To get this branch, use:
bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk
« back to all changes in this revision
Viewing changes to plugins.d/mandosclient.c
- browse files at revision 39
- compare with another revision
- download diff
- download tarball
- view history from revision 39
- Committer: Teddy Hogeborn
- Date: 2008-08-03 03:33:56 UTC
- Revision ID: teddy@fukt.bsnet.se-20080803033356-6aemgj0g0hoz91ow
* plugins.d/mandosclient.c (pgp_packet_decrypt): Renamed variables.
On debug, show
decrypted plaintext
in hexadecimal. Free
the GPGME data
buffers even on
errors.
On debug, show
decrypted plaintext
in hexadecimal. Free
the GPGME data
buffers even on
errors.
- files added:
- ca.pem
- files removed:
- .bzr-builddeb
- debian
- debian/po
- files renamed:
- plugin-runner.c => plugbasedclient.c
- plugins.d/mandos-client.c => plugins.d/mandosclient.c
- plugins.d/password-prompt.c => plugins.d/passprompt.c
- mandos.conf => server.conf
- mandos => server.py
- files modified:
- Makefile
added
removed
plugins.d/mandosclient.c
1
1
/* -*- coding: utf-8 -*- */
2
2
/*
3
* Mandos-client - get and decrypt data from a Mandos server
3
* Mandos client - get and decrypt data from a Mandos server
4
4
*
5
5
* This program is partly derived from an example program for an Avahi
6
6
* service browser, downloaded from
9
9
* "browse_callback", and parts of "main".
10
10
*
11
11
* Everything else is
12
* Copyright © 2008,2009 Teddy Hogeborn
13
* Copyright © 2008,2009 Björn Påhlsson
12
* Copyright © 2007-2008 Teddy Hogeborn & Björn Påhlsson
14
13
*
15
14
* This program is free software: you can redistribute it and/or
16
15
* modify it under the terms of the GNU General Public License as
30
29
*/
31
30
32
31
/* Needed by GPGME, specifically gpgme_data_seek() */
33
#ifndef _LARGEFILE_SOURCE
34
32
#define _LARGEFILE_SOURCE
35
#endif
36
#ifndef _FILE_OFFSET_BITS
37
33
#define _FILE_OFFSET_BITS 64
38
#endif
39
40
#define _GNU_SOURCE /* TEMP_FAILURE_RETRY(), asprintf() */
41
42
#include <stdio.h> /* fprintf(), stderr, fwrite(),
43
stdout, ferror(), remove() */
44
#include <stdint.h> /* uint16_t, uint32_t */
45
#include <stddef.h> /* NULL, size_t, ssize_t */
46
#include <stdlib.h> /* free(), EXIT_SUCCESS, EXIT_FAILURE,
47
srand(), strtof() */
48
#include <stdbool.h> /* bool, false, true */
49
#include <string.h> /* memset(), strcmp(), strlen(),
50
strerror(), asprintf(), strcpy() */
51
#include <sys/ioctl.h> /* ioctl */
52
#include <sys/types.h> /* socket(), inet_pton(), sockaddr,
53
sockaddr_in6, PF_INET6,
54
SOCK_STREAM, uid_t, gid_t, open(),
55
opendir(), DIR */
56
#include <sys/stat.h> /* open() */
57
#include <sys/socket.h> /* socket(), struct sockaddr_in6,
58
inet_pton(), connect() */
59
#include <fcntl.h> /* open() */
60
#include <dirent.h> /* opendir(), struct dirent, readdir()
61
*/
62
#include <inttypes.h> /* PRIu16, PRIdMAX, intmax_t,
63
strtoimax() */
64
#include <assert.h> /* assert() */
65
#include <errno.h> /* perror(), errno */
66
#include <time.h> /* nanosleep(), time() */
34
35
#include <stdio.h>
36
#include <assert.h>
37
#include <stdlib.h>
38
#include <time.h>
39
#include <net/if.h> /* if_nametoindex */
40
#include <sys/ioctl.h> /* ioctl, ifreq, SIOCGIFFLAGS, IFF_UP,
41
SIOCSIFFLAGS */
67
42
#include <net/if.h> /* ioctl, ifreq, SIOCGIFFLAGS, IFF_UP,
68
SIOCSIFFLAGS, if_indextoname(),
69
if_nametoindex(), IF_NAMESIZE */
70
#include <netinet/in.h> /* IN6_IS_ADDR_LINKLOCAL,
71
INET_ADDRSTRLEN, INET6_ADDRSTRLEN
72
*/
73
#include <unistd.h> /* close(), SEEK_SET, off_t, write(),
74
getuid(), getgid(), seteuid(),
75
setgid() */
76
#include <arpa/inet.h> /* inet_pton(), htons */
77
#include <iso646.h> /* not, or, and */
78
#include <argp.h> /* struct argp_option, error_t, struct
79
argp_state, struct argp,
80
argp_parse(), ARGP_KEY_ARG,
81
ARGP_KEY_END, ARGP_ERR_UNKNOWN */
82
#include <signal.h> /* sigemptyset(), sigaddset(),
83
sigaction(), SIGTERM, sig_atomic_t,
84
raise() */
85
86
#ifdef __linux__
87
#include <sys/klog.h> /* klogctl() */
88
#endif /* __linux__ */
89
90
/* Avahi */
91
/* All Avahi types, constants and functions
92
Avahi*, avahi_*,
93
AVAHI_* */
43
SIOCSIFFLAGS */
44
94
45
#include <avahi-core/core.h>
95
46
#include <avahi-core/lookup.h>
96
47
#include <avahi-core/log.h>
98
49
#include <avahi-common/malloc.h>
99
50
#include <avahi-common/error.h>
100
51
101
/* GnuTLS */
102
#include <gnutls/gnutls.h> /* All GnuTLS types, constants and
103
functions:
104
gnutls_*
105
init_gnutls_session(),
106
GNUTLS_* */
107
#include <gnutls/openpgp.h>
108
/* gnutls_certificate_set_openpgp_key_file(),
109
GNUTLS_OPENPGP_FMT_BASE64 */
110
111
/* GPGME */
112
#include <gpgme.h> /* All GPGME types, constants and
113
functions:
114
gpgme_*
115
GPGME_PROTOCOL_OpenPGP,
116
GPG_ERR_NO_* */
52
//mandos client part
53
#include <sys/types.h> /* socket(), inet_pton() */
54
#include <sys/socket.h> /* socket(), struct sockaddr_in6,
55
struct in6_addr, inet_pton() */
56
#include <gnutls/gnutls.h> /* All GnuTLS stuff */
57
#include <gnutls/openpgp.h> /* GnuTLS with openpgp stuff */
58
59
#include <unistd.h> /* close() */
60
#include <netinet/in.h>
61
#include <stdbool.h> /* true */
62
#include <string.h> /* memset */
63
#include <arpa/inet.h> /* inet_pton() */
64
#include <iso646.h> /* not */
65
66
// gpgme
67
#include <errno.h> /* perror() */
68
#include <gpgme.h>
69
70
// getopt_long
71
#include <getopt.h>
117
72
118
73
#define BUFFER_SIZE 256
119
74
120
#define PATHDIR "/conf/conf.d/mandos"
121
#define SECKEY "seckey.txt"
122
#define PUBKEY "pubkey.txt"
75
static const char *keydir = "/conf/conf.d/mandos";
76
static const char *pubkeyfile = "pubkey.txt";
77
static const char *seckeyfile = "seckey.txt";
123
78
124
79
bool debug = false;
125
static const char mandos_protocol_version[] = "1";
126
const char *argp_program_version = "mandos-client " VERSION;
127
const char *argp_program_bug_address = "<mandos@fukt.bsnet.se>";
128
80
129
/* Used for passing in values through the Avahi callback functions */
81
/* Used for passing in values through all the callback functions */
130
82
typedef struct {
131
83
AvahiSimplePoll *simple_poll;
132
84
AvahiServer *server;
133
85
gnutls_certificate_credentials_t cred;
134
86
unsigned int dh_bits;
135
gnutls_dh_params_t dh_params;
136
87
const char *priority;
88
} mandos_context;
89
90
/*
91
* Decrypt OpenPGP data using keyrings in HOMEDIR.
92
* Returns -1 on error
93
*/
94
static ssize_t pgp_packet_decrypt (const char *cryptotext,
95
size_t crypto_size,
96
char **plaintext,
97
const char *homedir){
98
gpgme_data_t dh_crypto, dh_plain;
137
99
gpgme_ctx_t ctx;
138
} mandos_context;
139
140
/* global context so signal handler can reach it*/
141
mandos_context mc = { .simple_poll = NULL, .server = NULL,
142
.dh_bits = 1024, .priority = "SECURE256"
143
":!CTYPE-X.509:+CTYPE-OPENPGP" };
144
145
/*
146
* Make additional room in "buffer" for at least BUFFER_SIZE more
147
* bytes. "buffer_capacity" is how much is currently allocated,
148
* "buffer_length" is how much is already used.
149
*/
150
size_t incbuffer(char **buffer, size_t buffer_length,
151
size_t buffer_capacity){
152
if(buffer_length + BUFFER_SIZE > buffer_capacity){
153
*buffer = realloc(*buffer, buffer_capacity + BUFFER_SIZE);
154
if(buffer == NULL){
155
return 0;
156
}
157
buffer_capacity += BUFFER_SIZE;
158
}
159
return buffer_capacity;
160
}
161
162
/*
163
* Initialize GPGME.
