Page MenuHome GnuPG
Files F34572340

pinentry.c
No OneTemporary
Actions

pinentry.c
View Options

/* pinentry.c - The PIN entry support library
Copyright (C) 2002, 2003, 2007, 2008 g10 Code GmbH
This file is part of PINENTRY.
PINENTRY is free software; you can redistribute it and/or modify it
under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.
PINENTRY is distributed in the hope that it will be useful, but
WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program; if not, see <http://www.gnu.org/licenses/>.
*/
#ifdef HAVE_CONFIG_H
#include <config.h>
#endif
#include <errno.h>
#include <stdlib.h>
#include <string.h>
#include <getopt.h>
#include <unistd.h>
#include <locale.h>
#ifdef HAVE_LANGINFO_H
#include <langinfo.h>
#endif
#include <limits.h>
#if defined FALLBACK_CURSES || defined PINENTRY_CURSES || defined PINENTRY_GTK
#include <iconv.h>
#endif
#include "assuan.h"
#include "memory.h"
#include "secmem-util.h"
#include "pinentry.h"
/* Keep the name of our program here. */
static char this_pgmname[50];
struct pinentry pinentry =
{
NULL, /* Title. */
NULL, /* Description. */
NULL, /* Error. */
NULL, /* Prompt. */
NULL, /* Ok button. */
NULL, /* Not-Ok button. */
NULL, /* Cancel button. */
NULL, /* PIN. */
2048, /* PIN length. */
0, /* Display. */
0, /* TTY name. */
0, /* TTY type. */
0, /* TTY LC_CTYPE. */
0, /* TTY LC_MESSAGES. */
0, /* Debug mode. */
#ifdef ENABLE_ENHANCED
0, /* Enhanced mode. */
#endif
1, /* Global grab. */
0, /* Parent Window ID. */
NULL, /* Touch file. */
0, /* Result. */
0, /* Result Not-OK. */
0, /* Locale error flag. */
0, /* One-button flag. */
NULL, /* Quality-Bar flag and description. */
NULL, /* Quality-Bar tooltip. */
PINENTRY_COLOR_DEFAULT,
0,
PINENTRY_COLOR_DEFAULT,
PINENTRY_COLOR_DEFAULT,
0,
NULL /* Assuan context. */
};
#if defined FALLBACK_CURSES || defined PINENTRY_CURSES || defined PINENTRY_GTK
char *
pinentry_utf8_to_local (char *lc_ctype, char *text)
{
iconv_t cd;
const char *input = text;
size_t input_len = strlen (text) + 1;
char *output;
size_t output_len;
char *output_buf;
size_t processed;
char *old_ctype;
char *target_encoding;
/* If no locale setting could be determined, simply copy the
string. */
if (!lc_ctype)
{
fprintf (stderr, "%s: no LC_CTYPE known - assuming UTF-8\n",
this_pgmname);
return strdup (text);
}
old_ctype = strdup (setlocale (LC_CTYPE, NULL));
if (!old_ctype)
return NULL;
setlocale (LC_CTYPE, lc_ctype);
target_encoding = nl_langinfo (CODESET);
if (!target_encoding)
target_encoding = "?";
setlocale (LC_CTYPE, old_ctype);
free (old_ctype);
/* This is overkill, but simplifies the iconv invocation greatly. */
output_len = input_len * MB_LEN_MAX;
output_buf = output = malloc (output_len);
if (!output)
return NULL;
cd = iconv_open (target_encoding, "UTF-8");
if (cd == (iconv_t) -1)
{
fprintf (stderr, "%s: can't convert from UTF-8 to %s: %s\n",
this_pgmname, target_encoding, strerror (errno));
free (output_buf);
return NULL;
}
processed = iconv (cd, &input, &input_len, &output, &output_len);
iconv_close (cd);
if (processed == (size_t) -1 || input_len)
{
fprintf (stderr, "%s: error converting from UTF-8 to %s: %s\n",
this_pgmname, target_encoding, strerror (errno));
free (output_buf);
return NULL;
}
return output_buf;
}
/* Convert TEXT which is encoded according to LC_CTYPE to UTF-8. With
SECURE set to true, use secure memory for the returned buffer.
