search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Fix CID 1491093: attrib leaked if attvalue is null
[claws.git] / src / ssl_manager.c
blob0e5ba10efca168c74df1f87dbce1f291a41fe933
1 /*
2 * Claws Mail -- a GTK based, lightweight, and fast e-mail client
3 * Copyright (C) 1999-2024 the Claws Mail team and Colin Leroy
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 3 of the License, or
8 * (at your option) any later version.
9 *
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
14 *
15 * You should have received a copy of the GNU General Public License
16 * along with this program. If not, see <http://www.gnu.org/licenses/>.
17 */
18
19 #ifdef HAVE_CONFIG_H
20 # include "config.h"
21 #include "claws-features.h"
22 #endif
23
24 #ifdef USE_GNUTLS
25 #include <gtk/gtk.h>
26 #include <glib.h>
27 #include <glib/gi18n.h>
28 #include <gdk/gdkkeysyms.h>
29 #include <sys/types.h>
30
31 #include "ssl_manager.h"
32 #include "ssl_certificate.h"
33 #include "manage_window.h"
34 #include "utils.h"
35 #include "mainwindow.h"
36 #include "alertpanel.h"
37 #include "sslcertwindow.h"
38 #include "prefs_common.h"
39
40 enum {
41 SSL_MANAGER_HOST,
42 SSL_MANAGER_PORT,
43 SSL_MANAGER_CERT,
44 SSL_MANAGER_STATUS,
45 SSL_MANAGER_EXPIRY,
46 SSL_MANAGER_FONT_WEIGHT,
47 N_SSL_MANAGER_COLUMNS
48 };
49
50
51 static struct SSLManager
52 {
53 GtkWidget *window;
54 GtkWidget *hbox1;
55 GtkWidget *vbox1;
56 GtkWidget *certlist;
57 GtkWidget *view_btn;
58 GtkWidget *delete_btn;
59 GtkWidget *close_btn;
60 } manager;
61
62 static void ssl_manager_view_cb (GtkWidget *widget, gpointer data);
63 static void ssl_manager_delete_cb (GtkWidget *widget, gpointer data);
64 static void ssl_manager_close_cb (GtkWidget *widget, gpointer data);
65 static gboolean key_pressed (GtkWidget *widget, GdkEventKey *event,
66 gpointer data);
67 static void ssl_manager_load_certs (void);
68 static void ssl_manager_double_clicked(GtkTreeView *list_view,
69 GtkTreePath *path,
70 GtkTreeViewColumn *column,
71 gpointer data);
72
73 void ssl_manager_open(MainWindow *mainwin)
74 {
75 if (!manager.window)
76 ssl_manager_create();
77
78 manage_window_set_transient(GTK_WINDOW(manager.window));
79 gtk_widget_grab_focus(manager.close_btn);
80
81 ssl_manager_load_certs();
82
83 gtk_widget_show(manager.window);
84
85 }
86
87 static GtkListStore* ssl_manager_create_data_store(void)
88 {
89 return gtk_list_store_new(N_SSL_MANAGER_COLUMNS,
90 G_TYPE_STRING,
91 G_TYPE_STRING,
92 G_TYPE_POINTER,
93 G_TYPE_STRING,
94 G_TYPE_STRING,
95 G_TYPE_INT,
96 -1);
97 }
98
99 static void ssl_manager_create_list_view_columns(GtkWidget *list_view)
100 {
101 GtkTreeViewColumn *column;
102 GtkCellRenderer *renderer;
103
104 renderer = gtk_cell_renderer_text_new();
105 g_object_set(renderer, "weight", PANGO_WEIGHT_NORMAL,
106 "weight-set", TRUE, NULL);
107
108 column = gtk_tree_view_column_new_with_attributes
109 (_("Server"),
110 renderer,
111 "text", SSL_MANAGER_HOST,
112 "weight", SSL_MANAGER_FONT_WEIGHT,
113 NULL);
114 gtk_tree_view_append_column(GTK_TREE_VIEW(list_view), column);
115
116 column = gtk_tree_view_column_new_with_attributes
117 (_("Port"),
118 renderer,
119 "text", SSL_MANAGER_PORT,
120 NULL);
121 gtk_tree_view_append_column(GTK_TREE_VIEW(list_view), column);
122
123 column = gtk_tree_view_column_new_with_attributes
124 (_("Status"),
