mirror of
https://gitlab.uni-freiburg.de/opensourcevdi/spice
synced 2025-12-27 15:45:54 +00:00
9b1e018da6
Prepare to port to GObject by encapsulating all private data Acked-by: Frediano Ziglio <fziglio@redhat.com
858 lines
31 KiB
C
858 lines
31 KiB
C
/* -*- Mode: C; c-basic-offset: 4; indent-tabs-mode: nil -*- */
|
|
/*
|
|
Copyright (C) 2010-2016 Red Hat, Inc.
|
|
|
|
This library is free software; you can redistribute it and/or
|
|
modify it under the terms of the GNU Lesser General Public
|
|
License as published by the Free Software Foundation; either
|
|
version 2.1 of the License, or (at your option) any later version.
|
|
|
|
This library is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
Lesser General Public License for more details.
|
|
|
|
You should have received a copy of the GNU Lesser General Public
|
|
License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
#ifdef HAVE_CONFIG_H
|
|
#include <config.h>
|
|
#endif
|
|
|
|
#include <arpa/inet.h>
|
|
#ifdef USE_SMARTCARD_012
|
|
#include <vscard_common.h>
|
|
#else
|
|
#ifdef USE_SMARTCARD
|
|
#include <libcacard.h>
|
|
#endif
|
|
#endif
|
|
|
|
#include "reds.h"
|
|
#include "char-device.h"
|
|
#include "red-channel-client.h"
|
|
#include "smartcard.h"
|
|
#include "migration-protocol.h"
|
|
|
|
/*
|
|
* TODO: the code doesn't really support multiple readers.
|
|
* For example: smartcard_char_device_add_to_readers calls smartcard_init,
|
|
* which can be called only once.
|
|
* We should allow different readers, at least one reader per client.
|
|
* In addition the implementation should be changed: instead of one channel for
|
|
* all readers, we need to have different channles for different readers,
|
|
* similarly to spicevmc.
|
|
*
|
|
*/
|
|
#define SMARTCARD_MAX_READERS 10
|
|
|
|
// Maximal length of APDU
|
|
#define APDUBufSize 270
|
|
|
|
typedef struct SmartCardChannelClientPrivate SmartCardChannelClientPrivate;
|
|
struct SmartCardChannelClientPrivate {
|
|
RedCharDeviceSmartcard *smartcard;
|
|
|
|
/* read_from_client/write_to_device buffer.
|
|
* The beginning of the buffer should always be VSCMsgHeader*/
|
|
RedCharDeviceWriteBuffer *write_buf;
|
|
int msg_in_write_buf; /* was the client msg received into a RedCharDeviceWriteBuffer
|
|
* or was it explicitly malloced */
|
|
};
|
|
|
|
typedef struct SmartCardChannelClient {
|
|
RedChannelClient base;
|
|
|
|
SmartCardChannelClientPrivate priv[1];
|
|
} SmartCardChannelClient;
|
|
|
|
G_DEFINE_TYPE(RedCharDeviceSmartcard, red_char_device_smartcard, RED_TYPE_CHAR_DEVICE)
|
|
|
|
#define RED_CHAR_DEVICE_SMARTCARD_PRIVATE(o) (G_TYPE_INSTANCE_GET_PRIVATE ((o), RED_TYPE_CHAR_DEVICE_SMARTCARD, RedCharDeviceSmartcardPrivate))
|
|
|
|
struct RedCharDeviceSmartcardPrivate {
|
|
uint32_t reader_id;
|
|
/* read_from_device buffer */
|
|
uint8_t *buf;
|
|
uint32_t buf_size;
|
|
uint8_t *buf_pos;
|
|
uint32_t buf_used;
|
|
|
|
SmartCardChannelClient *scc; // client providing the remote card
|
|
int reader_added; // has reader_add been sent to the device
|
|
};
|
|
|
|
enum {
|
|
RED_PIPE_ITEM_TYPE_ERROR = RED_PIPE_ITEM_TYPE_CHANNEL_BASE,
|
|
RED_PIPE_ITEM_TYPE_SMARTCARD_DATA,
|
|
RED_PIPE_ITEM_TYPE_SMARTCARD_MIGRATE_DATA,
|
|
};
|
|
|
|
typedef struct RedErrorItem {
|
|
RedPipeItem base;
|
|
VSCMsgHeader vheader;
|
|
VSCMsgError error;
|
|
} RedErrorItem;
|
|
|
|
typedef struct RedMsgItem {
|
|
RedPipeItem base;
|
|
|
|
VSCMsgHeader* vheader;
|
|
} RedMsgItem;
|
|
|
|
static RedMsgItem *smartcard_get_vsc_msg_item(RedChannelClient *rcc, VSCMsgHeader *vheader);
|
|
static void smartcard_channel_client_pipe_add_push(RedChannelClient *rcc, RedPipeItem *item);
|
|
|
|
typedef struct SmartCardChannel {