Return NULL on error. */
char *
pinentry_local_to_utf8 (char *lc_ctype, char *text, int secure)
{
char *old_ctype;
char *source_encoding;
iconv_t cd;
const char *input = text;
size_t input_len = strlen (text) + 1;
char *output;
size_t output_len;
char *output_buf;
size_t processed;
/* If no locale setting could be determined, simply copy the
string. */
if (!lc_ctype)
{
fprintf (stderr, "%s: no LC_CTYPE known - assuming UTF-8\n",
this_pgmname);
output_buf = secure? secmem_malloc (input_len) : malloc (input_len);
if (output_buf)
strcpy (output_buf, input);
return output_buf;
}
old_ctype = strdup (setlocale (LC_CTYPE, NULL));
if (!old_ctype)
return NULL;
setlocale (LC_CTYPE, lc_ctype);
source_encoding = nl_langinfo (CODESET);
setlocale (LC_CTYPE, old_ctype);
free (old_ctype);
/* This is overkill, but simplifies the iconv invocation greatly. */
output_len = input_len * MB_LEN_MAX;
output_buf = output = secure? secmem_malloc (output_len):malloc (output_len);
if (!output)
return NULL;
cd = iconv_open ("UTF-8", source_encoding);
if (cd == (iconv_t) -1)
{
fprintf (stderr, "%s: can't convert from %s to UTF-8: %s\n",
this_pgmname, source_encoding? source_encoding : "?",
strerror (errno));
if (secure)
secmem_free (output_buf);
else
free (output_buf);
return NULL;
}
processed = iconv (cd, &input, &input_len, &output, &output_len);
iconv_close (cd);
if (processed == (size_t) -1 || input_len)
{
fprintf (stderr, "%s: error converting from %s to UTF-8: %s\n",
this_pgmname, source_encoding? source_encoding : "?",
strerror (errno));
if (secure)
secmem_free (output_buf);
else
free (output_buf);
return NULL;
}
return output_buf;
}
#endif
/* Copy TEXT or TEXTLEN to BUFFER and escape as required. Return a
pointer to the end of the new buffer. Note that BUFFER must be
large enough to keep the entire text; allocataing it 3 times of
TEXTLEN is sufficient. */
static char *
copy_and_escape (char *buffer, const void *text, size_t textlen)
{
int i;
const unsigned char *s = (unsigned char *)text;
char *p = buffer;
for (i=0; i < textlen; i++)
{
if (s[i] < ' ' || s[i] == '+')
{
snprintf (p, 4, "%%%02X", s[i]);
p += 3;
}
else if (s[i] == ' ')
*p++ = '+';
else
*p++ = s[i];
}
return p;
}
/* Run a quality inquiry for PASSPHRASE of LENGTH. (We need LENGTH
because not all backends might be able to return a proper
C-string.). Returns: A value between -100 and 100 to give an
estimate of the passphrase's quality. Negative values are use if
the caller won't even accept that passphrase. Note that we expect
just one data line which should not be escaped in any represent a
numeric signed decimal value. Extra data is currently ignored but
should not be send at all. */
int
pinentry_inq_quality (pinentry_t pin, const char *passphrase, size_t length)
{
ASSUAN_CONTEXT ctx = pin->ctx_assuan;
const char prefix[] = "INQUIRE QUALITY ";
char *command;
char *line;
size_t linelen;
int gotvalue = 0;
int value = 0;
int rc;
if (!ctx)
return 0; /* Can't run the callback. */
if (length > 300)
length = 300; /* Limit so that it definitely fits into an Assuan
line. */
command = secmem_malloc (strlen (prefix) + 3*length + 1);
if (!command)
return 0;
strcpy (command, prefix);
copy_and_escape (command + strlen(command), passphrase, length);
rc = assuan_write_line (ctx, command);
secmem_free (command);
if (rc)
