Tree - source-git/spice - CentOS Git server

source-git / spice

Files

Commit: 105c3281c55462a58b85773eed23c9a88882bfba

Blob Blame History Raw

 /* -*- Mode: C; c-basic-offset: 4; indent-tabs-mode: nil -*- */
/*
   Copyright (C) 2010-2016 Red Hat, Inc.
 
   This library is free software; you can redistribute it and/or
   modify it under the terms of the GNU Lesser General Public
   License as published by the Free Software Foundation; either
   version 2.1 of the License, or (at your option) any later version.
 
   This library is distributed in the hope that it will be useful,
   but WITHOUT ANY WARRANTY; without even the implied warranty of
   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
   Lesser General Public License for more details.
 
   You should have received a copy of the GNU Lesser General Public
   License along with this library; if not, see <http://www.gnu.org/licenses/>.
*/
#include <config.h>
 
#include <arpa/inet.h>
#ifdef USE_SMARTCARD
#include <libcacard.h>
#endif
 
#define RedCharDeviceClientOpaque RedChannelClient
 
#include "reds.h"
#include "char-device.h"
#include "smartcard.h"
#include "smartcard-channel-client.h"
#include "migration-protocol.h"
 
/*
 * TODO: the code doesn't really support multiple readers.
 * For example: smartcard_char_device_add_to_readers calls smartcard_init,
 * which can be called only once.
 * We should allow different readers, at least one reader per client.
 * In addition the implementation should be changed: instead of one channel for
 * all readers, we need to have different channles for different readers,
 * similarly to spicevmc.
 *
 */
#define SMARTCARD_MAX_READERS 10
 
// Maximal length of APDU
#define APDUBufSize 270
 
SPICE_DECLARE_TYPE(RedSmartcardChannel, red_smartcard_channel, SMARTCARD_CHANNEL);
#define RED_TYPE_SMARTCARD_CHANNEL red_smartcard_channel_get_type()
 
struct RedSmartcardChannel
{
    RedChannel parent;
};
 
struct RedSmartcardChannelClass
{
    RedChannelClass parent_class;
};
 
G_DEFINE_TYPE(RedSmartcardChannel, red_smartcard_channel, RED_TYPE_CHANNEL)
 
static void
red_smartcard_channel_init(RedSmartcardChannel *self)
{
}
 
static RedSmartcardChannel *
red_smartcard_channel_new(RedsState *reds)
{
    return g_object_new(RED_TYPE_SMARTCARD_CHANNEL,
                        "spice-server", reds,
                        "core-interface", reds_get_core_interface(reds),
                        "channel-type", SPICE_CHANNEL_SMARTCARD,
                        "id", 0,
                        "handle-acks", FALSE /* handle_acks */,
                        "migration-flags",
                        (SPICE_MIGRATE_NEED_FLUSH | SPICE_MIGRATE_NEED_DATA_TRANSFER),
                        NULL);
}
 
struct RedCharDeviceSmartcardPrivate {
    uint32_t             reader_id;
    /* read_from_device buffer */
    uint8_t             *buf;
    uint32_t             buf_size;
    uint8_t             *buf_pos;
    uint32_t             buf_used;
 
    SmartCardChannelClient    *scc; // client providing the remote card
    int                  reader_added; // has reader_add been sent to the device
};
 
G_DEFINE_TYPE_WITH_PRIVATE(RedCharDeviceSmartcard, red_char_device_smartcard, RED_TYPE_CHAR_DEVICE)
 
typedef struct RedMsgItem {
    RedPipeItem base;
 
    VSCMsgHeader* vheader;
} RedMsgItem;
 
static RedMsgItem *smartcard_new_vsc_msg_item(unsigned int reader_id, const VSCMsgHeader *vheader);
 
static struct Readers {
    uint32_t num;
    SpiceCharDeviceInstance* sin[SMARTCARD_MAX_READERS];
} g_smartcard_readers = {0, {NULL}};
 
static int smartcard_char_device_add_to_readers(RedsState *reds, SpiceCharDeviceInstance *sin);
 
static RedMsgItem *smartcard_char_device_on_message_from_device(
    RedCharDeviceSmartcard *dev, VSCMsgHeader *header);
static RedCharDeviceSmartcard *smartcard_device_new(RedsState *reds, SpiceCharDeviceInstance *sin);
static void smartcard_init(RedsState *reds);
 
static void smartcard_read_buf_prepare(RedCharDeviceSmartcard *dev, VSCMsgHeader *vheader)
{
    uint32_t msg_len;
 
    msg_len = ntohl(vheader->length);
    if (msg_len > dev->priv->buf_size) {
        dev->priv->buf_size = MAX(dev->priv->buf_size * 2, msg_len + sizeof(VSCMsgHeader));
        dev->priv->buf = g_realloc(dev->priv->buf, dev->priv->buf_size);
    }
}
 
static RedPipeItem *smartcard_read_msg_from_device(RedCharDevice *self,
                                                   SpiceCharDeviceInstance *sin)
{
    RedCharDeviceSmartcard *dev = RED_CHAR_DEVICE_SMARTCARD(self);
    SpiceCharDeviceInterface *sif = spice_char_device_get_interface(sin);
    VSCMsgHeader *vheader = (VSCMsgHeader*)dev->priv->buf;
    int remaining;
    int actual_length;
 
    while (true) {
        RedMsgItem *msg_to_client;
 
        // it's possible we already got a full message from a previous partial
        // read. In this case we don't need to read any byte
        if (dev->priv->buf_used < sizeof(VSCMsgHeader) ||
            dev->priv->buf_used - sizeof(VSCMsgHeader) < ntohl(vheader->length)) {
            int n = sif->read(sin, dev->priv->buf_pos, dev->priv->buf_size - dev->priv->buf_used);
            if (n <= 0) {
                break;
            }
            dev->priv->buf_pos += n;
            dev->priv->buf_used += n;
 
            if (dev->priv->buf_used < sizeof(VSCMsgHeader)) {
                continue;
            }
            smartcard_read_buf_prepare(dev, vheader);
            vheader = (VSCMsgHeader*)dev->priv->buf;
        }
        actual_length = ntohl(vheader->length);
        if (dev->priv->buf_used - sizeof(VSCMsgHeader) < actual_length) {
            continue;
        }
        msg_to_client = smartcard_char_device_on_message_from_device(dev, vheader);
        remaining = dev->priv->buf_used - sizeof(VSCMsgHeader) - actual_length;
        if (remaining > 0) {
            memmove(dev->priv->buf, dev->priv->buf_pos - remaining, remaining);
        }
        dev->priv->buf_pos = dev->priv->buf + remaining;
        dev->priv->buf_used = remaining;
        if (msg_to_client) {
            return &msg_to_client->base;
        }
    }
    return NULL;
}
 
