To get this branch, use:
bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk
« back to all changes in this revision
Viewing changes to plugins.d/mandos-client.c
- browse files at revision 238
- compare with another revision
- download diff
- download tarball
- view history from revision 238
- Committer: Teddy Hogeborn
- Date: 2008-12-10 01:26:02 UTC
- mfrom: (237.1.2 mandos)
- Revision ID: teddy@fukt.bsnet.se-20081210012602-vhz3h75xkj24t340
First version of a somewhat complete D-Bus server interface. Also
change user/group name to "_mandos".
* debian/mandos.postinst: Rename old "mandos" user and group to
"_mandos"; create "_mandos" user and group
if none exist.
* debian/mandos-client.postinst: - '' -
* initramfs-tools-hook: Try "_mandos" before "mandos" as user and
group name.
* mandos (_datetime_to_dbus_struct): New; was previously local.
(Client.started): Renamed to "last_started". All users changed.
(Client.started): New; boolean.
(Client.dbus_object_path): New.
(Client.check_command): Renamed to "checker_command". All users
changed.
(Client.__init__): Set and use "self.dbus_object_path". Set
"self.started".
(Client.start): Update "self.started". Emit "self.PropertyChanged"
signals for both "started" and "last_started".
(Client.stop): Update "self.started". Emit "self.PropertyChanged"
signal for "started".
(Client.checker_callback): Take additional "command" argument. All
callers changed. Emit
"self.PropertyChanged" signal.
(Client.bump_timeout): Emit "self.PropertyChanged" signal for
"last_checked_ok".
(Client.start_checker): Emit "self.PropertyChanged" signal for
"checker_running".
(Client.stop_checker): Emit "self.PropertyChanged" signal for
"checker_running".
(Client.still_valid): Bug fix: use "getattr(self, started, False)"
instead of "self.started" in case this client
object is so new that the "started" attribute
has not been created yet.
(Client.IntervalChanged, Client.CheckerIsRunning, Client.GetChecker,
Client.GetCreated, Client.GetFingerprint, Client.GetHost,
Client.GetInterval, Client.GetName, Client.GetStarted,
Client.GetTimeout, Client.StateChanged, Client.TimeoutChanged):
Removed; all callers changed.
(Client.CheckerCompleted): Add "condition" and "command" arguments.
All callers changed.
(Client.GetAllProperties, Client.PropertyChanged): New.
(Client.StillValid): Renamed to "IsStillValid".
(Client.StartChecker): Changed to its own function to avoid the
return value from "Client.start_checker()".
(Client.Stop): Changed to its own function to avoid the return value
from "Client.stop()".
(main): Try "_mandos" before "mandos" as user and group name.
Removed inner function "remove_from_clients". New inner
class "MandosServer".
change user/group name to "_mandos".
* debian/mandos.postinst: Rename old "mandos" user and group to
"_mandos"; create "_mandos" user and group
if none exist.
* debian/mandos-client.postinst: - '' -
* initramfs-tools-hook: Try "_mandos" before "mandos" as user and
group name.
* mandos (_datetime_to_dbus_struct): New; was previously local.
(Client.started): Renamed to "last_started". All users changed.
(Client.started): New; boolean.
(Client.dbus_object_path): New.
(Client.check_command): Renamed to "checker_command". All users
changed.
(Client.__init__): Set and use "self.dbus_object_path". Set
"self.started".
(Client.start): Update "self.started". Emit "self.PropertyChanged"
signals for both "started" and "last_started".
(Client.stop): Update "self.started". Emit "self.PropertyChanged"
signal for "started".
(Client.checker_callback): Take additional "command" argument. All
callers changed. Emit
"self.PropertyChanged" signal.
(Client.bump_timeout): Emit "self.PropertyChanged" signal for
"last_checked_ok".
(Client.start_checker): Emit "self.PropertyChanged" signal for
"checker_running".
(Client.stop_checker): Emit "self.PropertyChanged" signal for
"checker_running".
(Client.still_valid): Bug fix: use "getattr(self, started, False)"
instead of "self.started" in case this client
object is so new that the "started" attribute
has not been created yet.
(Client.IntervalChanged, Client.CheckerIsRunning, Client.GetChecker,
Client.GetCreated, Client.GetFingerprint, Client.GetHost,
Client.GetInterval, Client.GetName, Client.GetStarted,
Client.GetTimeout, Client.StateChanged, Client.TimeoutChanged):
Removed; all callers changed.
(Client.CheckerCompleted): Add "condition" and "command" arguments.
All callers changed.
(Client.GetAllProperties, Client.PropertyChanged): New.
(Client.StillValid): Renamed to "IsStillValid".
(Client.StartChecker): Changed to its own function to avoid the
return value from "Client.start_checker()".
(Client.Stop): Changed to its own function to avoid the return value
from "Client.stop()".
(main): Try "_mandos" before "mandos" as user and group name.
Removed inner function "remove_from_clients". New inner
class "MandosServer".
- files added:
- debian/mandos-client.config
- files removed:
- debian/watch
- files modified:
- INSTALL
added
removed
plugins.d/mandos-client.c
1
1
/* -*- coding: utf-8 -*- */
2
2
/*
3
* Mandos-client - get and decrypt data from a Mandos server
3
* Mandos client - get and decrypt data from a Mandos server
4
4
*
5
5
* This program is partly derived from an example program for an Avahi
6
6
* service browser, downloaded from
9
9
* "browse_callback", and parts of "main".
10
10
*
11
11
* Everything else is
12
* Copyright © 2008,2009 Teddy Hogeborn
13
* Copyright © 2008,2009 Björn Påhlsson
12
* Copyright © 2008 Teddy Hogeborn
13
* Copyright © 2008 Björn Påhlsson
14
14
*
15
15
* This program is free software: you can redistribute it and/or
16
16
* modify it under the terms of the GNU General Public License as
30
30
*/
31
31
32
32
/* Needed by GPGME, specifically gpgme_data_seek() */
33
#ifndef _LARGEFILE_SOURCE
34
33
#define _LARGEFILE_SOURCE
35
#endif
36
#ifndef _FILE_OFFSET_BITS
37
34
#define _FILE_OFFSET_BITS 64
38
#endif
39
35
40
36
#define _GNU_SOURCE /* TEMP_FAILURE_RETRY(), asprintf() */
41
37
42
38
#include <stdio.h> /* fprintf(), stderr, fwrite(),
43
stdout, ferror(), remove() */
39
stdout, ferror() */
44
40
#include <stdint.h> /* uint16_t, uint32_t */
45
41
#include <stddef.h> /* NULL, size_t, ssize_t */
46
42
#include <stdlib.h> /* free(), EXIT_SUCCESS, EXIT_FAILURE,
47
srand(), strtof() */
48
#include <stdbool.h> /* bool, false, true */
43
srand() */
44
#include <stdbool.h> /* bool, true */
49
45
#include <string.h> /* memset(), strcmp(), strlen(),
50
46
strerror(), asprintf(), strcpy() */
51
#include <sys/ioctl.h> /* ioctl */
47
#include <sys/ioctl.h> /* ioctl */
52
48
#include <sys/types.h> /* socket(), inet_pton(), sockaddr,
53
49
sockaddr_in6, PF_INET6,
54
SOCK_STREAM, uid_t, gid_t, open(),
55
opendir(), DIR */
50
SOCK_STREAM, INET6_ADDRSTRLEN,
51
uid_t, gid_t, open(), opendir(), DIR */
56
52
#include <sys/stat.h> /* open() */
57
53
#include <sys/socket.h> /* socket(), struct sockaddr_in6,
58
inet_pton(), connect() */
54
struct in6_addr, inet_pton(),
55
connect() */
59
56
#include <fcntl.h> /* open() */
60
#include <dirent.h> /* opendir(), struct dirent, readdir()
61
*/
62
#include <inttypes.h> /* PRIu16, PRIdMAX, intmax_t,
63
strtoimax() */
57
#include <dirent.h> /* opendir(), struct dirent, readdir() */
58
#include <inttypes.h> /* PRIu16 */
64
59
#include <assert.h> /* assert() */
65
60
#include <errno.h> /* perror(), errno */
66
#include <time.h> /* nanosleep(), time() */
61
#include <time.h> /* time() */
67
62
#include <net/if.h> /* ioctl, ifreq, SIOCGIFFLAGS, IFF_UP,
68
63
SIOCSIFFLAGS, if_indextoname(),
69
64
if_nametoindex(), IF_NAMESIZE */
70
#include <netinet/in.h> /* IN6_IS_ADDR_LINKLOCAL,
71
INET_ADDRSTRLEN, INET6_ADDRSTRLEN
72
*/
65
#include <netinet/in.h>
73
66
#include <unistd.h> /* close(), SEEK_SET, off_t, write(),
74
67
getuid(), getgid(), setuid(),
75
68
setgid() */
76
69
#include <arpa/inet.h> /* inet_pton(), htons */
77
#include <iso646.h> /* not, or, and */
70
#include <iso646.h> /* not, and */
78
71
#include <argp.h> /* struct argp_option, error_t, struct
79
72
argp_state, struct argp,
80
73
argp_parse(), ARGP_KEY_ARG,
81
74
ARGP_KEY_END, ARGP_ERR_UNKNOWN */
82
#include <signal.h> /* sigemptyset(), sigaddset(),
83
sigaction(), SIGTERM, sig_atomic_t,
84
raise() */
85
86
#ifdef __linux__
87
#include <sys/klog.h> /* klogctl() */
88
#endif /* __linux__ */
89
75
90
76
/* Avahi */
91
77
/* All Avahi types, constants and functions
104
90
gnutls_*
105
91
init_gnutls_session(),
106
92
GNUTLS_* */
107
#include <gnutls/openpgp.h>
108
/* gnutls_certificate_set_openpgp_key_file(),
93
#include <gnutls/openpgp.h> /* gnutls_certificate_set_openpgp_key_file(),
109
94
GNUTLS_OPENPGP_FMT_BASE64 */
110
95
111
96
/* GPGME */
137
122
gpgme_ctx_t ctx;
138
123
} mandos_context;
139
124
140
/* global context so signal handler can reach it*/
141
mandos_context mc = { .simple_poll = NULL, .server = NULL,
142
.dh_bits = 1024, .priority = "SECURE256"
143
":!CTYPE-X.509:+CTYPE-OPENPGP" };
144
145
125
/*
146
* Make additional room in "buffer" for at least BUFFER_SIZE more
147
* bytes. "buffer_capacity" is how much is currently allocated,
126
* Make room in "buffer" for at least BUFFER_SIZE additional bytes.
