/* GIO - GLib Input, Output and Streaming Library * * Copyright (C) 2011 Collabora, Ltd. * * SPDX-License-Identifier: LGPL-2.1-or-later * * This library is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public * License as published by the Free Software Foundation; either * version 2.1 of the License, or (at your option) any later version. * * This library is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. * * You should have received a copy of the GNU Lesser General * Public License along with this library; if not, see . * * Author: Stef Walter */ #include "config.h" #include "glib.h" #include "glibintl.h" #include "gioenumtypes.h" #include "gtlspassword.h" #include /** * GTlsPassword: * * An abstract interface representing a password used in TLS. Often used in * user interaction such as unlocking a key storage token. * * Since: 2.30 */ enum { PROP_0, PROP_FLAGS, PROP_DESCRIPTION, PROP_WARNING }; struct _GTlsPasswordPrivate { guchar *value; gsize length; GDestroyNotify destroy; GTlsPasswordFlags flags; gchar *description; gchar *warning; }; G_DEFINE_TYPE_WITH_PRIVATE (GTlsPassword, g_tls_password, G_TYPE_OBJECT) static void g_tls_password_init (GTlsPassword *password) { password->priv = g_tls_password_get_instance_private (password); } static const guchar * g_tls_password_real_get_value (GTlsPassword *password, gsize *length) { if (length) *length = password->priv->length; return password->priv->value; } static void g_tls_password_real_set_value (GTlsPassword *password, guchar *value, gssize length, GDestroyNotify destroy) { if (password->priv->destroy) (password->priv->destroy) (password->priv->value); password->priv->destroy = NULL; password->priv->value = NULL; password->priv->length = 0; if (length < 0) length = strlen ((gchar*) value); password->priv->value = value; password->priv->length = length; password->priv->destroy = destroy; } static const gchar* g_tls_password_real_get_default_warning (GTlsPassword *password) { GTlsPasswordFlags flags; flags = g_tls_password_get_flags (password); if (flags & G_TLS_PASSWORD_FINAL_TRY) return _("This is the last chance to enter the password correctly before your access is locked out."); if (flags & G_TLS_PASSWORD_MANY_TRIES) /* Translators: This is not the 'This is the last chance' string. It is * displayed when more than one attempt is allowed. */ return _("Several passwords entered have been incorrect, and your access will be locked out after further failures."); if (flags & G_TLS_PASSWORD_RETRY) return _("The password entered is incorrect."); return NULL; } static void g_tls_password_get_property (GObject *object, guint prop_id, GValue *value, GParamSpec *pspec) { GTlsPassword *password = G_TLS_PASSWORD (object); switch (prop_id) { case PROP_FLAGS: g_value_set_flags (value, g_tls_password_get_flags (password)); break; case PROP_WARNING: g_value_set_string (value, g_tls_password_get_warning (password)); break; case PROP_DESCRIPTION: g_value_set_string (value, g_tls_password_get_description (password)); break; default: G_OBJECT_WARN_INVALID_PROPERTY_ID (object, prop_id, pspec); break; } } static void g_tls_password_set_property (GObject *object, guint prop_id, const GValue *value, GParamSpec *pspec) { GTlsPassword *password = G_TLS_PASSWORD (object); switch (prop_id) { case PROP_FLAGS: g_tls_password_set_flags (password, g_value_get_flags (value)); break; case PROP_WARNING: g_tls_password_set_warning (password, g_value_get_string (value)); break; case PROP_DESCRIPTION: g_tls_password_set_description (password, g_value_get_string (value)); break; default: G_OBJECT_WARN_INVALID_PROPERTY_ID (object, prop_id, pspec); break; } } static void g_tls_password_finalize (GObject *object) { GTlsPassword *password = G_TLS_PASSWORD (object); g_tls_password_real_set_value (password, NULL, 0, NULL); g_free (password->priv->warning); g_free (password->priv->description); G_OBJECT_CLASS (g_tls_password_parent_class)->finalize (object); } static void g_tls_password_class_init (GTlsPasswordClass *klass) { GObjectClass *gobject_class = G_OBJECT_CLASS (klass); klass->get_value = g_tls_password_real_get_value; klass->set_value = g_tls_password_real_set_value; klass->get_default_warning = g_tls_password_real_get_default_warning; gobject_class->get_property = g_tls_password_get_property; gobject_class->set_property = g_tls_password_set_property; gobject_class->finalize = g_tls_password_finalize; g_object_class_install_property (gobject_class, PROP_FLAGS, g_param_spec_flags ("flags", P_("Flags"), P_("Flags about the password"), G_TYPE_TLS_PASSWORD_FLAGS, G_TLS_PASSWORD_NONE, G_PARAM_READWRITE | G_PARAM_STATIC_STRINGS)); g_object_class_install_property (gobject_class, PROP_DESCRIPTION, g_param_spec_string ("description", P_("Description"), P_("Description of what the password is for"), NULL, G_PARAM_READWRITE | G_PARAM_STATIC_STRINGS)); g_object_class_install_property (gobject_class, PROP_WARNING, g_param_spec_string ("warning", P_("Warning"), P_("Warning about the password"), NULL, G_PARAM_READWRITE | G_PARAM_STATIC_STRINGS)); } /** * g_tls_password_new: * @flags: the password flags * @description: description of what the password is for * * Create a new #GTlsPassword object. * * Returns: (transfer full): The newly allocated password object */ GTlsPassword * g_tls_password_new (GTlsPasswordFlags flags, const gchar *description) { return g_object_new (G_TYPE_TLS_PASSWORD, "flags", flags, "description", description, NULL); } /** * g_tls_password_get_value: (virtual get_value) * @password: a #GTlsPassword object * @length: (optional) (out caller-allocates): location to place the length of the password. * * Get the password value. If @length is not %NULL then it will be * filled in with the length of the password value. (Note that the * password value is not nul-terminated, so you can only pass %NULL * for @length in contexts where you know the password will have a * certain fixed length.) * * Returns: (array length=length): The password value (owned by the password object). * * Since: 2.30 */ const guchar * g_tls_password_get_value (GTlsPassword *password, gsize *length) { g_return_val_if_fail (G_IS_TLS_PASSWORD (password), NULL); return G_TLS_PASSWORD_GET_CLASS (password)->get_value (password, length); } /** * g_tls_password_set_value: * @password: a #GTlsPassword object * @value: (array length=length): the new password value * @length: the length of the password, or -1 * * Set the value for this password. The @value will be copied by the password * object. * * Specify the @length, for a non-nul-terminated password. Pass -1 as * @length if using a nul-terminated password, and @length will be * calculated automatically. (Note that the terminating nul is not * considered part of the password in this case.) * * Since: 2.30 */ void g_tls_password_set_value (GTlsPassword *password, const guchar *value, gssize length) { g_return_if_fail (G_IS_TLS_PASSWORD (password)); if (length < 0) { /* FIXME: g_tls_password_set_value_full() doesn’t support unsigned gsize */ gsize length_unsigned = strlen ((gchar *) value); g_return_if_fail (length_unsigned <= G_MAXSSIZE); length = (gssize) length_unsigned; } g_tls_password_set_value_full (password, g_memdup2 (value, (gsize) length), length, g_free); } /** * g_tls_password_set_value_full: (virtual set_value) * @password: a #GTlsPassword object * @value: (array length=length): the value for the password * @length: the length of the password, or -1 * @destroy: (nullable): a function to use to free the password. * * Provide the value for this password. * * The @value will be owned by the password object, and later freed using * the @destroy function callback. * * Specify the @length, for a non-nul-terminated password. Pass -1 as * @length if using a nul-terminated password, and @length will be * calculated automatically. (Note that the terminating nul is not * considered part of the password in this case.) * * Since: 2.30 */ void g_tls_password_set_value_full (GTlsPassword *password, guchar *value, gssize length, GDestroyNotify destroy) { g_return_if_fail (G_IS_TLS_PASSWORD (password)); G_TLS_PASSWORD_GET_CLASS (password)->set_value (password, value, length, destroy); } /** * g_tls_password_get_flags: * @password: a #GTlsPassword object * * Get flags about the password. * * Returns: The flags about the password. * * Since: 2.30 */ GTlsPasswordFlags g_tls_password_get_flags (GTlsPassword *password) { g_return_val_if_fail (G_IS_TLS_PASSWORD (password), G_TLS_PASSWORD_NONE); return password->priv->flags; } /** * g_tls_password_set_flags: * @password: a #GTlsPassword object * @flags: The flags about the password * * Set flags about the password. * * Since: 2.30 */ void g_tls_password_set_flags (GTlsPassword *password, GTlsPasswordFlags flags) { g_return_if_fail (G_IS_TLS_PASSWORD (password)); password->priv->flags = flags; g_object_notify (G_OBJECT (password), "flags"); } /** * g_tls_password_get_description: * @password: a #GTlsPassword object * * Get a description string about what the password will be used for. * * Returns: The description of the password. * * Since: 2.30 */ const gchar* g_tls_password_get_description (GTlsPassword *password) { g_return_val_if_fail (G_IS_TLS_PASSWORD (password), NULL); return password->priv->description; } /** * g_tls_password_set_description: * @password: a #GTlsPassword object * @description: The description of the password * * Set a description string about what the password will be used for. * * Since: 2.30 */ void g_tls_password_set_description (GTlsPassword *password, const gchar *description) { gchar *copy; g_return_if_fail (G_IS_TLS_PASSWORD (password)); copy = g_strdup (description); g_free (password->priv->description); password->priv->description = copy; g_object_notify (G_OBJECT (password), "description"); } /** * g_tls_password_get_warning: * @password: a #GTlsPassword object * * Get a user readable translated warning. Usually this warning is a * representation of the password flags returned from * g_tls_password_get_flags(). * * Returns: The warning. * * Since: 2.30 */ const gchar * g_tls_password_get_warning (GTlsPassword *password) { g_return_val_if_fail (G_IS_TLS_PASSWORD (password), NULL); if (password->priv->warning == NULL) return G_TLS_PASSWORD_GET_CLASS (password)->get_default_warning (password); return password->priv->warning; } /** * g_tls_password_set_warning: * @password: a #GTlsPassword object * @warning: The user readable warning * * Set a user readable translated warning. Usually this warning is a * representation of the password flags returned from * g_tls_password_get_flags(). * * Since: 2.30 */ void g_tls_password_set_warning (GTlsPassword *password, const gchar *warning) { gchar *copy; g_return_if_fail (G_IS_TLS_PASSWORD (password)); copy = g_strdup (warning); g_free (password->priv->warning); password->priv->warning = copy; g_object_notify (G_OBJECT (password), "warning"); }