/mandos/trunk : revision 13

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/passprompt.c

Committer: Björn Påhlsson
Date: 2008-07-20 02:52:20 UTC
Revision ID: belorn@braxen-20080720025220-r5u0388uy9iu23h6

Added following support:
Pluginbased client handler
rewritten Mandos client
Avahi instead of udp server discovery
openpgp encrypted key support
Passprompt stand alone application for direct console input
Added logging for Mandos server

files added:
ca.pem

cert.pem

client-cert.pem

client-key.pem

crl.pem

key.pem

plugins.d/Makefile

files removed:
.bzr-builddeb

.bzr-builddeb/default.conf

.bzrignore

COPYING

INSTALL

NEWS

README

common.ent

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/po

debian/rules

debian/watch

default-mandos

init.d-mandos

initramfs-tools-hook

initramfs-tools-hook-conf

initramfs-tools-script

legalnotice.xml

mandos-clients.conf.xml

mandos-ctl

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.lsm

mandos.xml

overview.xml

plugin-runner.conf

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.xml

plugins.d/password-prompt.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files renamed:
clients.conf => mandos-clients.conf

plugin-runner.c => plugbasedclient.c

plugins.d/mandos-client.c => plugins.d/mandosclient.c

plugins.d/password-prompt.c => plugins.d/passprompt.c

mandos => server.py

files modified:
Makefile

TODO

Show diffs side-by-side

added added

removed removed

plugins.d/passprompt.c

/* -*- coding: utf-8; mode: c; mode: orgtbl -*- */

* Password-prompt - Read a password from the terminal and print it

* This program is free software: you can redistribute it and/or

* modify it under the terms of the GNU General Public License as

* published by the Free Software Foundation, either version 3 of the

* License, or (at your option) any later version.

* This program is distributed in the hope that it will be useful, but

* WITHOUT ANY WARRANTY; without even the implied warranty of

* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU

* General Public License for more details.

* You should have received a copy of the GNU General Public License

* along with this program. If not, see

* <http://www.gnu.org/licenses/>.

* Contact the authors at <mandos@fukt.bsnet.se>.

#define _GNU_SOURCE /* getline() */

#define _FORTIFY_SOURCE 2

#include <termios.h> /* struct termios, tcsetattr(),

TCSAFLUSH, tcgetattr(), ECHO */

#include <unistd.h> /* struct termios, tcsetattr(),

#include <signal.h> /* sig_atomic_t, raise(), struct

sigaction, sigemptyset(),

sigaction(), sigaddset(), SIGINT,

SIGQUIT, SIGHUP, SIGTERM,

raise() */

#include <stddef.h> /* NULL, size_t, ssize_t */

SIGQUIT, SIGHUP, SIGTERM */

#include <stddef.h> /* NULL, size_t */

#include <sys/types.h> /* ssize_t */

#include <stdlib.h> /* EXIT_SUCCESS, EXIT_FAILURE,

getenv() */

#include <stdlib.h> /* EXIT_SUCCESS, EXIT_FAILURE */

#include <stdio.h> /* fprintf(), stderr, getline(),

stdin, feof(), perror(), fputc()

#include <errno.h> /* errno, EBADF, ENOTTY, EINVAL,

EFAULT, EFBIG, EIO, ENOSPC, EINTR

stdin, feof(), perror(), fputc(),

stdout */

#include <errno.h> /* errno, EINVAL */

#include <iso646.h> /* or, not */

#include <stdbool.h> /* bool, false, true */

#include <string.h> /* strlen, rindex, strncmp, strcmp */

#include <argp.h> /* struct argp_option, struct

argp_state, struct argp,

argp_parse(), error_t,

ARGP_KEY_ARG, ARGP_KEY_END,

ARGP_ERR_UNKNOWN */

#include <sysexits.h> /* EX_SOFTWARE, EX_OSERR,

EX_UNAVAILABLE, EX_IOERR, EX_OK */

volatile sig_atomic_t quit_now = 0;

int signal_received;

bool debug = false;

const char *argp_program_version = "password-prompt " VERSION;

const char *argp_program_bug_address = "<mandos@fukt.bsnet.se>";

static void termination_handler(int signum){

if(quit_now){

return;

