/[winpt]/trunk/Src/wptPassphraseCB.cpp
ViewVC logotype

Annotation of /trunk/Src/wptPassphraseCB.cpp

Parent Directory Parent Directory | Revision Log Revision Log

Revision 160 - (hide annotations)
Thu Jan 19 09:22:09 2006 UTC (19 years, 1 month ago) by twoaday
File size: 13557 byte(s) 
2006-01-18  Timo Schulz  <ts@g10code.com>
 
        * wptKeyEditCB.cpp (cmd_delsig_handler): Do not assume
        the self sig is always index 0. Noted by Kurt.
        * wptPassphraseCB.cpp (passphrase_dlg_proc): Do not assume
        the key user-ID contains an email address.
        * wptKeyEditDlgs.cpp (do_find_userid): Likewise.
        (do_editkey_deluid): Likewise.
        (do_editkey_revuid): Likewise.
1 werner 36 /* wptPassphraseCB.cpp - GPGME Passphrase Callback
2     * Copyright (C) 2001, 2002, 2003, 2005 Timo Schulz
3     * Copyright (C) 2005 g10 Code GmbH
4     *
5     * This file is part of WinPT.
6     *
7     * WinPT is free software; you can redistribute it and/or
8     * modify it under the terms of the GNU General Public License
9     * as published by the Free Software Foundation; either version 2
10     * of the License, or (at your option) any later version.
11     *
12     * WinPT is distributed in the hope that it will be useful,
13     * but WITHOUT ANY WARRANTY; without even the implied warranty of
14     * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15     * General Public License for more details.
16     *
17     * You should have received a copy of the GNU General Public License
18     * along with WinPT; if not, write to the Free Software Foundation,
19     * Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
20     */
21    
22     #ifdef HAVE_CONFIG_H
23     #include <config.h>
24     #endif
25    
26     #include <windows.h>
27     #include <ctype.h>
28    
29 werner 47 #include "resource.h"
30 werner 36 #include "wptNLS.h"
31     #include "wptW32API.h"
32     #include "wptVersion.h"
33     #include "wptGPG.h"
34     #include "wptCommonCtl.h"
35     #include "wptContext.h"
36     #include "wptDlgs.h"
37     #include "wptUTF8.h"
38     #include "wptErrors.h"
39     #include "wptTypes.h"
40 werner 48 #include "wptKeylist.h"
41 werner 36 #include "wptAgent.h"
42     #include "wptRegistry.h"
43    
44     const char* get_symkey_algo (int algo);
45    
46     #define item_ctrl_id( cmd ) \
47     ((cmd) == GPG_CMD_DECRYPT? IDC_DECRYPT_PWD : IDC_DECRYPT_SIGN_PWD)
48    
49     #define item_ctrl_id2(cmd) \
50     ((cmd) == GPG_CMD_DECRYPT? IDC_DECRYPT_HIDE : IDC_DECRYPT_SIGN_HIDE)
51    
52    
53     /* Overwrite passphrase and free memory. */
54     static void
55     burn_passphrase (char **pwd)
56     {
57     char *pass = *pwd;
58     wipememory (pass, strlen (pass));
59     delete []pass;
60     *pwd = NULL;
61     }
62    
63    
64     /* Dialog procedure for the passphrase callback. */
65     static BOOL CALLBACK
66     passphrase_callback_proc (HWND dlg, UINT msg, WPARAM wparam, LPARAM lparam)
67     {
68 twoaday 77 static passphrase_cb_s *c;
69     gpgme_decrypt_result_t res=NULL;
70     gpgme_sign_result_t res_sig=NULL;
71 werner 36 gpgme_key_t key;
72 twoaday 69 gpgme_recipient_t recip=NULL, r;
73     void *item;
74 werner 36 const char *id;
75     char *info;
76     int n;
77    
78     switch (msg) {
79     case WM_INITDIALOG:
80     c = (passphrase_cb_s *)lparam;
81     if (!c)
82     BUG (0);
83 twoaday 105 SetDlgItemText (dlg, IDCANCEL, _("&Cancel"));