127
* "buffer_capacity" is how much is currently allocated,
148
128
* "buffer_length" is how much is already used.
149
129
*/
150
size_t incbuffer(char **buffer, size_t buffer_length,
130
size_t adjustbuffer(char **buffer, size_t buffer_length,
151
131
size_t buffer_capacity){
152
if(buffer_length + BUFFER_SIZE > buffer_capacity){
132
if (buffer_length + BUFFER_SIZE > buffer_capacity){
153
133
*buffer = realloc(*buffer, buffer_capacity + BUFFER_SIZE);
154
if(buffer == NULL){
134
if (buffer == NULL){
155
135
return 0;
156
136
}
157
137
buffer_capacity += BUFFER_SIZE;
162
142
/*
163
143
* Initialize GPGME.
164
144
*/
165
static bool init_gpgme(const char *seckey,
145
static bool init_gpgme(mandos_context *mc, const char *seckey,
166
146
const char *pubkey, const char *tempdir){
167
147
int ret;
168
148
gpgme_error_t rc;
170
150
171
151
172
152
/*
173
* Helper function to insert pub and seckey to the engine keyring.
153
* Helper function to insert pub and seckey to the enigne keyring.
174
154
*/
175
155
bool import_key(const char *filename){
176
156
int fd;
177
157
gpgme_data_t pgp_data;
178
158
179
fd = (int)TEMP_FAILURE_RETRY(open(filename, O_RDONLY));
159
fd = TEMP_FAILURE_RETRY(open(filename, O_RDONLY));
180
160
if(fd == -1){
181
161
perror("open");
182
162
return false;
183
163
}
184
164
185
165
rc = gpgme_data_new_from_fd(&pgp_data, fd);
186
if(rc != GPG_ERR_NO_ERROR){
166
if (rc != GPG_ERR_NO_ERROR){
187
167
fprintf(stderr, "bad gpgme_data_new_from_fd: %s: %s\n",
188
168
gpgme_strsource(rc), gpgme_strerror(rc));
189
169
return false;
190
170
}
191
171
192
rc = gpgme_op_import(mc.ctx, pgp_data);
193
if(rc != GPG_ERR_NO_ERROR){
172
rc = gpgme_op_import(mc->ctx, pgp_data);
173
if (rc != GPG_ERR_NO_ERROR){
194
174
fprintf(stderr, "bad gpgme_op_import: %s: %s\n",
195
175
gpgme_strsource(rc), gpgme_strerror(rc));
196
176
return false;
197
177
}
198
178
199
ret = (int)TEMP_FAILURE_RETRY(close(fd));
179
ret = TEMP_FAILURE_RETRY(close(fd));
200
180
if(ret == -1){
201
181
perror("close");
202
182
}
204
184
return true;
205
185
}
206
186
207
if(debug){
208
fprintf(stderr, "Initializing GPGME\n");
187
if (debug){
188
fprintf(stderr, "Initialize gpgme\n");
209
189
}
210
190
211
191
/* Init GPGME */
212
192
gpgme_check_version(NULL);
213
193
rc = gpgme_engine_check_version(GPGME_PROTOCOL_OpenPGP);
214
if(rc != GPG_ERR_NO_ERROR){
194
if (rc != GPG_ERR_NO_ERROR){
215
195
fprintf(stderr, "bad gpgme_engine_check_version: %s: %s\n",
216
196
gpgme_strsource(rc), gpgme_strerror(rc));
217
197
return false;
218
198
}
219
199
220
200
/* Set GPGME home directory for the OpenPGP engine only */
221
rc = gpgme_get_engine_info(&engine_info);
222
if(rc != GPG_ERR_NO_ERROR){
201
rc = gpgme_get_engine_info (&engine_info);
202
if (rc != GPG_ERR_NO_ERROR){
223
203
fprintf(stderr, "bad gpgme_get_engine_info: %s: %s\n",
224
204
gpgme_strsource(rc), gpgme_strerror(rc));
225
205
return false;
238
218
}
239
219
240
220
/* Create new GPGME "context" */
241
rc = gpgme_new(&(mc.ctx));
242
if(rc != GPG_ERR_NO_ERROR){
221
rc = gpgme_new(&(mc->ctx));
222
if (rc != GPG_ERR_NO_ERROR){
243
223
fprintf(stderr, "bad gpgme_new: %s: %s\n",
244
224
gpgme_strsource(rc), gpgme_strerror(rc));
245
225
return false;
246
226
}
247
227
248
if(not import_key(pubkey) or not import_key(seckey)){
228
if (not import_key(pubkey) or not import_key(seckey)){
249
229
return false;
250
230
}
251
231
252
return true;
232
return true;
253
233
}
254
234
255
235
/*
256
236
* Decrypt OpenPGP data.
257
237
* Returns -1 on error
258
238
*/
259
static ssize_t pgp_packet_decrypt(const char *cryptotext,
260
size_t crypto_size,
261
char **plaintext){
239
static ssize_t pgp_packet_decrypt (const mandos_context *mc,
240
const char *cryptotext,
241
size_t crypto_size,
242
char **plaintext){
262
243
gpgme_data_t dh_crypto, dh_plain;
263
244
gpgme_error_t rc;
264
245
ssize_t ret;
265
246
size_t plaintext_capacity = 0;
266
247
ssize_t plaintext_length = 0;
267
248
268
if(debug){
249
if (debug){
269
250
fprintf(stderr, "Trying to decrypt OpenPGP data\n");
270
251
}
271
252
272
253
/* Create new GPGME data buffer from memory cryptotext */
273
254
rc = gpgme_data_new_from_mem(&dh_crypto, cryptotext, crypto_size,
274
255
0);
275
if(rc != GPG_ERR_NO_ERROR){
256
if (rc != GPG_ERR_NO_ERROR){
276
257
fprintf(stderr, "bad gpgme_data_new_from_mem: %s: %s\n",
277
258
gpgme_strsource(rc), gpgme_strerror(rc));
278
259
return -1;
280
261
281
262
/* Create new empty GPGME data buffer for the plaintext */
282
263
rc = gpgme_data_new(&dh_plain);
283
if(rc != GPG_ERR_NO_ERROR){
264
if (rc != GPG_ERR_NO_ERROR){
284
265
fprintf(stderr, "bad gpgme_data_new: %s: %s\n",
285
266
gpgme_strsource(rc), gpgme_strerror(rc));
286
267
gpgme_data_release(dh_crypto);
289
270
290
271
/* Decrypt data from the cryptotext data buffer to the plaintext
291
272
data buffer */
292
rc = gpgme_op_decrypt(mc.ctx, dh_crypto, dh_plain);
293
if(rc != GPG_ERR_NO_ERROR){
273
rc = gpgme_op_decrypt(mc->ctx, dh_crypto, dh_plain);
274
if (rc != GPG_ERR_NO_ERROR){
294
275
fprintf(stderr, "bad gpgme_op_decrypt: %s: %s\n",
295
276
gpgme_strsource(rc), gpgme_strerror(rc));
296
277
plaintext_length = -1;
297
if(debug){
278
if (debug){
298
279
gpgme_decrypt_result_t result;
299
result = gpgme_op_decrypt_result(mc.ctx);
300
if(result == NULL){
280
result = gpgme_op_decrypt_result(mc->ctx);
281
if (result == NULL){
301
282
fprintf(stderr, "gpgme_op_decrypt_result failed\n");
302
283
} else {
303
284
fprintf(stderr, "Unsupported algorithm: %s\n",
309
290
}
310
291
gpgme_recipient_t recipient;
311
292
recipient = result->recipients;
312
while(recipient != NULL){
313
fprintf(stderr, "Public key algorithm: %s\n",
314
gpgme_pubkey_algo_name(recipient->pubkey_algo));
315
fprintf(stderr, "Key ID: %s\n", recipient->keyid);
316
fprintf(stderr, "Secret key available: %s\n",
317
recipient->status == GPG_ERR_NO_SECKEY
318
? "No" : "Yes");
319
recipient = recipient->next;
293
if(recipient){
294
while(recipient != NULL){
295
fprintf(stderr, "Public key algorithm: %s\n",
296
gpgme_pubkey_algo_name(recipient->pubkey_algo));
297
fprintf(stderr, "Key ID: %s\n", recipient->keyid);
298
fprintf(stderr, "Secret key available: %s\n",
299
recipient->status == GPG_ERR_NO_SECKEY
300
? "No" : "Yes");
301
recipient = recipient->next;
302
}
320
303
}
321
304
}
322
305
}
328
311
}
329
312
330
313
/* Seek back to the beginning of the GPGME plaintext data buffer */
331
if(gpgme_data_seek(dh_plain, (off_t)0, SEEK_SET) == -1){
314
if (gpgme_data_seek(dh_plain, (off_t) 0, SEEK_SET) == -1){
332
315
perror("gpgme_data_seek");
333
316
plaintext_length = -1;
334
317
goto decrypt_end;
336
319
337
320
*plaintext = NULL;
338
321
while(true){
339
plaintext_capacity = incbuffer(plaintext,
322
plaintext_capacity = adjustbuffer(plaintext,
340
323
(size_t)plaintext_length,
341
324
plaintext_capacity);
342
if(plaintext_capacity == 0){
343
perror("incbuffer");
325
if (plaintext_capacity == 0){
326
perror("adjustbuffer");
