/mandos/release : revision 45

1

/* -*- coding: utf-8 -*- */

2

/*

3

* Mandos-client - get and decrypt data from a Mandos server

3

* Mandos client - get and decrypt data from a Mandos server

4

*

5

* This program is partly derived from an example program for an Avahi

6

* service browser, downloaded from

9

* "browse_callback", and parts of "main".

10

*

11

* Everything else is

12

13

12

14

13

*

15

14

* This program is free software: you can redistribute it and/or

16

15

* modify it under the terms of the GNU General Public License as

33

32

#define _LARGEFILE_SOURCE

34

33

#define _FILE_OFFSET_BITS 64

35

34

36

#define _GNU_SOURCE /* TEMP_FAILURE_RETRY(), asprintf() */

35

#define _GNU_SOURCE /* TEMP_FAILURE_RETRY() */

37

36

38

#include <stdio.h> /* fprintf(), stderr, fwrite(),

39

stdout, ferror(), sscanf */

40

#include <stdint.h> /* uint16_t, uint32_t */

41

#include <stddef.h> /* NULL, size_t, ssize_t */

42

#include <stdlib.h> /* free(), EXIT_SUCCESS, EXIT_FAILURE,

43

srand() */

44

#include <stdbool.h> /* bool, true */

45

#include <string.h> /* memset(), strcmp(), strlen(),

46

strerror(), asprintf(), strcpy() */

47

#include <sys/ioctl.h> /* ioctl */

48

#include <sys/types.h> /* socket(), inet_pton(), sockaddr,

49

sockaddr_in6, PF_INET6,

50

SOCK_STREAM, INET6_ADDRSTRLEN,

51

uid_t, gid_t, open(), opendir(),

52

DIR */

53

#include <sys/stat.h> /* open() */

54

#include <sys/socket.h> /* socket(), struct sockaddr_in6,

55

struct in6_addr, inet_pton(),

56

connect() */

57

#include <fcntl.h> /* open() */

58

#include <dirent.h> /* opendir(), struct dirent, readdir()

59

*/

60

#include <inttypes.h> /* PRIu16, SCNu16 */

61

#include <assert.h> /* assert() */

62

#include <errno.h> /* perror(), errno */

63

#include <time.h> /* time() */

37

#include <stdio.h>

38

#include <assert.h>

39

#include <stdlib.h>

40

#include <time.h>

41

#include <net/if.h> /* if_nametoindex */

42

#include <sys/ioctl.h> /* ioctl, ifreq, SIOCGIFFLAGS, IFF_UP,

43

SIOCSIFFLAGS */

64

44

#include <net/if.h> /* ioctl, ifreq, SIOCGIFFLAGS, IFF_UP,

65

SIOCSIFFLAGS, if_indextoname(),

66

if_nametoindex(), IF_NAMESIZE */

67

#include <netinet/in.h>

68

#include <unistd.h> /* close(), SEEK_SET, off_t, write(),

69

getuid(), getgid(), setuid(),

70

setgid() */

71

#include <arpa/inet.h> /* inet_pton(), htons */

72

#include <iso646.h> /* not, and, or */

73

#include <argp.h> /* struct argp_option, error_t, struct

74

argp_state, struct argp,

75

argp_parse(), ARGP_KEY_ARG,

76

ARGP_KEY_END, ARGP_ERR_UNKNOWN */

45

SIOCSIFFLAGS */

77

46

78

/* Avahi */

79

/* All Avahi types, constants and functions

80

Avahi*, avahi_*,

81

AVAHI_* */

82

47

#include <avahi-core/core.h>

83

48

#include <avahi-core/lookup.h>

84

49

#include <avahi-core/log.h>

86

51

#include <avahi-common/malloc.h>

87

52

#include <avahi-common/error.h>

88

53

89

/* GnuTLS */

90

#include <gnutls/gnutls.h> /* All GnuTLS types, constants and

91

functions:

92

gnutls_*

93

init_gnutls_session(),

94

GNUTLS_* */

95

#include <gnutls/openpgp.h>

96

/* gnutls_certificate_set_openpgp_key_file(),

97

GNUTLS_OPENPGP_FMT_BASE64 */

54

/* Mandos client part */

55

#include <sys/types.h> /* socket(), inet_pton() */

56

#include <sys/socket.h> /* socket(), struct sockaddr_in6,

57

struct in6_addr, inet_pton() */

58

#include <gnutls/gnutls.h> /* All GnuTLS stuff */

59

#include <gnutls/openpgp.h> /* GnuTLS with openpgp stuff */

98

60

61

#include <unistd.h> /* close() */

62

#include <netinet/in.h>

63

#include <stdbool.h> /* true */

64

#include <string.h> /* memset */

65

#include <arpa/inet.h> /* inet_pton() */

66

#include <iso646.h> /* not */

67

#include <net/if.h> /* IF_NAMESIZE */

68

#include <argp.h> /* struct argp_option,

69

struct argp_state, struct argp,

70

argp_parse() */

99

71

/* GPGME */

100

#include <gpgme.h> /* All GPGME types, constants and

101

functions:

102

gpgme_*

103

GPGME_PROTOCOL_OpenPGP,

104

GPG_ERR_NO_* */

72

#include <errno.h> /* perror() */

73

#include <gpgme.h>

105

74

106

75

#define BUFFER_SIZE 256

107

76

108

#define PATHDIR "/conf/conf.d/mandos"

109

#define SECKEY "seckey.txt"

110

#define PUBKEY "pubkey.txt"

111

112

77

bool debug = false;

78

static const char *keydir = "/conf/conf.d/mandos";

113

79

static const char mandos_protocol_version[] = "1";

114

const char *argp_program_version = "mandos-client " VERSION;

80

const char *argp_program_version = "mandosclient 0.9";

115

81

const char *argp_program_bug_address = "<mandos@fukt.bsnet.se>";

116

82

117

83

/* Used for passing in values through the Avahi callback functions */

122

88

unsigned int dh_bits;

123

89

gnutls_dh_params_t dh_params;

124

90

const char *priority;

125

gpgme_ctx_t ctx;

126

91

} mandos_context;

127

92

128

93

/*

132

97

*/

133

98

size_t adjustbuffer(char **buffer, size_t buffer_length,

134

99

size_t buffer_capacity){

135

if(buffer_length + BUFFER_SIZE > buffer_capacity){

100

if (buffer_length + BUFFER_SIZE > buffer_capacity){

136

101

*buffer = realloc(*buffer, buffer_capacity + BUFFER_SIZE);

137

if(buffer == NULL){

102

if (buffer == NULL){

138

103

return 0;

139

104

}

140

105

buffer_capacity += BUFFER_SIZE;

143

108

}

144

109

145

110

/*

146

* Initialize GPGME.

