To get this branch, use:
bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk
« back to all changes in this revision
Viewing changes to plugins.d/password-request.c
- browse files at revision 110
- compare with another revision
- download diff
- download tarball
- view history from revision 110
- Committer: Teddy Hogeborn
- Date: 2008-08-29 05:53:59 UTC
- Revision ID: teddy@fukt.bsnet.se-20080829055359-wkdasnyxtylmnxus
* mandos.xml (EXAMPLE): Replaced all occurences of command name with
"&COMMANDNAME;".
* plugins.d/password-prompt.c (main): Improved some documentation
strings. Do perror() of
tcgetattr() fails. Add debug
output if interrupted by signal.
Loop over write() instead of
using fwrite() when outputting
password. Add debug output if
getline() returns 0, unless it
was caused by a signal. Add
exit status code to debug
output.
* plugins.d/password-prompt.xml: Changed all single quotes to double
quotes for consistency. Removed
<?xml-stylesheet>.
(ENTITY TIMESTAMP): New. Automatically updated by Emacs time-stamp
by using Emacs local variables.
(/refentry/refentryinfo/title): Changed to "Mandos Manual".
(/refentry/refentryinfo/productname): Changed to "Mandos".
(/refentry/refentryinfo/date): New; set to "&TIMESTAMP;".
(/refentry/refentryinfo/copyright): Split copyright holders.
(/refentry/refnamediv/refpurpose): Improved wording.
(SYNOPSIS): Fix to use correct markup. Add short options.
(DESCRIPTION, OPTIONS): Improved wording.
(OPTIONS): Improved wording. Use more correct markup. Document
short options.
(EXIT STATUS): Add text.
(ENVIRONMENT): Document use of "cryptsource" and "crypttarget".
(FILES): REMOVED.
(BUGS): Add text.
(EXAMPLE): Added some examples.
(SECURITY): Added text.
(SEE ALSO): Remove reference to mandos(8). Add reference to
crypttab(5).
"&COMMANDNAME;".
* plugins.d/password-prompt.c (main): Improved some documentation
strings. Do perror() of
tcgetattr() fails. Add debug
output if interrupted by signal.
Loop over write() instead of
using fwrite() when outputting
password. Add debug output if
getline() returns 0, unless it
was caused by a signal. Add
exit status code to debug
output.
* plugins.d/password-prompt.xml: Changed all single quotes to double
quotes for consistency. Removed
<?xml-stylesheet>.
(ENTITY TIMESTAMP): New. Automatically updated by Emacs time-stamp
by using Emacs local variables.
(/refentry/refentryinfo/title): Changed to "Mandos Manual".
(/refentry/refentryinfo/productname): Changed to "Mandos".
(/refentry/refentryinfo/date): New; set to "&TIMESTAMP;".
(/refentry/refentryinfo/copyright): Split copyright holders.
(/refentry/refnamediv/refpurpose): Improved wording.
(SYNOPSIS): Fix to use correct markup. Add short options.
(DESCRIPTION, OPTIONS): Improved wording.
(OPTIONS): Improved wording. Use more correct markup. Document
short options.
(EXIT STATUS): Add text.
(ENVIRONMENT): Document use of "cryptsource" and "crypttarget".
(FILES): REMOVED.
(BUGS): Add text.
(EXAMPLE): Added some examples.
(SECURITY): Added text.
(SEE ALSO): Remove reference to mandos(8). Add reference to
crypttab(5).
- files added:
- plugins.d/usplash
- files removed:
- .bzr-builddeb
- debian
- debian/po
- files renamed:
- plugins.d/mandos-client.c => plugins.d/password-request.c
- plugins.d/mandos-client.xml => plugins.d/password-request.xml
- files modified:
- .bzrignore
added
removed
plugins.d/password-request.c
1
1
/* -*- coding: utf-8 -*- */
2
2
/*
3
* Mandos-client - get and decrypt data from a Mandos server
3
* Mandos client - get and decrypt data from a Mandos server
4
4
*
5
5
* This program is partly derived from an example program for an Avahi
6
6
* service browser, downloaded from
9
9
* "browse_callback", and parts of "main".
10
10
*
11
11
* Everything else is
12
* Copyright © 2008,2009 Teddy Hogeborn
13
* Copyright © 2008,2009 Björn Påhlsson
12
* Copyright © 2007-2008 Teddy Hogeborn & Björn Påhlsson
14
13
*
15
14
* This program is free software: you can redistribute it and/or
16
15
* modify it under the terms of the GNU General Public License as
36
35
#define _GNU_SOURCE /* TEMP_FAILURE_RETRY(), asprintf() */
37
36
38
37
#include <stdio.h> /* fprintf(), stderr, fwrite(),
39
stdout, ferror(), sscanf(),
40
remove() */
38
stdout, ferror() */
41
39
#include <stdint.h> /* uint16_t, uint32_t */
42
40
#include <stddef.h> /* NULL, size_t, ssize_t */
43
41
#include <stdlib.h> /* free(), EXIT_SUCCESS, EXIT_FAILURE,
49
47
#include <sys/types.h> /* socket(), inet_pton(), sockaddr,
50
48
sockaddr_in6, PF_INET6,
51
49
SOCK_STREAM, INET6_ADDRSTRLEN,
52
uid_t, gid_t, open(), opendir(),
53
DIR */
54
#include <sys/stat.h> /* open() */
50
uid_t, gid_t */
51
#include <inttypes.h> /* PRIu16 */
55
52
#include <sys/socket.h> /* socket(), struct sockaddr_in6,
56
53
struct in6_addr, inet_pton(),
57
54
connect() */
58
#include <fcntl.h> /* open() */
59
#include <dirent.h> /* opendir(), struct dirent, readdir()
60
*/
61
#include <inttypes.h> /* PRIu16, intmax_t, SCNdMAX */
62
55
#include <assert.h> /* assert() */
63
56
#include <errno.h> /* perror(), errno */
64
#include <time.h> /* nanosleep(), time() */
57
#include <time.h> /* time() */
65
58
#include <net/if.h> /* ioctl, ifreq, SIOCGIFFLAGS, IFF_UP,
66
59
SIOCSIFFLAGS, if_indextoname(),
67
60
if_nametoindex(), IF_NAMESIZE */
