gnome-keyring r1137 - in trunk: . pk ui
- From: nnielsen svn gnome org
- To: svn-commits-list gnome org
- Subject: gnome-keyring r1137 - in trunk: . pk ui
- Date: Fri, 18 Apr 2008 22:05:22 +0100 (BST)
Author: nnielsen
Date: Fri Apr 18 21:05:22 2008
New Revision: 1137
URL: http://svn.gnome.org/viewvc/gnome-keyring?rev=1137&view=rev
Log:
* pk/gkr-pk-index.c:
* pk/gkr-pk-index.h:
* pk/gkr-pk-object.c:
* pk/gkr-pk-object.h:
* pk/gkr-pk-object-storage.c:
* pk/gkr-pk-privkey.c:
* ui/gkr-ask-request.h: Streamline the importing of keys, and make
the proper 'import' prompt come up when importing. Don't repeatedly
try to import a key that a user has 'denied'. Use the 'cancel'
label instead of 'deny' for the import prompt. See bug #528122
Modified:
trunk/ChangeLog
trunk/pk/gkr-pk-index.c
trunk/pk/gkr-pk-index.h
trunk/pk/gkr-pk-object-storage.c
trunk/pk/gkr-pk-object.c
trunk/pk/gkr-pk-object.h
trunk/pk/gkr-pk-privkey.c
trunk/ui/gkr-ask-request.h
Modified: trunk/pk/gkr-pk-index.c
==============================================================================
--- trunk/pk/gkr-pk-index.c (original)
+++ trunk/pk/gkr-pk-index.c Fri Apr 18 21:05:22 2008
@@ -939,6 +939,22 @@
return ret;
}
+gboolean
+gkr_pk_index_get_boolean_full (GQuark location, gkrconstid digest,
+ const gchar *field, gboolean defvalue)
+{
+ gboolean ret = defvalue;
+
+ g_return_val_if_fail (digest, ret);
+ g_return_val_if_fail (field != NULL, ret);
+
+ if (!read_pk_index_value (get_index_singleton (), location, digest, field,
+ NULL, (ReadValueFunc)read_boolean_value, &ret))
+ ret = defvalue;
+
+ return ret;
+}
+
gint
gkr_pk_index_get_int (GkrPkObject *obj, const gchar *field, gint defvalue)
{
Modified: trunk/pk/gkr-pk-index.h
==============================================================================
--- trunk/pk/gkr-pk-index.h (original)
+++ trunk/pk/gkr-pk-index.h Fri Apr 18 21:05:22 2008
@@ -32,6 +32,9 @@
gboolean gkr_pk_index_get_boolean (GkrPkObject *object, const gchar *field,
gboolean defvalue);
+gboolean gkr_pk_index_get_boolean_full (GQuark location, gkrconstid digest,
+ const gchar *field, gboolean defvalue);
+
gint gkr_pk_index_get_int (GkrPkObject *object, const gchar *field,
gint defvalue);
Modified: trunk/pk/gkr-pk-object-storage.c
==============================================================================
--- trunk/pk/gkr-pk-object-storage.c (original)
+++ trunk/pk/gkr-pk-object-storage.c Fri Apr 18 21:05:22 2008
@@ -56,6 +56,7 @@
GHashTable *objects;
GHashTable *objects_by_location;
GHashTable *specific_load_requests;
+ GHashTable *denied_import_requests;
GSList *watches;
};
@@ -182,7 +183,9 @@
GkrAskRequest *ask;
gchar *custom_label, *ret, *display_name, *stype, *secondary;
const gchar *password;
- gboolean have_indexed = FALSE;
+ gboolean imported = FALSE;
+ gboolean importing = FALSE;
+ guint flags;
g_return_val_if_fail (loc == ctx->location, NULL);
@@ -216,27 +219,43 @@
if (stype) {
if (!type && stype[0])
type = g_quark_from_string (stype);
- have_indexed = TRUE;
g_free (stype);
}
+
+ /* This is how we know if we've imported this object before */
+ imported = gkr_pk_index_get_boolean_full (loc, digest, "imported", FALSE);
- /*
- * If we've indexed this before, and the user isn't specifically requesting it
- * to be loaded then we don't need to prompt for the password
+ /*
+ * If the user isn't specifically requeting this object, then we don't
+ * necessarily prompt for a password.