{
fprintf (stderr, "ASSUAN WRITE LINE failed: rc=%d\n", rc);
return 0;
}
for (;;)
{
do
{
rc = assuan_read_line (ctx, &line, &linelen);
if (rc)
{
fprintf (stderr, "ASSUAN READ LINE failed: rc=%d\n", rc);
return 0;
}
}
while (*line == '#' || !linelen);
if (line[0] == 'E' && line[1] == 'N' && line[2] == 'D'
&& (!line[3] || line[3] == ' '))
break; /* END command received*/
if (line[0] == 'C' && line[1] == 'A' && line[2] == 'N'
&& (!line[3] || line[3] == ' '))
break; /* CAN command received*/
if (line[0] == 'E' && line[1] == 'R' && line[2] == 'R'
&& (!line[3] || line[3] == ' '))
break; /* ERR command received*/
if (line[0] != 'D' || line[1] != ' ' || linelen < 3 || gotvalue)
continue;
gotvalue = 1;
value = atoi (line+2);
}
if (value < -100)
value = -100;
else if (value > 100)
value = 100;
return value;
}
/* Try to make room for at least LEN bytes in the pinentry. Returns
new buffer on success and 0 on failure or when the old buffer is
sufficient. */
char *
pinentry_setbufferlen (pinentry_t pin, int len)
{
char *newp;
if (len < pinentry.pin_len)
return NULL;
newp = secmem_realloc (pin->pin, 2 * pin->pin_len);
if (newp)
{
pin->pin = newp;
pin->pin_len *= 2;
}
else
{
secmem_free (pin->pin);
pin->pin = 0;
pin->pin_len = 0;
}
return newp;
}
/* Initialize the secure memory subsystem, drop privileges and return.
Must be called early. */
void
pinentry_init (const char *pgmname)
{
/* Store away our name. */
if (strlen (pgmname) > sizeof this_pgmname - 2)
abort ();
strcpy (this_pgmname, pgmname);
/* Initialize secure memory. 1 is too small, so the default size
will be used. */
secmem_init (1);
secmem_set_flags (SECMEM_WARN);
drop_privs ();
if (atexit (secmem_term))
/* FIXME: Could not register at-exit function, bail out. */
;
assuan_set_malloc_hooks (secmem_malloc, secmem_realloc, secmem_free);
}
/* Simple test to check whether DISPLAY is set or the option --display
was given. Used to decide whether the GUI or curses should be
initialized. */
int
pinentry_have_display (int argc, char **argv)
{
const char *s;
s = getenv ("DISPLAY");
if (s && *s)
return 1;
for (; argc; argc--, argv++)
if (!strcmp (*argv, "--display"))
return 1;
return 0;
}
static void
usage (void)
{
fprintf (stdout, "Usage: %s [OPTION]...\n"
"Ask securely for a secret and print it to stdout.\n"
"\n"
" --display DISPLAY Set the X display\n"
" --ttyname PATH Set the tty terminal node name\n"
" --ttytype NAME Set the tty terminal type\n"
" --lc-ctype Set the tty LC_CTYPE value\n"
" --lc-messages Set the tty LC_MESSAGES value\n"
#ifdef ENABLE_ENHANCED
" -e, --enhanced Ask for timeout and insurance, too\n"
#endif
" -g, --no-global-grab Grab keyboard only while window is focused\n"
" --parent-wid Parent window ID (for positioning)\n"
" -d, --debug Turn on debugging output\n"
" -h, --help Display this help and exit\n"
" --version Output version information and exit\n", this_pgmname);
}
char *
parse_color (char *arg, pinentry_color_t *color_p, int *bright_p)
{
static struct
{
const char *name;
pinentry_color_t color;
} colors[] = { { "none", PINENTRY_COLOR_NONE },
{ "default", PINENTRY_COLOR_DEFAULT },
{ "black", PINENTRY_COLOR_BLACK },
{ "red", PINENTRY_COLOR_RED },
{ "green", PINENTRY_COLOR_GREEN },
{ "yellow", PINENTRY_COLOR_YELLOW },
{ "blue", PINENTRY_COLOR_BLUE },
{ "magenta", PINENTRY_COLOR_MAGENTA },