|
|
RedChannel base;
|
|
} SmartCardChannel;
|
|
|
|
static struct Readers {
|
|
uint32_t num;
|
|
SpiceCharDeviceInstance* sin[SMARTCARD_MAX_READERS];
|
|
} g_smartcard_readers = {0, {NULL}};
|
|
|
|
static SpiceCharDeviceInstance* smartcard_readers_get_unattached(void);
|
|
static SpiceCharDeviceInstance* smartcard_readers_get(uint32_t reader_id);
|
|
static int smartcard_char_device_add_to_readers(RedsState *reds, SpiceCharDeviceInstance *sin);
|
|
static void smartcard_char_device_attach_client(
|
|
SpiceCharDeviceInstance *char_device, SmartCardChannelClient *scc);
|
|
static void smartcard_channel_write_to_reader(RedCharDeviceWriteBuffer *write_buf);
|
|
|
|
static RedMsgItem *smartcard_char_device_on_message_from_device(
|
|
RedCharDeviceSmartcard *dev, VSCMsgHeader *header);
|
|
static RedCharDeviceSmartcard *smartcard_device_new(RedsState *reds, SpiceCharDeviceInstance *sin);
|
|
static void smartcard_init(RedsState *reds);
|
|
|
|
static void smartcard_read_buf_prepare(RedCharDeviceSmartcard *dev, VSCMsgHeader *vheader)
|
|
{
|
|
uint32_t msg_len;
|
|
|
|
msg_len = ntohl(vheader->length);
|
|
if (msg_len > dev->priv->buf_size) {
|
|
dev->priv->buf_size = MAX(dev->priv->buf_size * 2, msg_len + sizeof(VSCMsgHeader));
|
|
dev->priv->buf = spice_realloc(dev->priv->buf, dev->priv->buf_size);
|
|
}
|
|
}
|
|
|
|
static RedPipeItem *smartcard_read_msg_from_device(SpiceCharDeviceInstance *sin,
|
|
void *opaque)
|
|
{
|
|
RedCharDeviceSmartcard *dev = opaque;
|
|
SpiceCharDeviceInterface *sif = spice_char_device_get_interface(sin);
|
|
VSCMsgHeader *vheader = (VSCMsgHeader*)dev->priv->buf;
|
|
int n;
|
|
int remaining;
|
|
int actual_length;
|
|
|
|
while ((n = sif->read(sin, dev->priv->buf_pos, dev->priv->buf_size - dev->priv->buf_used)) > 0) {
|
|
RedMsgItem *msg_to_client;
|
|
|
|
dev->priv->buf_pos += n;
|
|
dev->priv->buf_used += n;
|
|
if (dev->priv->buf_used < sizeof(VSCMsgHeader)) {
|
|
continue;
|
|
}
|
|
smartcard_read_buf_prepare(dev, vheader);
|
|
actual_length = ntohl(vheader->length);
|
|
if (dev->priv->buf_used - sizeof(VSCMsgHeader) < actual_length) {
|
|
continue;
|
|
}
|
|
msg_to_client = smartcard_char_device_on_message_from_device(dev, vheader);
|
|
remaining = dev->priv->buf_used - sizeof(VSCMsgHeader) - actual_length;
|
|
if (remaining > 0) {
|
|
memcpy(dev->priv->buf, dev->priv->buf_pos, remaining);
|
|
}
|
|
dev->priv->buf_pos = dev->priv->buf;
|
|
dev->priv->buf_used = remaining;
|
|
if (msg_to_client) {
|
|
return &msg_to_client->base;
|
|
}
|
|
}
|
|
return NULL;
|
|
}
|
|
|
|
static void smartcard_send_msg_to_client(RedPipeItem *msg,
|
|
RedClient *client,
|
|
void *opaque)
|
|
{
|
|
RedCharDeviceSmartcard *dev = opaque;
|
|
|
|
spice_assert(dev->priv->scc &&
|
|
red_channel_client_get_client(&dev->priv->scc->base) == client);
|
|
red_pipe_item_ref(msg);
|
|
smartcard_channel_client_pipe_add_push(&dev->priv->scc->base, msg);
|
|
}
|
|
|
|
static void smartcard_send_tokens_to_client(RedClient *client, uint32_t tokens, void *opaque)
|
|
{
|
|
spice_error("not implemented");
|
|
}
|
|
|
|
static void smartcard_remove_client(RedClient *client, void *opaque)
|
|
{
|
|
RedCharDeviceSmartcard *dev = opaque;
|
|
|
|
spice_printerr("smartcard dev %p, client %p", dev, client);
|
|
spice_assert(dev->priv->scc &&
|
|
red_channel_client_get_client(&dev->priv->scc->base) == client);
|
|
red_channel_client_shutdown(&dev->priv->scc->base);
|
|
}
|
|
|
|
RedMsgItem *smartcard_char_device_on_message_from_device(RedCharDeviceSmartcard *dev,
|
|
VSCMsgHeader *vheader)
|
|
{
|
|
VSCMsgHeader *sent_header;
|
|
|
|
vheader->type = ntohl(vheader->type);
|
|
vheader->length = ntohl(vheader->length);