/* this is called from both device input and client input. since the device is
 * a usb device, the context is still the main thread (kvm_main_loop, timers)
 * so no mutex is required. */
static void smartcard_send_msg_to_client(RedCharDevice *self,
                                         RedPipeItem *msg,
                                         RedChannelClient *client)
{
    RedCharDeviceSmartcard *dev = RED_CHAR_DEVICE_SMARTCARD(self);
    RedChannelClient *rcc = RED_CHANNEL_CLIENT(dev->priv->scc);
 
    spice_assert(dev->priv->scc && rcc == client);
    red_pipe_item_ref(msg);
    red_channel_client_pipe_add_push(rcc, msg);
}
 
static void smartcard_remove_client(RedCharDevice *self, RedChannelClient *client)
{
    RedCharDeviceSmartcard *dev = RED_CHAR_DEVICE_SMARTCARD(self);
    RedChannelClient *rcc = RED_CHANNEL_CLIENT(dev->priv->scc);
 
    spice_assert(dev->priv->scc && rcc == client);
    red_channel_client_shutdown(rcc);
}
 
RedMsgItem *smartcard_char_device_on_message_from_device(RedCharDeviceSmartcard *dev,
                                                         VSCMsgHeader *vheader)
{
    vheader->type = ntohl(vheader->type);
    vheader->length = ntohl(vheader->length);
    vheader->reader_id = ntohl(vheader->reader_id);
 
    if (vheader->type == VSC_Init) {
        return NULL;
    }
    /* We pass any VSC_Error right now - might need to ignore some? */
    if (dev->priv->reader_id == VSCARD_UNDEFINED_READER_ID) {
        red_channel_warning(red_channel_client_get_channel(RED_CHANNEL_CLIENT(dev->priv->scc)),
                            "error: reader_id not assigned for message of type %d",
                            vheader->type);
    }
    if (dev->priv->scc == NULL) {
        return NULL;
    }
    return smartcard_new_vsc_msg_item(dev->priv->reader_id, vheader);
}
 
static int smartcard_char_device_add_to_readers(RedsState *reds, SpiceCharDeviceInstance *char_device)
{
    RedCharDeviceSmartcard *dev = RED_CHAR_DEVICE_SMARTCARD(char_device->st);
 
    if (g_smartcard_readers.num >= SMARTCARD_MAX_READERS) {
        return -1;
    }
    dev->priv->reader_id = g_smartcard_readers.num;
    g_smartcard_readers.sin[g_smartcard_readers.num++] = char_device;
    smartcard_init(reds);
    return 0;
}
 
SpiceCharDeviceInstance *smartcard_readers_get(uint32_t reader_id)
{
    if (reader_id >= g_smartcard_readers.num) {
        return NULL;
    }
    return g_smartcard_readers.sin[reader_id];
}
 
/* TODO: fix implementation for multiple readers. Each reader should have a separated
 * channel */
SpiceCharDeviceInstance *smartcard_readers_get_unattached(void)
{
    int i;
    RedCharDeviceSmartcard* dev;
 
    for (i = 0; i < g_smartcard_readers.num; ++i) {
        dev = RED_CHAR_DEVICE_SMARTCARD(g_smartcard_readers.sin[i]->st);
        if (!dev->priv->scc) {
            return g_smartcard_readers.sin[i];
        }
    }
    return NULL;
}
 
static RedCharDeviceSmartcard *smartcard_device_new(RedsState *reds, SpiceCharDeviceInstance *sin)
{
    RedCharDevice *char_dev;
 
    char_dev = g_object_new(RED_TYPE_CHAR_DEVICE_SMARTCARD,
                            "sin", sin,
                            "spice-server", reds,
                            "client-tokens-interval", 0ULL,
                            "self-tokens", ~0ULL,
                            NULL);
 
    return RED_CHAR_DEVICE_SMARTCARD(char_dev);
}
 
void smartcard_device_disconnect(SpiceCharDeviceInstance *char_device)
{
    g_return_if_fail(RED_IS_CHAR_DEVICE_SMARTCARD(char_device->st));
 
    g_object_unref(char_device->st);
}
 
RedCharDevice *smartcard_device_connect(RedsState *reds, SpiceCharDeviceInstance *char_device)
{
    RedCharDeviceSmartcard *dev;
 
    dev = smartcard_device_new(reds, char_device);
    if (smartcard_char_device_add_to_readers(reds, char_device) == -1) {
        g_object_unref(dev);
        return NULL;
    }
    return RED_CHAR_DEVICE(dev);
}
 
void smartcard_char_device_notify_reader_add(RedCharDeviceSmartcard *dev)
{
    RedCharDeviceWriteBuffer *write_buf;
    VSCMsgHeader *vheader;
 
    write_buf = red_char_device_write_buffer_get_server(RED_CHAR_DEVICE(dev),
                                                        sizeof(*vheader),
                                                        true);
    if (!write_buf) {
        spice_error("failed to allocate write buffer");
        return;
    }
    dev->priv->reader_added = TRUE;
    vheader = (VSCMsgHeader *)write_buf->buf;
    vheader->type = VSC_ReaderAdd;
    vheader->reader_id = dev->priv->reader_id;
    vheader->length = 0;
    smartcard_channel_write_to_reader(write_buf);
}
 
void smartcard_char_device_attach_client(SpiceCharDeviceInstance *char_device,
                                         SmartCardChannelClient *scc)
{
    RedCharDeviceSmartcard *dev = RED_CHAR_DEVICE_SMARTCARD(char_device->st);
    int client_added;
 
