/[winpt]/trunk/Src/wptPassphraseCB.cpp

Diff of /trunk/Src/wptPassphraseCB.cpp

Parent Directory | Revision Log | View Patch Patch

-revision 25 by twoaday,
Wed Oct 12 10:04:26 2005 UTC
+revision 28 by twoaday,
Thu Oct 20 12:35:59 2005 UTC
 Line 46 
 const char* get_symkey_algo (int algo);
      ((cmd) == GPG_CMD_DECRYPT? IDC_DECRYPT_HIDE : IDC_DECRYPT_SIGN_HIDE)
+ /* Overwrite passphrase and free memory. */
+ static void
+ burn_passphrase (char **pwd)
+ {
+     char *pass = *pwd;
+     memset (pass, 0, strlen (pass));
+     delete []pass;
+     *pwd = NULL;
+ }
  /* Dialog procedure for the passphrase callback. */
  static BOOL CALLBACK
  passphrase_callback_proc (HWND dlg, UINT msg, WPARAM wparam, LPARAM lparam)
-Line 59 
 passphrase_callback_proc (HWND dlg, UINT
+Line 70 
 passphrase_callback_proc (HWND dlg, UINT
      char *info;
      int n;
+     /* XXX: we need a timer to update the 'enc_to' entries. */
      switch (msg) {
      case WM_INITDIALOG:
          c = (passphrase_cb_s *)lparam;
-Line 109 
 passphrase_callback_proc (HWND dlg, UINT
+Line 121 
 passphrase_callback_proc (HWND dlg, UINT
              EnableWindow (GetDlgItem (dlg, IDC_DECRYPT_LIST), FALSE);
          SetDlgItemText (dlg, c->gpg_cmd == GPG_CMD_DECRYPT?
                          IDC_DECRYPT_PWDINFO : IDC_DECRYPT_SIGN_PWDINFO,
+                         c->bad_pwd? _("Bad passphrase; Enter passphrase again") :
                          _("Please enter your passphrase"));
          if (c->gpg_cmd == GPG_CMD_DECRYPT) {
              SetFocus (GetDlgItem (dlg, IDC_DECRYPT_PWD));
-Line 136 
 passphrase_callback_proc (HWND dlg, UINT
+Line 149 
 passphrase_callback_proc (HWND dlg, UINT
          return FALSE;
          case WM_SYSCOMMAND:
-             if( LOWORD( wparam ) == SC_CLOSE ) {
+             if (LOWORD (wparam) == SC_CLOSE) {
-                 SetDlgItemText( dlg, item_ctrl_id( c->gpg_cmd ), "" );
+                 SetDlgItemText (dlg, item_ctrl_id( c->gpg_cmd ), "");
                  c->cancel = 1;
-                 EndDialog( dlg, TRUE );
+                 EndDialog (dlg, TRUE);
              }
              break;
-Line 161 
 passphrase_callback_proc (HWND dlg, UINT
+Line 174 
 passphrase_callback_proc (HWND dlg, UINT
                  /* fixme: the item is even cached when the passphrase is not
                            correct, which means that the user needs to delete all
                            cached entries to continue. */
-                 if (c->pwd) {
+                 if (c->pwd)
-                     delete []c->pwd;
+                     burn_passphrase (&c->pwd);
-                     c->pwd = NULL;
-                 }
                  n = item_get_text_length (dlg, item_ctrl_id (c->gpg_cmd));
                  if (!n) {
                      c->pwd = new char[2];
+                     if (!c->pwd)
+                         BUG (NULL);
                      strcpy (c->pwd, "");
                  }
                  else {
-Line 209 
 parse_gpg_keyid (const char *pass_info)
+Line 222 
 parse_gpg_keyid (const char *pass_info)
  {
      static char keyid[16+1];
+     /* XXX: check for leading alpha-chars? */
      if (strlen (pass_info) < 16)
          return NULL;
      /* the format of the desc buffer looks like this:
-Line 222 
 parse_gpg_keyid (const char *pass_info)
+Line 236 
 parse_gpg_keyid (const char *pass_info)
  /* Parse the information in @uid_hint and @pass_info to generate
     a input message for the user in @desc. */
- static void
+ static int
  parse_gpg_description (const char *uid_hint, const char *pass_info,
                         char *desc, int size)
  {
-Line 231 
 parse_gpg_description (const char *uid_h
+Line 245 
 parse_gpg_description (const char *uid_h
      char *uid, *p;
      int n=0;
+     if (strlen (uid_hint) < 17) {
+         *desc = 0;
+         return -1;
+     }
      while (p = strsep ((char**)&pass_info, " ")) {
          switch (n++) {
          case 0: strncpy (mainkey, p, 16); mainkey[16] = 0; break;
