To get this branch, use:
bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk
« back to all changes in this revision
Viewing changes to plugins.d/mandos-client.c
- browse files at revision 369
- compare with another revision
- download diff
- download tarball
- view history from revision 369
- Committer: Teddy Hogeborn
- Date: 2009-09-16 23:28:39 UTC
- Revision ID: teddy@fukt.bsnet.se-20090916232839-3o7i8qmcdcz5j1ya
* init.d-mandos (Required-Start, Required-Stop): Bug fix: Added
"$syslog", thanks to Petter Reinholdtsen
<pere@hungry.com> (Debian bug #546928).
* initramfs-tools-script: Removed erroneous comment.
* plugins.d/askpass-fifo.c: Removed TEMP_FAILURE_RETRY since it is
not needed.
* plugins.d/mandos-client.c (main): Bug fix: Initialize
"old_sigterm_action".
* plugins.d/splashy.c (main): Bug fix: really check return value from
"sigaddset". Fix some warnings on
64-bit systems.
* plugins.d/usplash.c (termination_handler, main): Save received
signal and
re-raise it on
exit.
(usplash_write): Do not close FIFO, instead, take an additional file
descriptor pointer to it and open only when needed
(all callers changed). Abort immediately on EINTR.
Bug fix: Add NUL byte on single-word commands.
Ignore "interrupted_by_signal".
(makeprompt, find_usplash): New; broken out from "main()".
(find_usplash): Bug fix: close /proc/<pid>/cmdline FD on error.
(main): Reorganized to jump to a new "failure" label on any error.
Bug fix: check return values from sigaddset.
New variable "usplash_accessed" to flag if usplash(8) needs
to be killed and restarted. Removed the "an_error_occured"
variable.
"$syslog", thanks to Petter Reinholdtsen
<pere@hungry.com> (Debian bug #546928).
* initramfs-tools-script: Removed erroneous comment.
* plugins.d/askpass-fifo.c: Removed TEMP_FAILURE_RETRY since it is
not needed.
* plugins.d/mandos-client.c (main): Bug fix: Initialize
"old_sigterm_action".
* plugins.d/splashy.c (main): Bug fix: really check return value from
"sigaddset". Fix some warnings on
64-bit systems.
* plugins.d/usplash.c (termination_handler, main): Save received
signal and
re-raise it on
exit.
(usplash_write): Do not close FIFO, instead, take an additional file
descriptor pointer to it and open only when needed
(all callers changed). Abort immediately on EINTR.
Bug fix: Add NUL byte on single-word commands.
Ignore "interrupted_by_signal".
(makeprompt, find_usplash): New; broken out from "main()".
(find_usplash): Bug fix: close /proc/<pid>/cmdline FD on error.
(main): Reorganized to jump to a new "failure" label on any error.
Bug fix: check return values from sigaddset.
New variable "usplash_accessed" to flag if usplash(8) needs
to be killed and restarted. Removed the "an_error_occured"
variable.
added
removed
plugins.d/mandos-client.c
71
71
INET_ADDRSTRLEN, INET6_ADDRSTRLEN
72
72
*/
73
73
#include <unistd.h> /* close(), SEEK_SET, off_t, write(),
74
getuid(), getgid(), setuid(),
74
getuid(), getgid(), seteuid(),
75
75
setgid() */
76
76
#include <arpa/inet.h> /* inet_pton(), htons */
77
77
#include <iso646.h> /* not, or, and */
164
164
*/
165
165
static bool init_gpgme(const char *seckey,
166
166
const char *pubkey, const char *tempdir){
167
int ret;
168
167
gpgme_error_t rc;
169
168
gpgme_engine_info_t engine_info;
170
169
173
172
* Helper function to insert pub and seckey to the engine keyring.