68
#include <netinet/in.h>
69
61
#include <unistd.h> /* close(), SEEK_SET, off_t, write(),
70
62
getuid(), getgid(), setuid(),
71
63
setgid() */
64
#include <netinet/in.h>
72
65
#include <arpa/inet.h> /* inet_pton(), htons */
73
#include <iso646.h> /* not, and, or */
66
#include <iso646.h> /* not, and */
74
67
#include <argp.h> /* struct argp_option, error_t, struct
75
68
argp_state, struct argp,
76
69
argp_parse(), ARGP_KEY_ARG,
77
70
ARGP_KEY_END, ARGP_ERR_UNKNOWN */
78
#include <sys/klog.h> /* klogctl() */
79
71
80
72
/* Avahi */
81
73
/* All Avahi types, constants and functions
94
86
gnutls_*
95
87
init_gnutls_session(),
96
88
GNUTLS_* */
97
#include <gnutls/openpgp.h>
98
/* gnutls_certificate_set_openpgp_key_file(),
89
#include <gnutls/openpgp.h> /* gnutls_certificate_set_openpgp_key_file(),
99
90
GNUTLS_OPENPGP_FMT_BASE64 */
100
91
101
92
/* GPGME */
107
98
108
99
#define BUFFER_SIZE 256
109
100
110
#define PATHDIR "/conf/conf.d/mandos"
111
#define SECKEY "seckey.txt"
112
#define PUBKEY "pubkey.txt"
113
114
101
bool debug = false;
102
static const char *keydir = "/conf/conf.d/mandos";
115
103
static const char mandos_protocol_version[] = "1";
116
const char *argp_program_version = "mandos-client " VERSION;
104
const char *argp_program_version = "password-request 1.0";
117
105
const char *argp_program_bug_address = "<mandos@fukt.bsnet.se>";
118
106
119
107
/* Used for passing in values through the Avahi callback functions */
124
112
unsigned int dh_bits;
125
113
gnutls_dh_params_t dh_params;
126
114
const char *priority;
127
gpgme_ctx_t ctx;
128
115
} mandos_context;
129
116
130
117
/*
134
121
*/
135
122
size_t adjustbuffer(char **buffer, size_t buffer_length,
136
123
size_t buffer_capacity){
137
if(buffer_length + BUFFER_SIZE > buffer_capacity){
124
if (buffer_length + BUFFER_SIZE > buffer_capacity){
138
125
*buffer = realloc(*buffer, buffer_capacity + BUFFER_SIZE);
139
if(buffer == NULL){
126
if (buffer == NULL){
140
127
return 0;
141
128
}
142
129
buffer_capacity += BUFFER_SIZE;
145
132
}
146
133
147
134
/*
148
* Initialize GPGME.
135
* Decrypt OpenPGP data using keyrings in HOMEDIR.
136
* Returns -1 on error
149
137
*/
150
static bool init_gpgme(mandos_context *mc, const char *seckey,
151
const char *pubkey, const char *tempdir){
152
int ret;
138
static ssize_t pgp_packet_decrypt (const char *cryptotext,
139
size_t crypto_size,
140
char **plaintext,
141
const char *homedir){
142
gpgme_data_t dh_crypto, dh_plain;
143
gpgme_ctx_t ctx;
153
144
gpgme_error_t rc;
145
ssize_t ret;
146
size_t plaintext_capacity = 0;
147
ssize_t plaintext_length = 0;
154
148
gpgme_engine_info_t engine_info;
155
149
156
157
/*
158
* Helper function to insert pub and seckey to the engine keyring.
159
*/
160
bool import_key(const char *filename){
161
int fd;
162
gpgme_data_t pgp_data;
163
164
fd = (int)TEMP_FAILURE_RETRY(open(filename, O_RDONLY));
165
if(fd == -1){
166
perror("open");
167
return false;
168
}
169
170
rc = gpgme_data_new_from_fd(&pgp_data, fd);
171
if(rc != GPG_ERR_NO_ERROR){
172
fprintf(stderr, "bad gpgme_data_new_from_fd: %s: %s\n",
173
gpgme_strsource(rc), gpgme_strerror(rc));
174
return false;
175
}
176
177
rc = gpgme_op_import(mc->ctx, pgp_data);
178
if(rc != GPG_ERR_NO_ERROR){
179
fprintf(stderr, "bad gpgme_op_import: %s: %s\n",
180
gpgme_strsource(rc), gpgme_strerror(rc));
181
return false;
182
}
183
184
ret = (int)TEMP_FAILURE_RETRY(close(fd));
185
if(ret == -1){
186
perror("close");
187
}
188
gpgme_data_release(pgp_data);
189
return true;
190
}
191
192
if(debug){
193
fprintf(stderr, "Initialize gpgme\n");
150
if (debug){
151
fprintf(stderr, "Trying to decrypt OpenPGP data\n");
194
152
}
195
153
196
154
/* Init GPGME */
197
155
gpgme_check_version(NULL);
198
156
rc = gpgme_engine_check_version(GPGME_PROTOCOL_OpenPGP);
199
if(rc != GPG_ERR_NO_ERROR){
157
if (rc != GPG_ERR_NO_ERROR){
200
158
fprintf(stderr, "bad gpgme_engine_check_version: %s: %s\n",
201
159
gpgme_strsource(rc), gpgme_strerror(rc));
202
return false;
160
return -1;
203
161
}
204
162
205
/* Set GPGME home directory for the OpenPGP engine only */
206
rc = gpgme_get_engine_info(&engine_info);
207
if(rc != GPG_ERR_NO_ERROR){
163
/* Set GPGME home directory for the OpenPGP engine only */
164
rc = gpgme_get_engine_info (&engine_info);
165
if (rc != GPG_ERR_NO_ERROR){
208
166
fprintf(stderr, "bad gpgme_get_engine_info: %s: %s\n",
209
167
gpgme_strsource(rc), gpgme_strerror(rc));
210
return false;
168
return -1;
211
169
}
212
170
while(engine_info != NULL){
213
171
if(engine_info->protocol == GPGME_PROTOCOL_OpenPGP){
214
172
gpgme_set_engine_info(GPGME_PROTOCOL_OpenPGP,
215
engine_info->file_name, tempdir);
173
engine_info->file_name, homedir);
216
174
break;
217
175
}
218
176
engine_info = engine_info->next;
219
177
}
220
178
if(engine_info == NULL){
221
fprintf(stderr, "Could not set GPGME home dir to %s\n", tempdir);
222
return false;
223
}
224
225
/* Create new GPGME "context" */
226
rc = gpgme_new(&(mc->ctx));
227
if(rc != GPG_ERR_NO_ERROR){
228
fprintf(stderr, "bad gpgme_new: %s: %s\n",
229
gpgme_strsource(rc), gpgme_strerror(rc));
230
return false;
231
}
232
233
if(not import_key(pubkey) or not import_key(seckey)){
234
return false;
235
}
236
237
return true;
238
}
239
240
/*
241
* Decrypt OpenPGP data.