|
|
vheader->reader_id = ntohl(vheader->reader_id);
|
|
|
|
switch (vheader->type) {
|
|
case VSC_Init:
|
|
return NULL;
|
|
default:
|
|
break;
|
|
}
|
|
/* We pass any VSC_Error right now - might need to ignore some? */
|
|
if (dev->priv->reader_id == VSCARD_UNDEFINED_READER_ID && vheader->type != VSC_Init) {
|
|
spice_printerr("error: reader_id not assigned for message of type %d", vheader->type);
|
|
}
|
|
if (dev->priv->scc) {
|
|
sent_header = spice_memdup(vheader, sizeof(*vheader) + vheader->length);
|
|
/* We patch the reader_id, since the device only knows about itself, and
|
|
* we know about the sum of readers. */
|
|
sent_header->reader_id = dev->priv->reader_id;
|
|
return smartcard_get_vsc_msg_item(&dev->priv->scc->base, sent_header);
|
|
}
|
|
return NULL;
|
|
}
|
|
|
|
static int smartcard_char_device_add_to_readers(RedsState *reds, SpiceCharDeviceInstance *char_device)
|
|
{
|
|
RedCharDeviceSmartcard *dev = red_char_device_opaque_get(char_device->st);
|
|
|
|
if (g_smartcard_readers.num >= SMARTCARD_MAX_READERS) {
|
|
return -1;
|
|
}
|
|
dev->priv->reader_id = g_smartcard_readers.num;
|
|
g_smartcard_readers.sin[g_smartcard_readers.num++] = char_device;
|
|
smartcard_init(reds);
|
|
return 0;
|
|
}
|
|
|
|
static SpiceCharDeviceInstance *smartcard_readers_get(uint32_t reader_id)
|
|
{
|
|
spice_assert(reader_id < g_smartcard_readers.num);
|
|
return g_smartcard_readers.sin[reader_id];
|
|
}
|
|
|
|
/* TODO: fix implementation for multiple readers. Each reader should have a separated
|
|
* channel */
|
|
static SpiceCharDeviceInstance *smartcard_readers_get_unattached(void)
|
|
{
|
|
int i;
|
|
RedCharDeviceSmartcard* dev;
|
|
|
|
for (i = 0; i < g_smartcard_readers.num; ++i) {
|
|
dev = red_char_device_opaque_get(g_smartcard_readers.sin[i]->st);
|
|
if (!dev->priv->scc) {
|
|
return g_smartcard_readers.sin[i];
|
|
}
|
|
}
|
|
return NULL;
|
|
}
|
|
|
|
static RedCharDeviceSmartcard *smartcard_device_new(RedsState *reds, SpiceCharDeviceInstance *sin)
|
|
{
|
|
RedCharDevice *char_dev;
|
|
|
|
char_dev = g_object_new(RED_TYPE_CHAR_DEVICE_SMARTCARD,
|
|
"sin", sin,
|
|
"spice-server", reds,
|
|
"client-tokens-interval", 0ULL,
|
|
"self-tokens", ~0ULL,
|
|
NULL);
|
|
|
|
g_object_set(char_dev, "opaque", char_dev, NULL);
|
|
|
|
return RED_CHAR_DEVICE_SMARTCARD(char_dev);
|
|
}
|
|
|
|
void smartcard_device_disconnect(SpiceCharDeviceInstance *char_device)
|
|
{
|
|
g_return_if_fail(RED_IS_CHAR_DEVICE_SMARTCARD(char_device->st));
|
|
|
|
g_object_unref(char_device->st);
|
|
}
|
|
|
|
RedCharDevice *smartcard_device_connect(RedsState *reds, SpiceCharDeviceInstance *char_device)
|
|
{
|
|
RedCharDeviceSmartcard *dev;
|
|
|
|
dev = smartcard_device_new(reds, char_device);
|
|
if (smartcard_char_device_add_to_readers(reds, char_device) == -1) {
|
|
g_object_unref(dev);
|
|
return NULL;
|
|
}
|
|
return RED_CHAR_DEVICE(dev);
|
|
}
|
|
|
|
static void smartcard_char_device_notify_reader_add(RedCharDeviceSmartcard *dev)
|
|
{
|
|
RedCharDeviceWriteBuffer *write_buf;
|
|
VSCMsgHeader *vheader;
|
|
|
|
write_buf = red_char_device_write_buffer_get(RED_CHAR_DEVICE(dev), NULL, sizeof(*vheader));
|
|
if (!write_buf) {
|
|
spice_error("failed to allocate write buffer");
|
|
return;
|
|
}
|
|
dev->priv->reader_added = TRUE;
|
|
vheader = (VSCMsgHeader *)write_buf->buf;
|
|
vheader->type = VSC_ReaderAdd;
|
|
vheader->reader_id = dev->priv->reader_id;
|
|
vheader->length = 0;
|
|
smartcard_channel_write_to_reader(write_buf);
|
|
}
|
|
|
|
static void smartcard_char_device_attach_client(SpiceCharDeviceInstance *char_device,
|
|
SmartCardChannelClient *scc)
|
|
{
|
|
RedCharDeviceSmartcard *dev = red_char_device_opaque_get(char_device->st);
