5:47 a.m.
Some users don't like the idea of storing network credentials in plaintext
on the file system. As far as IWD goes the credential directory permissions
should be set up such that nobody but the owner/root have access but
nevertheless they are still plaintext.
For added security these credentials can be encrypted using a secret key.
In this patch the origination of the key does not matter, but in this
patch series IWD will support a systemd provided key.
The encryption itself will operate on the entire [Security] group as well
as all embedded groups. Once encrypted the [Security] group will be replaced
with two key/values:
EncryptedSalt - A random string of bytes used for the encryption
EncryptedSecurity - A string of bytes containing the encrypted [Security]
group, as well as all embedded groups.
After the profile has been encrypted these values should not be modified.
Note that any values added to [Security] after encryption has no effect.
Once the profile is encrypted there is no way to modify [Security] without
manually decrypting first, or just removing it entirely which effectively
treated a 'new' profile.
The encryption/decryption is done using AES-SIV with a salt value and the
network SSID as the IV.
Once a key is set any profiles opened will automatically be encrypted and
re-written to disk. Modules using network_storage_open will be provided
the decrypted profile, and will be unaware it was ever encrypted in the
first place. Similarly when network_storage_sync is called the profile
will by automatically encrypted and written to disk without the caller
needing to do anything special.
---
Makefile.am | 3 +-
src/storage.c | 239 +++++++++++++++++++++++++++++++++++++++++++++++---
src/storage.h | 4 +
3 files changed, 235 insertions(+), 11 deletions(-)
diff --git a/Makefile.am b/Makefile.am
index 89c053a6..35938d22 100644
--- a/Makefile.am
+++ b/Makefile.am
@@ -381,7 +381,8 @@ tools_hwsim_SOURCES = tools/hwsim.c src/mpdu.h \
src/nl80211util.h src/nl80211util.c \
src/storage.h src/storage.c \
src/common.h src/common.c \
- src/band.h src/band.c
+ src/band.h src/band.c \
+ src/crypto.h src/crypto.c
tools_hwsim_LDADD = $(ell_ldadd)
if DBUS_POLICY
diff --git a/src/storage.c b/src/storage.c
index 4b89c615..cc8fcda2 100644
--- a/src/storage.c
+++ b/src/storage.c
@@ -41,9 +41,11 @@
#include <sys/stat.h>
#include <ell/ell.h>
+#include "ell/useful.h"
#include "src/common.h"
#include "src/storage.h"
+#include "src/crypto.h"
#define STORAGE_DIR_MODE (S_IRUSR | S_IWUSR | S_IXUSR)
#define STORAGE_FILE_MODE (S_IRUSR | S_IWUSR)
@@ -52,6 +54,8 @@
static char *storage_path = NULL;
static char *storage_hotspot_path = NULL;
+static const uint8_t *system_key = NULL;
+static size_t system_key_len;
static int create_dirs(const char *filename)
{
@@ -347,10 +351,188 @@ const char *storage_network_ssid_from_path(const char *path,
return buf;
}
+/* Groups requiring encryption (if enabled) */
+static char *encrypt_groups[] = {
+ "Security",
+ NULL
+};
+
+static bool encrypt_group(const char *group)
+{
+ char **g;
+
+ for (g = encrypt_groups; *g; g++) {
+ if (!strcmp(*g, group))
+ return true;
+ }
+
+ return false;
+}
+
+/*
+ * Encrypt needed groups of 'settings' without modifying the object. Returns
+ * the entire settings object as data, with encrypted groups as a bytestring
+ * set as the value to [Security].EncryptedSecurity. This also includes any
+ * embedded groups.
+ *
+ * Note: If encryption is not enabled or there is no Security group this is
+ * effectively l_settings_to_data.
+ */
+static char *storage_encrypt(struct l_settings *settings, const char *ssid,
+ size_t *out_len)
+{
+ struct iovec ad[2];
+ uint8_t salt[32];
+ size_t len;
+ _auto_(l_free) struct l_settings *to_encrypt = NULL;
+ _auto_(l_free) struct l_settings *original = NULL;
+ _auto_(l_free) char *plaintext = NULL;
+ _auto_(l_free) uint8_t *enc = NULL;
+ _auto_(l_strv_free) char **groups = NULL;
+ char **i;
+
+ if (!system_key || !l_settings_has_group(settings, "Security"))
+ return l_settings_to_data(settings, out_len);
+
+ /*
+ * Make two copies of the settings: One will contain only data to be
+ * encrypted (to_encrypt), the other will contain data to be left
+ * unencrypted (original). At the end any encrypted data will be set
+ * into 'original' as EncryptedSecurity.
+ */
+ to_encrypt = l_settings_clone(settings);
+ original = l_settings_clone(settings);
+
+ groups = l_settings_get_groups(to_encrypt);
+ for (i = groups; *i; i++) {
+ if (encrypt_group(*i))
+ l_settings_remove_group(original, *i);
+ else
+ l_settings_remove_group(to_encrypt, *i);
+ }
+
+ l_settings_remove_embedded_groups(original);
+
+ plaintext = l_settings_to_data(to_encrypt, &len);
+ if (!plaintext)
+ return NULL;
+
+ l_getrandom(salt, 32);
+
+ ad[0].iov_base = (void *) salt;
+ ad[0].iov_len = 32;
+ ad[1].iov_base = (void *) ssid;
+ ad[1].iov_len = strlen(ssid);
+
+ enc = l_malloc(len + 16);
+
+ if (!aes_siv_encrypt(system_key, system_key_len, plaintext, len,
+ ad, 2, enc)) {
+ l_error("Could not encrypt [Security] group");
+ return NULL;
+ }
+
+ l_settings_set_bytes(original, "Security", "EncryptedSalt", salt,
32);
+ l_settings_set_bytes(original, "Security", "EncryptedSecurity",
+ enc, len + 16);
+
+ return l_settings_to_data(original, out_len);
+}
+
+/*
+ * Decrypt data in [Security].EncryptedSecurity. This data also includes
+ * embedded groups potentially. Once decrypted the data is put back into the
+ * object.
