ref: bf7e8777f391caa82705a0b64709a95672d2632c
dir: /sys/src/cmd/ip/sol.c/
/* intel amt serial-over-lan console */
#include <u.h>
#include <libc.h>
#include <bio.h>
#include <libsec.h>
#include <auth.h>
enum {
MAX_TRANSMIT_BUFFER = 15000,
TRANSMIT_BUFFER_TIMEOUT = 100,
TRANSMIT_OVERFLOW_TIMEOUT = 0,
HOST_SESSION_RX_TIMEOUT = 60000,
HOST_FIFO_RX_FLUSH_TIMEOUT = 0,
HEATBEAT_INTERVAL = 5000,
};
char *user = "admin";
int authok = 0, pid = 0, raw = -1, kvm = 0, fd = -1, tls = 1;
int reply, ok, n;
char buf[MAX_TRANSMIT_BUFFER];
Biobuf bin, bout;
jmp_buf reconnect;
void
killpid(void)
{
if(pid != 0){
postnote(PNPROC, pid, "kill");
pid = 0;
}
}
void
eof(void)
{
if(!authok) sysfatal("eof: %r");
killpid();
longjmp(reconnect, 1);
}
void
recv(char *fmt, ...)
{
uchar buf[4];
va_list a;
void *s;
int n;
va_start(a, fmt);
for(;;){
switch(*fmt++){
case '\0':
va_end(a);
return;
case '*':
Bflush(&bin);
break;
case '_':
if(Bread(&bin, buf, 1) != 1) eof();
break;
case 'b':
if(Bread(&bin, buf, 1) != 1) eof();
*va_arg(a, int*) = (uint)buf[0];
break;
case 'w':
if(Bread(&bin, buf, 2) != 2) eof();
*va_arg(a, int*) = (uint)buf[0] | (uint)buf[1] << 8;
break;
case 'l':
if(Bread(&bin, buf, 4) != 4) eof();
*va_arg(a, int*) = (uint)buf[0] | (uint)buf[1] << 8 | (uint)buf[2] << 16 | (uint)buf[3] << 24;
break;
case '[':
s = va_arg(a, void*);
n = va_arg(a, int);
if(n && Bread(&bin, s, n) != n) eof();
break;
}
}
}
void
send(char *fmt, ...)
{
uchar buf[4];
va_list a;
void *s;
int n;
va_start(a, fmt);
for(;;){
switch(*fmt++){
case '\0':
Bflush(&bout);
va_end(a);
return;
case '_':
buf[0] = 0;
Bwrite(&bout, buf, 1);
break;
case 'b':
buf[0] = va_arg(a, int);
Bwrite(&bout, buf, 1);
break;
case 'w':
n = va_arg(a, int);
buf[0] = n;
buf[1] = n >> 8;
Bwrite(&bout, buf, 2);
break;
case 'l':
n = va_arg(a, int);
buf[0] = n;
buf[1] = n >> 8;
buf[2] = n >> 16;
buf[3] = n >> 24;
Bwrite(&bout, buf, 4);
break;
case '[':
s = va_arg(a, char*);
n = va_arg(a, int);
if(n) Bwrite(&bout, s, n);
break;
}
}
}
int
digestauth(char *server, char *user, char *method, char *url)
{
char realm[256+1], nonce[256+1], qop[256+1], nc[10], cnonce[32+1], chal[1024], resp[1024], ouser[256];
static uint counter;
send("lblb[__b[____", 0x13, 4,
1+strlen(user) + 2 + 1+strlen(url) + 4,
strlen(user), user, strlen(user),
strlen(url), url, strlen(url));
recv("lbl", &reply, &ok, &n);
if(reply != 0x114 || ok != 4 || n == 0)
return -1; /* not supported */
recv("b", &n);
recv("[", realm, n);
realm[n] = '\0';
recv("b", &n);
recv("[", nonce, n);
nonce[n] = '\0';
recv("b", &n);
recv("[", qop, n);
qop[n] = '\0';
genrandom((uchar*)resp, 32);
snprint(cnonce, sizeof(cnonce), "%.32H", resp);
snprint(nc, sizeof(nc), "%8.8ud", ++counter);
n = snprint(chal, sizeof(chal), "%s:%s:%s:%s %s %s", nonce, nc, cnonce, qop, method, url);
n = auth_respond(chal, n, ouser, sizeof(ouser), resp, sizeof(resp), auth_getkey,
"proto=httpdigest role=client server=%q realm=%q user=%q", server, realm, user);
if(n < 0)
sysfatal("auth_respond: %r");
send("lblb[b[b[b[b[b[b[b[", 0x13, 4,
1+strlen(ouser)+1+strlen(realm)+1+strlen(nonce)+1+strlen(url)+
1+strlen(cnonce)+1+strlen(nc)+1+n+1+strlen(qop),
strlen(ouser), ouser, strlen(ouser),
strlen(realm), realm, strlen(realm),
strlen(nonce), nonce, strlen(nonce),
strlen(url), url, strlen(url),
strlen(cnonce), cnonce, strlen(cnonce),
strlen(nc), nc, strlen(nc),
n, resp, n,
strlen(qop), qop, strlen(qop));
/* can get timeout/tls error here, so enable restart once we have the key */
