When a new file was opened then the client quit without saving, a

[pwmd.git] / PROTOCOL

The data is stored in an AES-256-CBC encrypted XML file. A client connects to
the server and issues commands that manipulate the data. Through the use of
shared memory a file cache is created so passwords do not need to be issued
for each file each time a client connects.

The server uses a protocol provided by libassuan to communicate with a client.
An OK response is returned if a command succeeded or ERR along with an error
code, if not. When a command requests data for retrieval (i.e., GET) the
output is prefixed with D then a SPACE then the actual data followed by an OK
response. Read the libassuan docs for more info.

Protocol commands:

OPEN <filename> [<key>]
    Opens <filename> using <key>. If file is not found on the filesystem, then
    a new document will be created. If the file is found, it is looked for in
    the file cache for an existing key. When found, the existing key will be
    used for decryption. If the cached key fails then the <key>, if specified,
    will be tried. When the command succeeds, a status message is sent with
    the keyword CACHE.


SAVE [<key>]
    Encrypts and writes any changes to the file to disk. If <key> is not
    specified then the currently cached key will be used. If the file is a new
    file or the file isn't found in the file cache, <key> is required.


ISCACHED <filename>
    A response code of OK will be returned if the specified file is in the
    file cache. If not in the cache or the file doesn't exist on the
    filesystem or has a size of 0, an ERR response is returned.


CLEARCACHE [<filename>]
    Clears a file cache entry. This will forget the timeout and key for all or
    the specified file. When the command succeeds, a status message is sent
    with the keyword CACHE.


CACHETIMEOUT <seconds> <filename>
    Specify the number of seconds the specified file will be cached. -1 will
    keep the cache entry forever, 0 will require the key each time the file is
    OPEN'ed or SAVE'd. When the command succeeds, a status message is sent
    with the keyword CACHE.


LIST [element[<TAB>element[...]]]
    If no element path is given, then a list of accounts is returned with the
    data repsonse code. If given, then the element tree for the specified
    element path is returned. The "target" attribute is ignored for this
    command at the moment.


REALPATH account[<TAB>element[...]]
    Resolves all "target" attributes of the specified element path and returns
    the result with a data response.


STORE [!]account[<TAB>element[<TAB>element[...]]<TAB>value]
    PWMD reads the element path from the client via the assuan INQUIRE
    protocol response. The STORE command is sent by itself without arguments,
    then the server responds with INQUIRE. The client then sends the element
    path prefixed by a 'D<space>' client response. When finished, the client
    sends 'END' on an empty line. This is needed so an element path and value
    can be more than 1000 bytes long.

    This command stores an element tree into the existing <account>, creates a
    new <account> tree or modifies the content of an existing element path. If
    no elements are specifed an empty account is created. Otherwise, elements
    are TAB deliminated and the content will be set to the last TAB
    deliminated argument. The only restriction of element names is that they
    not contain any whitespace. There is no whitespace between the TAB
    deliminated element arguments. It is recommended that the value be base 64
    encoded to prevent libXML and pwmd parsing errors.
    

DELETE [!]account[<TAB>element[...]]
    Removes an element tree from <account> or the entire <account> if no
    elements are given.


GET [!]<account><TAB>element[<TAB>element[...]]
    Retrieves the content of the specified element tree. If the account is
    prefixed with a '!' and an element in the element path contains a "target"
    attribute, the target attribute will not be followed and the actual
    content of the element path will be returned. See the ATTR command for
    details about the "target" attribute. The data is returned with the data
    response code.


ATTR SET|GET|DELETE|LIST [<attribute>] [!]<arg1> [!][arg2]
    ATTR SET attribute account[<TAB>element[...]] attribute_value
        Stores or updates an attribute and value in the element path.

    ATTR DELETE attribute account[<TAB>element[...]]
        Removes the specified attribute from the element path.

    ATTR LIST account[<TAB>element[...]]
        Gets a list of attributes in the element path.

    ATTR GET attribute account[<TAB>element[...]]
        Gets the value of an attribute in the element path.

    The "name" attribute (case sensitive) cannot be ATTR DELETE'd if the
    element path is only an account name without any elements. Although it can
    be ATTR SET to change the account name.

    See THE TARGET ATTRIBUTE below.


DUMP
    Shows the in memory XML document. Hard to read unless you use pwmc
    included with libpwmd: echo dump | pwmc <filename>


BYE
    Closes the connection. Use the SAVE command before this command as any
    changes will be lost.


If a command fails then the ERR response is returned followed by a protocol
error code and description. See src/pwmd_error.h or libpwmd/libpwmd.h for
error codes.


THE TARGET ATTRIBUTE
--------------------
There is a special attribute "target" (case sensitive)i that can be set with
ATTR SET. The value of this attribute is an element path somewhere else in the
document:

ATTR SET target [!]account[<TAB>element[...]] [!]account[<TAB>element[...]]
                   ^^^arg1                       ^^^arg2

If the element path of the "target" attribute doesn't exist, it is created.
This is the only time the ATTR command will create elements.

When a protocol command requests <arg1> as the element path, the remaining
elements after the element with the "target" attribute will be appended to
<arg2>. This is useful if you have elements that share the same data. If the
target is modified, the other elements will have the same value. Here's an
example. C> is the client input, S> is the server response:

    C> STORE
    S> INQUIRE STORE
    C> D host1<TAB>username<TAB>original username
    C> END
    S> OK
    C> STORE
    S> INQUIRE STORE
    C> D host2<TAB>smtp<TAB>username<TAB>someuser
    C> END
    S> OK
    C> ATTR SET target host1<TAB>username host2<TAB>smtp<TAB>username
    S> OK

Now host1's "target" attribute will be used:

    C> GET host1<TAB>username
    S> D someuser
    S> OK

If you want host1's username, prefix the element path of the GET (or other
command) element path with a '!':

    C> GET !host1<TAB>username
    S> D original username
    S> OK

The target value (<arg2>) element can also have a "target" attribute:

    C> ATTR SET target new_account host1
    S> OK
    C> GET new_account<TAB>username
    S> D someuser
    S> OK

The value of the "target" attribute may also be prefixed with a '!' to set the
target to the actual element path and not a target of the element path:

    C> ATTR DELETE target !new_account
    S> OK
    C> ATTR SET target new_account<TAB>username !host1<TAB>username
    S> OK
    C> GET new_account<TAB>username
    S> D original username
    S> OK

If the target element has been renamed or deleted afterwards, the command will
fail.

Client's should be careful of creating target loops (a target that references
itself). There's no way to break out of it unless the client disconnects or
until memory runs out.


Questions, bugs or feature requests can be sent to Ben Kibbey
<bjk@luxsci.net>.