1 /* network login client */
9 enum{ CHK = 16, MAXFILES = 100 };
11 typedef struct AuthConn{
24 fprint(2, "usage: secstore [-cin] [-g getfile] [-p putfile] [-r rmfile] [-s tcp!server!5356] [-u user] [-v]\n");
29 getfile(SConn *conn, char *gf, uchar **buf, ulong *buflen, uchar *key, int nkey)
32 int i, n, nr, nw, len;
34 uchar skey[SHA1dlen], ib[Maxmsg+CHK], *ibr, *ibw, *bufw, *bufe;
39 fprint(2, "simple filenames, not paths like %s\n", gf);
42 memset(&aes, 0, sizeof aes);
44 snprint(s, Maxmsg, "GET %s\n", gf);
45 conn->write(conn, (uchar*)s, strlen(s));
50 if(readstr(conn, s) < 0){
51 fprint(2, "remote: %s\n", s);
56 fprint(2, "remote file %s does not exist\n", gf);
59 fprint(2, "implausible filesize for %s\n", gf);
62 fprint(2, "GET refused for %s\n", gf);
66 *buflen = len - AESbsize - CHK;
67 *buf = bufw = emalloc(len);
71 /* directory listing */
72 if(strcmp(gf,".")==0){
75 for(i=0; i < len; i += n){
76 if((n = conn->read(conn, (uchar*)s, Maxmsg)) <= 0){
77 fprint(2, "empty file chunk\n");
83 memmove((*buf)+i, s, n);
88 /* conn is already encrypted against wiretappers,
89 but gf is also encrypted against server breakin. */
90 if(buf == nil && (fd =create(gf, OWRITE, 0600)) < 0){
91 fprint(2, "can't open %s: %r\n", gf);
97 if((n = conn->read(conn, ibw, Maxmsg)) <= 0){
98 fprint(2, "empty file chunk n=%d nr=%d len=%d: %r\n", n, nr, len);
103 if(!aes.setup){ /* first time, read 16 byte IV */
105 fprint(2, "no IV in file\n");
108 sha = sha1((uchar*)"aescbc file", 11, nil, nil);
109 sha1(key, nkey, skey, sha);
110 setupAESstate(&aes, skey, AESbsize, ibr);
111 memset(skey, 0, sizeof skey);
115 aesCBCdecrypt(ibw-n, n, &aes);
119 nw = write(fd, ibr, n);
121 fprint(2, "write error on %s", gf);
125 assert(bufw+n <= bufe);
126 memmove(bufw, ibr, n);
131 memmove(ib, ibr, ibw-ibr);
132 ibw = ib + (ibw-ibr);
138 if((n != CHK) || (memcmp(ib, "XXXXXXXXXXXXXXXX", CHK) != 0)){
139 fprint(2,"decrypted file failed to authenticate!\n");
145 /* This sends a file to the secstore disk that can, in an emergency, be */
146 /* decrypted by the program aescbc.c. */
148 putfile(SConn *conn, char *pf, uchar *buf, ulong len, uchar *key, int nkey)
150 int i, n, fd, ivo, bufi, done;
152 uchar skey[SHA1dlen], b[CHK+Maxmsg], IV[AESbsize];
156 /* create initialization vector */
157 srand(time(0)); /* doesn't need to be unpredictable */
158 for(i=0; i<AESbsize; i++)
159 IV[i] = 0xff & rand();
160 sha = sha1((uchar*)"aescbc file", 11, nil, nil);
161 sha1(key, nkey, skey, sha);
162 setupAESstate(&aes, skey, AESbsize, IV);
163 memset(skey, 0, sizeof skey);
165 snprint(s, Maxmsg, "PUT %s\n", pf);
166 conn->write(conn, (uchar*)s, strlen(s));
170 if((fd = open(pf, OREAD)) < 0){
171 fprint(2, "can't open %s: %r\n", pf);
174 len = seek(fd, 0, 2);
179 if(len > MAXFILESIZE){
180 fprint(2, "implausible filesize %ld for %s\n", len, pf);
185 snprint(s, Maxmsg, "%ld", len+AESbsize+CHK);
186 conn->write(conn, (uchar*)s, strlen(s));
188 /* send IV and file+XXXXX in Maxmsg chunks */
192 for(done = 0; !done; ){
194 n = read(fd, b+ivo, Maxmsg-ivo);
