search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Remove GLib dependency.
[pwmd.git] / src / convert.c
blob74a3772e194827a8415abb01fafb9a7417f53cb0
1 /*
2 Copyright (C) 2006, 2007, 2008, 2009, 2010, 2011, 2012
3 Ben Kibbey <bjk@luxsci.net>
4
5 This file is part of pwmd.
6
7 Pwmd is free software: you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation, either version 2 of the License, or
10 (at your option) any later version.
11
12 Pwmd is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
16
17 You should have received a copy of the GNU General Public License
18 along with Pwmd. If not, see <http://www.gnu.org/licenses/>.
19 */
20 #ifdef HAVE_CONFIG_H
21 #include <config.h>
22 #endif
23
24 #include <fcntl.h>
25 #include <sys/stat.h>
26 #include <zlib.h>
27
28 #include "pwmd-error.h"
29 #include <gcrypt.h>
30 #include "agent.h"
31 #include "convert.h"
32 #include "xml.h"
33 #include "mem.h"
34 #include "util-misc.h"
35
36 #ifndef _
37 #include "gettext.h"
38 #define _(msgid) gettext(msgid)
39 #endif
40
41 #define KEYSIZE 32
42
43 typedef struct {
44 uint8_t magic[5];
45 uint16_t version;
46 uint64_t iter;
47 uint64_t flags;
48 uint8_t iv[16];
49 uint8_t salt[8];
50 } v2_file_header_t;
51
52 struct gz_s {
53 z_stream z;
54 void * out;
55 int done;
56 };
57
58 static unsigned char crypto_magic[5] = "\177PWMD";
59
60 static void gz_cleanup(void *arg)
61 {
62 struct gz_s **gz = (struct gz_s **)arg;
63
64 if (!gz)
65 return;
66
67 if (!(*gz)->done && (*gz)->out)
68 gcry_free((*gz)->out);
69
70 if ((*gz)->z.zalloc)
71 inflateEnd(&(*gz)->z);
72
73 xfree(*gz);
74 *gz = NULL;
75 }
76
77 static void *z_alloc(void *data, unsigned items, unsigned size)
78 {
79 return gcry_calloc(items, size);
80 }
81
82 static void z_free(void *data, void *p)
83 {
84 gcry_free(p);
85 }
86
87 #define ZLIB_BUFSIZE 65536
88
89 static gpg_error_t decompress(void * in, unsigned long insize, void * *out,
90 unsigned long *outsize)
91 {
92 struct gz_s *gz;
93 gz_header h;
94 char buf[17];
95 gpg_error_t rc;
96 int zrc;
97
98 gz = xcalloc(1, sizeof(struct gz_s));
99 if (!gz)
100 return GPG_ERR_ENOMEM;
101
102 gz->z.zalloc = z_alloc;
103 gz->z.zfree = z_free;
104 gz->z.next_in = in;
105 gz->z.avail_in = (uInt)insize;
106 gz->z.avail_out = ZLIB_BUFSIZE;
107 gz->z.next_out = gz->out = gcry_malloc(ZLIB_BUFSIZE);
108 if (!gz->out) {
109 gz_cleanup(&gz);
110 return GPG_ERR_ENOMEM;
111 }
112
113 zrc = inflateInit2(&gz->z, 47);
114 if (zrc != Z_OK) {
115 gz_cleanup(&gz);
116 return zrc == Z_MEM_ERROR ? GPG_ERR_ENOMEM : GPG_ERR_COMPR_ALGO;
117 }
118
119 memset(&h, 0, sizeof(gz_header));
120 h.comment = (unsigned char *)buf;
121 h.comm_max = sizeof(buf);
122 zrc = inflateGetHeader(&gz->z, &h);
123 if (zrc != Z_OK) {
124 gz_cleanup(&gz);
125 return zrc == Z_MEM_ERROR ? GPG_ERR_ENOMEM : GPG_ERR_COMPR_ALGO;
126 }
127
128 zrc = inflate(&gz->z, Z_BLOCK);
129 if (zrc != Z_OK) {
130 gz_cleanup(&gz);
131 return zrc == Z_MEM_ERROR ? GPG_ERR_ENOMEM : GPG_ERR_COMPR_ALGO;
132 }
133
134 if (h.comment)
135 insize = strtoul((char *)h.comment, NULL, 10);
136
137 do {
138 void * p;
139