{ "cyan", PINENTRY_COLOR_CYAN },
{ "white", PINENTRY_COLOR_WHITE } };
int i;
char *new_arg;
pinentry_color_t color = PINENTRY_COLOR_DEFAULT;
if (!arg)
return NULL;
new_arg = strchr (arg, ',');
if (new_arg)
new_arg++;
if (bright_p)
{
const char *bname[] = { "bright-", "bright", "bold-", "bold" };
*bright_p = 0;
for (i = 0; i < sizeof (bname) / sizeof (bname[0]); i++)
if (!strncasecmp (arg, bname[i], strlen (bname[i])))
{
*bright_p = 1;
arg += strlen (bname[i]);
}
}
for (i = 0; i < sizeof (colors) / sizeof (colors[0]); i++)
if (!strncasecmp (arg, colors[i].name, strlen (colors[i].name)))
color = colors[i].color;
*color_p = color;
return new_arg;
}
/* Parse the command line options. Returns 1 if user should print
version and exit. Can exit the program if only help output is
requested. */
int
pinentry_parse_opts (int argc, char *argv[])
{
int opt;
int opt_help = 0;
int opt_version = 0;
struct option opts[] =
{{ "debug", no_argument, 0, 'd' },
{ "display", required_argument, 0, 'D' },
{ "ttyname", required_argument, 0, 'T' },
{ "ttytype", required_argument, 0, 'N' },
{ "lc-ctype", required_argument, 0, 'C' },
{ "lc-messages", required_argument, 0, 'M' },
#ifdef ENABLE_ENHANCED
{ "enhanced", no_argument, 0, 'e' },
#endif
{ "no-global-grab", no_argument, 0, 'g' },
{ "parent-wid", required_argument, 0, 'W' },
{ "colors", required_argument, 0, 'c' },
{ "help", no_argument, 0, 'h' },
{ "version", no_argument, &opt_version, 1 },
{ NULL, 0, NULL, 0 }};
while ((opt = getopt_long (argc, argv, "degh", opts, NULL)) != -1)
{
switch (opt)
{
case 0:
case '?':
break;
case 'd':
pinentry.debug = 1;
break;
#ifdef ENABLE_ENHANCED
case 'e':
pinentry.enhanced = 1;
break;
#endif
case 'g':
pinentry.grab = 0;
break;
case 'h':
opt_help = 1;
break;
case 'D':
/* Note, this is currently not used because the GUI engine
has already been initialized when parsing these options. */
pinentry.display = strdup (optarg);
if (!pinentry.display)
{
fprintf (stderr, "%s: %s\n", this_pgmname, strerror (errno));
exit (EXIT_FAILURE);
}
break;
case 'T':
pinentry.ttyname = strdup (optarg);
if (!pinentry.ttyname)
{
fprintf (stderr, "%s: %s\n", this_pgmname, strerror (errno));
exit (EXIT_FAILURE);
}
break;
case 'N':
pinentry.ttytype = strdup (optarg);
if (!pinentry.ttytype)
{
fprintf (stderr, "%s: %s\n", this_pgmname, strerror (errno));
exit (EXIT_FAILURE);
}
break;
case 'C':
pinentry.lc_ctype = strdup (optarg);
if (!pinentry.lc_ctype)
{
fprintf (stderr, "%s: %s\n", this_pgmname, strerror (errno));
exit (EXIT_FAILURE);
}
break;
case 'M':
pinentry.lc_messages = strdup (optarg);
if (!pinentry.lc_messages)
{
fprintf (stderr, "%s: %s\n", this_pgmname, strerror (errno));
exit (EXIT_FAILURE);
}
break;
case 'W':
pinentry.parent_wid = atoi (optarg);
/* FIXME: Add some error handling. Use strtol. */
break;
case 'c':
optarg = parse_color (optarg, &pinentry.color_fg,
&pinentry.color_fg_bright);
optarg = parse_color (optarg, &pinentry.color_bg, NULL);
optarg = parse_color (optarg, &pinentry.color_so,
&pinentry.color_so_bright);
break;
default:
fprintf (stderr, "%s: oops: option not handled\n", this_pgmname);
break;
}
}
if (opt_version)
return 1;
if (opt_help)
{
usage ();
exit (EXIT_SUCCESS);
}
return 0;
}
static int
option_handler (ASSUAN_CONTEXT ctx, const char *key, const char *value)
{