84 twoaday 85 SetDlgItemText (dlg, IDC_DECRYPT_HIDE, _("&Hide Typing"));
85 werner 36 SetWindowText (dlg, c->title);
86     if (c->gpg_cmd == GPG_CMD_DECRYPT) {
87     SetDlgItemText (dlg, IDC_DECRYPT_LISTINF,
88     _("Encrypted with the following public key(s)"));
89     CheckDlgButton (dlg, IDC_DECRYPT_HIDE, BST_CHECKED);
90     }
91 twoaday 95 else if (c->gpg_cmd == GPG_CMD_SIGN) {
92     SetDlgItemText (dlg, IDC_DECRYPT_SIGN_HIDE, _("&Hide Typing"));
93 werner 36 CheckDlgButton (dlg, IDC_DECRYPT_SIGN_HIDE, BST_CHECKED);
94 twoaday 95 }
95 werner 36 if (c->recipients)
96     recip = c->recipients; /* recipients were already extracted. */
97     else {
98     /* XXX: not all ENCRYPT_TO entries are listed here. */
99     res = gpgme_op_decrypt_result (c->gpg);
100     if (res && res->recipients)
101     recip = res->recipients;
102     }
103     if (recip != NULL && c->gpg_cmd == GPG_CMD_DECRYPT) {
104     for (r = res->recipients; r; r = r->next) {
105     get_pubkey (r->keyid, &key);
106     if (key) {
107 twoaday 160 gpgme_user_id_t u = key->uids;
108 werner 36 char *uid;
109 twoaday 160
110     id = u->name;
111 werner 36 if (!id)
112     id = _("Invalid User ID");
113     uid = utf8_to_wincp (id, strlen (id));
114 twoaday 160 n = 32+strlen (uid)+1+4+strlen (r->keyid)+1;
115     if (u->email)
116     n += strlen (u->email)+1;
117     info = new char [n+1];
118 werner 36 if (!info)
119     BUG (NULL);
120 twoaday 160 if (!u->email || strlen (u->email) < 1)
121     sprintf (info, "%s (%s, 0x%s)", uid,
122     get_key_pubalgo (r->pubkey_algo), r->keyid+8);
123     else
124     sprintf (info, "%s <%s> (%s, 0x%s)", uid, u->email,
125     get_key_pubalgo (r->pubkey_algo), r->keyid+8);
126 werner 36 free (uid);
127     }
128     else {
129     info = new char [32 + strlen (r->keyid)+1 + 4];
130     if (!info)
131     BUG (NULL);
132     sprintf (info, _("Unknown key ID (%s, 0x%s)"),
133     get_key_pubalgo (r->pubkey_algo), r->keyid+8);
134     }
135     listbox_add_string (GetDlgItem (dlg, IDC_DECRYPT_LIST), info);
136     free_if_alloc (info);
137     }
138     }
139     else if (c->gpg_cmd == GPG_CMD_DECRYPT)
140     EnableWindow (GetDlgItem (dlg, IDC_DECRYPT_LIST), FALSE);
141     SetDlgItemText (dlg, c->gpg_cmd == GPG_CMD_DECRYPT?
142     IDC_DECRYPT_PWDINFO : IDC_DECRYPT_SIGN_PWDINFO,
143     c->bad_pwd? _("Bad passphrase; Enter passphrase again") :
144     _("Please enter your passphrase"));
145     if (c->gpg_cmd == GPG_CMD_DECRYPT) {
146     SetFocus (GetDlgItem (dlg, IDC_DECRYPT_PWD));
147     if (res && !res->recipients) {
148     const char *s = _("Symmetric encryption.\n"
149     "%s encrypted data.");
150     const char *alg = get_symkey_algo (c->sym.sym_algo);
151     info = new char[strlen (s) + strlen (alg) + 2];
152     if (!info)
153     BUG (NULL);
154     sprintf (info, s, alg);
155     SetDlgItemText (dlg, IDC_DECRYPT_MSG, info);
156     free_if_alloc (info);
157     }
158     else
159     SetDlgItemText (dlg, IDC_DECRYPT_MSG, c->info);
160     }
161     else {
162     SetFocus( GetDlgItem (dlg, IDC_DECRYPT_SIGN_PWD));
163     SetDlgItemText (dlg, IDC_DECRYPT_SIGN_MSG, c->info);
164     }
165     center_window (dlg, NULL);
166     SetForegroundWindow (dlg);
167     return FALSE;
168    
169     case WM_SYSCOMMAND:
170     if (LOWORD (wparam) == SC_CLOSE) {
171     SetDlgItemText (dlg, item_ctrl_id (c->gpg_cmd), "");
