[openssh.git] / contrib / gnome-ssh-askpass2.c

/*
 * Copyright (c) 2000-2002 Damien Miller.  All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 *
 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 */

/* GTK2 support by Nalin Dahyabhai <nalin@redhat.com> */

/*
 * This is a simple GNOME SSH passphrase grabber. To use it, set the 
 * environment variable SSH_ASKPASS to point to the location of 
 * gnome-ssh-askpass before calling "ssh-add < /dev/null". 
 *
 * There is only two run-time options: if you set the environment variable
 * "GNOME_SSH_ASKPASS_GRAB_SERVER=true" then gnome-ssh-askpass will grab
 * the X server. If you set "GNOME_SSH_ASKPASS_GRAB_POINTER=true", then the 
 * pointer will be grabbed too. These may have some benefit to security if 
 * you don't trust your X server. We grab the keyboard always.
 */

/*
 * Compile with:
 *
 * cc `pkg-config --cflags gtk+-2.0` \
 *    gnome-ssh-askpass2.c -o gnome-ssh-askpass \
 *    `pkg-config --libs gtk+-2.0`
 *
 */

#include <stdlib.h>
#include <stdio.h>
#include <string.h>
#include <X11/Xlib.h>
#include <gtk/gtk.h>
#include <gdk/gdkx.h>

static void
report_failed_grab (const char *what)
{
	GtkWidget *err;

	err = gtk_message_dialog_new(NULL, 0,
				     GTK_MESSAGE_ERROR,
				     GTK_BUTTONS_CLOSE,
				     "Could not grab %s. "
				     "A malicious client may be eavesdropping "
				     "on your session.", what);
	gtk_window_set_position(GTK_WINDOW(err), GTK_WIN_POS_CENTER);
	gtk_label_set_line_wrap(GTK_LABEL((GTK_MESSAGE_DIALOG(err))->label),
				TRUE);

	gtk_dialog_run(GTK_DIALOG(err));

	gtk_widget_destroy(err);
}

static void
ok_dialog(GtkWidget *entry, gpointer dialog)
{
	g_return_if_fail(GTK_IS_DIALOG(dialog));
	gtk_dialog_response(GTK_DIALOG(dialog), GTK_RESPONSE_OK);
}

static int
passphrase_dialog(char *message)
{
	const char *failed;
	char *passphrase, *local;
	char **messages;
	int result, i, grab_server, grab_pointer;
	GtkWidget *dialog, *entry, *label;
	GdkGrabStatus status;

	grab_server = (getenv("GNOME_SSH_ASKPASS_GRAB_SERVER") != NULL);
	grab_pointer = (getenv("GNOME_SSH_ASKPASS_GRAB_POINTER") != NULL);

	dialog = gtk_message_dialog_new(NULL, 0,
					GTK_MESSAGE_QUESTION,
					GTK_BUTTONS_OK_CANCEL,
					"%s",
					message);

	entry = gtk_entry_new();
	gtk_box_pack_start(GTK_BOX(GTK_DIALOG(dialog)->vbox), entry, FALSE, 
	    FALSE, 0);
	gtk_entry_set_visibility(GTK_ENTRY(entry), FALSE);
	gtk_widget_grab_focus(entry);
	gtk_widget_show(entry);

	gtk_window_set_title(GTK_WINDOW(dialog), "OpenSSH");
	gtk_window_set_position (GTK_WINDOW(dialog), GTK_WIN_POS_CENTER);
	gtk_label_set_line_wrap(GTK_LABEL((GTK_MESSAGE_DIALOG(dialog))->label),
				TRUE);

	/* Make <enter> close dialog */
	gtk_dialog_set_default_response(GTK_DIALOG(dialog), GTK_RESPONSE_OK);
	g_signal_connect(G_OBJECT(entry), "activate",
			 G_CALLBACK(ok_dialog), dialog);