125 renderer,
126 "text", SSL_MANAGER_STATUS,
127 NULL);
128 gtk_tree_view_append_column(GTK_TREE_VIEW(list_view), column);
129
130 column = gtk_tree_view_column_new_with_attributes
131 (_("Expiry"),
132 renderer,
133 "text", SSL_MANAGER_EXPIRY,
134 NULL);
135 gtk_tree_view_column_set_attributes
136 (column, renderer,
137 "text", SSL_MANAGER_EXPIRY,
138 NULL);
139 gtk_tree_view_append_column(GTK_TREE_VIEW(list_view), column);
140 }
141
142 static GtkWidget *ssl_manager_list_view_create (void)
143 {
144 GtkTreeView *list_view;
145 GtkTreeSelection *selector;
146 GtkTreeModel *model;
147
148 model = GTK_TREE_MODEL(ssl_manager_create_data_store());
149 list_view = GTK_TREE_VIEW(gtk_tree_view_new_with_model(model));
150
151 gtk_tree_sortable_set_sort_column_id(GTK_TREE_SORTABLE(model),
152 0, GTK_SORT_ASCENDING);
153 g_object_unref(model);
154 selector = gtk_tree_view_get_selection(list_view);
155 gtk_tree_selection_set_mode(selector, GTK_SELECTION_BROWSE);
156
157 g_signal_connect(G_OBJECT(list_view), "row_activated",
158 G_CALLBACK(ssl_manager_double_clicked),
159 list_view);
160
161 /* create the columns */
162 ssl_manager_create_list_view_columns(GTK_WIDGET(list_view));
163
164 return GTK_WIDGET(list_view);
165 }
166
167 /*!
168 *\brief Save Gtk object size to prefs dataset
169 */
170 static void ssl_manager_size_allocate_cb(GtkWidget *widget,
171 GtkAllocation *allocation)
172 {
173 cm_return_if_fail(allocation != NULL);
174
175 gtk_window_get_size(GTK_WINDOW(widget),
176 &prefs_common.sslmanwin_width, &prefs_common.sslmanwin_height);
177 }
178
179 void ssl_manager_create(void)
180 {
181 GtkWidget *window;
182 GtkWidget *scroll;
183 GtkWidget *hbox1;
184 GtkWidget *vbox1;
185 GtkWidget *certlist;
186 GtkWidget *view_btn;
187 GtkWidget *delete_btn;
188 GtkWidget *close_btn;
189 static GdkGeometry geometry;
190
191 window = gtkut_window_new(GTK_WINDOW_TOPLEVEL, "ssl_manager");
192 gtk_window_set_title (GTK_WINDOW(window),
193 _("Saved TLS certificates"));
194
195 gtk_container_set_border_width (GTK_CONTAINER (window), 8);
196 gtk_window_set_position (GTK_WINDOW (window), GTK_WIN_POS_CENTER);
197 gtk_window_set_resizable(GTK_WINDOW (window), TRUE);
198 gtk_window_set_type_hint(GTK_WINDOW(window), GDK_WINDOW_TYPE_HINT_DIALOG);
199 g_signal_connect(G_OBJECT(window), "delete_event",
200 G_CALLBACK(ssl_manager_close_cb), NULL);
201 g_signal_connect(G_OBJECT(window), "size_allocate",
202 G_CALLBACK(ssl_manager_size_allocate_cb), NULL);
203 g_signal_connect(G_OBJECT(window), "key_press_event",
204 G_CALLBACK(key_pressed), NULL);
205 MANAGE_WINDOW_SIGNALS_CONNECT (window);
206
207 hbox1 = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 6);
208 vbox1 = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0);
209 delete_btn = gtkut_stock_button("edit-delete", _("D_elete"));
210
211 g_signal_connect(G_OBJECT(delete_btn), "clicked",
212 G_CALLBACK(ssl_manager_delete_cb), NULL);
213
214 view_btn = gtkut_stock_button("dialog-information", _("_Information"));
215 g_signal_connect(G_OBJECT(view_btn), "clicked",
216 G_CALLBACK(ssl_manager_view_cb), NULL);
217
218 close_btn = gtk_button_new_with_mnemonic(_("_Close"));
219 gtk_button_set_image(GTK_BUTTON(close_btn),
220 gtk_image_new_from_icon_name("window-close", GTK_ICON_SIZE_BUTTON));
221 g_signal_connect(G_OBJECT(close_btn), "clicked",