172     c->cancel = 1;
173     EndDialog (dlg, TRUE);
174     }
175     break;
176    
177     case WM_COMMAND:
178     switch (HIWORD (wparam)) {
179     case BN_CLICKED:
180     if (LOWORD (wparam) == IDC_DECRYPT_HIDE
181     || LOWORD (wparam) == IDC_DECRYPT_SIGN_HIDE) {
182     HWND hwnd;
183     int hide = IsDlgButtonChecked (dlg, item_ctrl_id2 (c->gpg_cmd));
184     hwnd = GetDlgItem (dlg, item_ctrl_id (c->gpg_cmd));
185     SendMessage (hwnd, EM_SETPASSWORDCHAR, hide? '*' : 0, 0);
186     SetFocus (hwnd);
187     }
188     }
189    
190     switch (LOWORD (wparam)) {
191     case IDOK:
192     /* XXX: the item is even cached when the passphrase is not
193     correct, which means that the user needs to delete all
194     cached entries to continue. */
195     if (c->pwd)
196     burn_passphrase (&c->pwd);
197     n = item_get_text_length (dlg, item_ctrl_id (c->gpg_cmd));
198     if (!n) {
199     c->pwd = new char[2];
200     if (!c->pwd)
201     BUG (NULL);
202     strcpy (c->pwd, "");
203     }
204     else {
205     c->pwd = new char[n+2];
206     if (!c->pwd)
207     BUG (NULL);
208     GetDlgItemText (dlg, item_ctrl_id (c->gpg_cmd), c->pwd, n+1);
209     }
210     res = gpgme_op_decrypt_result (c->gpg);
211     if (!res)
212 twoaday 77 res_sig = gpgme_op_sign_result (c->gpg);
213     if (reg_prefs.cache_time > 0 && !c->is_card &&
214     (res || res_sig)) {
215     if (agent_get_cache (c->keyid, &item))
216 werner 36 agent_unlock_cache_entry (&item);
217 twoaday 77 else
218 werner 36 agent_put_cache (c->keyid, c->pwd, reg_prefs.cache_time);
219     }
220     c->cancel = 0;
221     EndDialog (dlg, TRUE);
222     return TRUE;
223    
224     case IDCANCEL:
225     SetDlgItemText (dlg, item_ctrl_id (c->gpg_cmd), "");
226     c->cancel = 1;
227     EndDialog (dlg, FALSE);
228     return FALSE;
229     }
230     break;
231     }
232    
233     return FALSE;
234     }
235    
236    
237     /* Extract the main keyid from @pass_info.
238     Return value: long main keyid or NULL for an error. */
239     static const char*
240     parse_gpg_keyid (const char *pass_info)
241     {
242     static char keyid[16+1];
243    
244     /* XXX: check for leading alpha-chars? */
245 twoaday 77 if (strlen (pass_info) < 16) {
246     log_debug ("parse_gpg_keyid: error '%s'\r\n", pass_info);
247 werner 36 return NULL;
248 twoaday 77 }
249 werner 36 /* the format of the desc buffer looks like this:
250     request_keyid[16] main_keyid[16] keytype[1] keylength[4]
251     we use the main keyid to use only one cache entry. */
252     strncpy (keyid, pass_info+17, 16);
253     keyid[16] = 0;
254     return keyid;
255     }
256    
257    
258     /* Parse the information in @uid_hint and @pass_info to generate
259     a input message for the user in @desc. */
260     static int
261     parse_gpg_description (const char *uid_hint, const char *pass_info,
262     char *desc, int size)
263     {
264     gpgme_pubkey_algo_t algo;
265     char usedkey[16+1];
266     char mainkey[16+1];
267     char *uid, *p;
268     int n=0;
269    
270 twoaday 69 algo = (gpgme_pubkey_algo_t)0;
271 werner 36 /* Each uid_hint contains a long key-ID so it is at least 16 bytes. */
272     if (strlen (uid_hint) < 17) {
273     *desc = 0;
274 twoaday 77 log_debug ("parse_gpg_description: error '%s'\r\n", uid_hint);
275 werner 36 return -1;
276     }
277    
278     while (p = strsep ((char**)&pass_info, " ")) {