164
*/
165
static bool init_gpgme(const char *seckey,
166
const char *pubkey, const char *tempdir){
167
100
gpgme_error_t rc;
101
ssize_t ret;
102
ssize_t plaintext_capacity = 0;
103
ssize_t plaintext_length = 0;
168
104
gpgme_engine_info_t engine_info;
169
105
170
171
/*
172
* Helper function to insert pub and seckey to the engine keyring.
173
*/
174
bool import_key(const char *filename){
175
int ret;
176
int fd;
177
gpgme_data_t pgp_data;
178
179
fd = (int)TEMP_FAILURE_RETRY(open(filename, O_RDONLY));
180
if(fd == -1){
181
perror("open");
182
return false;
183
}
184
185
rc = gpgme_data_new_from_fd(&pgp_data, fd);
186
if(rc != GPG_ERR_NO_ERROR){
187
fprintf(stderr, "bad gpgme_data_new_from_fd: %s: %s\n",
188
gpgme_strsource(rc), gpgme_strerror(rc));
189
return false;
190
}
191
192
rc = gpgme_op_import(mc.ctx, pgp_data);
193
if(rc != GPG_ERR_NO_ERROR){
194
fprintf(stderr, "bad gpgme_op_import: %s: %s\n",
195
gpgme_strsource(rc), gpgme_strerror(rc));
196
return false;
197
}
198
199
ret = (int)TEMP_FAILURE_RETRY(close(fd));
200
if(ret == -1){
201
perror("close");
202
}
203
gpgme_data_release(pgp_data);
204
return true;
205
}
206
207
if(debug){
208
fprintf(stderr, "Initializing GPGME\n");
106
if (debug){
107
fprintf(stderr, "Trying to decrypt OpenPGP data\n");
209
108
}
210
109
211
110
/* Init GPGME */
212
111
gpgme_check_version(NULL);
213
112
rc = gpgme_engine_check_version(GPGME_PROTOCOL_OpenPGP);
214
if(rc != GPG_ERR_NO_ERROR){
113
if (rc != GPG_ERR_NO_ERROR){
215
114
fprintf(stderr, "bad gpgme_engine_check_version: %s: %s\n",
216
115
gpgme_strsource(rc), gpgme_strerror(rc));
217
return false;
116
return -1;
218
117
}
219
118
220
/* Set GPGME home directory for the OpenPGP engine only */
221
rc = gpgme_get_engine_info(&engine_info);
222
if(rc != GPG_ERR_NO_ERROR){
119
/* Set GPGME home directory for the OpenPGP engine only */
120
rc = gpgme_get_engine_info (&engine_info);
121
if (rc != GPG_ERR_NO_ERROR){
223
122
fprintf(stderr, "bad gpgme_get_engine_info: %s: %s\n",
224
123
gpgme_strsource(rc), gpgme_strerror(rc));
225
return false;
124
return -1;
226
125
}
227
126
while(engine_info != NULL){
228
127
if(engine_info->protocol == GPGME_PROTOCOL_OpenPGP){
229
128
gpgme_set_engine_info(GPGME_PROTOCOL_OpenPGP,
230
engine_info->file_name, tempdir);
129
engine_info->file_name, homedir);
231
130
break;
232
131
}
233
132
engine_info = engine_info->next;
234
133
}
235
134
if(engine_info == NULL){
236
fprintf(stderr, "Could not set GPGME home dir to %s\n", tempdir);
237
return false;
238
}
239
240
/* Create new GPGME "context" */
241
rc = gpgme_new(&(mc.ctx));
242
if(rc != GPG_ERR_NO_ERROR){
243
fprintf(stderr, "bad gpgme_new: %s: %s\n",
244
gpgme_strsource(rc), gpgme_strerror(rc));
245
return false;
246
}
247
248
if(not import_key(pubkey) or not import_key(seckey)){
249
return false;
250
}
251
252
return true;
253
}
254
255
/*
256
* Decrypt OpenPGP data.
257
* Returns -1 on error
258
*/
259
static ssize_t pgp_packet_decrypt(const char *cryptotext,
260
size_t crypto_size,
261
char **plaintext){
262
gpgme_data_t dh_crypto, dh_plain;
263
gpgme_error_t rc;
264
ssize_t ret;
265
size_t plaintext_capacity = 0;
266
ssize_t plaintext_length = 0;
267
268
if(debug){
269
fprintf(stderr, "Trying to decrypt OpenPGP data\n");
135
fprintf(stderr, "Could not set GPGME home dir to %s\n", homedir);
136
return -1;
270
137
}
271
138
272
139
/* Create new GPGME data buffer from memory cryptotext */
273
140
rc = gpgme_data_new_from_mem(&dh_crypto, cryptotext, crypto_size,
274
141
0);
275
if(rc != GPG_ERR_NO_ERROR){
142
if (rc != GPG_ERR_NO_ERROR){
276
143
fprintf(stderr, "bad gpgme_data_new_from_mem: %s: %s\n",
277
144
gpgme_strsource(rc), gpgme_strerror(rc));
278
145
return -1;
280
147
281
148
/* Create new empty GPGME data buffer for the plaintext */
282
149
rc = gpgme_data_new(&dh_plain);
283
if(rc != GPG_ERR_NO_ERROR){
150
if (rc != GPG_ERR_NO_ERROR){
284
151
fprintf(stderr, "bad gpgme_data_new: %s: %s\n",
285
152
gpgme_strsource(rc), gpgme_strerror(rc));
286
153
gpgme_data_release(dh_crypto);
287
154
return -1;
288
155
}
289
156
157
/* Create new GPGME "context" */
158
rc = gpgme_new(&ctx);
159
if (rc != GPG_ERR_NO_ERROR){
160
fprintf(stderr, "bad gpgme_new: %s: %s\n",
161
gpgme_strsource(rc), gpgme_strerror(rc));
162
plaintext_length = -1;
163
goto decrypt_end;
164
}
165
290
166
/* Decrypt data from the cryptotext data buffer to the plaintext
291
167
data buffer */
292
rc = gpgme_op_decrypt(mc.ctx, dh_crypto, dh_plain);
293
if(rc != GPG_ERR_NO_ERROR){
168
rc = gpgme_op_decrypt(ctx, dh_crypto, dh_plain);
169
if (rc != GPG_ERR_NO_ERROR){
294
170
fprintf(stderr, "bad gpgme_op_decrypt: %s: %s\n",
295
171
gpgme_strsource(rc), gpgme_strerror(rc));
296
172
plaintext_length = -1;
297
if(debug){
298
gpgme_decrypt_result_t result;
299
result = gpgme_op_decrypt_result(mc.ctx);
300
if(result == NULL){
301
fprintf(stderr, "gpgme_op_decrypt_result failed\n");
302
} else {
303
fprintf(stderr, "Unsupported algorithm: %s\n",
304
result->unsupported_algorithm);
305
fprintf(stderr, "Wrong key usage: %u\n",
306
result->wrong_key_usage);
307
if(result->file_name != NULL){
308
fprintf(stderr, "File name: %s\n", result->file_name);
309
}
310
gpgme_recipient_t recipient;
311
recipient = result->recipients;
173
goto decrypt_end;
174
}
175
176
if(debug){
177
fprintf(stderr, "Decryption of OpenPGP data succeeded\n");
178
}
179
180
if (debug){
181
gpgme_decrypt_result_t result;
182
result = gpgme_op_decrypt_result(ctx);
183
if (result == NULL){
184
fprintf(stderr, "gpgme_op_decrypt_result failed\n");
185
} else {
186
fprintf(stderr, "Unsupported algorithm: %s\n",
187
result->unsupported_algorithm);
188
fprintf(stderr, "Wrong key usage: %d\n",
189
result->wrong_key_usage);
190
if(result->file_name != NULL){
191
fprintf(stderr, "File name: %s\n", result->file_name);
192
}
193
gpgme_recipient_t recipient;
194
recipient = result->recipients;
195
if(recipient){
312
196
while(recipient != NULL){
313
197
fprintf(stderr, "Public key algorithm: %s\n",
314
198
gpgme_pubkey_algo_name(recipient->pubkey_algo));
320
204
}
321
205
}
322
206
}
323
goto decrypt_end;
324
}
325
326
if(debug){
327
fprintf(stderr, "Decryption of OpenPGP data succeeded\n");
328
207
}
329
208
330
209
/* Seek back to the beginning of the GPGME plaintext data buffer */
331
if(gpgme_data_seek(dh_plain, (off_t)0, SEEK_SET) == -1){
332
perror("gpgme_data_seek");
210
if (gpgme_data_seek(dh_plain, (off_t) 0, SEEK_SET) == -1){
211
perror("pgpme_data_seek");
333
212
plaintext_length = -1;
334
213
goto decrypt_end;
335
214
}
336
215
337
216
*plaintext = NULL;
338
217
while(true){
339
plaintext_capacity = incbuffer(plaintext,
340
(size_t)plaintext_length,
341
plaintext_capacity);
342
if(plaintext_capacity == 0){
343
perror("incbuffer");
218
if (plaintext_length + BUFFER_SIZE > plaintext_capacity){
219
*plaintext = realloc(*plaintext,
220
(unsigned int)plaintext_capacity
221
+ BUFFER_SIZE);
222
if (*plaintext == NULL){
223
perror("realloc");
344
224
plaintext_length = -1;
345
225
goto decrypt_end;
226
}
227
plaintext_capacity += BUFFER_SIZE;
346
228
}
347
229
348
230
ret = gpgme_data_read(dh_plain, *plaintext + plaintext_length,
349
231
BUFFER_SIZE);
350
232
/* Print the data, if any */
351
if(ret == 0){
233
if (ret == 0){
352
234
/* EOF */
353
235
break;
354
236
}
359
241
}
360
242
plaintext_length += ret;
361
243
}
362
244
363
245
if(debug){
364
246
fprintf(stderr, "Decrypted password is: ");
365
for(ssize_t i = 0; i < plaintext_length; i++){
247
for(size_t i = 0; i < plaintext_length; i++){
366
248
fprintf(stderr, "%02hhX ", (*plaintext)[i]);
367
249
}
368
250
fprintf(stderr, "\n");
378
260
return plaintext_length;
379
261
}
380
262
381
static const char * safer_gnutls_strerror(int value){
382
const char *ret = gnutls_strerror(value); /* Spurious warning from
383
-Wunreachable-code */
384
if(ret == NULL)
263
static const char * safer_gnutls_strerror (int value) {
264
const char *ret = gnutls_strerror (value);
265
if (ret == NULL)
385
266
ret = "(unknown)";
386
267
return ret;
387
268
}
388
269
389
/* GnuTLS log function callback */
390
270
static void debuggnutls(__attribute__((unused)) int level,
391
271
const char* string){
392
fprintf(stderr, "GnuTLS: %s", string);
272
fprintf(stderr, "%s", string);
393
273
}
394
274
395
static int init_gnutls_global(const char *pubkeyfilename,
396
const char *seckeyfilename){
275
static int initgnutls(mandos_context *mc, gnutls_session_t *session,
276
gnutls_dh_params_t *dh_params){
277
const char *err;
397
278
int ret;
398
279
399
280
if(debug){
400
281
fprintf(stderr, "Initializing GnuTLS\n");
401
282
}
402
403
ret = gnutls_global_init();
404
if(ret != GNUTLS_E_SUCCESS){
405
fprintf(stderr, "GnuTLS global_init: %s\n",
406
safer_gnutls_strerror(ret));
283
284
if ((ret = gnutls_global_init ())
285
!= GNUTLS_E_SUCCESS) {
286
fprintf (stderr, "global_init: %s\n", safer_gnutls_strerror(ret));
407
287
return -1;
408
288
}
409
289
410
if(debug){
411
/* "Use a log level over 10 to enable all debugging options."
