| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
| |
Signed-off-by: Mavridis Philippe <[email protected]>
(cherry picked from commit 7482fe22830ce974a15e3a132dcc3ac6cee1a65f)
|
| |
|
|
|
|
|
| |
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit 78d96bd2009b8741564df4778b63d3091610dbd7)
|
|
|
|
|
| |
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit a7dc4c51d5edb098aab42d57d177f9968545926e)
|
|
|
|
|
| |
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit f548d391bb5b60cc3edf9248b9f793401d771196)
|
|
|
|
|
| |
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit 7600dc73ffc3d294af78472c9e6f01358e9aeb8e)
|
|
|
|
|
|
|
| |
resolves issue #455.
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit 7e7c3b4d5f4d2793eff2edb278da4bee29097e04)
|
|
|
|
|
| |
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit c70d6de201709b880e658f414712e42efd4967ec)
|
|
|
|
|
| |
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit 4808f8e67b4c7cd7b1bb2f03467b2f220aab814f)
|
|
|
|
|
| |
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 0e615e5c9090c5a0477865db0e687849a04aa5a2)
|
|
|
|
|
| |
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 3a4538b4c3da7432407ccab20a9336663f3a1ed8)
|
|
|
|
|
|
|
|
| |
The libssh defines those flags as unsigned. Technically ssh_auth_list()
still returns int, but its guranteed to be bitset of those flags.
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 5b9585e42977f46639dc3784352e9c4be4cd9cac)
|
|
|
|
|
|
|
|
|
|
|
| |
Also:
- do not translate auth methods names as the names appear in config
files verbatim
- libssh actually doesn't supports hostbased auth, so exclude it from
bitset of supported
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 1597d5f3848cdb39b7d458f0c6c33ecdfc3125d5)
|
|
|
|
|
|
|
|
| |
Consider publickey auth canceled only if user canceled it for each of
the prompted keys.
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 4b4b72db8f880027a85cb95a1510cefd5522d245)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
In case the server is set up for multi-factor authentication we could
be have to query several things from the user like password, a key
passphrase, their mother's maiden name etc. It doesn't make a big
difference during an initial connection, but it butchers the
reconnection process: it can retrieve the answer of the user to the
first question (e.g. their password), but it fails to retrieve the
second one (e.g. the key passphrase). So the user would be forced to
reenter the answer for the second question upon each reconnection.
The reason for this is the passwdserver's desig (see DESIGN [1]):
Each query for AuthInfo with the openPassDlg() has an secNr number
associated with it. If it's smaller than the one of the one stored for
the privious request, than the one from the cache will be returned
automagically, if it's bigger the dialog will be prompted to the user.
Each call to openPassDlg() advances s_seqNr to the last value reported
by the passwdserver. So the first call will return the cached value and
subsequent calls will actually display the dialog to the user (assuming
authentication with the cached data failed).
But in case of multi-factor auth we have to query user for several
independent values. And we want to try to retrieve each one of those
from the cache. So we have to get a bit hacky and manually manipulate
the SlaveBase::s_seqNr value.
[1]: https://mirror.git.trinitydesktop.org/gitea/TDE/tdelibs/src/branch/master/tdeio/kpasswdserver/DESIGN
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 95b18e63382c4f0013c4eb2473d04f6020a84b7a)
|
|
|
|
|
| |
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 4d88b3edddc46ab56e773c4c73cd29b3292b3181)
|
|
|
|
|
| |
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit ee73349644fdf2a3a2ac122d7f930f84b00bcdba)
|
|
|
|
|
| |
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit f8f0b8815ca821ad6764149a915122f8b2f0bf8b)
|
|
|
|
|
|
|
|
| |
This could be useful in case the destructor will be called before
openConnection()
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 21ce69f338efb0636e9eef0e7405825b5dd7c0b0)
|
|
|
|
|
| |
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 009382772da4cb5a56749ea67ed29c09658a4f69)
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We should always pass to the openPassDlg() exactly the same username
otherwise it may result in incorrect caching of passwords especially in
case if the username is changed by the user.
Also don't allow username change in case it was passed to setHost()
(i.e. it was specified in the URL like e.g. sftp://username@host/).
In such a case after changing it'd be impossible to properly cache it.
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 581d266ae6f085317b4247b2d1ddbc12c8fa09fb)
|
|
|
|
|
|
|
|
|
|
| |
- Move authentication methods into separate functions so it would be
easier to correctly handle error after those and select which should
be called in which order.
