|  | #include "std.h" | 
|  | #include "dat.h" | 
|  |  | 
|  | /* | 
|  | * Factotum RPC | 
|  | * | 
|  | * Must be paired write/read cycles on /mnt/factotum/rpc. | 
|  | * The format of a request is verb, single space, data. | 
|  | * Data format is verb-dependent; in particular, it can be binary. | 
|  | * The format of a response is the same.  The write only sets up | 
|  | * the RPC.  The read tries to execute it.  If the /mnt/factotum/key | 
|  | * file is open, we ask for new keys using that instead of returning | 
|  | * an error in the RPC.  This means the read blocks. | 
|  | * Textual arguments are parsed with tokenize, so rc-style quoting | 
|  | * rules apply. | 
|  | * | 
|  | * Only authentication protocol messages go here.  Configuration | 
|  | * is still via ctl (below). | 
|  | * | 
|  | * Request RPCs are: | 
|  | *	start attrs - initializes protocol for authentication, can fail. | 
|  | *		returns "ok read" or "ok write" on success. | 
|  | *	read - execute protocol read | 
|  | *	write - execute protocol write | 
|  | *	authinfo - if the protocol is finished, return the AI if any | 
|  | *	attr - return protocol information | 
|  | * Return values are: | 
|  | *	error message - an error happened. | 
|  | *	ok [data] - success, possible data is request dependent. | 
|  | *	needkey attrs - request aborted, get me this key and try again | 
|  | *	badkey attrs - request aborted, this key might be bad | 
|  | *	done [haveai] - authentication is done [haveai: you can get an ai with authinfo] | 
|  | */ | 
|  |  | 
|  | char *rpcname[] = | 
|  | { | 
|  | "unknown", | 
|  | "authinfo", | 
|  | "attr", | 
|  | "read", | 
|  | "start", | 
|  | "write", | 
|  | "readhex", | 
|  | "writehex" | 
|  | }; | 
|  |  | 
|  | static int | 
|  | classify(char *s) | 
|  | { | 
|  | int i; | 
|  |  | 
|  | for(i=1; i<nelem(rpcname); i++) | 
|  | if(strcmp(s, rpcname[i]) == 0) | 
|  | return i; | 
|  | return RpcUnknown; | 
|  | } | 
|  |  | 
|  | int | 
|  | rpcwrite(Conv *c, void *data, int count) | 
|  | { | 
|  | int op; | 
|  | uchar *p; | 
|  |  | 
|  | if(count >= MaxRpc){ | 
|  | werrstr("rpc too large"); | 
|  | return -1; | 
|  | } | 
|  |  | 
|  | /* cancel any current rpc */ | 
|  | c->rpc.op = RpcUnknown; | 
|  | c->nreply = 0; | 
|  |  | 
|  | /* parse new rpc */ | 
|  | memmove(c->rpcbuf, data, count); | 
|  | c->rpcbuf[count] = 0; | 
|  | if(p = (uchar*)strchr((char*)c->rpcbuf, ' ')){ | 
|  | *p++ = '\0'; | 
|  | c->rpc.data = p; | 
|  | c->rpc.count = count - (p - (uchar*)c->rpcbuf); | 
|  | }else{ | 
|  | c->rpc.data = ""; | 
|  | c->rpc.count = 0; | 
|  | } | 
|  | op = classify(c->rpcbuf); | 
|  | if(op == RpcUnknown){ | 
|  | werrstr("bad rpc verb: %s", c->rpcbuf); | 
|  | return -1; | 
|  | } | 
|  |  | 
|  | c->rpc.op = op; | 
|  | return 0; | 
|  | } | 
|  |  | 
|  | void | 
|  | convthread(void *v) | 
|  | { | 
|  | Conv *c; | 
|  | Attr *a; | 
|  | char *role, *proto; | 
|  | Proto *p; | 
|  | Role *r; | 