242
* Returns -1 on error
243
*/
244
static ssize_t pgp_packet_decrypt(const mandos_context *mc,
245
const char *cryptotext,
246
size_t crypto_size,
247
char **plaintext){
248
gpgme_data_t dh_crypto, dh_plain;
249
gpgme_error_t rc;
250
ssize_t ret;
251
size_t plaintext_capacity = 0;
252
ssize_t plaintext_length = 0;
253
254
if(debug){
255
fprintf(stderr, "Trying to decrypt OpenPGP data\n");
179
fprintf(stderr, "Could not set GPGME home dir to %s\n", homedir);
180
return -1;
256
181
}
257
182
258
183
/* Create new GPGME data buffer from memory cryptotext */
259
184
rc = gpgme_data_new_from_mem(&dh_crypto, cryptotext, crypto_size,
260
185
0);
261
if(rc != GPG_ERR_NO_ERROR){
186
if (rc != GPG_ERR_NO_ERROR){
262
187
fprintf(stderr, "bad gpgme_data_new_from_mem: %s: %s\n",
263
188
gpgme_strsource(rc), gpgme_strerror(rc));
264
189
return -1;
266
191
267
192
/* Create new empty GPGME data buffer for the plaintext */
268
193
rc = gpgme_data_new(&dh_plain);
269
if(rc != GPG_ERR_NO_ERROR){
194
if (rc != GPG_ERR_NO_ERROR){
270
195
fprintf(stderr, "bad gpgme_data_new: %s: %s\n",
271
196
gpgme_strsource(rc), gpgme_strerror(rc));
272
197
gpgme_data_release(dh_crypto);
273
198
return -1;
274
199
}
275
200
201
/* Create new GPGME "context" */
202
rc = gpgme_new(&ctx);
203
if (rc != GPG_ERR_NO_ERROR){
204
fprintf(stderr, "bad gpgme_new: %s: %s\n",
205
gpgme_strsource(rc), gpgme_strerror(rc));
206
plaintext_length = -1;
207
goto decrypt_end;
208
}
209
276
210
/* Decrypt data from the cryptotext data buffer to the plaintext
277
211
data buffer */
278
rc = gpgme_op_decrypt(mc->ctx, dh_crypto, dh_plain);
279
if(rc != GPG_ERR_NO_ERROR){
212
rc = gpgme_op_decrypt(ctx, dh_crypto, dh_plain);
213
if (rc != GPG_ERR_NO_ERROR){
280
214
fprintf(stderr, "bad gpgme_op_decrypt: %s: %s\n",
281
215
gpgme_strsource(rc), gpgme_strerror(rc));
282
216
plaintext_length = -1;
283
if(debug){
217
if (debug){
284
218
gpgme_decrypt_result_t result;
285
result = gpgme_op_decrypt_result(mc->ctx);
286
if(result == NULL){
219
result = gpgme_op_decrypt_result(ctx);
220
if (result == NULL){
287
221
fprintf(stderr, "gpgme_op_decrypt_result failed\n");
288
222
} else {
289
223
fprintf(stderr, "Unsupported algorithm: %s\n",
316
250
}
317
251
318
252
/* Seek back to the beginning of the GPGME plaintext data buffer */
319
if(gpgme_data_seek(dh_plain, (off_t)0, SEEK_SET) == -1){
320
perror("gpgme_data_seek");
253
if (gpgme_data_seek(dh_plain, (off_t) 0, SEEK_SET) == -1){
254
perror("pgpme_data_seek");
321
255
plaintext_length = -1;
322
256
goto decrypt_end;
323
257
}
327
261
plaintext_capacity = adjustbuffer(plaintext,
328
262
(size_t)plaintext_length,
329
263
plaintext_capacity);
330
if(plaintext_capacity == 0){
264
if (plaintext_capacity == 0){
331
265
perror("adjustbuffer");
332
266
plaintext_length = -1;
333
267
goto decrypt_end;
336
270
ret = gpgme_data_read(dh_plain, *plaintext + plaintext_length,
337
271
BUFFER_SIZE);
338
272
/* Print the data, if any */
339
if(ret == 0){
273
if (ret == 0){
340
274
/* EOF */
341
275
break;
342
276
}
347
281
}
348
282
plaintext_length += ret;
349
283
}
350
284
351
285
if(debug){
352
286
fprintf(stderr, "Decrypted password is: ");
353
287
for(ssize_t i = 0; i < plaintext_length; i++){
366
300
return plaintext_length;
367
301
}
368
302
369
static const char * safer_gnutls_strerror(int value) {
370
const char *ret = gnutls_strerror(value); /* Spurious warning from
371
-Wunreachable-code */
372
if(ret == NULL)
303
static const char * safer_gnutls_strerror (int value) {
304
const char *ret = gnutls_strerror (value); /* Spurious warning */
305
if (ret == NULL)
373
306
ret = "(unknown)";
374
307
return ret;
375
308
}
390
323
}
391
324
392
325
ret = gnutls_global_init();
393
if(ret != GNUTLS_E_SUCCESS) {
394
fprintf(stderr, "GnuTLS global_init: %s\n",
395
safer_gnutls_strerror(ret));
326
if (ret != GNUTLS_E_SUCCESS) {
327
fprintf (stderr, "GnuTLS global_init: %s\n",
328
safer_gnutls_strerror(ret));
396
329
return -1;
397
330
}
398
331
399
if(debug){
332
if (debug){
400
333
/* "Use a log level over 10 to enable all debugging options."