*/
- if (have_indexed && !g_hash_table_lookup (pv->specific_load_requests, digest))
- return NULL;
-
+ if (!g_hash_table_lookup (pv->specific_load_requests, digest)) {
+
+ /* If the user specifically denied this earlier, then don't prompt */
+ if (g_hash_table_lookup (pv->denied_import_requests, digest))
+ return NULL;
+
+ /* If this has been imported already, then don't prompt */
+ if (imported)
+ return NULL;
+
+ importing = TRUE;
+ }
+
/* TODO: Load a better label if we have one */
custom_label = NULL;
if (custom_label != NULL)
label = custom_label;
- ask = gkr_ask_request_new (prepare_ask_title (type), prepare_ask_primary (type),
- GKR_ASK_REQUEST_PROMPT_PASSWORD);
+ /* Build up the prompt */
+ if (importing)
+ flags = GKR_ASK_REQUEST_PASSWORD | GKR_ASK_REQUEST_OK_CANCEL_BUTTONS;
+ else
+ flags = GKR_ASK_REQUEST_PASSWORD | GKR_ASK_REQUEST_OK_DENY_BUTTONS;
+ ask = gkr_ask_request_new (prepare_ask_title (type), prepare_ask_primary (type), flags);
- secondary = prepare_ask_secondary (type, have_indexed, label);
+ secondary = prepare_ask_secondary (type, !importing, label);
gkr_ask_request_set_secondary (ask, secondary);
g_free (secondary);
@@ -245,10 +264,22 @@
if (gkr_keyring_login_is_usable ())
gkr_ask_request_set_check_option (ask, prepare_ask_check (type));
+ /* Prompt the user */
gkr_ask_daemon_process (ask);
+
+ /* If the user denied ... */
+ if (ask->response == GKR_ASK_RESPONSE_DENY) {
+
+ /* If we were importing then don't try again */
+ if (importing)
+ g_hash_table_insert (pv->denied_import_requests,
+ gkr_id_dup (digest), NO_VALUE);
+
+ ret = NULL;
- /* User denied or cancelled */
- if (ask->response < GKR_ASK_RESPONSE_ALLOW) {
+ /* User cancelled or failure */
+ } else if (ask->response < GKR_ASK_RESPONSE_ALLOW) {
+
ret = NULL;
/* Successful response */
@@ -453,6 +484,15 @@
/* Setup the sexp, probably a key on this object */
g_object_set (object, "gcrypt-sexp", sexp, NULL);
+
+ /*
+ * Now we have the object loaded and everything, and since it's a fully
+ * loaded (if encrypted a password has been provided), take the
+ * opportunity to 'import' it and make sure we have all necessary data
+ * on it.
+ */
+ if (!gkr_pk_index_get_boolean (object, "imported", FALSE))
+ gkr_pk_object_import (object);
}
static void
@@ -479,6 +519,15 @@
/* Setup the asn1, probably a certificate on this object */
g_object_set (object, "asn1-tree", asn1, NULL);
+
+ /*
+ * Now we have the object loaded and everything, and since it's a fully
+ * loaded (if encrypted a password has been provided), take the
+ * opportunity to 'import' it and make sure we have all necessary data
+ * on it.
+ */
+ if (gkr_pk_index_get_boolean (object, "imported", FALSE))
+ gkr_pk_object_import (object);
}
static void
@@ -618,6 +667,7 @@
pv->objects = g_hash_table_new_full (g_direct_hash, g_direct_equal, g_object_unref, NULL);
pv->objects_by_location = g_hash_table_new_full (g_direct_hash, g_direct_equal, NULL, free_array);
pv->specific_load_requests = g_hash_table_new_full (gkr_id_hash, gkr_id_equals, gkr_id_free, NULL);
+ pv->denied_import_requests = g_hash_table_new_full (gkr_id_hash, gkr_id_equals, gkr_id_free, NULL);
for (i = 0; i < G_N_ELEMENTS (gkr_pk_places); ++i) {
place = &gkr_pk_places[i];
@@ -649,6 +699,7 @@
g_hash_table_remove_all (pv->objects_by_location);
g_hash_table_remove_all (pv->specific_load_requests);
+ g_hash_table_remove_all (pv->denied_import_requests);
g_hash_table_remove_all (pv->objects);
for (l = pv->watches; l; l = g_slist_next (l)) {