+ *
+ * Note: if encryption is not enabled or there is no Security group settings
+ * is not modified.
+ */
+bool __storage_decrypt(struct l_settings *settings, const char *ssid,
+ bool *changed)
+{
+ _auto_(l_settings_free) struct l_settings *security = NULL;
+ _auto_(l_free) uint8_t *encrypted = NULL;
+ _auto_(l_free) uint8_t *decrypted = NULL;
+ _auto_(l_free) uint8_t *salt = NULL;
+ _auto_(l_strv_free) char **embedded = NULL;
+ size_t elen, slen;
+ struct iovec ad[2];
+
+ if (!system_key)
+ goto done;
+
+ if (!l_settings_has_group(settings, "Security"))
+ goto done;
+
+ encrypted = l_settings_get_bytes(settings, "Security",
+ "EncryptedSecurity", &elen);
+ salt = l_settings_get_bytes(settings, "Security",
+ "EncryptedSalt", &slen);
+
+ /*
+ * Either profile has never been loaded after enabling encryption or is
+ * missing Encrypted{Salt,Security} values. If either are missing this
+ * profile is corrupted and must be fixed.
+ */
+ if (!(encrypted && salt)) {
+ /* Profile corrupted */
+ if (encrypted || salt) {
+ l_warn("Profile %s is corrupted reconfigure manually",
+ ssid);
+ return false;
+ }
+
+ if (changed)
+ *changed = true;
+
+ return true;
+ }
+
+ decrypted = l_malloc(elen - 16 + 1);
+
+ ad[0].iov_base = (void *)salt;
+ ad[0].iov_len = slen;
+ ad[1].iov_base = (void *)ssid;
+ ad[1].iov_len = strlen(ssid);
+
+ if (!aes_siv_decrypt(system_key, system_key_len, encrypted, elen,
+ ad, 2, decrypted)) {
+ l_error("Could not decrypt %s profile, did the secret change?",
+ ssid);
+ return false;
+ }
+
+ decrypted[elen - 16] = '\0';
+
+ /* Remove encrypted [Security], and copy the decrypted one */
+ l_settings_remove_group(settings, "Security");
+
+ /*
+ * Load decrypted data into existing settings. This is not how the API
+ * is indended to be used (since this could result in duplicate groups)
+ * but since the Security group was just removed and EncryptedSecurity
+ * should only contain a Security group its safe to use it this way.
+ */
+ if (!l_settings_load_from_data(settings, (const char *) decrypted,
+ elen - 16)) {
+ l_error("Could not load decrypted security group");
+ return false;
+ }
+
+done:
+ if (changed)
+ *changed = false;
+
+ return true;
+}
+
struct l_settings *storage_network_open(enum security type, const char *ssid)
{
struct l_settings *settings;
- char *path;
+ _auto_(l_free) char *path = NULL;
+ _auto_(l_free) char *encrypted = NULL;
+ size_t elen;
+ bool changed;
if (ssid == NULL)
return NULL;
@@ -358,13 +540,37 @@ struct l_settings *storage_network_open(enum security type, const
char *ssid)
path = storage_get_network_file_path(type, ssid);
settings = l_settings_new();
- if (!l_settings_load_from_file(settings, path)) {
- l_settings_free(settings);
- settings = NULL;
+ if (!l_settings_load_from_file(settings, path))
+ goto error;
+
+ if (type == SECURITY_NONE)
+ return settings;
+
+ if (!__storage_decrypt(settings, ssid, &changed))
+ goto error;
+
+ if (!changed)
+ return settings;
+
+ /* Profile never encrypted before. Encrypt and write to disk */
+ encrypted = storage_encrypt(settings, ssid, &elen);
+ if (!encrypted) {
+ l_error("Could not encrypt new profile %s", ssid);
+ goto error;
}
- l_free(path);
+ if (write_file(encrypted, elen, false, "%s", path) < 0) {
+ l_error("Failed to write out encrypted profile");
+ goto error;
+ }
+
+ l_debug("Encrypted a new profile %s", path);
+
return settings;
+
+error:
+ l_settings_free(settings);
+ return NULL;
}
int storage_network_touch(enum security type, const char *ssid)
@@ -388,15 +594,19 @@ int storage_network_touch(enum security type, const char *ssid)
void storage_network_sync(enum security type, const char *ssid,
struct l_settings *settings)
{
- char *data;
+ _auto_(l_free) char *data = NULL;
+ _auto_(l_free) char *path = NULL;
size_t length = 0;
- char *path;
path = storage_get_network_file_path(type, ssid);
- data = l_settings_to_data(settings, &length);
+ data = storage_encrypt(settings, ssid, &length);
+
+ if (!data) {
+ l_error("Unable to sync profile %s", ssid);
+ return;
+ }
+
write_file(data, length, true, "%s", path);
- l_free(data);
- l_free(path);
}
int storage_network_remove(enum security type, const char *ssid)
@@ -463,3 +673,12 @@ bool storage_is_file(const char *filename)
return false;
}
+
+/*
+ * Initialize a systemd encryption key for encrypting/decrypting credentials.
+ */
+void __storage_set_encryption_key(const uint8_t *key, size_t key_len)
+{
+ system_key = key;
+ system_key_len = key_len;
+}
diff --git a/src/storage.h b/src/storage.h
index e1ec2cd4..5e703bac 100644
--- a/src/storage.h
+++ b/src/storage.h
@@ -50,3 +50,7 @@ int storage_network_remove(enum security type, const char *ssid);
struct l_settings *storage_known_frequencies_load(void);
void storage_known_frequencies_sync(struct l_settings *known_freqs);
+
+void __storage_set_encryption_key(const uint8_t *key, size_t key_len);
+bool __storage_decrypt(struct l_settings *settings, const char *ssid,
+ bool *changed);
--
2.31.1
5:47 a.m.
New subject: [PATCH v2 2/5] main: add SystemdEncrypt option, and initialize key
Recently systemd added the ability to pass secret credentials to
services via LoadCredentialEncrypted/SetCredentialEncrypted. Once
set up the service is able to read the decrypted credentials from
a file. The file path is found in the environment variable
CREDENTIALS_DIRECTORY + an identifier. The value of SystemdEncrypt
should be set to the systemd key ID used when the credential was
created.
