pivy-box: support finding templates at multiple paths

Including a system path in /etc so that there can be system-wide
templates. This also allows us to use more "native" feeling dirs
on OS like Linux and MacOS.

Author: arekinath

Makefile

@@ -67,6 +67,8 @@ ifeq ($(SYSTEM), Linux)
 	PAM_LIBS	= -lpam
 	PAM_PLUGINDIR	?= $(libdir)/security
 	SYSTEMDDIR	?= $(libdir)/systemd/user
+	tpl_user_dir	?= "$$HOME/.config/pivy/tpl/$$TPL"
+	tpl_system_dir	?= "/etc/pivy/tpl/$$TPL"
 endif
 ifeq ($(SYSTEM), OpenBSD)
 	PCSC_CFLAGS	= $(shell pkg-config --cflags libpcsclite)
@@ -98,6 +100,8 @@ ifeq ($(SYSTEM), Darwin)
 	RDLINE_LIBS	= -ledit
 	HAVE_ZFS	:= no
 	HAVE_PAM	:= no
+	tpl_user_dir	?= "$$HOME/Library/Preferences/pivy/tpl/$$TPL"
+	tpl_system_dir	?= "/Library/Preferences/pivy/tpl/$$TPL"
 endif
 ifeq ($(SYSTEM), SunOS)
 	PCSC_CFLAGS	= $(shell pkg-config --cflags libpcsclite)
@@ -119,6 +123,12 @@ ifeq ($(SYSTEM), SunOS)
 endif
 LIBCRYPTO	?= $(LIBRESSL_LIB)/libcrypto.a
 
+tpl_user_dir	?= "$$HOME/.pivy/tpl/$$TPL"
+tpl_system_dir	?= "/etc/pivy/tpl/$$TPL"
+
+CONFIG_CFLAGS	=  -DEBOX_USER_TPL_PATH='$(tpl_user_dir)'
+CONFIG_CFLAGS	+= -DEBOX_SYSTEM_TPL_PATH='$(tpl_system_dir)'
+
 _ED25519_SOURCES=		\
 	ed25519.c		\
 	fe25519.c		\
@@ -194,6 +204,7 @@ PIVTOOL_CFLAGS=		$(PCSC_CFLAGS) \
 			$(ZLIB_CFLAGS) \
 			$(SYSTEM_CFLAGS) \
 			$(SECURITY_CFLAGS) \
+			$(CONFIG_CFLAGS) \
 			-O2 -g -D_GNU_SOURCE \
 			-DPIVY_VERSION='"$(VERSION)"'
 PIVTOOL_LDFLAGS=	$(SYSTEM_LDFLAGS)
@@ -226,6 +237,7 @@ PIVYBOX_CFLAGS=		$(PCSC_CFLAGS) \
 			$(ZLIB_CFLAGS) \
 			$(RDLINE_CFLAGS) \
 			$(SYSTEM_CFLAGS) \
+			$(CONFIG_CFLAGS) \
 			$(SECURITY_CFLAGS) \
 			-O2 -g -D_GNU_SOURCE -std=gnu99
 PIVYBOX_LDFLAGS=	$(SYSTEM_LDFLAGS)
@@ -263,6 +275,7 @@ PIVZFS_CFLAGS=		$(PCSC_CFLAGS) \
 			$(LIBZFS_CFLAGS) \
 			$(RDLINE_CFLAGS) \
 			$(SYSTEM_CFLAGS) \
+			$(CONFIG_CFLAGS) \
 			$(SECURITY_CFLAGS) \
 			-O2 -g -D_GNU_SOURCE -std=gnu99
 PIVZFS_LDFLAGS=		$(SYSTEM_LDFLAGS)
@@ -310,6 +323,7 @@ PIVYLUKS_CFLAGS=	$(PCSC_CFLAGS) \
 			$(JSONC_CFLAGS) \
 			$(RDLINE_CFLAGS) \
 			$(SYSTEM_CFLAGS) \
+			$(CONFIG_CFLAGS) \
 			$(SECURITY_CFLAGS) \
 			-O2 -g -D_GNU_SOURCE -std=gnu99
 PIVYLUKS_LDFLAGS=	$(SYSTEM_LDFLAGS)
@@ -353,6 +367,7 @@ PAMPIVY_CFLAGS=		$(PCSC_CFLAGS) \
 			$(ZLIB_CFLAGS) \
 			$(PAM_CFLAGS) \
 			$(SYSTEM_CFLAGS) \
+			$(CONFIG_CFLAGS) \
 			$(SECURITY_CFLAGS) \
 			-O2 -g -D_GNU_SOURCE -std=gnu99
 PAMPIVY_LDFLAGS=	$(SYSTEM_LDFLAGS)
@@ -393,6 +408,7 @@ AGENT_CFLAGS=		$(PCSC_CFLAGS) \
 			$(CRYPTO_CFLAGS) \
 			$(ZLIB_CFLAGS) \
 			$(SYSTEM_CFLAGS) \
+			$(CONFIG_CFLAGS) \
 			$(SECURITY_CFLAGS) \
 			-O2 -g -D_GNU_SOURCE
 AGENT_LDFLAGS=		$(SYSTEM_LDFLAGS)

