tr1pd 0.3.1

tamper resistant audit log
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292

#![warn(unused_extern_crates)]

extern crate tr1pd;
extern crate env_logger;
extern crate nom;
extern crate colored;

use colored::Colorize;

use tr1pd::blocks::InnerBlock;
use tr1pd::cli;
use tr1pd::cli::tr1pctl::build_cli;
use tr1pd::config;
use tr1pd::crypto::{self, PublicKey};
use tr1pd::sandbox;
use tr1pd::spec::{Spec, SpecPointer};
use tr1pd::storage::{DiskStorage, BlockStorage};
use tr1pd::recipe::{self, BlockRecipe, InfoBlockPipe};
use tr1pd::rpc::{ClientBuilder, CtlRequest};
use tr1pd::wire;

use nom::IResult;

use std::io;
use std::io::stdin;
use std::io::prelude::*;
use std::path::Path;
use std::str;
use std::process;
use std::fs::File;
use std::fs::OpenOptions;
use std::os::unix::fs::OpenOptionsExt;
use std::process::{Command, Stdio};


fn load_pubkey(pk: &str) -> Result<PublicKey, ()> {
    let mut file = File::open(pk).expect("create lt.pk");
    let mut buf = Vec::new();
    file.read_to_end(&mut buf).unwrap();
    let pk = PublicKey::from_slice(&buf).unwrap();
    Ok(pk)
}

fn main() {
    env_logger::init();

    let matches = build_cli()
        .get_matches();

    if !matches.is_present("from") {
        // `tr1pctl from` can't setup seccomp properly
        // since the new process would inherit our filter.
        // if that problem has been resolved, activate_stage1
        // should be moved below env_logger::init
        sandbox::activate_stage1().expect("sandbox stage1");
    }

    let config = config::load_config();

    let path = matches.value_of("data-dir").unwrap_or(config.datadir());
    let storage = DiskStorage::new(path);

    let socket = matches.value_of("socket").unwrap_or(config.socket());
    let client = ClientBuilder::new(socket);


    if let Some(matches) = matches.subcommand_matches("init") {
        let force = matches.occurrences_of("force") > 0;

        let (pk, sk) = crypto::gen_keypair();
        let pk_path = Path::new(config.pub_key());
        let sk_path = Path::new(config.sec_key());

        // TODO: create folder with correct permissions

        if force || !pk_path.exists() {
            let mut file = OpenOptions::new()
                            .write(true)
                            .create(true)
                            .create_new(!force)
                            .mode(0o640)
                            .open(pk_path).expect("create lt.pk");
            file.write_all(&pk.0).unwrap();
            println!("[+] wrote public key to {:?}", pk_path);
        }

        if force || !sk_path.exists() {
            let mut file = OpenOptions::new()
                            .write(true)
                            .create(true)
                            .create_new(!force)
                            .mode(0o600)
                            .open(sk_path).expect("create lt.sk");
            file.write_all(&sk.0).unwrap();
            println!("[+] wrote secret key to {:?}", sk_path);
        }
    }

    if let Some(matches) = matches.subcommand_matches("get") {
        let all = matches.occurrences_of("all") > 0;
        let parent = matches.occurrences_of("parent") > 0;

        let longterm_pk = load_pubkey(config.pub_key()).unwrap();

        let spec = matches.value_of("block").unwrap();
        let spec = SpecPointer::parse(spec).expect("failed to parse spec");
        let pointer = storage.resolve_pointer(spec).expect("failed to resolve pointer");
        let block = storage.get(&pointer).expect("failed to load block");

        block.verify_longterm(&longterm_pk).expect("verify_longterm");

        if all {
            println!("{:?}", block);
        } else if parent {
            println!("{:x}", block.prev());
        } else if let Some(bytes) = block.msg() {
            print!("{}", str::from_utf8(bytes).unwrap());
        }
    }

    if let Some(_matches) = matches.subcommand_matches("head") {
        let head = storage.get_head().unwrap();
        // XXX: verify signature before printing this?
        println!("{:x}", head);
    }

    if let Some(matches) = matches.subcommand_matches("ls") {
        let longterm_pk = load_pubkey(config.pub_key()).unwrap();

        let spec = matches.value_of("spec").unwrap_or("..");

        let spec = Spec::parse_range(spec).expect("failed to parse spec");
        let range = storage.resolve_range(spec).expect("failed to expand range");

        for pointer in storage.expand_range(range).unwrap() {
            let block = storage.get(&pointer).unwrap();