401
334
* - GnuTLS manual
402
335
*/
406
339
407
340
/* OpenPGP credentials */
408
341
gnutls_certificate_allocate_credentials(&mc->cred);
409
if(ret != GNUTLS_E_SUCCESS){
410
fprintf(stderr, "GnuTLS memory error: %s\n", /* Spurious warning
411
* from
412
* -Wunreachable-code
413
*/
414
safer_gnutls_strerror(ret));
415
gnutls_global_deinit();
342
if (ret != GNUTLS_E_SUCCESS){
343
fprintf (stderr, "GnuTLS memory error: %s\n", /* Spurious
344
warning */
345
safer_gnutls_strerror(ret));
346
gnutls_global_deinit ();
416
347
return -1;
417
348
}
418
349
419
350
if(debug){
420
fprintf(stderr, "Attempting to use OpenPGP public key %s and"
421
" secret key %s as GnuTLS credentials\n", pubkeyfilename,
351
fprintf(stderr, "Attempting to use OpenPGP certificate %s"
352
" and keyfile %s as GnuTLS credentials\n", pubkeyfilename,
422
353
seckeyfilename);
423
354
}
424
355
425
356
ret = gnutls_certificate_set_openpgp_key_file
426
357
(mc->cred, pubkeyfilename, seckeyfilename,
427
358
GNUTLS_OPENPGP_FMT_BASE64);
428
if(ret != GNUTLS_E_SUCCESS) {
359
if (ret != GNUTLS_E_SUCCESS) {
429
360
fprintf(stderr,
430
361
"Error[%d] while reading the OpenPGP key pair ('%s',"
431
362
" '%s')\n", ret, pubkeyfilename, seckeyfilename);
432
fprintf(stderr, "The GnuTLS error is: %s\n",
363
fprintf(stdout, "The GnuTLS error is: %s\n",
433
364
safer_gnutls_strerror(ret));
434
365
goto globalfail;
435
366
}
436
367
437
368
/* GnuTLS server initialization */
438
369
ret = gnutls_dh_params_init(&mc->dh_params);
439
if(ret != GNUTLS_E_SUCCESS) {
440
fprintf(stderr, "Error in GnuTLS DH parameter initialization:"
441
" %s\n", safer_gnutls_strerror(ret));
370
if (ret != GNUTLS_E_SUCCESS) {
371
fprintf (stderr, "Error in GnuTLS DH parameter initialization:"
372
" %s\n", safer_gnutls_strerror(ret));
442
373
goto globalfail;
443
374
}
444
375
ret = gnutls_dh_params_generate2(mc->dh_params, mc->dh_bits);
445
if(ret != GNUTLS_E_SUCCESS) {
446
fprintf(stderr, "Error in GnuTLS prime generation: %s\n",
447
safer_gnutls_strerror(ret));
376
if (ret != GNUTLS_E_SUCCESS) {
377
fprintf (stderr, "Error in GnuTLS prime generation: %s\n",
378
safer_gnutls_strerror(ret));
448
379
goto globalfail;
449
380
}
450
381
451
382
gnutls_certificate_set_dh_params(mc->cred, mc->dh_params);
452
383
453
384
return 0;
454
385
455
386
globalfail:
456
387
457
388
gnutls_certificate_free_credentials(mc->cred);
458
389
gnutls_global_deinit();
459
gnutls_dh_params_deinit(mc->dh_params);
460
390
return -1;
391
461
392
}
462
393
463
394
static int init_gnutls_session(mandos_context *mc,
465
396
int ret;
466
397
/* GnuTLS session creation */
467
398
ret = gnutls_init(session, GNUTLS_SERVER);
468
if(ret != GNUTLS_E_SUCCESS){
399
if (ret != GNUTLS_E_SUCCESS){
469
400
fprintf(stderr, "Error in GnuTLS session initialization: %s\n",
470
401
safer_gnutls_strerror(ret));
471
402
}
473
404
{
474
405
const char *err;
475
406
ret = gnutls_priority_set_direct(*session, mc->priority, &err);
476
if(ret != GNUTLS_E_SUCCESS) {
407
if (ret != GNUTLS_E_SUCCESS) {
477
408
fprintf(stderr, "Syntax error at: %s\n", err);
478
409
fprintf(stderr, "GnuTLS error: %s\n",
479
410
safer_gnutls_strerror(ret));
480
gnutls_deinit(*session);
411
gnutls_deinit (*session);
481
412
return -1;
482
413
}
483
414
}
484
415
485
416
ret = gnutls_credentials_set(*session, GNUTLS_CRD_CERTIFICATE,
486
417
mc->cred);
487
if(ret != GNUTLS_E_SUCCESS) {
418
if (ret != GNUTLS_E_SUCCESS) {
488
419
fprintf(stderr, "Error setting GnuTLS credentials: %s\n",
489
420
safer_gnutls_strerror(ret));
490
gnutls_deinit(*session);
421
gnutls_deinit (*session);
491
422
return -1;
492
423
}
493
424
494
425
/* ignore client certificate if any. */
495
gnutls_certificate_server_set_request(*session,
496
GNUTLS_CERT_IGNORE);
426
gnutls_certificate_server_set_request (*session,
427
GNUTLS_CERT_IGNORE);
497
428
498
gnutls_dh_set_prime_bits(*session, mc->dh_bits);
429
gnutls_dh_set_prime_bits (*session, mc->dh_bits);
499
430
500
431
return 0;
501
432
}
509
440
AvahiIfIndex if_index,
510
441
mandos_context *mc){
511
442
int ret, tcp_sd;
512
ssize_t sret;
513
443
union { struct sockaddr in; struct sockaddr_in6 in6; } to;
514
444
char *buffer = NULL;
515
445
char *decrypted_buffer;
521
451
char interface[IF_NAMESIZE];
522
452
gnutls_session_t session;
523
453
524
ret = init_gnutls_session(mc, &session);
525
if(ret != 0){
454
ret = init_gnutls_session (mc, &session);
455
if (ret != 0){
526
456
return -1;
527
457
}
528
458
536
466
perror("socket");
537
467
return -1;
538
468
}
539
469
540
470
if(debug){
541
471
if(if_indextoname((unsigned int)if_index, interface) == NULL){
542
472
perror("if_indextoname");
550
480
/* It would be nice to have a way to detect if we were passed an
551
481
IPv4 address here. Now we assume an IPv6 address. */
