9
9
* "browse_callback", and parts of "main".
11
11
* Everything else is
12
* Copyright © 2008-2016 Teddy Hogeborn
13
* Copyright © 2008-2016 Björn Påhlsson
15
* This program is free software: you can redistribute it and/or
16
* modify it under the terms of the GNU General Public License as
17
* published by the Free Software Foundation, either version 3 of the
18
* License, or (at your option) any later version.
20
* This program is distributed in the hope that it will be useful, but
12
* Copyright © 2008-2018 Teddy Hogeborn
13
* Copyright © 2008-2018 Björn Påhlsson
15
* This file is part of Mandos.
17
* Mandos is free software: you can redistribute it and/or modify it
18
* under the terms of the GNU General Public License as published by
19
* the Free Software Foundation, either version 3 of the License, or
20
* (at your option) any later version.
22
* Mandos is distributed in the hope that it will be useful, but
21
23
* WITHOUT ANY WARRANTY; without even the implied warranty of
22
24
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
23
25
* General Public License for more details.
25
27
* You should have received a copy of the GNU General Public License
26
* along with this program. If not, see
27
* <http://www.gnu.org/licenses/>.
28
* along with Mandos. If not, see <http://www.gnu.org/licenses/>.
29
30
* Contact the authors at <mandos@recompile.se>.
47
48
strtof(), abort() */
48
49
#include <stdbool.h> /* bool, false, true */
49
50
#include <string.h> /* strcmp(), strlen(), strerror(),
50
asprintf(), strncpy() */
51
asprintf(), strncpy(), strsignal()
51
53
#include <sys/ioctl.h> /* ioctl */
52
54
#include <sys/types.h> /* socket(), inet_pton(), sockaddr,
53
55
sockaddr_in6, PF_INET6,
57
59
#include <sys/socket.h> /* socket(), struct sockaddr_in6,
58
60
inet_pton(), connect(),
60
#include <fcntl.h> /* open(), unlinkat() */
62
#include <fcntl.h> /* open(), unlinkat(), AT_REMOVEDIR */
61
63
#include <dirent.h> /* opendir(), struct dirent, readdir()
63
65
#include <inttypes.h> /* PRIu16, PRIdMAX, intmax_t,
65
#include <errno.h> /* perror(), errno,
67
#include <errno.h> /* perror(), errno, EINTR, EINVAL,
68
EAI_SYSTEM, ENETUNREACH,
69
EHOSTUNREACH, ECONNREFUSED, EPROTO,
70
EIO, ENOENT, ENXIO, ENOMEM, EISDIR,
66
72
program_invocation_short_name */
67
73
#include <time.h> /* nanosleep(), time(), sleep() */
68
74
#include <net/if.h> /* ioctl, ifreq, SIOCGIFFLAGS, IFF_UP,
513
519
fprintf_plus(stderr, "GnuTLS: %s", string);
516
__attribute__((nonnull, warn_unused_result))
522
__attribute__((nonnull(1, 2, 4), warn_unused_result))
517
523
static int init_gnutls_global(const char *pubkeyfilename,
518
524
const char *seckeyfilename,
519
525
const char *dhparamsfilename,
823
821
/* Set effective uid to 0, return errno */
824
822
__attribute__((warn_unused_result))
825
error_t raise_privileges(void){
826
error_t old_errno = errno;
827
error_t ret_errno = 0;
823
int raise_privileges(void){
824
int old_errno = errno;
828
826
if(seteuid(0) == -1){
831
829
errno = old_errno;
835
833
/* Set effective and real user ID to 0. Return errno. */
836
834
__attribute__((warn_unused_result))
837
error_t raise_privileges_permanently(void){
838
error_t old_errno = errno;
839
error_t ret_errno = raise_privileges();
835
int raise_privileges_permanently(void){
836
int old_errno = errno;
837
int ret = raise_privileges();
841
839
errno = old_errno;
844
842
if(setuid(0) == -1){
847
845
errno = old_errno;
851
849
/* Set effective user ID to unprivileged saved user ID */
852
850
__attribute__((warn_unused_result))
853
error_t lower_privileges(void){
854
error_t old_errno = errno;
855
error_t ret_errno = 0;
851
int lower_privileges(void){
852
int old_errno = errno;
856
854
if(seteuid(uid) == -1){
859
857
errno = old_errno;
863
861
/* Lower privileges permanently */
864
862
__attribute__((warn_unused_result))
865
error_t lower_privileges_permanently(void){
866
error_t old_errno = errno;
867
error_t ret_errno = 0;
863
int lower_privileges_permanently(void){
864
int old_errno = errno;
868
866
if(setuid(uid) == -1){
871
869
errno = old_errno;
875
873
/* Helper function to add_local_route() and delete_local_route() */
