X-Git-Url: http://git.ozlabs.org/?a=blobdiff_plain;f=ui%2Fcommon%2Fdiscover-client.c;h=6dda2d32f55a5dcfce5d8215f3a42f8a00d32c6e;hb=9e869ebe3a5127575105d82c4d289d95cbed2db9;hp=88d0b4e3a8cea9eb31e4f129800d261f64a0b3ff;hpb=99a1f905f585480cca2c9a43ab18ed8e37365192;p=petitboot

diff --git a/ui/common/discover-client.c b/ui/common/discover-client.c
index 88d0b4e..6dda2d3 100644
--- a/ui/common/discover-client.c
+++ b/ui/common/discover-client.c
@@ -1,4 +1,8 @@
 
+#if defined(HAVE_CONFIG_H)
+#include "config.h"
+#endif
+
 #include <assert.h>
 #include <errno.h>
 #include <unistd.h>
@@ -22,6 +26,7 @@ struct discover_client {
 	struct discover_client_ops ops;
 	int n_devices;
 	struct device **devices;
+	bool authenticated;
 };
 
 static int discover_client_destructor(void *arg)
@@ -171,6 +176,7 @@ static int discover_client_process(void *arg)
 {
 	struct discover_client *client = arg;
 	struct pb_protocol_message *message;
+	struct auth_message *auth_msg;
 	struct plugin_option *p_opt;
 	struct system_info *sysinfo;
 	struct boot_option *opt;
@@ -197,7 +203,7 @@ static int discover_client_process(void *arg)
 
 		rc = pb_protocol_deserialise_device(dev, message);
 		if (rc) {
-			pb_log("%s: no device?\n", __func__);
+			pb_log_fn("no device?\n");
 			goto out;
 		}
 
@@ -208,7 +214,7 @@ static int discover_client_process(void *arg)
 
 		rc = pb_protocol_deserialise_boot_option(opt, message);
 		if (rc) {
-			pb_log("%s: no boot_option?\n", __func__);
+			pb_log_fn("no boot_option?\n");
 			goto out;
 		}
 
@@ -217,7 +223,7 @@ static int discover_client_process(void *arg)
 	case PB_PROTOCOL_ACTION_DEVICE_REMOVE:
 		dev_id = pb_protocol_deserialise_string(ctx, message);
 		if (!dev_id) {
-			pb_log("%s: no device id?\n", __func__);
+			pb_log_fn("no device id?\n");
 			goto out;
 		}
 		device_remove(client, dev_id);
@@ -227,7 +233,7 @@ static int discover_client_process(void *arg)
 
 		rc = pb_protocol_deserialise_boot_status(status, message);
 		if (rc) {
-			pb_log("%s: invalid status message?\n", __func__);
+			pb_log_fn("invalid status message?\n");
 			goto out;
 		}
 		update_status(client, status);
@@ -237,7 +243,7 @@ static int discover_client_process(void *arg)
 
 		rc = pb_protocol_deserialise_system_info(sysinfo, message);
 		if (rc) {
-			pb_log("%s: invalid sysinfo message?\n", __func__);
+			pb_log_fn("invalid sysinfo message?\n");
 			goto out;
 		}
 		update_sysinfo(client, sysinfo);
@@ -247,7 +253,7 @@ static int discover_client_process(void *arg)
 
 		rc = pb_protocol_deserialise_config(config, message);
 		if (rc) {
-			pb_log("%s: invalid config message?\n", __func__);
+			pb_log_fn("invalid config message?\n");
 			goto out;
 		}
 		update_config(client, config);
@@ -257,7 +263,7 @@ static int discover_client_process(void *arg)
 
 		rc = pb_protocol_deserialise_plugin_option(p_opt, message);
 		if (rc) {
-			pb_log("%s: no plugin_option?\n", __func__);
+			pb_log_fn("no plugin_option?\n");
 			goto out;
 		}
 