552
482
ret = inet_pton(AF_INET6, ip, &to.in6.sin6_addr);
553
if(ret < 0 ){
483
if (ret < 0 ){
554
484
perror("inet_pton");
555
485
return -1;
556
486
}
558
488
fprintf(stderr, "Bad address: %s\n", ip);
559
489
return -1;
560
490
}
561
to.in6.sin6_port = htons(port); /* Spurious warnings from
562
-Wconversion and
563
-Wunreachable-code */
491
to.in6.sin6_port = htons(port); /* Spurious warning */
564
492
565
493
to.in6.sin6_scope_id = (uint32_t)if_index;
566
494
579
507
}
580
508
581
509
ret = connect(tcp_sd, &to.in, sizeof(to));
582
if(ret < 0){
510
if (ret < 0){
583
511
perror("connect");
584
512
return -1;
585
513
}
586
514
587
515
const char *out = mandos_protocol_version;
588
516
written = 0;
589
while(true){
517
while (true){
590
518
size_t out_size = strlen(out);
591
ret = (int)TEMP_FAILURE_RETRY(write(tcp_sd, out + written,
519
ret = TEMP_FAILURE_RETRY(write(tcp_sd, out + written,
592
520
out_size - written));
593
if(ret == -1){
521
if (ret == -1){
594
522
perror("write");
595
523
retval = -1;
596
524
goto mandos_end;
599
527
if(written < out_size){
600
528
continue;
601
529
} else {
602
if(out == mandos_protocol_version){
530
if (out == mandos_protocol_version){
603
531
written = 0;
604
532
out = "\r\n";
605
533
} else {
607
535
}
608
536
}
609
537
}
610
538
611
539
if(debug){
612
540
fprintf(stderr, "Establishing TLS session with %s\n", ip);
613
541
}
614
542
615
gnutls_transport_set_ptr(session, (gnutls_transport_ptr_t) tcp_sd);
616
543
gnutls_transport_set_ptr (session, (gnutls_transport_ptr_t) tcp_sd);
544
617
545
do{
618
ret = gnutls_handshake(session);
546
ret = gnutls_handshake (session);
619
547
} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);
620
548
621
if(ret != GNUTLS_E_SUCCESS){
549
if (ret != GNUTLS_E_SUCCESS){
622
550
if(debug){
623
551
fprintf(stderr, "*** GnuTLS Handshake failed ***\n");
624
gnutls_perror(ret);
552
gnutls_perror (ret);
625
553
}
626
554
retval = -1;
627
555
goto mandos_end;
633
561
fprintf(stderr, "Retrieving pgp encrypted password from %s\n",
634
562
ip);
635
563
}
636
564
637
565
while(true){
638
566
buffer_capacity = adjustbuffer(&buffer, buffer_length,
639
567
buffer_capacity);
640
if(buffer_capacity == 0){
568
if (buffer_capacity == 0){
641
569
perror("adjustbuffer");
642
570
retval = -1;
643
571
goto mandos_end;
644
572
}
645
573
646
sret = gnutls_record_recv(session, buffer+buffer_length,
647
BUFFER_SIZE);
648
if(sret == 0){
574
ret = gnutls_record_recv(session, buffer+buffer_length,
575
BUFFER_SIZE);
576
if (ret == 0){
649
577
break;
650
578
}
651
if(sret < 0){
652
switch(sret){
579
if (ret < 0){
580
switch(ret){
653
581
case GNUTLS_E_INTERRUPTED:
654
582
case GNUTLS_E_AGAIN:
655
583
break;
656
584
case GNUTLS_E_REHANDSHAKE:
657
585
do{
658
ret = gnutls_handshake(session);
586
ret = gnutls_handshake (session);
659
587
} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);
660
if(ret < 0){
588
if (ret < 0){
661
589
fprintf(stderr, "*** GnuTLS Re-handshake failed ***\n");
662
gnutls_perror(ret);
590
gnutls_perror (ret);
663
591
retval = -1;
664
592
goto mandos_end;
665
593
}
668
596
fprintf(stderr, "Unknown error while reading data from"
669
597
" encrypted session with Mandos server\n");
670
598
retval = -1;
671
gnutls_bye(session, GNUTLS_SHUT_RDWR);
599
gnutls_bye (session, GNUTLS_SHUT_RDWR);
672
600
goto mandos_end;
673
601
}
674
602
} else {
675
buffer_length += (size_t) sret;
603
buffer_length += (size_t) ret;
676
604
}
677
605
}
678
606
680
608
fprintf(stderr, "Closing TLS session\n");
681
609
}
682
610
683
gnutls_bye(session, GNUTLS_SHUT_RDWR);
611
gnutls_bye (session, GNUTLS_SHUT_RDWR);
684
612
685
if(buffer_length > 0){
686
decrypted_buffer_size = pgp_packet_decrypt(mc, buffer,
613
if (buffer_length > 0){
614
decrypted_buffer_size = pgp_packet_decrypt(buffer,
687
615
buffer_length,
688
&decrypted_buffer);
689
if(decrypted_buffer_size >= 0){
616
&decrypted_buffer,
617
keydir);
618
if (decrypted_buffer_size >= 0){
690
619
written = 0;
691
620
while(written < (size_t) decrypted_buffer_size){
692
ret = (int)fwrite(decrypted_buffer + written, 1,
693
(size_t)decrypted_buffer_size - written,
694
stdout);
621
ret = (int)fwrite (decrypted_buffer + written, 1,
622
(size_t)decrypted_buffer_size - written,
623
stdout);
695
624
if(ret == 0 and ferror(stdout)){
696
625
if(debug){
697
626
fprintf(stderr, "Error writing encrypted data: %s\n",
714
643
715
644
mandos_end:
716
645
free(buffer);
717
ret = (int)TEMP_FAILURE_RETRY(close(tcp_sd));
718
if(ret == -1){
719
perror("close");
720
}
721
gnutls_deinit(session);
646
close(tcp_sd);
647
gnutls_deinit (session);
722
648
return retval;
723
649
}
724
650
742
668
/* Called whenever a service has been resolved successfully or
743
669
timed out */
744
670
745
switch(event) {
