[catacomb] / key / pixie-common.c

/* -*-c-*-
 *
 * Common code for Pixie client and server (Unix-specific)
 *
 * (c) 1999 Straylight/Edgeware
 */

/*----- Licensing notice --------------------------------------------------*
 *
 * This file is part of Catacomb.
 *
 * Catacomb is free software; you can redistribute it and/or modify
 * it under the terms of the GNU Library General Public License as
 * published by the Free Software Foundation; either version 2 of the
 * License, or (at your option) any later version.
 *
 * Catacomb is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Library General Public License for more details.
 *
 * You should have received a copy of the GNU Library General Public
 * License along with Catacomb; if not, write to the Free
 * Software Foundation, Inc., 59 Temple Place - Suite 330, Boston,
 * MA 02111-1307, USA.
 */

/*----- Header files ------------------------------------------------------*/

#include <errno.h>
#include <stddef.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>

#include <sys/types.h>
#include <unistd.h>
#include <fcntl.h>
#include <termios.h>
#include <pwd.h>

#include <sys/socket.h>
#include <sys/un.h>

#include <mLib/alloc.h>
#include <mLib/dstr.h>
#include <mLib/macros.h>
#include <mLib/str.h>

#include "pixie.h"

/*----- Main code ---------------------------------------------------------*/

/* --- @pixie_address@ --- *
 *
 * Arguments:	@const char *sock@ = pointer to socket name
 *		@size_t *psz@ = where to write the address size
 *
 * Returns:	Pointer to filled-in Unix-domain socket address.
 *
 * Use:		Returns a Unix-domain socket address to	use to find the
 *		passphrase pixie.
 */

struct sockaddr_un *pixie_address(const char *sock, size_t *psz)
{
  dstr d = DSTR_INIT;

  /* --- Get the default socket path if none specified --- */

  if (!sock)
    sock = getenv("CATACOMB_PIXIE_SOCKET");
  if (!sock)
    sock = "%h/.catacomb/pixie";

  /* --- Substitute interesting sequences in the path --- */

  {
    const char *q, *qq;

    q = sock;
    for (;;) {
      qq = strchr(q, '%');
      if (!qq || !qq[1]) {
	DPUTS(&d, q);
	break;
      }
      DPUTM(&d, q, qq - q);
      q = qq + 1;
      switch (*q) {
	case 'u':
	  qq = getenv("USER");
	  if (!qq)
	    qq = getenv("LOGNAME");
	  if (!qq) {
	    struct passwd *pw = getpwuid(getuid());
	    if (pw)
	      qq = pw->pw_name;
	    else
	      qq = "<unknown>";
	  }
	  DPUTS(&d, qq);
	  break;
	case 'h':
	  qq = getenv("HOME");
	  if (!qq) {
	    struct passwd *pw = getpwuid(getuid());
	    if (pw)
	      qq = pw->pw_dir;
	    else
	      qq = "<unknown>";
	  }
	  DPUTS(&d, qq);
	  break;
	default:
	  DPUTC(&d, '%');
	  DPUTC(&d, *q);
	  break;
      }
      q++;
    }
    DPUTZ(&d);
  }

  /* --- Allocate and initialize the socket address --- */

  {
    struct sockaddr_un *sun;
    size_t bsz = offsetof(struct sockaddr_un, sun_path);
    *psz = bsz + d.len + 1;
    sun = xmalloc(bsz + d.len + 1);
    memset(sun, 0, bsz);
    sun->sun_family = AF_UNIX;
    memcpy(sun->sun_path, d.buf, d.len + 1);
    dstr_destroy(&d);
    return (sun);
  }
}