111

* Decrypt OpenPGP data using keyrings in HOMEDIR.

112

* Returns -1 on error

147

113

*/

148

static bool init_gpgme(mandos_context *mc, const char *seckey,

149

const char *pubkey, const char *tempdir){

150

int ret;

114

static ssize_t pgp_packet_decrypt (const char *cryptotext,

115

size_t crypto_size,

116

char **plaintext,

117

const char *homedir){

118

gpgme_data_t dh_crypto, dh_plain;

119

gpgme_ctx_t ctx;

151

120

gpgme_error_t rc;

121

ssize_t ret;

122

size_t plaintext_capacity = 0;

123

ssize_t plaintext_length = 0;

152

124

gpgme_engine_info_t engine_info;

153

125

154

155

/*

156

* Helper function to insert pub and seckey to the enigne keyring.

157

*/

158

bool import_key(const char *filename){

159

int fd;

160

gpgme_data_t pgp_data;

161

162

fd = (int)TEMP_FAILURE_RETRY(open(filename, O_RDONLY));

163

if(fd == -1){

164

perror("open");

165

return false;

166

}

167

168

rc = gpgme_data_new_from_fd(&pgp_data, fd);

169

if(rc != GPG_ERR_NO_ERROR){

170

fprintf(stderr, "bad gpgme_data_new_from_fd: %s: %s\n",

171

gpgme_strsource(rc), gpgme_strerror(rc));

172

return false;

173

}

174

175

rc = gpgme_op_import(mc->ctx, pgp_data);

176

if(rc != GPG_ERR_NO_ERROR){

177

fprintf(stderr, "bad gpgme_op_import: %s: %s\n",

178

gpgme_strsource(rc), gpgme_strerror(rc));

179

return false;

180

}

181

182

ret = (int)TEMP_FAILURE_RETRY(close(fd));

183

if(ret == -1){

184

perror("close");

185

}

186

gpgme_data_release(pgp_data);

187

return true;

188

}

189

190

if(debug){

191

fprintf(stderr, "Initialize gpgme\n");

126

if (debug){

127

fprintf(stderr, "Trying to decrypt OpenPGP data\n");

192

128

}

193

129

194

130

/* Init GPGME */

195

131

gpgme_check_version(NULL);

196

132

rc = gpgme_engine_check_version(GPGME_PROTOCOL_OpenPGP);

197

if(rc != GPG_ERR_NO_ERROR){

133

if (rc != GPG_ERR_NO_ERROR){

198

134

fprintf(stderr, "bad gpgme_engine_check_version: %s: %s\n",

199

135

gpgme_strsource(rc), gpgme_strerror(rc));

200

return false;

136

return -1;

201

137

}

202

138

203

/* Set GPGME home directory for the OpenPGP engine only */

204

rc = gpgme_get_engine_info(&engine_info);

205

if(rc != GPG_ERR_NO_ERROR){

139

/* Set GPGME home directory for the OpenPGP engine only */

140

rc = gpgme_get_engine_info (&engine_info);

141

if (rc != GPG_ERR_NO_ERROR){

206

142

fprintf(stderr, "bad gpgme_get_engine_info: %s: %s\n",

207

143

gpgme_strsource(rc), gpgme_strerror(rc));

208

return false;

144

return -1;

209

145

}

210

146

while(engine_info != NULL){

211

147

if(engine_info->protocol == GPGME_PROTOCOL_OpenPGP){

212

148

gpgme_set_engine_info(GPGME_PROTOCOL_OpenPGP,

213

engine_info->file_name, tempdir);

149

engine_info->file_name, homedir);

214

150

break;

215

151

}

216

152

engine_info = engine_info->next;

217

153

}

218

154

if(engine_info == NULL){

219

fprintf(stderr, "Could not set GPGME home dir to %s\n", tempdir);

220

return false;

221

}

222

223

/* Create new GPGME "context" */

224

rc = gpgme_new(&(mc->ctx));

225

if(rc != GPG_ERR_NO_ERROR){

226

fprintf(stderr, "bad gpgme_new: %s: %s\n",

227

gpgme_strsource(rc), gpgme_strerror(rc));

228

return false;

229

}

230

231

if(not import_key(pubkey) or not import_key(seckey)){

232

return false;

233

}

234

235

return true;

236

}

237

238

/*

239

* Decrypt OpenPGP data.

240

* Returns -1 on error

241

*/

242

static ssize_t pgp_packet_decrypt(const mandos_context *mc,

243

const char *cryptotext,

244

size_t crypto_size,

245

char **plaintext){

246

gpgme_data_t dh_crypto, dh_plain;

247

gpgme_error_t rc;

248

ssize_t ret;

249

size_t plaintext_capacity = 0;

250

ssize_t plaintext_length = 0;

251

252

if(debug){

253

fprintf(stderr, "Trying to decrypt OpenPGP data\n");

155

fprintf(stderr, "Could not set GPGME home dir to %s\n", homedir);

156

return -1;

254

157

}

255

158

256

159

/* Create new GPGME data buffer from memory cryptotext */

257

160

rc = gpgme_data_new_from_mem(&dh_crypto, cryptotext, crypto_size,

258

161

0);

259

if(rc != GPG_ERR_NO_ERROR){

162

if (rc != GPG_ERR_NO_ERROR){

260

163

fprintf(stderr, "bad gpgme_data_new_from_mem: %s: %s\n",

261

164

gpgme_strsource(rc), gpgme_strerror(rc));

262

165

return -1;

264

167

265

168

/* Create new empty GPGME data buffer for the plaintext */

266

169

rc = gpgme_data_new(&dh_plain);