if (!strcmp (key, "no-grab") && !*value)
pinentry.grab = 0;
else if (!strcmp (key, "grab") && !*value)
pinentry.grab = 1;
else if (!strcmp (key, "debug-wait"))
{
fprintf (stderr, "%s: waiting for debugger - my pid is %u ...\n",
this_pgmname, (unsigned int) getpid());
sleep (*value?atoi (value):5);
fprintf (stderr, "%s: ... okay\n", this_pgmname);
}
else if (!strcmp (key, "display"))
{
if (pinentry.display)
free (pinentry.display);
pinentry.display = strdup (value);
if (!pinentry.display)
return ASSUAN_Out_Of_Core;
}
else if (!strcmp (key, "ttyname"))
{
if (pinentry.ttyname)
free (pinentry.ttyname);
pinentry.ttyname = strdup (value);
if (!pinentry.ttyname)
return ASSUAN_Out_Of_Core;
}
else if (!strcmp (key, "ttytype"))
{
if (pinentry.ttytype)
free (pinentry.ttytype);
pinentry.ttytype = strdup (value);
if (!pinentry.ttytype)
return ASSUAN_Out_Of_Core;
}
else if (!strcmp (key, "lc-ctype"))
{
if (pinentry.lc_ctype)
free (pinentry.lc_ctype);
pinentry.lc_ctype = strdup (value);
if (!pinentry.lc_ctype)
return ASSUAN_Out_Of_Core;
}
else if (!strcmp (key, "lc-messages"))
{
if (pinentry.lc_messages)
free (pinentry.lc_messages);
pinentry.lc_messages = strdup (value);
if (!pinentry.lc_messages)
return ASSUAN_Out_Of_Core;
}
else if (!strcmp (key, "parent-wid"))
{
pinentry.parent_wid = atoi (value);
/* FIXME: Use strtol and add some error handling. */
}
else if (!strcmp (key, "touch-file"))
{
if (pinentry.touch_file)
free (pinentry.touch_file);
pinentry.touch_file = strdup (value);
if (!pinentry.touch_file)
return ASSUAN_Out_Of_Core;
}
else
return ASSUAN_Invalid_Option;
return 0;
}
/* Note, that it is sufficient to allocate the target string D as
long as the source string S, i.e.: strlen(s)+1; */
static void
strcpy_escaped (char *d, const unsigned char *s)
{
while (*s)
{
if (*s == '%' && s[1] && s[2])
{
s++;
*d++ = xtoi_2 ( s);
s += 2;
}
else
*d++ = *s++;
}
*d = 0;
}
static int
cmd_setdesc (ASSUAN_CONTEXT ctx, char *line)
{
char *newd;
newd = malloc (strlen (line) + 1);
if (!newd)
return ASSUAN_Out_Of_Core;
strcpy_escaped (newd, line);
if (pinentry.description)
free (pinentry.description);
pinentry.description = newd;
return 0;
}
static int
cmd_setprompt (ASSUAN_CONTEXT ctx, char *line)
{
char *newp;
newp = malloc (strlen (line) + 1);
if (!newp)
return ASSUAN_Out_Of_Core;
strcpy_escaped (newp, line);
if (pinentry.prompt)
free (pinentry.prompt);
pinentry.prompt = newp;
return 0;
}
static int
cmd_seterror (ASSUAN_CONTEXT ctx, char *line)
{
char *newe;
newe = malloc (strlen (line) + 1);
if (!newe)
return ASSUAN_Out_Of_Core;
strcpy_escaped (newe, line);
if (pinentry.error)
free (pinentry.error);
pinentry.error = newe;
return 0;
}
static int
cmd_setok (ASSUAN_CONTEXT ctx, char *line)
{
char *newo;
newo = malloc (strlen (line) + 1);
if (!newo)
return ASSUAN_Out_Of_Core;
strcpy_escaped (newo, line);
if (pinentry.ok)
free (pinentry.ok);
pinentry.ok = newo;
return 0;
}
static int
cmd_setnotok (ASSUAN_CONTEXT ctx, char *line)
{
char *newo;
newo = malloc (strlen (line) + 1);
if (!newo)
return ASSUAN_Out_Of_Core;
strcpy_escaped (newo, line);
if (pinentry.notok)
free (pinentry.notok);
pinentry.notok = newo;
return 0;
}
static int
cmd_setcancel (ASSUAN_CONTEXT ctx, char *line)
{
char *newc;
newc = malloc (strlen (line) + 1);
if (!newc)
return ASSUAN_Out_Of_Core;
