1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
|
//! Select functionality from [assuan-socket.c].
//!
//! [assuan-socket.c]: https://github.com/gpg/libassuan/blob/master/src/assuan-socket.c
// Makes writing platform-specific code less verbose (less #[cfgs] everywhere)
#![allow(dead_code, unused_imports)]
use std::io::{Write, Read};
use std::path::Path;
use std::fs::File;
use anyhow::anyhow;
use crate::Result;
#[cfg(windows)]
pub(crate) type IpcStream = tokio::net::TcpStream;
#[cfg(unix)]
pub(crate) type IpcStream = tokio::net::UnixStream;
/// Connects to a local socket, returning a Tokio-enabled async connection.
///
/// Supports regular local domain sockets under Unix-like systems and
/// either Cygwin or libassuan's socket emulation on Windows.
///
/// # Panic
///
/// This function panics if not called from within a Tokio runtime.
pub(crate) fn sock_connect(path: impl AsRef<Path>) -> Result<IpcStream> {
platform! {
unix => {
let stream = std::os::unix::net::UnixStream::connect(path)?;
stream.set_nonblocking(true)?;
Ok(tokio::net::UnixStream::from_std(stream)?)
},
windows => {
use std::net::{Ipv4Addr, TcpStream};
let rendezvous = read_port_and_nonce(path.as_ref())?;
let Rendezvous { port, uds_emulation, nonce } = rendezvous;
let mut stream = TcpStream::connect((Ipv4Addr::LOCALHOST, port))?;
stream.set_nodelay(true)?;
// Authorize ourselves with nonce read from the file
stream.write(&nonce)?;
if let UdsEmulation::Cygwin = uds_emulation {
// The client sends the nonce back - not useful. Do a dummy read
stream.read_exact(&mut [0u8; 16])?;
// Send our credentials as expected by libassuan:
// [ pid |uid|gid] (8 bytes)
// [_|_|_|_|_|_|_|_]
let mut creds = [0u8; 8]; // uid = gid = 0
creds[..4].copy_from_slice(&std::process::id().to_ne_bytes());
stream.write_all(&creds)?;
// FIXME: libassuan in theory reads only 8 bytes here, but
// somehow 12 have to be written for the server to progress (tested
// on mingw-x86_64-gnupg).
// My bet is that mingw socket API does that transparently instead
// and expects to read an actual `ucred` struct (socket.h) which is
// three `__u32`s.
// Here, neither client nor server uses it, so just send dummy bytes
stream.write_all(&[0u8; 4])?;
// Receive back credentials. We don't need them.
stream.read_exact(&mut [0u8; 12])?;
}
stream.set_nonblocking(true)?;
Ok(tokio::net::TcpStream::from_std(stream)?)
},
}
}
/// Socket connection data.
#[derive(Debug)]
struct Rendezvous {
port: u16,
uds_emulation: UdsEmulation,
nonce: [u8; 16],
}
/// Unix domain socket emulation type (Windows only).
///
/// Until Windows 10 Update 1803, Windows did not support native UNIX domain
/// sockets. To work around that, developers historically used TCP (readily
/// available) connection coupled with an authentication nonce (or "cookie").
#[derive(Debug)]
enum UdsEmulation {
/// Cygwin socket emulation.
///
/// File format: `!<socket >%u %c %08x-%08x-%08x-%08x` (scanf style)
/// %u: local TCP port
/// %c: socket type ("s" for `SOCK_STREAM`, "d" for `SOCK_DGRAM`)
/// %08x-%08x-%08x-%08x: authentication nonce
///
/// Starting with client, both sides first exchange the 16-byte authentication
/// nonce, after which they exchange `ucred` structure (socket.h).
Cygwin,
/// Libassuan's custom socket emulation.
///
/// File format: `<PORT>\n<NONCE>`
/// PORT: textual local TCP port (e.g. "12345")
/// NONCE: raw 16-byte authentication nonce
///
/// After connecting, client has to authenticate itself by sending the
/// 16-byte authentication nonce.