267

if(rc != GPG_ERR_NO_ERROR){

170

if (rc != GPG_ERR_NO_ERROR){

268

171

fprintf(stderr, "bad gpgme_data_new: %s: %s\n",

269

172

gpgme_strsource(rc), gpgme_strerror(rc));

270

173

gpgme_data_release(dh_crypto);

271

174

return -1;

272

175

}

273

176

177

/* Create new GPGME "context" */

178

rc = gpgme_new(&ctx);

179

if (rc != GPG_ERR_NO_ERROR){

180

fprintf(stderr, "bad gpgme_new: %s: %s\n",

181

gpgme_strsource(rc), gpgme_strerror(rc));

182

plaintext_length = -1;

183

goto decrypt_end;

184

}

185

274

186

/* Decrypt data from the cryptotext data buffer to the plaintext

275

187

data buffer */

276

rc = gpgme_op_decrypt(mc->ctx, dh_crypto, dh_plain);

277

if(rc != GPG_ERR_NO_ERROR){

188

rc = gpgme_op_decrypt(ctx, dh_crypto, dh_plain);

189

if (rc != GPG_ERR_NO_ERROR){

278

190

fprintf(stderr, "bad gpgme_op_decrypt: %s: %s\n",

279

191

gpgme_strsource(rc), gpgme_strerror(rc));

280

192

plaintext_length = -1;

281

if(debug){

282

gpgme_decrypt_result_t result;

283

result = gpgme_op_decrypt_result(mc->ctx);

284

if(result == NULL){

285

fprintf(stderr, "gpgme_op_decrypt_result failed\n");

286

} else {

287

fprintf(stderr, "Unsupported algorithm: %s\n",

288

result->unsupported_algorithm);

289

fprintf(stderr, "Wrong key usage: %u\n",

290

result->wrong_key_usage);

291

if(result->file_name != NULL){

292

fprintf(stderr, "File name: %s\n", result->file_name);

293

}

294

gpgme_recipient_t recipient;

295

recipient = result->recipients;

296

if(recipient){

297

while(recipient != NULL){

298

fprintf(stderr, "Public key algorithm: %s\n",

299

gpgme_pubkey_algo_name(recipient->pubkey_algo));

300

fprintf(stderr, "Key ID: %s\n", recipient->keyid);

301

fprintf(stderr, "Secret key available: %s\n",

302

recipient->status == GPG_ERR_NO_SECKEY

303

? "No" : "Yes");

304

recipient = recipient->next;

305

}

306

}

307

}

308

}

309

193

goto decrypt_end;

310

194

}

311

195

313

197

fprintf(stderr, "Decryption of OpenPGP data succeeded\n");

314

198

}

315

199

200

if (debug){

201

gpgme_decrypt_result_t result;

202

result = gpgme_op_decrypt_result(ctx);

203

if (result == NULL){

204

fprintf(stderr, "gpgme_op_decrypt_result failed\n");

205

} else {

206

fprintf(stderr, "Unsupported algorithm: %s\n",

207

result->unsupported_algorithm);

208

fprintf(stderr, "Wrong key usage: %d\n",

209

result->wrong_key_usage);

210

if(result->file_name != NULL){

211

fprintf(stderr, "File name: %s\n", result->file_name);

212

}

213

gpgme_recipient_t recipient;

214

recipient = result->recipients;

215

if(recipient){

216

while(recipient != NULL){

217

fprintf(stderr, "Public key algorithm: %s\n",

218

gpgme_pubkey_algo_name(recipient->pubkey_algo));

219

fprintf(stderr, "Key ID: %s\n", recipient->keyid);

220

fprintf(stderr, "Secret key available: %s\n",

221

recipient->status == GPG_ERR_NO_SECKEY

222

? "No" : "Yes");

223

recipient = recipient->next;

224

}

225

}

226

}

227

}

228

316

229

/* Seek back to the beginning of the GPGME plaintext data buffer */

317

if(gpgme_data_seek(dh_plain, (off_t)0, SEEK_SET) == -1){

318

perror("gpgme_data_seek");

230

if (gpgme_data_seek(dh_plain, (off_t) 0, SEEK_SET) == -1){

231

perror("pgpme_data_seek");

319

232

plaintext_length = -1;

320

233

goto decrypt_end;

321

234

}

325

238

plaintext_capacity = adjustbuffer(plaintext,

326

239

(size_t)plaintext_length,

327

240

plaintext_capacity);

328

if(plaintext_capacity == 0){

241

if (plaintext_capacity == 0){

329

242

perror("adjustbuffer");

330

243

plaintext_length = -1;

331

244

goto decrypt_end;

334

247

ret = gpgme_data_read(dh_plain, *plaintext + plaintext_length,

335

248

BUFFER_SIZE);

336

249

/* Print the data, if any */

337

if(ret == 0){

250

if (ret == 0){

338

251

/* EOF */

339

252

break;

340

253

}

345

258

}

346

259

plaintext_length += ret;

347

260

}

348

261

349

262

if(debug){

350

263

fprintf(stderr, "Decrypted password is: ");

351

264

for(ssize_t i = 0; i < plaintext_length; i++){

364

277

return plaintext_length;

365

278

}

366

279

367

static const char * safer_gnutls_strerror(int value) {

368

const char *ret = gnutls_strerror(value); /* Spurious warning */

369

if(ret == NULL)

280

static const char * safer_gnutls_strerror (int value) {

281

const char *ret = gnutls_strerror (value);

282

if (ret == NULL)

370

283

ret = "(unknown)";

371

284

return ret;

372

285

}

378

291

}

379

292

380

293

static int init_gnutls_global(mandos_context *mc,

381

const char *pubkeyfilename,

382

const char *seckeyfilename){

294

const char *pubkeyfile,

295

const char *seckeyfile){

383

296

int ret;

384

297

385

298

if(debug){

386

299

fprintf(stderr, "Initializing GnuTLS\n");

387

300

}

388

389

ret = gnutls_global_init();

390

if(ret != GNUTLS_E_SUCCESS) {

391

fprintf(stderr, "GnuTLS global_init: %s\n",

392

safer_gnutls_strerror(ret));

301

302

if ((ret = gnutls_global_init ())

303

!= GNUTLS_E_SUCCESS) {

304

fprintf (stderr, "GnuTLS global_init: %s\n",

305

safer_gnutls_strerror(ret));

393

306

return -1;

394

307

}

395

308

396

if(debug){

309

if (debug){

397

310

/* "Use a log level over 10 to enable all debugging options."