ebox-cmd.c

@@ -60,6 +60,13 @@
 
 #include "words.h"
 
+#if !defined(EBOX_USER_TPL_PATH)
+#define	EBOX_USER_TPL_PATH	"$HOME/.pivy/tpl/$TPL"
+#endif
+#if !defined(EBOX_SYSTEM_TPL_PATH)
+#define	EBOX_SYSTEM_TPL_PATH	"/etc/pivy/tpl/$TPL"
+#endif
+
 int ebox_authfd = -1;
 SCARDCONTEXT ebox_ctx;
 boolean_t ebox_ctx_init = B_FALSE;
@@ -1058,6 +1065,229 @@ interactive_recovery(struct ebox_config *config, const char *what)
 	return (NULL);
 }
 
+struct ebox_tpl_path_ent *ebox_tpl_path = NULL;
+
+static struct ebox_tpl_path_seg *
+parse_tpl_path_segs(const char *path)
+{
+	struct ebox_tpl_path_seg *seg, *first = NULL, *last = NULL;
+	const char *basep, *p;
+	size_t n;
+
+	p = path;
+	basep = NULL;
+
+	while (1) {
+		if (*p == '$' || *p == '\0') {
+			/* end current segment */
+			if (basep != NULL) {
+				seg = calloc(1, sizeof (*seg));
+				seg->tps_type = PATH_SEG_FIXED;
+				n = p - basep;
+				seg->tps_fixed = malloc(n + 1);
+				strncpy(seg->tps_fixed, basep, n);
+				if (first == NULL)
+					first = seg;
+				if (last != NULL)
+					last->tps_next = seg;
+				last = seg;
+				basep = NULL;
+			}
+			if (*p == '$') {
+				if (strncmp(p, "$TPL", 4) == 0) {
+					p += 4;
+					seg = calloc(1, sizeof (*seg));
+					seg->tps_type = PATH_SEG_TPL;
+					if (first == NULL)
+						first = seg;
+					if (last != NULL)
+						last->tps_next = seg;
+					last = seg;
+					continue;
+				}
+				basep = ++p;
+				while (*p != '\0' && (
+				    (*p >= 'A' && *p <= 'Z') ||
+				    (*p >= 'a' && *p <= 'z') ||
+				    (*p >= '0' && *p <= '9'))) {
+					++p;
+				}
+				seg = calloc(1, sizeof (*seg));
+				seg->tps_type = PATH_SEG_ENV;
+				n = p - basep;
+				seg->tps_env = malloc(n + 1);
+				strncpy(seg->tps_fixed, basep, n);
+				if (first == NULL)
+					first = seg;
+				if (last != NULL)
+					last->tps_next = seg;
+				last = seg;
+				basep = NULL;
+			} else {
+				break;
+			}
+		} else {
+			if (basep == NULL)
+				basep = p;
+			++p;
+		}
+	}
+
+	return (first);
+}
+
+void
+parse_tpl_path_env(void)
+{
+	struct ebox_tpl_path_ent *tpe, *last = NULL;
+	const char *env;
+	char *tmp;
+	char *token, *saveptr = NULL;
+
+	tpe = calloc(1, sizeof (*tpe));
+	if (ebox_tpl_path == NULL)
+		ebox_tpl_path = tpe;
+	if (last != NULL)
+		last->tpe_next = tpe;
+	tpe->tpe_path_tpl = strdup(EBOX_USER_TPL_PATH);
+	tpe->tpe_segs = parse_tpl_path_segs(tpe->tpe_path_tpl);
+	last = tpe;
+
+#if !defined(NO_LEGACY_EBOX_TPL_PATH)
+	tpe = calloc(1, sizeof (*tpe));
+	if (ebox_tpl_path == NULL)
+		ebox_tpl_path = tpe;
+	if (last != NULL)
+		last->tpe_next = tpe;
+	tpe->tpe_path_tpl = strdup("$HOME/.ebox/tpl/$TPL");
+	tpe->tpe_segs = parse_tpl_path_segs(tpe->tpe_path_tpl);
