projects / claws.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
update copyright year
[claws.git] / src / ssl_manager.c
1 /*
2  * Claws Mail -- a GTK based, lightweight, and fast e-mail client
3  * Copyright (C) 1999-2024 the Claws Mail team and Colin Leroy
4  *
5  * This program is free software; you can redistribute it and/or modify
6  * it under the terms of the GNU General Public License as published by
7  * the Free Software Foundation; either version 3 of the License, or
8  * (at your option) any later version.
9  *
10  * This program is distributed in the hope that it will be useful,
11  * but WITHOUT ANY WARRANTY; without even the implied warranty of
12  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
13  * GNU General Public License for more details.
14  *
15  * You should have received a copy of the GNU General Public License
16  * along with this program. If not, see <http://www.gnu.org/licenses/>.
17  */
18
19 #ifdef HAVE_CONFIG_H
20 #  include "config.h"
21 #include "claws-features.h"
22 #endif
23
24 #ifdef USE_GNUTLS
25 #include <gtk/gtk.h>
26 #include <glib.h>
27 #include <glib/gi18n.h>
28 #include <gdk/gdkkeysyms.h>
29 #include <sys/types.h>
30
31 #include "ssl_manager.h"
32 #include "ssl_certificate.h"
33 #include "manage_window.h"
34 #include "utils.h"
35 #include "mainwindow.h"
36 #include "alertpanel.h"
37 #include "sslcertwindow.h"
38 #include "prefs_common.h"
39
40 enum {
41         SSL_MANAGER_HOST,
42         SSL_MANAGER_PORT,
43         SSL_MANAGER_CERT,
44         SSL_MANAGER_STATUS,
45         SSL_MANAGER_EXPIRY,
46         SSL_MANAGER_FONT_WEIGHT,
47         N_SSL_MANAGER_COLUMNS
48 };
49
50
51 static struct SSLManager
52 {
53         GtkWidget *window;
54         GtkWidget *hbox1;
55         GtkWidget *vbox1;
56         GtkWidget *certlist;
57         GtkWidget *view_btn;
58         GtkWidget *delete_btn;
59         GtkWidget *close_btn;
60 } manager;
61
62 static void ssl_manager_view_cb         (GtkWidget *widget, gpointer data);
63 static void ssl_manager_delete_cb       (GtkWidget *widget, gpointer data);
64 static void ssl_manager_close_cb        (GtkWidget *widget, gpointer data);
65 static gboolean key_pressed             (GtkWidget *widget, GdkEventKey *event,
66                                          gpointer data);
67 static void ssl_manager_load_certs      (void);
68 static void ssl_manager_double_clicked(GtkTreeView              *list_view,
69                                         GtkTreePath             *path,
70                                         GtkTreeViewColumn       *column,
71                                         gpointer                 data);
72
73 void ssl_manager_open(MainWindow *mainwin)
74 {
75         if (!manager.window)
76                 ssl_manager_create();
77
78         manage_window_set_transient(GTK_WINDOW(manager.window));
79         gtk_widget_grab_focus(manager.close_btn);
80
81         ssl_manager_load_certs();
82
83         gtk_widget_show(manager.window);
84
85 }
86
87 static GtkListStore* ssl_manager_create_data_store(void)
88 {
89         return gtk_list_store_new(N_SSL_MANAGER_COLUMNS,
90                                   G_TYPE_STRING,
91                                   G_TYPE_STRING,
92                                   G_TYPE_POINTER,
93                                   G_TYPE_STRING,
94                                   G_TYPE_STRING,
95                                   G_TYPE_INT,
96                                   -1);
97 }
98
99 static void ssl_manager_create_list_view_columns(GtkWidget *list_view)
100 {
101         GtkTreeViewColumn *column;
102         GtkCellRenderer *renderer;
103
104         renderer = gtk_cell_renderer_text_new();
105         g_object_set(renderer, "weight", PANGO_WEIGHT_NORMAL,
106                      "weight-set", TRUE, NULL);
107
108         column = gtk_tree_view_column_new_with_attributes
109                 (_("Server"),
110                  renderer,
111                  "text", SSL_MANAGER_HOST,
112                  "weight", SSL_MANAGER_FONT_WEIGHT,
113                  NULL);
114         gtk_tree_view_append_column(GTK_TREE_VIEW(list_view), column);
115
116         column = gtk_tree_view_column_new_with_attributes
117                 (_("Port"),
118                  renderer,
119                  "text", SSL_MANAGER_PORT,
120                  NULL);
121         gtk_tree_view_append_column(GTK_TREE_VIEW(list_view), column);
122
123         column = gtk_tree_view_column_new_with_attributes
124                 (_("Status"),
125                  renderer,
126                  "text", SSL_MANAGER_STATUS,