174
173
*/
175
174
bool import_key(const char *filename){
175
int ret;
176
176
int fd;
177
177
gpgme_data_t pgp_data;
178
178
474
474
static int init_gnutls_session(gnutls_session_t *session){
475
475
int ret;
476
476
/* GnuTLS session creation */
477
ret = gnutls_init(session, GNUTLS_SERVER);
477
do {
478
ret = gnutls_init(session, GNUTLS_SERVER);
479
} while(ret == GNUTLS_E_INTERRUPTED or ret == GNUTLS_E_AGAIN);
478
480
if(ret != GNUTLS_E_SUCCESS){
479
481
fprintf(stderr, "Error in GnuTLS session initialization: %s\n",
480
482
safer_gnutls_strerror(ret));
482
484
483
485
{
484
486
const char *err;
485
ret = gnutls_priority_set_direct(*session, mc.priority, &err);
487
do {
488
ret = gnutls_priority_set_direct(*session, mc.priority, &err);
489
} while(ret == GNUTLS_E_INTERRUPTED or ret == GNUTLS_E_AGAIN);
486
490
if(ret != GNUTLS_E_SUCCESS){
487
491
fprintf(stderr, "Syntax error at: %s\n", err);
488
492
fprintf(stderr, "GnuTLS error: %s\n",
492
496
}
493
497
}
494
498
495
ret = gnutls_credentials_set(*session, GNUTLS_CRD_CERTIFICATE,
496
mc.cred);
499
do {
500
ret = gnutls_credentials_set(*session, GNUTLS_CRD_CERTIFICATE,
501
mc.cred);
502
} while(ret == GNUTLS_E_INTERRUPTED or ret == GNUTLS_E_AGAIN);
497
503
if(ret != GNUTLS_E_SUCCESS){
498
504
fprintf(stderr, "Error setting GnuTLS credentials: %s\n",
499
505
safer_gnutls_strerror(ret));
502
508
}
503
509
504
510
/* ignore client certificate if any. */
505
gnutls_certificate_server_set_request(*session,
506
GNUTLS_CERT_IGNORE);
511
gnutls_certificate_server_set_request(*session, GNUTLS_CERT_IGNORE);
507
512
508
513
gnutls_dh_set_prime_bits(*session, mc.dh_bits);
509
514
521
526
static int start_mandos_communication(const char *ip, uint16_t port,
522
527
AvahiIfIndex if_index,
523
528
int af){
524
int ret, tcp_sd;
529
int ret, tcp_sd = -1;
525
530
ssize_t sret;
526
531
union {
527
532
struct sockaddr_in in;
531
536
char *decrypted_buffer;
532
537
size_t buffer_length = 0;
533
538
size_t buffer_capacity = 0;
534
ssize_t decrypted_buffer_size;
535
539
size_t written;
536
540
int retval = 0;
537
541
gnutls_session_t session;
538
542
int pf; /* Protocol family */
539
543
544
if(quit_now){
545
return -1;
546
}
547
540
548
switch(af){
541
549
case AF_INET6:
542
550
pf = PF_INET6;
562
570
tcp_sd = socket(pf, SOCK_STREAM, 0);
563
571
if(tcp_sd < 0){
564
572
perror("socket");
565
return -1;
573
retval = -1;
574
goto mandos_end;
575
}
576
577
if(quit_now){
578
goto mandos_end;
566
579
}
567
580
568
581
memset(&to, 0, sizeof(to));
575
588
}
576
589
if(ret < 0 ){
577
590
perror("inet_pton");
578
return -1;
591
retval = -1;
592
goto mandos_end;
579
593
}
580
594
if(ret == 0){
581
595
fprintf(stderr, "Bad address: %s\n", ip);
582
return -1;
596
retval = -1;
597
goto mandos_end;
583
598
}
584
599
if(af == AF_INET6){
585
600
to.in6.sin6_port = htons(port); /* Spurious warnings from
592
607
if(if_index == AVAHI_IF_UNSPEC){
593
608
fprintf(stderr, "An IPv6 link-local address is incomplete"
594
609
" without a network interface\n");
595
return -1;
610
retval = -1;
611
goto mandos_end;