196 fprint(2, "read error on %s: %r\n", pf);
200 if((n = len - bufi) > Maxmsg-ivo)
202 memcpy(b+ivo, buf+bufi, n);
207 if(n < Maxmsg){ /* EOF on input; append XX... */
208 memset(b+n, 'X', CHK);
209 n += CHK; /* might push n>Maxmsg */
212 aesCBCencrypt(b, n, &aes);
215 conn->write(conn, b, Maxmsg);
217 memmove(b, b+Maxmsg, n);
219 conn->write(conn, b, n);
224 fprint(2, "saved %ld bytes\n", len);
230 removefile(SConn *conn, char *rf)
235 fprint(2, "simple filenames, not paths like %s\n", rf);
239 snprint(buf, Maxmsg, "RM %s\n", rf);
240 conn->write(conn, (uchar*)buf, strlen(buf));
246 cmd(AuthConn *c, char **gf, int *Gflag, char **pf, char **rf)
250 uchar *memfile, *memcur, *memnext;
254 fprint(2, "get %s\n", *gf);
255 if(getfile(c->conn, *gf, *Gflag ? &memfile : nil, &len, (uchar*)c->pass, c->passlen) < 0)
258 /* write one line at a time, as required by /mnt/factotum/ctl */
261 memnext = (uchar*)strchr((char*)memcur, '\n');
263 write(1, memcur, memnext-memcur+1);
264 len -= memnext-memcur+1;
267 write(1, memcur, len);
278 fprint(2, "put %s\n", *pf);
279 if(putfile(c->conn, *pf, nil, 0, (uchar*)c->pass, c->passlen) < 0)
285 fprint(2, "rm %s\n", *rf);
286 if(removefile(c->conn, *rf) < 0)
291 c->conn->write(c->conn, (uchar*)"BYE", 3);
295 c->conn->free(c->conn);
300 chpasswd(AuthConn *c, char *id)
303 int rv = -1, newpasslen = 0;
306 char *newpass, *passck;
307 char *list, *cur, *next, *hexHi;
308 char *f[8], prompt[128];
312 /* changing our password is vulnerable to connection failure */
314 snprint(prompt, sizeof(prompt), "new password for %s: ", id);
315 newpass = readcons(prompt, nil, 1);
318 if(strlen(newpass) >= 7)
320 else if(strlen(newpass) == 0){
321 fprint(2, "!password change aborted\n");
324 print("!password must be at least 7 characters\n");
326 newpasslen = strlen(newpass);
327 snprint(prompt, sizeof(prompt), "retype password: ");
328 passck = readcons(prompt, nil, 1);
330 fprint(2, "readcons failed\n");
333 if(strcmp(passck, newpass) != 0){
334 fprint(2, "passwords didn't match\n");
338 c->conn->write(c->conn, (uchar*)"CHPASS", strlen("CHPASS"));
339 hexHi = PAK_Hi(id, newpass, H, Hi);
340 c->conn->write(c->conn, (uchar*)hexHi, strlen(hexHi));
345 if(getfile(c->conn, ".", (uchar **)(void*)&list, &len, nil, 0) < 0){
346 fprint(2, "directory listing failed.\n");
350 /* Loop over files and reencrypt them; try to keep going after error */
351 for(cur=list; (next=strchr(cur, '\n')) != nil; cur=next+1){
353 if(tokenize(cur, f, nelem(f))< 1)
355 fprint(2, "reencrypting '%s'\n", f[0]);
356 if(getfile(c->conn, f[0], &memfile, &len, (uchar*)c->pass, c->passlen) < 0){
357 fprint(2, "getfile of '%s' failed\n", f[0]);
360 if(putfile(c->conn, f[0], memfile, len, (uchar*)newpass, newpasslen) < 0)
361 fprint(2, "putfile of '%s' failed\n", f[0]);
365 c->conn->write(c->conn, (uchar*)"BYE", 3);
370 memset(newpass, 0, newpasslen);
373 c->conn->free(c->conn);
378 login(char *id, char *dest, int pass_stdin, int pass_nvram)
382 char *S, *PINSTA = nil, *nl, s[Maxmsg+1], *pass;