}

quit_now = 1;

signal_received = signum;

volatile bool quit_now = false;

void termination_handler(int signum){

quit_now = true;

}

int main(int argc, char **argv){

ssize_t ret;

ssize_t ret = -1;

size_t n;

struct termios t_new, t_old;

char *buffer = NULL;

char *prefix = NULL;

int status = EXIT_SUCCESS;

struct sigaction old_action,

new_action = { .sa_handler = termination_handler,

.sa_flags = 0 };

{

struct argp_option options[] = {

{ .name = "prefix", .key = 'p',

.arg = "PREFIX", .flags = 0,

.doc = "Prefix shown before the prompt", .group = 2 },

{ .name = "debug", .key = 128,

.doc = "Debug mode", .group = 3 },

* These reproduce what we would get without ARGP_NO_HELP

{ .name = "help", .key = '?',

.doc = "Give this help list", .group = -1 },

{ .name = "usage", .key = -3,

.doc = "Give a short usage message", .group = -1 },

{ .name = "version", .key = 'V',

.doc = "Print program version", .group = -1 },

{ .name = NULL }

};

100

101

error_t parse_opt (int key, char *arg, struct argp_state *state){

102

errno = 0;

103

switch (key){

104

case 'p':

105

prefix = arg;

106

break;

107

case 128:

108

debug = true;

109

break;

110

111

* These reproduce what we would get without ARGP_NO_HELP

112

113

case '?': /* --help */

114

argp_state_help(state, state->out_stream,

115

(ARGP_HELP_STD_HELP | ARGP_HELP_EXIT_ERR)

116

& ~(unsigned int)ARGP_HELP_EXIT_OK);

117

case -3: /* --usage */

118

argp_state_help(state, state->out_stream,

119

ARGP_HELP_USAGE | ARGP_HELP_EXIT_ERR);

120

case 'V': /* --version */

121

fprintf(state->out_stream, "%s\n", argp_program_version);

122

exit(argp_err_exit_status);

123

break;

124

default:

125

return ARGP_ERR_UNKNOWN;

126

}

127

return errno;

128

}

129

130

struct argp argp = { .options = options, .parser = parse_opt,

131

.args_doc = "",

132

.doc = "Mandos password-prompt -- Read and"

133

" output a password" };

134

ret = argp_parse(&argp, argc, argv,

135

ARGP_IN_ORDER | ARGP_NO_HELP, NULL, NULL);

136

switch(ret){

137

case 0:

138

break;

139

case ENOMEM:

140

default:

141

errno = ret;

142

perror("argp_parse");

143

return EX_OSERR;

144

case EINVAL:

145

return EX_USAGE;

146

}

147

}

148

149

if(debug){

150

fprintf(stderr, "Starting %s\n", argv[0]);

151

}

152

if(debug){

153

fprintf(stderr, "Storing current terminal attributes\n");

154

}

155

156

if(tcgetattr(STDIN_FILENO, &t_old) != 0){

157

int e = errno;

158

perror("tcgetattr");

159

switch(e){

160

case EBADF:

161

case ENOTTY:

162

return EX_UNAVAILABLE;

163

default:

164

return EX_OSERR;

165

}

if (tcgetattr(STDIN_FILENO, &t_old) != 0){

return EXIT_FAILURE;

166

}

167

168

sigemptyset(&new_action.sa_mask);

169

ret = sigaddset(&new_action.sa_mask, SIGINT);

170

if(ret == -1){

171

perror("sigaddset");

172

return EX_OSERR;

173

}

174

ret = sigaddset(&new_action.sa_mask, SIGHUP);

