shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2025-03-21 02:50:18 +03:00
Code

keyring-util: add new keyring-util.h helpers

Browse Source 
This adds to new helpers: keyring_read() for reading a key data from a
keyring entry, and TAKE_KEY_SERIAL which is what TAKE_FD is for fds, but
for key_serial_t.

The former is immediately used by ask-password-api.c
This commit is contained in:
Lennart Poettering 2021-11-02 18:20:12 +01:00
parent 7b9eaec069
commit cbae575e0f
4 changed files with 65 additions and 24 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
src/shared/ask-password-api.c
View File

@ -28,6 +28,7 @@
#include "fs-util.h"
#include "glyph-util.h"
#include "io-util.h"
#include "keyring-util.h"
#include "log.h"
#include "macro.h"
#include "memory-util.h"
@ -62,35 +63,18 @@ static int lookup_key(const char *keyname, key_serial_t *ret) {
}
static int retrieve_key(key_serial_t serial, char ***ret) {
size_t nfinal, m = 100;
_cleanup_(erase_and_freep) void *p = NULL;
char **l;
_cleanup_(erase_and_freep) char *pfinal = NULL;
size_t n;
int r;
assert(ret);
for (;;) {
_cleanup_(erase_and_freep) char *p = NULL;
long n;
r = keyring_read(serial, &p, &n);
if (r < 0)
return r;
p = new(char, m);
if (!p)
return -ENOMEM;
n = keyctl(KEYCTL_READ, (unsigned long) serial, (unsigned long) p, (unsigned long) m, 0);
if (n < 0)
return -errno;
if ((size_t) n <= m) {
nfinal = (size_t) n;
pfinal = TAKE_PTR(p);
break;
}
if (m > LONG_MAX / 2) /* overflow check */
return -ENOMEM;
m *= 2;
}
l = strv_parse_nulstr(pfinal, nfinal);
l = strv_parse_nulstr(p, n);
if (!l)
return -ENOMEM;

38
src/shared/keyring-util.c Normal file
View File

@ -0,0 +1,38 @@
/* SPDX-License-Identifier: LGPL-2.1-or-later */
#include "keyring-util.h"
#include "memory-util.h"
#include "missing_syscall.h"
int keyring_read(key_serial_t serial, void **ret, size_t *ret_size) {
size_t m = 100;
for (;;) {
_cleanup_(erase_and_freep) uint8_t *p = NULL;
long n;
p = new(uint8_t, m+1);
if (!p)
return -ENOMEM;
n = keyctl(KEYCTL_READ, (unsigned long) serial, (unsigned long) p, (unsigned long) m, 0);
if (n < 0)
return -errno;
if ((size_t) n <= m) {
p[n] = 0; /* NUL terminate, just in case */
if (ret)
*ret = TAKE_PTR(p);
if (ret_size)
*ret_size = n;
return 0;
}
if (m > (SIZE_MAX-1) / 2) /* overflow check */
return -ENOMEM;
m *= 2;
}
}

17
src/shared/keyring-util.h Normal file
View File

@ -0,0 +1,17 @@
/* SPDX-License-Identifier: LGPL-2.1-or-later */
#pragma once
#include <sys/types.h>
#include "missing_keyctl.h"
/* TAKE_FD but for key_serial_t instead of fds */
#define TAKE_KEY_SERIAL(key_serial) \
({ \
key_serial_t *_key_serialp_ = &(key_serial); \
key_serial_t _key_serial_ = *_key_serialp_; \
*_key_serialp_ = -1; \
_key_serial_; \
})
int keyring_read(key_serial_t serial, void **ret, size_t *ret_size);

2
src/shared/meson.build
View File

@ -173,6 +173,8 @@ shared_sources = files('''
json.h
kbd-util.c
kbd-util.h
keyring-util.h
keyring-util.c
killall.c
killall.h
label.c