    spice_assert(!smartcard_channel_client_get_char_device(scc) && !dev->priv->scc);
    dev->priv->scc = scc;
    smartcard_channel_client_set_char_device(scc, dev);
    client_added = red_char_device_client_add(RED_CHAR_DEVICE(dev),
                                              RED_CHANNEL_CLIENT(scc),
                                              FALSE, /* no flow control yet */
                                              0, /* send queue size */
                                              ~0,
                                              ~0,
                                              red_channel_client_is_waiting_for_migrate_data(
                                                  RED_CHANNEL_CLIENT(scc)));
    if (!client_added) {
        spice_warning("failed");
        dev->priv->scc = NULL;
        smartcard_channel_client_set_char_device(scc, NULL);
        red_channel_client_disconnect(RED_CHANNEL_CLIENT(scc));
    } else {
        SpiceCharDeviceInterface *sif = spice_char_device_get_interface(char_device);
        if (sif->state) {
            sif->state(char_device, 1);
        }
    }
}
 
gboolean smartcard_char_device_notify_reader_remove(RedCharDeviceSmartcard *dev)
{
    RedCharDeviceWriteBuffer *write_buf;
    VSCMsgHeader *vheader;
 
    if (!dev->priv->reader_added) {
        spice_debug("reader add was never sent to the device");
        return FALSE;
    }
    write_buf = red_char_device_write_buffer_get_server(RED_CHAR_DEVICE(dev),
                                                        sizeof(*vheader),
                                                        true);
    if (!write_buf) {
        spice_error("failed to allocate write buffer");
        return FALSE;
    }
    dev->priv->reader_added = FALSE;
    vheader = (VSCMsgHeader *)write_buf->buf;
    vheader->type = VSC_ReaderRemove;
    vheader->reader_id = dev->priv->reader_id;
    vheader->length = 0;
    smartcard_channel_write_to_reader(write_buf);
 
    return TRUE;
}
 
void smartcard_char_device_detach_client(RedCharDeviceSmartcard *smartcard,
                                         SmartCardChannelClient *scc)
{
    SpiceCharDeviceInterface *sif;
    SpiceCharDeviceInstance *sin;
 
    sin = red_char_device_get_device_instance(RED_CHAR_DEVICE(smartcard));
    sif = spice_char_device_get_interface(sin);
 
    spice_assert(smartcard->priv->scc == scc);
    red_char_device_client_remove(RED_CHAR_DEVICE(smartcard),
                                  RED_CHANNEL_CLIENT(scc));
    smartcard_channel_client_set_char_device(scc, NULL);
    smartcard->priv->scc = NULL;
 
    if (sif->state) {
        sif->state(sin, 0);
    }
}
 
SmartCardChannelClient* smartcard_char_device_get_client(RedCharDeviceSmartcard *smartcard)
{
    return smartcard->priv->scc;
}
 
static void smartcard_channel_send_msg(RedChannelClient *rcc,
                                       SpiceMarshaller *m, RedPipeItem *item)
{
    RedMsgItem* msg_item = SPICE_UPCAST(RedMsgItem, item);
 
    smartcard_channel_client_send_data(rcc, m, item, msg_item->vheader);
}
 
static void smartcard_channel_send_migrate_data(RedChannelClient *rcc,
                                                SpiceMarshaller *m, RedPipeItem *item)
{
    SmartCardChannelClient *scc;
    RedCharDeviceSmartcard *dev;
    SpiceMarshaller *m2;
 
    scc = SMARTCARD_CHANNEL_CLIENT(rcc);
    dev = smartcard_channel_client_get_char_device(scc);
    red_channel_client_init_send_data(rcc, SPICE_MSG_MIGRATE_DATA);
    spice_marshaller_add_uint32(m, SPICE_MIGRATE_DATA_SMARTCARD_MAGIC);
    spice_marshaller_add_uint32(m, SPICE_MIGRATE_DATA_SMARTCARD_VERSION);
 
    if (!dev) {
        red_char_device_migrate_data_marshall_empty(m);
        spice_marshaller_add_uint8(m, 0);
        spice_marshaller_add_uint32(m, 0);
        spice_marshaller_add_uint32(m, 0);
        spice_debug("null char dev");
    } else {
        red_char_device_migrate_data_marshall(RED_CHAR_DEVICE(dev), m);
        spice_marshaller_add_uint8(m, dev->priv->reader_added);
        spice_marshaller_add_uint32(m, dev->priv->buf_used);
        m2 = spice_marshaller_get_ptr_submarshaller(m);
        spice_marshaller_add(m2, dev->priv->buf, dev->priv->buf_used);
        spice_debug("reader added %d partial read size %u", dev->priv->reader_added, dev->priv->buf_used);
    }
}
 
static void smartcard_channel_send_item(RedChannelClient *rcc, RedPipeItem *item)
{
    SpiceMarshaller *m = red_channel_client_get_marshaller(rcc);
 
    switch (item->type) {
    case RED_PIPE_ITEM_TYPE_ERROR:
        smartcard_channel_client_send_error(rcc, m, item);
        break;
    case RED_PIPE_ITEM_TYPE_SMARTCARD_DATA:
        smartcard_channel_send_msg(rcc, m, item);
        break;
    case RED_PIPE_ITEM_TYPE_SMARTCARD_MIGRATE_DATA:
        smartcard_channel_send_migrate_data(rcc, m, item);
        break;
    default:
        spice_error("bad pipe item %d", item->type);
        return;
    }
    red_channel_client_begin_send_message(rcc);
}
 
static void smartcard_free_vsc_msg_item(RedPipeItem *base)
{
    RedMsgItem *item = SPICE_UPCAST(RedMsgItem, base);
    g_free(item->vheader);
    g_free(item);
}
 
static RedMsgItem *smartcard_new_vsc_msg_item(unsigned int reader_id, const VSCMsgHeader *vheader)
{
    RedMsgItem *msg_item = g_new0(RedMsgItem, 1);
 