222 G_CALLBACK(ssl_manager_close_cb), NULL);
223
224 certlist = ssl_manager_list_view_create();
225
226 scroll = gtk_scrolled_window_new (NULL, NULL);
227 gtk_scrolled_window_set_policy (GTK_SCROLLED_WINDOW (scroll),
228 GTK_POLICY_NEVER,
229 GTK_POLICY_AUTOMATIC);
230
231 gtk_container_add(GTK_CONTAINER (scroll), certlist);
232
233 gtk_box_pack_start(GTK_BOX(hbox1), scroll, TRUE, TRUE, 0);
234 gtk_box_pack_start(GTK_BOX(hbox1), vbox1, FALSE, FALSE, 0);
235 gtk_box_pack_start(GTK_BOX(vbox1), view_btn, FALSE, FALSE, 4);
236 gtk_box_pack_start(GTK_BOX(vbox1), delete_btn, FALSE, FALSE, 4);
237 gtk_box_pack_end(GTK_BOX(vbox1), close_btn, FALSE, FALSE, 4);
238
239 if (!geometry.min_height) {
240 geometry.min_width = 700;
241 geometry.min_height = 250;
242 }
243
244 gtk_window_set_geometry_hints(GTK_WINDOW(window), NULL, &geometry,
245 GDK_HINT_MIN_SIZE);
246 gtk_window_set_default_size(GTK_WINDOW(window),
247 prefs_common.sslmanwin_width,
248 prefs_common.sslmanwin_height);
249
250 gtk_widget_show(certlist);
251 gtk_widget_show(scroll);
252 gtk_widget_show(hbox1);
253 gtk_widget_show(vbox1);
254 gtk_widget_show(close_btn);
255 gtk_widget_show(delete_btn);
256 gtk_widget_show(view_btn);
257 gtk_container_add(GTK_CONTAINER (window), hbox1);
258
259 manager.window = window;
260 manager.hbox1 = hbox1;
261 manager.vbox1 = vbox1;
262 manager.certlist = certlist;
263 manager.view_btn = view_btn;
264 manager.delete_btn = delete_btn;
265 manager.close_btn = close_btn;
266
267 gtk_widget_show(window);
268 }
269
270 static void ssl_manager_list_view_insert_cert(GtkWidget *list_view,
271 GtkTreeIter *row_iter,
272 gchar *host,
273 gchar *port,
274 SSLCertificate *cert)
275 {
276 char *sig_status, *exp_date;
277 char buf[100];
278 time_t exp_time_t;
279 struct tm lt;
280 PangoWeight weight = PANGO_WEIGHT_NORMAL;
281 GtkTreeIter iter, *iterptr;
282 GtkListStore *list_store = GTK_LIST_STORE(gtk_tree_view_get_model
283 (GTK_TREE_VIEW(list_view)));
284
285 g_return_if_fail(cert != NULL);
286
287 exp_time_t = gnutls_x509_crt_get_expiration_time(cert->x509_cert);
288
289 memset(buf, 0, sizeof(buf));
290 if (exp_time_t > 0) {
291 fast_strftime(buf, sizeof(buf)-1, prefs_common.date_format, localtime_r(&exp_time_t, &lt));
292 exp_date = (*buf) ? g_strdup(buf):g_strdup("?");
293 } else
294 exp_date = g_strdup("");
295
296 if (exp_time_t < time(NULL))
297 weight = PANGO_WEIGHT_BOLD;
298
299 sig_status = ssl_certificate_check_signer(cert, cert->status);
300
301 if (sig_status == NULL)
302 sig_status = g_strdup_printf(_("Correct%s"),exp_time_t < time(NULL)? _(" (expired)"): "");
303 else {
304 weight = PANGO_WEIGHT_BOLD;
305 if (exp_time_t < time(NULL))
306 sig_status = g_strconcat(sig_status,_(" (expired)"),NULL);
307 }
308
309 if (row_iter == NULL) {
310 /* append new */
311 gtk_list_store_append(list_store, &iter);
312 iterptr = &iter;
313 } else
314 iterptr = row_iter;
315
316 gtk_list_store_set(list_store, iterptr,
317 SSL_MANAGER_HOST, host,
318 SSL_MANAGER_PORT, port,
319 SSL_MANAGER_CERT, cert,
320 SSL_MANAGER_STATUS, sig_status,
321 SSL_MANAGER_EXPIRY, exp_date,
322 SSL_MANAGER_FONT_WEIGHT, weight,
323 -1);
324
325 g_free(sig_status);
326 g_free(exp_date);
327 }
328
329 static void ssl_manager_load_certs (void)
330 {
331 GDir *dir;
332 const gchar *d;
333 GError *error = NULL;
334 gchar *path;
