mirror of
https://git.tartarus.org/simon/putty.git
synced 2025-01-09 17:38:00 +00:00
Pageant client: functions to send reencryption requests.
The reencrypt-all request is unusual in its ability to be _partially_ successful. To handle this I've introduced a new return status, PAGEANT_ACTION_WARNING. At the moment, users of this client code don't expect it to appear on any request, and I'll make them watch for it only in the case where I know a particular function can generate it.
This commit is contained in:
parent
9f15ab4cac
commit
e563627d4b
1
defs.h
1
defs.h
@ -18,6 +18,7 @@
|
|||||||
#if defined _MSC_VER && _MSC_VER < 1800
|
#if defined _MSC_VER && _MSC_VER < 1800
|
||||||
/* Work around lack of inttypes.h and strtoumax in older MSVC */
|
/* Work around lack of inttypes.h and strtoumax in older MSVC */
|
||||||
#define PRIx32 "x"
|
#define PRIx32 "x"
|
||||||
|
#define PRIu32 "u"
|
||||||
#define PRIu64 "I64u"
|
#define PRIu64 "I64u"
|
||||||
#define PRIdMAX "I64d"
|
#define PRIdMAX "I64d"
|
||||||
#define PRIXMAX "I64X"
|
#define PRIXMAX "I64X"
|
||||||
|
49
pageant.c
49
pageant.c
@ -2214,6 +2214,55 @@ int pageant_delete_all_keys(char **retstr)
|
|||||||
return PAGEANT_ACTION_OK;
|
return PAGEANT_ACTION_OK;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
int pageant_reencrypt_key(struct pageant_pubkey *key, char **retstr)
|
||||||
|
{
|
||||||
|
PageantClientOp *pco = pageant_client_op_new();
|
||||||
|
|
||||||
|
if (key->ssh_version == 1) {
|
||||||
|
*retstr = dupstr("Can't re-encrypt an SSH-1 key");
|
||||||
|
return PAGEANT_ACTION_FAILURE;
|
||||||
|
} else {
|
||||||
|
put_byte(pco, SSH2_AGENTC_EXTENSION);
|
||||||
|
put_stringpl(pco, extension_names[EXT_REENCRYPT]);
|
||||||
|
put_string(pco, key->blob->s, key->blob->len);
|
||||||
|
}
|
||||||
|
|
||||||
|
unsigned reply = pageant_client_op_query(pco);
|
||||||
|
pageant_client_op_free(pco);
|
||||||
|
|
||||||
|
if (reply != SSH_AGENT_SUCCESS) {
|
||||||
|
*retstr = dupstr("Agent failed to re-encrypt key");
|
||||||
|
return PAGEANT_ACTION_FAILURE;
|
||||||
|
} else {
|
||||||
|
*retstr = NULL;
|
||||||
|
return PAGEANT_ACTION_OK;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
int pageant_reencrypt_all_keys(char **retstr)
|
||||||
|
{
|
||||||
|
PageantClientOp *pco = pageant_client_op_new();
|
||||||
|
put_byte(pco, SSH2_AGENTC_EXTENSION);
|
||||||
|
put_stringpl(pco, extension_names[EXT_REENCRYPT_ALL]);
|
||||||
|
unsigned reply = pageant_client_op_query(pco);
|
||||||
|
uint32_t failures = get_uint32(pco);
|
||||||
|
pageant_client_op_free(pco);
|
||||||
|
if (reply != SSH_AGENT_SUCCESS) {
|
||||||
|
*retstr = dupstr("Agent failed to re-encrypt any keys");
|
||||||
|
return PAGEANT_ACTION_FAILURE;
|
||||||
|
} else if (failures == 1) {
|
||||||
|
/* special case for English grammar */
|
||||||
|
*retstr = dupstr("1 key remains unencrypted");
|
||||||
|
return PAGEANT_ACTION_WARNING;
|
||||||
|
} else if (failures > 0) {
|
||||||
|
*retstr = dupprintf("%"PRIu32" keys remain unencrypted", failures);
|
||||||
|
return PAGEANT_ACTION_WARNING;
|
||||||
|
} else {
|
||||||
|
*retstr = NULL;
|
||||||
|
return PAGEANT_ACTION_OK;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
int pageant_sign(struct pageant_pubkey *key, ptrlen message, strbuf *out,
|
int pageant_sign(struct pageant_pubkey *key, ptrlen message, strbuf *out,
|
||||||
uint32_t flags, char **retstr)
|
uint32_t flags, char **retstr)
|
||||||
{
|
{
|
||||||
|
@ -211,7 +211,9 @@ void pageant_listener_free(struct pageant_listen_state *pl);
|
|||||||
enum {
|
enum {
|
||||||
PAGEANT_ACTION_OK, /* success; no further action needed */
|
PAGEANT_ACTION_OK, /* success; no further action needed */
|
||||||
PAGEANT_ACTION_FAILURE, /* failure; *retstr is error message */
|
PAGEANT_ACTION_FAILURE, /* failure; *retstr is error message */
|
||||||
PAGEANT_ACTION_NEED_PP /* need passphrase: *retstr is key comment */
|
PAGEANT_ACTION_NEED_PP, /* need passphrase: *retstr is key comment */
|
||||||
|
PAGEANT_ACTION_WARNING, /* success but with a warning message;
|
||||||
|
* *retstr is warning message */
|
||||||
};
|
};
|
||||||
int pageant_add_keyfile(Filename *filename, const char *passphrase,
|
int pageant_add_keyfile(Filename *filename, const char *passphrase,
|
||||||
char **retstr, bool add_encrypted);
|
char **retstr, bool add_encrypted);
|
||||||
@ -236,5 +238,7 @@ int pageant_enum_keys(pageant_key_enum_fn_t callback, void *callback_ctx,
|
|||||||
char **retstr);
|
char **retstr);
|
||||||
int pageant_delete_key(struct pageant_pubkey *key, char **retstr);
|
int pageant_delete_key(struct pageant_pubkey *key, char **retstr);
|
||||||
int pageant_delete_all_keys(char **retstr);
|
int pageant_delete_all_keys(char **retstr);
|
||||||
|
int pageant_reencrypt_key(struct pageant_pubkey *key, char **retstr);
|
||||||
|
int pageant_reencrypt_all_keys(char **retstr);
|
||||||
int pageant_sign(struct pageant_pubkey *key, ptrlen message, strbuf *out,
|
int pageant_sign(struct pageant_pubkey *key, ptrlen message, strbuf *out,
|
||||||
uint32_t flags, char **retstr);
|
uint32_t flags, char **retstr);
|
||||||
|
Loading…
Reference in New Issue
Block a user