398

311

* - GnuTLS manual

399

312

*/

402

315

}

403

316

404

317

/* OpenPGP credentials */

405

gnutls_certificate_allocate_credentials(&mc->cred);

406

if(ret != GNUTLS_E_SUCCESS){

407

fprintf(stderr, "GnuTLS memory error: %s\n", /* Spurious

408

warning */

409

safer_gnutls_strerror(ret));

410

gnutls_global_deinit();

318

if ((ret = gnutls_certificate_allocate_credentials (&mc->cred))

319

!= GNUTLS_E_SUCCESS) {

320

fprintf (stderr, "GnuTLS memory error: %s\n",

321

safer_gnutls_strerror(ret));

411

322

return -1;

412

323

}

413

324

414

325

if(debug){

415

fprintf(stderr, "Attempting to use OpenPGP public key %s and"

416

" secret key %s as GnuTLS credentials\n", pubkeyfilename,

417

seckeyfilename);

326

fprintf(stderr, "Attempting to use OpenPGP certificate %s"

327

" and keyfile %s as GnuTLS credentials\n", pubkeyfile,

328

seckeyfile);

418

329

}

419

330

420

331

ret = gnutls_certificate_set_openpgp_key_file

421

(mc->cred, pubkeyfilename, seckeyfilename,

422

GNUTLS_OPENPGP_FMT_BASE64);

423

if(ret != GNUTLS_E_SUCCESS) {

332

(mc->cred, pubkeyfile, seckeyfile, GNUTLS_OPENPGP_FMT_BASE64);

333

if (ret != GNUTLS_E_SUCCESS) {

424

334

fprintf(stderr,

425

335

"Error[%d] while reading the OpenPGP key pair ('%s',"

426

" '%s')\n", ret, pubkeyfilename, seckeyfilename);

427

fprintf(stderr, "The GnuTLS error is: %s\n",

336

" '%s')\n", ret, pubkeyfile, seckeyfile);

337

fprintf(stdout, "The GnuTLS error is: %s\n",

428

338

safer_gnutls_strerror(ret));

429

goto globalfail;

339

return -1;

430

340

}

431

341

432

342

/* GnuTLS server initialization */

433

343

ret = gnutls_dh_params_init(&mc->dh_params);

434

if(ret != GNUTLS_E_SUCCESS) {

435

fprintf(stderr, "Error in GnuTLS DH parameter initialization:"

436

" %s\n", safer_gnutls_strerror(ret));

437

goto globalfail;

344

if (ret != GNUTLS_E_SUCCESS) {

345

fprintf (stderr, "Error in GnuTLS DH parameter initialization:"

346

" %s\n", safer_gnutls_strerror(ret));

347

return -1;

438

348

}

439

349

ret = gnutls_dh_params_generate2(mc->dh_params, mc->dh_bits);

440

if(ret != GNUTLS_E_SUCCESS) {

441

fprintf(stderr, "Error in GnuTLS prime generation: %s\n",

442

safer_gnutls_strerror(ret));

443

goto globalfail;

350

if (ret != GNUTLS_E_SUCCESS) {

351

fprintf (stderr, "Error in GnuTLS prime generation: %s\n",

352

safer_gnutls_strerror(ret));

353

return -1;

444

354

}

445

355

446

356

gnutls_certificate_set_dh_params(mc->cred, mc->dh_params);

447

357

448

358

return 0;

449

450

globalfail:

451

452

gnutls_certificate_free_credentials(mc->cred);

453

gnutls_global_deinit();

454

gnutls_dh_params_deinit(mc->dh_params);

455

return -1;

456

359

}

457

360

458

361

static int init_gnutls_session(mandos_context *mc,

460

363

int ret;

461

364

/* GnuTLS session creation */

462

365

ret = gnutls_init(session, GNUTLS_SERVER);

463

if(ret != GNUTLS_E_SUCCESS){

366

if (ret != GNUTLS_E_SUCCESS){

464

367

fprintf(stderr, "Error in GnuTLS session initialization: %s\n",

465

368

safer_gnutls_strerror(ret));

466

369

}

468

371

{

469

372

const char *err;

470

373

ret = gnutls_priority_set_direct(*session, mc->priority, &err);

471

if(ret != GNUTLS_E_SUCCESS) {

374

if (ret != GNUTLS_E_SUCCESS) {

472

375

fprintf(stderr, "Syntax error at: %s\n", err);

473

376

fprintf(stderr, "GnuTLS error: %s\n",

474

377

safer_gnutls_strerror(ret));

475

gnutls_deinit(*session);

476

378

return -1;

477

379

}

478

380

}

479

381

480

382

ret = gnutls_credentials_set(*session, GNUTLS_CRD_CERTIFICATE,

481

383

mc->cred);

482

if(ret != GNUTLS_E_SUCCESS) {

384

if (ret != GNUTLS_E_SUCCESS) {

483

385

fprintf(stderr, "Error setting GnuTLS credentials: %s\n",

484

386

safer_gnutls_strerror(ret));

485

gnutls_deinit(*session);

486

387

return -1;

487

388

}

488

389

489

390

/* ignore client certificate if any. */

490

gnutls_certificate_server_set_request(*session,

491

GNUTLS_CERT_IGNORE);

391

gnutls_certificate_server_set_request (*session,

392

GNUTLS_CERT_IGNORE);

492

393

493

gnutls_dh_set_prime_bits(*session, mc->dh_bits);

394

gnutls_dh_set_prime_bits (*session, mc->dh_bits);

494

395

495

396

return 0;

496

397

}

504

405

AvahiIfIndex if_index,

505

406

mandos_context *mc){

506

407

int ret, tcp_sd;

507

ssize_t sret;

508

408

union { struct sockaddr in; struct sockaddr_in6 in6; } to;

509

409

char *buffer = NULL;

510

410

char *decrypted_buffer;

516

416

char interface[IF_NAMESIZE];

517

417

gnutls_session_t session;

518

418

519

ret = init_gnutls_session(mc, &session);

520

if(ret != 0){

419

ret = init_gnutls_session (mc, &session);