authok = 1;
recv("lb*", &reply, &ok);
if(reply != 0x14 && ok != 4){
authok = 0;
sysfatal("bad digest auth reply: %x %x", reply, ok);
}
return 0;
}
void
plainauth(char *user, char *pass)
{
send("lblb[b[", 0x13, 1,
strlen(user)+1+strlen(pass)+1,
strlen(user), user, strlen(user),
strlen(pass), pass, strlen(pass));
recv("lb*", &reply, &ok);
if(reply != 0x14 || ok != 1)
sysfatal("bad password auth reply: %x %x", reply, ok);
}
void
auth(char *server, char *user)
{
static UserPasswd *up = nil;
if(up == nil){
if(digestauth(server, user, "POST", "/RedirectionService") == 0)
return;
/* if digest auth not supported, get plaintext password */
up = auth_getuserpasswd(auth_getkey,
"proto=pass service=sol user=%q server=%q",
user, server);
if(up == nil)
sysfatal("auth_getuserpasswd: %r");
longjmp(reconnect, 1);
}
plainauth(up->user, up->passwd);
}
void
usage(void)
{
fprint(2, "usage: %s [-TRrk] [-u user] host\n", argv0);
exits("usage");
}
void
main(int argc, char *argv[])
{
fmtinstall('[', encodefmt);
fmtinstall('H', encodefmt);
ARGBEGIN {
case 'u':
user = EARGF(usage());
break;
case 'T':
tls = 0;
break;
case 'R':
raw = 0;
break;
case 'r':
raw = 1;
break;
case 'k':
kvm = 1;
break;
default:
usage();
} ARGEND;
if(argc != 1)
usage();
if(kvm)
goto Connect;
if(raw < 0) {
char *term = getenv("TERM");
raw = term && *term;
free(term);
}
if(raw){
close(0);
if(open("/dev/cons", OREAD) != 0)
sysfatal("open: %r");
close(1);
if(open("/dev/cons", OWRITE) != 1)
sysfatal("open: %r");
dup(1, 2);
fd = open("/dev/consctl", OWRITE);
if(fd >= 0)
write(fd, "rawon", 5);
}
Connect:
fd = dial(netmkaddr(argv[0], "tcp", tls ? "16995" : "16994"), nil, nil, nil);
if(fd < 0)
sysfatal("dial: %r");
if(tls){
TLSconn conn;
memset(&conn, 0, sizeof(conn));
fd = tlsClient(fd, &conn);
if(fd < 0)
sysfatal("tls: %r");
free(conn.cert);
free(conn.sessionID);
memset(&conn, 0, sizeof(conn));
}
authok = 0;
Binit(&bin, fd, OREAD);
Binit(&bout, fd, OWRITE);
if(setjmp(reconnect)){
Bterm(&bin);
Bterm(&bout);
close(fd);
goto Connect;
}
if(kvm)
send("l[", 0x110, "KVMR", 4);
else
send("l[", 0x10, "SOL ", 4);
recv("lb*", &reply, &ok);
if(reply != 0x11 || ok != 1)
sysfatal("bad session reply: %x %x", reply, ok);
auth(argv[0], user);
authok = 1;
/* kvm port redirect */
if(kvm){
int from, to;
send("b_______", 0x40);
if(read(fd, buf, 8) != 8 || buf[0] != 0x41)
sysfatal("bad redirection reply: %x %x", reply, ok);
pid = fork();
if(pid == 0){
pid = getppid();
from = 0;
to = fd;
} else {
from = fd;
to = 1;
}
atexit(killpid);
for(;;){
n = read(from, buf, sizeof(buf));
if(n < 0)
sysfatal("read: %r");
if(n == 0)
break;
if(write(to, buf, n) != n)
sysfatal("write: %r");
}
exits(nil);
}
/* serial over lan */
send("l____wwwwww____", 0x20,
MAX_TRANSMIT_BUFFER,
TRANSMIT_BUFFER_TIMEOUT,
TRANSMIT_OVERFLOW_TIMEOUT,
HOST_SESSION_RX_TIMEOUT,
HOST_FIFO_RX_FLUSH_TIMEOUT,
HEATBEAT_INTERVAL);
recv("lb*", &reply, &ok);
if(reply != 0x21 || ok != 1)
sysfatal("bad sol reply: %x %x", reply, ok);
pid = fork();
if(pid == 0){
pid = getppid();
atexit(killpid);
for(;;){
n = read(0, buf, sizeof(buf));
if(n < 0)
sysfatal("read: %r");
if(n == 0)
break;
send("l____w[", 0x28, n, buf, n);
}
} else {
atexit(killpid);
for(;;){
recv("l", &reply);
switch(reply){
default:
sysfatal("unknown reply %x\n", reply);
break;
case 0x2a:
recv("____w", &n);
recv("[", buf, n);
if(write(1, buf, n) != n)
break;
break;
case 0x24:
case 0x2b:
recv("*");
break;
}
}
}
exits(nil);
}