412
* - GnuTLS manual
413
*/
290
if (debug){
414
291
gnutls_global_set_log_level(11);
415
292
gnutls_global_set_log_function(debuggnutls);
416
293
}
417
294
418
/* OpenPGP credentials */
419
gnutls_certificate_allocate_credentials(&mc.cred);
420
if(ret != GNUTLS_E_SUCCESS){
421
fprintf(stderr, "GnuTLS memory error: %s\n", /* Spurious warning
422
from
423
-Wunreachable-code
424
*/
425
safer_gnutls_strerror(ret));
426
gnutls_global_deinit();
295
/* openpgp credentials */
296
if ((ret = gnutls_certificate_allocate_credentials (&mc->cred))
297
!= GNUTLS_E_SUCCESS) {
298
fprintf (stderr, "memory error: %s\n",
299
safer_gnutls_strerror(ret));
427
300
return -1;
428
301
}
429
302
430
303
if(debug){
431
fprintf(stderr, "Attempting to use OpenPGP public key %s and"
432
" secret key %s as GnuTLS credentials\n", pubkeyfilename,
433
seckeyfilename);
304
fprintf(stderr, "Attempting to use OpenPGP certificate %s"
305
" and keyfile %s as GnuTLS credentials\n", pubkeyfile,
306
seckeyfile);
434
307
}
435
308
436
309
ret = gnutls_certificate_set_openpgp_key_file
437
(mc.cred, pubkeyfilename, seckeyfilename,
438
GNUTLS_OPENPGP_FMT_BASE64);
439
if(ret != GNUTLS_E_SUCCESS){
440
fprintf(stderr,
441
"Error[%d] while reading the OpenPGP key pair ('%s',"
442
" '%s')\n", ret, pubkeyfilename, seckeyfilename);
443
fprintf(stderr, "The GnuTLS error is: %s\n",
444
safer_gnutls_strerror(ret));
445
goto globalfail;
446
}
447
448
/* GnuTLS server initialization */
449
ret = gnutls_dh_params_init(&mc.dh_params);
450
if(ret != GNUTLS_E_SUCCESS){
451
fprintf(stderr, "Error in GnuTLS DH parameter initialization:"
452
" %s\n", safer_gnutls_strerror(ret));
453
goto globalfail;
454
}
455
ret = gnutls_dh_params_generate2(mc.dh_params, mc.dh_bits);
456
if(ret != GNUTLS_E_SUCCESS){
457
fprintf(stderr, "Error in GnuTLS prime generation: %s\n",
458
safer_gnutls_strerror(ret));
459
goto globalfail;
460
}
461
462
gnutls_certificate_set_dh_params(mc.cred, mc.dh_params);
463
464
return 0;
465
466
globalfail:
467
468
gnutls_certificate_free_credentials(mc.cred);
469
gnutls_global_deinit();
470
gnutls_dh_params_deinit(mc.dh_params);
471
return -1;
472
}
473
474
static int init_gnutls_session(gnutls_session_t *session){
475
int ret;
476
/* GnuTLS session creation */
477
do {
478
ret = gnutls_init(session, GNUTLS_SERVER);
479
} while(ret == GNUTLS_E_INTERRUPTED or ret == GNUTLS_E_AGAIN);
480
if(ret != GNUTLS_E_SUCCESS){
310
(mc->cred, pubkeyfile, seckeyfile, GNUTLS_OPENPGP_FMT_BASE64);
311
if (ret != GNUTLS_E_SUCCESS) {
312
fprintf
313
(stderr, "Error[%d] while reading the OpenPGP key pair ('%s',"
314
" '%s')\n",
315
ret, pubkeyfile, seckeyfile);
316
fprintf(stdout, "The Error is: %s\n",
317
safer_gnutls_strerror(ret));
318
return -1;
319
}
320
321
//GnuTLS server initialization
322
if ((ret = gnutls_dh_params_init(dh_params))
323
!= GNUTLS_E_SUCCESS) {
324
fprintf (stderr, "Error in dh parameter initialization: %s\n",
325
safer_gnutls_strerror(ret));
326
return -1;
327
}
328
329
if ((ret = gnutls_dh_params_generate2(*dh_params, mc->dh_bits))
330
!= GNUTLS_E_SUCCESS) {
331
fprintf (stderr, "Error in prime generation: %s\n",
332
safer_gnutls_strerror(ret));
333
return -1;
334
}
335
336
gnutls_certificate_set_dh_params(mc->cred, *dh_params);
337
338
// GnuTLS session creation
339
if ((ret = gnutls_init(session, GNUTLS_SERVER))
340
!= GNUTLS_E_SUCCESS){
481
341
fprintf(stderr, "Error in GnuTLS session initialization: %s\n",
482
342
safer_gnutls_strerror(ret));
483
343
}
484
344
485
{
486
const char *err;
487
do {
488
ret = gnutls_priority_set_direct(*session, mc.priority, &err);
489
} while(ret == GNUTLS_E_INTERRUPTED or ret == GNUTLS_E_AGAIN);
490
if(ret != GNUTLS_E_SUCCESS){
491
fprintf(stderr, "Syntax error at: %s\n", err);
492
fprintf(stderr, "GnuTLS error: %s\n",
493
safer_gnutls_strerror(ret));
494
gnutls_deinit(*session);
495
return -1;
496
}
345
if ((ret = gnutls_priority_set_direct(*session, mc->priority, &err))
346
!= GNUTLS_E_SUCCESS) {
347
fprintf(stderr, "Syntax error at: %s\n", err);
348
fprintf(stderr, "GnuTLS error: %s\n",
349
safer_gnutls_strerror(ret));
350
return -1;
497
351
}
498
352
499
do {
500
ret = gnutls_credentials_set(*session, GNUTLS_CRD_CERTIFICATE,
501
mc.cred);
502
} while(ret == GNUTLS_E_INTERRUPTED or ret == GNUTLS_E_AGAIN);
503
if(ret != GNUTLS_E_SUCCESS){
504
fprintf(stderr, "Error setting GnuTLS credentials: %s\n",
353
if ((ret = gnutls_credentials_set(*session, GNUTLS_CRD_CERTIFICATE,
354
mc->cred))
355
!= GNUTLS_E_SUCCESS) {
356
fprintf(stderr, "Error setting a credentials set: %s\n",
505
357
safer_gnutls_strerror(ret));
506
gnutls_deinit(*session);
507
358
return -1;
508
359
}
509
360
510
361
/* ignore client certificate if any. */
511
gnutls_certificate_server_set_request(*session, GNUTLS_CERT_IGNORE);
362
gnutls_certificate_server_set_request (*session,
363
GNUTLS_CERT_IGNORE);
512
364
513
gnutls_dh_set_prime_bits(*session, mc.dh_bits);
365
gnutls_dh_set_prime_bits (*session, mc->dh_bits);
514
366
515
367
return 0;
516
368
}
517
369
518
/* Avahi log function callback */
519
370
static void empty_log(__attribute__((unused)) AvahiLogLevel level,
520
371
__attribute__((unused)) const char *txt){}
521
372
522
sig_atomic_t quit_now = 0;
523
int signal_received = 0;
524
525
/* Called when a Mandos server is found */
526
373
static int start_mandos_communication(const char *ip, uint16_t port,
527
374
AvahiIfIndex if_index,
528
int af){
529
int ret, tcp_sd = -1;
530
ssize_t sret;
531
union {
532
struct sockaddr_in in;
533
struct sockaddr_in6 in6;
534
} to;
375
mandos_context *mc){
376
int ret, tcp_sd;
377
struct sockaddr_in6 to;
535
378
char *buffer = NULL;
536
379
char *decrypted_buffer;
537
380
size_t buffer_length = 0;
538
381
size_t buffer_capacity = 0;
539
size_t written;
382
ssize_t decrypted_buffer_size;
383
size_t written = 0;
540
384
int retval = 0;
385
char interface[IF_NAMESIZE];
541
386
gnutls_session_t session;
542
int pf; /* Protocol family */
543
544
if(quit_now){
545
return -1;
546
}
547
548
switch(af){
549
case AF_INET6:
550
pf = PF_INET6;
551
break;
552
case AF_INET:
553
pf = PF_INET;
554
break;
555
default:
556
fprintf(stderr, "Bad address family: %d\n", af);
557
return -1;
558
}
559
560
ret = init_gnutls_session(&session);
561
if(ret != 0){
562
return -1;
563
}
387
gnutls_dh_params_t dh_params;
564
388
565
389
if(debug){
566
fprintf(stderr, "Setting up a TCP connection to %s, port %" PRIu16
567
"\n", ip, port);
390
fprintf(stderr, "Setting up a tcp connection to %s, port %d\n",
391
ip, port);
568
392
}
569
393
570
tcp_sd = socket(pf, SOCK_STREAM, 0);
571
if(tcp_sd < 0){
394
tcp_sd = socket(PF_INET6, SOCK_STREAM, 0);
395
if(tcp_sd < 0) {
572
396
perror("socket");
573
retval = -1;
574
goto mandos_end;
575
}
576
577
if(quit_now){
578
goto mandos_end;
579
}
580
581
memset(&to, 0, sizeof(to));
582
if(af == AF_INET6){