/* --- @pixie_fdline@ --- *
 *
 * Arguments:	@int fd@ = file descriptor to read from
 *		@char *buf@ = pointer to buffer
 *		@size_t sz@ = size of buffer
 *
 * Returns:	---
 *
 * Use:		Reads a line from a file descriptor.  The read is done one
 *		character at a time.  If the entire line won't fit, the end
 *		is truncated.  The line is null terminated.
 */

void pixie_fdline(int fd, char *buf, size_t sz)
{
  char *p = buf;
  char *q = p + sz - 1;

  for (;;) {
    char c;
    if (read(fd, &c, 1) < 1)
      break;
    if (c == '\n')
      break;
    if (p < q)
      *p++ = c;
  }
  *p = 0;
}

/* --- @pixie_getpass@ --- *
 *
 * Arguments:	@const char *prompt@ = pointer to prompt string
 *		@char *buf@ = pointer to buffer
 *		@size_t sz@ = size of buffer
 *
 * Returns:	Zero if it worked OK, nonzero otherwise.
 *
 * Use:		Reads a passphrase from the terminal or some other requested
 *		source.
 */

int pixie_getpass(const char *prompt, char *buf, size_t sz)
{
  const char *pfd = getenv("CATACOMB_PASSPHRASE_FD");
  struct termios ta;
  struct termios ota;
  char nl = '\n';
  int fd = 0;

  /* --- See whether a terminal is what's wanted --- */

  if (pfd) {
    fd = atoi(pfd);
    pixie_fdline(fd, buf, sz);
  } else {
    if ((fd = open("/dev/tty", O_RDWR)) < 0)
      goto fail_0;
    if (tcgetattr(fd, &ta) < 0)
      goto fail_1;
    ota = ta;
    ta.c_lflag &= ~(ECHO | ISIG);
    if (tcsetattr(fd, TCSAFLUSH, &ta)) goto fail_1;
    if (write(fd, prompt, strlen(prompt)) < 0) goto fail_2;
    pixie_fdline(fd, buf, sz);
    tcsetattr(fd, TCSAFLUSH, &ota);
    if (write(fd, &nl, 1) < 0) goto fail_1;
    close(fd);
  }
  return (0);

  /* --- Tidy up if things went wrong --- */

fail_2:
  tcsetattr(fd, TCSAFLUSH, &ota);
fail_1:
  close(fd);
fail_0:
  return (-1);
}

/* --- @pixie_open@ --- *
 *
 * Arguments:	@const char *sock@ = path to pixie socket
 *
 * Returns:	Less than zero if it failed, or file descriptor.
 *
 * Use:		Opens a connection to a passphrase pixie.
 */

int pixie_open(const char *sock)
{
  struct sockaddr_un *sun;
  size_t sz;
  int fd;

  /* --- Open the connection --- */

  if ((fd = socket(PF_UNIX, SOCK_STREAM, 0)) < 0)
    goto fail_0;
  sun = pixie_address(sock, &sz);
  if (connect(fd, (struct sockaddr *)sun, sz))
    goto fail_1;
  xfree(sun);
  return (fd);

  /* --- Tidy up if things went wrong --- */

fail_1:
  xfree(sun);
  close(fd);
fail_0:
  return (-1);
}

/* --- @pixie_read@ --- *
 *
 * Arguments:	@int fd@ = connection to passphrase pixie
 *		@const char *tag@ = pointer to tag string
 *		@unsigned mode@ = reading mode
 *		@char *buf@ = pointer to destination buffer
 *		@size_t sz@ = size of the buffer
 *
 * Returns:	Zero if all went well, @-1@ if the read fails, @+1@ to
 *		request the passphrase from the user.
 *
 * Use:		Reads a passphrase from the pixie.
 */

int pixie_read(int fd, const char *tag, unsigned mode, char *buf, size_t sz)
{
  dstr d = DSTR_INIT;
  char *p, *q;

  /* --- Send the request --- */

  dstr_putf(&d, "%s %s\n", mode == PMODE_READ ? "PASS" : "VERIFY", tag);
  if (write(fd, d.buf, d.len) < 0) return (-1);
  dstr_destroy(&d);