-Line 256 
 parse_gpg_description (const char *uid_h
+Line 275 
 parse_gpg_description (const char *uid_h
                       "%s key, ID %s\n"),
                       uid, get_key_pubalgo (algo), usedkey+8);
      free (uid);
+     return 0;
  }
+ /*
  static int inline
  is_hexstring (const char * p)
  {
-Line 270 
 is_hexstring (const char * p)
+Line 291 
 is_hexstring (const char * p)
      }
      return 0;
  }
+ */
+ /* Extract the serial number from the card ID @id and return it. */
+ const char*
+ extract_serial_no (const char *id)
+ {
+     static char buf[8];
+     char *p;
+     p = strchr (id, '/');
+     if (!p)
+         return NULL;
+     strncpy (buf, id+(p-id)-6, 6);
+     return buf;
+ }
  /* Passphrase callback with the ability to support caching. */
-Line 285 
 passphrase_cb (void *hook, const char *u
+Line 322 
 passphrase_cb (void *hook, const char *u
      DWORD n;
      int rc;
-     /* XXX: pubkey_enc cancel does not quit gpg.exe */
-     /* XXX: handle prev_was_bad case. */
      if (!c)
          return gpg_error (GPG_ERR_INV_ARG);
+     c->bad_pwd = prev_was_bad? 1 : 0;
+     if (prev_was_bad && !c->cancel) {
+         if (c->pwd)
+             burn_passphrase (&c->pwd);
+         agent_del_cache (c->keyid);
+         c->pwd_init = 1;
+     }
      if (passphrase_info) {
-         if (strlen (passphrase_info) < 16) {/* assume symetric encryption. */
+         if (strlen (passphrase_info) < 16 &&
+             !strstr (passphrase_info, "OPENPGP")) {/* assume symetric encryption. */
              int n=2;
              c->sym.sym_algo = atoi (passphrase_info);
              if (c->sym.sym_algo > 9)
-Line 318 
 passphrase_cb (void *hook, const char *u
+Line 361 
 passphrase_cb (void *hook, const char *u
          if (keyid && strlen (keyid) == 16)
              strcpy (c->keyid, keyid+8);
-         /* if the desc has a length of 32 and only hex digits, we assume a
+         /* if @passphrase_info contains 'OPENPGP' we assume a smart card
-            smart card has been used. */
+             has been used. */
-         if (uid_hint && strlen (uid_hint) == 32 && !is_hexstring (uid_hint)) {
+         if (strstr (passphrase_info, "OPENPGP")) {
-             char buf[16];
+             const char *s=passphrase_info;
-             memset (buf, 0, sizeof buf);
+             while (s && *s && *s != 'D')
-             strncpy (buf, uid_hint+20, 8);
+                 s++;
              _snprintf (c->info, sizeof c->info-1,
                         _("Please enter the PIN to unlock your secret card key\n"
-                          "Card: %s"), buf);
+                          "Card: %s"), extract_serial_no (s));
              c->is_card = 1;
          }
          else if (uid_hint)
-Line 344 
 passphrase_cb (void *hook, const char *u
+Line 387 
 passphrase_cb (void *hook, const char *u
          }
          if (rc == -1) {
              WriteFile (hd, "\n", 1, &n, NULL);
-             return gpg_error (GPG_ERR_EOF);
+             return 0;
          }
          c->pwd_init = 0;
      }
      if (c->cancel) {
          WriteFile (hd, "\n", 1, &n, NULL);
-         return gpg_error (GPG_ERR_EOF);
+         return 0;
      }
      WriteFile (hd, c->pwd, strlen (c->pwd), &n, NULL);
-Line 368 
 set_gpg_passphrase_cb (passphrase_cb_s *
+Line 411 
 set_gpg_passphrase_cb (passphrase_cb_s *
  {
      memset (cb, 0, sizeof *cb);
      cb->gpg_cmd = cmd;
+     cb->bad_pwd = 0;
      cb->is_card = 0;
      cb->cancel = 0;
      cb->hwnd = hwnd;
-Line 391 
 release_gpg_passphrase_cb (passphrase_cb
+Line 435 
 release_gpg_passphrase_cb (passphrase_cb
      free_if_alloc (ctx->title);
  }
  /* Simple check to measure passphrase (@pass) quality.
     Return value: 0 on success. */
  int

 Legend:



Removed from v.25
 


changed lines


 
Added in v.28
 Legend:



Removed from v.25
 


changed lines


 
Added in v.28
-Removed from v.25
+Added in v.28

[email protected]	ViewVC Help
Powered by ViewVC 1.1.26