344
327
plaintext_length = -1;
345
328
goto decrypt_end;
346
329
}
348
331
ret = gpgme_data_read(dh_plain, *plaintext + plaintext_length,
349
332
BUFFER_SIZE);
350
333
/* Print the data, if any */
351
if(ret == 0){
334
if (ret == 0){
352
335
/* EOF */
353
336
break;
354
337
}
378
361
return plaintext_length;
379
362
}
380
363
381
static const char * safer_gnutls_strerror(int value){
382
const char *ret = gnutls_strerror(value); /* Spurious warning from
383
-Wunreachable-code */
384
if(ret == NULL)
364
static const char * safer_gnutls_strerror (int value) {
365
const char *ret = gnutls_strerror (value); /* Spurious warning */
366
if (ret == NULL)
385
367
ret = "(unknown)";
386
368
return ret;
387
369
}
392
374
fprintf(stderr, "GnuTLS: %s", string);
393
375
}
394
376
395
static int init_gnutls_global(const char *pubkeyfilename,
377
static int init_gnutls_global(mandos_context *mc,
378
const char *pubkeyfilename,
396
379
const char *seckeyfilename){
397
380
int ret;
398
381
401
384
}
402
385
403
386
ret = gnutls_global_init();
404
if(ret != GNUTLS_E_SUCCESS){
405
fprintf(stderr, "GnuTLS global_init: %s\n",
406
safer_gnutls_strerror(ret));
387
if (ret != GNUTLS_E_SUCCESS) {
388
fprintf (stderr, "GnuTLS global_init: %s\n",
389
safer_gnutls_strerror(ret));
407
390
return -1;
408
391
}
409
392
410
if(debug){
393
if (debug){
411
394
/* "Use a log level over 10 to enable all debugging options."
412
395
* - GnuTLS manual
413
396
*/
416
399
}
417
400
418
401
/* OpenPGP credentials */
419
gnutls_certificate_allocate_credentials(&mc.cred);
420
if(ret != GNUTLS_E_SUCCESS){
421
fprintf(stderr, "GnuTLS memory error: %s\n", /* Spurious warning
422
from
423
-Wunreachable-code
424
*/
425
safer_gnutls_strerror(ret));
426
gnutls_global_deinit();
402
gnutls_certificate_allocate_credentials(&mc->cred);
403
if (ret != GNUTLS_E_SUCCESS){
404
fprintf (stderr, "GnuTLS memory error: %s\n", /* Spurious
405
warning */
406
safer_gnutls_strerror(ret));
407
gnutls_global_deinit ();
427
408
return -1;
428
409
}
429
410
434
415
}
435
416
436
417
ret = gnutls_certificate_set_openpgp_key_file
437
(mc.cred, pubkeyfilename, seckeyfilename,
418
(mc->cred, pubkeyfilename, seckeyfilename,
438
419
GNUTLS_OPENPGP_FMT_BASE64);
439
if(ret != GNUTLS_E_SUCCESS){
420
if (ret != GNUTLS_E_SUCCESS) {
440
421
fprintf(stderr,
441
422
"Error[%d] while reading the OpenPGP key pair ('%s',"
442
423
" '%s')\n", ret, pubkeyfilename, seckeyfilename);
446
427
}
447
428
448
429
/* GnuTLS server initialization */
449
ret = gnutls_dh_params_init(&mc.dh_params);
450
if(ret != GNUTLS_E_SUCCESS){
451
fprintf(stderr, "Error in GnuTLS DH parameter initialization:"
452
" %s\n", safer_gnutls_strerror(ret));
430
ret = gnutls_dh_params_init(&mc->dh_params);
431
if (ret != GNUTLS_E_SUCCESS) {
432
fprintf (stderr, "Error in GnuTLS DH parameter initialization:"
433
" %s\n", safer_gnutls_strerror(ret));
453
434
goto globalfail;
454
435
}
455
ret = gnutls_dh_params_generate2(mc.dh_params, mc.dh_bits);
456
if(ret != GNUTLS_E_SUCCESS){
457
fprintf(stderr, "Error in GnuTLS prime generation: %s\n",
458
safer_gnutls_strerror(ret));
436
ret = gnutls_dh_params_generate2(mc->dh_params, mc->dh_bits);
437
if (ret != GNUTLS_E_SUCCESS) {
438
fprintf (stderr, "Error in GnuTLS prime generation: %s\n",
439
safer_gnutls_strerror(ret));
459
440
goto globalfail;
460
441
}
461
442
462
gnutls_certificate_set_dh_params(mc.cred, mc.dh_params);
443
gnutls_certificate_set_dh_params(mc->cred, mc->dh_params);
463
444
464
445
return 0;
465
446
466
447
globalfail:
467
448
468
gnutls_certificate_free_credentials(mc.cred);
449
gnutls_certificate_free_credentials(mc->cred);
469
450
gnutls_global_deinit();
470
gnutls_dh_params_deinit(mc.dh_params);
451
gnutls_dh_params_deinit(mc->dh_params);
471
452
return -1;
472
453
}
473
454
474
static int init_gnutls_session(gnutls_session_t *session){
455
static int init_gnutls_session(mandos_context *mc,
456
gnutls_session_t *session){
475
457
int ret;
476
458
/* GnuTLS session creation */
477
459
ret = gnutls_init(session, GNUTLS_SERVER);
478
if(ret != GNUTLS_E_SUCCESS){
460
if (ret != GNUTLS_E_SUCCESS){
479
461
fprintf(stderr, "Error in GnuTLS session initialization: %s\n",
480
462
safer_gnutls_strerror(ret));
481
463
}
482
464
483
465
{
484
466
const char *err;
485
ret = gnutls_priority_set_direct(*session, mc.priority, &err);
486
if(ret != GNUTLS_E_SUCCESS){
467
ret = gnutls_priority_set_direct(*session, mc->priority, &err);
468
if (ret != GNUTLS_E_SUCCESS) {
487
469
fprintf(stderr, "Syntax error at: %s\n", err);
488
470
fprintf(stderr, "GnuTLS error: %s\n",
489
471
safer_gnutls_strerror(ret));
490
gnutls_deinit(*session);
472
gnutls_deinit (*session);
491
473
return -1;
492
474
}
493
475
}
494
476
495
477
ret = gnutls_credentials_set(*session, GNUTLS_CRD_CERTIFICATE,
496
mc.cred);
497
if(ret != GNUTLS_E_SUCCESS){
478
mc->cred);
479
if (ret != GNUTLS_E_SUCCESS) {
498
480
fprintf(stderr, "Error setting GnuTLS credentials: %s\n",
499
481
safer_gnutls_strerror(ret));
500
gnutls_deinit(*session);
482
gnutls_deinit (*session);
501
483
return -1;
502
484
}
503
485
504
486
/* ignore client certificate if any. */
505
gnutls_certificate_server_set_request(*session,
506
GNUTLS_CERT_IGNORE);
487
gnutls_certificate_server_set_request (*session,
488
GNUTLS_CERT_IGNORE);
507
489
508
gnutls_dh_set_prime_bits(*session, mc.dh_bits);
490
gnutls_dh_set_prime_bits (*session, mc->dh_bits);
509
491
510
492
return 0;
511
493
}
514
496
static void empty_log(__attribute__((unused)) AvahiLogLevel level,
515
497
__attribute__((unused)) const char *txt){}
516
498
517
sig_atomic_t quit_now = 0;
518
int signal_received = 0;
519
520
499
/* Called when a Mandos server is found */
521
500
static int start_mandos_communication(const char *ip, uint16_t port,
522
501
AvahiIfIndex if_index,
523
int af){
524
int ret, tcp_sd = -1;
525
ssize_t sret;
526
union {
527
struct sockaddr_in in;
528
struct sockaddr_in6 in6;
529
} to;
502
mandos_context *mc){
503
int ret, tcp_sd;
504
union { struct sockaddr in; struct sockaddr_in6 in6; } to;
530
505
char *buffer = NULL;
531
506
char *decrypted_buffer;
532
507
size_t buffer_length = 0;
534
509
ssize_t decrypted_buffer_size;
535
510
size_t written;
536
511
int retval = 0;
512
char interface[IF_NAMESIZE];
537
513
gnutls_session_t session;
538
int pf; /* Protocol family */
539
540
if(quit_now){
541
return -1;
542
}
543
544
switch(af){
545
case AF_INET6:
546
pf = PF_INET6;
547
break;
548
case AF_INET:
549
pf = PF_INET;
550
break;
551
default:
552
fprintf(stderr, "Bad address family: %d\n", af);
553
return -1;
554
}
555
556
ret = init_gnutls_session(&session);
557
if(ret != 0){
514
515
ret = init_gnutls_session (mc, &session);
516
if (ret != 0){
558
517
return -1;
559
518
}
560
519
561
520
if(debug){
562
fprintf(stderr, "Setting up a TCP connection to %s, port %" PRIu16
521
fprintf(stderr, "Setting up a tcp connection to %s, port %" PRIu16
563
522
"\n", ip, port);
564
523
}
565
524
566