	/* Grab focus */
	gtk_widget_show_now(dialog);
	if (grab_server) {
		gdk_x11_grab_server();
	}
	if (grab_pointer) {
		status =  gdk_pointer_grab((GTK_WIDGET(dialog))->window, TRUE,
					   0, NULL, NULL, GDK_CURRENT_TIME);
		if (status != GDK_GRAB_SUCCESS) {
			failed = "mouse";
			goto nograb;
		}
	}
	status = gdk_keyboard_grab((GTK_WIDGET(dialog))->window, FALSE,
				   GDK_CURRENT_TIME);
	if (status != GDK_GRAB_SUCCESS) {
		failed = "keyboard";
		goto nograbkb;
	}
	result = gtk_dialog_run(GTK_DIALOG(dialog));

	/* Ungrab */
	if (grab_server)
		XUngrabServer(GDK_DISPLAY());
	if (grab_pointer)
		gdk_pointer_ungrab(GDK_CURRENT_TIME);
	gdk_keyboard_ungrab(GDK_CURRENT_TIME);
	gdk_flush();

	/* Report passphrase if user selected OK */
	passphrase = g_strdup(gtk_entry_get_text(GTK_ENTRY(entry)));
	if (result == GTK_RESPONSE_OK) {
		local = g_locale_from_utf8(passphrase, strlen(passphrase),
					   NULL, NULL, NULL);
		if (local != NULL) {
			puts(local);
			memset(local, '\0', strlen(local));
			g_free(local);
		} else {
			puts(passphrase);
		}
	}
		
	/* Zero passphrase in memory */
	memset(passphrase, '\b', strlen(passphrase));
	gtk_entry_set_text(GTK_ENTRY(entry), passphrase);
	memset(passphrase, '\0', strlen(passphrase));
	g_free(passphrase);
			
	gtk_widget_destroy(dialog);
	return (result == GTK_RESPONSE_OK ? 0 : -1);

	/* At least one grab failed - ungrab what we got, and report
	   the failure to the user.  Note that XGrabServer() cannot
	   fail.  */
 nograbkb:
	gdk_pointer_ungrab(GDK_CURRENT_TIME);
 nograb:
	if (grab_server)
		XUngrabServer(GDK_DISPLAY());
	gtk_widget_destroy(dialog);
	
	report_failed_grab(failed);

	return (-1);
}

int
main(int argc, char **argv)
{
	char *message;
	int result;

	gtk_init(&argc, &argv);

	if (argc > 1) {
		message = g_strjoinv(" ", argv + 1);
	} else {
		message = g_strdup("Enter your OpenSSH passphrase:");
	}

	setvbuf(stdout, 0, _IONBF, 0);
	result = passphrase_dialog(message);
	g_free(message);