127                  NULL);
128         gtk_tree_view_append_column(GTK_TREE_VIEW(list_view), column);
129
130         column = gtk_tree_view_column_new_with_attributes
131                 (_("Expiry"),
132                  renderer,
133                  "text", SSL_MANAGER_EXPIRY,
134                  NULL);
135         gtk_tree_view_column_set_attributes
136                 (column, renderer,
137                  "text", SSL_MANAGER_EXPIRY,
138                  NULL);
139         gtk_tree_view_append_column(GTK_TREE_VIEW(list_view), column);
140 }
141
142 static GtkWidget *ssl_manager_list_view_create  (void)
143 {
144         GtkTreeView *list_view;
145         GtkTreeSelection *selector;
146         GtkTreeModel *model;
147
148         model = GTK_TREE_MODEL(ssl_manager_create_data_store());
149         list_view = GTK_TREE_VIEW(gtk_tree_view_new_with_model(model));
150         
151         gtk_tree_sortable_set_sort_column_id(GTK_TREE_SORTABLE(model),
152                                              0, GTK_SORT_ASCENDING);
153         g_object_unref(model);
154         selector = gtk_tree_view_get_selection(list_view);
155         gtk_tree_selection_set_mode(selector, GTK_SELECTION_BROWSE);
156
157         g_signal_connect(G_OBJECT(list_view), "row_activated",
158                          G_CALLBACK(ssl_manager_double_clicked),
159                          list_view);
160
161         /* create the columns */
162         ssl_manager_create_list_view_columns(GTK_WIDGET(list_view));
163
164         return GTK_WIDGET(list_view);
165 }
166
167 /*!
168  *\brief        Save Gtk object size to prefs dataset
169  */
170 static void ssl_manager_size_allocate_cb(GtkWidget *widget,
171                                          GtkAllocation *allocation)
172 {
173         cm_return_if_fail(allocation != NULL);
174
175         gtk_window_get_size(GTK_WINDOW(widget),
176                 &prefs_common.sslmanwin_width, &prefs_common.sslmanwin_height);
177 }
178
179 void ssl_manager_create(void)
180 {
181         GtkWidget *window;
182         GtkWidget *scroll;
183         GtkWidget *hbox1;
184         GtkWidget *vbox1;
185         GtkWidget *certlist;
186         GtkWidget *view_btn;
187         GtkWidget *delete_btn;
188         GtkWidget *close_btn;
189         static GdkGeometry geometry;
190
191         window = gtkut_window_new(GTK_WINDOW_TOPLEVEL, "ssl_manager");
192         gtk_window_set_title (GTK_WINDOW(window),
193                               _("Saved TLS certificates"));
194
195         gtk_container_set_border_width (GTK_CONTAINER (window), 8);
196         gtk_window_set_position (GTK_WINDOW (window), GTK_WIN_POS_CENTER);
197         gtk_window_set_resizable(GTK_WINDOW (window), TRUE);
198         gtk_window_set_type_hint(GTK_WINDOW(window), GDK_WINDOW_TYPE_HINT_DIALOG);
199         g_signal_connect(G_OBJECT(window), "delete_event",
200                          G_CALLBACK(ssl_manager_close_cb), NULL);
201         g_signal_connect(G_OBJECT(window), "size_allocate",
202                          G_CALLBACK(ssl_manager_size_allocate_cb), NULL);
203         g_signal_connect(G_OBJECT(window), "key_press_event",
204                          G_CALLBACK(key_pressed), NULL);
205         MANAGE_WINDOW_SIGNALS_CONNECT (window);
206
207         hbox1 = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 6);
208         vbox1 = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0);
209         delete_btn = gtkut_stock_button("edit-delete", _("D_elete"));
210
211         g_signal_connect(G_OBJECT(delete_btn), "clicked",
212                          G_CALLBACK(ssl_manager_delete_cb), NULL);
213
214         view_btn = gtkut_stock_button("dialog-information", _("_Information"));
215         g_signal_connect(G_OBJECT(view_btn), "clicked",
216                          G_CALLBACK(ssl_manager_view_cb), NULL);
217
218         close_btn = gtk_button_new_with_mnemonic("_Close");
219         gtk_button_set_image(GTK_BUTTON(close_btn),
220                         gtk_image_new_from_icon_name("window-close", GTK_ICON_SIZE_BUTTON));
221         g_signal_connect(G_OBJECT(close_btn), "clicked",
222                          G_CALLBACK(ssl_manager_close_cb), NULL);
223
224         certlist = ssl_manager_list_view_create();
225
226         scroll = gtk_scrolled_window_new (NULL, NULL);
227         gtk_scrolled_window_set_policy (GTK_SCROLLED_WINDOW (scroll),
228                                         GTK_POLICY_NEVER,
229                                         GTK_POLICY_AUTOMATIC);
230
231         gtk_container_add(GTK_CONTAINER (scroll), certlist);