    red_pipe_item_init_full(&msg_item->base, RED_PIPE_ITEM_TYPE_SMARTCARD_DATA,
                            smartcard_free_vsc_msg_item);
    msg_item->vheader = g_memdup(vheader, sizeof(*vheader) + vheader->length);
    /* We patch the reader_id, since the device only knows about itself, and
     * we know about the sum of readers. */
    msg_item->vheader->reader_id = reader_id;
    return msg_item;
}
 
void smartcard_channel_write_to_reader(RedCharDeviceWriteBuffer *write_buf)
{
    SpiceCharDeviceInstance *sin;
    RedCharDeviceSmartcard *dev;
    VSCMsgHeader *vheader;
    uint32_t actual_length;
 
    vheader = (VSCMsgHeader *)write_buf->buf;
    actual_length = vheader->length;
 
    spice_assert(vheader->reader_id <= g_smartcard_readers.num);
    sin = g_smartcard_readers.sin[vheader->reader_id];
    dev = RED_CHAR_DEVICE_SMARTCARD(sin->st);
    spice_assert(!dev->priv->scc ||
                 dev == smartcard_channel_client_get_char_device(dev->priv->scc));
    /* protocol requires messages to be in network endianness */
    vheader->type = htonl(vheader->type);
    vheader->length = htonl(vheader->length);
    vheader->reader_id = htonl(vheader->reader_id);
    write_buf->buf_used = actual_length + sizeof(VSCMsgHeader);
    /* pushing the buffer to the write queue; It will be released
     * when it will be fully consumed by the device */
    red_char_device_write_buffer_add(sin->st, write_buf);
}
 
static void smartcard_device_restore_partial_read(RedCharDeviceSmartcard *dev,
                                                  SpiceMigrateDataSmartcard *mig_data)
{
    uint8_t *read_data;
 
    spice_debug("read_size  %u", mig_data->read_size);
    read_data = (uint8_t *)mig_data + mig_data->read_data_ptr - sizeof(SpiceMigrateDataHeader);
    if (mig_data->read_size < sizeof(VSCMsgHeader)) {
        spice_assert(dev->priv->buf_size >= mig_data->read_size);
    } else {
        smartcard_read_buf_prepare(dev, (VSCMsgHeader *)read_data);
    }
    memcpy(dev->priv->buf, read_data, mig_data->read_size);
    dev->priv->buf_used = mig_data->read_size;
    dev->priv->buf_pos = dev->priv->buf + mig_data->read_size;
}
 
int smartcard_char_device_handle_migrate_data(RedCharDeviceSmartcard *smartcard,
                                              SpiceMigrateDataSmartcard *mig_data)
{
    smartcard->priv->reader_added = mig_data->reader_added;
 
    smartcard_device_restore_partial_read(smartcard, mig_data);
    return red_char_device_restore(RED_CHAR_DEVICE(smartcard), &mig_data->base);
}
 
static void smartcard_connect_client(RedChannel *channel, RedClient *client,
                                     RedStream *stream, int migration,
                                     RedChannelCapabilities *caps)
{
    SpiceCharDeviceInstance *char_device =
            smartcard_readers_get_unattached();
 
    SmartCardChannelClient *scc;
 
    scc = smartcard_channel_client_create(channel, client, stream, caps);
 
    if (!scc) {
        return;
    }
    red_channel_client_ack_zero_messages_window(RED_CHANNEL_CLIENT(scc));
 
    if (char_device) {
        smartcard_char_device_attach_client(char_device, scc);
    } else {
        red_channel_warning(channel, "char dev unavailable");
    }
}
 
static void
red_smartcard_channel_constructed(GObject *object)
{
    RedSmartcardChannel *self = RED_SMARTCARD_CHANNEL(object);
    RedsState *reds = red_channel_get_server(RED_CHANNEL(self));
 
    G_OBJECT_CLASS(red_smartcard_channel_parent_class)->constructed(object);
 
    reds_register_channel(reds, RED_CHANNEL(self));
}
 
static void
red_smartcard_channel_class_init(RedSmartcardChannelClass *klass)
{
    GObjectClass *object_class = G_OBJECT_CLASS(klass);
    RedChannelClass *channel_class = RED_CHANNEL_CLASS(klass);
 
    object_class->constructed = red_smartcard_channel_constructed;
 
    channel_class->parser = spice_get_client_channel_parser(SPICE_CHANNEL_SMARTCARD, NULL);
    channel_class->handle_message = smartcard_channel_client_handle_message;
 
    channel_class->send_item = smartcard_channel_send_item;
    channel_class->handle_migrate_flush_mark = smartcard_channel_client_handle_migrate_flush_mark;
    channel_class->handle_migrate_data = smartcard_channel_client_handle_migrate_data;
 
    // client callbacks
    channel_class->connect = smartcard_connect_client;
}
 
static void smartcard_init(RedsState *reds)
{
    spice_assert(!reds_find_channel(reds, SPICE_CHANNEL_SMARTCARD, 0));
 
    red_smartcard_channel_new(reds);
}
 
 
static void
red_char_device_smartcard_finalize(GObject *object)
{
    RedCharDeviceSmartcard *self = RED_CHAR_DEVICE_SMARTCARD(object);
 
    g_free(self->priv->buf);
 
    G_OBJECT_CLASS(red_char_device_smartcard_parent_class)->finalize(object);
}
 
static void
red_char_device_smartcard_class_init(RedCharDeviceSmartcardClass *klass)
{
    GObjectClass *object_class = G_OBJECT_CLASS(klass);
    RedCharDeviceClass *char_dev_class = RED_CHAR_DEVICE_CLASS(klass);
 
    object_class->finalize = red_char_device_smartcard_finalize;
 
    char_dev_class->read_one_msg_from_device = smartcard_read_msg_from_device;
    char_dev_class->send_msg_to_client = smartcard_send_msg_to_client;
    char_dev_class->remove_client = smartcard_remove_client;
}
 
static void
red_char_device_smartcard_init(RedCharDeviceSmartcard *self)
{
    self->priv = red_char_device_smartcard_get_instance_private(self);
 
    self->priv->reader_id = VSCARD_UNDEFINED_READER_ID;
    self->priv->buf_size = APDUBufSize + sizeof(VSCMsgHeader);
    self->priv->buf = g_malloc(self->priv->buf_size);
    self->priv->buf_pos = self->priv->buf;
}
 
uint32_t smartcard_get_n_readers(void)
{
    return g_smartcard_readers.num;
}

	/* -- Mode: C; c-basic-offset: 4; indent-tabs-mode: nil -- */
	/*
	Copyright (C) 2010-2016 Red Hat, Inc.