	return (result);
}
Commit	Line	Data
13652e52	1	/*
9b7fcaf0	2	* Copyright (c) 2000-2002 Damien Miller. All rights reserved.
0ceb21d6	3	*
	4	* Redistribution and use in source and binary forms, with or without
	5	* modification, are permitted provided that the following conditions
	6	* are met:
	7	* 1. Redistributions of source code must retain the above copyright
	8	* notice, this list of conditions and the following disclaimer.
	9	* 2. Redistributions in binary form must reproduce the above copyright
	10	* notice, this list of conditions and the following disclaimer in the
	11	* documentation and/or other materials provided with the distribution.
	12	*
	13	* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
	14	* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
	15	* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
	16	* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
	17	* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
	18	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
	19	* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
	20	* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
	21	* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
	22	* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
	23	*/
13652e52	24
c4ee4c60	25	/* GTK2 support by Nalin Dahyabhai <nalin@redhat.com> */
c4ee4c60	26
5fb9865a	27	/*
	28	* This is a simple GNOME SSH passphrase grabber. To use it, set the
	29	* environment variable SSH_ASKPASS to point to the location of
	30	* gnome-ssh-askpass before calling "ssh-add < /dev/null".
	31	*
9b7fcaf0	32	* There is only two run-time options: if you set the environment variable
90bab5a8	33	* "GNOME_SSH_ASKPASS_GRAB_SERVER=true" then gnome-ssh-askpass will grab
9b7fcaf0	34	* the X server. If you set "GNOME_SSH_ASKPASS_GRAB_POINTER=true", then the
	35	* pointer will be grabbed too. These may have some benefit to security if
	36	* you don't trust your X server. We grab the keyboard always.
5fb9865a	37	*/
5fb9865a	38
17f0f4a7	39	/*
0ceb21d6	40	* Compile with:
0ceb21d6	41	*
c4ee4c60	42	* cc `pkg-config --cflags gtk+-2.0` \
eee2215e	43	* gnome-ssh-askpass2.c -o gnome-ssh-askpass \
c4ee4c60	44	* `pkg-config --libs gtk+-2.0`
0ceb21d6	45	*
0ceb21d6	46	*/
17f0f4a7	47
	48	#include <stdlib.h>
	49	#include <stdio.h>
	50	#include <string.h>
547c9f30	51	#include <X11/Xlib.h>
c4ee4c60	52	#include <gtk/gtk.h>
547c9f30	53	#include <gdk/gdkx.h>
17f0f4a7	54
c4ee4c60	55	static void
c4ee4c60	56	report_failed_grab (const char *what)
1e83f2a2	57	{
	58	GtkWidget *err;
	59
c4ee4c60	60	err = gtk_message_dialog_new(NULL, 0,
	61	GTK_MESSAGE_ERROR,
	62	GTK_BUTTONS_CLOSE,
	63	"Could not grab %s. "
	64	"A malicious client may be eavesdropping "
	65	"on your session.", what);
1e83f2a2	66	gtk_window_set_position(GTK_WINDOW(err), GTK_WIN_POS_CENTER);
c4ee4c60	67	gtk_label_set_line_wrap(GTK_LABEL((GTK_MESSAGE_DIALOG(err))->label),
	68	TRUE);
	69
	70	gtk_dialog_run(GTK_DIALOG(err));
1e83f2a2	71
c4ee4c60	72	gtk_widget_destroy(err);
	73	}
	74
	75	static void
	76	ok_dialog(GtkWidget *entry, gpointer dialog)
	77	{
	78	g_return_if_fail(GTK_IS_DIALOG(dialog));
	79	gtk_dialog_response(GTK_DIALOG(dialog), GTK_RESPONSE_OK);
1e83f2a2	80	}
1e83f2a2	81
eee2215e	82	static int
1e83f2a2	83	passphrase_dialog(char *message)
17f0f4a7	84	{
c4ee4c60	85	const char *failed;
c4ee4c60	86	char passphrase, local;
0ceb21d6	87	char **messages;
9b7fcaf0	88	int result, i, grab_server, grab_pointer;
17f0f4a7	89	GtkWidget dialog, entry, *label;
c4ee4c60	90	GdkGrabStatus status;
17f0f4a7	91
90bab5a8	92	grab_server = (getenv("GNOME_SSH_ASKPASS_GRAB_SERVER") != NULL);