420

if (ret != 0){

521

421

return -1;

522

422

}

523

423

524

424

if(debug){

525

fprintf(stderr, "Setting up a tcp connection to %s, port %" PRIu16

526

"\n", ip, port);

425

fprintf(stderr, "Setting up a tcp connection to %s, port %d\n",

426

ip, port);

527

427

}

528

428

529

429

tcp_sd = socket(PF_INET6, SOCK_STREAM, 0);

531

431

perror("socket");

532

432

return -1;

533

433

}

534

434

535

435

if(debug){

536

436

if(if_indextoname((unsigned int)if_index, interface) == NULL){

537

437

perror("if_indextoname");

540

440

fprintf(stderr, "Binding to interface %s\n", interface);

541

441

}

542

442

543

memset(&to, 0, sizeof(to));

443

memset(&to,0,sizeof(to)); /* Spurious warning */

544

444

to.in6.sin6_family = AF_INET6;

545

445

/* It would be nice to have a way to detect if we were passed an

546

446

IPv4 address here. Now we assume an IPv6 address. */

547

447

ret = inet_pton(AF_INET6, ip, &to.in6.sin6_addr);

548

if(ret < 0 ){

448

if (ret < 0 ){

549

449

perror("inet_pton");

550

450

return -1;

551

451

}

553

453

fprintf(stderr, "Bad address: %s\n", ip);

554

454

return -1;

555

455

}

556

to.in6.sin6_port = htons(port); /* Spurious warning */

456

to.in6.sin6_port = htons(port); /* Spurious warning */

557

457

558

458

to.in6.sin6_scope_id = (uint32_t)if_index;

559

459

560

460

if(debug){

561

fprintf(stderr, "Connection to: %s, port %" PRIu16 "\n", ip,

562

port);

461

fprintf(stderr, "Connection to: %s, port %d\n", ip, port);

563

462

char addrstr[INET6_ADDRSTRLEN] = "";

564

463

if(inet_ntop(to.in6.sin6_family, &(to.in6.sin6_addr), addrstr,

565

464

sizeof(addrstr)) == NULL){

572

471

}

573

472

574

473

ret = connect(tcp_sd, &to.in, sizeof(to));

575

if(ret < 0){

474

if (ret < 0){

576

475

perror("connect");

577

476

return -1;

578

477

}

579

478

580

479

const char *out = mandos_protocol_version;

581

480

written = 0;

582

while(true){

481

while (true){

583

482

size_t out_size = strlen(out);

584

ret = (int)TEMP_FAILURE_RETRY(write(tcp_sd, out + written,

483

ret = TEMP_FAILURE_RETRY(write(tcp_sd, out + written,

585

484

out_size - written));

586

if(ret == -1){

485

if (ret == -1){

587

486

perror("write");

588

487

retval = -1;

589

488

goto mandos_end;

592

491

if(written < out_size){

593

492

continue;

594

493

} else {

595

if(out == mandos_protocol_version){

494

if (out == mandos_protocol_version){

596

495

written = 0;

597

496

out = "\r\n";

598

497

} else {

600

499

}

601

500

}

602

501

}

603

502

604

503

if(debug){

605

504

fprintf(stderr, "Establishing TLS session with %s\n", ip);

606

505

}

607

506

608

gnutls_transport_set_ptr(session, (gnutls_transport_ptr_t) tcp_sd);

609

610

do{

611

ret = gnutls_handshake(session);

612

} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);

613

614

if(ret != GNUTLS_E_SUCCESS){

507

gnutls_transport_set_ptr (session, (gnutls_transport_ptr_t) tcp_sd);

508

509

ret = gnutls_handshake (session);

510

511

if (ret != GNUTLS_E_SUCCESS){

615

512

if(debug){

616

513

fprintf(stderr, "*** GnuTLS Handshake failed ***\n");

617

gnutls_perror(ret);

514

gnutls_perror (ret);

618

515

}

619

516

retval = -1;

620

517

goto mandos_end;

626

523

fprintf(stderr, "Retrieving pgp encrypted password from %s\n",

627

524

ip);

628

525

}

629

526

630

527

while(true){

631

528

buffer_capacity = adjustbuffer(&buffer, buffer_length,

632

529

buffer_capacity);

633

if(buffer_capacity == 0){

530

if (buffer_capacity == 0){

634

531

perror("adjustbuffer");

635

532

retval = -1;

636

533

goto mandos_end;

637

534

}

638

535

639

sret = gnutls_record_recv(session, buffer+buffer_length,

640

BUFFER_SIZE);

641

if(sret == 0){

536

ret = gnutls_record_recv(session, buffer+buffer_length,

537

BUFFER_SIZE);

538

if (ret == 0){

642

539

break;

643

540

}

644

if(sret < 0){

645

switch(sret){

541

if (ret < 0){

542

switch(ret){

646

543

case GNUTLS_E_INTERRUPTED:

647

544

case GNUTLS_E_AGAIN:

648

545

break;

649

546

case GNUTLS_E_REHANDSHAKE:

650

do{

651

ret = gnutls_handshake(session);

652

} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);

653

if(ret < 0){

547

ret = gnutls_handshake (session);

548

if (ret < 0){

654

549

fprintf(stderr, "*** GnuTLS Re-handshake failed ***\n");

655

gnutls_perror(ret);

550

gnutls_perror (ret);

656

551

retval = -1;

657

552

goto mandos_end;

658

553

}

661

556

fprintf(stderr, "Unknown error while reading data from"

662

557

" encrypted session with Mandos server\n");

663

558

retval = -1;

664

gnutls_bye(session, GNUTLS_SHUT_RDWR);

559

gnutls_bye (session, GNUTLS_SHUT_RDWR);

665

560

goto mandos_end;

666

561

}

667

562

} else {

668

buffer_length += (size_t) sret;

563

buffer_length += (size_t) ret;

669

564

}

670

565

}

671

566

673

568

fprintf(stderr, "Closing TLS session\n");

674

569

}

675

570

676

gnutls_bye(session, GNUTLS_SHUT_RDWR);

571

gnutls_bye (session, GNUTLS_SHUT_RDWR);