596
612
}
597
613
/* Set the network interface number as scope */
598
614
to.in6.sin6_scope_id = (uint32_t)if_index;
603
619
-Wunreachable-code */
604
620
}
605
621
622
if(quit_now){
623
goto mandos_end;
624
}
625
606
626
if(debug){
607
627
if(af == AF_INET6 and if_index != AVAHI_IF_UNSPEC){
608
628
char interface[IF_NAMESIZE];
635
655
}
636
656
}
637
657
658
if(quit_now){
659
goto mandos_end;
660
}
661
638
662
if(af == AF_INET6){
639
663
ret = connect(tcp_sd, &to.in6, sizeof(to));
640
664
} else {
642
666
}
643
667
if(ret < 0){
644
668
perror("connect");
645
return -1;
669
retval = -1;
670
goto mandos_end;
671
}
672
673
if(quit_now){
674
goto mandos_end;
646
675
}
647
676
648
677
const char *out = mandos_protocol_version;
667
696
break;
668
697
}
669
698
}
699
700
if(quit_now){
701
goto mandos_end;
702
}
670
703
}
671
704
672
705
if(debug){
673
706
fprintf(stderr, "Establishing TLS session with %s\n", ip);
674
707
}
675
708
709
if(quit_now){
710
goto mandos_end;
711
}
712
676
713
gnutls_transport_set_ptr(session, (gnutls_transport_ptr_t) tcp_sd);
677
714
678
do{
715
if(quit_now){
716
goto mandos_end;
717
}
718
719
do {
679
720
ret = gnutls_handshake(session);
721
if(quit_now){
722
goto mandos_end;
723
}
680
724
} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);
681
725
682
726
if(ret != GNUTLS_E_SUCCESS){
696
740
}
697
741
698
742
while(true){
743
744
if(quit_now){
745
goto mandos_end;
746
}
747
699
748
buffer_capacity = incbuffer(&buffer, buffer_length,
700
749
buffer_capacity);
701
750
if(buffer_capacity == 0){
704
753
goto mandos_end;
705
754
}
706
755
756
if(quit_now){
757
goto mandos_end;
758
}
759
707
760
sret = gnutls_record_recv(session, buffer+buffer_length,
708
761
BUFFER_SIZE);
709
762
if(sret == 0){
715
768
case GNUTLS_E_AGAIN:
716
769
break;
717
770
case GNUTLS_E_REHANDSHAKE:
718
do{
771
do {
719
772
ret = gnutls_handshake(session);
773
774
if(quit_now){
775
goto mandos_end;
776
}
720
777
} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);
721
778
if(ret < 0){
722
779
fprintf(stderr, "*** GnuTLS Re-handshake failed ***\n");
741
798
fprintf(stderr, "Closing TLS session\n");
742
799
}
743
800
801
if(quit_now){
802
goto mandos_end;
803
}
804
744
805
gnutls_bye(session, GNUTLS_SHUT_RDWR);
745
806
807
if(quit_now){
808
goto mandos_end;
809
}
810
746
811
if(buffer_length > 0){
812
ssize_t decrypted_buffer_size;
747
813
decrypted_buffer_size = pgp_packet_decrypt(buffer,
748
814
buffer_length,
749
815
&decrypted_buffer);
750
816
if(decrypted_buffer_size >= 0){
817
751
818
written = 0;
752
819
while(written < (size_t) decrypted_buffer_size){
820
if(quit_now){
821
goto mandos_end;
822
}
823
753
824
ret = (int)fwrite(decrypted_buffer + written, 1,
754
825
(size_t)decrypted_buffer_size - written,
755
826
stdout);
775
846
776
847
mandos_end:
777
848
free(buffer);
778
ret = (int)TEMP_FAILURE_RETRY(close(tcp_sd));
849
if(tcp_sd >= 0){
850
ret = (int)TEMP_FAILURE_RETRY(close(tcp_sd));
851
}
779
852
if(ret == -1){
780
853
perror("close");
781
854
}
782
855
gnutls_deinit(session);
856
if(quit_now){
857