tcp_sd = socket(pf, SOCK_STREAM, 0);
567
if(tcp_sd < 0){
525
tcp_sd = socket(PF_INET6, SOCK_STREAM, 0);
526
if(tcp_sd < 0) {
568
527
perror("socket");
569
retval = -1;
570
goto mandos_end;
528
return -1;
571
529
}
572
530
573
if(quit_now){
574
goto mandos_end;
531
if(debug){
532
if(if_indextoname((unsigned int)if_index, interface) == NULL){
533
perror("if_indextoname");
534
return -1;
535
}
536
fprintf(stderr, "Binding to interface %s\n", interface);
575
537
}
576
538
577
539
memset(&to, 0, sizeof(to));
578
if(af == AF_INET6){
579
to.in6.sin6_family = (sa_family_t)af;
580
ret = inet_pton(af, ip, &to.in6.sin6_addr);
581
} else { /* IPv4 */
582
to.in.sin_family = (sa_family_t)af;
583
ret = inet_pton(af, ip, &to.in.sin_addr);
584
}
585
if(ret < 0 ){
540
to.in6.sin6_family = AF_INET6;
541
/* It would be nice to have a way to detect if we were passed an
542
IPv4 address here. Now we assume an IPv6 address. */
543
ret = inet_pton(AF_INET6, ip, &to.in6.sin6_addr);
544
if (ret < 0 ){
586
545
perror("inet_pton");
587
retval = -1;
588
goto mandos_end;
546
return -1;
589
547
}
590
548
if(ret == 0){
591
549
fprintf(stderr, "Bad address: %s\n", ip);
592
retval = -1;
593
goto mandos_end;
594
}
595
if(af == AF_INET6){
596
to.in6.sin6_port = htons(port); /* Spurious warnings from
597
-Wconversion and
598
-Wunreachable-code */
599
600
if(IN6_IS_ADDR_LINKLOCAL /* Spurious warnings from */
601
(&to.in6.sin6_addr)){ /* -Wstrict-aliasing=2 or lower and
602
-Wunreachable-code*/
603
if(if_index == AVAHI_IF_UNSPEC){
604
fprintf(stderr, "An IPv6 link-local address is incomplete"
605
" without a network interface\n");
606
retval = -1;
607
goto mandos_end;
608
}
609
/* Set the network interface number as scope */
610
to.in6.sin6_scope_id = (uint32_t)if_index;
611
}
612
} else {
613
to.in.sin_port = htons(port); /* Spurious warnings from
614
-Wconversion and
615
-Wunreachable-code */
616
}
550
return -1;
551
}
552
to.in6.sin6_port = htons(port); /* Spurious warning */
617
553
618
if(quit_now){
619
goto mandos_end;
620
}
554
to.in6.sin6_scope_id = (uint32_t)if_index;
621
555
622
556
if(debug){
623
if(af == AF_INET6 and if_index != AVAHI_IF_UNSPEC){
624
char interface[IF_NAMESIZE];
625
if(if_indextoname((unsigned int)if_index, interface) == NULL){
626
perror("if_indextoname");
627
} else {
628
fprintf(stderr, "Connection to: %s%%%s, port %" PRIu16 "\n",
629
ip, interface, port);
630
}
631
} else {
632
fprintf(stderr, "Connection to: %s, port %" PRIu16 "\n", ip,
633
port);
634
}
635
char addrstr[(INET_ADDRSTRLEN > INET6_ADDRSTRLEN) ?
636
INET_ADDRSTRLEN : INET6_ADDRSTRLEN] = "";
637
const char *pcret;
638
if(af == AF_INET6){
639
pcret = inet_ntop(af, &(to.in6.sin6_addr), addrstr,
640
sizeof(addrstr));
641
} else {
642
pcret = inet_ntop(af, &(to.in.sin_addr), addrstr,
643
sizeof(addrstr));
644
}
645
if(pcret == NULL){
557
fprintf(stderr, "Connection to: %s, port %" PRIu16 "\n", ip,
558
port);
559
char addrstr[INET6_ADDRSTRLEN] = "";
560
if(inet_ntop(to.in6.sin6_family, &(to.in6.sin6_addr), addrstr,
561
sizeof(addrstr)) == NULL){
646
562
perror("inet_ntop");
647
563
} else {
648
564
if(strcmp(addrstr, ip) != 0){
651
567
}
652
568
}
653
569
654
if(quit_now){
655
goto mandos_end;
656
}
657
658
if(af == AF_INET6){
659
ret = connect(tcp_sd, &to.in6, sizeof(to));
660
} else {
661
ret = connect(tcp_sd, &to.in, sizeof(to)); /* IPv4 */
662
}
663
if(ret < 0){
570
ret = connect(tcp_sd, &to.in, sizeof(to));
571
if (ret < 0){
664
572
perror("connect");
665
retval = -1;
666
goto mandos_end;
667
}
668
669
if(quit_now){
670
goto mandos_end;
573
return -1;
671
574
}
672
575
673
576
const char *out = mandos_protocol_version;
674
577
written = 0;
675
while(true){
578
while (true){
676
579
size_t out_size = strlen(out);
677
ret = (int)TEMP_FAILURE_RETRY(write(tcp_sd, out + written,
580
ret = TEMP_FAILURE_RETRY(write(tcp_sd, out + written,
678
581
out_size - written));
679
if(ret == -1){
582
if (ret == -1){
680
583
perror("write");
681
584
retval = -1;
682
585
goto mandos_end;
685
588
if(written < out_size){
686
589
continue;
687
590
} else {
688
if(out == mandos_protocol_version){
591
if (out == mandos_protocol_version){
689
592
written = 0;
690
593
out = "\r\n";
691
594
} else {
692
595
break;
693
596
}
694
597
}
695
696
if(quit_now){
697
goto mandos_end;
698
}
699
598
}
700
599
701
600
if(debug){
702
601
fprintf(stderr, "Establishing TLS session with %s\n", ip);
703
602
}
704
603
705
if(quit_now){
706
goto mandos_end;
707
}
708
709
gnutls_transport_set_ptr(session, (gnutls_transport_ptr_t) tcp_sd);
710
711
if(quit_now){
712
goto mandos_end;
713
}
604
gnutls_transport_set_ptr (session, (gnutls_transport_ptr_t) tcp_sd);
714
605
715
606
do{
716
ret = gnutls_handshake(session);
717
if(quit_now){
718
goto mandos_end;
719
}
607
ret = gnutls_handshake (session);
720
608
} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);
721
609
722
if(ret != GNUTLS_E_SUCCESS){
610
if (ret != GNUTLS_E_SUCCESS){
723
611
if(debug){
724
612
fprintf(stderr, "*** GnuTLS Handshake failed ***\n");
725
gnutls_perror(ret);
613
gnutls_perror (ret);
726
614
}
727
615
retval = -1;
728
616
goto mandos_end;
731
619
/* Read OpenPGP packet that contains the wanted password */
732
620
733
621
if(debug){
734
fprintf(stderr, "Retrieving OpenPGP encrypted password from %s\n",
622
fprintf(stderr, "Retrieving pgp encrypted password from %s\n",
735
623
ip);
736
624
}
737
625
738
626
while(true){
739
740
if(quit_now){
741
goto mandos_end;
742
}
743
744
buffer_capacity = incbuffer(&buffer, buffer_length,
627
buffer_capacity = adjustbuffer(&buffer, buffer_length,
745
628
buffer_capacity);
746
if(buffer_capacity == 0){
747
perror("incbuffer");
629
if (buffer_capacity == 0){
630
perror("adjustbuffer");
748
631
retval = -1;
749
632
goto mandos_end;
750
633
}
751
634
752
if(quit_now){
753
goto mandos_end;
754
}
755
756
sret = gnutls_record_recv(session, buffer+buffer_length,
757
BUFFER_SIZE);
758
if(sret == 0){
635
ret = gnutls_record_recv(session, buffer+buffer_length,
636
BUFFER_SIZE);
637
if (ret == 0){
759
638
break;
760
639
}
761
if(sret < 0){
762
switch(sret){
640
if (ret < 0){
641
switch(ret){
763
642
case GNUTLS_E_INTERRUPTED:
764
643
case GNUTLS_E_AGAIN:
765
644
break;
766
645
case GNUTLS_E_REHANDSHAKE:
767
646
do{
768
ret = gnutls_handshake(session);
769
770
if(quit_now){
771
goto mandos_end;
772
}
647
ret = gnutls_handshake (session);
773
648
} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);
774
if(ret < 0){
649
if (ret < 0){
775
650
fprintf(stderr, "*** GnuTLS Re-handshake failed ***\n");
776
gnutls_perror(ret);
651
gnutls_perror (ret);
777
652
retval = -1;
778
653
goto mandos_end;
779
654
}
782
657
fprintf(stderr, "Unknown error while reading data from"
783
658
" encrypted session with Mandos server\n");
784
659
retval = -1;
785
gnutls_bye(session, GNUTLS_SHUT_RDWR);
660
gnutls_bye (session, GNUTLS_SHUT_RDWR);
786
661
goto mandos_end;
787
662
}
788
663
} else {
789
buffer_length += (size_t) sret;
664