583
to.in6.sin6_family = (sa_family_t)af;
584
ret = inet_pton(af, ip, &to.in6.sin6_addr);
585
} else { /* IPv4 */
586
to.in.sin_family = (sa_family_t)af;
587
ret = inet_pton(af, ip, &to.in.sin_addr);
588
}
589
if(ret < 0 ){
397
return -1;
398
}
399
400
if(debug){
401
if(if_indextoname((unsigned int)if_index, interface) == NULL){
402
perror("if_indextoname");
403
return -1;
404
}
405
fprintf(stderr, "Binding to interface %s\n", interface);
406
}
407
408
memset(&to,0,sizeof(to)); /* Spurious warning */
409
to.sin6_family = AF_INET6;
410
ret = inet_pton(AF_INET6, ip, &to.sin6_addr);
411
if (ret < 0 ){
590
412
perror("inet_pton");
591
retval = -1;
592
goto mandos_end;
413
return -1;
593
414
}
594
415
if(ret == 0){
595
416
fprintf(stderr, "Bad address: %s\n", ip);
596
retval = -1;
597
goto mandos_end;
598
}
599
if(af == AF_INET6){
600
to.in6.sin6_port = htons(port); /* Spurious warnings from
601
-Wconversion and
602
-Wunreachable-code */
603
604
if(IN6_IS_ADDR_LINKLOCAL /* Spurious warnings from */
605
(&to.in6.sin6_addr)){ /* -Wstrict-aliasing=2 or lower and
606
-Wunreachable-code*/
607
if(if_index == AVAHI_IF_UNSPEC){
608
fprintf(stderr, "An IPv6 link-local address is incomplete"
609
" without a network interface\n");
610
retval = -1;
611
goto mandos_end;
612
}
613
/* Set the network interface number as scope */
614
to.in6.sin6_scope_id = (uint32_t)if_index;
615
}
616
} else {
617
to.in.sin_port = htons(port); /* Spurious warnings from
618
-Wconversion and
619
-Wunreachable-code */
620
}
417
return -1;
418
}
419
to.sin6_port = htons(port); /* Spurious warning */
621
420
622
if(quit_now){
623
goto mandos_end;
624
}
421
to.sin6_scope_id = (uint32_t)if_index;
625
422
626
423
if(debug){
627
if(af == AF_INET6 and if_index != AVAHI_IF_UNSPEC){
628
char interface[IF_NAMESIZE];
629
if(if_indextoname((unsigned int)if_index, interface) == NULL){
630
perror("if_indextoname");
631
} else {
632
fprintf(stderr, "Connection to: %s%%%s, port %" PRIu16 "\n",
633
ip, interface, port);
634
}
635
} else {
636
fprintf(stderr, "Connection to: %s, port %" PRIu16 "\n", ip,
637
port);
638
}
639
char addrstr[(INET_ADDRSTRLEN > INET6_ADDRSTRLEN) ?
640
INET_ADDRSTRLEN : INET6_ADDRSTRLEN] = "";
641
const char *pcret;
642
if(af == AF_INET6){
643
pcret = inet_ntop(af, &(to.in6.sin6_addr), addrstr,
644
sizeof(addrstr));
645
} else {
646
pcret = inet_ntop(af, &(to.in.sin_addr), addrstr,
647
sizeof(addrstr));
648
}
649
if(pcret == NULL){
424
fprintf(stderr, "Connection to: %s, port %d\n", ip, port);
425
char addrstr[INET6_ADDRSTRLEN] = "";
426
if(inet_ntop(to.sin6_family, &(to.sin6_addr), addrstr,
427
sizeof(addrstr)) == NULL){
650
428
perror("inet_ntop");
651
429
} else {
652
430
if(strcmp(addrstr, ip) != 0){
655
433
}
656
434
}
657
435
658
if(quit_now){
659
goto mandos_end;
660
}
661
662
if(af == AF_INET6){
663
ret = connect(tcp_sd, &to.in6, sizeof(to));
664
} else {
665
ret = connect(tcp_sd, &to.in, sizeof(to)); /* IPv4 */
666
}
667
if(ret < 0){
436
ret = connect(tcp_sd, (struct sockaddr *) &to, sizeof(to));
437
if (ret < 0){
668
438
perror("connect");
439
return -1;
440
}
441
442
ret = initgnutls (mc, &session, &dh_params);
443
if (ret != 0){
669
444
retval = -1;
670
goto mandos_end;
671
}
672
673
if(quit_now){
674
goto mandos_end;
675
}
676
677
const char *out = mandos_protocol_version;
678
written = 0;
679
while(true){
680
size_t out_size = strlen(out);
681
ret = (int)TEMP_FAILURE_RETRY(write(tcp_sd, out + written,
682
out_size - written));
683
if(ret == -1){
684
perror("write");
685
retval = -1;
686
goto mandos_end;
687
}
688
written += (size_t)ret;
689
if(written < out_size){
690
continue;
691
} else {
692
if(out == mandos_protocol_version){
693
written = 0;
694
out = "\r\n";
695
} else {
696
break;
697
}
698
}
699
700
if(quit_now){
701
goto mandos_end;
702
}
703
}
445
return -1;
446
}
447
448
gnutls_transport_set_ptr (session, (gnutls_transport_ptr_t) tcp_sd);
704
449
705
450
if(debug){
706
451
fprintf(stderr, "Establishing TLS session with %s\n", ip);
707
452
}
708
453
709
if(quit_now){
710
goto mandos_end;
711
}
712
713
gnutls_transport_set_ptr(session, (gnutls_transport_ptr_t) tcp_sd);
714
715
if(quit_now){
716
goto mandos_end;
717
}
718
719
do {
720
ret = gnutls_handshake(session);
721
if(quit_now){
722
goto mandos_end;
723
}
724
} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);
725
726
if(ret != GNUTLS_E_SUCCESS){
454
ret = gnutls_handshake (session);
455
456
if (ret != GNUTLS_E_SUCCESS){
727
457
if(debug){
728
fprintf(stderr, "*** GnuTLS Handshake failed ***\n");
729
gnutls_perror(ret);
458
fprintf(stderr, "\n*** Handshake failed ***\n");
459
gnutls_perror (ret);
730
460
}
731
461
retval = -1;
732
goto mandos_end;
462
goto exit;
733
463
}
734
464
735
/* Read OpenPGP packet that contains the wanted password */
465
//Retrieve OpenPGP packet that contains the wanted password
736
466
737
467
if(debug){
738
fprintf(stderr, "Retrieving OpenPGP encrypted password from %s\n",
468
fprintf(stderr, "Retrieving pgp encrypted password from %s\n",
739
469
ip);
740
470
}
741
471
742
472
while(true){
743
744
if(quit_now){
745
goto mandos_end;
746
}
747
748
buffer_capacity = incbuffer(&buffer, buffer_length,
749
buffer_capacity);
750
if(buffer_capacity == 0){
751
perror("incbuffer");
752
retval = -1;
753
goto mandos_end;
754
}
755
756
if(quit_now){
757
goto mandos_end;
758
}
759
760
sret = gnutls_record_recv(session, buffer+buffer_length,
761
BUFFER_SIZE);
762
if(sret == 0){
473
if (buffer_length + BUFFER_SIZE > buffer_capacity){
474
buffer = realloc(buffer, buffer_capacity + BUFFER_SIZE);
475
if (buffer == NULL){
476
perror("realloc");
477
goto exit;
478
}
479
buffer_capacity += BUFFER_SIZE;
480
}
481
482
ret = gnutls_record_recv(session, buffer+buffer_length,
483
BUFFER_SIZE);
484
if (ret == 0){
763
485
break;
764
486
}
765
if(sret < 0){
766
switch(sret){
487
if (ret < 0){
488
switch(ret){
767
489
case GNUTLS_E_INTERRUPTED:
768
490
case GNUTLS_E_AGAIN:
769
491
break;
770
492
case GNUTLS_E_REHANDSHAKE:
771
do {
772
ret = gnutls_handshake(session);
773
774
if(quit_now){
775
goto mandos_end;
776
}
777
} while(ret == GNUTLS_E_AGAIN or ret == GNUTLS_E_INTERRUPTED);
778
if(ret < 0){
779
fprintf(stderr, "*** GnuTLS Re-handshake failed ***\n");
780
gnutls_perror(ret);
493
ret = gnutls_handshake (session);
494
if (ret < 0){
495
fprintf(stderr, "\n*** Handshake failed ***\n");
496
gnutls_perror (ret);
781
497
retval = -1;
782
goto mandos_end;
498
goto exit;
783
499
}
784
500
break;
785
501
default:
786
502
fprintf(stderr, "Unknown error while reading data from"
787
" encrypted session with Mandos server\n");
503
" encrypted session with mandos server\n");
788
504
retval = -1;
789
gnutls_bye(session, GNUTLS_SHUT_RDWR);
790
goto mandos_end;
505
gnutls_bye (session, GNUTLS_SHUT_RDWR);
506
goto exit;
791
507
}
792
508
} else {
793
buffer_length += (size_t) sret;