+	last = tpe;
+#endif
+
+	env = getenv("PIVY_EBOX_TPL_PATH");
+	if (env != NULL) {
+		tmp = strdup(env);
+
+		while (1) {
+			token = strtok_r(tmp, ":", &saveptr);
+			if (token == NULL)
+				break;
+			tmp = NULL;
+
+			tpe = calloc(1, sizeof (*tpe));
+			if (ebox_tpl_path == NULL)
+				ebox_tpl_path = tpe;
+			if (last != NULL)
+				last->tpe_next = tpe;
+			tpe->tpe_path_tpl = strdup(token);
+			tpe->tpe_segs = parse_tpl_path_segs(tpe->tpe_path_tpl);
+			last = tpe;
+		}
+	}
+
+	tpe = calloc(1, sizeof (*tpe));
+	if (ebox_tpl_path == NULL)
+		ebox_tpl_path = tpe;
+	if (last != NULL)
+		last->tpe_next = tpe;
+	tpe->tpe_path_tpl = strdup(EBOX_SYSTEM_TPL_PATH);
+	tpe->tpe_segs = parse_tpl_path_segs(tpe->tpe_path_tpl);
+	last = tpe;
+}
+
+char *
+compose_path(const struct ebox_tpl_path_seg *segs, const char *tpl)
+{
+	char *buf;
+	const char *tmp;
+	const struct ebox_tpl_path_seg *seg;
+
+	buf = malloc(PATH_MAX);
+	buf[0] = '\0';
+
+	seg = segs;
+	while (seg != NULL) {
+		switch (seg->tps_type) {
+		case PATH_SEG_FIXED:
+			strlcat(buf, seg->tps_fixed, PATH_MAX);
+			break;
+		case PATH_SEG_ENV:
+			tmp = getenv(seg->tps_env);
+			if (tmp != NULL)
+				strlcat(buf, tmp, PATH_MAX);
+			break;
+		case PATH_SEG_TPL:
+			strlcat(buf, tpl, PATH_MAX);
+			break;
+		}
+		seg = seg->tps_next;
+	}
+
+	return (buf);
+}
+
+char *
+access_tpl_file(const char *tpl, int amode)
+{
+	char *path;
+	const struct ebox_tpl_path_ent *tpe;
+	int r;
+
+	if ((amode & W_OK) == 0) {
+		r = access(tpl, amode);
+		if (r == 0)
+			return (strdup(tpl));
+	}
+
+	tpe = ebox_tpl_path;
+	while (tpe != NULL) {
+		path = compose_path(tpe->tpe_segs, tpl);
+		r = access(path, amode);
+		if (r == 0)
+			return (path);
+		free(path);
+		if ((amode & W_OK) == W_OK) {
+			path = compose_path(tpe->tpe_segs, "");
+			r = access(path, amode);
+			if (r == 0) {
+				free(path);
+				path = compose_path(tpe->tpe_segs, tpl);
+				return (path);
+			}
+			free(path);
+		}
+		tpe = tpe->tpe_next;
+	}
+
+	return (NULL);
+}
+
+FILE *
+open_tpl_file(const char *tpl, const char *mode)
+{
+	char *path;
+	FILE *f;
+	const struct ebox_tpl_path_ent *tpe;
+
+	if (strchr(mode, 'w') == NULL) {
+		f = fopen(tpl, mode);
+		if (f != NULL)
+			return (f);
+	}
+
+	tpe = ebox_tpl_path;
+	while (tpe != NULL) {
+		path = compose_path(tpe->tpe_segs, tpl);
+		f = fopen(path, mode);
+		free(path);
+		if (f != NULL)
+			return (f);
+		tpe = tpe->tpe_next;
+	}
+
+	return (NULL);
+}
+
 struct ebox_tpl *
 read_tpl_file(const char *tpl)
 {
@@ -1069,24 +1299,10 @@ read_tpl_file(const char *tpl)
 	size_t len;
 	int rc;
 	struct ebox_tpl *stpl;
-	char pathTpl[PATH_MAX] = { 0 };
 