strcpy_escaped (newc, line);
if (pinentry.cancel)
free (pinentry.cancel);
pinentry.cancel = newc;
return 0;
}
static int
cmd_settitle (ASSUAN_CONTEXT ctx, char *line)
{
char *newt;
newt = malloc (strlen (line) + 1);
if (!newt)
return ASSUAN_Out_Of_Core;
strcpy_escaped (newt, line);
if (pinentry.title)
free (pinentry.title);
pinentry.title = newt;
return 0;
}
static int
cmd_setqualitybar (ASSUAN_CONTEXT ctx, char *line)
{
char *newval;
if (!*line)
line = "Quality:";
newval = malloc (strlen (line) + 1);
if (!newval)
return ASSUAN_Out_Of_Core;
strcpy_escaped (newval, line);
if (pinentry.quality_bar)
free (pinentry.quality_bar);
pinentry.quality_bar = newval;
return 0;
}
/* Set the tooltip to be used for a quality bar. */
static int
cmd_setqualitybar_tt (ASSUAN_CONTEXT ctx, char *line)
{
char *newval;
if (*line)
{
newval = malloc (strlen (line) + 1);
if (!newval)
return ASSUAN_Out_Of_Core;
strcpy_escaped (newval, line);
}
else
newval = NULL;
if (pinentry.quality_bar_tt)
free (pinentry.quality_bar_tt);
pinentry.quality_bar_tt = newval;
return 0;
}
static int
cmd_getpin (ASSUAN_CONTEXT ctx, char *line)
{
int result;
int set_prompt = 0;
pinentry.pin = secmem_malloc (pinentry.pin_len);
if (!pinentry.pin)
return ASSUAN_Out_Of_Core;
if (!pinentry.prompt)
{
pinentry.prompt = "PIN:";
set_prompt = 1;
}
pinentry.locale_err = 0;
pinentry.one_button = 0;
pinentry.ctx_assuan = ctx;
result = (*pinentry_cmd_handler) (&pinentry);
pinentry.ctx_assuan = NULL;
if (pinentry.error)
{
free (pinentry.error);
pinentry.error = NULL;
}
if (set_prompt)
pinentry.prompt = NULL;
pinentry.quality_bar = 0; /* Reset it after the command. */
if (result < 0)
{
if (pinentry.pin)
{
secmem_free (pinentry.pin);
pinentry.pin = NULL;
}
return pinentry.locale_err? ASSUAN_Locale_Problem: ASSUAN_Canceled;
}
if (result)
{
result = assuan_send_data (ctx, pinentry.pin, result);
if (!result)
result = assuan_send_data (ctx, NULL, 0);
}
if (pinentry.pin)
{
secmem_free (pinentry.pin);
pinentry.pin = NULL;
}
return result;
}
/* Note that the option --one-button is hack to allow the use of old
pinentries while the caller is ignoring the result. Given that
options have never been used or flagged as an error the new option
is an easy way to enable the messsage mode while not requiring to
update pinentry or to have the caller test for the message
command. New applications which are free to require an updated
pinentry should use MESSAGE instead. */
static int
cmd_confirm (ASSUAN_CONTEXT ctx, char *line)
{
int result;
pinentry.one_button = !!strstr (line, "--one-button");
pinentry.quality_bar = 0;
pinentry.locale_err = 0;
pinentry.canceled = 0;
result = (*pinentry_cmd_handler) (&pinentry);
if (pinentry.error)
{
free (pinentry.error);
pinentry.error = NULL;
}
return result ? 0
: (pinentry.locale_err? ASSUAN_Locale_Problem
: (pinentry.one_button
? 0
: (pinentry.canceled
? ASSUAN_Canceled
: ASSUAN_Not_Confirmed)));
}
static int
cmd_message (ASSUAN_CONTEXT ctx, char *line)
{
int result;
pinentry.one_button = 1;
pinentry.quality_bar = 0;
pinentry.locale_err = 0;
result = (*pinentry_cmd_handler) (&pinentry);
if (pinentry.error)
{
free (pinentry.error);
pinentry.error = NULL;
}
return result ? 0
: (pinentry.locale_err? ASSUAN_Locale_Problem
: 0);
}
/* GETINFO <what>
Multipurpose function to return a variety of information.