	This library is free software; you can redistribute it and/or
	modify it under the terms of the GNU Lesser General Public
	License as published by the Free Software Foundation; either
	version 2.1 of the License, or (at your option) any later version.

	This library is distributed in the hope that it will be useful,
	but WITHOUT ANY WARRANTY; without even the implied warranty of
	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	Lesser General Public License for more details.

	You should have received a copy of the GNU Lesser General Public
	License along with this library; if not, see <http://www.gnu.org/licenses/>.
	*/
	#include <config.h>

	#include <arpa/inet.h>
	#ifdef USE_SMARTCARD
	#include <libcacard.h>
	#endif

	#define RedCharDeviceClientOpaque RedChannelClient

	#include "reds.h"
	#include "char-device.h"
	#include "smartcard.h"
	#include "smartcard-channel-client.h"
	#include "migration-protocol.h"

	/*
	* TODO: the code doesn't really support multiple readers.
	* For example: smartcard_char_device_add_to_readers calls smartcard_init,
	* which can be called only once.
	* We should allow different readers, at least one reader per client.
	* In addition the implementation should be changed: instead of one channel for
	* all readers, we need to have different channles for different readers,
	* similarly to spicevmc.
	*
	*/
	#define SMARTCARD_MAX_READERS 10

	// Maximal length of APDU
	#define APDUBufSize 270

	SPICE_DECLARE_TYPE(RedSmartcardChannel, red_smartcard_channel, SMARTCARD_CHANNEL);
	#define RED_TYPE_SMARTCARD_CHANNEL red_smartcard_channel_get_type()

	struct RedSmartcardChannel
	{
	RedChannel parent;
	};

	struct RedSmartcardChannelClass
	{
	RedChannelClass parent_class;
	};

	G_DEFINE_TYPE(RedSmartcardChannel, red_smartcard_channel, RED_TYPE_CHANNEL)

	static void
	red_smartcard_channel_init(RedSmartcardChannel *self)
	{
	}

	static RedSmartcardChannel *
	red_smartcard_channel_new(RedsState *reds)
	{
	return g_object_new(RED_TYPE_SMARTCARD_CHANNEL,
	"spice-server", reds,
	"core-interface", reds_get_core_interface(reds),
	"channel-type", SPICE_CHANNEL_SMARTCARD,
	"id", 0,
	"handle-acks", FALSE /* handle_acks */,
	"migration-flags",
	(SPICE_MIGRATE_NEED_FLUSH \| SPICE_MIGRATE_NEED_DATA_TRANSFER),
	NULL);
	}

	struct RedCharDeviceSmartcardPrivate {
	uint32_t reader_id;
	/* read_from_device buffer */
	uint8_t *buf;
	uint32_t buf_size;
	uint8_t *buf_pos;
	uint32_t buf_used;

	SmartCardChannelClient *scc; // client providing the remote card
	int reader_added; // has reader_add been sent to the device
	};

	G_DEFINE_TYPE_WITH_PRIVATE(RedCharDeviceSmartcard, red_char_device_smartcard, RED_TYPE_CHAR_DEVICE)

	typedef struct RedMsgItem {
	RedPipeItem base;

	VSCMsgHeader* vheader;
	} RedMsgItem;

	static RedMsgItem smartcard_new_vsc_msg_item(unsigned int reader_id, const VSCMsgHeader vheader);

	static struct Readers {
	uint32_t num;
	SpiceCharDeviceInstance* sin[SMARTCARD_MAX_READERS];
	} g_smartcard_readers = {0, {NULL}};

	static int smartcard_char_device_add_to_readers(RedsState reds, SpiceCharDeviceInstance sin);

	static RedMsgItem *smartcard_char_device_on_message_from_device(
	RedCharDeviceSmartcard dev, VSCMsgHeader header);
	static RedCharDeviceSmartcard smartcard_device_new(RedsState reds, SpiceCharDeviceInstance *sin);
	static void smartcard_init(RedsState *reds);

	static void smartcard_read_buf_prepare(RedCharDeviceSmartcard dev, VSCMsgHeader vheader)
	{
	uint32_t msg_len;

	msg_len = ntohl(vheader->length);
	if (msg_len > dev->priv->buf_size) {
	dev->priv->buf_size = MAX(dev->priv->buf_size * 2, msg_len + sizeof(VSCMsgHeader));
	dev->priv->buf = g_realloc(dev->priv->buf, dev->priv->buf_size);
	}
	}

	static RedPipeItem smartcard_read_msg_from_device(RedCharDevice self,
	SpiceCharDeviceInstance *sin)
	{
	RedCharDeviceSmartcard *dev = RED_CHAR_DEVICE_SMARTCARD(self);
	SpiceCharDeviceInterface *sif = spice_char_device_get_interface(sin);
	VSCMsgHeader vheader = (VSCMsgHeader)dev->priv->buf;
	int remaining;
	int actual_length;

	while (true) {
	RedMsgItem *msg_to_client;

	// it's possible we already got a full message from a previous partial
	// read. In this case we don't need to read any byte
	if (dev->priv->buf_used < sizeof(VSCMsgHeader) \|\|
	dev->priv->buf_used - sizeof(VSCMsgHeader) < ntohl(vheader->length)) {
	int n = sif->read(sin, dev->priv->buf_pos, dev->priv->buf_size - dev->priv->buf_used);
	if (n <= 0) {
	break;
	}
	dev->priv->buf_pos += n;
	dev->priv->buf_used += n;

	if (dev->priv->buf_used < sizeof(VSCMsgHeader)) {
	continue;
	}
	smartcard_read_buf_prepare(dev, vheader);
	vheader = (VSCMsgHeader*)dev->priv->buf;
	}
	actual_length = ntohl(vheader->length);
	if (dev->priv->buf_used - sizeof(VSCMsgHeader) < actual_length) {
	continue;
	}
	msg_to_client = smartcard_char_device_on_message_from_device(dev, vheader);
	remaining = dev->priv->buf_used - sizeof(VSCMsgHeader) - actual_length;
	if (remaining > 0) {
	memmove(dev->priv->buf, dev->priv->buf_pos - remaining, remaining);
	}
	dev->priv->buf_pos = dev->priv->buf + remaining;
	dev->priv->buf_used = remaining;
	if (msg_to_client) {
	return &msg_to_client->base;
	}
	}
	return NULL;
	}