|
|
int client_added;
|
|
|
|
spice_assert(!scc->priv->smartcard && !dev->priv->scc);
|
|
dev->priv->scc = scc;
|
|
scc->priv->smartcard = dev;
|
|
client_added = red_char_device_client_add(RED_CHAR_DEVICE(dev),
|
|
red_channel_client_get_client(&scc->base),
|
|
FALSE, /* no flow control yet */
|
|
0, /* send queue size */
|
|
~0,
|
|
~0,
|
|
red_channel_client_is_waiting_for_migrate_data(
|
|
&scc->base));
|
|
if (!client_added) {
|
|
spice_warning("failed");
|
|
dev->priv->scc = NULL;
|
|
scc->priv->smartcard = NULL;
|
|
red_channel_client_disconnect(&scc->base);
|
|
}
|
|
}
|
|
|
|
static void smartcard_char_device_notify_reader_remove(RedCharDeviceSmartcard *dev)
|
|
{
|
|
RedCharDeviceWriteBuffer *write_buf;
|
|
VSCMsgHeader *vheader;
|
|
|
|
if (!dev->priv->reader_added) {
|
|
spice_debug("reader add was never sent to the device");
|
|
return;
|
|
}
|
|
write_buf = red_char_device_write_buffer_get(RED_CHAR_DEVICE(dev), NULL, sizeof(*vheader));
|
|
if (!write_buf) {
|
|
spice_error("failed to allocate write buffer");
|
|
return;
|
|
}
|
|
dev->priv->reader_added = FALSE;
|
|
vheader = (VSCMsgHeader *)write_buf->buf;
|
|
vheader->type = VSC_ReaderRemove;
|
|
vheader->reader_id = dev->priv->reader_id;
|
|
vheader->length = 0;
|
|
smartcard_channel_write_to_reader(write_buf);
|
|
}
|
|
|
|
static void smartcard_char_device_detach_client(SmartCardChannelClient *scc)
|
|
{
|
|
RedCharDeviceSmartcard *dev;
|
|
|
|
if (!scc->priv->smartcard) {
|
|
return;
|
|
}
|
|
dev = scc->priv->smartcard;
|
|
spice_assert(dev->priv->scc == scc);
|
|
red_char_device_client_remove(RED_CHAR_DEVICE(dev),
|
|
red_channel_client_get_client(&scc->base));
|
|
scc->priv->smartcard = NULL;
|
|
dev->priv->scc = NULL;
|
|
}
|
|
|
|
static int smartcard_channel_client_config_socket(RedChannelClient *rcc)
|
|
{
|
|
return TRUE;
|
|
}
|
|
|
|
static uint8_t *smartcard_channel_alloc_msg_rcv_buf(RedChannelClient *rcc,
|
|
uint16_t type,
|
|
uint32_t size)
|
|
{
|
|
SmartCardChannelClient *scc = SPICE_CONTAINEROF(rcc, SmartCardChannelClient, base);
|
|
|
|
/* todo: only one reader is actually supported. When we fix the code to support
|
|
* multiple readers, we will porbably associate different devices to
|
|
* differenc channels */
|
|
if (!scc->priv->smartcard) {
|
|
scc->priv->msg_in_write_buf = FALSE;
|
|
return spice_malloc(size);
|
|
} else {
|
|
RedCharDeviceSmartcard *dev;
|
|
|
|
spice_assert(g_smartcard_readers.num == 1);
|
|
dev = scc->priv->smartcard;
|
|
spice_assert(dev->priv->scc || scc->priv->smartcard);
|
|
spice_assert(!scc->priv->write_buf);
|
|
scc->priv->write_buf = red_char_device_write_buffer_get(RED_CHAR_DEVICE(dev),
|
|
red_channel_client_get_client(rcc),
|
|
size);
|
|
|
|
if (!scc->priv->write_buf) {
|
|
spice_error("failed to allocate write buffer");
|
|
return NULL;
|
|
}
|
|
scc->priv->msg_in_write_buf = TRUE;
|
|
return scc->priv->write_buf->buf;
|
|
}
|
|
}
|
|
|
|
static void smartcard_channel_release_msg_rcv_buf(RedChannelClient *rcc,
|
|
uint16_t type,
|
|
uint32_t size,
|
|
uint8_t *msg)
|
|
{
|
|
SmartCardChannelClient *scc = SPICE_CONTAINEROF(rcc, SmartCardChannelClient, base);
|
|
|
|
/* todo: only one reader is actually supported. When we fix the code to support
|
|
* multiple readers, we will porbably associate different devices to
|
|
* differenc channels */
|
|
|
|
if (!scc->priv->msg_in_write_buf) {
|
|
spice_assert(!scc->priv->write_buf);
|
|
free(msg);
|
|
} else {
|
|
if (scc->priv->write_buf) { /* msg hasn't been pushed to the guest */
|
|
spice_assert(scc->priv->write_buf->buf == msg);
|
|
red_char_device_write_buffer_release(RED_CHAR_DEVICE(scc->priv->smartcard), &scc->priv->write_buf);