When SystemdEncrypt is set IWD will attempt to read the decrypted
secret from systemd. If at any point this fails warnings will be
printed but IWD will continue normally. Its expected that any failures
will result in the inability to connect to any networks which have
previously encrypted the passphrase/PSK without re-entering
the passphrase manually. This could happen, for example, if the
systemd secret was changed.
Once the secret is read in it is set into storage to be used for
profile encryption/decryption.
---
src/main.c | 54 ++++++++++++++++++++++++++++++++++++++++++++++++++++++
1 file changed, 54 insertions(+)
diff --git a/src/main.c b/src/main.c
index d0dbedc8..661303d1 100644
--- a/src/main.c
+++ b/src/main.c
@@ -29,6 +29,7 @@
#include <errno.h>
#include <getopt.h>
#include <signal.h>
+#include <sys/stat.h>
#include <ell/ell.h>
#include <ell/useful.h>
@@ -45,6 +46,7 @@
#include "src/storage.h"
#include "src/anqp.h"
#include "src/netconfig.h"
+#include "src/crypto.h"
#include "src/backtrace.h"
@@ -60,6 +62,7 @@ static const char *debugopt;
static bool developeropt;
static bool terminating;
static bool nl80211_complete;
+static uint8_t system_key[32];
static void main_loop_quit(struct l_timeout *timeout, void *user_data)
{
@@ -397,6 +400,55 @@ done:
return r;
}
+/*
+ * Initialize a systemd encryption key for encrypting/decrypting credentials.
+ */
+static void setup_system_key(void)
+{
+ const char *cred_dir;
+ ssize_t len;
+ struct stat st;
+ _auto_(l_free) uint8_t *key = NULL;
+ _auto_(l_free) char *path = NULL;
+ _auto_(l_free) char *key_id = NULL;
+
+ key_id = l_settings_get_string(iwd_config, "General",
"SystemdEncrypt");
+ if (!key_id)
+ return;
+
+ cred_dir = getenv("CREDENTIALS_DIRECTORY");
+ if (!cred_dir) {
+ l_warn("SystemdEncrypt enabled, but CREDENTIALS_DIRECTORY not "
+ "set, check iwd.service file");
+ return;
+ }
+
+ path = l_strdup_printf("%s/%s", cred_dir, key_id);
+
+ if (stat(path, &st) < 0) {
+ l_warn("SystemdEncrypt enabled, but could not stat %s",
+ path);
+ return;
+ }
+
+ key = l_malloc(st.st_size);
+
+ len = read_file(key, st.st_size, "%s", path);
+ if (len < 0) {
+ l_warn("SystemdEncrypt enabled, but reading %s failed (%ld)",
+ path, len);
+ return;
+ }
+
+ if (!hkdf_expand(L_CHECKSUM_SHA256, key, st.st_size, "IWD System Key",
+ system_key, sizeof(system_key))) {
+ l_warn("Failed to expand system key");
+ return;
+ }
+
+ __storage_set_encryption_key(system_key, sizeof(system_key));
+}
+
int main(int argc, char *argv[])
{
int exit_status;
@@ -529,6 +581,8 @@ int main(int argc, char *argv[])
l_dbus_set_disconnect_handler(dbus, dbus_disconnected, NULL, NULL);
dbus_init(dbus);
+ setup_system_key();
+
exit_status = l_main_run_with_signal(signal_handler, NULL);
iwd_modules_exit();
--
2.31.1
5:47 a.m.
New subject: [PATCH v2 3/5] tools: add decrypt-profile tool
This tool will decrypt an IWD network profile which was previously
encrypted using a systemd provided key. Either a text passphrase
can be provided (--pass) or a file containing the secret (--file).
This can be useful for debugging, or recovering an encrypted
profile after enabling SystemdEncrypt.
---
Makefile.am | 8 +-
tools/decrypt-profile.c | 232 ++++++++++++++++++++++++++++++++++++++++
2 files changed, 239 insertions(+), 1 deletion(-)
create mode 100644 tools/decrypt-profile.c
diff --git a/Makefile.am b/Makefile.am
index 35938d22..a106b56f 100644
--- a/Makefile.am
+++ b/Makefile.am
@@ -362,7 +362,7 @@ man_MANS += wired/ead.8
endif
endif
-noinst_PROGRAMS += tools/probe-req
+noinst_PROGRAMS += tools/probe-req tools/decrypt-profile
tools_probe_req_SOURCES = tools/probe-req.c src/mpdu.h src/mpdu.c \
src/ie.h src/ie.c \
@@ -372,6 +372,12 @@ tools_probe_req_SOURCES = tools/probe-req.c src/mpdu.h src/mpdu.c \
src/band.h src/band.c
tools_probe_req_LDADD = $(ell_ldadd)
+tools_decrypt_profile_SOURCES = tools/decrypt-profile.c \
+ src/common.h src/common.c \
+ src/crypto.h src/crypto.c \
+ src/storage.h src/storage.c
+tools_decrypt_profile_LDADD = ${ell_ldadd}
+
if HWSIM
bin_PROGRAMS += tools/hwsim
diff --git a/tools/decrypt-profile.c b/tools/decrypt-profile.c
new file mode 100644
index 00000000..80942dc6
--- /dev/null
+++ b/tools/decrypt-profile.c
@@ -0,0 +1,232 @@
+/*
+ *
+ * Wireless daemon for Linux
+ *
+ * Copyright (C) 2022 Intel Corporation. All rights reserved.
+ *
+ * This library is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; either
+ * version 2.1 of the License, or (at your option) any later version.