671
switch (event) {
746
672
default:
747
673
case AVAHI_RESOLVER_FAILURE:
748
674
fprintf(stderr, "(Avahi Resolver) Failed to resolve service '%s'"
756
682
avahi_address_snprint(ip, sizeof(ip), address);
757
683
if(debug){
758
684
fprintf(stderr, "Mandos server \"%s\" found on %s (%s, %"
759
PRIdMAX ") on port %" PRIu16 "\n", name, host_name,
760
ip, (intmax_t)interface, port);
685
PRIu16 ") on port %d\n", name, host_name, ip,
686
interface, port);
761
687
}
762
688
int ret = start_mandos_communication(ip, port, interface, mc);
763
if(ret == 0){
689
if (ret == 0){
764
690
avahi_simple_poll_quit(mc->simple_poll);
765
691
}
766
692
}
784
710
/* Called whenever a new services becomes available on the LAN or
785
711
is removed from the LAN */
786
712
787
switch(event) {
713
switch (event) {
788
714
default:
789
715
case AVAHI_BROWSER_FAILURE:
790
716
799
725
the callback function is called the Avahi server will free the
800
726
resolver for us. */
801
727
802
if(!(avahi_s_service_resolver_new(mc->server, interface,
728
if (!(avahi_s_service_resolver_new(mc->server, interface,
803
729
protocol, name, type, domain,
804
730
AVAHI_PROTO_INET6, 0,
805
731
resolve_callback, mc)))
819
745
}
820
746
}
821
747
748
/* Combines file name and path and returns the malloced new
749
string. some sane checks could/should be added */
750
static char *combinepath(const char *first, const char *second){
751
char *tmp;
752
int ret = asprintf(&tmp, "%s/%s", first, second);
753
if(ret < 0){
754
return NULL;
755
}
756
return tmp;
757
}
758
759
822
760
int main(int argc, char *argv[]){
823
761
AvahiSServiceBrowser *sb = NULL;
824
762
int error;
825
763
int ret;
826
intmax_t tmpmax;
827
int numchars;
828
764
int exitcode = EXIT_SUCCESS;
829
765
const char *interface = "eth0";
830
766
struct ifreq network;
832
768
uid_t uid;
833
769
gid_t gid;
834
770
char *connect_to = NULL;
835
char tempdir[] = "/tmp/mandosXXXXXX";
836
bool tempdir_created = false;
837
771
AvahiIfIndex if_index = AVAHI_IF_UNSPEC;
838
const char *seckey = PATHDIR "/" SECKEY;
839
const char *pubkey = PATHDIR "/" PUBKEY;
840
772
char *pubkeyfilename = NULL;
773
char *seckeyfilename = NULL;
774
const char *pubkeyname = "pubkey.txt";
775
const char *seckeyname = "seckey.txt";
841
776
mandos_context mc = { .simple_poll = NULL, .server = NULL,
842
.dh_bits = 1024, .priority = "SECURE256"
843
":!CTYPE-X.509:+CTYPE-OPENPGP" };
844
bool gnutls_initialized = false;
845
bool gpgme_initialized = false;
846
double delay = 2.5;
777
.dh_bits = 1024, .priority = "SECURE256"};
778
bool gnutls_initalized = false;
847
779
848
780
{
849
781
struct argp_option options[] = {
850
782
{ .name = "debug", .key = 128,
851
783
.doc = "Debug mode", .group = 3 },
852
784
{ .name = "connect", .key = 'c',
853
.arg = "ADDRESS:PORT",
854
.doc = "Connect directly to a specific Mandos server",
785
.arg = "IP",
786
.doc = "Connect directly to a sepcified mandos server",
855
787
.group = 1 },
856
788
{ .name = "interface", .key = 'i',
857
.arg = "NAME",
858
.doc = "Interface that will be used to search for Mandos"
859
" servers",
789
.arg = "INTERFACE",
790
.doc = "Interface that Avahi will conntect through",
791
.group = 1 },
792
{ .name = "keydir", .key = 'd',
793
.arg = "KEYDIR",
794
.doc = "Directory where the openpgp keyring is",
860
795
.group = 1 },
861
796
{ .name = "seckey", .key = 's',
862
.arg = "FILE",
863
.doc = "OpenPGP secret key file base name",
797
.arg = "SECKEY",
798
.doc = "Secret openpgp key for gnutls authentication",
864
799
.group = 1 },
865
800
{ .name = "pubkey", .key = 'p',
866
.arg = "FILE",
867
.doc = "OpenPGP public key file base name",
801
.arg = "PUBKEY",
802
.doc = "Public openpgp key for gnutls authentication",
868
803
.group = 2 },
869
804
{ .name = "dh-bits", .key = 129,
870
805
.arg = "BITS",
871
.doc = "Bit length of the prime number used in the"
872
" Diffie-Hellman key exchange",
806
.doc = "dh-bits to use in gnutls communication",
873
807
.group = 2 },
874
808
{ .name = "priority", .key = 130,
875
.arg = "STRING",
876
.doc = "GnuTLS priority string for the TLS handshake",
877
.group = 1 },
878
{ .name = "delay", .key = 131,
879
.arg = "SECONDS",
880
.doc = "Maximum delay to wait for interface startup",
881
.group = 2 },
809
.arg = "PRIORITY",
810
.doc = "GNUTLS priority", .group = 1 },
882
811
{ .name = NULL }
883
812
};
813
884
814
885
error_t parse_opt(int key, char *arg,
886
struct argp_state *state) {
887
switch(key) {
888
case 128: /* --debug */
815
error_t parse_opt (int key, char *arg,
816
struct argp_state *state) {
817
/* Get the INPUT argument from `argp_parse', which we know is
818
a pointer to our plugin list pointer. */
819
switch (key) {
820
case 128:
889
821
debug = true;
890
822
break;
891
case 'c': /* --connect */
