ericonr
/
purr-c
mirror of https://github.com/ericonr/purr-c.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Pure C client for PurritoBin and other networking projects
82 Commits 1 Branch 0 Tags 218 KiB
C 95.7%
Meson 2.2%
Makefile 1.1%
Shell 1%
Go to file
Érico Rolim 367fbc823f Fix read_certs to receive FILE instead of a path. 
This change lead to completely overhauling the bearssl_read_certs()
function, which now deals directly with FILES, instead of depending on
mmap_file. There is some slight added complexity for dealing with the
file reads.

The idea for this came from the idea of implementing path resolution
using openat() instead of path concatenation, so there was a need to
pass either fds or file streams to functions instead of specific paths.
 		2020-10-16 01:13:09 -03:00
extern/libbaseencode Add comment to FTMs, use less varied ones. 2020-10-01 16:41:12 -03:00
.gitignore Add very simple gemini client. 2020-09-18 19:52:42 -03:00
LICENSE Add README and LICENSE. 2020-09-13 21:40:15 -03:00
README.md Add path resolution to gemini. 2020-10-04 01:35:01 -03:00
comm.c Improve file descriptor handling. 2020-10-15 20:45:05 -03:00
configure Build system fixes. 2020-10-15 20:48:24 -03:00
cproc-make Remove trailing slash in cproc-make PREFIX. 2020-09-25 20:16:06 -03:00
encrypt.c General cleanup: comments and test cases. 2020-10-04 01:31:43 -03:00
files.c Fix memory leak with redirect_link. 2020-10-15 22:29:48 -03:00
formats.c General cleanup: comments and test cases. 2020-10-04 01:31:43 -03:00
gemi.c Fix read_certs to receive FILE instead of a path. 2020-10-16 01:13:09 -03:00
gemini.c Fix memory leak with redirect_link. 2020-10-15 22:29:48 -03:00
gemini.h Fix memory leak with redirect_link. 2020-10-15 22:29:48 -03:00
makefile Build system fixes. 2020-10-15 20:48:24 -03:00
mmap_file.c Clear up input file code in purr. 2020-10-01 19:09:27 -03:00
mmap_file.h Fix compilation under glibc. 2020-09-24 20:48:22 -03:00
pager.c Improve file descriptor handling. 2020-10-15 20:45:05 -03:00
pager.h Add pager implementation, use in gemi. 2020-10-01 03:19:02 -03:00
purr.c Make it possible to read certs from multiple files 2020-10-15 22:31:38 -03:00
purr.h Fix memory leak with redirect_link. 2020-10-15 22:29:48 -03:00
read_certs.c Fix read_certs to receive FILE instead of a path. 2020-10-16 01:13:09 -03:00
read_certs.h Fix read_certs to receive FILE instead of a path. 2020-10-16 01:13:09 -03:00
socket.c Split functionality into different files. 2020-09-10 23:33:52 -03:00
tests.c Simplify test.c error counting. 2020-10-06 19:11:40 -03:00
urls.c Improve connection error messages. 2020-10-15 20:49:11 -03:00

README.md

purr-c

This repository holds some loosely related networking projects of mine. This is mainly a learning exercise for network, crypto and SSL programming, and all of the programs inside should be treated as such.

The BearSSL library was chosen as the crypto and SSL implementation.

libbaseencode has been vendored in (can be found in external/libbaseencode), but has also gone through some changes, namely removing null-byte checking from the base64 encoding function, adding an output length parameter to the base64 decoding function and fixing Valgrind warnings about out-of-bounds accesses.

The code has a few instances of // TODO: remove hack comments and the like, which I hope to get to someday.

Building

The only external dependency is BearSSL - on Void Linux, this can be obtained with the bearssl-devel package. GNU Make and a C99 compiler, such as cproc, are required for building.

You can build and install the project with the commands below:

$ ./configure # creates config.mk
$ make
$ make install PREFIX=$HOME/.local/bin

Programs

purr

This is a pure C client for the PurritoBin pastebin server, and uses PurritoBin's author's instance in https://bsd.ac by default.

It supports symmetric paste encryption (as supported by PurritoBin's online interface and its suggested clients). This makes it possible to share paste links that can only be decrypted by someone who has the keys to them. The key and IV are stored in the url's hash property, and are never sent to the server.

It can also work as a very limited curl alternative, due to its support of both HTTP and HTTPS. It uses HTTP/1.0 for communication, but requires the Content-Length field in the response header - this is done because I have found servers that don't send notify_close when their transmission is done, instead relying on the Content-Length field to provide enough information for the client to determine if the transmission was sucessful or if the connection was terminated before it should have been.

This program can use either Linux's getrandom(2) system call or BSD's arc4random_buf(3) function for key generation.

Usage

Usage information can be viewed with purr -h. There are two symlinks to the purr executable, meow and meowd, which are used as shortcuts to send and receive encrypted pastes, respectively.

gemi

This is a (kind of) dumb Gemini client. For now, it requires servers with certificates that can be verified by the client's trust anchors, which means it isn't fully compliant with the Gemini spec, since it requires support for self-signed certificates via the TOFU (Trust On First Use) system.

It has a built-in "navigation" mechanism via the -b command line flag, which parses the received page, finds links, asks the user to select one, and execs into itself with the new link.

It supports parsing server messages, including redirects, and can deal with complex links, such as ../../docs. Due to requiring a complete certificate trust chain, it has yet to be submitted to the browser torture test.

Usage

Usage information can be viewed with gemi -h.

Acknowledgements

  • Thomas Pornin for BearSSL
  • Laurent Bercot for s6-networking (even though it's no longer in use here)
  • epsilon-0 for PurritoBin (and the valuable help while I was testing this program)
  • paolostivanin for libbaseencode