	/* this is called from both device input and client input. since the device is
	* a usb device, the context is still the main thread (kvm_main_loop, timers)
	* so no mutex is required. */
	static void smartcard_send_msg_to_client(RedCharDevice *self,
	RedPipeItem *msg,
	RedChannelClient *client)
	{
	RedCharDeviceSmartcard *dev = RED_CHAR_DEVICE_SMARTCARD(self);
	RedChannelClient *rcc = RED_CHANNEL_CLIENT(dev->priv->scc);

	spice_assert(dev->priv->scc && rcc == client);
	red_pipe_item_ref(msg);
	red_channel_client_pipe_add_push(rcc, msg);
	}

	static void smartcard_remove_client(RedCharDevice self, RedChannelClient client)
	{
	RedCharDeviceSmartcard *dev = RED_CHAR_DEVICE_SMARTCARD(self);
	RedChannelClient *rcc = RED_CHANNEL_CLIENT(dev->priv->scc);

	spice_assert(dev->priv->scc && rcc == client);
	red_channel_client_shutdown(rcc);
	}

	RedMsgItem smartcard_char_device_on_message_from_device(RedCharDeviceSmartcard dev,
	VSCMsgHeader *vheader)
	{
	vheader->type = ntohl(vheader->type);
	vheader->length = ntohl(vheader->length);
	vheader->reader_id = ntohl(vheader->reader_id);

	if (vheader->type == VSC_Init) {
	return NULL;
	}
	/* We pass any VSC_Error right now - might need to ignore some? */
	if (dev->priv->reader_id == VSCARD_UNDEFINED_READER_ID) {
	red_channel_warning(red_channel_client_get_channel(RED_CHANNEL_CLIENT(dev->priv->scc)),
	"error: reader_id not assigned for message of type %d",
	vheader->type);
	}
	if (dev->priv->scc == NULL) {
	return NULL;
	}
	return smartcard_new_vsc_msg_item(dev->priv->reader_id, vheader);
	}

	static int smartcard_char_device_add_to_readers(RedsState reds, SpiceCharDeviceInstance char_device)
	{
	RedCharDeviceSmartcard *dev = RED_CHAR_DEVICE_SMARTCARD(char_device->st);

	if (g_smartcard_readers.num >= SMARTCARD_MAX_READERS) {
	return -1;
	}
	dev->priv->reader_id = g_smartcard_readers.num;
	g_smartcard_readers.sin[g_smartcard_readers.num++] = char_device;
	smartcard_init(reds);
	return 0;
	}

	SpiceCharDeviceInstance *smartcard_readers_get(uint32_t reader_id)
	{
	if (reader_id >= g_smartcard_readers.num) {
	return NULL;
	}
	return g_smartcard_readers.sin[reader_id];
	}

	/* TODO: fix implementation for multiple readers. Each reader should have a separated
	* channel */
	SpiceCharDeviceInstance *smartcard_readers_get_unattached(void)
	{
	int i;
	RedCharDeviceSmartcard* dev;

	for (i = 0; i < g_smartcard_readers.num; ++i) {
	dev = RED_CHAR_DEVICE_SMARTCARD(g_smartcard_readers.sin[i]->st);
	if (!dev->priv->scc) {
	return g_smartcard_readers.sin[i];
	}
	}
	return NULL;
	}

	static RedCharDeviceSmartcard smartcard_device_new(RedsState reds, SpiceCharDeviceInstance *sin)
	{
	RedCharDevice *char_dev;

	char_dev = g_object_new(RED_TYPE_CHAR_DEVICE_SMARTCARD,
	"sin", sin,
	"spice-server", reds,
	"client-tokens-interval", 0ULL,
	"self-tokens", ~0ULL,
	NULL);

	return RED_CHAR_DEVICE_SMARTCARD(char_dev);
	}

	void smartcard_device_disconnect(SpiceCharDeviceInstance *char_device)
	{
	g_return_if_fail(RED_IS_CHAR_DEVICE_SMARTCARD(char_device->st));

	g_object_unref(char_device->st);
	}

	RedCharDevice smartcard_device_connect(RedsState reds, SpiceCharDeviceInstance *char_device)
	{
	RedCharDeviceSmartcard *dev;

	dev = smartcard_device_new(reds, char_device);
	if (smartcard_char_device_add_to_readers(reds, char_device) == -1) {
	g_object_unref(dev);
	return NULL;
	}
	return RED_CHAR_DEVICE(dev);
	}

	void smartcard_char_device_notify_reader_add(RedCharDeviceSmartcard *dev)
	{
	RedCharDeviceWriteBuffer *write_buf;
	VSCMsgHeader *vheader;

	write_buf = red_char_device_write_buffer_get_server(RED_CHAR_DEVICE(dev),
	sizeof(*vheader),
	true);
	if (!write_buf) {
	spice_error("failed to allocate write buffer");
	return;
	}
	dev->priv->reader_added = TRUE;
	vheader = (VSCMsgHeader *)write_buf->buf;
	vheader->type = VSC_ReaderAdd;
	vheader->reader_id = dev->priv->reader_id;
	vheader->length = 0;
	smartcard_channel_write_to_reader(write_buf);
	}

	void smartcard_char_device_attach_client(SpiceCharDeviceInstance *char_device,
	SmartCardChannelClient *scc)
	{
	RedCharDeviceSmartcard *dev = RED_CHAR_DEVICE_SMARTCARD(char_device->st);
	int client_added;

