| blob | 1df249414a5fa7f0900b80c63e2ab67441fc6863 |
1 /* GIO - GLib Input, Output and Streaming Library
2 *
3 * Copyright (C) 2011 Collabora, Ltd.
4 *
5 * This library is free software; you can redistribute it and/or
6 * modify it under the terms of the GNU Lesser General Public
7 * License as published by the Free Software Foundation; either
8 * version 2 of the License, or (at your option) any later version.
9 *
10 * This library is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 * Lesser General Public License for more details.
14 *
15 * You should have received a copy of the GNU Lesser General
16 * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
17 *
18 * Author: Stef Walter <stefw@collabora.co.uk>
19 */
23 #include <string.h>
36 /**
37 * SECTION:gtlsinteraction
38 * @short_description: Interaction with the user during TLS operations.
39 * @include: gio/gio.h
40 *
41 * #GTlsInteraction provides a mechanism for the TLS connection and database
42 * code to interact with the user. It can be used to ask the user for passwords.
43 *
44 * To use a #GTlsInteraction with a TLS connection use
45 * g_tls_connection_set_interaction().
46 *
47 * Callers should instantiate a derived class that implements the various
48 * interaction methods to show the required dialogs.
49 *
50 * Callers should use the 'invoke' functions like
51 * g_tls_interaction_invoke_ask_password() to run interaction methods. These
52 * functions make sure that the interaction is invoked in the main loop
53 * and not in the current thread, if the current thread is not running the
54 * main loop.
55 *
56 * Derived classes can choose to implement whichever interactions methods they'd
57 * like to support by overriding those virtual methods in their class
58 * initialization function. Any interactions not implemented will return
59 * %G_TLS_INTERACTION_UNHANDLED. If a derived class implements an async method,
60 * it must also implement the corresponding finish method.
61 */
63 /**
64 * GTlsInteraction:
65 *
66 * An object representing interaction that the TLS connection and database
67 * might have with the user.
68 *
69 * Since: 2.30
70 */
72 /**
73 * GTlsInteractionClass:
74 * @ask_password: ask for a password synchronously. If the implementation
75 * returns %G_TLS_INTERACTION_HANDLED, then the password argument should
76 * have been filled in by using g_tls_password_set_value() or a similar
77 * function.
78 * @ask_password_async: ask for a password asynchronously.
79 * @ask_password_finish: complete operation to ask for a password asynchronously.
80 * If the implementation returns %G_TLS_INTERACTION_HANDLED, then the
81 * password argument of the async method should have been filled in by using
82 * g_tls_password_set_value() or a similar function.
83 *
84 * The class for #GTlsInteraction. Derived classes implement the various
85 * virtual interaction methods to handle TLS interactions.
86 *
87 * Derived classes can choose to implement whichever interactions methods they'd
88 * like to support by overriding those virtual methods in their class
89 * initialization function. If a derived class implements an async method,
90 * it must also implement the corresponding finish method.
91 *
92 * The synchronous interaction methods should implement to display modal dialogs,
93 * and the asynchronous methods to display modeless dialogs.
94 *
95 * If the user cancels an interaction, then the result should be
96 * %G_TLS_INTERACTION_FAILED and the error should be set with a domain of
97 * %G_IO_ERROR and code of %G_IO_ERROR_CANCELLED.
98 *
99 * Since: 2.30
100 */
104 };
109 GMutex mutex;
111 /* Input arguments */
116 /* Used when we're invoking async interactions */
117 GAsyncReadyCallback callback;
118 gpointer user_data;
120 /* Used when we expect results */
121 GTlsInteractionResult result;
123 gboolean complete;
124 GCond cond;
127 static void
129 {
139 /* Insurance that we've actually used these before freeing */
144 }
150 {
159 }
161 static GTlsInteractionResult
164 {
165 GTlsInteractionResult result;
175 {
178 }
183 }
185 static GTlsInteractionResult
189 {
190 GTlsInteractionResult result;
191 gboolean complete;
193 /*
194 * Handle the case where we've been called from within the main context
195 * or in the case where the main context is not running. This approximates
196 * the behavior of a modal dialog.