1918
#if __GLIBC_PREREQ(2, 15)
1926
int devnull = (int)TEMP_FAILURE_RETRY(open("/dev/null", O_RDONLY));
1928
perror_plus("open(\"/dev/null\", O_RDONLY)");
1919
1931
int numhooks = scandirat(hookdir_fd, ".", &direntries,
1920
1932
runnable_hook, alphasort);
1921
#else /* not __GLIBC_PREREQ(2, 15) */
1922
int numhooks = scandir(hookdir, &direntries, runnable_hook,
1924
#endif /* not __GLIBC_PREREQ(2, 15) */
1925
#else /* not __GLIBC__ */
1926
int numhooks = scandir(hookdir, &direntries, runnable_hook,
1928
#endif /* not __GLIBC__ */
1929
1933
if(numhooks == -1){
1930
1934
perror_plus("scandir");
1933
1938
struct dirent *direntry;
1935
int devnull = (int)TEMP_FAILURE_RETRY(open("/dev/null", O_RDONLY));
1937
perror_plus("open(\"/dev/null\", O_RDONLY)");
1940
1940
for(int i = 0; i < numhooks; i++){
1941
1941
direntry = direntries[i];
2479
2481
.args_doc = "",
2480
2482
.doc = "Mandos client -- Get and decrypt"
2481
2483
" passwords from a Mandos server" };
2482
ret = argp_parse(&argp, argc, argv,
2483
ARGP_IN_ORDER | ARGP_NO_HELP, 0, NULL);
2484
ret_errno = argp_parse(&argp, argc, argv,
2485
ARGP_IN_ORDER | ARGP_NO_HELP, 0, NULL);
2490
2492
perror_plus("argp_parse");
2491
2493
exitcode = EX_OSERR;
3018
3025
/* Take down the network interfaces which were brought up */
3020
3027
char *interface = NULL;
3021
while((interface=argz_next(interfaces_to_take_down,
3022
interfaces_to_take_down_size,
3024
ret_errno = take_down_interface(interface);
3028
while((interface = argz_next(interfaces_to_take_down,
3029
interfaces_to_take_down_size,
3031
ret = take_down_interface(interface);
3027
3034
perror_plus("Failed to take down interface");
3044
3051
free(interfaces_to_take_down);
3045
3052
free(interfaces_hooks);
3054
void clean_dir_at(int base, const char * const dirname,
3056
struct dirent **direntries = NULL;
3058
int dir_fd = (int)TEMP_FAILURE_RETRY(openat(base, dirname,
3064
perror_plus("open");
3067
int numentries = scandirat(dir_fd, ".", &direntries,
3068
notdotentries, alphasort);
3069
if(numentries >= 0){
3070
for(int i = 0; i < numentries; i++){
3072
fprintf_plus(stderr, "Unlinking \"%s/%s\"\n",
3073
dirname, direntries[i]->d_name);
3075
dret = unlinkat(dir_fd, direntries[i]->d_name, 0);
3077
if(errno == EISDIR){
3078
dret = unlinkat(dir_fd, direntries[i]->d_name,
3081
if((dret == -1) and (errno == ENOTEMPTY)
3082
and (strcmp(direntries[i]->d_name, "private-keys-v1.d")
3083
== 0) and (level == 0)){
3084
/* Recurse only in this special case */
3085
clean_dir_at(dir_fd, direntries[i]->d_name, level+1);
3088
if((dret == -1) and (errno != ENOENT)){
3089
fprintf_plus(stderr, "unlink(\"%s/%s\"): %s\n", dirname,
3090
direntries[i]->d_name, strerror(errno));
3093
free(direntries[i]);
3096
/* need to clean even if 0 because man page doesn't specify */
3098
dret = unlinkat(base, dirname, AT_REMOVEDIR);
3099
if(dret == -1 and errno != ENOENT){
3100
perror_plus("rmdir");
3103
perror_plus("scandirat");
3047
3108
/* Removes the GPGME temp directory and all files inside */
3048
3109
if(tempdir != NULL){
3049
struct dirent **direntries = NULL;
3050
int tempdir_fd = (int)TEMP_FAILURE_RETRY(open(tempdir, O_RDONLY
3054
if(tempdir_fd == -1){
3055
perror_plus("open");
3058
#if __GLIBC_PREREQ(2, 15)
3059
int numentries = scandirat(tempdir_fd, ".", &direntries,
3060
notdotentries, alphasort);
3061
#else /* not __GLIBC_PREREQ(2, 15) */
3062
int numentries = scandir(tempdir, &direntries, notdotentries,
3064
#endif /* not __GLIBC_PREREQ(2, 15) */
3065
#else /* not __GLIBC__ */
3066
int numentries = scandir(tempdir, &direntries, notdotentries,
3068
#endif /* not __GLIBC__ */
3069
if(numentries >= 0){
3070
for(int i = 0; i < numentries; i++){
3071
ret = unlinkat(tempdir_fd, direntries[i]->d_name, 0);
3073
fprintf_plus(stderr, "unlinkat(open(\"%s\", O_RDONLY),"
3074
" \"%s\", 0): %s\n", tempdir,
3075
direntries[i]->d_name, strerror(errno));
3077
free(direntries[i]);
3080
/* need to clean even if 0 because man page doesn't specify */
3082
if(numentries == -1){
3083
perror_plus("scandir");
3085
ret = rmdir(tempdir);
3086
if(ret == -1 and errno != ENOENT){
3087
perror_plus("rmdir");
3110
clean_dir_at(-1, tempdir, 0);