buffer_length += (size_t) ret;
790
665
}
791
666
}
792
667
794
669
fprintf(stderr, "Closing TLS session\n");
795
670
}
796
671
797
if(quit_now){
798
goto mandos_end;
799
}
800
801
gnutls_bye(session, GNUTLS_SHUT_RDWR);
802
803
if(quit_now){
804
goto mandos_end;
805
}
806
807
if(buffer_length > 0){
808
decrypted_buffer_size = pgp_packet_decrypt(buffer,
672
gnutls_bye (session, GNUTLS_SHUT_RDWR);
673
674
if (buffer_length > 0){
675
decrypted_buffer_size = pgp_packet_decrypt(mc, buffer,
809
676
buffer_length,
810
677
&decrypted_buffer);
811
if(decrypted_buffer_size >= 0){
678
if (decrypted_buffer_size >= 0){
812
679
written = 0;
813
680
while(written < (size_t) decrypted_buffer_size){
814
if(quit_now){
815
goto mandos_end;
816
}
817
818
ret = (int)fwrite(decrypted_buffer + written, 1,
819
(size_t)decrypted_buffer_size - written,
820
stdout);
681
ret = (int)fwrite (decrypted_buffer + written, 1,
682
(size_t)decrypted_buffer_size - written,
683
stdout);
821
684
if(ret == 0 and ferror(stdout)){
822
685
if(debug){
823
686
fprintf(stderr, "Error writing encrypted data: %s\n",
840
703
841
704
mandos_end:
842
705
free(buffer);
843
if(tcp_sd >= 0){
844
ret = (int)TEMP_FAILURE_RETRY(close(tcp_sd));
845
}
706
ret = TEMP_FAILURE_RETRY(close(tcp_sd));
846
707
if(ret == -1){
847
708
perror("close");
848
709
}
849
gnutls_deinit(session);
850
if(quit_now){
851
retval = -1;
852
}
710
gnutls_deinit (session);
853
711
return retval;
854
712
}
855
713
856
714
static void resolve_callback(AvahiSServiceResolver *r,
857
715
AvahiIfIndex interface,
858
AvahiProtocol proto,
716
AVAHI_GCC_UNUSED AvahiProtocol protocol,
859
717
AvahiResolverEvent event,
860
718
const char *name,
861
719
const char *type,
866
724
AVAHI_GCC_UNUSED AvahiStringList *txt,
867
725
AVAHI_GCC_UNUSED AvahiLookupResultFlags
868
726
flags,
869
AVAHI_GCC_UNUSED void* userdata){
727
void* userdata) {
728
mandos_context *mc = userdata;
870
729
assert(r);
871
730
872
731
/* Called whenever a service has been resolved successfully or
873
732
timed out */
874
733
875
if(quit_now){
876
return;
877
}
878
879
switch(event){
734
switch (event) {
880
735
default:
881
736
case AVAHI_RESOLVER_FAILURE:
882
737
fprintf(stderr, "(Avahi Resolver) Failed to resolve service '%s'"
883
738
" of type '%s' in domain '%s': %s\n", name, type, domain,
884
avahi_strerror(avahi_server_errno(mc.server)));
739
avahi_strerror(avahi_server_errno(mc->server)));
885
740
break;
886
741
887
742
case AVAHI_RESOLVER_FOUND:
890
745
avahi_address_snprint(ip, sizeof(ip), address);
891
746
if(debug){
892
747
fprintf(stderr, "Mandos server \"%s\" found on %s (%s, %"
893
PRIdMAX ") on port %" PRIu16 "\n", name, host_name,
894
ip, (intmax_t)interface, port);
748
PRIu16 ") on port %d\n", name, host_name, ip,
749
interface, port);
895
750
}
896
int ret = start_mandos_communication(ip, port, interface,
897
avahi_proto_to_af(proto));
898
if(ret == 0){
899
avahi_simple_poll_quit(mc.simple_poll);
751
int ret = start_mandos_communication(ip, port, interface, mc);
752
if (ret == 0){
753
avahi_simple_poll_quit(mc->simple_poll);
900
754
}
901
755
}
902
756
}
903
757
avahi_s_service_resolver_free(r);
904
758
}
905
759
906
static void browse_callback(AvahiSServiceBrowser *b,
907
AvahiIfIndex interface,
908
AvahiProtocol protocol,
909
AvahiBrowserEvent event,
910
const char *name,
911
const char *type,
912
const char *domain,
913
AVAHI_GCC_UNUSED AvahiLookupResultFlags
914
flags,
915
AVAHI_GCC_UNUSED void* userdata){
760
static void browse_callback( AvahiSServiceBrowser *b,
761
AvahiIfIndex interface,
762
AvahiProtocol protocol,
763
AvahiBrowserEvent event,
764
const char *name,
765
const char *type,
766
const char *domain,
767
AVAHI_GCC_UNUSED AvahiLookupResultFlags
768
flags,
769
void* userdata) {
770
mandos_context *mc = userdata;
916
771
assert(b);
917
772
918
773
/* Called whenever a new services becomes available on the LAN or
919
774
is removed from the LAN */
920
775
921
if(quit_now){
922
return;
923
}
924
925
switch(event){
776
switch (event) {
926
777
default:
927
778
case AVAHI_BROWSER_FAILURE:
928
779
929
780
fprintf(stderr, "(Avahi browser) %s\n",
930
avahi_strerror(avahi_server_errno(mc.server)));
931
avahi_simple_poll_quit(mc.simple_poll);
781
avahi_strerror(avahi_server_errno(mc->server)));
782
avahi_simple_poll_quit(mc->simple_poll);
932
783
return;
933
784
934
785
case AVAHI_BROWSER_NEW:
937
788
the callback function is called the Avahi server will free the
938
789
resolver for us. */
939
790
940
if(avahi_s_service_resolver_new(mc.server, interface, protocol,
941
name, type, domain, protocol, 0,
942
resolve_callback, NULL) == NULL)
791
if (!(avahi_s_service_resolver_new(mc->server, interface,
792
protocol, name, type, domain,
793
AVAHI_PROTO_INET6, 0,
794
resolve_callback, mc)))
943
795
fprintf(stderr, "Avahi: Failed to resolve service '%s': %s\n",
944
name, avahi_strerror(avahi_server_errno(mc.server)));
796
name, avahi_strerror(avahi_server_errno(mc->server)));
945
797
break;
946
798
947
799
case AVAHI_BROWSER_REMOVE:
956
808
}
957
809
}
958
810
959
/* stop main loop after sigterm has been called */
960
static void handle_sigterm(int sig){
961
if(quit_now){
962
return;
963
}
964
quit_now = 1;
965
signal_received = sig;
966
int old_errno = errno;
967
if(mc.simple_poll != NULL){
968
avahi_simple_poll_quit(mc.simple_poll);
969
}
970
errno = old_errno;
971
}
972
973
811
int main(int argc, char *argv[]){
974
AvahiSServiceBrowser *sb = NULL;
975
int error;
976
int ret;
977
intmax_t tmpmax;
978
char *tmp;
979
int exitcode = EXIT_SUCCESS;
980
const char *interface = "eth0";
981
struct ifreq network;
982
int sd = -1;
983
bool take_down_interface = false;
984
uid_t uid;
985
gid_t gid;
986
char *connect_to = NULL;
987
char tempdir[] = "/tmp/mandosXXXXXX";
988
bool tempdir_created = false;
989
AvahiIfIndex if_index = AVAHI_IF_UNSPEC;
990
const char *seckey = PATHDIR "/" SECKEY;
991
const char *pubkey = PATHDIR "/" PUBKEY;
992
993
bool gnutls_initialized = false;
994
bool gpgme_initialized = false;
995
float delay = 2.5f;
996
997
struct sigaction old_sigterm_action;
998
struct sigaction sigterm_action = { .sa_handler = handle_sigterm };
999
1000
{
1001
struct argp_option options[] = {
1002
{ .name = "debug", .key = 128,
1003
.doc = "Debug mode", .group = 3 },
1004
{ .name = "connect", .key = 'c',
1005
.arg = "ADDRESS:PORT",
1006
.doc = "Connect directly to a specific Mandos server",
1007
.group = 1 },
1008
{ .name = "interface", .key = 'i',
1009
.arg = "NAME",
1010
.doc = "Network interface that will be used to search for"
1011
" Mandos servers",
1012
.group = 1 },
1013
{ .name = "seckey", .key = 's',
1014
.arg = "FILE",
1015
.doc = "OpenPGP secret key file base name",
1016
.group = 1 },
1017
{ .name = "pubkey", .key = 'p',
1018
.arg = "FILE",
1019
.doc = "OpenPGP public key file base name",
1020
.group = 2 },
1021
{ .name = "dh-bits", .key = 129,
1022
.arg = "BITS",
1023
.doc = "Bit length of the prime number used in the"
1024
" Diffie-Hellman key exchange",