Supported values for WHAT are:
version - Return the version of the program.
pid - Return the process id of the server.
*/
static int
cmd_getinfo (assuan_context_t ctx, char *line)
{
int rc;
if (!strcmp (line, "version"))
{
const char *s = VERSION;
rc = assuan_send_data (ctx, s, strlen (s));
}
else if (!strcmp (line, "pid"))
{
char numbuf[50];
snprintf (numbuf, sizeof numbuf, "%lu", (unsigned long)getpid ());
rc = assuan_send_data (ctx, numbuf, strlen (numbuf));
}
else
rc = ASSUAN_Parameter_Error;
return rc;
}
/* Tell the assuan library about our commands. */
static int
register_commands (ASSUAN_CONTEXT ctx)
{
static struct
{
const char *name;
int cmd_id;
int (*handler) (ASSUAN_CONTEXT, char *line);
} table[] =
{
{ "SETDESC", 0, cmd_setdesc },
{ "SETPROMPT", 0, cmd_setprompt },
{ "SETERROR", 0, cmd_seterror },
{ "SETOK", 0, cmd_setok },
{ "SETNOTOK", 0, cmd_setnotok },
{ "SETCANCEL", 0, cmd_setcancel },
{ "GETPIN", 0, cmd_getpin },
{ "CONFIRM", 0, cmd_confirm },
{ "MESSAGE", 0, cmd_message },
{ "SETQUALITYBAR", 0, cmd_setqualitybar },
{ "SETQUALITYBAR_TT", 0, cmd_setqualitybar_tt },
{ "GETINFO", 0, cmd_getinfo },
{ "SETTITLE", 0, cmd_settitle },
{ NULL }
};
int i, j, rc;
for (i = j = 0; table[i].name; i++)
{
rc = assuan_register_command (ctx,
table[i].cmd_id ? table[i].cmd_id
: (ASSUAN_CMD_USER + j++),
table[i].name, table[i].handler);
if (rc)
return rc;
}
return 0;
}
/* Start the pinentry event loop. The program will start to process
Assuan commands until it is finished or an error occurs. If an
error occurs, -1 is returned. Otherwise, 0 is returned. */
int
pinentry_loop (void)
{
int rc;
int filedes[2];
ASSUAN_CONTEXT ctx;
/* Extra check to make sure we have dropped privs. */
#ifndef HAVE_DOSISH_SYSTEM
if (getuid() != geteuid())
abort ();
#endif
/* For now we use a simple pipe based server so that we can work
from scripts. We will later add options to run as a daemon and
wait for requests on a Unix domain socket. */
filedes[0] = 0;
filedes[1] = 1;
rc = assuan_init_pipe_server (&ctx, filedes);
if (rc)
{
fprintf (stderr, "%s: failed to initialize the server: %s\n",
this_pgmname, assuan_strerror(rc));
return -1;
}
rc = register_commands (ctx);
if (rc)
{
fprintf (stderr, "%s: failed to the register commands with Assuan: %s\n",
this_pgmname, assuan_strerror(rc));
return -1;
}
assuan_register_option_handler (ctx, option_handler);
#if 0
assuan_set_log_stream (ctx, stderr);
#endif
for (;;)
{
rc = assuan_accept (ctx);
if (rc == -1)
break;
else if (rc)
{
fprintf (stderr, "%s: Assuan accept problem: %s\n",
this_pgmname, assuan_strerror (rc));
break;
}
rc = assuan_process (ctx);
if (rc)
{
fprintf (stderr, "%s: Assuan processing failed: %s\n",
this_pgmname, assuan_strerror (rc));
continue;
}
}
assuan_deinit_server (ctx);
return 0;
}

File Metadata

Mime Type
text/x-c
Expires
Sat, Jan 17, 2:19 AM (4 h, 11 m)
Storage Engine
local-disk
Storage Format
Raw Data
Storage Handle
fc/1b/b7ed44dff93ec11f64b3e4f97b02

Event Timeline