509
buffer_length += (size_t) ret;
794
510
}
795
511
}
796
512
797
if(debug){
798
fprintf(stderr, "Closing TLS session\n");
799
}
800
801
if(quit_now){
802
goto mandos_end;
803
}
804
805
gnutls_bye(session, GNUTLS_SHUT_RDWR);
806
807
if(quit_now){
808
goto mandos_end;
809
}
810
811
if(buffer_length > 0){
812
ssize_t decrypted_buffer_size;
513
if (buffer_length > 0){
813
514
decrypted_buffer_size = pgp_packet_decrypt(buffer,
814
515
buffer_length,
815
&decrypted_buffer);
816
if(decrypted_buffer_size >= 0){
817
818
written = 0;
516
&decrypted_buffer,
517
keydir);
518
if (decrypted_buffer_size >= 0){
819
519
while(written < (size_t) decrypted_buffer_size){
820
if(quit_now){
821
goto mandos_end;
822
}
823
824
ret = (int)fwrite(decrypted_buffer + written, 1,
825
(size_t)decrypted_buffer_size - written,
826
stdout);
520
ret = (int)fwrite (decrypted_buffer + written, 1,
521
(size_t)decrypted_buffer_size - written,
522
stdout);
827
523
if(ret == 0 and ferror(stdout)){
828
524
if(debug){
829
525
fprintf(stderr, "Error writing encrypted data: %s\n",
838
534
} else {
839
535
retval = -1;
840
536
}
841
} else {
842
retval = -1;
843
}
844
845
/* Shutdown procedure */
846
847
mandos_end:
537
}
538
539
//shutdown procedure
540
541
if(debug){
542
fprintf(stderr, "Closing TLS session\n");
543
}
544
848
545
free(buffer);
849
if(tcp_sd >= 0){
850
ret = (int)TEMP_FAILURE_RETRY(close(tcp_sd));
851
}
852
if(ret == -1){
853
perror("close");
854
}
855
gnutls_deinit(session);
856
if(quit_now){
857
retval = -1;
858
}
546
gnutls_bye (session, GNUTLS_SHUT_RDWR);
547
exit:
548
close(tcp_sd);
549
gnutls_deinit (session);
550
gnutls_certificate_free_credentials (mc->cred);
551
gnutls_global_deinit ();
859
552
return retval;
860
553
}
861
554
862
555
static void resolve_callback(AvahiSServiceResolver *r,
863
556
AvahiIfIndex interface,
864
AvahiProtocol proto,
557
AVAHI_GCC_UNUSED AvahiProtocol protocol,
865
558
AvahiResolverEvent event,
866
559
const char *name,
867
560
const char *type,
872
565
AVAHI_GCC_UNUSED AvahiStringList *txt,
873
566
AVAHI_GCC_UNUSED AvahiLookupResultFlags
874
567
flags,
875
AVAHI_GCC_UNUSED void* userdata){
876
assert(r);
568
void* userdata) {
569
mandos_context *mc = userdata;
570
assert(r); /* Spurious warning */
877
571
878
572
/* Called whenever a service has been resolved successfully or
879
573
timed out */
880
574
881
if(quit_now){
882
return;
883
}
884
885
switch(event){
575
switch (event) {
886
576
default:
887
577
case AVAHI_RESOLVER_FAILURE:
888
fprintf(stderr, "(Avahi Resolver) Failed to resolve service '%s'"
889
" of type '%s' in domain '%s': %s\n", name, type, domain,
890
avahi_strerror(avahi_server_errno(mc.server)));
578
fprintf(stderr, "(Resolver) Failed to resolve service '%s' of"
579
" type '%s' in domain '%s': %s\n", name, type, domain,
580
avahi_strerror(avahi_server_errno(mc->server)));
891
581
break;
892
582
893
583
case AVAHI_RESOLVER_FOUND:
895
585
char ip[AVAHI_ADDRESS_STR_MAX];
896
586
avahi_address_snprint(ip, sizeof(ip), address);
897
587
if(debug){
898
fprintf(stderr, "Mandos server \"%s\" found on %s (%s, %"
899
PRIdMAX ") on port %" PRIu16 "\n", name, host_name,
900
ip, (intmax_t)interface, port);
588
fprintf(stderr, "Mandos server \"%s\" found on %s (%s) on"
589
" port %d\n", name, host_name, ip, port);
901
590
}
902
int ret = start_mandos_communication(ip, port, interface,
903
avahi_proto_to_af(proto));
904
if(ret == 0){
905
avahi_simple_poll_quit(mc.simple_poll);
591
int ret = start_mandos_communication(ip, port, interface, mc);
592
if (ret == 0){
593
exit(EXIT_SUCCESS);
906
594
}
907
595
}
908
596
}
909
597
avahi_s_service_resolver_free(r);
910
598
}
911
599
912
static void browse_callback(AvahiSServiceBrowser *b,
913
AvahiIfIndex interface,
914
AvahiProtocol protocol,
915
AvahiBrowserEvent event,
916
const char *name,
917
const char *type,
918
const char *domain,
919
AVAHI_GCC_UNUSED AvahiLookupResultFlags
920
flags,
921
AVAHI_GCC_UNUSED void* userdata){
922
assert(b);
600
static void browse_callback( AvahiSServiceBrowser *b,
601
AvahiIfIndex interface,
602
AvahiProtocol protocol,
603
AvahiBrowserEvent event,
604
const char *name,
605
const char *type,
606
const char *domain,
607
AVAHI_GCC_UNUSED AvahiLookupResultFlags
608
flags,
609
void* userdata) {
610
mandos_context *mc = userdata;
611
assert(b); /* Spurious warning */
923
612
924
613
/* Called whenever a new services becomes available on the LAN or
925
614
is removed from the LAN */
926
615
927
if(quit_now){
928
return;
929
}
930
931
switch(event){
616
switch (event) {
932
617
default:
933
618
case AVAHI_BROWSER_FAILURE:
934
619
935
fprintf(stderr, "(Avahi browser) %s\n",
936
avahi_strerror(avahi_server_errno(mc.server)));
937
avahi_simple_poll_quit(mc.simple_poll);
620
fprintf(stderr, "(Browser) %s\n",
621
avahi_strerror(avahi_server_errno(mc->server)));
622
avahi_simple_poll_quit(mc->simple_poll);
938
623
return;
939
624
940
625
case AVAHI_BROWSER_NEW:
941
/* We ignore the returned Avahi resolver object. In the callback
942
function we free it. If the Avahi server is terminated before
943
the callback function is called the Avahi server will free the
944
resolver for us. */
626
/* We ignore the returned resolver object. In the callback
627
function we free it. If the server is terminated before
628
the callback function is called the server will free
629
the resolver for us. */
945
630
946
if(avahi_s_service_resolver_new(mc.server, interface, protocol,
947
name, type, domain, protocol, 0,
948
resolve_callback, NULL) == NULL)
949
fprintf(stderr, "Avahi: Failed to resolve service '%s': %s\n",
950
name, avahi_strerror(avahi_server_errno(mc.server)));
631
if (!(avahi_s_service_resolver_new(mc->server, interface,
632
protocol, name, type, domain,
633
AVAHI_PROTO_INET6, 0,
634
resolve_callback, mc)))
635
fprintf(stderr, "Failed to resolve service '%s': %s\n", name,
636
avahi_strerror(avahi_server_errno(mc->server)));
951
637
break;
952
638
953
639
case AVAHI_BROWSER_REMOVE:
955
641
956
642
case AVAHI_BROWSER_ALL_FOR_NOW:
957
643
case AVAHI_BROWSER_CACHE_EXHAUSTED:
958
if(debug){
959
fprintf(stderr, "No Mandos server found, still searching...\n");
960
}
961
644
break;
962
645
}
963
646
}
964
647
965
/* stop main loop after sigterm has been called */
966
static void handle_sigterm(int sig){
967
if(quit_now){
968
return;
969
}
970
quit_now = 1;
971
signal_received = sig;
972
int old_errno = errno;
973
if(mc.simple_poll != NULL){
974
avahi_simple_poll_quit(mc.simple_poll);
975
}
976
errno = old_errno;
648
/* Combines file name and path and returns the malloced new
649
string. some sane checks could/should be added */
650
static const char *combinepath(const char *first, const char *second){
651
size_t f_len = strlen(first);
652
size_t s_len = strlen(second);
653
char *tmp = malloc(f_len + s_len + 2);
654
if (tmp == NULL){