197 */
199 {
201 {
208 }
213 {
216 }
220 }
222 /*
223 * Handle the case where we're in a different thread than the main
224 * context and a main loop is running.
225 */
226 else
227 {
229 }
232 }
234 static void
236 {
239 }
241 static void
243 {
249 }
251 static void
253 {
257 }
259 static gboolean
261 {
280 }
282 static void
285 gpointer user_data)
286 {
296 result,
302 }
304 static gboolean
306 {
318 on_ask_password_complete,
319 closure);
321 /* Note that we've used these */
328 }
330 /**
331 * g_tls_interaction_invoke_ask_password:
332 * @interaction: a #GTlsInteraction object
333 * @password: a #GTlsPassword object
334 * @cancellable: an optional #GCancellable cancellation object
335 * @error: an optional location to place an error on failure
336 *
337 * Invoke the interaction to ask the user for a password. It invokes this
338 * interaction in the main loop, specifically the #GMainContext returned by
339 * g_main_context_get_thread_default() when the interaction is created. This
340 * is called by called by #GTlsConnection or #GTlsDatabase to ask the user
341 * for a password.
342 *
343 * Derived subclasses usually implement a password prompt, although they may
344 * also choose to provide a password from elsewhere. The @password value will
345 * be filled in and then @callback will be called. Alternatively the user may
346 * abort this password request, which will usually abort the TLS connection.
347 *
348 * The implementation can either be a synchronous (eg: modal dialog) or an
349 * asynchronous one (eg: modeless dialog). This function will take care of
350 * calling which ever one correctly.
351 *
352 * If the interaction is cancelled by the cancellation object, or by the
353 * user then %G_TLS_INTERACTION_FAILED will be returned with an error that
354 * contains a %G_IO_ERROR_CANCELLED error code. Certain implementations may
355 * not support immediate cancellation.
356 *
357 * Returns: The status of the ask password interaction.
358 *
359 * Since: 2.30
360 */
361 GTlsInteractionResult
366 {
367 GTlsInteractionResult result;
373 g_return_val_if_fail (cancellable == NULL || G_IS_CANCELLABLE (cancellable), G_TLS_INTERACTION_UNHANDLED);
379 {
383 }
385 {
391 }
392 else
393 {
396 }
399 }
401 /**
402 * g_tls_interaction_ask_password:
403 * @interaction: a #GTlsInteraction object
404 * @password: a #GTlsPassword object
405 * @cancellable: an optional #GCancellable cancellation object
406 * @error: an optional location to place an error on failure
407 *
408 * Run synchronous interaction to ask the user for a password. In general,
409 * g_tls_interaction_invoke_ask_password() should be used instead of this
410 * function.
411 *
412 * Derived subclasses usually implement a password prompt, although they may
413 * also choose to provide a password from elsewhere. The @password value will
414 * be filled in and then @callback will be called. Alternatively the user may
415 * abort this password request, which will usually abort the TLS connection.
416 *
417 * If the interaction is cancelled by the cancellation object, or by the
418 * user then %G_TLS_INTERACTION_FAILED will be returned with an error that
419 * contains a %G_IO_ERROR_CANCELLED error code. Certain implementations may
420 * not support immediate cancellation.
421 *
422 * Returns: The status of the ask password interaction.
423 *
424 * Since: 2.30
425 */
426 GTlsInteractionResult
431 {
436 g_return_val_if_fail (cancellable == NULL || G_IS_CANCELLABLE (cancellable), G_TLS_INTERACTION_UNHANDLED);
441 else
443 }
445 /**
446 * g_tls_interaction_ask_password_async:
447 * @interaction: a #GTlsInteraction object
448 * @password: a #GTlsPassword object
449 * @cancellable: an optional #GCancellable cancellation object
450 * @callback: (allow-none): will be called when the interaction completes
451 * @user_data: (allow-none): data to pass to the @callback
452 *
453 * Run asynchronous interaction to ask the user for a password. In general,
454 * g_tls_interaction_invoke_ask_password() should be used instead of this
455 * function.
