[u/mdw/catacomb] / key / pixie-common.c

/* -*-c-*-
 *
 * Common code for Pixie client and server (Unix-specific)
 *
 * (c) 1999 Straylight/Edgeware
 */

/*----- Licensing notice --------------------------------------------------*
 *
 * This file is part of Catacomb.
 *
 * Catacomb is free software; you can redistribute it and/or modify
 * it under the terms of the GNU Library General Public License as
 * published by the Free Software Foundation; either version 2 of the
 * License, or (at your option) any later version.
 *
 * Catacomb is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Library General Public License for more details.
 *
 * You should have received a copy of the GNU Library General Public
 * License along with Catacomb; if not, write to the Free
 * Software Foundation, Inc., 59 Temple Place - Suite 330, Boston,
 * MA 02111-1307, USA.
 */

/*----- Header files ------------------------------------------------------*/

#include <errno.h>
#include <stddef.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>

#include <sys/types.h>
#include <unistd.h>
#include <fcntl.h>
#include <termios.h>
#include <pwd.h>

#include <sys/socket.h>
#include <sys/un.h>

#include <mLib/alloc.h>
#include <mLib/dstr.h>
#include <mLib/str.h>

#include "pixie.h"

/*----- Main code ---------------------------------------------------------*/

/* --- @pixie_address@ --- *
 *
 * Arguments:	@const char *sock@ = pointer to socket name
 *		@size_t *psz@ = where to write the address size
 *
 * Returns:	Pointer to filled-in Unix-domain socket address.
 *
 * Use:		Returns a Unix-domain socket address to	use to find the
 *		passphrase pixie.
 */

struct sockaddr_un *pixie_address(const char *sock, size_t *psz)
{
  dstr d = DSTR_INIT;

  /* --- Get the default socket path if none specified --- */

  if (!sock)
    sock = getenv("CATACOMB_PIXIE_SOCKET");
  if (!sock)
    sock = "%h/.catacomb/pixie";

  /* --- Substitute interesting sequences in the path --- */

  {
    const char *q, *qq;

    q = sock;
    for (;;) {
      qq = strchr(q, '%');
      if (!qq || !qq[1]) {
	DPUTS(&d, q);
	break;
      }
      DPUTM(&d, q, qq - q);
      q = qq + 1;
      switch (*q) {
	case 'u':
	  qq = getenv("USER");
	  if (!qq)
	    qq = getenv("LOGNAME");
	  if (!qq) {
	    struct passwd *pw = getpwuid(getuid());
	    if (pw)
	      qq = pw->pw_name;
	    else
	      qq = "<unknown>";
	  }
	  DPUTS(&d, qq);
	  break;
	case 'h':
	  qq = getenv("HOME");
	  if (!qq) {
	    struct passwd *pw = getpwuid(getuid());
	    if (pw)
	      qq = pw->pw_dir;
	    else
	      qq = "<unknown>";
	  }
	  DPUTS(&d, qq);
	  break;
	default:
	  DPUTC(&d, '%');
	  DPUTC(&d, *q);
	  break;
      }
      q++;
    }
    DPUTZ(&d);
  }

  /* --- Allocate and initialize the socket address --- */

  {
    struct sockaddr_un *sun;
    size_t bsz = offsetof(struct sockaddr_un, sun_path);
    *psz = bsz + d.len + 1;
    sun = xmalloc(bsz + d.len + 1);
    memset(sun, 0, bsz);
    sun->sun_family = AF_UNIX;
    memcpy(sun->sun_path, d.buf, d.len + 1);
    dstr_destroy(&d);
    return (sun);
  }
}

/* --- @pixie_fdline@ --- *
 *
 * Arguments:	@int fd@ = file descriptor to read from
 *		@char *buf@ = pointer to buffer
 *		@size_t sz@ = size of buffer
 *
 * Returns:	---
 *
 * Use:		Reads a line from a file descriptor.  The read is done one
 *		character at a time.  If the entire line won't fit, the end
 *		is truncated.  The line is null terminated.
 */

void pixie_fdline(int fd, char *buf, size_t sz)
{
  char *p = buf;
  char *q = p + sz - 1;

  for (;;) {
    char c;
    if (read(fd, &c, 1) < 1)
      break;
    if (c == '\n')
      break;
    if (p < q)
      *p++ = c;
  }
  *p = 0;
}