	spice_assert(!smartcard_channel_client_get_char_device(scc) && !dev->priv->scc);
	dev->priv->scc = scc;
	smartcard_channel_client_set_char_device(scc, dev);
	client_added = red_char_device_client_add(RED_CHAR_DEVICE(dev),
	RED_CHANNEL_CLIENT(scc),
	FALSE, /* no flow control yet */
	0, /* send queue size */
	~0,
	~0,
	red_channel_client_is_waiting_for_migrate_data(
	RED_CHANNEL_CLIENT(scc)));
	if (!client_added) {
	spice_warning("failed");
	dev->priv->scc = NULL;
	smartcard_channel_client_set_char_device(scc, NULL);
	red_channel_client_disconnect(RED_CHANNEL_CLIENT(scc));
	} else {
	SpiceCharDeviceInterface *sif = spice_char_device_get_interface(char_device);
	if (sif->state) {
	sif->state(char_device, 1);
	}
	}
	}

	gboolean smartcard_char_device_notify_reader_remove(RedCharDeviceSmartcard *dev)
	{
	RedCharDeviceWriteBuffer *write_buf;
	VSCMsgHeader *vheader;

	if (!dev->priv->reader_added) {
	spice_debug("reader add was never sent to the device");
	return FALSE;
	}
	write_buf = red_char_device_write_buffer_get_server(RED_CHAR_DEVICE(dev),
	sizeof(*vheader),
	true);
	if (!write_buf) {
	spice_error("failed to allocate write buffer");
	return FALSE;
	}
	dev->priv->reader_added = FALSE;
	vheader = (VSCMsgHeader *)write_buf->buf;
	vheader->type = VSC_ReaderRemove;
	vheader->reader_id = dev->priv->reader_id;
	vheader->length = 0;
	smartcard_channel_write_to_reader(write_buf);

	return TRUE;
	}

	void smartcard_char_device_detach_client(RedCharDeviceSmartcard *smartcard,
	SmartCardChannelClient *scc)
	{
	SpiceCharDeviceInterface *sif;
	SpiceCharDeviceInstance *sin;

	sin = red_char_device_get_device_instance(RED_CHAR_DEVICE(smartcard));
	sif = spice_char_device_get_interface(sin);

	spice_assert(smartcard->priv->scc == scc);
	red_char_device_client_remove(RED_CHAR_DEVICE(smartcard),
	RED_CHANNEL_CLIENT(scc));
	smartcard_channel_client_set_char_device(scc, NULL);
	smartcard->priv->scc = NULL;

	if (sif->state) {
	sif->state(sin, 0);
	}
	}

	SmartCardChannelClient* smartcard_char_device_get_client(RedCharDeviceSmartcard *smartcard)
	{
	return smartcard->priv->scc;
	}

	static void smartcard_channel_send_msg(RedChannelClient *rcc,
	SpiceMarshaller m, RedPipeItem item)
	{
	RedMsgItem* msg_item = SPICE_UPCAST(RedMsgItem, item);

	smartcard_channel_client_send_data(rcc, m, item, msg_item->vheader);
	}

	static void smartcard_channel_send_migrate_data(RedChannelClient *rcc,
	SpiceMarshaller m, RedPipeItem item)
	{
	SmartCardChannelClient *scc;
	RedCharDeviceSmartcard *dev;
	SpiceMarshaller *m2;

	scc = SMARTCARD_CHANNEL_CLIENT(rcc);
	dev = smartcard_channel_client_get_char_device(scc);
	red_channel_client_init_send_data(rcc, SPICE_MSG_MIGRATE_DATA);
	spice_marshaller_add_uint32(m, SPICE_MIGRATE_DATA_SMARTCARD_MAGIC);
	spice_marshaller_add_uint32(m, SPICE_MIGRATE_DATA_SMARTCARD_VERSION);

	if (!dev) {
	red_char_device_migrate_data_marshall_empty(m);
	spice_marshaller_add_uint8(m, 0);
	spice_marshaller_add_uint32(m, 0);
	spice_marshaller_add_uint32(m, 0);
	spice_debug("null char dev");
	} else {
	red_char_device_migrate_data_marshall(RED_CHAR_DEVICE(dev), m);
	spice_marshaller_add_uint8(m, dev->priv->reader_added);
	spice_marshaller_add_uint32(m, dev->priv->buf_used);
	m2 = spice_marshaller_get_ptr_submarshaller(m);
	spice_marshaller_add(m2, dev->priv->buf, dev->priv->buf_used);
	spice_debug("reader added %d partial read size %u", dev->priv->reader_added, dev->priv->buf_used);
	}
	}

	static void smartcard_channel_send_item(RedChannelClient rcc, RedPipeItem item)
	{
	SpiceMarshaller *m = red_channel_client_get_marshaller(rcc);

	switch (item->type) {
	case RED_PIPE_ITEM_TYPE_ERROR:
	smartcard_channel_client_send_error(rcc, m, item);
	break;
	case RED_PIPE_ITEM_TYPE_SMARTCARD_DATA:
	smartcard_channel_send_msg(rcc, m, item);
	break;
	case RED_PIPE_ITEM_TYPE_SMARTCARD_MIGRATE_DATA:
	smartcard_channel_send_migrate_data(rcc, m, item);
	break;
	default:
	spice_error("bad pipe item %d", item->type);
	return;
	}
	red_channel_client_begin_send_message(rcc);
	}

	static void smartcard_free_vsc_msg_item(RedPipeItem *base)
	{
	RedMsgItem *item = SPICE_UPCAST(RedMsgItem, base);
	g_free(item->vheader);
	g_free(item);
	}

	static RedMsgItem smartcard_new_vsc_msg_item(unsigned int reader_id, const VSCMsgHeader vheader)
	{
	RedMsgItem *msg_item = g_new0(RedMsgItem, 1);

	red_pipe_item_init_full(&msg_item->base, RED_PIPE_ITEM_TYPE_SMARTCARD_DATA,
	smartcard_free_vsc_msg_item);
	msg_item->vheader = g_memdup(vheader, sizeof(*vheader) + vheader->length);
	/* We patch the reader_id, since the device only knows about itself, and
	* we know about the sum of readers. */
	msg_item->vheader->reader_id = reader_id;
	return msg_item;
	}