retval = -1;
858
}
783
859
return retval;
784
860
}
785
861
848
924
/* Called whenever a new services becomes available on the LAN or
849
925
is removed from the LAN */
850
926
927
if(quit_now){
928
return;
929
}
930
851
931
switch(event){
852
932
default:
853
933
case AVAHI_BROWSER_FAILURE:
920
1000
bool gpgme_initialized = false;
921
1001
float delay = 2.5f;
922
1002
923
struct sigaction old_sigterm_action;
1003
struct sigaction old_sigterm_action = { .sa_handler = SIG_DFL };
924
1004
struct sigaction sigterm_action = { .sa_handler = handle_sigterm };
925
1005
1006
uid = getuid();
1007
gid = getgid();
1008
1009
/* Lower any group privileges we might have, just to be safe */
1010
errno = 0;
1011
ret = setgid(gid);
1012
if(ret == -1){
1013
perror("setgid");
1014
}
1015
1016
/* Lower user privileges (temporarily) */
1017
errno = 0;
1018
ret = seteuid(uid);
1019
if(ret == -1){
1020
perror("seteuid");
1021
}
1022
1023
if(quit_now){
1024
goto end;
1025
}
1026
926
1027
{
927
1028
struct argp_option options[] = {
928
1029
{ .name = "debug", .key = 128,
1055
1156
exitcode = EXIT_FAILURE;
1056
1157
goto end;
1057
1158
}
1058
ret = sigaction(SIGINT, &sigterm_action, &old_sigterm_action);
1059
if(ret == -1){
1060
perror("sigaction");
1061
exitcode = EXIT_FAILURE;
1062
goto end;
1063
}
1064
ret = sigaction(SIGHUP, &sigterm_action, NULL);
1065
if(ret == -1){
1066
perror("sigaction");
1067
exitcode = EXIT_FAILURE;
1068
goto end;
1069
}
1070
ret = sigaction(SIGTERM, &sigterm_action, NULL);
1071
if(ret == -1){
1072
perror("sigaction");
1073
exitcode = EXIT_FAILURE;
1074
goto end;
1159
/* Need to check if the handler is SIG_IGN before handling:
1160
| [[info:libc:Initial Signal Actions]] |
1161
| [[info:libc:Basic Signal Handling]] |
1162
*/
1163
ret = sigaction(SIGINT, NULL, &old_sigterm_action);
1164
if(ret == -1){
1165
perror("sigaction");
1166
return EXIT_FAILURE;
1167
}
1168
if(old_sigterm_action.sa_handler != SIG_IGN){
1169
ret = sigaction(SIGINT, &sigterm_action, NULL);
1170
if(ret == -1){
1171
perror("sigaction");
1172
exitcode = EXIT_FAILURE;
1173
goto end;
1174
}
1175
}
1176
ret = sigaction(SIGHUP, NULL, &old_sigterm_action);
1177
if(ret == -1){
1178
perror("sigaction");
1179
return EXIT_FAILURE;
1180
}
1181
if(old_sigterm_action.sa_handler != SIG_IGN){
1182
ret = sigaction(SIGHUP, &sigterm_action, NULL);
1183
if(ret == -1){
1184
perror("sigaction");
1185
exitcode = EXIT_FAILURE;
1186
goto end;
1187
}
1188
}
1189
ret = sigaction(SIGTERM, NULL, &old_sigterm_action);
1190
if(ret == -1){
1191
perror("sigaction");
1192
return EXIT_FAILURE;
1193
}
1194
if(old_sigterm_action.sa_handler != SIG_IGN){
1195
ret = sigaction(SIGTERM, &sigterm_action, NULL);
1196
if(ret == -1){
1197
perror("sigaction");
1198
exitcode = EXIT_FAILURE;
1199
goto end;
1200
}
1075
1201
}
1076
1202
1077
1203
/* If the interface is down, bring it up */
1087
1213
goto end;
1088
1214
}
1089
1215
1216
/* Re-raise priviliges */
1217
errno = 0;
1218
ret = seteuid(0);
1219
if(ret == -1){
1220
perror("seteuid");
1221
}
1222
1090
1223
#ifdef __linux__
1091
1224