1025
.group = 2 },
1026
{ .name = "priority", .key = 130,
1027
.arg = "STRING",
1028
.doc = "GnuTLS priority string for the TLS handshake",
1029
.group = 1 },
1030
{ .name = "delay", .key = 131,
1031
.arg = "SECONDS",
1032
.doc = "Maximum delay to wait for interface startup",
1033
.group = 2 },
1034
{ .name = NULL }
1035
};
1036
1037
error_t parse_opt(int key, char *arg,
1038
struct argp_state *state){
1039
switch(key){
1040
case 128: /* --debug */
1041
debug = true;
1042
break;
1043
case 'c': /* --connect */
1044
connect_to = arg;
1045
break;
1046
case 'i': /* --interface */
1047
interface = arg;
1048
break;
1049
case 's': /* --seckey */
1050
seckey = arg;
1051
break;
1052
case 'p': /* --pubkey */
1053
pubkey = arg;
1054
break;
1055
case 129: /* --dh-bits */
1056
errno = 0;
1057
tmpmax = strtoimax(arg, &tmp, 10);
1058
if(errno != 0 or tmp == arg or *tmp != '\0'
1059
or tmpmax != (typeof(mc.dh_bits))tmpmax){
1060
fprintf(stderr, "Bad number of DH bits\n");
1061
exit(EXIT_FAILURE);
1062
}
1063
mc.dh_bits = (typeof(mc.dh_bits))tmpmax;
1064
break;
1065
case 130: /* --priority */
1066
mc.priority = arg;
1067
break;
1068
case 131: /* --delay */
1069
errno = 0;
1070
delay = strtof(arg, &tmp);
1071
if(errno != 0 or tmp == arg or *tmp != '\0'){
1072
fprintf(stderr, "Bad delay\n");
1073
exit(EXIT_FAILURE);
1074
}
1075
break;
1076
case ARGP_KEY_ARG:
1077
argp_usage(state);
1078
case ARGP_KEY_END:
1079
break;
1080
default:
1081
return ARGP_ERR_UNKNOWN;
1082
}
1083
return 0;
1084
}
1085
1086
struct argp argp = { .options = options, .parser = parse_opt,
1087
.args_doc = "",
1088
.doc = "Mandos client -- Get and decrypt"
1089
" passwords from a Mandos server" };
1090
ret = argp_parse(&argp, argc, argv, 0, 0, NULL);
1091
if(ret == ARGP_ERR_UNKNOWN){
1092
fprintf(stderr, "Unknown error while parsing arguments\n");
1093
exitcode = EXIT_FAILURE;
1094
goto end;
1095
}
1096
}
1097
1098
if(not debug){
1099
avahi_set_log_function(empty_log);
1100
}
1101
1102
/* Initialize Avahi early so avahi_simple_poll_quit() can be called
1103
from the signal handler */
1104
/* Initialize the pseudo-RNG for Avahi */
1105
srand((unsigned int) time(NULL));
1106
mc.simple_poll = avahi_simple_poll_new();
1107
if(mc.simple_poll == NULL){
1108
fprintf(stderr, "Avahi: Failed to create simple poll object.\n");
1109
exitcode = EXIT_FAILURE;
1110
goto end;
1111
}
1112
1113
sigemptyset(&sigterm_action.sa_mask);
1114
ret = sigaddset(&sigterm_action.sa_mask, SIGINT);
1115
if(ret == -1){
1116
perror("sigaddset");
1117
exitcode = EXIT_FAILURE;
1118
goto end;
1119
}
1120
ret = sigaddset(&sigterm_action.sa_mask, SIGHUP);
1121
if(ret == -1){
1122
perror("sigaddset");
1123
exitcode = EXIT_FAILURE;
1124
goto end;
1125
}
1126
ret = sigaddset(&sigterm_action.sa_mask, SIGTERM);
1127
if(ret == -1){
1128
perror("sigaddset");
1129
exitcode = EXIT_FAILURE;
1130
goto end;
1131
}
1132
/* Need to check if the handler is SIG_IGN before handling:
1133
| [[info:libc:Initial Signal Actions]] |
1134
| [[info:libc:Basic Signal Handling]] |
1135
*/
1136
ret = sigaction(SIGINT, NULL, &old_sigterm_action);
1137
if(ret == -1){
1138
perror("sigaction");
1139
return EXIT_FAILURE;
1140
}
1141
if(old_sigterm_action.sa_handler != SIG_IGN){
1142
ret = sigaction(SIGINT, &sigterm_action, NULL);
1143
if(ret == -1){
1144
perror("sigaction");
1145
exitcode = EXIT_FAILURE;
1146
goto end;
1147
}
1148
}
1149
ret = sigaction(SIGHUP, NULL, &old_sigterm_action);
1150
if(ret == -1){
1151
perror("sigaction");
1152
return EXIT_FAILURE;
1153
}
1154
if(old_sigterm_action.sa_handler != SIG_IGN){
1155
ret = sigaction(SIGHUP, &sigterm_action, NULL);
1156
if(ret == -1){
1157
perror("sigaction");
1158
exitcode = EXIT_FAILURE;
1159
goto end;
1160
}
1161
}
1162
ret = sigaction(SIGTERM, NULL, &old_sigterm_action);
1163
if(ret == -1){
1164
perror("sigaction");
1165
return EXIT_FAILURE;
1166
}
1167
if(old_sigterm_action.sa_handler != SIG_IGN){
1168
ret = sigaction(SIGTERM, &sigterm_action, NULL);
1169
if(ret == -1){
1170
perror("sigaction");
1171
exitcode = EXIT_FAILURE;
1172
goto end;
1173
}
1174
}
1175
1176
/* If the interface is down, bring it up */
1177
if(interface[0] != '\0'){
812
AvahiSServiceBrowser *sb = NULL;
813
int error;
814
int ret;
815
int exitcode = EXIT_SUCCESS;
816
const char *interface = "eth0";
817
struct ifreq network;
818
int sd;
819
uid_t uid;
820
gid_t gid;
821
char *connect_to = NULL;
822
char tempdir[] = "/tmp/mandosXXXXXX";
823
AvahiIfIndex if_index = AVAHI_IF_UNSPEC;
824
const char *seckey = PATHDIR "/" SECKEY;
825
const char *pubkey = PATHDIR "/" PUBKEY;
826
827
mandos_context mc = { .simple_poll = NULL, .server = NULL,
828
.dh_bits = 1024, .priority = "SECURE256"
829
":!CTYPE-X.509:+CTYPE-OPENPGP" };
830
bool gnutls_initalized = false;
831
bool gpgme_initalized = false;
832
833
{
834
struct argp_option options[] = {
835
{ .name = "debug", .key = 128,
836
.doc = "Debug mode", .group = 3 },
837
{ .name = "connect", .key = 'c',
838
.arg = "ADDRESS:PORT",
839
.doc = "Connect directly to a specific Mandos server",
840
.group = 1 },
841
{ .name = "interface", .key = 'i',
842
.arg = "NAME",
843
.doc = "Interface that will be used to search for Mandos"
844
" servers",
845
.group = 1 },
846
{ .name = "seckey", .key = 's',
847
.arg = "FILE",
848
.doc = "OpenPGP secret key file base name",
849
.group = 1 },
850
{ .name = "pubkey", .key = 'p',
851
.arg = "FILE",
852
.doc = "OpenPGP public key file base name",
853
.group = 2 },
854
{ .name = "dh-bits", .key = 129,
855
.arg = "BITS",
856
.doc = "Bit length of the prime number used in the"
857
" Diffie-Hellman key exchange",
858
.group = 2 },
859
{ .name = "priority", .key = 130,
860
.arg = "STRING",
861
.doc = "GnuTLS priority string for the TLS handshake",
862
.group = 1 },
863
{ .name = NULL }
864
};
865
866
error_t parse_opt (int key, char *arg,
867
struct argp_state *state) {
868
/* Get the INPUT argument from `argp_parse', which we know is
869
a pointer to our plugin list pointer. */
870
switch (key) {
871
case 128: /* --debug */
872
debug = true;
873
break;
874
case 'c': /* --connect */
875
connect_to = arg;
876
break;
877
case 'i': /* --interface */
878
interface = arg;
879
break;
880
case 's': /* --seckey */
881
seckey = arg;
882
break;
883
case 'p': /* --pubkey */
884
pubkey = arg;
885
break;
886
case 129: /* --dh-bits */
887
errno = 0;
888
mc.dh_bits = (unsigned int) strtol(arg, NULL, 10);
889
if (errno){
890
perror("strtol");
891
exit(EXIT_FAILURE);
892
}
893
break;
894
case 130: /* --priority */
895
mc.priority = arg;
896
break;
897
case ARGP_KEY_ARG:
898
argp_usage (state);
899
case ARGP_KEY_END:
900
break;
901
default:
902
return ARGP_ERR_UNKNOWN;
903
}
904
return 0;
905
}
906
907
struct argp argp = { .options = options, .parser = parse_opt,
908
.args_doc = "",
909
.doc = "Mandos client -- Get and decrypt"
910
" passwords from a Mandos server" };
911
ret = argp_parse (&argp, argc, argv, 0, 0, NULL);
912
if (ret == ARGP_ERR_UNKNOWN){
913