  /* --- Sort out the result --- */

again:
  pixie_fdline(fd, buf, sz);
  p = buf;
  if ((q = str_getword(&p)) == 0)
    return (-1);
  if (STRCMP(q, ==, "INFO"))
    goto again;
  else if (STRCMP(q, ==, "MISSING"))
    return (+1);
  else if (STRCMP(q, !=, "OK"))
    return (-1);

  /* --- Return the final answer --- */

  if (p)
    memmove(buf, p, strlen(p) + 1);
  else
    *buf = 0;
  return (0);
}

/* --- @pixie_set@ --- *
 *
 * Arguments:	@int fd@ = pixie file descriptor
 *		@const char *tag@ = pointer to tag string
 *		@const char *phrase@ = pointer to passphrase string
 *
 * Returns:	---
 *
 * Use:		Sends a passphrase to the passphrase pixie.
 */

void pixie_set(int fd, const char *tag, const char *phrase)
{
  dstr d = DSTR_INIT;
  char buf[16];
  size_t sz = strlen(phrase);
  char nl = '\n';
  char *p, *q;

  /* --- Send the request --- *
   *
   * I didn't want to copy it out of the caller's buffer.  @writev@ may
   * produce a copy, too, so I didn't do that either.
   */

  dstr_putf(&d, "SET %s -- ", tag);
  if (write(fd, d.buf, d.len) < 0 ||
      write(fd, phrase, sz) < 0 ||
      write(fd, &nl, 1) < 0)
    return;
  dstr_destroy(&d);

  /* --- Pick up the pieces --- */

again:
  pixie_fdline(fd, buf, sizeof(buf));
  p = buf;
  if ((q = str_getword(&p)) != 0 && STRCMP(q, ==, "INFO"))
    goto again;
}

/* --- @pixie_cancel@ --- *
 *
 * Arguments:	@int fd@ = pixie file descriptor
 *		@const char *tag@ = pointer to tag string
 *
 * Returns:	---
 *
 * Use:		Cancels a passphrase if it turns out to be bogus.
 */

void pixie_cancel(int fd, const char *tag)
{
  dstr d = DSTR_INIT;
  char buf[16];
  char *p, *q;

  /* --- Send the request --- */

  dstr_putf(&d, "FLUSH %s\n", tag);
  if (write(fd, d.buf, d.len) < 0) return;
  dstr_destroy(&d);

  /* --- Sort out the result --- */

again:
  pixie_fdline(fd, buf, sizeof(buf));
  p = buf;
  if ((q = str_getword(&p)) != 0 && STRCMP(q, ==, "INFO"))
    goto again;
}