/* --- @pixie_getpass@ --- *
 *
 * Arguments:	@const char *prompt@ = pointer to prompt string
 *		@char *buf@ = pointer to buffer
 *		@size_t sz@ = size of buffer
 *
 * Returns:	Zero if it worked OK, nonzero otherwise.
 *
 * Use:		Reads a passphrase from the terminal or some other requested
 *		source.
 */

int pixie_getpass(const char *prompt, char *buf, size_t sz)
{
  const char *pfd = getenv("CATACOMB_PASSPHRASE_FD");
  struct termios ta;
  struct termios ota;
  char nl = '\n';
  int fd = 0;

  /* --- See whether a terminal is what's wanted --- */

  if (pfd) {
    fd = atoi(pfd);
    pixie_fdline(fd, buf, sz);
  } else {
    if ((fd = open("/dev/tty", O_RDWR)) < 0)
      goto fail_0;
    if (tcgetattr(fd, &ta) < 0)
      goto fail_1;
    ota = ta;
    ta.c_lflag &= ~(ECHO | ISIG);
    if (tcsetattr(fd, TCSAFLUSH, &ta)) goto fail_1;
    if (write(fd, prompt, strlen(prompt)) < 0) goto fail_2;
    pixie_fdline(fd, buf, sz);
    tcsetattr(fd, TCSAFLUSH, &ota);
    if (write(fd, &nl, 1) < 0) goto fail_1;
    close(fd);
  }
  return (0);

  /* --- Tidy up if things went wrong --- */

fail_2:
  tcsetattr(fd, TCSAFLUSH, &ota);
fail_1:
  close(fd);
fail_0:
  return (-1);
}

/* --- @pixie_open@ --- *
 *
 * Arguments:	@const char *sock@ = path to pixie socket
 *
 * Returns:	Less than zero if it failed, or file descriptor.
 *
 * Use:		Opens a connection to a passphrase pixie.
 */

int pixie_open(const char *sock)
{
  struct sockaddr_un *sun;
  size_t sz;
  int fd;

  /* --- Open the connection --- */

  if ((fd = socket(PF_UNIX, SOCK_STREAM, 0)) < 0)
    goto fail_0;
  sun = pixie_address(sock, &sz);
  if (connect(fd, (struct sockaddr *)sun, sz))
    goto fail_1;
  xfree(sun);
  return (fd);

  /* --- Tidy up if things went wrong --- */

fail_1:
  xfree(sun);
  close(fd);
fail_0:
  return (-1);
}

/* --- @pixie_read@ --- *
 *
 * Arguments:	@int fd@ = connection to passphrase pixie
 *		@const char *tag@ = pointer to tag string
 *		@unsigned mode@ = reading mode
 *		@char *buf@ = pointer to destination buffer
 *		@size_t sz@ = size of the buffer
 *
 * Returns:	Zero if all went well, @-1@ if the read fails, @+1@ to
 *		request the passphrase from the user.
 *
 * Use:		Reads a passphrase from the pixie.
 */

int pixie_read(int fd, const char *tag, unsigned mode, char *buf, size_t sz)
{
  dstr d = DSTR_INIT;
  char *p, *q;

  /* --- Send the request --- */

  dstr_putf(&d, "%s %s\n", mode == PMODE_READ ? "PASS" : "VERIFY", tag);
  if (write(fd, d.buf, d.len) < 0) return (-1);
  dstr_destroy(&d);

  /* --- Sort out the result --- */

again:
  pixie_fdline(fd, buf, sz);
  p = buf;
  if ((q = str_getword(&p)) == 0)
    return (-1);
  if (strcmp(q, "INFO") == 0)
    goto again;
  else if (strcmp(q, "MISSING") == 0)
    return (+1);
  else if (strcmp(q, "OK") != 0)
    return (-1);

  /* --- Return the final answer --- */

  if (p)
    memmove(buf, p, strlen(p) + 1);
  else
    *buf = 0;
  return (0);
}

/* --- @pixie_set@ --- *
 *
 * Arguments:	@int fd@ = pixie file descriptor
 *		@const char *tag@ = pointer to tag string
 *		@const char *phrase@ = pointer to passphrase string
 *
 * Returns:	---
 *
 * Use:		Sends a passphrase to the passphrase pixie.
 */

void pixie_set(int fd, const char *tag, const char *phrase)
{
  dstr d = DSTR_INIT;
  char buf[16];
  size_t sz = strlen(phrase);
  char nl = '\n';
  char *p, *q;

  /* --- Send the request --- *
   *
   * I didn't want to copy it out of the caller's buffer.  @writev@ may
   * produce a copy, too, so I didn't do that either.
   */

  dstr_putf(&d, "SET %s -- ", tag);
  if (write(fd, d.buf, d.len) < 0 ||
      write(fd, phrase, sz) < 0 ||
      write(fd, &nl, 1) < 0)
    return;
  dstr_destroy(&d);