fprintf(stderr, "Unknown error while parsing arguments\n");
914
exitcode = EXIT_FAILURE;
915
goto end;
916
}
917
}
918
919
/* If the interface is down, bring it up */
920
{
921
sd = socket(PF_INET6, SOCK_DGRAM, IPPROTO_IP);
922
if(sd < 0) {
923
perror("socket");
924
exitcode = EXIT_FAILURE;
925
goto end;
926
}
927
strcpy(network.ifr_name, interface);
928
ret = ioctl(sd, SIOCGIFFLAGS, &network);
929
if(ret == -1){
930
perror("ioctl SIOCGIFFLAGS");
931
exitcode = EXIT_FAILURE;
932
goto end;
933
}
934
if((network.ifr_flags & IFF_UP) == 0){
935
network.ifr_flags |= IFF_UP;
936
ret = ioctl(sd, SIOCSIFFLAGS, &network);
937
if(ret == -1){
938
perror("ioctl SIOCSIFFLAGS");
939
exitcode = EXIT_FAILURE;
940
goto end;
941
}
942
}
943
ret = TEMP_FAILURE_RETRY(close(sd));
944
if(ret == -1){
945
perror("close");
946
}
947
}
948
949
uid = getuid();
950
gid = getgid();
951
952
ret = setuid(uid);
953
if (ret == -1){
954
perror("setuid");
955
}
956
957
setgid(gid);
958
if (ret == -1){
959
perror("setgid");
960
}
961
962
ret = init_gnutls_global(&mc, pubkey, seckey);
963
if (ret == -1){
964
fprintf(stderr, "init_gnutls_global failed\n");
965
exitcode = EXIT_FAILURE;
966
goto end;
967
} else {
968
gnutls_initalized = true;
969
}
970
971
if(mkdtemp(tempdir) == NULL){
972
perror("mkdtemp");
973
tempdir[0] = '\0';
974
goto end;
975
}
976
977
if(not init_gpgme(&mc, pubkey, seckey, tempdir)){
978
fprintf(stderr, "gpgme_initalized failed\n");
979
exitcode = EXIT_FAILURE;
980
goto end;
981
} else {
982
gpgme_initalized = true;
983
}
984
1178
985
if_index = (AvahiIfIndex) if_nametoindex(interface);
1179
986
if(if_index == 0){
1180
987
fprintf(stderr, "No such interface: \"%s\"\n", interface);
1181
exitcode = EXIT_FAILURE;
1182
goto end;
1183
}
1184
1185
if(quit_now){
1186
goto end;
1187
}
1188
1189
#ifdef __linux__
1190
/* Lower kernel loglevel to KERN_NOTICE to avoid KERN_INFO
1191
messages to mess up the prompt */
1192
ret = klogctl(8, NULL, 5);
1193
bool restore_loglevel = true;
1194
if(ret == -1){
1195
restore_loglevel = false;
1196
perror("klogctl");
1197
}
1198
#endif /* __linux__ */
1199
1200
sd = socket(PF_INET6, SOCK_DGRAM, IPPROTO_IP);
1201
if(sd < 0){
1202
perror("socket");
1203
exitcode = EXIT_FAILURE;
1204
#ifdef __linux__
1205
if(restore_loglevel){
1206
ret = klogctl(7, NULL, 0);
1207
if(ret == -1){
1208
perror("klogctl");
1209
}
1210
}
1211
#endif /* __linux__ */
1212
goto end;
1213
}
1214
strcpy(network.ifr_name, interface);
1215
ret = ioctl(sd, SIOCGIFFLAGS, &network);
1216
if(ret == -1){
1217
perror("ioctl SIOCGIFFLAGS");
1218
#ifdef __linux__
1219
if(restore_loglevel){
1220
ret = klogctl(7, NULL, 0);
1221
if(ret == -1){
1222
perror("klogctl");
1223
}
1224
}
1225
#endif /* __linux__ */
1226
exitcode = EXIT_FAILURE;
1227
goto end;
1228
}
1229
if((network.ifr_flags & IFF_UP) == 0){
1230
network.ifr_flags |= IFF_UP;
1231
take_down_interface = true;
1232
ret = ioctl(sd, SIOCSIFFLAGS, &network);
1233
if(ret == -1){
1234
take_down_interface = false;
1235
perror("ioctl SIOCSIFFLAGS");
1236
exitcode = EXIT_FAILURE;
1237
#ifdef __linux__
1238
if(restore_loglevel){
1239
ret = klogctl(7, NULL, 0);
1240
if(ret == -1){
1241
perror("klogctl");
1242
}
1243
}
1244
#endif /* __linux__ */
1245
goto end;
1246
}
1247
}
1248
/* sleep checking until interface is running */
1249
for(int i=0; i < delay * 4; i++){
1250
ret = ioctl(sd, SIOCGIFFLAGS, &network);
1251
if(ret == -1){
1252
perror("ioctl SIOCGIFFLAGS");
1253
} else if(network.ifr_flags & IFF_RUNNING){
1254
break;
1255
}
1256
struct timespec sleeptime = { .tv_nsec = 250000000 };
1257
ret = nanosleep(&sleeptime, NULL);
1258
if(ret == -1 and errno != EINTR){
1259
perror("nanosleep");
1260
}
1261
}
1262
if(not take_down_interface){
1263
/* We won't need the socket anymore */
1264
ret = (int)TEMP_FAILURE_RETRY(close(sd));
1265
if(ret == -1){
1266
perror("close");
1267
}
1268
}
1269
#ifdef __linux__
1270
if(restore_loglevel){
1271
/* Restores kernel loglevel to default */
1272
ret = klogctl(7, NULL, 0);
1273
if(ret == -1){
1274
perror("klogctl");
1275
}
1276
}
1277
#endif /* __linux__ */
1278
}
1279
1280
if(quit_now){
1281
goto end;
1282
}
1283
1284
uid = getuid();
1285
gid = getgid();
1286
1287
errno = 0;
1288
setgid(gid);
1289
if(ret == -1){
1290
perror("setgid");
1291
}
1292
1293
ret = setuid(uid);
1294
if(ret == -1){
1295
perror("setuid");
1296
}
1297
1298
if(quit_now){
1299
goto end;
1300
}
1301
1302
ret = init_gnutls_global(pubkey, seckey);
1303
if(ret == -1){
1304
fprintf(stderr, "init_gnutls_global failed\n");
1305
exitcode = EXIT_FAILURE;
1306
goto end;
1307
} else {
1308
gnutls_initialized = true;
1309
}
1310
1311
if(quit_now){
1312
goto end;
1313
}
1314
1315
tempdir_created = true;
1316
if(mkdtemp(tempdir) == NULL){
1317
tempdir_created = false;
1318
perror("mkdtemp");
1319
goto end;
1320
}
1321
1322
if(quit_now){
1323
goto end;
1324
}
1325
1326
if(not init_gpgme(pubkey, seckey, tempdir)){
1327
fprintf(stderr, "init_gpgme failed\n");
1328
exitcode = EXIT_FAILURE;
1329
goto end;
1330
} else {
1331
gpgme_initialized = true;
1332
}
1333
1334
if(quit_now){
1335
goto end;
1336
}
1337
1338
if(connect_to != NULL){
1339
/* Connect directly, do not use Zeroconf */
1340
/* (Mainly meant for debugging) */
1341
char *address = strrchr(connect_to, ':');
1342
if(address == NULL){
1343
fprintf(stderr, "No colon in address\n");
1344
exitcode = EXIT_FAILURE;
1345
goto end;
1346
}
1347
1348
if(quit_now){
1349
goto end;
1350
}
1351
1352
uint16_t port;
1353
errno = 0;
1354
tmpmax = strtoimax(address+1, &tmp, 10);
1355
if(errno != 0 or tmp == address+1 or *tmp != '\0'
1356
or tmpmax != (uint16_t)tmpmax){
1357
fprintf(stderr, "Bad port number\n");
1358
exitcode = EXIT_FAILURE;
1359
goto end;
1360
}
1361
1362
if(quit_now){
1363
goto end;
1364
}
1365
1366
port = (uint16_t)tmpmax;
1367
*address = '\0';
1368
address = connect_to;
1369
/* Colon in address indicates IPv6 */
1370
int af;
1371
if(strchr(address, ':') != NULL){
1372
af = AF_INET6;
1373
} else {
1374
af = AF_INET;
1375
}
1376
1377
if(quit_now){
1378
goto end;
1379
}
1380
1381
ret = start_mandos_communication(address, port, if_index, af);
1382
if(ret < 0){
1383
exitcode = EXIT_FAILURE;
1384
} else {
1385
exitcode = EXIT_SUCCESS;
1386
}
1387
goto end;
1388
}
1389
1390
if(quit_now){
1391
goto end;
1392
}
1393
1394
{
1395
AvahiServerConfig config;
1396
/* Do not publish any local Zeroconf records */
1397
avahi_server_config_init(&config);
1398
config.publish_hinfo = 0;
1399
config.publish_addresses = 0;
1400
config.publish_workstation = 0;
1401
config.publish_domain = 0;
1402
1403
/* Allocate a new server */
1404
mc.server = avahi_server_new(avahi_simple_poll_get
1405
(mc.simple_poll), &config, NULL,
1406
NULL, &error);
1407
1408
/* Free the Avahi configuration data */
1409
avahi_server_config_free(&config);
1410
}
1411
1412
/* Check if creating the Avahi server object succeeded */
1413
if(mc.server == NULL){
1414
fprintf(stderr, "Failed to create Avahi server: %s\n",