-again:
-	tplf = fopen(tpl, "r");
+	tplf = open_tpl_file(tpl, "r");
 	rc = errno;
-	if (tplf == NULL && tpl != pathTpl && errno == ENOENT) {
-		const char *home;
-		home = getenv("HOME");
-		if (home == NULL) {
-			errno = rc;
-			err(EXIT_ERROR, "failed to open template file '%s' "
-			    "for reading", tpl);
-		}
-		snprintf(pathTpl, sizeof (pathTpl), TPL_DEFAULT_PATH,
-		    home, tpl);
-		tpl = pathTpl;
-		goto again;
-	} else if (tplf == NULL) {
+	if (tplf == NULL) {
 		err(EXIT_ERROR, "failed to open template file '%s' for reading",
 		    tpl);
 	}

ebox-cmd.h

@@ -58,11 +58,37 @@ enum ebox_exit_status {
 	EXIT_ALREADY_UNLOCKED = 6,
 };
 
-#define	TPL_DEFAULT_PATH	"%s/.ebox/tpl/%s"
+enum ebox_tpl_path_seg_type {
+	PATH_SEG_FIXED,
+	PATH_SEG_ENV,
+	PATH_SEG_TPL
+};
+
+struct ebox_tpl_path_seg {
+	struct ebox_tpl_path_seg *tps_next;
+	enum ebox_tpl_path_seg_type tps_type;
+	union {
+		char *tps_fixed;
+		char *tps_env;
+	};
+};
+
+struct ebox_tpl_path_ent {
+	struct ebox_tpl_path_ent *tpe_next;
+	char *tpe_path_tpl;
+	struct ebox_tpl_path_seg *tpe_segs;
+};
+
+extern struct ebox_tpl_path_ent *ebox_tpl_path;
+
 #define	TPL_MAX_SIZE		4096
 #define	EBOX_MAX_SIZE		16384
 #define	BASE64_LINE_LEN		65
 
+char *compose_path(const struct ebox_tpl_path_seg *segs, const char *tpl);
+FILE *open_tpl_file(const char *tpl, const char *mode);
+char *access_tpl_file(const char *tpl, int amode);
+void parse_tpl_path_env(void);
 void release_context(void);
 
 char *piv_token_shortid(struct piv_token *pk);