232
233         gtk_box_pack_start(GTK_BOX(hbox1), scroll, TRUE, TRUE, 0);
234         gtk_box_pack_start(GTK_BOX(hbox1), vbox1, FALSE, FALSE, 0);
235         gtk_box_pack_start(GTK_BOX(vbox1), view_btn, FALSE, FALSE, 4);
236         gtk_box_pack_start(GTK_BOX(vbox1), delete_btn, FALSE, FALSE, 4);
237         gtk_box_pack_end(GTK_BOX(vbox1), close_btn, FALSE, FALSE, 4);
238
239         if (!geometry.min_height) {
240                 geometry.min_width = 700;
241                 geometry.min_height = 250;
242         }
243
244         gtk_window_set_geometry_hints(GTK_WINDOW(window), NULL, &geometry,
245                                       GDK_HINT_MIN_SIZE);
246         gtk_window_set_default_size(GTK_WINDOW(window),
247                                     prefs_common.sslmanwin_width,
248                                     prefs_common.sslmanwin_height);
249
250         gtk_widget_show(certlist);
251         gtk_widget_show(scroll);
252         gtk_widget_show(hbox1);
253         gtk_widget_show(vbox1);
254         gtk_widget_show(close_btn);
255         gtk_widget_show(delete_btn);
256         gtk_widget_show(view_btn);
257         gtk_container_add(GTK_CONTAINER (window), hbox1);
258
259         manager.window = window;
260         manager.hbox1 = hbox1;
261         manager.vbox1 = vbox1;
262         manager.certlist = certlist;
263         manager.view_btn = view_btn;
264         manager.delete_btn = delete_btn;
265         manager.close_btn = close_btn;
266
267         gtk_widget_show(window);
268 }
269
270 static void ssl_manager_list_view_insert_cert(GtkWidget *list_view,
271                                                   GtkTreeIter *row_iter,
272                                                   gchar *host, 
273                                                   gchar *port,
274                                                   SSLCertificate *cert) 
275 {
276         char *sig_status, *exp_date;
277         char buf[100];
278         time_t exp_time_t;
279         struct tm lt;
280         PangoWeight weight = PANGO_WEIGHT_NORMAL;
281         GtkTreeIter iter, *iterptr;
282         GtkListStore *list_store = GTK_LIST_STORE(gtk_tree_view_get_model
283                                         (GTK_TREE_VIEW(list_view)));
284
285         g_return_if_fail(cert != NULL);
286
287         exp_time_t = gnutls_x509_crt_get_expiration_time(cert->x509_cert);
288
289         memset(buf, 0, sizeof(buf));
290         if (exp_time_t > 0) {
291                 fast_strftime(buf, sizeof(buf)-1, prefs_common.date_format, localtime_r(&exp_time_t, &lt));
292                 exp_date = (*buf) ? g_strdup(buf):g_strdup("?");
293         } else
294                 exp_date = g_strdup("");
295
296         if (exp_time_t < time(NULL))
297                 weight = PANGO_WEIGHT_BOLD;
298
299         sig_status = ssl_certificate_check_signer(cert, cert->status);
300
301         if (sig_status == NULL)
302                 sig_status = g_strdup_printf(_("Correct%s"),exp_time_t < time(NULL)? _(" (expired)"): "");
303         else {
304                  weight = PANGO_WEIGHT_BOLD;
305                  if (exp_time_t < time(NULL))
306                           sig_status = g_strconcat(sig_status,_(" (expired)"),NULL);
307         }
308
309         if (row_iter == NULL) {
310                 /* append new */
311                 gtk_list_store_append(list_store, &iter);
312                 iterptr = &iter;
313         } else
314                 iterptr = row_iter;
315
316         gtk_list_store_set(list_store, iterptr,
317                            SSL_MANAGER_HOST, host,
318                            SSL_MANAGER_PORT, port,
319                            SSL_MANAGER_CERT, cert,
320                            SSL_MANAGER_STATUS, sig_status,
321                            SSL_MANAGER_EXPIRY, exp_date,
322                            SSL_MANAGER_FONT_WEIGHT, weight,
323                            -1);
324
325         g_free(sig_status);
326         g_free(exp_date);
327 }
328
329 static void ssl_manager_load_certs (void) 
330 {
331         GDir *dir;
332         const gchar *d;
333         GError *error = NULL;
334         gchar *path;
335         int row = 0;
336         GtkListStore *store;
337
338         store = GTK_LIST_STORE(gtk_tree_view_get_model
339                                 (GTK_TREE_VIEW(manager.certlist)));
340
341         gtk_list_store_clear(store);
342
343         path = g_strconcat(get_rc_dir(), G_DIR_SEPARATOR_S, 
344                           "certs", G_DIR_SEPARATOR_S, NULL);
345
346         if((dir = g_dir_open(path, 0, &error)) == NULL) {