+ *
+ * This library is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public
+ * License along with this library; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
+ *
+ */
+
+#include <stdio.h>
+#include <unistd.h>
+#include <libgen.h>
+#include <fcntl.h>
+#include <getopt.h>
+#include <sys/stat.h>
+#include <ell/ell.h>
+
+#include "ell/useful.h"
+
+#include "src/storage.h"
+
+static void usage(void)
+{
+ printf("decrypt-profile - Decrypt a network profile\n"
+ "Usage:\n");
+ printf("\tdecrypt-profile [--pass | --file] [OPTIONS]\n");
+ printf("\n\tEither --pass or --file must be provided. The profile\n");
+ printf("\twill be read from stdin or from --infile.\n");
+ printf("\tThe --ssid argument must be used if the SSID cannot be\n");
+ printf("\tinferred from the input file\n\n");
+ printf("Options:\n"
+ "\t-p, --pass Password/key used to encrypt\n"
+ "\t-f, --file File containing key\n"
+ "\t-s, --ssid SSID for associated profile (will\n"
+ "\t be inferred from --infile if not\n"
+ "\t provided)\n"
+ "\t-i, --infile Input profile (if stdin is not used)\n"
+ "\t-o, --outfile Output file for decrypted profile\n"
+ "\t-h, --help Show help options\n");
+ printf("\n");
+}
+
+static const struct option main_options[] = {
+ { "pass", required_argument, NULL, 'p' },
+ { "file", required_argument, NULL, 'f' },
+ { "infile", required_argument, NULL, 'i' },
+ { "outfile", required_argument, NULL, 'o' },
+ { "ssid", required_argument, NULL, 's' },
+ { "help", no_argument, NULL, 'h' },
+ { }
+};
+
+static uint8_t *secret_from_file(const char *file, size_t *len)
+{
+ uint8_t *key;
+ struct stat st;
+
+ if (stat(file, &st) < 0)
+ return NULL;
+
+ key = l_malloc(st.st_size);
+
+ if (read_file(key, st.st_size, "%s", file) < 0) {
+ l_free(key);
+ return NULL;
+ }
+
+ *len = st.st_size;
+
+ return key;
+}
+
+int main(int argc, char *argv[])
+{
+ const char *pass = NULL;
+ const char *file = NULL;
+ const char *infile = NULL;
+ const char *outfile = NULL;
+ _auto_(l_free) char *ssid = NULL;
+ _auto_(l_free) char *decrypted = NULL;
+ _auto_(l_settings_free) struct l_settings *settings = NULL;
+ _auto_(l_free) uint8_t *secret = NULL;
+ size_t secret_len = 0;
+ int ret = EXIT_FAILURE;
+ char profile[BUFSIZ];
+ ssize_t len = 0;
+ char *line;
+
+ if (isatty(0))
+ goto done_reading;
+
+ while ((line = fgets(profile + len, sizeof(profile) - len, stdin)))
+ len += strlen(profile + len);
+
+done_reading:
+ for (;;) {
+ int opt;
+
+ opt = getopt_long(argc, argv, "pfhio",
+ main_options, NULL);
+ if (opt < 0)
+ break;
+
+ switch (opt) {
+ case 'p':
+ pass = optarg;
+ break;
+ case 'f':
+ file = optarg;
+ break;
+ case 'i':
+ infile = optarg;
+ break;
+ case 'o':
+ outfile = optarg;
+ break;
+ case 's':
+ ssid = l_strdup(optarg);
+ break;
+ case 'h':
+ usage();
+ return EXIT_SUCCESS;
+ default:
+ goto failed;
+ }
+ }
+
+ if (!file && !pass) {
+ usage();
+ goto failed;
+ }
+
+ if (!len && !infile) {
+ printf("No input file (use stdin or --infile)\n\n");
+ usage();
+ goto failed;
+ }
+
+ if (len && infile) {
+ printf("Use only stdin or --infile for input profile\n\n");
+ usage();
+ goto failed;
+ }
+
+ if (infile) {
+ /* Try and detect SSID from input file */
+ if (!ssid) {
+ char *dot;
+
+ ssid = l_strdup(basename((char *)infile));
+ /* remove extension */
+ dot = strchr(ssid, '.');
+ if (!dot)
+ goto no_ssid;
+
+ *dot = '\0';
+ }
+
+ len = read_file(profile, sizeof(profile), "%s", infile);
+ if (len < 0) {
+ printf("Could not read from %s (%ld)\n", infile, len);
+ goto failed;
+ }
+ }
+
+ if (!ssid) {
+no_ssid:
+ printf("Can't detect SSID from input source (use --ssid)\n");
+ goto failed;
+ }
+
+ if (pass) {
+ secret_len = strlen(pass);
+ secret = l_memdup(pass, secret_len);
+ } else
+ secret = secret_from_file(file, &secret_len);
+
+ __storage_set_encryption_key(secret, secret_len);
+
+ settings = l_settings_new();
+
+ if (!l_settings_load_from_data(settings, profile, len)) {
+ printf("Profile is not formatted correctly\n");
+ goto failed;
+ }
+
+ if (!__storage_decrypt(settings, ssid, NULL)) {
+ printf("Unable to decrypt profile\n");
+ goto failed;
+ }
+
+ decrypted = l_settings_to_data(settings, (size_t *)&len);
+
+ if (!outfile)
+ printf("%s\n", decrypted);
+ else {
+ int fd = open(outfile, O_CREAT | O_WRONLY, S_IRUSR | S_IWUSR);
+
+ if (fd < 0) {
+ printf("Unable to open %s (%d)\n\n", outfile, fd);
+ close(fd);
+ goto failed;
+ }
+
+ len = write(fd, decrypted, len);
+
+ close(fd);
+
+ if (len < 0) {
+ printf("Unable to write to %s (%ld)\n\n", outfile, len);
+ goto failed;
+ }
+ }
+
+ ret = EXIT_SUCCESS;
+
+failed:
+ return ret;
+}
--
2.31.1
6:39 a.m.
New subject: [PATCH v2 3/5] tools: add decrypt-profile tool
Hi James,
On 2/2/22 12:47, James Prestwood wrote:
This tool will decrypt an IWD network profile which was previously
encrypted using a systemd provided key. Either a text passphrase
can be provided (--pass) or a file containing the secret (--file).
You may want to provide some usage examples in the commit description. Maybe
even mention stdin/--infile and stdout/-outfile use.