  /* --- Pick up the pieces --- */

again:
  pixie_fdline(fd, buf, sizeof(buf));
  p = buf;
  if ((q = str_getword(&p)) != 0 && strcmp(q, "INFO") == 0)
    goto again;
}

/* --- @pixie_cancel@ --- *
 *
 * Arguments:	@int fd@ = pixie file descriptor
 *		@const char *tag@ = pointer to tag string
 *
 * Returns:	---
 *
 * Use:		Cancels a passphrase if it turns out to be bogus.
 */

void pixie_cancel(int fd, const char *tag)
{
  dstr d = DSTR_INIT;
  char buf[16];
  char *p, *q;

  /* --- Send the request --- */

  dstr_putf(&d, "FLUSH %s\n", tag);
  if (write(fd, d.buf, d.len) < 0) return;
  dstr_destroy(&d);

  /* --- Sort out the result --- */

again:
  pixie_fdline(fd, buf, sizeof(buf));
  p = buf;
  if ((q = str_getword(&p)) != 0 && strcmp(q, "INFO") == 0)
    goto again;
}

/*----- That's all, folks -------------------------------------------------*/
Commit	Line	Data
069c185c	1	/* --c--
069c185c	2	*
069c185c	3	* Common code for Pixie client and server (Unix-specific)
	4	*
	5	* (c) 1999 Straylight/Edgeware
	6	*/
	7
45c0fd36	8	/----- Licensing notice --------------------------------------------------
069c185c	9	*
	10	* This file is part of Catacomb.
	11	*
	12	* Catacomb is free software; you can redistribute it and/or modify
	13	* it under the terms of the GNU Library General Public License as
	14	* published by the Free Software Foundation; either version 2 of the
	15	* License, or (at your option) any later version.
45c0fd36	16	*
069c185c	17	* Catacomb is distributed in the hope that it will be useful,
	18	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	19	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	20	* GNU Library General Public License for more details.
45c0fd36	21	*
069c185c	22	* You should have received a copy of the GNU Library General Public
	23	* License along with Catacomb; if not, write to the Free
	24	* Software Foundation, Inc., 59 Temple Place - Suite 330, Boston,
	25	* MA 02111-1307, USA.
	26	*/
	27
069c185c	28	/----- Header files ------------------------------------------------------/
	29
	30	#include <errno.h>
	31	#include <stddef.h>
	32	#include <stdio.h>
	33	#include <stdlib.h>
	34	#include <string.h>
	35
	36	#include <sys/types.h>
	37	#include <unistd.h>
	38	#include <fcntl.h>
	39	#include <termios.h>
	40	#include <pwd.h>
	41
	42	#include <sys/socket.h>
	43	#include <sys/un.h>
	44
	45	#include <mLib/alloc.h>
	46	#include <mLib/dstr.h>
025c5f4a	47	#include <mLib/str.h>
069c185c	48
	49	#include "pixie.h"
	50
	51	/----- Main code ---------------------------------------------------------/
	52
	53	/* --- @pixie_address@ --- *
	54	*
	55	* Arguments: @const char *sock@ = pointer to socket name
	56	* @size_t *psz@ = where to write the address size
	57	*
	58	* Returns: Pointer to filled-in Unix-domain socket address.
	59	*
	60	* Use: Returns a Unix-domain socket address to use to find the
	61	* passphrase pixie.
	62	*/
	63
	64	struct sockaddr_un pixie_address(const char sock, size_t *psz)
	65	{
	66	dstr d = DSTR_INIT;
	67
	68	/* --- Get the default socket path if none specified --- */
	69
	70	if (!sock)
	71	sock = getenv("CATACOMB_PIXIE_SOCKET");
	72	if (!sock)
	73	sock = "%h/.catacomb/pixie";
	74
	75	/* --- Substitute interesting sequences in the path --- */
	76
	77	{
	78	const char q, qq;
	79
	80	q = sock;
	81	for (;;) {
	82	qq = strchr(q, '%');
	83	if (!qq \|\| !qq[1]) {
	84	DPUTS(&d, q);
	85	break;
	86	}
	87	DPUTM(&d, q, qq - q);
	88	q = qq + 1;
	89	switch (*q) {
	90	case 'u':
