enigma(1): Restyle code, fix salt bug, reword manual, other improvements
Needs ReviewPublic
Actions

Authored by sg on Sep 6 2019, 6:10 AM.

Details

Reviewers

bcr
emaste

Group Reviewers

manpages
Contributor Reviews (src)

Summary

I was working on making a portable version of crypt and decided to use
the FreeBSD version. I cleaned up the source and fixed a small bug in
the process, which I've merged back here:

Reformat code to conform to style(9) guide.
Use getopt for option handling.
Replaced getpass(3) with the better readpassphrase(3).
Since we use the first two bits of the key as the salt, check if the key contains valid DES contains valid characters.
Replace error message code with err/x.
Change variable types to be more consistient.

Also, this is my first time using Phab. I may not get everything right.

Test Plan

I did not compile this, as I currently don't have access to a FreeBSD
dev machine. However, I did test the portable version using files
generated from a Solaris 10 machine, and they decrypted fine.

Diff Detail

Repository

rS FreeBSD src repository - subversion

Lint

Lint Passed

Unit

No Test Coverage

Build Status

Buildable 26334
Build 24809: arc lint + arc unit

Event Timeline

sg created this revision.Sep 6 2019, 6:10 AM

Herald added a reviewer: manpages. · View Herald TranscriptSep 6 2019, 6:10 AM

Herald added a subscriber: imp. · View Herald Transcript

Harbormaster completed remote builds in B26300: Diff 61716.Sep 6 2019, 6:10 AM

I setup my src tree on freefall and realised my work was very sloppy:
missing semicolons, incorrect function declarations and a subtle bug
with using err(). These are now fixed.

I also changed the manual slightly by adding dollar ('$') chars to code
that is to be run in the shell.

Harbormaster completed remote builds in B26334: Diff 61801.Sep 8 2019, 2:19 AM

The man page looks good so far. Can you give it a run with "igor <path/to/manpage" and "mandoc -Tlint" to see if they emit any warnings?
@imp: Can you help review the code changes whether they make sense? Thank you!

Adding Ed, maybe he has time to review the code. I don't want to add the whole secteam yet...

I don't want to add the whole secteam yet...

I'll try to look at this, but there's no need for secteam's involvement in changes to this code.

Run enigma.c through FreeBSD clang-format

Harbormaster completed remote builds in B26495: Diff 62091.Sep 14 2019, 1:03 PM

@bcr I already check my manuals with mandoc -Tlint and igor and can confirm that there are no warnings/errors.

OK, looks good to me from the manpage side of things.

Any updates on this one?

pstef added a subscriber: pstef.Sep 24 2021, 11:08 AM

pstef added inline comments.

usr.bin/enigma/enigma.1
60–64	The "rather small cryptographic value" is not wrong and "worse than useless" is unnecessarily contemptuous for a manual.
usr.bin/enigma/enigma.c
25–42	I see no reason to initialize these.

emaste added inline comments.Sep 24 2021, 12:22 PM

usr.bin/enigma/enigma.1
49	this seems to imply that it the ability to examine environment variables is (part of) the reason for this option. How about something like either This option is provided for compatibility with other implementations; environment variables can also be examined with ps. or This option is provided for compatibility with other implementations. Note that environment variables can also be examined with ps.
55–56	I wouldn't even say "supposedly more secure" here, perhaps the encryption engine is modified in a way that is incompatible with other implementations. and then maybe expand with "This was previously documented as being more secure, but .Nm has no cryptographic value with or without the -s option."

emaste added inline comments.Sep 24 2021, 12:27 PM

usr.bin/enigma/enigma.c
195–197	it's hard to review when functional changes are combined with whitespace changes. I would suggest submiting a change to fix style(9) issues first followed by functional changes