279     switch (n++) {
280     case 0: strncpy (mainkey, p, 16); mainkey[16] = 0; break;
281     case 1: strncpy (usedkey, p, 16); usedkey[16] = 0; break;
282     case 2: algo = (gpgme_pubkey_algo_t)atol (p); break;
283     }
284     }
285     uid_hint += 16; /* skip keyid */
286     uid_hint += 1; /* space */
287    
288     uid = utf8_to_wincp (uid_hint, strlen (uid_hint));
289    
290     if (strcmp (usedkey, mainkey))
291     _snprintf (desc, size-1,
292     _("You need a passphrase to unlock the secret key for\n"
293     "user: \"%s\"\n"
294     "%s key, ID %s (main key ID %s)\n"),
295     uid, get_key_pubalgo (algo), usedkey+8, mainkey+8);
296     else if (!strcmp (usedkey, mainkey))
297     _snprintf (desc, size-1,
298     _("You need a passphrase to unlock the secret key for\n"
299     "user: \"%s\"\n"
300     "%s key, ID %s\n"),
301     uid, get_key_pubalgo (algo), usedkey+8);
302     free (uid);
303     return 0;
304     }
305    
306    
307     /* Extract the serial number from the card ID @id and return it. */
308     const char*
309     extract_serial_no (const char *id)
310     {
311     static char buf[8];
312     char *p;
313    
314     p = strchr (id, '/');
315 twoaday 77 if (!p) {
316     log_debug ("extract_serial_no: error '%s'\r\n", id);
317 werner 36 return NULL;
318 twoaday 77 }
319 werner 36 strncpy (buf, id+(p-id)-6, 6);
320     return buf;
321     }
322    
323    
324     /* Passphrase callback with the ability to support caching. */
325     gpgme_error_t
326     passphrase_cb (void *hook, const char *uid_hint,
327     const char *passphrase_info,
328     int prev_was_bad, int fd)
329     {
330     passphrase_cb_s *c = (passphrase_cb_s*)hook;
331     HANDLE hd = (HANDLE)fd;
332     void *item;
333 twoaday 69 const char *keyid=NULL, *pass;
334 werner 36 DWORD n;
335 twoaday 77 int rc = 0;
336 werner 36
337 twoaday 77 if (!c) {
338     log_debug ("passphrase_cb: error '!c'\r\n");
339 werner 36 return gpg_error (GPG_ERR_INV_ARG);
340 twoaday 77 }
341 werner 36 c->bad_pwd = prev_was_bad? 1 : 0;
342     if (prev_was_bad && !c->cancel) {
343     if (c->pwd)
344     burn_passphrase (&c->pwd);
345     agent_del_cache (c->keyid);
346     c->pwd_init = 1;
347     }
348    
349     if (passphrase_info) {
350     if (strlen (passphrase_info) < 16 &&
351     !strstr (passphrase_info, "OPENPGP")) {
352     /* assume symetric encryption. */
353 twoaday 69 int pos=2;
354 werner 36 c->sym.sym_algo = atoi (passphrase_info);
355     if (c->sym.sym_algo > 9)
356 twoaday 69 pos++;
357 werner 36 /* XXX: be more strict. */
358 twoaday 69 c->sym.s2k_mode = atoi (passphrase_info+pos);
359     c->sym.s2k_hash = atoi (passphrase_info+pos+2);
360 werner 36 }
361    
362     keyid = parse_gpg_keyid (passphrase_info);
363 twoaday 77 pass = agent_get_cache (keyid+8, &item);
364 werner 36 if (pass) {
365     agent_unlock_cache_entry (&item);
366     c->pwd_init = 0;
367     if (!WriteFile (hd, pass, strlen (pass), &n, NULL))
368     log_debug ("passphrase_cb: WriteFile() failed ec=%d\n", w32_errno);
369     if (!WriteFile (hd, "\n", 1, &n, NULL))
370     log_debug ("passphrase_cb: WriteFile() failed ec=%d\n", w32_errno);
371     return 0;
372     }
373     }
374    
375     if (c->pwd_init) {
376     if (keyid && strlen (keyid) == 16)
377     strcpy (c->keyid, keyid+8);
378    
379     /* if @passphrase_info contains 'OPENPGP' we assume a smart card
380     has been used. */