175

if(ret == -1){

176

perror("sigaddset");

177

return EX_OSERR;

178

}

179

ret = sigaddset(&new_action.sa_mask, SIGTERM);

180

if(ret == -1){

181

perror("sigaddset");

182

return EX_OSERR;

183

}

184

/* Need to check if the handler is SIG_IGN before handling:

185

| [[info:libc:Initial Signal Actions]] |

186

| [[info:libc:Basic Signal Handling]] |

187

188

ret = sigaction(SIGINT, NULL, &old_action);

189

if(ret == -1){

190

perror("sigaction");

191

return EX_OSERR;

192

}

193

if(old_action.sa_handler != SIG_IGN){

194

ret = sigaction(SIGINT, &new_action, NULL);

195

if(ret == -1){

196

perror("sigaction");

197

return EX_OSERR;

198

}

199

}

200

ret = sigaction(SIGHUP, NULL, &old_action);

201

if(ret == -1){

202

perror("sigaction");

203

return EX_OSERR;

204

}

205

if(old_action.sa_handler != SIG_IGN){

206

ret = sigaction(SIGHUP, &new_action, NULL);

207

if(ret == -1){

208

perror("sigaction");

209

return EX_OSERR;

210

}

211

}

212

ret = sigaction(SIGTERM, NULL, &old_action);

213

if(ret == -1){

214

perror("sigaction");

215

return EX_OSERR;

216

}

217

if(old_action.sa_handler != SIG_IGN){

218

ret = sigaction(SIGTERM, &new_action, NULL);

219

if(ret == -1){

220

perror("sigaction");

221

return EX_OSERR;

222

}

223

}

224

225

226

if(debug){

227

fprintf(stderr, "Removing echo flag from terminal attributes\n");

228

}

sigaddset(&new_action.sa_mask, SIGINT);

sigaddset(&new_action.sa_mask, SIGQUIT);

sigaddset(&new_action.sa_mask, SIGHUP);

sigaddset(&new_action.sa_mask, SIGTERM);

sigaction(SIGINT, NULL, &old_action);

if (old_action.sa_handler != SIG_IGN)

sigaction(SIGINT, &new_action, NULL);

sigaction(SIGQUIT, NULL, &old_action);

if (old_action.sa_handler != SIG_IGN)

sigaction(SIGQUIT, &new_action, NULL);

sigaction(SIGHUP, NULL, &old_action);

if (old_action.sa_handler != SIG_IGN)

sigaction(SIGHUP, &new_action, NULL);

sigaction(SIGTERM, NULL, &old_action);

if (old_action.sa_handler != SIG_IGN)

sigaction(SIGTERM, &new_action, NULL);

229

230

t_new = t_old;

231

t_new.c_lflag &= ~(tcflag_t)ECHO;

232

if(tcsetattr(STDIN_FILENO, TCSAFLUSH, &t_new) != 0){

233

int e = errno;

t_new.c_lflag &= ~ECHO;

if (tcsetattr(STDIN_FILENO, TCSAFLUSH, &t_new) != 0){

234

perror("tcsetattr-echo");

235

switch(e){

236

case EBADF:

237

case ENOTTY:

238

return EX_UNAVAILABLE;

239

case EINVAL:

240

default:

241

return EX_OSERR;

242

}

return EXIT_FAILURE;

243

}

244

245

if(debug){

246

fprintf(stderr, "Waiting for input from stdin \n");

247

}

248

while(true){

249

if(quit_now){

250

if(debug){

251

fprintf(stderr, "Interrupted by signal, exiting.\n");

252

}

if (quit_now){

253

status = EXIT_FAILURE;

254

break;

255

}

256

257

if(prefix){

258

fprintf(stderr, "%s ", prefix);

259

}

260

{

261

const char *cryptsource = getenv("cryptsource");

262

const char *crypttarget = getenv("crypttarget");

