353
fprintf_plus(stderr, "Mandos plugin mandos-client: "
354
"bad gpgme_new: %s: %s\n", gpgme_strsource(rc),
399
394
/* Create new empty GPGME data buffer for the plaintext */
400
395
rc = gpgme_data_new(&dh_plain);
401
396
if(rc != GPG_ERR_NO_ERROR){
402
fprintf_plus(stderr, "bad gpgme_data_new: %s: %s\n",
397
fprintf_plus(stderr, "Mandos plugin mandos-client: "
398
"bad gpgme_data_new: %s: %s\n",
403
399
gpgme_strsource(rc), gpgme_strerror(rc));
404
400
gpgme_data_release(dh_crypto);
418
414
if(result == NULL){
419
415
fprintf_plus(stderr, "gpgme_op_decrypt_result failed\n");
421
if(result->unsupported_algorithm != NULL) {
422
fprintf_plus(stderr, "Unsupported algorithm: %s\n",
423
result->unsupported_algorithm);
425
fprintf_plus(stderr, "Wrong key usage: %s\n",
426
result->wrong_key_usage ? "Yes" : "No");
417
fprintf_plus(stderr, "Unsupported algorithm: %s\n",
418
result->unsupported_algorithm);
419
fprintf_plus(stderr, "Wrong key usage: %u\n",
420
result->wrong_key_usage);
427
421
if(result->file_name != NULL){
428
422
fprintf_plus(stderr, "File name: %s\n", result->file_name);
519
513
fprintf_plus(stderr, "GnuTLS: %s", string);
522
__attribute__((nonnull(1, 2, 4), warn_unused_result))
516
__attribute__((nonnull, warn_unused_result))
523
517
static int init_gnutls_global(const char *pubkeyfilename,
524
518
const char *seckeyfilename,
525
519
const char *dhparamsfilename,
825
823
/* Set effective uid to 0, return errno */
826
824
__attribute__((warn_unused_result))
827
int raise_privileges(void){
828
int old_errno = errno;
825
error_t raise_privileges(void){
826
error_t old_errno = errno;
827
error_t ret_errno = 0;
830
828
if(seteuid(0) == -1){
833
831
errno = old_errno;
837
835
/* Set effective and real user ID to 0. Return errno. */
838
836
__attribute__((warn_unused_result))
839
int raise_privileges_permanently(void){
840
int old_errno = errno;
841
int ret = raise_privileges();
837
error_t raise_privileges_permanently(void){
838
error_t old_errno = errno;
839
error_t ret_errno = raise_privileges();
843
841
errno = old_errno;
846
844
if(setuid(0) == -1){
849
847
errno = old_errno;
853
851
/* Set effective user ID to unprivileged saved user ID */
854
852
__attribute__((warn_unused_result))
855
int lower_privileges(void){
856
int old_errno = errno;
853
error_t lower_privileges(void){
854
error_t old_errno = errno;
855
error_t ret_errno = 0;
858
856
if(seteuid(uid) == -1){
861
859
errno = old_errno;
865
863
/* Lower privileges permanently */
866
864
__attribute__((warn_unused_result))
867
int lower_privileges_permanently(void){
868
int old_errno = errno;
865
error_t lower_privileges_permanently(void){
866
error_t old_errno = errno;
867
error_t ret_errno = 0;
870
868
if(setuid(uid) == -1){
873
871
errno = old_errno;
877
875
/* Helper function to add_local_route() and delete_local_route() */
1641
1628
__attribute__((nonnull, warn_unused_result))
1642
1629
bool get_flags(const char *ifname, struct ifreq *ifr){
1646
1633
int s = socket(PF_INET6, SOCK_DGRAM, IPPROTO_IP);
1649
1636
perror_plus("socket");
1653
strncpy(ifr->ifr_name, ifname, IF_NAMESIZE);
1654
ifr->ifr_name[IF_NAMESIZE-1] = '\0'; /* NUL terminate */
1640
strcpy(ifr->ifr_name, ifname);
1655
1641
ret = ioctl(s, SIOCGIFFLAGS, ifr);
1659
1645
perror_plus("ioctl SIOCGIFFLAGS");
1662
if((close(s) == -1) and debug){
1664
perror_plus("close");
1669
if((close(s) == -1) and debug){
1671
perror_plus("close");
1940
int devnull = (int)TEMP_FAILURE_RETRY(open("/dev/null", O_RDONLY));
1942
perror_plus("open(\"/dev/null\", O_RDONLY)");
1917
#if __GLIBC_PREREQ(2, 15)
1945
1918
int numhooks = scandirat(hookdir_fd, ".", &direntries,
1946
1919
runnable_hook, alphasort);
1920
#else /* not __GLIBC_PREREQ(2, 15) */
1921
int numhooks = scandir(hookdir, &direntries, runnable_hook,