@@ -266,8 +272,22 @@ static int discover_client_process(void *arg)
 	case PB_PROTOCOL_ACTION_PLUGINS_REMOVE:
 		plugins_remove(client);
 		break;
+	case PB_PROTOCOL_ACTION_AUTHENTICATE:
+		auth_msg = talloc_zero(ctx, struct auth_message);
+
+		rc = pb_protocol_deserialise_authenticate(auth_msg, message);
+		if (rc || auth_msg->op != AUTH_MSG_RESPONSE) {
+			pb_log("%s: invalid auth message? (%d)\n",
+					__func__, rc);
+			goto out;
+		}
+
+		pb_log("Client %sauthenticated by server\n",
+				client->authenticated ? "" : "un");
+		client->authenticated = auth_msg->authenticated;
+		break;
 	default:
-		pb_log("%s: unknown action %d\n", __func__, message->action);
+		pb_log_fn("unknown action %d\n", message->action);
 	}
 
 out:
@@ -291,7 +311,7 @@ struct discover_client* discover_client_init(struct waitset *waitset,
 
 	client->fd = socket(AF_UNIX, SOCK_STREAM, 0);
 	if (client->fd < 0) {
-		pb_log("%s: socket: %s\n", __func__, strerror(errno));
+		pb_log_fn("socket: %s\n", strerror(errno));
 		goto out_err;
 	}
 
@@ -304,13 +324,20 @@ struct discover_client* discover_client_init(struct waitset *waitset,
 	strcpy(addr.sun_path, PB_SOCKET_PATH);
 
 	if (connect(client->fd, (struct sockaddr *)&addr, sizeof(addr))) {
-		pb_log("%s: connect: %s\n", __func__, strerror(errno));
+		pb_log_fn("connect: %s\n", strerror(errno));
 		goto out_err;
 	}
 
 	waiter_register_io(waitset, client->fd, WAIT_IN,
 			discover_client_process, client);
 
+	/* Assume this client can't make changes if crypt support is enabled */
+#ifdef CRYPT_SUPPORT
+	client->authenticated = false;
+#else
+	client->authenticated = true;
+#endif
+
 	return client;
 
 out_err:
@@ -333,6 +360,11 @@ struct device *discover_client_get_device(struct discover_client *client,
 	return client->devices[index];
 }
 
+bool discover_client_authenticated(struct discover_client *client)
+{
+	return client->authenticated;
+}
+
 static void create_boot_command(struct boot_command *command,
 		const struct device *device __attribute__((unused)),
 		const struct boot_option *boot_option,
@@ -471,3 +503,77 @@ int discover_client_send_temp_autoboot(struct discover_client *client,
 
 	return pb_protocol_write_message(client->fd, message);
 }
+
+int discover_client_send_authenticate(struct discover_client *client,
+		char *password)
+{
+	struct pb_protocol_message *message;
+	struct auth_message auth_msg;
+	int len;
+
+	auth_msg.op = AUTH_MSG_REQUEST;
+	auth_msg.password = password;
+
+	len = pb_protocol_authenticate_len(&auth_msg);
+
+	message = pb_protocol_create_message(client,
+				PB_PROTOCOL_ACTION_AUTHENTICATE, len);
+	if (!message)
+		return -1;
+
+	pb_log("serialising auth message..\n");
+	pb_protocol_serialise_authenticate(&auth_msg, message->payload, len);
+
+	pb_log("sending auth message..\n");
+	return pb_protocol_write_message(client->fd, message);
+}
+
+int discover_client_send_set_password(struct discover_client *client,
+		char *password, char *new_password)
+{
+	struct pb_protocol_message *message;
+	struct auth_message auth_msg;
+	int len;
+
+	auth_msg.op = AUTH_MSG_SET;
+	auth_msg.set_password.password = password;
+	auth_msg.set_password.new_password = new_password;
+
+	len = pb_protocol_authenticate_len(&auth_msg);
+
+	message = pb_protocol_create_message(client,
+				PB_PROTOCOL_ACTION_AUTHENTICATE, len);
+	if (!message)
+		return -1;
+
+	pb_log("serialising auth message..\n");
+	pb_protocol_serialise_authenticate(&auth_msg, message->payload, len);
+
+	pb_log("sending auth message..\n");
+	return pb_protocol_write_message(client->fd, message);
+}
+
+int discover_client_send_open_luks_device(struct discover_client *client,
+		char *password, char *device_id)
+{
+	struct pb_protocol_message *message;
+	struct auth_message auth_msg;
+	int len;
+
+	auth_msg.op = AUTH_MSG_DECRYPT;
+	auth_msg.decrypt_dev.password = password;
+	auth_msg.decrypt_dev.device_id = device_id;
+
+	len = pb_protocol_authenticate_len(&auth_msg);
+
+	message = pb_protocol_create_message(client,
+				PB_PROTOCOL_ACTION_AUTHENTICATE, len);
+	if (!message)
+		return -1;
+
+	pb_log("serialising auth message..\n");
+	pb_protocol_serialise_authenticate(&auth_msg, message->payload, len);
+
+	pb_log("sending auth message..\n");
+	return pb_protocol_write_message(client->fd, message);
+}