This can be useful for debugging, or recovering an encrypted
profile after enabling SystemdEncrypt.
---
Makefile.am | 8 +-
tools/decrypt-profile.c | 232 ++++++++++++++++++++++++++++++++++++++++
2 files changed, 239 insertions(+), 1 deletion(-)
create mode 100644 tools/decrypt-profile.c
diff --git a/Makefile.am b/Makefile.am
index 35938d22..a106b56f 100644
--- a/Makefile.am
+++ b/Makefile.am
@@ -362,7 +362,7 @@ man_MANS += wired/ead.8
endif
endif
-noinst_PROGRAMS += tools/probe-req
+noinst_PROGRAMS += tools/probe-req tools/decrypt-profile
Should this be an installed binary? Something like iwd-decrypt-profile?
+#include <stdio.h>
+#include <unistd.h>
+#include <libgen.h> > +#include <fcntl.h>
Isn't sys/stat.h enough? In any case, you might want to group related #includes
together.
+#include <getopt.h>
+#include <sys/stat.h>
+#include <ell/ell.h>
+
+#include "ell/useful.h"
+
+#include "src/storage.h"
+
<snip>
+int main(int argc, char *argv[])
+{
+ const char *pass = NULL;
+ const char *file = NULL;
+ const char *infile = NULL;
+ const char *outfile = NULL;
+ _auto_(l_free) char *ssid = NULL;
+ _auto_(l_free) char *decrypted = NULL;
+ _auto_(l_settings_free) struct l_settings *settings = NULL;
+ _auto_(l_free) uint8_t *secret = NULL;
+ size_t secret_len = 0;
+ int ret = EXIT_FAILURE;
+ char profile[BUFSIZ];
+ ssize_t len = 0;
+ char *line;
+
+ if (isatty(0))
+ goto done_reading;
Err, why is the command line arguments not being parsed first? I mean you might
want to use 'decrypt-profile --help' ?
+
+ while ((line = fgets(profile + len, sizeof(profile) - len, stdin)))
+ len += strlen(profile + len);
You should check whether infile was specified prior to attempting this.
+
+done_reading:
+ for (;;) {
+ int opt;
+
+ opt = getopt_long(argc, argv, "pfhio",
+ main_options, NULL);
+ if (opt < 0)
+ break;
+
+ switch (opt) {
+ case 'p':
+ pass = optarg;
+ break;
+ case 'f':
+ file = optarg;
+ break;
+ case 'i':
+ infile = optarg;
+ break;
+ case 'o':
+ outfile = optarg;
+ break;
+ case 's':
+ ssid = l_strdup(optarg);
+ break;
+ case 'h':
+ usage();
+ return EXIT_SUCCESS;
+ default:
+ goto failed;
+ }
+ }
+
+ if (!file && !pass) {
+ usage();
+ goto failed;
+ }
+
So if infile specified, read that. Otherwise, if no --ssid, fail. Read
stdin...
+ if (!len && !infile) {
+ printf("No input file (use stdin or --infile)\n\n");
+ usage();
+ goto failed;
+ }
+
+ if (len && infile) {
+ printf("Use only stdin or --infile for input profile\n\n");
+ usage();
+ goto failed;
+ }
+
Check for ssid and override that.
+ if (infile) {
+ /* Try and detect SSID from input file */
+ if (!ssid) {
+ char *dot;
+
+ ssid = l_strdup(basename((char *)infile));
+ /* remove extension */
+ dot = strchr(ssid, '.');
+ if (!dot)
+ goto no_ssid;
+
+ *dot = '\0';
+ }
+
That isn't how ssids are stored in the profile. You're better off relying on
storage_network_ssid_from_path() from storage.c here.
+ len = read_file(profile, sizeof(profile), "%s",
infile);
+ if (len < 0) {
+ printf("Could not read from %s (%ld)\n", infile, len);
+ goto failed;
+ }
Why not rely on the new functions from patch 1? We could introduce a full-path
version of storage_network_open maybe.
+ }
+
+ if (!ssid) {
+no_ssid:
+ printf("Can't detect SSID from input source (use --ssid)\n");
+ goto failed;
+ }
+
+ if (pass) {
+ secret_len = strlen(pass);
+ secret = l_memdup(pass, secret_len);
Why do we need the memdup?
+ } else
+ secret = secret_from_file(file, &secret_len);
This could actually be an mmap instead.
+
+ __storage_set_encryption_key(secret, secret_len);
+
+ settings = l_settings_new();
+
+ if (!l_settings_load_from_data(settings, profile, len)) {
+ printf("Profile is not formatted correctly\n");
+ goto failed;
+ }
+
+ if (!__storage_decrypt(settings, ssid, NULL)) {
Note that you will also get errors from this function as well. So I'm not sure
if you want to re-design it to not print unnecessarily.
+ printf("Unable to decrypt profile\n");
+ goto failed;
+ }
+
+ decrypted = l_settings_to_data(settings, (size_t *)&len);
+
+ if (!outfile)
+ printf("%s\n", decrypted);
+ else {
+ int fd = open(outfile, O_CREAT | O_WRONLY, S_IRUSR | S_IWUSR);
+
+ if (fd < 0) {
+ printf("Unable to open %s (%d)\n\n", outfile, fd);
+ close(fd);
+ goto failed;
+ }
+
+ len = write(fd, decrypted, len);
+
+ close(fd);
+
+ if (len < 0) {
+ printf("Unable to write to %s (%ld)\n\n", outfile, len);
+ goto failed;
+ }
+ }
+
+ ret = EXIT_SUCCESS;
+
+failed:
+ return ret;
+}
Regards,
-Denis
6:57 a.m.
New subject: [PATCH v2 3/5] tools: add decrypt-profile tool
On Wed, 2022-02-02 at 13:39 -0600, Denis Kenzior wrote:
Hi James,
On 2/2/22 12:47, James Prestwood wrote:
> This tool will decrypt an IWD network profile which was previously
> encrypted using a systemd provided key. Either a text passphrase
> can be provided (--pass) or a file containing the secret (--file).