1923
#endif /* not __GLIBC_PREREQ(2, 15) */
1924
#else /* not __GLIBC__ */
1925
int numhooks = scandir(hookdir, &direntries, runnable_hook,
1927
#endif /* not __GLIBC__ */
1947
1928
if(numhooks == -1){
1948
1929
perror_plus("scandir");
1952
1932
struct dirent *direntry;
1934
int devnull = (int)TEMP_FAILURE_RETRY(open("/dev/null", O_RDONLY));
1936
perror_plus("open(\"/dev/null\", O_RDONLY)");
1954
1939
for(int i = 0; i < numhooks; i++){
1955
1940
direntry = direntries[i];
2495
2478
.args_doc = "",
2496
2479
.doc = "Mandos client -- Get and decrypt"
2497
2480
" passwords from a Mandos server" };
2498
ret_errno = argp_parse(&argp, argc, argv,
2499
ARGP_IN_ORDER | ARGP_NO_HELP, 0, NULL);
2481
ret = argp_parse(&argp, argc, argv,
2482
ARGP_IN_ORDER | ARGP_NO_HELP, 0, NULL);
2506
2489
perror_plus("argp_parse");
2507
2490
exitcode = EX_OSERR;
3039
3017
/* Take down the network interfaces which were brought up */
3041
3019
char *interface = NULL;
3042
while((interface = argz_next(interfaces_to_take_down,
3043
interfaces_to_take_down_size,
3045
ret = take_down_interface(interface);
3020
while((interface=argz_next(interfaces_to_take_down,
3021
interfaces_to_take_down_size,
3023
ret_errno = take_down_interface(interface);
3048
3026
perror_plus("Failed to take down interface");
3065
3043
free(interfaces_to_take_down);
3066
3044
free(interfaces_hooks);
3068
void clean_dir_at(int base, const char * const dirname,
3070
struct dirent **direntries = NULL;
3072
int dir_fd = (int)TEMP_FAILURE_RETRY(openat(base, dirname,
3078
perror_plus("open");
3081
int numentries = scandirat(dir_fd, ".", &direntries,
3082
notdotentries, alphasort);
3083
if(numentries >= 0){
3084
for(int i = 0; i < numentries; i++){
3086
fprintf_plus(stderr, "Unlinking \"%s/%s\"\n",
3087
dirname, direntries[i]->d_name);
3089
dret = unlinkat(dir_fd, direntries[i]->d_name, 0);
3091
if(errno == EISDIR){
3092
dret = unlinkat(dir_fd, direntries[i]->d_name,
3095
if((dret == -1) and (errno == ENOTEMPTY)
3096
and (strcmp(direntries[i]->d_name, "private-keys-v1.d")
3097
== 0) and (level == 0)){
3098
/* Recurse only in this special case */
3099
clean_dir_at(dir_fd, direntries[i]->d_name, level+1);
3102
if((dret == -1) and (errno != ENOENT)){
3103
fprintf_plus(stderr, "unlink(\"%s/%s\"): %s\n", dirname,
3104
direntries[i]->d_name, strerror(errno));
3107
free(direntries[i]);
3110
/* need to clean even if 0 because man page doesn't specify */
3112
dret = unlinkat(base, dirname, AT_REMOVEDIR);
3113
if(dret == -1 and errno != ENOENT){
3114
perror_plus("rmdir");
3117
perror_plus("scandirat");
3122
3046
/* Removes the GPGME temp directory and all files inside */
3123
3047
if(tempdir != NULL){
3124
clean_dir_at(-1, tempdir, 0);
3048
struct dirent **direntries = NULL;
3049
int tempdir_fd = (int)TEMP_FAILURE_RETRY(open(tempdir, O_RDONLY
3053
if(tempdir_fd == -1){
3054
perror_plus("open");
3057
#if __GLIBC_PREREQ(2, 15)
3058
int numentries = scandirat(tempdir_fd, ".", &direntries,
3059
notdotentries, alphasort);
3060
#else /* not __GLIBC_PREREQ(2, 15) */
3061
int numentries = scandir(tempdir, &direntries, notdotentries,
3063
#endif /* not __GLIBC_PREREQ(2, 15) */
3064
#else /* not __GLIBC__ */
3065
int numentries = scandir(tempdir, &direntries, notdotentries,
3067
#endif /* not __GLIBC__ */
3068
if(numentries >= 0){
3069
for(int i = 0; i < numentries; i++){
3070
ret = unlinkat(tempdir_fd, direntries[i]->d_name, 0);
3072
fprintf_plus(stderr, "unlinkat(open(\"%s\", O_RDONLY),"
3073
" \"%s\", 0): %s\n", tempdir,
3074
direntries[i]->d_name, strerror(errno));
3076
free(direntries[i]);
3079
/* need to clean even if 0 because man page doesn't specify */
3081
if(numentries == -1){
3082
perror_plus("scandir");
3084
ret = rmdir(tempdir);
3085
if(ret == -1 and errno != ENOENT){
3086
perror_plus("rmdir");