456 *
457 * Derived subclasses usually implement a password prompt, although they may
458 * also choose to provide a password from elsewhere. The @password value will
459 * be filled in and then @callback will be called. Alternatively the user may
460 * abort this password request, which will usually abort the TLS connection.
461 *
462 * If the interaction is cancelled by the cancellation object, or by the
463 * user then %G_TLS_INTERACTION_FAILED will be returned with an error that
464 * contains a %G_IO_ERROR_CANCELLED error code. Certain implementations may
465 * not support immediate cancellation.
466 *
467 * Certain implementations may not support immediate cancellation.
468 *
469 * Since: 2.30
470 */
471 void
475 GAsyncReadyCallback callback,
476 gpointer user_data)
477 {
487 {
491 }
492 else
493 {
498 }
499 }
501 /**
502 * g_tls_interaction_ask_password_finish:
503 * @interaction: a #GTlsInteraction object
504 * @result: the result passed to the callback
505 * @error: an optional location to place an error on failure
506 *
507 * Complete an ask password user interaction request. This should be once
508 * the g_tls_interaction_ask_password_async() completion callback is called.
509 *
510 * If %G_TLS_INTERACTION_HANDLED is returned, then the #GTlsPassword passed
511 * to g_tls_interaction_ask_password() will have its password filled in.
512 *
513 * If the interaction is cancelled by the cancellation object, or by the
514 * user then %G_TLS_INTERACTION_FAILED will be returned with an error that
515 * contains a %G_IO_ERROR_CANCELLED error code.
516 *
517 * Returns: The status of the ask password interaction.
518 *
519 * Since: 2.30
520 */
521 GTlsInteractionResult
525 {
533 {
537 }
538 else
539 {
540 g_return_val_if_fail (g_async_result_is_tagged (result, g_tls_interaction_ask_password_async), G_TLS_INTERACTION_UNHANDLED);
543 }
544 }
546 static gboolean
548 {
568 }
570 static void
573 gpointer user_data)
574 {
589 }
591 static gboolean
593 {
605 on_request_certificate_complete,
606 closure);
608 /* Note that we've used these */
615 }
617 /**
618 * g_tls_interaction_invoke_request_certificate:
619 * @interaction: a #GTlsInteraction object
620 * @connection: a #GTlsConnection object
621 * @flags: flags providing more information about the request
622 * @cancellable: an optional #GCancellable cancellation object
623 * @error: an optional location to place an error on failure
624 *
625 * Invoke the interaction to ask the user to choose a certificate to
626 * use with the connection. It invokes this interaction in the main
627 * loop, specifically the #GMainContext returned by
628 * g_main_context_get_thread_default() when the interaction is
629 * created. This is called by called by #GTlsConnection when the peer
630 * requests a certificate during the handshake.
631 *
632 * Derived subclasses usually implement a certificate selector,
633 * although they may also choose to provide a certificate from
634 * elsewhere. Alternatively the user may abort this certificate
635 * request, which may or may not abort the TLS connection.
636 *
637 * The implementation can either be a synchronous (eg: modal dialog) or an
638 * asynchronous one (eg: modeless dialog). This function will take care of
639 * calling which ever one correctly.
640 *
641 * If the interaction is cancelled by the cancellation object, or by the
642 * user then %G_TLS_INTERACTION_FAILED will be returned with an error that
643 * contains a %G_IO_ERROR_CANCELLED error code. Certain implementations may
644 * not support immediate cancellation.
645 *
646 * Returns: The status of the certificate request interaction.