You may want to provide some usage examples in the commit
description. Maybe
even mention stdin/--infile and stdout/-outfile use.
>
> This can be useful for debugging, or recovering an encrypted
> profile after enabling SystemdEncrypt.
> ---
> Makefile.am | 8 +-
> tools/decrypt-profile.c | 232
> ++++++++++++++++++++++++++++++++++++++++
> 2 files changed, 239 insertions(+), 1 deletion(-)
> create mode 100644 tools/decrypt-profile.c
>
> diff --git a/Makefile.am b/Makefile.am
> index 35938d22..a106b56f 100644
> --- a/Makefile.am
> +++ b/Makefile.am
> @@ -362,7 +362,7 @@ man_MANS += wired/ead.8
> endif
> endif
>
> -noinst_PROGRAMS += tools/probe-req
> +noinst_PROGRAMS += tools/probe-req tools/decrypt-profile
Should this be an installed binary? Something like iwd-decrypt-
profile?
Sure, is there anything else I need to do for that? or anything named
iwd-* gets installed?
> +#include <stdio.h>
> +#include <unistd.h>
> +#include <libgen.h> > +#include <fcntl.h>
Isn't sys/stat.h enough? In any case, you might want to group related
#includes
together.
libgen.h is for basename(). The pattern I usually follow groups all
system includes together, then ELL, then locals, so I could put a
newline before <ell/ell.h> but I'm not sure how else I could group the
system includes...
> +#include <getopt.h>
> +#include <sys/stat.h>
> +#include <ell/ell.h>
> +
> +#include "ell/useful.h"
> +
> +#include "src/storage.h"
> +
<snip>
> +int main(int argc, char *argv[])
> +{
> + const char *pass = NULL;
> + const char *file = NULL;
> + const char *infile = NULL;
> + const char *outfile = NULL;
> + _auto_(l_free) char *ssid = NULL;
> + _auto_(l_free) char *decrypted = NULL;
> + _auto_(l_settings_free) struct l_settings *settings = NULL;
> + _auto_(l_free) uint8_t *secret = NULL;
> + size_t secret_len = 0;
> + int ret = EXIT_FAILURE;
> + char profile[BUFSIZ];
> + ssize_t len = 0;
> + char *line;
> +
> + if (isatty(0))
> + goto done_reading;
Err, why is the command line arguments not being parsed first? I
mean you might
want to use 'decrypt-profile --help' ?
> +
> + while ((line = fgets(profile + len, sizeof(profile) - len,
> stdin)))
> + len += strlen(profile + len);
You should check whether infile was specified prior to attempting
this.
> +
> +done_reading:
> + for (;;) {
> + int opt;
> +
> + opt = getopt_long(argc, argv, "pfhio",
> + main_options, NULL);
> + if (opt < 0)
> + break;
> +
> + switch (opt) {
> + case 'p':
> + pass = optarg;
> + break;
> + case 'f':
> + file = optarg;
> + break;
> + case 'i':
> + infile = optarg;
> + break;
> + case 'o':
> + outfile = optarg;
> + break;
> + case 's':
> + ssid = l_strdup(optarg);
> + break;
> + case 'h':
> + usage();
> + return EXIT_SUCCESS;
> + default:
> + goto failed;
> + }
> + }
> +
> + if (!file && !pass) {
> + usage();
> + goto failed;
> + }
> +
So if infile specified, read that. Otherwise, if no --ssid, fail.
Read stdin...
> + if (!len && !infile) {
> + printf("No input file (use stdin or --
> infile)\n\n");
> + usage();
> + goto failed;
> + }
> +
> + if (len && infile) {
> + printf("Use only stdin or --infile for input
> profile\n\n");
> + usage();
> + goto failed;
> + }
> +
Check for ssid and override that.
> + if (infile) {
> + /* Try and detect SSID from input file */
> + if (!ssid) {
> + char *dot;
> +
> + ssid = l_strdup(basename((char *)infile));
> + /* remove extension */
> + dot = strchr(ssid, '.');
> + if (!dot)
> + goto no_ssid;
> +
> + *dot = '\0';
> + }
> +
That isn't how ssids are stored in the profile. You're better off
relying on
storage_network_ssid_from_path() from storage.c here.
Ok, that one is actually safe to use so I'll use it instead.
> + len = read_file(profile, sizeof(profile), "%s",
> infile);
> + if (len < 0) {
> + printf("Could not read from %s (%ld)\n",
> infile, len);
> + goto failed;
> + }
Why not rely on the new functions from patch 1? We could introduce a
full-path
version of storage_network_open maybe.
We could if you want. I just didn't want to add another API.
> + }
> +
> + if (!ssid) {
> +no_ssid:
> + printf("Can't detect SSID from input source (use --
> ssid)\n");
> + goto failed;
> + }
> +
> + if (pass) {
> + secret_len = strlen(pass);
> + secret = l_memdup(pass, secret_len);
Why do we need the memdup?
Consistency with secret_from_file(), but yes, mmap will avoid the need
for this.
> + } else
> + secret = secret_from_file(file, &secret_len);
This could actually be an mmap instead.
> +
> + __storage_set_encryption_key(secret, secret_len);
> +
> + settings = l_settings_new();
> +
> + if (!l_settings_load_from_data(settings, profile, len)) {
> + printf("Profile is not formatted correctly\n");
> + goto failed;
> + }
> +
> + if (!__storage_decrypt(settings, ssid, NULL)) {
Note that you will also get errors from this function as well. So
I'm not sure
if you want to re-design it to not print unnecessarily.
__storage_decrypt() shouldn't print anything in this context since I
haven't enabled logging (previous patch sets did though).