385 fprint(2, "tried to login with nil dest\n");
388 c = emalloc(sizeof(*c));
390 /* if(readnvram(&nvr, 0) < 0) */
391 exits("readnvram: %r");
392 strecpy(c->pass, c->pass+sizeof c->pass, nvr.config);
395 n = readn(0, s, Maxmsg-2); /* so len(PINSTA)<Maxmsg-3 */
397 exits("no password on standard input");
399 nl = strchr(s, '\n');
402 PINSTA = estrdup(nl);
403 nl = strchr(PINSTA, '\n');
407 strecpy(c->pass, c->pass+sizeof c->pass, s);
411 fprint(2, "dialing %s\n", dest);
412 if((fd = dial(dest, nil, nil, nil)) < 0){
413 fprint(2, "can't dial %s\n", dest);
417 if((c->conn = newSConn(fd)) == nil){
422 if(!pass_stdin && !pass_nvram){
423 pass = readcons("secstore password", nil, 1);
426 if(strlen(pass) >= sizeof c->pass){
427 fprint(2, "password too long, skipping secstore login\n");
428 exits("password too long");
430 strcpy(c->pass, pass);
431 memset(pass, 0, strlen(pass));
435 fprint(2, "null password, skipping secstore login\n");
436 exits("no password");
438 if(PAKclient(c->conn, id, c->pass, &S) >= 0)
440 c->conn->free(c->conn);
442 exits("invalid password on standard input");
444 exits("invalid password in nvram");
445 /* and let user try retyping the password */
447 fprint(2, "Enter an empty password to quit.\n");
449 c->passlen = strlen(c->pass);
450 fprint(2, "server: %s\n", S);
452 if(readstr(c->conn, s) < 0){
453 c->conn->free(c->conn);
457 if(strcmp(s, "STA") == 0){
461 strncpy(s+3, PINSTA, (sizeof s)-3);
463 exits("missing PIN+SecureID on standard input");
466 pass = readcons("STA PIN+SecureID", nil, 1);
469 strncpy(s+3, pass, (sizeof s)-4);
470 memset(pass, 0, strlen(pass));
475 fprint(2, "%ld\n", sn);
476 c->conn->write(c->conn, (uchar*)s, sn+3);
479 if(strcmp(s, "OK") != 0){
480 fprint(2, "%s\n", s);
481 c->conn->free(c->conn);
489 main(int argc, char **argv)
491 int chpass = 0, pass_stdin = 0, pass_nvram = 0, rc;
492 int ngfile = 0, npfile = 0, nrfile = 0, Gflag[MAXFILES+1];
493 char *gfile[MAXFILES], *pfile[MAXFILES], *rfile[MAXFILES];
494 char *serve, *tcpserve, *user;
497 serve = getenv("secstore");
501 memset(Gflag, 0, sizeof Gflag);
502 fmtinstall('B', mpfmt);
503 fmtinstall('H', encodefmt);
513 if(ngfile >= MAXFILES)
514 exits("too many gfiles");
515 gfile[ngfile++] = ARGF();
516 if(gfile[ngfile-1] == nil)
526 if(npfile >= MAXFILES)
527 exits("too many pfiles");
528 pfile[npfile++] = ARGF();
529 if(pfile[npfile-1] == nil)
533 if(nrfile >= MAXFILES)
534 exits("too many rfiles");
535 rfile[nrfile++] = ARGF();
536 if(rfile[nrfile-1] == nil)
540 serve = EARGF(usage());
543 user = EARGF(usage());
556 if(argc!=0 || user==nil)
559 if(chpass && (ngfile || npfile || nrfile)){
560 fprint(2, "Get, put, and remove invalid with password change.\n");
564 tcpserve = netmkaddr(serve, "tcp", "secstore");
565 c = login(user, tcpserve, pass_stdin, pass_nvram);
567 fprint(2, "secstore authentication failed\n");
568 exits("secstore authentication failed");
571 rc = chpasswd(c, user);
573 rc = cmd(c, gfile, Gflag, pfile, rfile);
575 fprint(2, "secstore cmd failed\n");
576 exits("secstore cmd failed");