647 *
648 * Since: 2.40
649 */
650 GTlsInteractionResult
653 GTlsCertificateRequestFlags flags,
656 {
657 GTlsInteractionResult result;
663 g_return_val_if_fail (cancellable == NULL || G_IS_CANCELLABLE (cancellable), G_TLS_INTERACTION_UNHANDLED);
669 {
673 }
675 {
681 }
682 else
683 {
686 }
689 }
691 /**
692 * g_tls_interaction_request_certificate:
693 * @interaction: a #GTlsInteraction object
694 * @connection: a #GTlsConnection object
695 * @flags: flags providing more information about the request
696 * @cancellable: an optional #GCancellable cancellation object
697 * @error: an optional location to place an error on failure
698 *
699 * Run synchronous interaction to ask the user to choose a certificate to use
700 * with the connection. In general, g_tls_interaction_invoke_request_certificate()
701 * should be used instead of this function.
702 *
703 * Derived subclasses usually implement a certificate selector, although they may
704 * also choose to provide a certificate from elsewhere. Alternatively the user may
705 * abort this certificate request, which will usually abort the TLS connection.
706 *
707 * If %G_TLS_INTERACTION_HANDLED is returned, then the #GTlsConnection
708 * passed to g_tls_interaction_request_certificate() will have had its
709 * #GTlsConnection:certificate filled in.
710 *
711 * If the interaction is cancelled by the cancellation object, or by the
712 * user then %G_TLS_INTERACTION_FAILED will be returned with an error that
713 * contains a %G_IO_ERROR_CANCELLED error code. Certain implementations may
714 * not support immediate cancellation.
715 *
716 * Returns: The status of the request certificate interaction.
717 *
718 * Since: 2.40
719 */
720 GTlsInteractionResult
723 GTlsCertificateRequestFlags flags,
726 {
731 g_return_val_if_fail (cancellable == NULL || G_IS_CANCELLABLE (cancellable), G_TLS_INTERACTION_UNHANDLED);
736 else
738 }
740 /**
741 * g_tls_interaction_request_certificate_async:
742 * @interaction: a #GTlsInteraction object
743 * @connection: a #GTlsConnection object
744 * @flags: flags providing more information about the request
745 * @cancellable: an optional #GCancellable cancellation object
746 * @callback: (allow-none): will be called when the interaction completes
747 * @user_data: (allow-none): data to pass to the @callback
748 *
749 * Run asynchronous interaction to ask the user for a certificate to use with
750 * the connection. In general, g_tls_interaction_invoke_request_certificate() should
751 * be used instead of this function.
752 *
753 * Derived subclasses usually implement a certificate selector, although they may
754 * also choose to provide a certificate from elsewhere. @callback will be called
755 * when the operation completes. Alternatively the user may abort this certificate
756 * request, which will usually abort the TLS connection.
757 *
758 * Since: 2.40
759 */
760 void
763 GTlsCertificateRequestFlags flags,
765 GAsyncReadyCallback callback,
766 gpointer user_data)
767 {
777 {
781 }
782 else
783 {
788 }
789 }
791 /**
792 * g_tls_interaction_request_certificate_finish:
793 * @interaction: a #GTlsInteraction object
794 * @result: the result passed to the callback
795 * @error: an optional location to place an error on failure
796 *
797 * Complete an request certificate user interaction request. This should be once
798 * the g_tls_interaction_request_certificate_async() completion callback is called.
799 *
800 * If %G_TLS_INTERACTION_HANDLED is returned, then the #GTlsConnection
801 * passed to g_tls_interaction_request_certificate_async() will have had its
802 * #GTlsConnection:certificate filled in.
803 *
804 * If the interaction is cancelled by the cancellation object, or by the
805 * user then %G_TLS_INTERACTION_FAILED will be returned with an error that
806 * contains a %G_IO_ERROR_CANCELLED error code.
807 *
808 * Returns: The status of the request certificate interaction.
809 *
810 * Since: 2.40
811 */
812 GTlsInteractionResult
816 {
824 {
828 }
829 else
830 {
831 g_return_val_if_fail (g_async_result_is_tagged (result, g_tls_interaction_request_certificate_async), G_TLS_INTERACTION_UNHANDLED);
834 }
835 }