|
|
}
|
|
}
|
|
}
|
|
|
|
static void smartcard_channel_send_data(RedChannelClient *rcc, SpiceMarshaller *m,
|
|
RedPipeItem *item, VSCMsgHeader *vheader)
|
|
{
|
|
spice_assert(rcc);
|
|
spice_assert(vheader);
|
|
red_channel_client_init_send_data(rcc, SPICE_MSG_SMARTCARD_DATA, item);
|
|
spice_marshaller_add_ref(m, (uint8_t*)vheader, sizeof(VSCMsgHeader));
|
|
if (vheader->length > 0) {
|
|
spice_marshaller_add_ref(m, (uint8_t*)(vheader+1), vheader->length);
|
|
}
|
|
}
|
|
|
|
static void smartcard_channel_send_error(
|
|
RedChannelClient *rcc, SpiceMarshaller *m, RedPipeItem *item)
|
|
{
|
|
RedErrorItem* error_item = SPICE_UPCAST(RedErrorItem, item);
|
|
|
|
smartcard_channel_send_data(rcc, m, item, &error_item->vheader);
|
|
}
|
|
|
|
static void smartcard_channel_send_msg(RedChannelClient *rcc,
|
|
SpiceMarshaller *m, RedPipeItem *item)
|
|
{
|
|
RedMsgItem* msg_item = SPICE_UPCAST(RedMsgItem, item);
|
|
|
|
smartcard_channel_send_data(rcc, m, item, msg_item->vheader);
|
|
}
|
|
|
|
static void smartcard_channel_send_migrate_data(RedChannelClient *rcc,
|
|
SpiceMarshaller *m, RedPipeItem *item)
|
|
{
|
|
SmartCardChannelClient *scc;
|
|
RedCharDeviceSmartcard *dev;
|
|
SpiceMarshaller *m2;
|
|
|
|
scc = SPICE_CONTAINEROF(rcc, SmartCardChannelClient, base);
|
|
dev = scc->priv->smartcard;
|
|
red_channel_client_init_send_data(rcc, SPICE_MSG_MIGRATE_DATA, item);
|
|
spice_marshaller_add_uint32(m, SPICE_MIGRATE_DATA_SMARTCARD_MAGIC);
|
|
spice_marshaller_add_uint32(m, SPICE_MIGRATE_DATA_SMARTCARD_VERSION);
|
|
|
|
if (!dev) {
|
|
red_char_device_migrate_data_marshall_empty(m);
|
|
spice_marshaller_add_uint8(m, 0);
|
|
spice_marshaller_add_uint32(m, 0);
|
|
spice_marshaller_add_uint32(m, 0);
|
|
spice_debug("null char dev");
|
|
} else {
|
|
red_char_device_migrate_data_marshall(RED_CHAR_DEVICE(dev), m);
|
|
spice_marshaller_add_uint8(m, dev->priv->reader_added);
|
|
spice_marshaller_add_uint32(m, dev->priv->buf_used);
|
|
m2 = spice_marshaller_get_ptr_submarshaller(m, 0);
|
|
spice_marshaller_add(m2, dev->priv->buf, dev->priv->buf_used);
|
|
spice_debug("reader added %d partial read size %u", dev->priv->reader_added, dev->priv->buf_used);
|
|
}
|
|
}
|
|
|
|
static void smartcard_channel_send_item(RedChannelClient *rcc, RedPipeItem *item)
|
|
{
|
|
SpiceMarshaller *m = red_channel_client_get_marshaller(rcc);
|
|
|
|
switch (item->type) {
|
|
case RED_PIPE_ITEM_TYPE_ERROR:
|
|
smartcard_channel_send_error(rcc, m, item);
|
|
break;
|
|
case RED_PIPE_ITEM_TYPE_SMARTCARD_DATA:
|
|
smartcard_channel_send_msg(rcc, m, item);
|
|
break;
|
|
case RED_PIPE_ITEM_TYPE_SMARTCARD_MIGRATE_DATA:
|
|
smartcard_channel_send_migrate_data(rcc, m, item);
|
|
break;
|
|
default:
|
|
spice_error("bad pipe item %d", item->type);
|
|
return;
|
|
}
|
|
red_channel_client_begin_send_message(rcc);
|
|
}
|
|
|
|
static void smartcard_channel_on_disconnect(RedChannelClient *rcc)
|
|
{
|
|
SmartCardChannelClient *scc = SPICE_CONTAINEROF(rcc, SmartCardChannelClient, base);
|
|
|
|
if (scc->priv->smartcard) {
|
|
RedCharDeviceSmartcard *dev = scc->priv->smartcard;
|
|
|
|
smartcard_char_device_detach_client(scc);
|
|
smartcard_char_device_notify_reader_remove(dev);
|
|
}
|
|
}
|
|
|
|
/* this is called from both device input and client input. since the device is
|
|
* a usb device, the context is still the main thread (kvm_main_loop, timers)
|
|
* so no mutex is required. */
|
|
static void smartcard_channel_client_pipe_add_push(RedChannelClient *rcc,
|
|
RedPipeItem *item)
|
|
{
|
|
red_channel_client_pipe_add_push(rcc, item);
|
|
}
|
|
|
|
static void smartcard_push_error(RedChannelClient *rcc, uint32_t reader_id, VSCErrorCode error)