677

572

678

if(buffer_length > 0){

679

decrypted_buffer_size = pgp_packet_decrypt(mc, buffer,

573

if (buffer_length > 0){

574

decrypted_buffer_size = pgp_packet_decrypt(buffer,

680

575

buffer_length,

681

&decrypted_buffer);

682

if(decrypted_buffer_size >= 0){

576

&decrypted_buffer,

577

keydir);

578

if (decrypted_buffer_size >= 0){

683

579

written = 0;

684

580

while(written < (size_t) decrypted_buffer_size){

685

ret = (int)fwrite(decrypted_buffer + written, 1,

686

(size_t)decrypted_buffer_size - written,

687

stdout);

581

ret = (int)fwrite (decrypted_buffer + written, 1,

582

(size_t)decrypted_buffer_size - written,

583

stdout);

688

584

if(ret == 0 and ferror(stdout)){

689

585

if(debug){

690

586

fprintf(stderr, "Error writing encrypted data: %s\n",

699

595

} else {

700

596

retval = -1;

701

597

}

702

} else {

703

retval = -1;

704

598

}

705

599

706

600

/* Shutdown procedure */

707

601

708

602

mandos_end:

709

603

free(buffer);

710

ret = (int)TEMP_FAILURE_RETRY(close(tcp_sd));

711

if(ret == -1){

712

perror("close");

713

}

714

gnutls_deinit(session);

604

close(tcp_sd);

605

gnutls_deinit (session);

606

gnutls_certificate_free_credentials (mc->cred);

607

gnutls_global_deinit ();

715

608

return retval;

716

609

}

717

610

730

623

flags,

731

624

void* userdata) {

732

625

mandos_context *mc = userdata;

733

assert(r);

626

assert(r); /* Spurious warning */

734

627

735

628

/* Called whenever a service has been resolved successfully or

736

629

timed out */

737

630

738

switch(event) {

631

switch (event) {

739

632

default:

740

633

case AVAHI_RESOLVER_FAILURE:

741

634

fprintf(stderr, "(Avahi Resolver) Failed to resolve service '%s'"

748

641

char ip[AVAHI_ADDRESS_STR_MAX];

749

642

avahi_address_snprint(ip, sizeof(ip), address);

750

643

if(debug){

751

fprintf(stderr, "Mandos server \"%s\" found on %s (%s, %"

752

PRIu16 ") on port %d\n", name, host_name, ip,

753

interface, port);

644

fprintf(stderr, "Mandos server \"%s\" found on %s (%s, %d) on"

645

" port %d\n", name, host_name, ip, interface, port);

754

646

}

755

647

int ret = start_mandos_communication(ip, port, interface, mc);

756

if(ret == 0){

757

avahi_simple_poll_quit(mc->simple_poll);

648

if (ret == 0){

649

exit(EXIT_SUCCESS);

758

650

}

759

651

}

760

652

}

772

664

flags,

773

665

void* userdata) {

774

666

mandos_context *mc = userdata;

775

assert(b);

667

assert(b); /* Spurious warning */

776

668

777

669

/* Called whenever a new services becomes available on the LAN or

778

670

is removed from the LAN */

779

671

780

switch(event) {

672

switch (event) {

781

673

default:

782

674

case AVAHI_BROWSER_FAILURE:

783

675

792

684

the callback function is called the Avahi server will free the

793

685

resolver for us. */

794

686

795

if(!(avahi_s_service_resolver_new(mc->server, interface,

687

if (!(avahi_s_service_resolver_new(mc->server, interface,

796

688

protocol, name, type, domain,

797

689

AVAHI_PROTO_INET6, 0,

798

690

resolve_callback, mc)))

812

704

}

813

705

}

814

706

707

/* Combines file name and path and returns the malloced new

708

string. some sane checks could/should be added */

709

static const char *combinepath(const char *first, const char *second){

710

size_t f_len = strlen(first);

711

size_t s_len = strlen(second);

712

char *tmp = malloc(f_len + s_len + 2);

713

if (tmp == NULL){

714

return NULL;

715

}

716

if(f_len > 0){

717

memcpy(tmp, first, f_len); /* Spurious warning */

718

}

719

tmp[f_len] = '/';

720

if(s_len > 0){

721

memcpy(tmp + f_len + 1, second, s_len); /* Spurious warning */

722

}

723

tmp[f_len + 1 + s_len] = '\0';

724

return tmp;

725

}

726

727

815

728

int main(int argc, char *argv[]){

816

729

AvahiSServiceBrowser *sb = NULL;

817

730

int error;

823

736

uid_t uid;

824

737

gid_t gid;

825

738

char *connect_to = NULL;

826

char tempdir[] = "/tmp/mandosXXXXXX";

827

739

AvahiIfIndex if_index = AVAHI_IF_UNSPEC;

828

const char *seckey = PATHDIR "/" SECKEY;

829

const char *pubkey = PATHDIR "/" PUBKEY;

830

740

const char *pubkeyfile = "pubkey.txt";

741

const char *seckeyfile = "seckey.txt";

831

742

mandos_context mc = { .simple_poll = NULL, .server = NULL,

832

.dh_bits = 1024, .priority = "SECURE256"

833

":!CTYPE-X.509:+CTYPE-OPENPGP" };

834

bool gnutls_initalized = false;

835

bool gpgme_initalized = false;

743

.dh_bits = 1024, .priority = "SECURE256"};

836

744

837

745

{

838

746

struct argp_option options[] = {

839

747

{ .name = "debug", .key = 128,

840

748

.doc = "Debug mode", .group = 3 },

841

749

{ .name = "connect", .key = 'c',

842

.arg = "ADDRESS:PORT",

843

.doc = "Connect directly to a specific Mandos server",

750

.arg = "IP",

751

.doc = "Connect directly to a sepcified mandos server",

844

752

.group = 1 },

845

753

{ .name = "interface", .key = 'i',

846

.arg = "NAME",

847

.doc = "Interface that will be used to search for Mandos"