140 zrc = inflate(&gz->z, Z_FINISH);
141 switch (zrc) {
142 case Z_OK:
143 break;
144 case Z_BUF_ERROR:
145 if (!gz->z.avail_out) {
146 p = gcry_realloc(gz->out, gz->z.total_out + ZLIB_BUFSIZE);
147 if (!p) {
148 rc = GPG_ERR_ENOMEM;
149 goto fail;
150 }
151
152 gz->out = p;
153 gz->z.next_out = (unsigned char *)gz->out + gz->z.total_out;
154 gz->z.avail_out = ZLIB_BUFSIZE;
155 }
156 else {
157 rc = GPG_ERR_COMPR_ALGO;
158 goto fail;
159 }
160
161 break;
162 case Z_STREAM_END:
163 break;
164 default:
165 rc = GPG_ERR_COMPR_ALGO;
166 goto fail;
167 break;
168 }
169 } while (zrc != Z_STREAM_END);
170
171 *out = gz->out;
172 *outsize = gz->z.total_out;
173 gz->done = 1;
174 gz_cleanup(&gz);
175 return 0;
176
177 fail:
178 gz_cleanup(&gz);
179 return rc;
180 }
181
182 static gpg_error_t decrypt(v2_file_header_t *fh, unsigned char *key,
183 unsigned char **ciphertext, size_t datalen, void * *result,
184 size_t *result_len)
185 {
186 gpg_error_t rc;
187 size_t blocksize, keysize, len;
188 int algo = cipher_to_gcrypt(fh->flags);
189 gcry_cipher_hd_t gh = NULL;
190 uint64_t iter = 0ULL;
191 unsigned char *data = *ciphertext;
192
193 *result = NULL;
194 *result_len = 0;
195
196 /* No encryption iterations. This is a plain (gzipped) file. */
197 if (!fh->iter)
198 goto decompress;
199
200 if (algo == -1)
201 return GPG_ERR_CIPHER_ALGO;
202
203 rc = gcry_cipher_algo_info(algo, GCRYCTL_TEST_ALGO, NULL, NULL);
204 if (rc)
205 return rc;
206
207 rc = gcry_cipher_algo_info(algo, GCRYCTL_GET_KEYLEN, NULL, &keysize);
208 if (rc)
209 return rc;
210
211 rc = gcry_cipher_algo_info(algo, GCRYCTL_GET_BLKLEN, NULL, &blocksize);
212 if (rc)
213 return rc;
214
215 rc = gcry_cipher_open(&gh, algo, GCRY_CIPHER_MODE_CBC, 0);
216 if (rc)
217 return rc;
218
219 if ((rc = gcry_cipher_setiv(gh, fh->iv, blocksize)))
220 goto fail;
221
222 if ((rc = gcry_cipher_setkey(gh, key, keysize)))
223 goto fail;
224
225 rc = gcry_cipher_decrypt(gh, data, datalen, NULL, 0);
226 if (rc)
227 goto fail;
228
229 key[0] ^= 1;
230 if ((rc = gcry_cipher_setkey(gh, key, keysize)))
231 goto fail;
232
233 while (++iter < fh->iter) {
234 if ((rc = gcry_cipher_setiv(gh, fh->iv, blocksize)))
235 goto fail;
236
237 rc = gcry_cipher_decrypt(gh, data, datalen, NULL, 0);
238 if (rc)
239 goto fail;
240 }
241
242 decompress:
243 len = 0;
244 if (fh->version >= 0x218 && fh->iter > 0ULL) {
245 if (memcmp(data, crypto_magic, sizeof(crypto_magic))) {
246 rc = GPG_ERR_BAD_PASSPHRASE;
247 goto fail;
248 }
249
250 len = sizeof(crypto_magic);
251 }
252
253 rc = decompress(data+len, datalen-len, result, (unsigned long *)result_len);
254 if (rc) {
255 if (fh->version < 0x218 && rc == GPG_ERR_COMPR_ALGO)
256 rc = GPG_ERR_BAD_PASSPHRASE;
257 goto fail;
258 }
259
260 if (strncasecmp((char *)*result, "<?xml ", 6) != 0) {
261 gcry_free(*result);
262 *result = NULL;
263 *result_len = 0;
264 rc = GPG_ERR_BAD_PASSPHRASE;
265 goto fail;
266 }
267
268 fail:
269 if (gh)
270 gcry_cipher_close(gh);
271
272 return rc;
273 }
274
275 gpg_error_t read_v2_datafile(const char *filename, const char *keyfile,
276 void * *result, size_t *result_len, uint16_t *ver, int *algo)