|
|
{
|
|
RedErrorItem *error_item = spice_new0(RedErrorItem, 1);
|
|
|
|
red_pipe_item_init(&error_item->base, RED_PIPE_ITEM_TYPE_ERROR);
|
|
|
|
error_item->vheader.reader_id = reader_id;
|
|
error_item->vheader.type = VSC_Error;
|
|
error_item->vheader.length = sizeof(error_item->error);
|
|
error_item->error.code = error;
|
|
smartcard_channel_client_pipe_add_push(rcc, &error_item->base);
|
|
}
|
|
|
|
static void smartcard_free_vsc_msg_item(RedPipeItem *base)
|
|
{
|
|
RedMsgItem *item = SPICE_UPCAST(RedMsgItem, base);
|
|
free(item->vheader);
|
|
free(item);
|
|
}
|
|
|
|
static RedMsgItem *smartcard_get_vsc_msg_item(RedChannelClient *rcc,
|
|
VSCMsgHeader *vheader)
|
|
{
|
|
RedMsgItem *msg_item = spice_new0(RedMsgItem, 1);
|
|
|
|
red_pipe_item_init_full(&msg_item->base, RED_PIPE_ITEM_TYPE_SMARTCARD_DATA,
|
|
smartcard_free_vsc_msg_item);
|
|
msg_item->vheader = vheader;
|
|
return msg_item;
|
|
}
|
|
|
|
static void smartcard_remove_reader(SmartCardChannelClient *scc, uint32_t reader_id)
|
|
{
|
|
SpiceCharDeviceInstance *char_device = smartcard_readers_get(reader_id);
|
|
RedCharDeviceSmartcard *dev;
|
|
|
|
if (char_device == NULL) {
|
|
smartcard_push_error(&scc->base, reader_id,
|
|
VSC_GENERAL_ERROR);
|
|
return;
|
|
}
|
|
|
|
dev = red_char_device_opaque_get(char_device->st);
|
|
if (dev->priv->reader_added == FALSE) {
|
|
smartcard_push_error(&scc->base, reader_id,
|
|
VSC_GENERAL_ERROR);
|
|
return;
|
|
}
|
|
spice_assert(scc->priv->smartcard == dev);
|
|
smartcard_char_device_notify_reader_remove(dev);
|
|
}
|
|
|
|
static void smartcard_add_reader(SmartCardChannelClient *scc, uint8_t *name)
|
|
{
|
|
if (!scc->priv->smartcard) { /* we already tried to attach a reader to the client
|
|
when it connected */
|
|
SpiceCharDeviceInstance *char_device = smartcard_readers_get_unattached();
|
|
|
|
if (!char_device) {
|
|
smartcard_push_error(&scc->base, VSCARD_UNDEFINED_READER_ID,
|
|
VSC_CANNOT_ADD_MORE_READERS);
|
|
return;
|
|
}
|
|
smartcard_char_device_attach_client(char_device, scc);
|
|
}
|
|
smartcard_char_device_notify_reader_add(scc->priv->smartcard);
|
|
// The device sends a VSC_Error message, we will let it through, no
|
|
// need to send our own. We already set the correct reader_id, from
|
|
// our RedCharDeviceSmartcard.
|
|
}
|
|
|
|
static void smartcard_channel_write_to_reader(RedCharDeviceWriteBuffer *write_buf)
|
|
{
|
|
SpiceCharDeviceInstance *sin;
|
|
RedCharDeviceSmartcard *dev;
|
|
VSCMsgHeader *vheader;
|
|
uint32_t actual_length;
|
|
|
|
vheader = (VSCMsgHeader *)write_buf->buf;
|
|
actual_length = vheader->length;
|
|
|
|
spice_assert(vheader->reader_id <= g_smartcard_readers.num);
|
|
sin = g_smartcard_readers.sin[vheader->reader_id];
|
|
dev = (RedCharDeviceSmartcard *)red_char_device_opaque_get(sin->st);
|
|
spice_assert(!dev->priv->scc || dev == dev->priv->scc->priv->smartcard);
|
|
/* protocol requires messages to be in network endianess */
|
|
vheader->type = htonl(vheader->type);
|
|
vheader->length = htonl(vheader->length);
|
|
vheader->reader_id = htonl(vheader->reader_id);
|
|
write_buf->buf_used = actual_length + sizeof(VSCMsgHeader);
|
|
/* pushing the buffer to the write queue; It will be released
|
|
* when it will be fully consumed by the device */
|
|
red_char_device_write_buffer_add(sin->st, write_buf);
|
|
if (dev->priv->scc && write_buf == dev->priv->scc->priv->write_buf) {
|
|
dev->priv->scc->priv->write_buf = NULL;
|
|
}
|
|
}
|
|
|
|
static int smartcard_channel_client_handle_migrate_flush_mark(RedChannelClient *rcc)
|
|
{
|
|
red_channel_client_pipe_add_type(rcc, RED_PIPE_ITEM_TYPE_SMARTCARD_MIGRATE_DATA);
|
|