> + printf("Unable to decrypt profile\n");
> + goto failed;
> + }
> +
> + decrypted = l_settings_to_data(settings, (size_t *)&len);
> +
> + if (!outfile)
> + printf("%s\n", decrypted);
> + else {
> + int fd = open(outfile, O_CREAT | O_WRONLY, S_IRUSR
> | S_IWUSR);
> +
> + if (fd < 0) {
> + printf("Unable to open %s (%d)\n\n",
> outfile, fd);
> + close(fd);
> + goto failed;
> + }
> +
> + len = write(fd, decrypted, len);
> +
> + close(fd);
> +
> + if (len < 0) {
> + printf("Unable to write to %s (%ld)\n\n",
> outfile, len);
> + goto failed;
> + }
> + }
> +
> + ret = EXIT_SUCCESS;
> +
> +failed:
> + return ret;
> +}
>
Regards,
-Denis
7:06 a.m.
New subject: [PATCH v2 3/5] tools: add decrypt-profile tool
Hi James,
>> +#include <stdio.h>
>> +#include <unistd.h>
>> +#include <libgen.h> > +#include <fcntl.h>
>
> Isn't sys/stat.h enough? In any case, you might want to group related
> #includes
> together.
libgen.h is for basename(). The pattern I usually follow groups all
I meant for fcntl.h and stat.h. They usually go together. Having libgen.h in
between was sort of unusual.
>
> Note that you will also get errors from this function as well. So
> I'm not sure
> if you want to re-design it to not print unnecessarily.
__storage_decrypt() shouldn't print anything in this context since I
haven't enabled logging (previous patch sets did though).
Ok fair enough. I couldn't recall whether l_error was always printed or not.
Still, it may be better to return a -ERRNO and print based on that from a higher
level function.
Regards,
-Denis
5:47 a.m.
New subject: [PATCH v2 4/5] doc: document SystemdEncrypt
---
src/iwd.config.rst | 16 ++++++++++++++++
src/iwd.network.rst | 6 +++++-
2 files changed, 21 insertions(+), 1 deletion(-)
diff --git a/src/iwd.config.rst b/src/iwd.config.rst
index 54943702..a3d19fe5 100644
--- a/src/iwd.config.rst
+++ b/src/iwd.config.rst
@@ -188,6 +188,22 @@ The group ``[General]`` contains general settings.
by the kernel so if kernels/drivers exist which don't support OCV it can
be disabled here.
+ * - SystemdEncrypt
+ - Value: Systemd key ID
+
+ Enables network profile encryption using a systemd provided secret key.
+ Once enabled all PSK/8021x network profiles will be encrypted
+ automatically. Once the profile is encrypted there is no way of going
+ back using IWD alone. A tool, decrypt-profile, is provided assuming the
+ secret is known which will decrypt a profile. This decrypted profile
+ could manually be set to /var/lib/iwd to 'undo' any profile encryption,
+ but its going to be a manual process.
+
+ Setting up systemd to provide the secret is left up to the user as IWD
+ has no way of performing this automatically. The systemd options required
+ are LoadCredentialEncrypted or SetCredentialEncrypted, and the secret
+ identifier should be named whatever SystemdEncrypt is set to.
+
Network
-------
diff --git a/src/iwd.network.rst b/src/iwd.network.rst
index e3d1a90a..34f8de1a 100644
--- a/src/iwd.network.rst
+++ b/src/iwd.network.rst
@@ -179,7 +179,11 @@ Network Authentication Settings
-------------------------------
The group ``[Security]`` contains settings for Wi-Fi security and
-authentication configuration.
+authentication configuration. This group can be encrypted by enabling
+``SystemdEncrypt``, see *iwd.config* for details on this option. If this section
+is encrypted (only contains EncryptedSalt/EncryptedSecurity) it should not be
+modified. Modifying these values will result in the inability to connect to that
+network.
.. list-table::
:header-rows: 0
--
2.31.1
5:47 a.m.
New subject: [PATCH v2 5/5] auto-t: add test for encrypted profiles
---
.../testEncryptedProfiles/connection_test.py | 154 ++++++++++++++++++
autotests/testEncryptedProfiles/hw.conf | 6 +
autotests/testEncryptedProfiles/iwd-secret | 1 +
autotests/testEncryptedProfiles/main.conf | 2 +
autotests/testEncryptedProfiles/ssidCCMP.conf | 10 ++
autotests/testEncryptedProfiles/ssidCCMP.psk | 2 +
6 files changed, 175 insertions(+)
create mode 100644 autotests/testEncryptedProfiles/connection_test.py
create mode 100644 autotests/testEncryptedProfiles/hw.conf
create mode 100644 autotests/testEncryptedProfiles/iwd-secret
create mode 100644 autotests/testEncryptedProfiles/main.conf
create mode 100644 autotests/testEncryptedProfiles/ssidCCMP.conf
create mode 100644 autotests/testEncryptedProfiles/ssidCCMP.psk
diff --git a/autotests/testEncryptedProfiles/connection_test.py
b/autotests/testEncryptedProfiles/connection_test.py
new file mode 100644
index 00000000..dd4892ca
--- /dev/null
+++ b/autotests/testEncryptedProfiles/connection_test.py
@@ -0,0 +1,154 @@
+#!/usr/bin/python3
+
+import unittest
+import sys
+
+sys.path.append('../util')
+import iwd
+import os
+from iwd import IWD
+from iwd import NetworkType
+from iwd import PSKAgent
+
+class Test(unittest.TestCase):
+ def profile_is_encrypted(self, profile):
+ with open('/tmp/iwd/' + profile) as f:
+ contents = f.read()
+
+ if 'Passphrase' in contents:
+ return False
+
+ return True
+
+ def validate(self, wd):
+ devices = wd.list_devices(1)
+ device = devices[0]