/*----- That's all, folks -------------------------------------------------*/
Commit	Line	Data
069c185c	1	/* --c--
069c185c	2	*
069c185c	3	* Common code for Pixie client and server (Unix-specific)
	4	*
	5	* (c) 1999 Straylight/Edgeware
	6	*/
	7
45c0fd36	8	/----- Licensing notice --------------------------------------------------
069c185c	9	*
	10	* This file is part of Catacomb.
	11	*
	12	* Catacomb is free software; you can redistribute it and/or modify
	13	* it under the terms of the GNU Library General Public License as
	14	* published by the Free Software Foundation; either version 2 of the
	15	* License, or (at your option) any later version.
45c0fd36	16	*
069c185c	17	* Catacomb is distributed in the hope that it will be useful,
	18	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	19	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	20	* GNU Library General Public License for more details.
45c0fd36	21	*
069c185c	22	* You should have received a copy of the GNU Library General Public
	23	* License along with Catacomb; if not, write to the Free
	24	* Software Foundation, Inc., 59 Temple Place - Suite 330, Boston,
	25	* MA 02111-1307, USA.
	26	*/
	27
069c185c	28	/----- Header files ------------------------------------------------------/
	29
	30	#include <errno.h>
	31	#include <stddef.h>
	32	#include <stdio.h>
	33	#include <stdlib.h>
	34	#include <string.h>
	35
	36	#include <sys/types.h>
	37	#include <unistd.h>
	38	#include <fcntl.h>
	39	#include <termios.h>
	40	#include <pwd.h>
	41
	42	#include <sys/socket.h>
	43	#include <sys/un.h>
	44
	45	#include <mLib/alloc.h>
	46	#include <mLib/dstr.h>
141c1284	47	#include <mLib/macros.h>
025c5f4a	48	#include <mLib/str.h>
069c185c	49
	50	#include "pixie.h"
	51
	52	/----- Main code ---------------------------------------------------------/
	53
	54	/* --- @pixie_address@ --- *
	55	*
	56	* Arguments: @const char *sock@ = pointer to socket name
	57	* @size_t *psz@ = where to write the address size
	58	*
	59	* Returns: Pointer to filled-in Unix-domain socket address.
	60	*
	61	* Use: Returns a Unix-domain socket address to use to find the
	62	* passphrase pixie.
	63	*/
	64
	65	struct sockaddr_un pixie_address(const char sock, size_t *psz)
	66	{
	67	dstr d = DSTR_INIT;
	68
	69	/* --- Get the default socket path if none specified --- */
	70
	71	if (!sock)
	72	sock = getenv("CATACOMB_PIXIE_SOCKET");
	73	if (!sock)
	74	sock = "%h/.catacomb/pixie";
	75
	76	/* --- Substitute interesting sequences in the path --- */
	77
	78	{
	79	const char q, qq;
	80
	81	q = sock;
	82	for (;;) {
	83	qq = strchr(q, '%');
	84	if (!qq \|\| !qq[1]) {
	85	DPUTS(&d, q);
	86	break;
	87	}
	88	DPUTM(&d, q, qq - q);
	89	q = qq + 1;
	90	switch (*q) {
	91	case 'u':
	92	qq = getenv("USER");
	93	if (!qq)
	94	qq = getenv("LOGNAME");
	95	if (!qq) {
	96	struct passwd *pw = getpwuid(getuid());
	97	if (pw)
	98	qq = pw->pw_name;
	99	else
	100	qq = "<unknown>";
	101	}
	102	DPUTS(&d, qq);
	103	break;
	104	case 'h':
	105	qq = getenv("HOME");
	106	if (!qq) {
	107	struct passwd *pw = getpwuid(getuid());
	108	if (pw)
	109	qq = pw->pw_dir;
	110	else
	111	qq = "<unknown>";
	112	}
113	DPUTS(&d, qq);
114	break;
115	default:
116	DPUTC(&d, '%');
117	DPUTC(&d, *q);
118	break;
119	}
120	q++;
121	}
122	DPUTZ(&d);