263

const char *const prompt

264

= "Enter passphrase to unlock the disk";

265

if(cryptsource == NULL){

266

if(crypttarget == NULL){

267

fprintf(stderr, "%s: ", prompt);

268

} else {

269

fprintf(stderr, "%s (%s): ", prompt, crypttarget);

270

}

271

} else {

272

if(crypttarget == NULL){

273

fprintf(stderr, "%s %s: ", prompt, cryptsource);

274

} else {

275

fprintf(stderr, "%s %s (%s): ", prompt, cryptsource,

276

crypttarget);

277

}

278

}

279

}

fprintf(stderr, "Password: ");

280

ret = getline(&buffer, &n, stdin);

281

if(ret > 0){

if (ret > 0){

fprintf(stdout, "%s", buffer);

282

status = EXIT_SUCCESS;

283

/* Make n = data size instead of allocated buffer size */

284

n = (size_t)ret;

285

/* Strip final newline */

286

if(n > 0 and buffer[n-1] == '\n'){

287

buffer[n-1] = '\0'; /* not strictly necessary */

288

n--;

289

}

290

size_t written = 0;

291

while(written < n){

292

ret = write(STDOUT_FILENO, buffer + written, n - written);

293

if(ret < 0){

294

int e = errno;

295

perror("write");

296

switch(e){

297

case EBADF:

298

case EFAULT:

299

case EINVAL:

300

case EFBIG:

301

case EIO:

302

case ENOSPC:

303

default:

304

status = EX_IOERR;

305

break;

306

case EINTR:

307

status = EXIT_FAILURE;

308

break;

309

}

310

break;

311

}

312

written += (size_t)ret;

313

}

314

ret = close(STDOUT_FILENO);

315

if(ret == -1){

316

int e = errno;

317

perror("close");

318

switch(e){

319

case EBADF:

320

status = EX_OSFILE;

321

break;

322

case EIO:

323

default:

324

status = EX_IOERR;

325

break;

326

}

327

}

328

break;

329

}

330

if(ret < 0){

331

int e = errno;

332

if(errno != EINTR and not feof(stdin)){

// ret == 0 makes no other sence than to retry to read from stdin

if (ret < 0){

if (errno != EINTR and not feof(stdin)){

333

perror("getline");

334

switch(e){

335

case EBADF:

336

status = EX_UNAVAILABLE;

337

case EIO:

338

case EINVAL:

339

default:

340

status = EX_IOERR;

341

break;

342

}

status = EXIT_FAILURE;

343

break;

344

}

345

}

346

/* if(ret == 0), then the only sensible thing to do is to retry to

347

read from stdin */

348

fputc('\n', stderr);

349

if(debug and not quit_now){

350

/* If quit_now is nonzero, we were interrupted by a signal, and

351

will print that later, so no need to show this too. */

352

fprintf(stderr, "getline() returned 0, retrying.\n");

353

}

354

}

355

356

free(buffer);

357

358

if(debug){

359

fprintf(stderr, "Restoring terminal attributes\n");

360

}

361

if(tcsetattr(STDIN_FILENO, TCSAFLUSH, &t_old) != 0){

}

if (tcsetattr(STDIN_FILENO, TCSAFLUSH, &t_old) != 0){

362

perror("tcsetattr+echo");

363

}

364

365

if(quit_now){

366

sigemptyset(&old_action.sa_mask);

367

old_action.sa_handler = SIG_DFL;

368

ret = sigaction(signal_received, &old_action, NULL);

369

if(ret == -1){

370

perror("sigaction");

371

}

372

raise(signal_received);

373

}

374

375

if(debug){

376

fprintf(stderr, "%s is exiting with status %d\n", argv[0],

377

status);

378

}

379

if(status == EXIT_SUCCESS or status == EX_OK){

380

fputc('\n', stderr);

381

}

382

383

return status;

384

}

Older »