655
return NULL;
656
}
657
if(f_len > 0){
658
memcpy(tmp, first, f_len); /* Spurious warning */
659
}
660
tmp[f_len] = '/';
661
if(s_len > 0){
662
memcpy(tmp + f_len + 1, second, s_len); /* Spurious warning */
663
}
664
tmp[f_len + 1 + s_len] = '\0';
665
return tmp;
977
666
}
978
667
979
int main(int argc, char *argv[]){
980
AvahiSServiceBrowser *sb = NULL;
981
int error;
982
int ret;
983
intmax_t tmpmax;
984
char *tmp;
985
int exitcode = EXIT_SUCCESS;
986
const char *interface = "eth0";
987
struct ifreq network;
988
int sd = -1;
989
bool take_down_interface = false;
990
uid_t uid;
991
gid_t gid;
992
char *connect_to = NULL;
993
char tempdir[] = "/tmp/mandosXXXXXX";
994
bool tempdir_created = false;
995
AvahiIfIndex if_index = AVAHI_IF_UNSPEC;
996
const char *seckey = PATHDIR "/" SECKEY;
997
const char *pubkey = PATHDIR "/" PUBKEY;
998
999
bool gnutls_initialized = false;
1000
bool gpgme_initialized = false;
1001
float delay = 2.5f;
1002
1003
struct sigaction old_sigterm_action = { .sa_handler = SIG_DFL };
1004
struct sigaction sigterm_action = { .sa_handler = handle_sigterm };
1005
1006
uid = getuid();
1007
gid = getgid();
1008
1009
/* Lower any group privileges we might have, just to be safe */
1010
errno = 0;
1011
ret = setgid(gid);
1012
if(ret == -1){
1013
perror("setgid");
1014
}
1015
1016
/* Lower user privileges (temporarily) */
1017
errno = 0;
1018
ret = seteuid(uid);
1019
if(ret == -1){
1020
perror("seteuid");
1021
}
1022
1023
if(quit_now){
1024
goto end;
1025
}
1026
1027
{
1028
struct argp_option options[] = {
1029
{ .name = "debug", .key = 128,
1030
.doc = "Debug mode", .group = 3 },
1031
{ .name = "connect", .key = 'c',
1032
.arg = "ADDRESS:PORT",
1033
.doc = "Connect directly to a specific Mandos server",
1034
.group = 1 },
1035
{ .name = "interface", .key = 'i',
1036
.arg = "NAME",
1037
.doc = "Network interface that will be used to search for"
1038
" Mandos servers",
1039
.group = 1 },
1040
{ .name = "seckey", .key = 's',
1041
.arg = "FILE",
1042
.doc = "OpenPGP secret key file base name",
1043
.group = 1 },
1044
{ .name = "pubkey", .key = 'p',
1045
.arg = "FILE",
1046
.doc = "OpenPGP public key file base name",
1047
.group = 2 },
1048
{ .name = "dh-bits", .key = 129,
1049
.arg = "BITS",
1050
.doc = "Bit length of the prime number used in the"
1051
" Diffie-Hellman key exchange",
1052
.group = 2 },
1053
{ .name = "priority", .key = 130,
1054
.arg = "STRING",
1055
.doc = "GnuTLS priority string for the TLS handshake",
1056
.group = 1 },
1057
{ .name = "delay", .key = 131,
1058
.arg = "SECONDS",
1059
.doc = "Maximum delay to wait for interface startup",
1060
.group = 2 },
1061
{ .name = NULL }
1062
};
668
669
int main(AVAHI_GCC_UNUSED int argc, AVAHI_GCC_UNUSED char*argv[]) {
670
AvahiServerConfig config;
671
AvahiSServiceBrowser *sb = NULL;
672
int error;
673
int ret;
674
int debug_int;
675
int returncode = EXIT_SUCCESS;
676
const char *interface = "eth0";
677
struct ifreq network;
678
int sd;
679
char *connect_to = NULL;
680
AvahiIfIndex if_index = AVAHI_IF_UNSPEC;
681
mandos_context mc = { .simple_poll = NULL, .server = NULL,
682
.dh_bits = 1024, .priority = "SECURE256"};
1063
683
1064
error_t parse_opt(int key, char *arg,
1065
struct argp_state *state){
1066
switch(key){
1067
case 128: /* --debug */
1068
debug = true;
1069
break;
1070
case 'c': /* --connect */
1071
connect_to = arg;
1072
break;
1073
case 'i': /* --interface */
1074
interface = arg;
1075
break;
1076
case 's': /* --seckey */
1077
seckey = arg;
1078
break;
1079
case 'p': /* --pubkey */
1080
pubkey = arg;
1081
break;
1082
case 129: /* --dh-bits */
1083
errno = 0;
1084
tmpmax = strtoimax(arg, &tmp, 10);
1085
if(errno != 0 or tmp == arg or *tmp != '\0'
1086
or tmpmax != (typeof(mc.dh_bits))tmpmax){
1087
fprintf(stderr, "Bad number of DH bits\n");
1088
exit(EXIT_FAILURE);
1089
}
1090
mc.dh_bits = (typeof(mc.dh_bits))tmpmax;
1091
break;
1092
case 130: /* --priority */
1093
mc.priority = arg;
1094
break;
1095
case 131: /* --delay */
1096
errno = 0;
1097
delay = strtof(arg, &tmp);
1098
if(errno != 0 or tmp == arg or *tmp != '\0'){
1099
fprintf(stderr, "Bad delay\n");
1100
exit(EXIT_FAILURE);
1101
}
1102
break;
1103
case ARGP_KEY_ARG:
1104
argp_usage(state);
1105
case ARGP_KEY_END:
1106
break;
684
debug_int = debug ? 1 : 0;
685
while (true){
686
struct option long_options[] = {
687
{"debug", no_argument, &debug_int, 1},
688
{"connect", required_argument, NULL, 'c'},
689
{"interface", required_argument, NULL, 'i'},
690
{"keydir", required_argument, NULL, 'd'},
691
{"seckey", required_argument, NULL, 's'},
692
{"pubkey", required_argument, NULL, 'p'},
693
{"dh-bits", required_argument, NULL, 'D'},
694
{"priority", required_argument, NULL, 'P'},
695
{0, 0, 0, 0} };
696
697
int option_index = 0;
698
ret = getopt_long (argc, argv, "i:", long_options,
699
&option_index);
700
701
if (ret == -1){
702
break;
703
}
704
705
switch(ret){
706
case 0:
707
break;
708
case 'i':
709
interface = optarg;
710
break;
711
case 'c':
712
connect_to = optarg;
713
break;
714
case 'd':
715
keydir = optarg;
716
break;
717
case 'p':
718
pubkeyfile = optarg;
719
break;
720
case 's':
721
seckeyfile = optarg;
722
break;
723
case 'D':
724
errno = 0;
725
mc.dh_bits = (unsigned int) strtol(optarg, NULL, 10);
726
if (errno){
727
perror("strtol");
728
exit(EXIT_FAILURE);
729
}
730
break;
731
case 'P':
732
mc.priority = optarg;
733
break;
734
case '?':
1107
735
default:
1108
return ARGP_ERR_UNKNOWN;
736
exit(EXIT_FAILURE);
1109
737
}
1110
return 0;
1111
}
1112
1113
struct argp argp = { .options = options, .parser = parse_opt,
1114
.args_doc = "",
1115
.doc = "Mandos client -- Get and decrypt"
1116
" passwords from a Mandos server" };
1117
ret = argp_parse(&argp, argc, argv, 0, 0, NULL);
1118
if(ret == ARGP_ERR_UNKNOWN){
1119
fprintf(stderr, "Unknown error while parsing arguments\n");
1120
exitcode = EXIT_FAILURE;
1121
goto end;
1122
}
1123
}
1124
1125
if(not debug){
1126
avahi_set_log_function(empty_log);
1127
}
1128
1129
/* Initialize Avahi early so avahi_simple_poll_quit() can be called
1130
from the signal handler */
1131
/* Initialize the pseudo-RNG for Avahi */
1132
srand((unsigned int) time(NULL));
1133
mc.simple_poll = avahi_simple_poll_new();
1134
if(mc.simple_poll == NULL){
1135
fprintf(stderr, "Avahi: Failed to create simple poll object.\n");
1136
exitcode = EXIT_FAILURE;
1137
goto end;
1138
}
1139
1140
sigemptyset(&sigterm_action.sa_mask);
1141
ret = sigaddset(&sigterm_action.sa_mask, SIGINT);
1142
if(ret == -1){
1143
perror("sigaddset");
1144
exitcode = EXIT_FAILURE;
1145
goto end;
1146
}
1147
ret = sigaddset(&sigterm_action.sa_mask, SIGHUP);
1148
if(ret == -1){
1149
perror("sigaddset");
1150
exitcode = EXIT_FAILURE;
1151
goto end;
1152
}
1153
ret = sigaddset(&sigterm_action.sa_mask, SIGTERM);
1154
if(ret == -1){
1155
perror("sigaddset");
1156
exitcode = EXIT_FAILURE;