123	}
124
125	/* --- Allocate and initialize the socket address --- */
126
127	{
128	struct sockaddr_un *sun;
129	size_t bsz = offsetof(struct sockaddr_un, sun_path);
130	*psz = bsz + d.len + 1;
131	sun = xmalloc(bsz + d.len + 1);
132	memset(sun, 0, bsz);
133	sun->sun_family = AF_UNIX;
134	memcpy(sun->sun_path, d.buf, d.len + 1);
135	dstr_destroy(&d);
136	return (sun);
137	}
138	}
139
140	/* --- @pixie_fdline@ --- *
141	*
142	* Arguments: @int fd@ = file descriptor to read from
143	* @char *buf@ = pointer to buffer
144	* @size_t sz@ = size of buffer
145	*
146	* Returns: ---
147	*
148	* Use: Reads a line from a file descriptor. The read is done one
149	* character at a time. If the entire line won't fit, the end
150	* is truncated. The line is null terminated.
151	*/
152
153	void pixie_fdline(int fd, char *buf, size_t sz)
154	{
155	char *p = buf;
156	char *q = p + sz - 1;
157
158	for (;;) {
159	char c;
160	if (read(fd, &c, 1) < 1)
161	break;
162	if (c == '\n')
163	break;
164	if (p < q)
165	*p++ = c;
166	}
167	*p = 0;
168	}
169
170	/* --- @pixie_getpass@ --- *
171	*
172	* Arguments: @const char *prompt@ = pointer to prompt string
173	* @char *buf@ = pointer to buffer
174	* @size_t sz@ = size of buffer
175	*
176	* Returns: Zero if it worked OK, nonzero otherwise.
177	*
178	* Use: Reads a passphrase from the terminal or some other requested
179	* source.
180	*/
181
182	int pixie_getpass(const char prompt, char buf, size_t sz)
183	{
184	const char *pfd = getenv("CATACOMB_PASSPHRASE_FD");
70a5dedf MW	185	struct termios ta;
	186	struct termios ota;
	187	char nl = '\n';
069c185c	188	int fd = 0;
	189
	190	/* --- See whether a terminal is what's wanted --- */
	191
	192	if (pfd) {
	193	fd = atoi(pfd);
	194	pixie_fdline(fd, buf, sz);
	195	} else {
069c185c	196	if ((fd = open("/dev/tty", O_RDWR)) < 0)
	197	goto fail_0;
	198	if (tcgetattr(fd, &ta) < 0)
	199	goto fail_1;
	200	ota = ta;
	201	ta.c_lflag &= ~(ECHO \| ISIG);
70a5dedf MW	202	if (tcsetattr(fd, TCSAFLUSH, &ta)) goto fail_1;
70a5dedf MW	203	if (write(fd, prompt, strlen(prompt)) < 0) goto fail_2;
069c185c	204	pixie_fdline(fd, buf, sz);
069c185c	205	tcsetattr(fd, TCSAFLUSH, &ota);
70a5dedf	206	if (write(fd, &nl, 1) < 0) goto fail_1;
069c185c	207	close(fd);
	208	}
	209	return (0);
	210
	211	/* --- Tidy up if things went wrong --- */
	212
70a5dedf MW	213	fail_2:
70a5dedf MW	214	tcsetattr(fd, TCSAFLUSH, &ota);
069c185c	215	fail_1:
	216	close(fd);
	217	fail_0:
	218	return (-1);
	219	}
	220
025c5f4a	221	/* --- @pixie_open@ --- *
	222	*
	223	* Arguments: @const char *sock@ = path to pixie socket
	224	*
	225	* Returns: Less than zero if it failed, or file descriptor.
	226	*
	227	* Use: Opens a connection to a passphrase pixie.
	228	*/
	229
	230	int pixie_open(const char *sock)
	231	{
	232	struct sockaddr_un *sun;
	233	size_t sz;
	234	int fd;
	235
	236	/* --- Open the connection --- */
	237
	238	if ((fd = socket(PF_UNIX, SOCK_STREAM, 0)) < 0)
	239	goto fail_0;
	240	sun = pixie_address(sock, &sz);
	241	if (connect(fd, (struct sockaddr *)sun, sz))
	242	goto fail_1;
	243	xfree(sun);
	244	return (fd);
	245
	246	/* --- Tidy up if things went wrong --- */
	247
	248	fail_1:
	249	xfree(sun);
	250	close(fd);
	251	fail_0:
	252	return (-1);
	253	}
	254
	255	/* --- @pixie_read@ --- *