9b7fcaf0	93	grab_pointer = (getenv("GNOME_SSH_ASKPASS_GRAB_POINTER") != NULL);
5fb9865a	94
c4ee4c60	95	dialog = gtk_message_dialog_new(NULL, 0,
	96	GTK_MESSAGE_QUESTION,
	97	GTK_BUTTONS_OK_CANCEL,
	98	"%s",
	99	message);
17f0f4a7	100
17f0f4a7	101	entry = gtk_entry_new();
c4ee4c60	102	gtk_box_pack_start(GTK_BOX(GTK_DIALOG(dialog)->vbox), entry, FALSE,
0ceb21d6	103	FALSE, 0);
17f0f4a7	104	gtk_entry_set_visibility(GTK_ENTRY(entry), FALSE);
17f0f4a7	105	gtk_widget_grab_focus(entry);
c4ee4c60	106	gtk_widget_show(entry);
547c9f30	107
c4ee4c60	108	gtk_window_set_title(GTK_WINDOW(dialog), "OpenSSH");
547c9f30	109	gtk_window_set_position (GTK_WINDOW(dialog), GTK_WIN_POS_CENTER);
c4ee4c60	110	gtk_label_set_line_wrap(GTK_LABEL((GTK_MESSAGE_DIALOG(dialog))->label),
c4ee4c60	111	TRUE);
17f0f4a7	112
60bed5fd	113	/* Make <enter> close dialog */
c4ee4c60	114	gtk_dialog_set_default_response(GTK_DIALOG(dialog), GTK_RESPONSE_OK);
	115	g_signal_connect(G_OBJECT(entry), "activate",
	116	G_CALLBACK(ok_dialog), dialog);
60bed5fd	117
c4ee4c60	118	/* Grab focus */
	119	gtk_widget_show_now(dialog);
	120	if (grab_server) {
	121	gdk_x11_grab_server();
	122	}
	123	if (grab_pointer) {
	124	status = gdk_pointer_grab((GTK_WIDGET(dialog))->window, TRUE,
	125	0, NULL, NULL, GDK_CURRENT_TIME);
	126	if (status != GDK_GRAB_SUCCESS) {
	127	failed = "mouse";
	128	goto nograb;
	129	}
	130	}
	131	status = gdk_keyboard_grab((GTK_WIDGET(dialog))->window, FALSE,
	132	GDK_CURRENT_TIME);
	133	if (status != GDK_GRAB_SUCCESS) {
	134	failed = "keyboard";
	135	goto nograbkb;
	136	}
	137	result = gtk_dialog_run(GTK_DIALOG(dialog));
1e83f2a2	138
547c9f30	139	/* Ungrab */
5fb9865a	140	if (grab_server)
5fb9865a	141	XUngrabServer(GDK_DISPLAY());
9b7fcaf0	142	if (grab_pointer)
9b7fcaf0	143	gdk_pointer_ungrab(GDK_CURRENT_TIME);
547c9f30	144	gdk_keyboard_ungrab(GDK_CURRENT_TIME);
	145	gdk_flush();
	146
1e83f2a2	147	/* Report passphrase if user selected OK */
c4ee4c60	148	passphrase = g_strdup(gtk_entry_get_text(GTK_ENTRY(entry)));
	149	if (result == GTK_RESPONSE_OK) {
	150	local = g_locale_from_utf8(passphrase, strlen(passphrase),
	151	NULL, NULL, NULL);
	152	if (local != NULL) {
	153	puts(local);
	154	memset(local, '\0', strlen(local));
	155	g_free(local);
	156	} else {
	157	puts(passphrase);
	158	}
	159	}
17f0f4a7	160
1e83f2a2	161	/* Zero passphrase in memory */
c4ee4c60	162	memset(passphrase, '\b', strlen(passphrase));
17f0f4a7	163	gtk_entry_set_text(GTK_ENTRY(entry), passphrase);
c4ee4c60	164	memset(passphrase, '\0', strlen(passphrase));
c4ee4c60	165	g_free(passphrase);
17f0f4a7	166
c4ee4c60	167	gtk_widget_destroy(dialog);
eee2215e	168	return (result == GTK_RESPONSE_OK ? 0 : -1);
17f0f4a7	169
1e83f2a2	170	/* At least one grab failed - ungrab what we got, and report
	171	the failure to the user. Note that XGrabServer() cannot
	172	fail. */
	173	nograbkb:
	174	gdk_pointer_ungrab(GDK_CURRENT_TIME);
	175	nograb:
5fb9865a	176	if (grab_server)
5fb9865a	177	XUngrabServer(GDK_DISPLAY());
c4ee4c60	178	gtk_widget_destroy(dialog);
1e83f2a2	179
c4ee4c60	180	report_failed_grab(failed);
eee2215e	181
eee2215e	182	return (-1);
17f0f4a7	183	}
17f0f4a7	184
1e83f2a2	185	int
1e83f2a2	186	main(int argc, char **argv)
17f0f4a7	187	{
17f0f4a7	188	char *message;
eee2215e	189	int result;
eee2215e	190
c4ee4c60	191	gtk_init(&argc, &argv);
17f0f4a7	192
c4ee4c60	193	if (argc > 1) {
	194	message = g_strjoinv(" ", argv + 1);
	195	} else {
	196	message = g_strdup("Enter your OpenSSH passphrase:");
	197	}
17f0f4a7	198
1e83f2a2	199	setvbuf(stdout, 0, _IONBF, 0);
eee2215e	200	result = passphrase_dialog(message);
c4ee4c60	201	g_free(message);
c4ee4c60	202
eee2215e	203	return (result);
17f0f4a7	204	}