1157
goto end;
1158
}
1159
/* Need to check if the handler is SIG_IGN before handling:
1160
| [[info:libc:Initial Signal Actions]] |
1161
| [[info:libc:Basic Signal Handling]] |
1162
*/
1163
ret = sigaction(SIGINT, NULL, &old_sigterm_action);
1164
if(ret == -1){
1165
perror("sigaction");
1166
return EXIT_FAILURE;
1167
}
1168
if(old_sigterm_action.sa_handler != SIG_IGN){
1169
ret = sigaction(SIGINT, &sigterm_action, NULL);
1170
if(ret == -1){
1171
perror("sigaction");
1172
exitcode = EXIT_FAILURE;
1173
goto end;
1174
}
1175
}
1176
ret = sigaction(SIGHUP, NULL, &old_sigterm_action);
1177
if(ret == -1){
1178
perror("sigaction");
1179
return EXIT_FAILURE;
1180
}
1181
if(old_sigterm_action.sa_handler != SIG_IGN){
1182
ret = sigaction(SIGHUP, &sigterm_action, NULL);
1183
if(ret == -1){
1184
perror("sigaction");
1185
exitcode = EXIT_FAILURE;
1186
goto end;
1187
}
1188
}
1189
ret = sigaction(SIGTERM, NULL, &old_sigterm_action);
1190
if(ret == -1){
1191
perror("sigaction");
1192
return EXIT_FAILURE;
1193
}
1194
if(old_sigterm_action.sa_handler != SIG_IGN){
1195
ret = sigaction(SIGTERM, &sigterm_action, NULL);
1196
if(ret == -1){
1197
perror("sigaction");
1198
exitcode = EXIT_FAILURE;
1199
goto end;
1200
}
1201
}
1202
1203
/* If the interface is down, bring it up */
1204
if(interface[0] != '\0'){
738
}
739
debug = debug_int ? true : false;
740
741
pubkeyfile = combinepath(keydir, pubkeyfile);
742
if (pubkeyfile == NULL){
743
perror("combinepath");
744
returncode = EXIT_FAILURE;
745
goto exit;
746
}
747
748
seckeyfile = combinepath(keydir, seckeyfile);
749
if (seckeyfile == NULL){
750
perror("combinepath");
751
goto exit;
752
}
753
1205
754
if_index = (AvahiIfIndex) if_nametoindex(interface);
1206
755
if(if_index == 0){
1207
756
fprintf(stderr, "No such interface: \"%s\"\n", interface);
1208
exitcode = EXIT_FAILURE;
1209
goto end;
1210
}
1211
1212
if(quit_now){
1213
goto end;
1214
}
1215
1216
/* Re-raise priviliges */
1217
errno = 0;
1218
ret = seteuid(0);
1219
if(ret == -1){
1220
perror("seteuid");
1221
}
1222
1223
#ifdef __linux__
1224
/* Lower kernel loglevel to KERN_NOTICE to avoid KERN_INFO
1225
messages to mess up the prompt */
1226
ret = klogctl(8, NULL, 5);
1227
bool restore_loglevel = true;
1228
if(ret == -1){
1229
restore_loglevel = false;
1230
perror("klogctl");
1231
}
1232
#endif /* __linux__ */
757
exit(EXIT_FAILURE);
758
}
759
760
if(connect_to != NULL){
761
/* Connect directly, do not use Zeroconf */
762
/* (Mainly meant for debugging) */
763
char *address = strrchr(connect_to, ':');
764
if(address == NULL){
765
fprintf(stderr, "No colon in address\n");
766
exit(EXIT_FAILURE);
767
}
768
errno = 0;
769
uint16_t port = (uint16_t) strtol(address+1, NULL, 10);
770
if(errno){
771
perror("Bad port number");
772
exit(EXIT_FAILURE);
773
}
774
*address = '\0';
775
address = connect_to;
776
ret = start_mandos_communication(address, port, if_index, &mc);
777
if(ret < 0){
778
exit(EXIT_FAILURE);
779
} else {
780
exit(EXIT_SUCCESS);
781
}
782
}
1233
783
1234
784
sd = socket(PF_INET6, SOCK_DGRAM, IPPROTO_IP);
1235
if(sd < 0){
785
if(sd < 0) {
1236
786
perror("socket");
1237
exitcode = EXIT_FAILURE;
1238
#ifdef __linux__
1239
if(restore_loglevel){
1240
ret = klogctl(7, NULL, 0);
1241
if(ret == -1){
1242
perror("klogctl");
1243
}
1244
}
1245
#endif /* __linux__ */
1246
/* Lower privileges */
1247
errno = 0;
1248
ret = seteuid(uid);
1249
if(ret == -1){
1250
perror("seteuid");
1251
}
1252
goto end;
787
returncode = EXIT_FAILURE;
788
goto exit;
1253
789
}
1254
strcpy(network.ifr_name, interface);
790
strcpy(network.ifr_name, interface); /* Spurious warning */
1255
791
ret = ioctl(sd, SIOCGIFFLAGS, &network);
1256
792
if(ret == -1){
793
1257
794
perror("ioctl SIOCGIFFLAGS");
1258
#ifdef __linux__
1259
if(restore_loglevel){
1260
ret = klogctl(7, NULL, 0);
1261
if(ret == -1){
1262
perror("klogctl");
1263
}
1264
}
1265
#endif /* __linux__ */
1266
exitcode = EXIT_FAILURE;
1267
/* Lower privileges */
1268
errno = 0;
1269
ret = seteuid(uid);
1270
if(ret == -1){
1271
perror("seteuid");
1272
}
1273
goto end;
795
returncode = EXIT_FAILURE;
796
goto exit;
1274
797
}
1275
798
if((network.ifr_flags & IFF_UP) == 0){
1276
799
network.ifr_flags |= IFF_UP;
1277
take_down_interface = true;
1278
800
ret = ioctl(sd, SIOCSIFFLAGS, &network);
1279
801
if(ret == -1){
1280
take_down_interface = false;
1281
802
perror("ioctl SIOCSIFFLAGS");
1282
exitcode = EXIT_FAILURE;
1283
#ifdef __linux__
1284
if(restore_loglevel){
1285
ret = klogctl(7, NULL, 0);
1286
if(ret == -1){
1287
perror("klogctl");
1288
}
1289
}
1290
#endif /* __linux__ */
1291
/* Lower privileges */
1292
errno = 0;
1293
ret = seteuid(uid);
1294
if(ret == -1){
1295
perror("seteuid");
1296
}
1297
goto end;
1298
}
1299
}
1300
/* sleep checking until interface is running */
1301
for(int i=0; i < delay * 4; i++){
1302
ret = ioctl(sd, SIOCGIFFLAGS, &network);
1303
if(ret == -1){
1304
perror("ioctl SIOCGIFFLAGS");
1305
} else if(network.ifr_flags & IFF_RUNNING){
1306
break;
1307
}
1308
struct timespec sleeptime = { .tv_nsec = 250000000 };
1309
ret = nanosleep(&sleeptime, NULL);
1310
if(ret == -1 and errno != EINTR){
1311
perror("nanosleep");
1312
}
1313
}
1314
if(not take_down_interface){
1315
/* We won't need the socket anymore */
1316
ret = (int)TEMP_FAILURE_RETRY(close(sd));
1317
if(ret == -1){
1318
perror("close");
1319
}
1320
}
1321
#ifdef __linux__
1322
if(restore_loglevel){
1323
/* Restores kernel loglevel to default */
1324
ret = klogctl(7, NULL, 0);
1325
if(ret == -1){
1326
perror("klogctl");
1327
}
1328
}
1329
#endif /* __linux__ */
1330
/* Lower privileges */
1331
errno = 0;
1332
if(take_down_interface){
1333
/* Lower privileges */
1334
ret = seteuid(uid);
1335
if(ret == -1){
1336
perror("seteuid");
1337
}
1338
} else {
1339
/* Lower privileges permanently */
1340
ret = setuid(uid);
1341
if(ret == -1){
1342
perror("setuid");
1343
}
1344
}
1345
}
1346
1347
if(quit_now){
1348
goto end;
1349
}
1350
1351
ret = init_gnutls_global(pubkey, seckey);
1352
if(ret == -1){
1353
fprintf(stderr, "init_gnutls_global failed\n");
1354
exitcode = EXIT_FAILURE;
1355
goto end;
1356
} else {
1357
gnutls_initialized = true;
1358
}
1359
1360
if(quit_now){
1361
goto end;
1362
}
1363
1364
tempdir_created = true;
1365
if(mkdtemp(tempdir) == NULL){
1366
tempdir_created = false;
1367
perror("mkdtemp");
1368
goto end;
1369
}
1370
1371
if(quit_now){
1372
goto end;
1373
}
1374
1375
if(not init_gpgme(pubkey, seckey, tempdir)){
1376
fprintf(stderr, "init_gpgme failed\n");
1377
exitcode = EXIT_FAILURE;
1378
goto end;
1379
} else {
1380
gpgme_initialized = true;
1381
}
1382
1383
if(quit_now){
1384
goto end;
1385
}
1386
1387
if(connect_to != NULL){
1388
/* Connect directly, do not use Zeroconf */
1389
/* (Mainly meant for debugging) */
1390
char *address = strrchr(connect_to, ':');
1391
if(address == NULL){
1392