|  |  | 
|  | c = v; | 
|  | a = parseattr(c->rpc.data); | 
|  | if(a == nil){ | 
|  | werrstr("empty attr"); | 
|  | goto out; | 
|  | } | 
|  | c->attr = a; | 
|  | proto = strfindattr(a, "proto"); | 
|  | if(proto == nil){ | 
|  | werrstr("no proto in attrs"); | 
|  | goto out; | 
|  | } | 
|  |  | 
|  | p = protolookup(proto); | 
|  | if(p == nil){ | 
|  | werrstr("unknown proto %s", proto); | 
|  | goto out; | 
|  | } | 
|  | c->proto = p; | 
|  |  | 
|  | role = strfindattr(a, "role"); | 
|  | if(role == nil){ | 
|  | werrstr("no role in attrs"); | 
|  | goto out; | 
|  | } | 
|  |  | 
|  | for(r=p->roles; r->name; r++){ | 
|  | if(strcmp(r->name, role) != 0) | 
|  | continue; | 
|  | rpcrespond(c, "ok"); | 
|  | c->active = 1; | 
|  | if((*r->fn)(c) == 0){ | 
|  | c->done = 1; | 
|  | werrstr("protocol finished"); | 
|  | }else | 
|  | werrstr("%s %s %s: %r", p->name, r->name, c->state); | 
|  | goto out; | 
|  | } | 
|  | werrstr("unknown role"); | 
|  |  | 
|  | out: | 
|  | c->active = 0; | 
|  | c->state = 0; | 
|  | rerrstr(c->err, sizeof c->err); | 
|  | rpcrespond(c, "error %r"); | 
|  | convclose(c); | 
|  | } | 
|  |  | 
|  | static uchar* convAI2M(uchar *p, int n, char *cuid, char *suid, char *cap, char *hex); | 
|  |  | 
|  | void | 
|  | rpcexec(Conv *c) | 
|  | { | 
|  | uchar *p; | 
|  |  | 
|  | c->rpc.hex = 0; | 
|  | switch(c->rpc.op){ | 
|  | case RpcWriteHex: | 
|  | c->rpc.op = RpcWrite; | 
|  | if(dec16(c->rpc.data, c->rpc.count, c->rpc.data, c->rpc.count) != c->rpc.count/2){ | 
|  | rpcrespond(c, "bad hex"); | 
|  | break; | 
|  | } | 
|  | c->rpc.count /= 2; | 
|  | goto Default; | 
|  | case RpcReadHex: | 
|  | c->rpc.hex = 1; | 
|  | c->rpc.op = RpcRead; | 
|  | /* fall through */ | 
|  | case RpcRead: | 
|  | if(c->rpc.count > 0){ | 
|  | rpcrespond(c, "error read takes no parameters"); | 
|  | break; | 
|  | } | 
|  | /* fall through */ | 
|  | default: | 
|  | Default: | 
|  | if(!c->active){ | 
|  | if(c->done) | 
|  | rpcrespond(c, "done"); | 
|  | else | 
|  | rpcrespond(c, "error %s", c->err); | 
|  | break; | 
|  | } | 
|  | nbsendp(c->rpcwait, 0); | 
|  | break; | 
|  | case RpcUnknown: | 
|  | break; | 
|  | case RpcAuthinfo: | 
|  | /* deprecated */ | 
|  | if(c->active) | 
|  | rpcrespond(c, "error conversation still active"); | 
|  | else if(!c->done) | 
|  | rpcrespond(c, "error conversation not successful"); | 
|  | else{ | 
|  | /* make up an auth info using the attr */ | 
|  | p = convAI2M((uchar*)c->reply+3, sizeof c->reply-3, | 
|  | strfindattr(c->attr, "cuid"), | 
|  | strfindattr(c->attr, "suid"), | 
|  | strfindattr(c->attr, "cap"), | 
|  | strfindattr(c->attr, "secret")); | 
|  | if(p == nil) | 
|  | rpcrespond(c, "error %r"); | 
|  | else | 
|  | rpcrespondn(c, "ok", c->reply+3, p-(uchar*)(c->reply+3)); | 
|  | } | 
|  | break; | 
|  | case RpcAttr: | 
|  | rpcrespond(c, "ok %A", c->attr); | 
|  | break; | 
|  | case RpcStart: | 
|  | convreset(c); | 
|  | c->ref++; | 