@@ -670,6 +721,7 @@
g_hash_table_destroy (pv->objects);
g_hash_table_destroy (pv->objects_by_location);
g_hash_table_destroy (pv->specific_load_requests);
+ g_hash_table_destroy (pv->denied_import_requests);
for (l = pv->watches; l; l = g_slist_next (l)) {
watch = GKR_LOCATION_WATCH (l->data);
Modified: trunk/pk/gkr-pk-object.c
==============================================================================
--- trunk/pk/gkr-pk-object.c (original)
+++ trunk/pk/gkr-pk-object.c Fri Apr 18 21:05:22 2008
@@ -419,6 +419,23 @@
}
gboolean
+gkr_pk_object_import (GkrPkObject *object)
+{
+ GkrPkObjectClass *klass;
+ gboolean ret = TRUE;
+
+ klass = GKR_PK_OBJECT_GET_CLASS (object);
+
+ if (klass->import)
+ ret = (*klass->import) (object);
+
+ if (ret)
+ gkr_pk_index_set_boolean (object, "imported", TRUE);
+
+ return ret;
+}
+
+gboolean
gkr_pk_object_match_one (GkrPkObject *object, CK_ATTRIBUTE_PTR rattr)
{
CK_ATTRIBUTE_PTR attr;
Modified: trunk/pk/gkr-pk-object.h
==============================================================================
--- trunk/pk/gkr-pk-object.h (original)
+++ trunk/pk/gkr-pk-object.h Fri Apr 18 21:05:22 2008
@@ -70,6 +70,13 @@
CK_RV (*get_attribute) (GkrPkObject *obj, CK_ATTRIBUTE_PTR attr);
CK_RV (*set_attribute) (GkrPkObject *obj, CK_ATTRIBUTE_PTR attr);
+ /*
+ * Overridden by derived classes to prepare an object for
+ * use by gnome-keyring. This might include extracting public
+ * key and storing it in indexes or other stuff like that.
+ */
+ gboolean (*import) (GkrPkObject *obj);
+
/*
* Overridden by derived classes to provide the serialized
* representation of the object, minus modifiable attributes, and
@@ -98,6 +105,8 @@
void gkr_pk_object_lock (GkrPkObject *object);
+gboolean gkr_pk_object_import (GkrPkObject *object);
+
gboolean gkr_pk_object_match (GkrPkObject *object,
GArray *attrs);
Modified: trunk/pk/gkr-pk-privkey.c
==============================================================================
--- trunk/pk/gkr-pk-privkey.c (original)
+++ trunk/pk/gkr-pk-privkey.c Fri Apr 18 21:05:22 2008
@@ -504,6 +504,18 @@
return GKR_PK_OBJECT_CLASS (gkr_pk_privkey_parent_class)->get_attribute (obj, attr);
}
+static gboolean
+gkr_pk_privkey_import (GkrPkObject *obj)
+{
+ GkrPkPrivkey *key = GKR_PK_PRIVKEY (obj);
+ GkrPkPubkey *pub;
+
+ /* This stores all necessary information in the indexes */
+ pub = get_public_key (key, TRUE);
+
+ return GKR_IS_PK_PUBKEY (pub);
+}
+
static guchar*
gkr_pk_privkey_serialize (GkrPkObject *obj, const gchar *password, gsize *n_data)
{
@@ -571,6 +583,7 @@
parent_class = GKR_PK_OBJECT_CLASS (klass);
parent_class->get_attribute = gkr_pk_privkey_get_attribute;
+ parent_class->import = gkr_pk_privkey_import;
parent_class->serialize = gkr_pk_privkey_serialize;
parent_class->lock = gkr_pk_privkey_lock;
Modified: trunk/ui/gkr-ask-request.h
==============================================================================
--- trunk/ui/gkr-ask-request.h (original)
+++ trunk/ui/gkr-ask-request.h Fri Apr 18 21:05:22 2008
@@ -59,6 +59,8 @@
#define GKR_ASK_REQUEST_OK_DENY_BUTTONS \
(GKR_ASK_REQUEST_OK_BUTTON | GKR_ASK_REQUEST_DENY_BUTTON)
+#define GKR_ASK_REQUEST_OK_CANCEL_BUTTONS \
+ (GKR_ASK_REQUEST_OK_BUTTON | GKR_ASK_REQUEST_CANCEL_BUTTON)
#define GKR_ASK_REQUEST_NEW_PASSWORD \
(GKR_ASK_REQUEST_PASSWORD | GKR_ASK_REQUEST_CONFIRM_PASSWORD | GKR_ASK_REQUEST_OK_DENY_BUTTONS)
#define GKR_ASK_REQUEST_PROMPT_PASSWORD \
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