return TRUE;
|
|
}
|
|
|
|
static void smartcard_device_restore_partial_read(RedCharDeviceSmartcard *dev,
|
|
SpiceMigrateDataSmartcard *mig_data)
|
|
{
|
|
uint8_t *read_data;
|
|
|
|
spice_debug("read_size %u", mig_data->read_size);
|
|
read_data = (uint8_t *)mig_data + mig_data->read_data_ptr - sizeof(SpiceMigrateDataHeader);
|
|
if (mig_data->read_size < sizeof(VSCMsgHeader)) {
|
|
spice_assert(dev->priv->buf_size >= mig_data->read_size);
|
|
} else {
|
|
smartcard_read_buf_prepare(dev, (VSCMsgHeader *)read_data);
|
|
}
|
|
memcpy(dev->priv->buf, read_data, mig_data->read_size);
|
|
dev->priv->buf_used = mig_data->read_size;
|
|
dev->priv->buf_pos = dev->priv->buf + mig_data->read_size;
|
|
}
|
|
|
|
static int smartcard_channel_client_handle_migrate_data(RedChannelClient *rcc,
|
|
uint32_t size, void *message)
|
|
{
|
|
SmartCardChannelClient *scc;
|
|
SpiceMigrateDataHeader *header;
|
|
SpiceMigrateDataSmartcard *mig_data;
|
|
|
|
scc = SPICE_CONTAINEROF(rcc, SmartCardChannelClient, base);
|
|
header = (SpiceMigrateDataHeader *)message;
|
|
mig_data = (SpiceMigrateDataSmartcard *)(header + 1);
|
|
if (size < sizeof(SpiceMigrateDataHeader) + sizeof(SpiceMigrateDataSmartcard)) {
|
|
spice_error("bad message size");
|
|
return FALSE;
|
|
}
|
|
if (!migration_protocol_validate_header(header,
|
|
SPICE_MIGRATE_DATA_SMARTCARD_MAGIC,
|
|
SPICE_MIGRATE_DATA_SMARTCARD_VERSION)) {
|
|
spice_error("bad header");
|
|
return FALSE;
|
|
}
|
|
|
|
if (!mig_data->base.connected) { /* client wasn't attached to a smartcard */
|
|
return TRUE;
|
|
}
|
|
|
|
if (!scc->priv->smartcard) {
|
|
SpiceCharDeviceInstance *char_device = smartcard_readers_get_unattached();
|
|
|
|
if (!char_device) {
|
|
spice_warning("no unattached device available");
|
|
return TRUE;
|
|
} else {
|
|
smartcard_char_device_attach_client(char_device, scc);
|
|
}
|
|
}
|
|
spice_debug("reader added %d partial read_size %u", mig_data->reader_added, mig_data->read_size);
|
|
scc->priv->smartcard->priv->reader_added = mig_data->reader_added;
|
|
|
|
smartcard_device_restore_partial_read(scc->priv->smartcard, mig_data);
|
|
return red_char_device_restore(RED_CHAR_DEVICE(scc->priv->smartcard), &mig_data->base);
|
|
}
|
|
|
|
static int smartcard_channel_handle_message(RedChannelClient *rcc,
|
|
uint16_t type,
|
|
uint32_t size,
|
|
uint8_t *msg)
|
|
{
|
|
VSCMsgHeader* vheader = (VSCMsgHeader*)msg;
|
|
SmartCardChannelClient *scc = SPICE_CONTAINEROF(rcc, SmartCardChannelClient, base);
|
|
|
|
if (type != SPICE_MSGC_SMARTCARD_DATA) {
|
|
/* Handles seamless migration protocol. Also handles ack's,
|
|
* spicy sends them while spicec does not */
|
|
return red_channel_client_handle_message(rcc, size, type, msg);
|
|
}
|
|
|
|
spice_assert(size == vheader->length + sizeof(VSCMsgHeader));
|
|
switch (vheader->type) {
|
|
case VSC_ReaderAdd:
|
|
smartcard_add_reader(scc, msg + sizeof(VSCMsgHeader));
|
|
return TRUE;
|
|
break;
|
|
case VSC_ReaderRemove:
|
|
smartcard_remove_reader(scc, vheader->reader_id);
|
|
return TRUE;
|
|
break;
|
|
case VSC_Init:
|
|
// ignore - we should never get this anyway
|
|
return TRUE;
|
|
break;
|
|
case VSC_Error:
|
|
case VSC_ATR:
|
|
case VSC_CardRemove:
|
|
case VSC_APDU:
|
|
break; // passed on to device
|
|
default:
|
|
printf("ERROR: unexpected message on smartcard channel\n");
|
|
return TRUE;
|
|
}
|
|
|
|
/* todo: fix */
|
|
if (vheader->reader_id >= g_smartcard_readers.num) {
|
|
spice_printerr("ERROR: received message for non existing reader: %d, %d, %d", vheader->reader_id,
|
|
vheader->type, vheader->length);
|
|
return FALSE;
|
|
}
|
|
spice_assert(scc->priv->write_buf->buf == msg);
|
|
smartcard_channel_write_to_reader(scc->priv->write_buf);