Libassuan,
}
/// Reads socket connection info from a Windows file emulating a Unix socket.
///
/// Inspired by `read_port_and nonce` from assuan-socket.c.
fn read_port_and_nonce(fname: &Path) -> Result<Rendezvous> {
let mut file = File::open(fname)?;
// Socket connection info will be in either a <= 54 byte long Cygwin format
// or ~5+1+16 (modulo whitespace separators) custom libassuan format
let mut contents = Vec::with_capacity(64);
file.read_to_end(&mut contents)?;
read_port_and_nonce_from_string(&contents)
}
fn read_port_and_nonce_from_string(contents: &[u8]) -> Result<Rendezvous> {
let maybe_utf8 = std::str::from_utf8(contents).ok();
match maybe_utf8.and_then(|buf| buf.strip_prefix("!<socket >")) {
// libassuan's Cygwin compatible socket emulation.
// Format: "!<socket >%u %c %08x-%08x-%08x-%08x\x00" (scanf-like)
Some(buf) => {
let opt_skip_nul = buf.strip_suffix('\x00').unwrap_or(buf);
// Split into parts: port, kind of socket and nonce
let mut iter = opt_skip_nul.split_terminator(' ');
match (iter.next(), iter.next(), iter.next()) {
(Some(port), Some("s"), Some(nonce)) => {
let port = port.parse()?;
// This is wasteful but an allocation-free alternative is
// even more verbose and also does not warrant pulling a
// hex string parser dependency.
let nonce_chunks = nonce.split_terminator('-')
.map(|dword| u32::from_str_radix(dword, 16).map_err(Into::into))
.collect::<Result<Vec<_>>>();
let nonce = match nonce_chunks.ok().as_deref() {
Some(&[d0, d1, d2, d3, ..]) => {
let mut nonce = [0u8; 16];
nonce[0..4].copy_from_slice(&d0.to_ne_bytes());
nonce[4..8].copy_from_slice(&d1.to_ne_bytes());
nonce[8..12].copy_from_slice(&d2.to_ne_bytes());
nonce[12..16].copy_from_slice(&d3.to_ne_bytes());
nonce
},
_ => return Err(anyhow!("Couldn't parse Cygwin socket nonce: {}", nonce)),
};
Ok(Rendezvous { port, nonce, uds_emulation: UdsEmulation::Cygwin })
},
_ => Err(anyhow!("Couldn't parse Cygwin socket: {}", buf)),
}
},
// libassuan's own socket emulation
// Format: [<whitespace>?, port, .., '\n', <16 byte nonce>]
None => {
let pos = match contents.iter().position(|&x| x == b'\n') {
// Also ensure that there are exactly 16 bytes following
Some(pos) if pos + 1 + 16 == contents.len() => pos,
_ => return Err(anyhow!("Malformed socket description: {:?}", contents)),
};
let port = std::str::from_utf8(&contents[..pos])?.trim().parse()?;
let mut nonce = [0u8; 16];
nonce[..].copy_from_slice(&contents[pos + 1..]);
Ok(Rendezvous { port, nonce, uds_emulation: UdsEmulation::Libassuan })
}
}
}
#[cfg(test)]
mod tests {
use super::*;
#[test]
fn read_port_and_nonce() -> Result<()> {
let test_fn = super::read_port_and_nonce_from_string;
assert!(test_fn(b"\t 12 \n1234567890123456").is_ok());
assert!(test_fn(b"\t 12 \n123456789012345").is_err());
assert!(test_fn(b"\t 12 \n12345678901234567").is_err());
assert!(matches!(
test_fn(b" 12345\n\x00\x01\x02\x03\x04\x05\x06\x07\x08\x09\x0A\x0B\x0C\x0D\x0E\x0F"),
Ok(Rendezvous {
port: 12345,
uds_emulation: UdsEmulation::Libassuan,
nonce: [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15],
})
));
assert!
|