347                 debug_print("couldn't open dir '%s': %s (%d)\n", path,
348                                 error->message, error->code);
349                 g_error_free(error);
350         g_free(path);
351                 return;
352         }
353         
354         while ((d = g_dir_read_name(dir)) != NULL) {
355                 gchar *server = NULL, *port = NULL, *fp = NULL;
356                 SSLCertificate *cert;
357
358                 if(strstr(d, ".cert") != d + (strlen(d) - strlen(".cert"))) 
359                         continue;
360
361                 if (get_serverportfp_from_filename(d, &server, &port, &fp)) {
362
363                         if (server != NULL && port != NULL) {
364                                 gint portnum = atoi(port);
365                                 if (portnum > 0 && portnum <= 65535) {
366                                         cert = ssl_certificate_find(server, portnum, fp);
367                                         ssl_manager_list_view_insert_cert(manager.certlist, NULL,
368                                                         server, port, cert);
369                                 }
370                         }
371                 }
372                 if (server)
373                         g_free(server);
374                 if (port)
375                         g_free(port);
376                 if (fp)
377                         g_free(fp);
378                 row++;
379         }
380         g_dir_close(dir);
381         g_free(path);
382 }
383
384 static void ssl_manager_close(void) 
385 {
386         gtk_widget_hide(manager.window);
387 }
388
389 static void ssl_manager_close_cb(GtkWidget *widget,
390                                  gpointer data) 
391 {
392         ssl_manager_close();
393 }
394
395 static gboolean key_pressed(GtkWidget *widget, GdkEventKey *event, gpointer data)
396 {
397         if (!event)
398                 return FALSE;
399
400         if (event->keyval == GDK_KEY_Escape)
401                 ssl_manager_close();
402         else if (event->keyval == GDK_KEY_Delete)
403                 ssl_manager_delete_cb(manager.delete_btn, NULL);
404
405         return FALSE;
406 }
407
408 static void ssl_manager_double_clicked(GtkTreeView              *list_view,
409                                         GtkTreePath             *path,
410                                         GtkTreeViewColumn       *column,
411                                         gpointer                 data)
412 {
413         SSLCertificate *cert;
414         GtkTreeIter iter;
415         GtkTreeModel *model = gtk_tree_view_get_model(list_view);
416
417         if (!gtk_tree_model_get_iter(model, &iter, path))
418                 return;
419
420         gtk_tree_model_get(model, &iter, 
421                            SSL_MANAGER_CERT, &cert,
422                            -1);
423
424         if (!cert)
425                 return;
426
427         sslcertwindow_show_cert(cert);
428
429         return;
430 }
431
432
433
434 static void ssl_manager_delete_cb(GtkWidget *widget, 
435                               gpointer data) 
436 {
437         SSLCertificate *cert;
438         int val;
439         GtkTreeIter iter;
440         GtkTreeModel *model;
441
442         cert = gtkut_tree_view_get_selected_pointer(
443                         GTK_TREE_VIEW(manager.certlist), SSL_MANAGER_CERT,
444                         &model, NULL, &iter);
445
446         if (!cert)
447                 return;
448
449         val = alertpanel_full(_("Delete certificate"),
450                               _("Do you really want to delete this certificate?"),
451                               NULL, _("_Cancel"), "edit-delete", _("D_elete"), NULL, NULL,
452                               ALERTFOCUS_FIRST, FALSE, NULL, ALERT_WARNING);
453
454                              
455         if (val != G_ALERTALTERNATE)
456                 return;
457         
458         ssl_certificate_delete_from_disk(cert);
459         ssl_certificate_destroy(cert);
460         gtk_list_store_remove(GTK_LIST_STORE(model), &iter);
461 }
462
463 static void ssl_manager_view_cb(GtkWidget *widget, 
464                                 gpointer data) 
465 {
466         SSLCertificate *cert;
467
468         cert = gtkut_tree_view_get_selected_pointer(
469                         GTK_TREE_VIEW(manager.certlist), SSL_MANAGER_CERT,
470                         NULL, NULL, NULL);
471
472         if (!cert)
473                 return;
474
475         sslcertwindow_show_cert(cert);
476 }
477 #endif
Claws Mail