- A lot of minor improvements along the way
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 2756ae762fefc3fe86463174866674a987856d89)
|
|
|
|
|
|
|
|
|
|
|
| |
This will help kpasswdserver not to confuse different user's answers to
different questions.
Also avoid passing/returning TDE::AuthInfo for kb-interactive auth as it
isn't really necessary when we don't manually caching passwords anymore.
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit d316ff14bdcc6c7e402276cba2a15c1ac8bb5278)
|
|
|
|
|
|
|
|
| |
All password caching we need actually already autmagically
done by openPassDlg().
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit a19610bb735faf89fcd27c6885bf81e53c9b2d7a)
|
|
|
|
|
|
|
|
|
| |
There were a couple of missing closeConnection() calls after connection
errors. The probably haven't caused any major bugs, but use scope guards
to be on the safe side.
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 9c0a0ce976549c1849eecb497be2d8bdf49d7aa5)
|
|
|
|
|
| |
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 75349be43e1b4ced52502f98316148a7b55c1352)
|
|
|
|
|
|
|
| |
As it allocated via malloc() rather than new.
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 688544193fb40241435b07f83135d91ad708c6df)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Several enhancements to public key authentication and some other stuff:
- Fix passphrase entry for encrypted keys (was either hanging up or
segfaulting)
- Use scope guard idiom for cleanup calls for more reliable cleanup in
case of errors
- Add normal prompt for public key's passphrase entry dialog
- Correctly differentiate passphrase to password when cached (yes they
are getting cached regardless of keepPassword, at least for some
duration of time)
- Centrilize AuthInfo initialization and some rejig of it
kbd-interactive authentification
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit b91e2203891ce7ef627a241ea05c3f11180fcfc1)
|
|
|
|
|
|
|
|
|
| |
This is a partial fix to the sftp ioslave. Subsequent commits will fix
other issues.
Closes: https://mirror.git.trinitydesktop.org/gitea/TDE/tdebase/issues/443
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit a1fa8a79bbd7f6385d312cce709768944506d960)
|
|
|
|
|
| |
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit a646f58853c9bc888488ed5508012e468148e983)
|
|
|
|
|
|
|
|
|
|
| |
xkeyboard-config package comes with a message catalogue of its own to
translate locale, keyboard model and xkb option names. It would be
easier and more robust to utilize it instead of redoing all
translation in-house.
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 18a8b8d43577941388fa40666641f628860d6f7a)
|
|
|
|
|
|
|
|
| |
Overvise apply button on the dialog won't be enablen when the option is
changed
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 1fea8982fd2f256273989956d962a3daa848041f)
|
|
|
|
|
| |
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit 0713c2b1c84765d9d754ae8804968af43fd72be5)
|
|
|
|
|
| |
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit bf3ffaced316838216ed076b01730299755cda2b)
|
| |
|
| |
|
|
|
|
|
| |
Signed-off-by: Denis Kozadaev <[email protected]>
(cherry picked from commit 220dec20f9df8117a09b29571d3dab0d02997790)
|
|
|
|
|
| |
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit dc9ec2711be0fae16d667a8e9cb38d04ebd5ae41)
|
|
|
|
|
| |
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit 2d7d2122cf33aa713cebef95981305039c798003)
|
| |
|
|
|
|
|
|
|
| |
Closes: https://mirror.git.trinitydesktop.org/gitea/TDE/tdebase/issues/391
Signed-off-by: Alexander Golubev <[email protected]>
(cherry picked from commit d0c145d5a3bc3dfa286bc25912b34b902660cc1f)
|
|
|
|
|
| |
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit 0d9263f836b892b03742c494bd236d57b63ebb19)
|
|
|
|
|
| |
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit 4484e51ca69d3080fac8692a7a203c49dc47ab1e)
|
|
|
|
|
| |
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit a4241b7911d2e0b36edfb02f616b8b282050c0ec)
|
| |
|
| |
|
| |
|
|
|
|
|
| |
Signed-off-by: Michele Calgaro <[email protected]>
(cherry picked from commit c4a6487c827add9382001ff1892b8fb3bfa94682)
|
|
|
|
|
| |
Signed-off-by: Mavridis Philippe <[email protected]>
(cherry picked from commit 7c724a49212a9ffdf42381d99648f15457867787)
|
|
|
|
|
| |
Signed-off-by: Mavridis Philippe <[email protected]>
(cherry picked from commit 9647d4c7ff182c1fadffb9c6218bc00132fe682e)
|