	91	qq = getenv("USER");
	92	if (!qq)
	93	qq = getenv("LOGNAME");
	94	if (!qq) {
	95	struct passwd *pw = getpwuid(getuid());
	96	if (pw)
	97	qq = pw->pw_name;
	98	else
	99	qq = "<unknown>";
	100	}
	101	DPUTS(&d, qq);
	102	break;
	103	case 'h':
	104	qq = getenv("HOME");
	105	if (!qq) {
	106	struct passwd *pw = getpwuid(getuid());
	107	if (pw)
	108	qq = pw->pw_dir;
	109	else
	110	qq = "<unknown>";
	111	}
112	DPUTS(&d, qq);
113	break;
114	default:
115	DPUTC(&d, '%');
116	DPUTC(&d, *q);
117	break;
118	}
119	q++;
120	}
121	DPUTZ(&d);
122	}
123
124	/* --- Allocate and initialize the socket address --- */
125
126	{
127	struct sockaddr_un *sun;
128	size_t bsz = offsetof(struct sockaddr_un, sun_path);
129	*psz = bsz + d.len + 1;
130	sun = xmalloc(bsz + d.len + 1);
131	memset(sun, 0, bsz);
132	sun->sun_family = AF_UNIX;
133	memcpy(sun->sun_path, d.buf, d.len + 1);
134	dstr_destroy(&d);
135	return (sun);
136	}
137	}
138
139	/* --- @pixie_fdline@ --- *
140	*
141	* Arguments: @int fd@ = file descriptor to read from
142	* @char *buf@ = pointer to buffer
143	* @size_t sz@ = size of buffer
144	*
145	* Returns: ---
146	*
147	* Use: Reads a line from a file descriptor. The read is done one
148	* character at a time. If the entire line won't fit, the end
149	* is truncated. The line is null terminated.
150	*/
151
152	void pixie_fdline(int fd, char *buf, size_t sz)
153	{
154	char *p = buf;
155	char *q = p + sz - 1;
156
157	for (;;) {
158	char c;
159	if (read(fd, &c, 1) < 1)
160	break;
161	if (c == '\n')
162	break;
163	if (p < q)
164	*p++ = c;
165	}
166	*p = 0;
167	}
168
169	/* --- @pixie_getpass@ --- *
170	*
171	* Arguments: @const char *prompt@ = pointer to prompt string
172	* @char *buf@ = pointer to buffer
173	* @size_t sz@ = size of buffer
174	*
175	* Returns: Zero if it worked OK, nonzero otherwise.
176	*
177	* Use: Reads a passphrase from the terminal or some other requested
178	* source.
179	*/
180
181	int pixie_getpass(const char prompt, char buf, size_t sz)
182	{
183	const char *pfd = getenv("CATACOMB_PASSPHRASE_FD");
70a5dedf MW	184	struct termios ta;
	185	struct termios ota;
	186	char nl = '\n';
069c185c	187	int fd = 0;
	188
	189	/* --- See whether a terminal is what's wanted --- */
	190
	191	if (pfd) {
	192	fd = atoi(pfd);
	193	pixie_fdline(fd, buf, sz);
	194	} else {
069c185c	195	if ((fd = open("/dev/tty", O_RDWR)) < 0)
	196	goto fail_0;
	197	if (tcgetattr(fd, &ta) < 0)
	198	goto fail_1;
	199	ota = ta;
	200	ta.c_lflag &= ~(ECHO \| ISIG);
70a5dedf MW	201	if (tcsetattr(fd, TCSAFLUSH, &ta)) goto fail_1;
70a5dedf MW	202	if (write(fd, prompt, strlen(prompt)) < 0) goto fail_2;
069c185c	203	pixie_fdline(fd, buf, sz);
069c185c	204	tcsetattr(fd, TCSAFLUSH, &ota);
70a5dedf	205	if (write(fd, &nl, 1) < 0) goto fail_1;
069c185c	206	close(fd);
	207	}
	208	return (0);
	209
	210	/* --- Tidy up if things went wrong --- */
	211
70a5dedf MW	212	fail_2:
70a5dedf MW	213	tcsetattr(fd, TCSAFLUSH, &ota);
069c185c	214	fail_1:
	215	close(fd);
	216	fail_0:
	217	return (-1);
	218	}
	219
025c5f4a	220	/* --- @pixie_open@ --- *
	221	*
	222	* Arguments: @const char *sock@ = path to pixie socket
	223	*
	224	* Returns: Less than zero if it failed, or file descriptor.
	225	*
	226	* Use: Opens a connection to a passphrase pixie.
	227	*/
	228
	229	int pixie_open(const char *sock)
	230	{
	231	struct sockaddr_un *sun;
	232	size_t sz;
	233	int fd;
	234
	235	/* --- Open the connection --- */
	236
	237	if ((fd = socket(PF_UNIX, SOCK_STREAM, 0)) < 0)
	238	goto fail_0;