823
case 'c':
892
824
connect_to = arg;
893
825
break;
894
case 'i': /* --interface */
826
case 'i':
895
827
interface = arg;
896
828
break;
897
case 's': /* --seckey */
898
seckey = arg;
899
break;
900
case 'p': /* --pubkey */
901
pubkey = arg;
902
break;
903
case 129: /* --dh-bits */
904
ret = sscanf(arg, "%" SCNdMAX "%n", &tmpmax, &numchars);
905
if(ret < 1 or tmpmax != (typeof(mc.dh_bits))tmpmax
906
or arg[numchars] != '\0'){
907
fprintf(stderr, "Bad number of DH bits\n");
829
case 'd':
830
keydir = arg;
831
break;
832
case 's':
833
seckeyname = arg;
834
break;
835
case 'p':
836
pubkeyname = arg;
837
break;
838
case 129:
839
errno = 0;
840
mc.dh_bits = (unsigned int) strtol(arg, NULL, 10);
841
if (errno){
842
perror("strtol");
908
843
exit(EXIT_FAILURE);
909
844
}
910
mc.dh_bits = (typeof(mc.dh_bits))tmpmax;
911
845
break;
912
case 130: /* --priority */
846
case 130:
913
847
mc.priority = arg;
914
848
break;
915
case 131: /* --delay */
916
ret = sscanf(arg, "%lf%n", &delay, &numchars);
917
if(ret < 1 or arg[numchars] != '\0'){
918
fprintf(stderr, "Bad delay\n");
919
exit(EXIT_FAILURE);
920
}
921
break;
922
849
case ARGP_KEY_ARG:
923
argp_usage(state);
850
argp_usage (state);
924
851
case ARGP_KEY_END:
925
852
break;
926
853
default:
928
855
}
929
856
return 0;
930
857
}
931
858
932
859
struct argp argp = { .options = options, .parser = parse_opt,
933
860
.args_doc = "",
934
861
.doc = "Mandos client -- Get and decrypt"
935
" passwords from a Mandos server" };
936
ret = argp_parse(&argp, argc, argv, 0, 0, NULL);
937
if(ret == ARGP_ERR_UNKNOWN){
862
" passwords from mandos server" };
863
ret = argp_parse (&argp, argc, argv, 0, 0, NULL);
864
if (ret == ARGP_ERR_UNKNOWN){
938
865
fprintf(stderr, "Unknown error while parsing arguments\n");
939
866
exitcode = EXIT_FAILURE;
940
867
goto end;
941
868
}
942
869
}
870
871
pubkeyfilename = combinepath(keydir, pubkeyname);
872
if (pubkeyfilename == NULL){
873
perror("combinepath");
874
exitcode = EXIT_FAILURE;
875
goto end;
876
}
877
878
seckeyfilename = combinepath(keydir, seckeyname);
879
if (seckeyfilename == NULL){
880
perror("combinepath");
881
exitcode = EXIT_FAILURE;
882
goto end;
883
}
884
885
ret = init_gnutls_global(&mc, pubkeyfilename, seckeyfilename);
886
if (ret == -1){
887
fprintf(stderr, "init_gnutls_global failed\n");
888
exitcode = EXIT_FAILURE;
889
goto end;
890
} else {
891
gnutls_initalized = true;
892
}
943
893
944
894
/* If the interface is down, bring it up */
945
895
{
946
/* Lower kernel loglevel to KERN_NOTICE to avoid KERN_INFO
947
messages to mess up the prompt */
948
ret = klogctl(8, NULL, 5);
949
if(ret == -1){
950
perror("klogctl");
951
}
952
953
896
sd = socket(PF_INET6, SOCK_DGRAM, IPPROTO_IP);
954
897
if(sd < 0) {
955
898
perror("socket");
956
899
exitcode = EXIT_FAILURE;
957
ret = klogctl(7, NULL, 0);
958
if(ret == -1){
959
perror("klogctl");
960
}
961
900
goto end;
962
901
}
963
902
strcpy(network.ifr_name, interface);
964
903
ret = ioctl(sd, SIOCGIFFLAGS, &network);
965
904
if(ret == -1){
966
905
perror("ioctl SIOCGIFFLAGS");
967
ret = klogctl(7, NULL, 0);
968
if(ret == -1){
969
perror("klogctl");
970
}
971
906
exitcode = EXIT_FAILURE;
972
907
goto end;
973
908
}
977
912
if(ret == -1){
978
913
perror("ioctl SIOCSIFFLAGS");
979
914
exitcode = EXIT_FAILURE;
980
ret = klogctl(7, NULL, 0);
981
if(ret == -1){
982
perror("klogctl");
983
}
984
915
goto end;
985
916
}
986
917
}
987
/* sleep checking until interface is running */
988
for(int i=0; i < delay * 4; i++){
989
ret = ioctl(sd, SIOCGIFFLAGS, &network);
990
if(ret == -1){
991
perror("ioctl SIOCGIFFLAGS");
992
} else if(network.ifr_flags & IFF_RUNNING){
993
break;
994
}
995
struct timespec sleeptime = { .tv_nsec = 250000000 };
996
nanosleep(&sleeptime, NULL);
997
}
998
ret = (int)TEMP_FAILURE_RETRY(close(sd));
999
if(ret == -1){
1000
perror("close");
1001
}
1002
/* Restores kernel loglevel to default */
1003
ret = klogctl(7, NULL, 0);
1004
if(ret == -1){
1005
perror("klogctl");
1006
}
918
close(sd);
1007
919
}
1008
920
1009
921
uid = getuid();
1010
922
gid = getgid();
1011
923
924
ret = setuid(uid);
925
if (ret == -1){
926
perror("setuid");
927
}
928
1012
929
setgid(gid);
1013
if(ret == -1){
930
if (ret == -1){
1014
931
perror("setgid");
1015
932
}
1016
933
1017
ret = setuid(uid);
1018
if(ret == -1){
1019
perror("setuid");
1020
}
1021
1022
ret = init_gnutls_global(&mc, pubkey, seckey);
1023
if(ret == -1){
1024
fprintf(stderr, "init_gnutls_global failed\n");
1025
exitcode = EXIT_FAILURE;
1026
goto end;
1027
} else {
1028
gnutls_initialized = true;
1029
}
1030
1031
if(mkdtemp(tempdir) == NULL){
1032
perror("mkdtemp");
1033
goto end;
1034
}
1035
tempdir_created = true;
1036
1037
if(not init_gpgme(&mc, pubkey, seckey, tempdir)){
1038