/* Lower kernel loglevel to KERN_NOTICE to avoid KERN_INFO
1092
1225
messages to mess up the prompt */
1110
1243
}
1111
1244
}
1112
1245
#endif /* __linux__ */
1246
/* Lower privileges */
1247
errno = 0;
1248
ret = seteuid(uid);
1249
if(ret == -1){
1250
perror("seteuid");
1251
}
1113
1252
goto end;
1114
1253
}
1115
1254
strcpy(network.ifr_name, interface);
1125
1264
}
1126
1265
#endif /* __linux__ */
1127
1266
exitcode = EXIT_FAILURE;
1267
/* Lower privileges */
1268
errno = 0;
1269
ret = seteuid(uid);
1270
if(ret == -1){
1271
perror("seteuid");
1272
}
1128
1273
goto end;
1129
1274
}
1130
1275
if((network.ifr_flags & IFF_UP) == 0){
1143
1288
}
1144
1289
}
1145
1290
#endif /* __linux__ */
1291
/* Lower privileges */
1292
errno = 0;
1293
ret = seteuid(uid);
1294
if(ret == -1){
1295
perror("seteuid");
1296
}
1146
1297
goto end;
1147
1298
}
1148
1299
}
1176
1327
}
1177
1328
}
1178
1329
#endif /* __linux__ */
1179
}
1180
1181
if(quit_now){
1182
goto end;
1183
}
1184
1185
uid = getuid();
1186
gid = getgid();
1187
1188
errno = 0;
1189
setgid(gid);
1190
if(ret == -1){
1191
perror("setgid");
1192
}
1193
1194
ret = setuid(uid);
1195
if(ret == -1){
1196
perror("setuid");
1330
/* Lower privileges */
1331
errno = 0;
1332
if(take_down_interface){
1333
/* Lower privileges */
1334
ret = seteuid(uid);
1335
if(ret == -1){
1336
perror("seteuid");
1337
}
1338
} else {
1339
/* Lower privileges permanently */
1340
ret = setuid(uid);
1341
if(ret == -1){
1342
perror("setuid");
1343
}
1344
}
1197
1345
}
1198
1346
1199
1347
if(quit_now){
1373
1521
1374
1522
/* Take down the network interface */
1375
1523
if(take_down_interface){
1376
ret = ioctl(sd, SIOCGIFFLAGS, &network);
1524
/* Re-raise priviliges */
1525
errno = 0;
1526
ret = seteuid(0);
1377
1527
if(ret == -1){
1378
perror("ioctl SIOCGIFFLAGS");
1379
} else if(network.ifr_flags & IFF_UP) {
1380
network.ifr_flags &= ~IFF_UP; /* clear flag */
1381
ret = ioctl(sd, SIOCSIFFLAGS, &network);
1382
if(ret == -1){
1383
perror("ioctl SIOCSIFFLAGS");
1384
}
1528
perror("seteuid");
1385
1529
}
1386
ret = (int)TEMP_FAILURE_RETRY(close(sd));
1387
if(ret == -1){
1388
perror("close");
1530
if(geteuid() == 0){
1531
ret = ioctl(sd, SIOCGIFFLAGS, &network);
1532
if(ret == -1){
1533
perror("ioctl SIOCGIFFLAGS");
1534
} else if(network.ifr_flags & IFF_UP) {
1535
network.ifr_flags &= ~IFF_UP; /* clear flag */
1536
ret = ioctl(sd, SIOCSIFFLAGS, &network);
1537
if(ret == -1){
1538
perror("ioctl SIOCSIFFLAGS");
1539
}
1540
}
1541
ret = (int)TEMP_FAILURE_RETRY(close(sd));
1542
if(ret == -1){
1543
perror("close");
1544
}
1545
/* Lower privileges permanently */
1546
errno = 0;
1547
ret = setuid(uid);
1548
if(ret == -1){
1549
perror("setuid");
1550
}
1389
1551
}
1390
1552
}
1391
1553
1434
1596
}
1435
1597
1436
1598
if(quit_now){
1599
sigemptyset(&old_sigterm_action.sa_mask);
1600
old_sigterm_action.sa_handler = SIG_DFL;
1437
1601
ret = sigaction(signal_received, &old_sigterm_action, NULL);
1438
1602
if(ret == -1){
1439
1603
perror("sigaction");
Loggerhead is a web-based interface for Breezy
Version: 2.0.2.dev0