	void smartcard_channel_write_to_reader(RedCharDeviceWriteBuffer *write_buf)
	{
	SpiceCharDeviceInstance *sin;
	RedCharDeviceSmartcard *dev;
	VSCMsgHeader *vheader;
	uint32_t actual_length;

	vheader = (VSCMsgHeader *)write_buf->buf;
	actual_length = vheader->length;

	spice_assert(vheader->reader_id <= g_smartcard_readers.num);
	sin = g_smartcard_readers.sin[vheader->reader_id];
	dev = RED_CHAR_DEVICE_SMARTCARD(sin->st);
	spice_assert(!dev->priv->scc \|\|
	dev == smartcard_channel_client_get_char_device(dev->priv->scc));
	/* protocol requires messages to be in network endianness */
	vheader->type = htonl(vheader->type);
	vheader->length = htonl(vheader->length);
	vheader->reader_id = htonl(vheader->reader_id);
	write_buf->buf_used = actual_length + sizeof(VSCMsgHeader);
	/* pushing the buffer to the write queue; It will be released
	* when it will be fully consumed by the device */
	red_char_device_write_buffer_add(sin->st, write_buf);
	}

	static void smartcard_device_restore_partial_read(RedCharDeviceSmartcard *dev,
	SpiceMigrateDataSmartcard *mig_data)
	{
	uint8_t *read_data;

	spice_debug("read_size %u", mig_data->read_size);
	read_data = (uint8_t *)mig_data + mig_data->read_data_ptr - sizeof(SpiceMigrateDataHeader);
	if (mig_data->read_size < sizeof(VSCMsgHeader)) {
	spice_assert(dev->priv->buf_size >= mig_data->read_size);
	} else {
	smartcard_read_buf_prepare(dev, (VSCMsgHeader *)read_data);
	}
	memcpy(dev->priv->buf, read_data, mig_data->read_size);
	dev->priv->buf_used = mig_data->read_size;
	dev->priv->buf_pos = dev->priv->buf + mig_data->read_size;
	}

	int smartcard_char_device_handle_migrate_data(RedCharDeviceSmartcard *smartcard,
	SpiceMigrateDataSmartcard *mig_data)
	{
	smartcard->priv->reader_added = mig_data->reader_added;

	smartcard_device_restore_partial_read(smartcard, mig_data);
	return red_char_device_restore(RED_CHAR_DEVICE(smartcard), &mig_data->base);
	}

	static void smartcard_connect_client(RedChannel channel, RedClient client,
	RedStream *stream, int migration,
	RedChannelCapabilities *caps)
	{
	SpiceCharDeviceInstance *char_device =
	smartcard_readers_get_unattached();

	SmartCardChannelClient *scc;

	scc = smartcard_channel_client_create(channel, client, stream, caps);

	if (!scc) {
	return;
	}
	red_channel_client_ack_zero_messages_window(RED_CHANNEL_CLIENT(scc));

	if (char_device) {
	smartcard_char_device_attach_client(char_device, scc);
	} else {
	red_channel_warning(channel, "char dev unavailable");
	}
	}

	static void
	red_smartcard_channel_constructed(GObject *object)
	{
	RedSmartcardChannel *self = RED_SMARTCARD_CHANNEL(object);
	RedsState *reds = red_channel_get_server(RED_CHANNEL(self));

	G_OBJECT_CLASS(red_smartcard_channel_parent_class)->constructed(object);

	reds_register_channel(reds, RED_CHANNEL(self));
	}

	static void
	red_smartcard_channel_class_init(RedSmartcardChannelClass *klass)
	{
	GObjectClass *object_class = G_OBJECT_CLASS(klass);
	RedChannelClass *channel_class = RED_CHANNEL_CLASS(klass);

	object_class->constructed = red_smartcard_channel_constructed;

	channel_class->parser = spice_get_client_channel_parser(SPICE_CHANNEL_SMARTCARD, NULL);
	channel_class->handle_message = smartcard_channel_client_handle_message;

	channel_class->send_item = smartcard_channel_send_item;
	channel_class->handle_migrate_flush_mark = smartcard_channel_client_handle_migrate_flush_mark;
	channel_class->handle_migrate_data = smartcard_channel_client_handle_migrate_data;

	// client callbacks
	channel_class->connect = smartcard_connect_client;
	}

	static void smartcard_init(RedsState *reds)
	{
	spice_assert(!reds_find_channel(reds, SPICE_CHANNEL_SMARTCARD, 0));

	red_smartcard_channel_new(reds);
	}


	static void
	red_char_device_smartcard_finalize(GObject *object)
	{
	RedCharDeviceSmartcard *self = RED_CHAR_DEVICE_SMARTCARD(object);

	g_free(self->priv->buf);

	G_OBJECT_CLASS(red_char_device_smartcard_parent_class)->finalize(object);
	}

	static void
	red_char_device_smartcard_class_init(RedCharDeviceSmartcardClass *klass)
	{
	GObjectClass *object_class = G_OBJECT_CLASS(klass);
	RedCharDeviceClass *char_dev_class = RED_CHAR_DEVICE_CLASS(klass);

	object_class->finalize = red_char_device_smartcard_finalize;

	char_dev_class->read_one_msg_from_device = smartcard_read_msg_from_device;
	char_dev_class->send_msg_to_client = smartcard_send_msg_to_client;
	char_dev_class->remove_client = smartcard_remove_client;
	}

	static void
	red_char_device_smartcard_init(RedCharDeviceSmartcard *self)
	{
	self->priv = red_char_device_smartcard_get_instance_private(self);

	self->priv->reader_id = VSCARD_UNDEFINED_READER_ID;
	self->priv->buf_size = APDUBufSize + sizeof(VSCMsgHeader);
	self->priv->buf = g_malloc(self->priv->buf_size);
	self->priv->buf_pos = self->priv->buf;
	}

	uint32_t smartcard_get_n_readers(void)
	{
	return g_smartcard_readers.num;
	}

source-git / spice

Source Code

Files