381     if (strstr (passphrase_info, "OPENPGP")) {
382     const char *s=passphrase_info;
383     while (s && *s && *s != 'D')
384     s++;
385     _snprintf (c->info, sizeof c->info-1,
386     _("Please enter the PIN to unlock your secret card key\n"
387     "Card: %s"), extract_serial_no (s));
388     c->is_card = 1;
389     }
390     else if (uid_hint)
391     parse_gpg_description (uid_hint, passphrase_info,
392     c->info, sizeof c->info - 1);
393     if (c->gpg_cmd == GPG_CMD_DECRYPT) {
394     rc = DialogBoxParam (glob_hinst, (LPCSTR)IDD_WINPT_DECRYPT,
395     (HWND)c->hwnd, passphrase_callback_proc,
396     (LPARAM)c);
397     }
398     else if (c->gpg_cmd == GPG_CMD_SIGN) {
399     rc = DialogBoxParam (glob_hinst, (LPCSTR)IDD_WINPT_DECRYPT_SIGN,
400     (HWND)c->hwnd, passphrase_callback_proc,
401     (LPARAM)c);
402     }
403     if (rc == -1) {
404     if (!WriteFile (hd, "\n", 1, &n, NULL))
405     log_debug ("passphrase_cb: WriteFile() failed ec=%d\n", w32_errno);
406     return 0;
407     }
408     c->pwd_init = 0;
409     }
410     if (c->cancel) {
411     if (!WriteFile (hd, "\n", 1, &n, NULL))
412     log_debug ("passphrase_cb: WriteFile() failed ec=%d\n", w32_errno);
413     return 0;
414     }
415    
416 twoaday 77 if (!WriteFile (hd, c->pwd, strlen (c->pwd), &n, NULL))
417     log_debug ("passphrase_cb: WriteFile() failed ec=%d\n", w32_errno);
418     if (!WriteFile (hd, "\n", 1, &n, NULL))
419     log_debug ("passphrase_cb: WriteFile() failed ec=%d\n", w32_errno);
420 werner 36 return 0;
421     }
422    
423    
424     /* Initialize the given passphrase callback @cb with the
425     used gpgme context @ctx, the command @cmd and a title
426     @title for the dialog. */
427     void
428     set_gpg_passphrase_cb (passphrase_cb_s *cb, gpgme_ctx_t ctx,
429     int cmd, HWND hwnd, const char *title)
430     {
431     memset (cb, 0, sizeof *cb);
432     cb->gpg_cmd = cmd;
433     cb->bad_pwd = 0;
434     cb->is_card = 0;
435     cb->cancel = 0;
436     cb->hwnd = hwnd;
437     cb->pwd_init = 1;
438     free_if_alloc (cb->title);
439     cb->title = m_strdup (title);
440     if (!cb->title)
441     BUG (NULL);
442     gpgme_set_passphrase_cb (ctx, passphrase_cb, cb);
443     cb->gpg = ctx;
444     }
445    
446    
447     /* Release a passphrase callback @ctx. */
448     void
449     release_gpg_passphrase_cb (passphrase_cb_s *ctx)
450     {
451     gpgme_recipient_t r, n;
452    
453     if (!ctx)
454     return;
455     sfree_if_alloc (ctx->pwd);
456     free_if_alloc (ctx->title);
457     r = ctx->recipients;
458     while (r) {
459     n = r->next;
460     safe_free (r->keyid);
461     safe_free (r);
462     r = n;
463     }
464     }
465    
466    
467     /* Simple check to measure passphrase (@pass) quality.
468     Return value: 0 on success. */
469     int
470     check_passwd_quality (const char *pass, int strict)
471     {
472     int i, nd=0, nc=0, n;
473    
474     n = strlen (pass);
475     if (n < 8)
476     return -1;
477    
478     for (i=0; i < n; i++) {
479     if (isdigit (pass[i]))
480     nd++;
481     if (isalpha (pass[i]))
482     nc++;
483     }
484    
485     /* check that the passphrase contains letters and numbers. */
486     if (nd == n || nc == n)
487     return -1;
488    
489     return 0;
490     }

Properties

Name Value
svn:eol-style native
[email protected]
 ViewVC Help
Powered by ViewVC 1.1.26