	239	sun = pixie_address(sock, &sz);
	240	if (connect(fd, (struct sockaddr *)sun, sz))
	241	goto fail_1;
	242	xfree(sun);
	243	return (fd);
	244
	245	/* --- Tidy up if things went wrong --- */
	246
	247	fail_1:
	248	xfree(sun);
	249	close(fd);
	250	fail_0:
	251	return (-1);
	252	}
	253
	254	/* --- @pixie_read@ --- *
	255	*
	256	* Arguments: @int fd@ = connection to passphrase pixie
	257	* @const char *tag@ = pointer to tag string
	258	* @unsigned mode@ = reading mode
	259	* @char *buf@ = pointer to destination buffer
	260	* @size_t sz@ = size of the buffer
	261	*
	262	* Returns: Zero if all went well, @-1@ if the read fails, @+1@ to
	263	* request the passphrase from the user.
	264	*
	265	* Use: Reads a passphrase from the pixie.
	266	*/
	267
	268	int pixie_read(int fd, const char tag, unsigned mode, char buf, size_t sz)
	269	{
	270	dstr d = DSTR_INIT;
	271	char p, q;
	272
	273	/* --- Send the request --- */
	274
	275	dstr_putf(&d, "%s %s\n", mode == PMODE_READ ? "PASS" : "VERIFY", tag);
70a5dedf	276	if (write(fd, d.buf, d.len) < 0) return (-1);
025c5f4a	277	dstr_destroy(&d);
	278
	279	/* --- Sort out the result --- */
	280
	281	again:
	282	pixie_fdline(fd, buf, sz);
	283	p = buf;
	284	if ((q = str_getword(&p)) == 0)
	285	return (-1);
	286	if (strcmp(q, "INFO") == 0)
	287	goto again;
	288	else if (strcmp(q, "MISSING") == 0)
	289	return (+1);
	290	else if (strcmp(q, "OK") != 0)
	291	return (-1);
	292
	293	/* --- Return the final answer --- */
	294
	295	if (p)
	296	memmove(buf, p, strlen(p) + 1);
	297	else
	298	*buf = 0;
	299	return (0);
	300	}
	301
	302	/* --- @pixie_set@ --- *
	303	*
	304	* Arguments: @int fd@ = pixie file descriptor
	305	* @const char *tag@ = pointer to tag string
	306	* @const char *phrase@ = pointer to passphrase string
	307	*
	308	* Returns: ---
	309	*
	310	* Use: Sends a passphrase to the passphrase pixie.
	311	*/
	312
	313	void pixie_set(int fd, const char tag, const char phrase)
	314	{
	315	dstr d = DSTR_INIT;
	316	char buf[16];
	317	size_t sz = strlen(phrase);
	318	char nl = '\n';
	319	char p, q;
	320
	321	/* --- Send the request --- *
	322	*
	323	* I didn't want to copy it out of the caller's buffer. @writev@ may
	324	* produce a copy, too, so I didn't do that either.
	325	*/
	326
	327	dstr_putf(&d, "SET %s -- ", tag);
70a5dedf MW	328	if (write(fd, d.buf, d.len) < 0 \|\|
	329	write(fd, phrase, sz) < 0 \|\|
	330	write(fd, &nl, 1) < 0)
	331	return;
025c5f4a	332	dstr_destroy(&d);
	333
	334	/* --- Pick up the pieces --- */
	335
	336	again:
	337	pixie_fdline(fd, buf, sizeof(buf));
	338	p = buf;
	339	if ((q = str_getword(&p)) != 0 && strcmp(q, "INFO") == 0)
	340	goto again;
	341	}
	342
	343	/* --- @pixie_cancel@ --- *
	344	*
	345	* Arguments: @int fd@ = pixie file descriptor
	346	* @const char *tag@ = pointer to tag string
	347	*
	348	* Returns: ---
	349	*
	350	* Use: Cancels a passphrase if it turns out to be bogus.
	351	*/
	352
	353	void pixie_cancel(int fd, const char *tag)
	354	{
	355	dstr d = DSTR_INIT;
	356	char buf[16];
	357	char p, q;
	358
	359	/* --- Send the request --- */
	360
	361	dstr_putf(&d, "FLUSH %s\n", tag);
70a5dedf	362	if (write(fd, d.buf, d.len) < 0) return;
025c5f4a	363	dstr_destroy(&d);
	364
	365	/* --- Sort out the result --- */
	366
	367	again:
	368	pixie_fdline(fd, buf, sizeof(buf));
	369	p = buf;
	370	if ((q = str_getword(&p)) != 0 && strcmp(q, "INFO") == 0)
	371	goto again;
	372	}
069c185c	373
069c185c	374	/----- That's all, folks -------------------------------------------------/