	256	*
	257	* Arguments: @int fd@ = connection to passphrase pixie
	258	* @const char *tag@ = pointer to tag string
	259	* @unsigned mode@ = reading mode
	260	* @char *buf@ = pointer to destination buffer
	261	* @size_t sz@ = size of the buffer
	262	*
	263	* Returns: Zero if all went well, @-1@ if the read fails, @+1@ to
	264	* request the passphrase from the user.
	265	*
	266	* Use: Reads a passphrase from the pixie.
	267	*/
	268
	269	int pixie_read(int fd, const char tag, unsigned mode, char buf, size_t sz)
	270	{
	271	dstr d = DSTR_INIT;
	272	char p, q;
	273
	274	/* --- Send the request --- */
	275
	276	dstr_putf(&d, "%s %s\n", mode == PMODE_READ ? "PASS" : "VERIFY", tag);
70a5dedf	277	if (write(fd, d.buf, d.len) < 0) return (-1);
025c5f4a	278	dstr_destroy(&d);
	279
	280	/* --- Sort out the result --- */
	281
	282	again:
	283	pixie_fdline(fd, buf, sz);
	284	p = buf;
	285	if ((q = str_getword(&p)) == 0)
	286	return (-1);
141c1284	287	if (STRCMP(q, ==, "INFO"))
025c5f4a	288	goto again;
141c1284	289	else if (STRCMP(q, ==, "MISSING"))
025c5f4a	290	return (+1);
141c1284	291	else if (STRCMP(q, !=, "OK"))
025c5f4a	292	return (-1);
	293
	294	/* --- Return the final answer --- */
	295
	296	if (p)
	297	memmove(buf, p, strlen(p) + 1);
	298	else
	299	*buf = 0;
	300	return (0);
	301	}
	302
	303	/* --- @pixie_set@ --- *
	304	*
	305	* Arguments: @int fd@ = pixie file descriptor
	306	* @const char *tag@ = pointer to tag string
	307	* @const char *phrase@ = pointer to passphrase string
	308	*
	309	* Returns: ---
	310	*
	311	* Use: Sends a passphrase to the passphrase pixie.
	312	*/
	313
	314	void pixie_set(int fd, const char tag, const char phrase)
	315	{
	316	dstr d = DSTR_INIT;
	317	char buf[16];
	318	size_t sz = strlen(phrase);
	319	char nl = '\n';
	320	char p, q;
	321
	322	/* --- Send the request --- *
	323	*
	324	* I didn't want to copy it out of the caller's buffer. @writev@ may
	325	* produce a copy, too, so I didn't do that either.
	326	*/
	327
	328	dstr_putf(&d, "SET %s -- ", tag);
70a5dedf MW	329	if (write(fd, d.buf, d.len) < 0 \|\|
	330	write(fd, phrase, sz) < 0 \|\|
	331	write(fd, &nl, 1) < 0)
	332	return;
025c5f4a	333	dstr_destroy(&d);
	334
	335	/* --- Pick up the pieces --- */
	336
	337	again:
	338	pixie_fdline(fd, buf, sizeof(buf));
	339	p = buf;
141c1284	340	if ((q = str_getword(&p)) != 0 && STRCMP(q, ==, "INFO"))
025c5f4a	341	goto again;
	342	}
	343
	344	/* --- @pixie_cancel@ --- *
	345	*
	346	* Arguments: @int fd@ = pixie file descriptor
	347	* @const char *tag@ = pointer to tag string
	348	*
	349	* Returns: ---
	350	*
	351	* Use: Cancels a passphrase if it turns out to be bogus.
	352	*/
	353
	354	void pixie_cancel(int fd, const char *tag)
	355	{
	356	dstr d = DSTR_INIT;
	357	char buf[16];
	358	char p, q;
	359
	360	/* --- Send the request --- */
	361
	362	dstr_putf(&d, "FLUSH %s\n", tag);
70a5dedf	363	if (write(fd, d.buf, d.len) < 0) return;
025c5f4a	364	dstr_destroy(&d);
	365
	366	/* --- Sort out the result --- */
	367
	368	again:
	369	pixie_fdline(fd, buf, sizeof(buf));
	370	p = buf;
141c1284	371	if ((q = str_getword(&p)) != 0 && STRCMP(q, ==, "INFO"))
025c5f4a	372	goto again;
025c5f4a	373	}
069c185c	374
069c185c	375	/----- That's all, folks -------------------------------------------------/