fprintf(stderr, "init_gpgme failed\n");
1039
exitcode = EXIT_FAILURE;
1040
goto end;
1041
} else {
1042
gpgme_initialized = true;
1043
}
1044
1045
934
if_index = (AvahiIfIndex) if_nametoindex(interface);
1046
935
if(if_index == 0){
1047
936
fprintf(stderr, "No such interface: \"%s\"\n", interface);
1048
exitcode = EXIT_FAILURE;
1049
goto end;
937
exit(EXIT_FAILURE);
1050
938
}
1051
939
1052
940
if(connect_to != NULL){
1058
946
exitcode = EXIT_FAILURE;
1059
947
goto end;
1060
948
}
1061
uint16_t port;
1062
ret = sscanf(address+1, "%" SCNdMAX "%n", &tmpmax, &numchars);
1063
if(ret < 1 or tmpmax != (uint16_t)tmpmax
1064
or address[numchars+1] != '\0'){
1065
fprintf(stderr, "Bad port number\n");
949
errno = 0;
950
uint16_t port = (uint16_t) strtol(address+1, NULL, 10);
951
if(errno){
952
perror("Bad port number");
1066
953
exitcode = EXIT_FAILURE;
1067
954
goto end;
1068
955
}
1069
port = (uint16_t)tmpmax;
1070
956
*address = '\0';
1071
957
address = connect_to;
1072
958
ret = start_mandos_communication(address, port, if_index, &mc);
1078
964
goto end;
1079
965
}
1080
966
1081
if(not debug){
967
if (not debug){
1082
968
avahi_set_log_function(empty_log);
1083
969
}
1084
970
1087
973
1088
974
/* Allocate main Avahi loop object */
1089
975
mc.simple_poll = avahi_simple_poll_new();
1090
if(mc.simple_poll == NULL) {
976
if (mc.simple_poll == NULL) {
1091
977
fprintf(stderr, "Avahi: Failed to create simple poll"
1092
978
" object.\n");
1093
979
exitcode = EXIT_FAILURE;
1094
980
goto end;
1095
981
}
1096
982
1097
983
{
1098
984
AvahiServerConfig config;
1099
985
/* Do not publish any local Zeroconf records */
1102
988
config.publish_addresses = 0;
1103
989
config.publish_workstation = 0;
1104
990
config.publish_domain = 0;
1105
991
1106
992
/* Allocate a new server */
1107
993
mc.server = avahi_server_new(avahi_simple_poll_get
1108
994
(mc.simple_poll), &config, NULL,
1109
995
NULL, &error);
1110
996
1111
997
/* Free the Avahi configuration data */
1112
998
avahi_server_config_free(&config);
1113
999
}
1114
1000
1115
1001
/* Check if creating the Avahi server object succeeded */
1116
if(mc.server == NULL) {
1002
if (mc.server == NULL) {
1117
1003
fprintf(stderr, "Failed to create Avahi server: %s\n",
1118
1004
avahi_strerror(error));
1119
1005
exitcode = EXIT_FAILURE;
1125
1011
AVAHI_PROTO_INET6,
1126
1012
"_mandos._tcp", NULL, 0,
1127
1013
browse_callback, &mc);
1128
if(sb == NULL) {
1014
if (sb == NULL) {
1129
1015
fprintf(stderr, "Failed to create service browser: %s\n",
1130
1016
avahi_strerror(avahi_server_errno(mc.server)));
1131
1017
exitcode = EXIT_FAILURE;
1133
1019
}
1134
1020
1135
1021
/* Run the main loop */
1136
1137
if(debug){
1022
1023
if (debug){
1138
1024
fprintf(stderr, "Starting Avahi loop search\n");
1139
1025
}
1140
1026
1141
1027
avahi_simple_poll_loop(mc.simple_poll);
1142
1028
1143
1029
end:
1144
1145
if(debug){
1030
1031
if (debug){
1146
1032
fprintf(stderr, "%s exiting\n", argv[0]);
1147
1033
}
1148
1034
1149
1035
/* Cleanup things */
1150
if(sb != NULL)
1036
if (sb != NULL)
1151
1037
avahi_s_service_browser_free(sb);
1152
1038
1153
if(mc.server != NULL)
1039
if (mc.server != NULL)
1154
1040
avahi_server_free(mc.server);
1155
1156
if(mc.simple_poll != NULL)
1041
1042
if (mc.simple_poll != NULL)
1157
1043
avahi_simple_poll_free(mc.simple_poll);
1158
1159
if(gnutls_initialized){
1044
free(pubkeyfilename);
1045
free(seckeyfilename);
1046
1047
if (gnutls_initalized){
1160
1048
gnutls_certificate_free_credentials(mc.cred);
1161
gnutls_global_deinit();
1162
gnutls_dh_params_deinit(mc.dh_params);
1163
}
1164
1165
if(gpgme_initialized){
1166
gpgme_release(mc.ctx);
1167
}
1168
1169
/* Removes the temp directory used by GPGME */
1170
if(tempdir_created){
1171
DIR *d;
1172
struct dirent *direntry;
1173
d = opendir(tempdir);
1174
if(d == NULL){
1175
if(errno != ENOENT){
1176
perror("opendir");
1177
}
1178
} else {
1179
while(true){
1180
direntry = readdir(d);
1181
if(direntry == NULL){
1182
break;
1183
}
1184
/* Skip "." and ".." */
1185
if(direntry->d_name[0] == '.'
1186
and (direntry->d_name[1] == '\0'
1187
or (direntry->d_name[1] == '.'
1188
and direntry->d_name[2] == '\0'))){
1189
continue;
1190
}
1191
char *fullname = NULL;
1192
ret = asprintf(&fullname, "%s/%s", tempdir,
1193
direntry->d_name);
1194
if(ret < 0){
1195
perror("asprintf");
1196
continue;
1197
}
1198
ret = remove(fullname);
1199
if(ret == -1){
1200
fprintf(stderr, "remove(\"%s\"): %s\n", fullname,
1201
strerror(errno));
1202
}
1203
free(fullname);
1204
}
1205
closedir(d);
1206
}
1207
ret = rmdir(tempdir);
1208
if(ret == -1 and errno != ENOENT){
1209
perror("rmdir");
1210
}
1049
gnutls_global_deinit ();
1211
1050
}
1212
1051
1213
1052
return exitcode;
Loggerhead is a web-based interface for Breezy
Version: 2.0.2.dev0