fprintf(stderr, "No colon in address\n");
1393
exitcode = EXIT_FAILURE;
1394
goto end;
1395
}
1396
1397
if(quit_now){
1398
goto end;
1399
}
1400
1401
uint16_t port;
1402
errno = 0;
1403
tmpmax = strtoimax(address+1, &tmp, 10);
1404
if(errno != 0 or tmp == address+1 or *tmp != '\0'
1405
or tmpmax != (uint16_t)tmpmax){
1406
fprintf(stderr, "Bad port number\n");
1407
exitcode = EXIT_FAILURE;
1408
goto end;
1409
}
1410
1411
if(quit_now){
1412
goto end;
1413
}
1414
1415
port = (uint16_t)tmpmax;
1416
*address = '\0';
1417
address = connect_to;
1418
/* Colon in address indicates IPv6 */
1419
int af;
1420
if(strchr(address, ':') != NULL){
1421
af = AF_INET6;
1422
} else {
1423
af = AF_INET;
1424
}
1425
1426
if(quit_now){
1427
goto end;
1428
}
1429
1430
ret = start_mandos_communication(address, port, if_index, af);
1431
if(ret < 0){
1432
exitcode = EXIT_FAILURE;
1433
} else {
1434
exitcode = EXIT_SUCCESS;
1435
}
1436
goto end;
1437
}
1438
1439
if(quit_now){
1440
goto end;
1441
}
1442
1443
{
1444
AvahiServerConfig config;
1445
/* Do not publish any local Zeroconf records */
803
returncode = EXIT_FAILURE;
804
goto exit;
805
}
806
}
807
close(sd);
808
809
if (not debug){
810
avahi_set_log_function(empty_log);
811
}
812
813
/* Initialize the psuedo-RNG */
814
srand((unsigned int) time(NULL));
815
816
/* Allocate main loop object */
817
if (!(mc.simple_poll = avahi_simple_poll_new())) {
818
fprintf(stderr, "Failed to create simple poll object.\n");
819
returncode = EXIT_FAILURE;
820
goto exit;
821
}
822
823
/* Do not publish any local records */
1446
824
avahi_server_config_init(&config);
1447
825
config.publish_hinfo = 0;
1448
826
config.publish_addresses = 0;
1449
827
config.publish_workstation = 0;
1450
828
config.publish_domain = 0;
1451
829
1452
830
/* Allocate a new server */
1453
mc.server = avahi_server_new(avahi_simple_poll_get
1454
(mc.simple_poll), &config, NULL,
1455
NULL, &error);
831
mc.server=avahi_server_new(avahi_simple_poll_get(mc.simple_poll),
832
&config, NULL, NULL, &error);
1456
833
1457
/* Free the Avahi configuration data */
834
/* Free the configuration data */
1458
835
avahi_server_config_free(&config);
1459
}
1460
1461
/* Check if creating the Avahi server object succeeded */
1462
if(mc.server == NULL){
1463
fprintf(stderr, "Failed to create Avahi server: %s\n",
1464
avahi_strerror(error));
1465
exitcode = EXIT_FAILURE;
1466
goto end;
1467
}
1468
1469
if(quit_now){
1470
goto end;
1471
}
1472
1473
/* Create the Avahi service browser */
1474
sb = avahi_s_service_browser_new(mc.server, if_index,
1475
AVAHI_PROTO_UNSPEC, "_mandos._tcp",
1476
NULL, 0, browse_callback, NULL);
1477
if(sb == NULL){
1478
fprintf(stderr, "Failed to create service browser: %s\n",
1479
avahi_strerror(avahi_server_errno(mc.server)));
1480
exitcode = EXIT_FAILURE;
1481
goto end;
1482
}
1483
1484
if(quit_now){
1485
goto end;
1486
}
1487
1488
/* Run the main loop */
1489
1490
if(debug){
1491
fprintf(stderr, "Starting Avahi loop search\n");
1492
}
1493
1494
avahi_simple_poll_loop(mc.simple_poll);
1495
1496
end:
1497
1498
if(debug){
1499
fprintf(stderr, "%s exiting\n", argv[0]);
1500
}
1501
1502
/* Cleanup things */
1503
if(sb != NULL)
1504
avahi_s_service_browser_free(sb);
1505
1506
if(mc.server != NULL)
1507
avahi_server_free(mc.server);
1508
1509
if(mc.simple_poll != NULL)
1510
avahi_simple_poll_free(mc.simple_poll);
1511
1512
if(gnutls_initialized){
1513
gnutls_certificate_free_credentials(mc.cred);
1514
gnutls_global_deinit();
1515
gnutls_dh_params_deinit(mc.dh_params);
1516
}
1517
1518
if(gpgme_initialized){
1519
gpgme_release(mc.ctx);
1520
}
1521
1522
/* Take down the network interface */
1523
if(take_down_interface){
1524
/* Re-raise priviliges */
1525
errno = 0;
1526
ret = seteuid(0);
1527
if(ret == -1){
1528
perror("seteuid");
1529
}
1530
if(geteuid() == 0){
1531
ret = ioctl(sd, SIOCGIFFLAGS, &network);
1532
if(ret == -1){
1533
perror("ioctl SIOCGIFFLAGS");
1534
} else if(network.ifr_flags & IFF_UP) {
1535
network.ifr_flags &= ~IFF_UP; /* clear flag */
1536
ret = ioctl(sd, SIOCSIFFLAGS, &network);
1537
if(ret == -1){
1538
perror("ioctl SIOCSIFFLAGS");
1539
}
1540
}
1541
ret = (int)TEMP_FAILURE_RETRY(close(sd));
1542
if(ret == -1){
1543
perror("close");
1544
}
1545
/* Lower privileges permanently */
1546
errno = 0;
1547
ret = setuid(uid);
1548
if(ret == -1){
1549
perror("setuid");
1550
}
1551
}
1552
}
1553
1554
/* Removes the temp directory used by GPGME */
1555
if(tempdir_created){
1556
DIR *d;
1557
struct dirent *direntry;
1558
d = opendir(tempdir);
1559
if(d == NULL){
1560
if(errno != ENOENT){
1561
perror("opendir");
1562
}
1563
} else {
1564
while(true){
1565
direntry = readdir(d);
1566
if(direntry == NULL){
1567
break;
1568
}
1569
/* Skip "." and ".." */
1570
if(direntry->d_name[0] == '.'
1571
and (direntry->d_name[1] == '\0'
1572
or (direntry->d_name[1] == '.'
1573
and direntry->d_name[2] == '\0'))){
1574
continue;
1575
}
1576
char *fullname = NULL;
1577
ret = asprintf(&fullname, "%s/%s", tempdir,
1578
direntry->d_name);
1579
if(ret < 0){
1580
perror("asprintf");
1581
continue;
1582
}
1583
ret = remove(fullname);
1584
if(ret == -1){
1585
fprintf(stderr, "remove(\"%s\"): %s\n", fullname,
1586
strerror(errno));
1587
}
1588
free(fullname);
1589
}
1590
closedir(d);
1591
}
1592
ret = rmdir(tempdir);
1593
if(ret == -1 and errno != ENOENT){
1594
perror("rmdir");
1595
}
1596
}
1597
1598
if(quit_now){
1599
sigemptyset(&old_sigterm_action.sa_mask);
1600
old_sigterm_action.sa_handler = SIG_DFL;
1601
ret = sigaction(signal_received, &old_sigterm_action, NULL);
1602
if(ret == -1){
1603
perror("sigaction");
1604
}
1605
raise(signal_received);
1606
}
1607
1608
return exitcode;
836
837
/* Check if creating the server object succeeded */
838
if (!mc.server) {
839
fprintf(stderr, "Failed to create server: %s\n",
840
avahi_strerror(error));
841
returncode = EXIT_FAILURE;
842
goto exit;
843
}
844
845
/* Create the service browser */
846
sb = avahi_s_service_browser_new(mc.server, if_index,
847
AVAHI_PROTO_INET6,
848
"_mandos._tcp", NULL, 0,
849
browse_callback, &mc);
850
if (!sb) {
851
fprintf(stderr, "Failed to create service browser: %s\n",
852
avahi_strerror(avahi_server_errno(mc.server)));
853
returncode = EXIT_FAILURE;
854
goto exit;
855
}
856
857
/* Run the main loop */
858
859
if (debug){
860
fprintf(stderr, "Starting avahi loop search\n");
861
}
862
863
avahi_simple_poll_loop(mc.simple_poll);
864
865
exit:
866
867
if (debug){
868
fprintf(stderr, "%s exiting\n", argv[0]);
869
}
870
871
/* Cleanup things */
872
if (sb)
873
avahi_s_service_browser_free(sb);
874
875
if (mc.server)
876
avahi_server_free(mc.server);
877
878
if (mc.simple_poll)
879
avahi_simple_poll_free(mc.simple_poll);
880
free(pubkeyfile);
881
free(seckeyfile);
882
883
return returncode;
1609
884
}
Loggerhead is a web-based interface for Breezy
Version: 2.0.2.dev0