1415
avahi_strerror(error));
1416
exitcode = EXIT_FAILURE;
1417
goto end;
1418
}
1419
1420
if(quit_now){
1421
goto end;
1422
}
1423
1424
/* Create the Avahi service browser */
1425
sb = avahi_s_service_browser_new(mc.server, if_index,
1426
AVAHI_PROTO_UNSPEC, "_mandos._tcp",
1427
NULL, 0, browse_callback, NULL);
1428
if(sb == NULL){
1429
fprintf(stderr, "Failed to create service browser: %s\n",
1430
avahi_strerror(avahi_server_errno(mc.server)));
1431
exitcode = EXIT_FAILURE;
1432
goto end;
1433
}
1434
1435
if(quit_now){
1436
goto end;
1437
}
1438
1439
/* Run the main loop */
1440
1441
if(debug){
1442
fprintf(stderr, "Starting Avahi loop search\n");
1443
}
1444
1445
avahi_simple_poll_loop(mc.simple_poll);
1446
988
exit(EXIT_FAILURE);
989
}
990
991
if(connect_to != NULL){
992
/* Connect directly, do not use Zeroconf */
993
/* (Mainly meant for debugging) */
994
char *address = strrchr(connect_to, ':');
995
if(address == NULL){
996
fprintf(stderr, "No colon in address\n");
997
exitcode = EXIT_FAILURE;
998
goto end;
999
}
1000
errno = 0;
1001
uint16_t port = (uint16_t) strtol(address+1, NULL, 10);
1002
if(errno){
1003
perror("Bad port number");
1004
exitcode = EXIT_FAILURE;
1005
goto end;
1006
}
1007
*address = '\0';
1008
address = connect_to;
1009
ret = start_mandos_communication(address, port, if_index, &mc);
1010
if(ret < 0){
1011
exitcode = EXIT_FAILURE;
1012
} else {
1013
exitcode = EXIT_SUCCESS;
1014
}
1015
goto end;
1016
}
1017
1018
if (not debug){
1019
avahi_set_log_function(empty_log);
1020
}
1021
1022
/* Initialize the pseudo-RNG for Avahi */
1023
srand((unsigned int) time(NULL));
1024
1025
/* Allocate main Avahi loop object */
1026
mc.simple_poll = avahi_simple_poll_new();
1027
if (mc.simple_poll == NULL) {
1028
fprintf(stderr, "Avahi: Failed to create simple poll"
1029
" object.\n");
1030
exitcode = EXIT_FAILURE;
1031
goto end;
1032
}
1033
1034
{
1035
AvahiServerConfig config;
1036
/* Do not publish any local Zeroconf records */
1037
avahi_server_config_init(&config);
1038
config.publish_hinfo = 0;
1039
config.publish_addresses = 0;
1040
config.publish_workstation = 0;
1041
config.publish_domain = 0;
1042
1043
/* Allocate a new server */
1044
mc.server = avahi_server_new(avahi_simple_poll_get
1045
(mc.simple_poll), &config, NULL,
1046
NULL, &error);
1047
1048
/* Free the Avahi configuration data */
1049
avahi_server_config_free(&config);
1050
}
1051
1052
/* Check if creating the Avahi server object succeeded */
1053
if (mc.server == NULL) {
1054
fprintf(stderr, "Failed to create Avahi server: %s\n",
1055
avahi_strerror(error));
1056
exitcode = EXIT_FAILURE;
1057
goto end;
1058
}
1059
1060
/* Create the Avahi service browser */
1061
sb = avahi_s_service_browser_new(mc.server, if_index,
1062
AVAHI_PROTO_INET6,
1063
"_mandos._tcp", NULL, 0,
1064
browse_callback, &mc);
1065
if (sb == NULL) {
1066
fprintf(stderr, "Failed to create service browser: %s\n",
1067
avahi_strerror(avahi_server_errno(mc.server)));
1068
exitcode = EXIT_FAILURE;
1069
goto end;
1070
}
1071
1072
/* Run the main loop */
1073
1074
if (debug){
1075
fprintf(stderr, "Starting Avahi loop search\n");
1076
}
1077
1078
avahi_simple_poll_loop(mc.simple_poll);
1079
1447
1080
end:
1448
1449
if(debug){
1450
fprintf(stderr, "%s exiting\n", argv[0]);
1451
}
1452
1453
/* Cleanup things */
1454
if(sb != NULL)
1455
avahi_s_service_browser_free(sb);
1456
1457
if(mc.server != NULL)
1458
avahi_server_free(mc.server);
1459
1460
if(mc.simple_poll != NULL)
1461
avahi_simple_poll_free(mc.simple_poll);
1462
1463
if(gnutls_initialized){
1464
gnutls_certificate_free_credentials(mc.cred);
1465
gnutls_global_deinit();
1466
gnutls_dh_params_deinit(mc.dh_params);
1467
}
1468
1469
if(gpgme_initialized){
1470
gpgme_release(mc.ctx);
1471
}
1472
1473
/* Take down the network interface */
1474
if(take_down_interface){
1475
ret = ioctl(sd, SIOCGIFFLAGS, &network);
1476
if(ret == -1){
1477
perror("ioctl SIOCGIFFLAGS");
1478
} else if(network.ifr_flags & IFF_UP) {
1479
network.ifr_flags &= ~IFF_UP; /* clear flag */
1480
ret = ioctl(sd, SIOCSIFFLAGS, &network);
1481
if(ret == -1){
1482
perror("ioctl SIOCSIFFLAGS");
1483
}
1484
}
1485
ret = (int)TEMP_FAILURE_RETRY(close(sd));
1486
if(ret == -1){
1487
perror("close");
1488
}
1489
}
1490
1491
/* Removes the temp directory used by GPGME */
1492
if(tempdir_created){
1493
DIR *d;
1494
struct dirent *direntry;
1495
d = opendir(tempdir);
1496
if(d == NULL){
1497
if(errno != ENOENT){
1081
1082
if (debug){
1083
fprintf(stderr, "%s exiting\n", argv[0]);
1084
}
1085
1086
/* Cleanup things */
1087
if (sb != NULL)
1088
avahi_s_service_browser_free(sb);
1089
1090
if (mc.server != NULL)
1091
avahi_server_free(mc.server);
1092
1093
if (mc.simple_poll != NULL)
1094
avahi_simple_poll_free(mc.simple_poll);
1095
1096
if (gnutls_initalized){
1097
gnutls_certificate_free_credentials(mc.cred);
1098
gnutls_global_deinit ();
1099
gnutls_dh_params_deinit(mc.dh_params);
1100
}
1101
1102
if(gpgme_initalized){
1103
gpgme_release(mc.ctx);
1104
}
1105
1106
/* Removes the temp directory used by GPGME */
1107
if(tempdir[0] != '\0'){
1108
DIR *d;
1109
struct dirent *direntry;
1110
d = opendir(tempdir);
1111
if(d == NULL){
1498
1112
perror("opendir");
1499
}
1500
} else {
1501
while(true){
1502
direntry = readdir(d);
1503
if(direntry == NULL){
1504
break;
1505
}
1506
/* Skip "." and ".." */
1507
if(direntry->d_name[0] == '.'
1508
and (direntry->d_name[1] == '\0'
1509
or (direntry->d_name[1] == '.'
1510
and direntry->d_name[2] == '\0'))){
1511
continue;
1512
}
1513
char *fullname = NULL;
1514
ret = asprintf(&fullname, "%s/%s", tempdir,
1515
direntry->d_name);
1516
if(ret < 0){
1517
perror("asprintf");
1518
continue;
1519
}
1520
ret = remove(fullname);
1521
if(ret == -1){
1522
fprintf(stderr, "remove(\"%s\"): %s\n", fullname,
1523
strerror(errno));
1524
}
1525
free(fullname);
1526
}
1527
closedir(d);
1528
}
1529
ret = rmdir(tempdir);
1530
if(ret == -1 and errno != ENOENT){
1531
perror("rmdir");
1532
}
1533
}
1534
1535
if(quit_now){
1536
sigemptyset(&old_sigterm_action.sa_mask);
1537
old_sigterm_action.sa_handler = SIG_DFL;
1538
ret = sigaction(signal_received, &old_sigterm_action, NULL);
1539
if(ret == -1){
1540
perror("sigaction");
1541
}
1542
raise(signal_received);
1543
}
1544
1545
return exitcode;
1113
} else {
1114
while(true){
1115
direntry = readdir(d);
1116
if(direntry == NULL){
1117
break;
1118
}
1119
if (direntry->d_type == DT_REG){
1120
char *fullname = NULL;
1121
ret = asprintf(&fullname, "%s/%s", tempdir,
1122
direntry->d_name);
1123
if(ret < 0){
1124
perror("asprintf");
1125
continue;
1126
}
1127
ret = unlink(fullname);
1128
if(ret == -1){
1129
fprintf(stderr, "unlink(\"%s\"): %s",
1130
fullname, strerror(errno));
1131
}
1132
free(fullname);
1133
}
1134
}
1135
closedir(d);
1136
}
1137
ret = rmdir(tempdir);
1138
if(ret == -1){
1139
perror("rmdir");
1140
}
1141
}
1142
1143
return exitcode;
1546
1144
}
Loggerhead is a web-based interface for Breezy
Version: 2.0.2.dev0