|  | threadcreate(convthread, c, STACK); | 
|  | break; | 
|  | } | 
|  | } | 
|  |  | 
|  | void | 
|  | rpcrespond(Conv *c, char *fmt, ...) | 
|  | { | 
|  | va_list arg; | 
|  |  | 
|  | if(c->hangup) | 
|  | return; | 
|  |  | 
|  | if(fmt == nil) | 
|  | fmt = ""; | 
|  |  | 
|  | va_start(arg, fmt); | 
|  | c->nreply = vsnprint(c->reply, sizeof c->reply, fmt, arg); | 
|  | va_end(arg); | 
|  | (*c->kickreply)(c); | 
|  | c->rpc.op = RpcUnknown; | 
|  | } | 
|  |  | 
|  | void | 
|  | rpcrespondn(Conv *c, char *verb, void *data, int count) | 
|  | { | 
|  | char *p; | 
|  | int need, hex; | 
|  |  | 
|  | if(c->hangup) | 
|  | return; | 
|  |  | 
|  | need = strlen(verb)+1+count; | 
|  | hex = 0; | 
|  | if(c->rpc.hex && strcmp(verb, "ok") == 0){ | 
|  | need += count; | 
|  | hex = 1; | 
|  | } | 
|  | if(need > sizeof c->reply){ | 
|  | print("RPC response too large; caller %#lux", getcallerpc(&c)); | 
|  | return; | 
|  | } | 
|  |  | 
|  | strcpy(c->reply, verb); | 
|  | p = c->reply + strlen(c->reply); | 
|  | *p++ = ' '; | 
|  | if(hex){ | 
|  | enc16(p, 2*count+1, data, count); | 
|  | p += 2*count; | 
|  | }else{ | 
|  | memmove(p, data, count); | 
|  | p += count; | 
|  | } | 
|  | c->nreply = p - c->reply; | 
|  | (*c->kickreply)(c); | 
|  | c->rpc.op = RpcUnknown; | 
|  | } | 
|  |  | 
|  | /* deprecated */ | 
|  | static uchar* | 
|  | pstring(uchar *p, uchar *e, char *s) | 
|  | { | 
|  | uint n; | 
|  |  | 
|  | if(p == nil) | 
|  | return nil; | 
|  | if(s == nil) | 
|  | s = ""; | 
|  | n = strlen(s); | 
|  | if(p+n+BIT16SZ >= e) | 
|  | return nil; | 
|  | PBIT16(p, n); | 
|  | p += BIT16SZ; | 
|  | memmove(p, s, n); | 
|  | p += n; | 
|  | return p; | 
|  | } | 
|  |  | 
|  | static uchar* | 
|  | pcarray(uchar *p, uchar *e, uchar *s, uint n) | 
|  | { | 
|  | if(p == nil) | 
|  | return nil; | 
|  | if(s == nil){ | 
|  | if(n > 0) | 
|  | sysfatal("pcarray"); | 
|  | s = (uchar*)""; | 
|  | } | 
|  | if(p+n+BIT16SZ >= e) | 
|  | return nil; | 
|  | PBIT16(p, n); | 
|  | p += BIT16SZ; | 
|  | memmove(p, s, n); | 
|  | p += n; | 
|  | return p; | 
|  | } | 
|  |  | 
|  | static uchar* | 
|  | convAI2M(uchar *p, int n, char *cuid, char *suid, char *cap, char *hex) | 
|  | { | 
|  | uchar *e = p+n; | 
|  | uchar *secret; | 
|  | int nsecret; | 
|  |  | 
|  | if(cuid == nil) | 
|  | cuid = ""; | 
|  | if(suid == nil) | 
|  | suid = ""; | 
|  | if(cap == nil) | 
|  | cap = ""; | 
|  | if(hex == nil) | 
|  | hex = ""; | 
|  | nsecret = strlen(hex)/2; | 
|  | secret = emalloc(nsecret); | 
|  | if(hexparse(hex, secret, nsecret) < 0){ | 
|  | werrstr("hexparse %s failed", hex);	/* can't happen */ | 
|  | free(secret); | 
|  | return nil; | 
|  | } | 
|  | p = pstring(p, e, cuid); | 
|  | p = pstring(p, e, suid); | 
|  | p = pstring(p, e, cap); | 
|  | p = pcarray(p, e, secret, nsecret); | 
|  | free(secret); | 
|  | if(p == nil) | 
|  | werrstr("authinfo too big"); | 
|  | return p; | 
|  | } | 
|  |  |