335 int row = 0;
336 GtkListStore *store;
337
338 store = GTK_LIST_STORE(gtk_tree_view_get_model
339 (GTK_TREE_VIEW(manager.certlist)));
340
341 gtk_list_store_clear(store);
342
343 path = g_strconcat(get_rc_dir(), G_DIR_SEPARATOR_S,
344 "certs", G_DIR_SEPARATOR_S, NULL);
345
346 if((dir = g_dir_open(path, 0, &error)) == NULL) {
347 debug_print("couldn't open dir '%s': %s (%d)\n", path,
348 error->message, error->code);
349 g_error_free(error);
350 g_free(path);
351 return;
352 }
353
354 while ((d = g_dir_read_name(dir)) != NULL) {
355 gchar *server = NULL, *port = NULL, *fp = NULL;
356 SSLCertificate *cert;
357
358 if(strstr(d, ".cert") != d + (strlen(d) - strlen(".cert")))
359 continue;
360
361 if (get_serverportfp_from_filename(d, &server, &port, &fp)) {
362
363 if (server != NULL && port != NULL) {
364 gint portnum = atoi(port);
365 if (portnum > 0 && portnum <= 65535) {
366 cert = ssl_certificate_find(server, portnum, fp);
367 ssl_manager_list_view_insert_cert(manager.certlist, NULL,
368 server, port, cert);
369 }
370 }
371 }
372 if (server)
373 g_free(server);
374 if (port)
375 g_free(port);
376 if (fp)
377 g_free(fp);
378 row++;
379 }
380 g_dir_close(dir);
381 g_free(path);
382 }
383
384 static void ssl_manager_close(void)
385 {
386 gtk_widget_hide(manager.window);
387 }
388
389 static void ssl_manager_close_cb(GtkWidget *widget,
390 gpointer data)
391 {
392 ssl_manager_close();
393 }
394
395 static gboolean key_pressed(GtkWidget *widget, GdkEventKey *event, gpointer data)
396 {
397 if (!event)
398 return FALSE;
399
400 if (event->keyval == GDK_KEY_Escape)
401 ssl_manager_close();
402 else if (event->keyval == GDK_KEY_Delete)
403 ssl_manager_delete_cb(manager.delete_btn, NULL);
404
405 return FALSE;
406 }
407
408 static void ssl_manager_double_clicked(GtkTreeView *list_view,
409 GtkTreePath *path,
410 GtkTreeViewColumn *column,
411 gpointer data)
412 {
413 SSLCertificate *cert;
414 GtkTreeIter iter;
415 GtkTreeModel *model = gtk_tree_view_get_model(list_view);
416
417 if (!gtk_tree_model_get_iter(model, &iter, path))
418 return;
419
420 gtk_tree_model_get(model, &iter,
421 SSL_MANAGER_CERT, &cert,
422 -1);
423
424 if (!cert)
425 return;
426
427 sslcertwindow_show_cert(cert);
428
429 return;
430 }
431
432
433
434 static void ssl_manager_delete_cb(GtkWidget *widget,
435 gpointer data)
436 {
437 SSLCertificate *cert;
438 int val;
439 GtkTreeIter iter;
440 GtkTreeModel *model;
441
442 cert = gtkut_tree_view_get_selected_pointer(
443 GTK_TREE_VIEW(manager.certlist), SSL_MANAGER_CERT,
444 &model, NULL, &iter);
445
446 if (!cert)
447 return;
448
449 val = alertpanel_full(_("Delete certificate"),
450 _("Do you really want to delete this certificate?"),
451 NULL, _("_Cancel"), "edit-delete", _("D_elete"), NULL, NULL,
452 ALERTFOCUS_FIRST, FALSE, NULL, ALERT_WARNING);
453
454
455 if (val != G_ALERTALTERNATE)
456 return;
457
458 ssl_certificate_delete_from_disk(cert);
459 ssl_certificate_destroy(cert);
460 gtk_list_store_remove(GTK_LIST_STORE(model), &iter);
461 }
462
463 static void ssl_manager_view_cb(GtkWidget *widget,
464 gpointer data)
465 {
466 SSLCertificate *cert;
467
468 cert = gtkut_tree_view_get_selected_pointer(
469 GTK_TREE_VIEW(manager.certlist), SSL_MANAGER_CERT,
470 NULL, NULL, NULL);
471
472 if (!cert)
473 return;
474
475 sslcertwindow_show_cert(cert);
476 }
477 #endif