848

" servers",

754

.arg = "INTERFACE",

755

.doc = "Interface that Avahi will conntect through",

756

.group = 1 },

757

{ .name = "keydir", .key = 'd',

758

.arg = "KEYDIR",

759

.doc = "Directory where the openpgp keyring is",

849

760

.group = 1 },

850

761

{ .name = "seckey", .key = 's',

851

.arg = "FILE",

852

.doc = "OpenPGP secret key file base name",

762

.arg = "SECKEY",

763

.doc = "Secret openpgp key for gnutls authentication",

853

764

.group = 1 },

854

765

{ .name = "pubkey", .key = 'p',

855

.arg = "FILE",

856

.doc = "OpenPGP public key file base name",

766

.arg = "PUBKEY",

767

.doc = "Public openpgp key for gnutls authentication",

857

768

.group = 2 },

858

769

{ .name = "dh-bits", .key = 129,

859

770

.arg = "BITS",

860

.doc = "Bit length of the prime number used in the"

861

" Diffie-Hellman key exchange",

771

.doc = "dh-bits to use in gnutls communication",

862

772

.group = 2 },

863

773

{ .name = "priority", .key = 130,

864

.arg = "STRING",

865

.doc = "GnuTLS priority string for the TLS handshake",

866

.group = 1 },

774

.arg = "PRIORITY",

775

.doc = "GNUTLS priority", .group = 1 },

867

776

{ .name = NULL }

868

777

};

778

869

779

870

error_t parse_opt(int key, char *arg,

871

struct argp_state *state) {

872

switch(key) {

873

case 128: /* --debug */

780

error_t parse_opt (int key, char *arg,

781

struct argp_state *state) {

782

/* Get the INPUT argument from `argp_parse', which we know is

783

a pointer to our plugin list pointer. */

784

switch (key) {

785

case 128:

874

786

debug = true;

875

787

break;

876

case 'c': /* --connect */

788

case 'c':

877

789

connect_to = arg;

878

790

break;

879

case 'i': /* --interface */

791

case 'i':

880

792

interface = arg;

881

793

break;

882

case 's': /* --seckey */

883

seckey = arg;

884

break;

885

case 'p': /* --pubkey */

886

pubkey = arg;

887

break;

888

case 129: /* --dh-bits */

889

ret = sscanf(arg, "%u", &mc.dh_bits);

890

if(ret != 1){

891

fprintf(stderr, "Bad number of DH bits\n");

794

case 'd':

795

keydir = arg;

796

break;

797

case 's':

798

seckeyfile = arg;

799

break;

800

case 'p':

801

pubkeyfile = arg;

802

break;

803

case 129:

804

errno = 0;

805

mc.dh_bits = (unsigned int) strtol(arg, NULL, 10);

806

if (errno){

807

perror("strtol");

892

808

exit(EXIT_FAILURE);

893

809

}

894

810

break;

895

case 130: /* --priority */

811

case 130:

896

812

mc.priority = arg;

897

813

break;

898

814

case ARGP_KEY_ARG:

899

argp_usage(state);

900

case ARGP_KEY_END:

815

argp_usage (state);

901

816

break;

817

case ARGP_KEY_END:

818

break;

902

819

default:

903

820

return ARGP_ERR_UNKNOWN;

904

821

}

905

822

return 0;

906

823

}

907

824

908

825

struct argp argp = { .options = options, .parser = parse_opt,

909

826

.args_doc = "",

910

827

.doc = "Mandos client -- Get and decrypt"

911

" passwords from a Mandos server" };

912

ret = argp_parse(&argp, argc, argv, 0, 0, NULL);

913

if(ret == ARGP_ERR_UNKNOWN){

914

fprintf(stderr, "Unknown error while parsing arguments\n");

915

exitcode = EXIT_FAILURE;

916

goto end;

917

}

918

}

919

920

/* If the interface is down, bring it up */

921

{

922

sd = socket(PF_INET6, SOCK_DGRAM, IPPROTO_IP);

923

if(sd < 0) {

924

perror("socket");

925

exitcode = EXIT_FAILURE;

926

goto end;

927

}

928

strcpy(network.ifr_name, interface);

929

ret = ioctl(sd, SIOCGIFFLAGS, &network);

930

if(ret == -1){

931

perror("ioctl SIOCGIFFLAGS");

932

exitcode = EXIT_FAILURE;

933

goto end;

934

}

935

if((network.ifr_flags & IFF_UP) == 0){

936

network.ifr_flags |= IFF_UP;

937

ret = ioctl(sd, SIOCSIFFLAGS, &network);

938

if(ret == -1){

939

perror("ioctl SIOCSIFFLAGS");

940

exitcode = EXIT_FAILURE;

941

goto end;

942

}

943

}

944

ret = (int)TEMP_FAILURE_RETRY(close(sd));

945

if(ret == -1){

946

perror("close");

947

}

948

}

949

828

" passwords from mandos server" };

829

argp_parse (&argp, argc, argv, 0, 0, NULL);

830

}

831

832

pubkeyfile = combinepath(keydir, pubkeyfile);

833

if (pubkeyfile == NULL){

834

perror("combinepath");

835

exitcode = EXIT_FAILURE;

836

goto end;

837

}

838

839

seckeyfile = combinepath(keydir, seckeyfile);

840

if (seckeyfile == NULL){

841

perror("combinepath");

842

goto end;

843

}

844

845

ret = init_gnutls_global(&mc, pubkeyfile, seckeyfile);

846

if (ret == -1){

847

fprintf(stderr, "init_gnutls_global\n");

848

goto end;

849

}

850

950

851

uid = getuid();

951

852

gid = getgid();

952

853

953

854

ret = setuid(uid);

954

if(ret == -1){

855

if (ret == -1){

955

856

perror("setuid");

956

857

}

957

858

958

859

setgid(gid);

959

if(ret == -1){

860

if (ret == -1){

960

861

perror("setgid");

961

862

}

962

863

963

ret = init_gnutls_global(&mc, pubkey, seckey);

964

if(ret == -1){

965

fprintf(stderr, "init_gnutls_global failed\n");

966

exitcode = EXIT_FAILURE;

967

goto end;

968

} else {

969

gnutls_initalized = true;

970

}

971

972

if(mkdtemp(tempdir) == NULL){

973

perror("mkdtemp");

974

tempdir[0] = '\0';

975

goto end;

976

}

977

978

if(not init_gpgme(&mc, pubkey, seckey, tempdir)){

979

fprintf(stderr, "gpgme_initalized failed\n");

980

exitcode = EXIT_FAILURE;

981

goto end;

982

} else {

983

gpgme_initalized = true;