            // TODO: verify session as well
            block.verify_longterm(&longterm_pk).expect("verify_longterm");

            if let Some(bytes) = block.msg() {
                print!("{}", str::from_utf8(bytes).unwrap());
            }
        }
    }

    if let Some(matches) = matches.subcommand_matches("write") {
        let client = client.connect().unwrap();

        let mut pipe = InfoBlockPipe::new(client, stdin());

        let size = matches.value_of("size")
            .map(|size| recipe::parse_size(size).expect("failed to parse size"));

        match size {
            Some(size) => pipe.start_bytes(size),
            None       => pipe.start_lines(),
        };
    }

    if let Some(matches) = matches.subcommand_matches("from") {
        let client = client.connect().unwrap();

        let size = matches.value_of("size")
            .map(|size| recipe::parse_size(size).expect("failed to parse size"));

        let mut cmd: Vec<&str> = matches.values_of("cmd").unwrap().collect();

        let prog = cmd.remove(0);
        let args = cmd;

        // println!("executing: {:?} {:?}", prog, args);

        let mut child = Command::new(prog)
            .args(args)
            .stdout(Stdio::piped())
            .spawn().expect("failed to start");

        let stdout = child.stdout.take().unwrap();
        let mut pipe = InfoBlockPipe::new(client, stdout);

        match size {
            Some(size) => pipe.start_bytes(size),
            None       => pipe.start_lines(),
        };

        let _status = child.wait().expect("failed to wait on child");
    }

    if let Some(_matches) = matches.subcommand_matches("rekey") {
        let mut client = client.connect().unwrap();

        let block = BlockRecipe::Rekey;
        let pointer = client.write_block(block).expect("write block");
        // if not quiet
        println!("{:x}", pointer);
    }

    if let Some(matches) = matches.subcommand_matches("fsck") {
        let longterm_pk = load_pubkey(config.pub_key()).unwrap();

        let spec = matches.value_of("spec").unwrap_or("..");
        let _verbose = matches.occurrences_of("verbose");
        let paranoid = matches.occurrences_of("paranoid") > 0;

        let spec = Spec::parse_range(spec).expect("failed to parse spec");
        let range = storage.resolve_range(spec).expect("failed to expand range");

        let mut session = None;

        // The first block in the spec parameter is trusted
        // If this is an init block this is non-fatal in paranoid mode
        let mut first_block = true;

        for pointer in storage.expand_range(range).unwrap() {
            print!("{:x} ... ", pointer);
            io::stdout().flush().unwrap();

            let buf = storage.get_bytes(&pointer).unwrap();

            // TODO: do a 2-stage decode to avoid reencoding for verification

            if let IResult::Done(_, block) = wire::block(&buf) {
                block.verify_longterm(&longterm_pk).expect("verify_longterm");

                match *block.inner() {
                    InnerBlock::Init(ref init) => {
                        print!("{}  ... ", "init".yellow());
                        io::stdout().flush().unwrap();

                        if paranoid && !first_block {
                            panic!("2nd init block is not allowed in paranoid mode");
                        }

                        session = Some(init.pubkey().clone());
                        // println!("ALERT: init: {:?}", session);
                    },
                    InnerBlock::Rekey(ref rekey) => {
                        print!("rekey ... ");
                        io::stdout().flush().unwrap();

                        rekey.verify_session(&session.unwrap()).expect("verify_session");

                        session = Some(rekey.pubkey().clone());
                        // println!("rekey: {:?}", session);
                    },
                    InnerBlock::Alert(ref alert) => {
                        print!("alert ... ");
                        io::stdout().flush().unwrap();

                        alert.verify_session(&session.unwrap()).expect("verify_session");

                        session = Some(alert.pubkey().clone());
                        // println!("alert: {:?}", session);
                    },
                    InnerBlock::Info(ref info) => {
                        print!("info  ... ");
                        io::stdout().flush().unwrap();

                        info.verify_session(&session.unwrap()).expect("verify_session");
                        // println!("info");
                    },
                };
            } else {
                panic!("corrupted entry");
            }

            println!("{}", "ok".green());
            first_block = false;
        }
    }

    if let Some(matches) = matches.subcommand_matches("ping") {
        let mut client = client.connect().unwrap();

        let quiet = matches.occurrences_of("quiet") > 0;

        let req = CtlRequest::Ping;
        match client.send(&req) {
            Ok(_) if quiet => (),
            Ok(_) => println!("pong"),
            Err(err) => {
                eprintln!("{:?}", err);
                process::exit(1);
            },
        }
    }

    if matches.is_present("bash-completion") {
        cli::gen_completions(build_cli(), "tr1pctl");
    }
}