277 {
278 gpg_error_t rc;
279 int fd;
280 v2_file_header_t fh;
281 size_t len, passphraselen, datalen;
282 struct agent_s *agent = NULL;
283 char *passphrase = NULL;
284 unsigned char *data = NULL;
285 struct stat st;
286 unsigned char *key = NULL;
287 FILE *fp;
288
289 if (stat(filename, &st) == -1)
290 return gpg_error_from_syserror();
291
292 fd = open(filename, O_RDONLY);
293 if (fd == -1)
294 return gpg_error_from_syserror();
295
296 len = read(fd, &fh, sizeof(fh)-8);
297 if (len != sizeof(fh)-8) {
298 rc = GPG_ERR_INV_LENGTH;
299 goto fail;
300 }
301
302 if (fh.version >= 0x221) {
303 len = read(fd, &fh.salt, 8);
304 if (len != 8) {
305 rc = GPG_ERR_INV_LENGTH;
306 goto fail;
307 }
308 }
309
310 *ver = fh.version;
311 *algo = cipher_to_gcrypt(fh.flags);
312 rc = agent_init(&agent);
313 if (rc)
314 goto fail;
315
316 if (!keyfile && fh.iter > 0) {
317 char *desc = plus_escape(_(
318 "A passphrase is required to decrypt the file for converting. "
319 "Please enter the passphrase below."));
320
321 rc = set_pinentry_options(agent);
322 if (rc)
323 goto fail;
324
325 assuan_begin_confidential(agent->ctx);
326 rc = send_to_agent(agent, &passphrase, &passphraselen,
327 "GET_PASSPHRASE --data pwmd:convert + %s %s",
328 _("Passphrase:"), desc);
329 assuan_end_confidential(agent->ctx);
330 xfree(desc);
331 if (rc)
332 goto fail;
333
334 passphraselen--; // null byte
335 send_to_agent(agent, NULL, NULL, "CLEAR_PASSPHRASE pwmd:convert");
336 cleanup_agent(agent);
337 agent = NULL;
338 }
339 else if (keyfile) {
340 struct stat pst;
341 int pfd = open(keyfile, O_RDONLY);
342
343 if (pfd == -1) {
344 rc = gpg_error_from_syserror();
345 goto fail;
346 }
347
348 if (stat(keyfile, &pst) == -1) {
349 rc = gpg_error_from_syserror();
350 close(pfd);
351 goto fail;
352 }
353
354 passphrase = xmalloc(pst.st_size);
355 if (!passphrase) {
356 rc = GPG_ERR_ENOMEM;
357 close(pfd);
358 goto fail;
359 }
360
361 passphraselen = read(pfd, passphrase, pst.st_size);
362 close(pfd);
363 if (passphraselen != pst.st_size) {
364 rc = GPG_ERR_INV_LENGTH;
365 goto fail;
366 }
367 }
368
369 key = gcry_malloc(KEYSIZE);
370 if (!key) {
371 rc = GPG_ERR_ENOMEM;
372 goto fail;
373 }
374
375 fp = fdopen(fd, "r");
376 len = st.st_size - ftell(fp);
377
378 if (fh.version >= 0x221 && fh.version < 0x0300) {
379 rc = gcry_kdf_derive(passphrase, passphraselen, GCRY_KDF_ITERSALTED_S2K,
380 GCRY_MD_SHA1, fh.salt, 8, 1000, KEYSIZE, key);
381 if (rc)
382 goto fail;
383 }
384 else
385 gcry_md_hash_buffer(GCRY_MD_SHA256, key, passphrase, passphraselen);
386
387 data = gcry_malloc(len);
388 if (!data) {
389 rc = GPG_ERR_ENOMEM;
390 goto fail;
391 }
392
393 datalen = read(fd, data, len);
394 if (datalen != len) {
395 rc = GPG_ERR_INV_LENGTH;
396 goto fail;
397 }
398
399 fprintf(stderr, _("Decrypting ...\n"));
400 rc = decrypt(&fh, key, &data, datalen, result, result_len);
401
402 fail:
403 gcry_free(key);
404 gcry_free(data);
405 xfree(passphrase);
406
407 if (agent)
408 cleanup_agent(agent);
409
410 if (fd != -1)
411 close(fd);
412 return rc;
413 }
A server for managing passphrases and anything else.