|
|
|
|
return TRUE;
|
|
}
|
|
|
|
static void smartcard_connect_client(RedChannel *channel, RedClient *client,
|
|
RedsStream *stream, int migration,
|
|
int num_common_caps, uint32_t *common_caps,
|
|
int num_caps, uint32_t *caps)
|
|
{
|
|
SpiceCharDeviceInstance *char_device =
|
|
smartcard_readers_get_unattached();
|
|
|
|
SmartCardChannelClient *scc;
|
|
|
|
scc = (SmartCardChannelClient *)red_channel_client_create(sizeof(SmartCardChannelClient),
|
|
channel,
|
|
client,
|
|
stream,
|
|
FALSE,
|
|
num_common_caps, common_caps,
|
|
num_caps, caps);
|
|
if (!scc) {
|
|
return;
|
|
}
|
|
red_channel_client_ack_zero_messages_window(&scc->base);
|
|
|
|
if (char_device) {
|
|
smartcard_char_device_attach_client(char_device, scc);
|
|
} else {
|
|
spice_printerr("char dev unavailable");
|
|
}
|
|
}
|
|
|
|
SmartCardChannel *g_smartcard_channel;
|
|
|
|
static void smartcard_init(RedsState *reds)
|
|
{
|
|
ChannelCbs channel_cbs = { NULL, };
|
|
ClientCbs client_cbs = { NULL, };
|
|
uint32_t migration_flags = SPICE_MIGRATE_NEED_FLUSH | SPICE_MIGRATE_NEED_DATA_TRANSFER;
|
|
|
|
spice_assert(!g_smartcard_channel);
|
|
|
|
channel_cbs.config_socket = smartcard_channel_client_config_socket;
|
|
channel_cbs.on_disconnect = smartcard_channel_on_disconnect;
|
|
channel_cbs.send_item = smartcard_channel_send_item;
|
|
channel_cbs.alloc_recv_buf = smartcard_channel_alloc_msg_rcv_buf;
|
|
channel_cbs.release_recv_buf = smartcard_channel_release_msg_rcv_buf;
|
|
channel_cbs.handle_migrate_flush_mark = smartcard_channel_client_handle_migrate_flush_mark;
|
|
channel_cbs.handle_migrate_data = smartcard_channel_client_handle_migrate_data;
|
|
|
|
g_smartcard_channel = (SmartCardChannel*)red_channel_create(sizeof(SmartCardChannel),
|
|
reds,
|
|
reds_get_core_interface(reds),
|
|
SPICE_CHANNEL_SMARTCARD, 0,
|
|
FALSE /* handle_acks */,
|
|
smartcard_channel_handle_message,
|
|
&channel_cbs,
|
|
migration_flags);
|
|
|
|
if (!g_smartcard_channel) {
|
|
spice_error("failed to allocate Smartcard Channel");
|
|
}
|
|
|
|
client_cbs.connect = smartcard_connect_client;
|
|
red_channel_register_client_cbs(&g_smartcard_channel->base, &client_cbs, NULL);
|
|
|
|
reds_register_channel(reds, &g_smartcard_channel->base);
|
|
}
|
|
|
|
|
|
static void
|
|
red_char_device_smartcard_finalize(GObject *object)
|
|
{
|
|
RedCharDeviceSmartcard *self = RED_CHAR_DEVICE_SMARTCARD(object);
|
|
|
|
free(self->priv->buf);
|
|
if (self->priv->scc) {
|
|
self->priv->scc->priv->smartcard = NULL;
|
|
}
|
|
|
|
G_OBJECT_CLASS(red_char_device_smartcard_parent_class)->finalize(object);
|
|
}
|
|
|
|
static void
|
|
red_char_device_smartcard_class_init(RedCharDeviceSmartcardClass *klass)
|
|
{
|
|
GObjectClass *object_class = G_OBJECT_CLASS(klass);
|
|
RedCharDeviceClass *char_dev_class = RED_CHAR_DEVICE_CLASS(klass);
|
|
|
|
g_type_class_add_private(klass, sizeof (RedCharDeviceSmartcardPrivate));
|
|
|
|
object_class->finalize = red_char_device_smartcard_finalize;
|
|
|
|
char_dev_class->read_one_msg_from_device = smartcard_read_msg_from_device;
|
|
char_dev_class->send_msg_to_client = smartcard_send_msg_to_client;
|
|
char_dev_class->send_tokens_to_client = smartcard_send_tokens_to_client;
|
|
char_dev_class->remove_client = smartcard_remove_client;
|
|
}
|
|
|
|
static void
|
|
red_char_device_smartcard_init(RedCharDeviceSmartcard *self)
|
|
{
|
|
self->priv = RED_CHAR_DEVICE_SMARTCARD_PRIVATE(self);
|
|
|
|
self->priv->reader_id = VSCARD_UNDEFINED_READER_ID;
|
|
self->priv->buf_size = APDUBufSize + sizeof(VSCMsgHeader);
|
|
self->priv->buf = spice_malloc(self->priv->buf_size);
|
|
self->priv->buf_pos = self->priv->buf;
|
|
}
|