+
+ ordered_network = device.get_ordered_network('ssidCCMP')
+
+ self.assertEqual(ordered_network.type, NetworkType.psk)
+
+ condition = 'not obj.connected'
+ wd.wait_for_object_condition(ordered_network.network_object, condition)
+
+ ordered_network.network_object.connect()
+
+ condition = 'obj.state == DeviceState.connected'
+ wd.wait_for_object_condition(device, condition)
+
+ device.disconnect()
+
+ condition = 'not obj.connected'
+ wd.wait_for_object_condition(ordered_network.network_object, condition)
+
+ # Tests that an existing plaintext profile gets encrypted
+ def test_new_profile(self):
+ IWD.copy_to_storage('ssidCCMP.psk')
+
+ mtime = os.path.getmtime('/tmp/iwd/' + 'ssidCCMP.psk')
+ self.assertFalse(self.profile_is_encrypted('ssidCCMP.psk'))
+
+ wd = IWD(True)
+
+ # Make sure profile was accepted
+ condition = 'len(obj.list_known_networks()) == 1'
+ wd.wait_for_object_condition(wd, condition)
+
+ # Check the file was modified (should be encrypted now)
+ self.assertNotEqual(mtime, os.path.getmtime('/tmp/iwd/' +
'ssidCCMP.psk'))
+
+ self.validate(wd)
+
+ self.assertTrue(self.profile_is_encrypted('ssidCCMP.psk'))
+
+ # Tests that a new connection with agent gets written to an encrypted profile
+ def test_agent_profile(self):
+ wd = IWD(True)
+
+ psk_agent = PSKAgent("secret123")
+ wd.register_psk_agent(psk_agent)
+
+ with self.assertRaises(FileNotFoundError):
+ self.profile_is_encrypted('ssidCCMP.psk')
+
+ self.validate(wd)
+
+ self.assertTrue(self.profile_is_encrypted('ssidCCMP.psk'))
+
+ wd.unregister_psk_agent(psk_agent)
+
+ # Tests that an invalid profile gets re-written after an agent request
+ def test_invalid_profile_rewritten(self):
+ bad_config = '[Security]\nPassphrase=incorrect\n'
+ os.system('echo "%s" > /tmp/iwd/ssidCCMP.psk' % bad_config)
+
+ wd = IWD(True)
+
+ condition = 'len(obj.list_known_networks()) == 1'
+ wd.wait_for_object_condition(wd, condition)
+
+ # IWD should still encrypt the profile automatically
+ self.assertTrue(self.profile_is_encrypted('ssidCCMP.psk'))
+
+ # This should fail
+ with self.assertRaises(iwd.FailedEx):
+ self.validate(wd)
+
+ psk_agent = PSKAgent("secret123")
+ wd.register_psk_agent(psk_agent)
+
+ self.validate(wd)
+
+ self.assertTrue(self.profile_is_encrypted('ssidCCMP.psk'))
+
+ # Tests that a profile that doesn't decrypt wont become a known network
+ def test_decryption_failure(self):
+ bad_config = \
+'''
+[Security]
+EncryptedSalt=000102030405060708090a0b0c0d0e0f
+EncryptedSecurity=aabbccddeeff00112233445566778899
+'''
+ os.system('echo "%s" > /tmp/iwd/ssidCCMP.psk' % bad_config)
+
+ wd = IWD(True)
+
+ self.assertEqual(wd.list_known_networks(), [])
+
+ def test_runtime_profile(self):
+ wd = IWD(True)
+
+ self.assertEqual(wd.list_known_networks(), [])
+
+ # Add profile after IWD starts
+ IWD.copy_to_storage('ssidCCMP.psk')
+
+ self.validate(wd)
+
+ # Should now be encrypted
+ self.assertTrue(self.profile_is_encrypted('ssidCCMP.psk'))
+
+ with open('/tmp/iwd/ssidCCMP.psk') as f:
+ profile = f.read()
+
+ # Edit the profile, corrupting it
+ profile.replace('EncryptedSecurity=', 'EncryptedSecurity=00')
+
+ devices = wd.list_devices(1)
+ device = devices[0]
+ condition = 'obj.state == DeviceState.disconnected'
+ wd.wait_for_object_condition(device, condition)
+
+ def tearDown(self):
+ IWD.clear_storage()
+
+ @classmethod
+ def setUpClass(cls):
+ os.environ['CREDENTIALS_DIRECTORY'] = '/tmp'
+
+ @classmethod
+ def tearDownClass(cls):
+ IWD.clear_storage()
+
+if __name__ == '__main__':
+ unittest.main(exit=True)
diff --git a/autotests/testEncryptedProfiles/hw.conf
b/autotests/testEncryptedProfiles/hw.conf
new file mode 100644
index 00000000..de81e1e2
--- /dev/null
+++ b/autotests/testEncryptedProfiles/hw.conf
@@ -0,0 +1,6 @@
+[SETUP]
+num_radios=2
+start_iwd=0
+
+[HOSTAPD]
+rad0=ssidCCMP.conf
diff --git a/autotests/testEncryptedProfiles/iwd-secret
b/autotests/testEncryptedProfiles/iwd-secret
new file mode 100644
index 00000000..c2afca48
--- /dev/null
+++ b/autotests/testEncryptedProfiles/iwd-secret
@@ -0,0 +1 @@
+secret123
diff --git a/autotests/testEncryptedProfiles/main.conf
b/autotests/testEncryptedProfiles/main.conf
new file mode 100644
index 00000000..35d40c5e
--- /dev/null
+++ b/autotests/testEncryptedProfiles/main.conf
@@ -0,0 +1,2 @@
+[General]
+SystemdEncrypt=iwd-secret
diff --git a/autotests/testEncryptedProfiles/ssidCCMP.conf
b/autotests/testEncryptedProfiles/ssidCCMP.conf
new file mode 100644
index 00000000..c79f5e55
--- /dev/null
+++ b/autotests/testEncryptedProfiles/ssidCCMP.conf
@@ -0,0 +1,10 @@
+hw_mode=g
+channel=1
+ssid=ssidCCMP
+
+wpa=2
+wpa_pairwise=CCMP
+wpa_passphrase=secret123
+
+ieee80211w=2
+wpa_key_mgmt=WPA-PSK-SHA256
diff --git a/autotests/testEncryptedProfiles/ssidCCMP.psk
b/autotests/testEncryptedProfiles/ssidCCMP.psk
new file mode 100644
index 00000000..abafdb66
--- /dev/null
+++ b/autotests/testEncryptedProfiles/ssidCCMP.psk
@@ -0,0 +1,2 @@
+[Security]
+Passphrase=secret123
--
2.31.1
228
days inactive
228
days old
7 comments
2 participants
participants (2)
-
Denis Kenzior -
James Prestwood