984

}

985

986

864

if_index = (AvahiIfIndex) if_nametoindex(interface);

987

865

if(if_index == 0){

988

866

fprintf(stderr, "No such interface: \"%s\"\n", interface);

998

876

exitcode = EXIT_FAILURE;

999

877

goto end;

1000

878

}

1001

uint16_t port;

1002

ret = sscanf(address+1, "%" SCNu16, &port);

1003

if(ret != 1){

1004

fprintf(stderr, "Bad port number\n");

879

errno = 0;

880

uint16_t port = (uint16_t) strtol(address+1, NULL, 10);

881

if(errno){

882

perror("Bad port number");

1005

883

exitcode = EXIT_FAILURE;

1006

884

goto end;

1007

885

}

1016

894

goto end;

1017

895

}

1018

896

1019

if(not debug){

897

/* If the interface is down, bring it up */

898

{

899

sd = socket(PF_INET6, SOCK_DGRAM, IPPROTO_IP);

900

if(sd < 0) {

901

perror("socket");

902

exitcode = EXIT_FAILURE;

903

goto end;

904

}

905

strcpy(network.ifr_name, interface); /* Spurious warning */

906

ret = ioctl(sd, SIOCGIFFLAGS, &network);

907

if(ret == -1){

908

perror("ioctl SIOCGIFFLAGS");

909

exitcode = EXIT_FAILURE;

910

goto end;

911

}

912

if((network.ifr_flags & IFF_UP) == 0){

913

network.ifr_flags |= IFF_UP;

914

ret = ioctl(sd, SIOCSIFFLAGS, &network);

915

if(ret == -1){

916

perror("ioctl SIOCSIFFLAGS");

917

exitcode = EXIT_FAILURE;

918

goto end;

919

}

920

}

921

close(sd);

922

}

923

924

if (not debug){

1020

925

avahi_set_log_function(empty_log);

1021

926

}

1022

927

1025

930

1026

931

/* Allocate main Avahi loop object */

1027

932

mc.simple_poll = avahi_simple_poll_new();

1028

if(mc.simple_poll == NULL) {

933

if (mc.simple_poll == NULL) {

1029

934

fprintf(stderr, "Avahi: Failed to create simple poll"

1030

935

" object.\n");

1031

936

exitcode = EXIT_FAILURE;

1032

937

goto end;

1033

938

}

1034

939

1035

940

{

1036

941

AvahiServerConfig config;

1037

942

/* Do not publish any local Zeroconf records */

1040

945

config.publish_addresses = 0;

1041

946

config.publish_workstation = 0;

1042

947

config.publish_domain = 0;

1043

948

1044

949

/* Allocate a new server */

1045

950

mc.server = avahi_server_new(avahi_simple_poll_get

1046

951

(mc.simple_poll), &config, NULL,

1047

952

NULL, &error);

1048

953

1049

954

/* Free the Avahi configuration data */

1050

955

avahi_server_config_free(&config);

1051

956

}

1052

957

1053

958

/* Check if creating the Avahi server object succeeded */

1054

if(mc.server == NULL) {

959

if (mc.server == NULL) {

1055

960

fprintf(stderr, "Failed to create Avahi server: %s\n",

1056

961

avahi_strerror(error));

1057

962

exitcode = EXIT_FAILURE;

1063

968

AVAHI_PROTO_INET6,

1064

969

"_mandos._tcp", NULL, 0,

1065

970

browse_callback, &mc);

1066

if(sb == NULL) {

971

if (sb == NULL) {

1067

972

fprintf(stderr, "Failed to create service browser: %s\n",

1068

973

avahi_strerror(avahi_server_errno(mc.server)));

1069

974

exitcode = EXIT_FAILURE;

1071

976

}

1072

977

1073

978

/* Run the main loop */

1074

1075

if(debug){

979

980

if (debug){

1076

981

fprintf(stderr, "Starting Avahi loop search\n");

1077

982

}

1078

983

1079

984

avahi_simple_poll_loop(mc.simple_poll);

1080

985

1081

986

end:

1082

1083

if(debug){

987

988

if (debug){

1084

989

fprintf(stderr, "%s exiting\n", argv[0]);

1085

990

}

1086

991

1087

992

/* Cleanup things */

1088

if(sb != NULL)

993

if (sb != NULL)

1089

994

avahi_s_service_browser_free(sb);

1090

995

1091

if(mc.server != NULL)

996

if (mc.server != NULL)

1092

997

avahi_server_free(mc.server);

1093

1094

if(mc.simple_poll != NULL)

998

999

if (mc.simple_poll != NULL)

1095

1000

avahi_simple_poll_free(mc.simple_poll);

1096

1097

if(gnutls_initalized){

1098

gnutls_certificate_free_credentials(mc.cred);

1099

gnutls_global_deinit();

1100

gnutls_dh_params_deinit(mc.dh_params);

1101

}

1102

1103

if(gpgme_initalized){

1104

gpgme_release(mc.ctx);

1105

}

1106

1107

/* Removes the temp directory used by GPGME */

1108

if(tempdir[0] != '\0'){

1109

DIR *d;

1110

struct dirent *direntry;

1111

d = opendir(tempdir);

1112

if(d == NULL){

1113

if(errno != ENOENT){

1114

perror("opendir");

1115

}

1116

} else {

1117

while(true){

1118

direntry = readdir(d);

1119

if(direntry == NULL){

1120

break;

1121

}

1122

if(direntry->d_type == DT_REG){

1123

char *fullname = NULL;

1124

ret = asprintf(&fullname, "%s/%s", tempdir,

1125

direntry->d_name);

1126

if(ret < 0){

1127

perror("asprintf");

1128

continue;

1129

}

1130

ret = unlink(fullname);

1131

if(ret == -1){

1132

fprintf(stderr, "unlink(\"%s\"): %s",

1133

fullname, strerror(errno));

1134

}

1135

free(fullname);

1136

}

1137

}

1138

closedir(d);

1139

}

1140

ret = rmdir(tempdir);

1141

if(ret == -1 and errno != ENOENT){

1142

perror("rmdir");

1143

}

1144

}

1145

1001

free(pubkeyfile);

1002

free(seckeyfile);

1003

1146

1004

return exitcode;

1147

1005

}