[thirdparty/systemd.git] / src / ask-password / ask-password.c

/* SPDX-License-Identifier: LGPL-2.1+ */
/***
  Copyright 2010 Lennart Poettering
***/

#include <errno.h>
#include <getopt.h>
#include <stddef.h>
#include <unistd.h>

#include "ask-password-api.h"
#include "def.h"
#include "log.h"
#include "macro.h"
#include "strv.h"

static const char *arg_icon = NULL;
static const char *arg_id = NULL;
static const char *arg_keyname = NULL;
static char *arg_message = NULL;
static usec_t arg_timeout = DEFAULT_TIMEOUT_USEC;
static bool arg_multiple = false;
static bool arg_no_output = false;
static AskPasswordFlags arg_flags = ASK_PASSWORD_PUSH_CACHE;

static void help(void) {
        printf("%s [OPTIONS...] MESSAGE\n\n"
               "Query the user for a system passphrase, via the TTY or an UI agent.\n\n"
               "  -h --help           Show this help\n"
               "     --icon=NAME      Icon name\n"
               "     --id=ID          Query identifier (e.g. \"cryptsetup:/dev/sda5\")\n"
               "     --keyname=NAME   Kernel key name for caching passwords (e.g. \"cryptsetup\")\n"
               "     --timeout=SEC    Timeout in seconds\n"
               "     --echo           Do not mask input (useful for usernames)\n"
               "     --no-tty         Ask question via agent even on TTY\n"
               "     --accept-cached  Accept cached passwords\n"
               "     --multiple       List multiple passwords if available\n"
               "     --no-output      Do not print password to standard output\n"
               , program_invocation_short_name);
}

static int parse_argv(int argc, char *argv[]) {

        enum {
                ARG_ICON = 0x100,
                ARG_TIMEOUT,
                ARG_ECHO,
                ARG_NO_TTY,
                ARG_ACCEPT_CACHED,
                ARG_MULTIPLE,
                ARG_ID,
                ARG_KEYNAME,
                ARG_NO_OUTPUT,
        };

        static const struct option options[] = {
                { "help",          no_argument,       NULL, 'h'               },
                { "icon",          required_argument, NULL, ARG_ICON          },
                { "timeout",       required_argument, NULL, ARG_TIMEOUT       },
                { "echo",          no_argument,       NULL, ARG_ECHO          },
                { "no-tty",        no_argument,       NULL, ARG_NO_TTY        },
                { "accept-cached", no_argument,       NULL, ARG_ACCEPT_CACHED },
                { "multiple",      no_argument,       NULL, ARG_MULTIPLE      },
                { "id",            required_argument, NULL, ARG_ID            },
                { "keyname",       required_argument, NULL, ARG_KEYNAME       },
                { "no-output",     no_argument,       NULL, ARG_NO_OUTPUT     },
                {}
        };

        int c;

        assert(argc >= 0);
        assert(argv);

        while ((c = getopt_long(argc, argv, "h", options, NULL)) >= 0)

                switch (c) {

                case 'h':
                        help();
                        return 0;

                case ARG_ICON:
                        arg_icon = optarg;
                        break;

                case ARG_TIMEOUT:
                        if (parse_sec(optarg, &arg_timeout) < 0) {
                                log_error("Failed to parse --timeout parameter %s", optarg);
                                return -EINVAL;
                        }
                        break;

                case ARG_ECHO:
                        arg_flags |= ASK_PASSWORD_ECHO;
                        break;

                case ARG_NO_TTY:
                        arg_flags |= ASK_PASSWORD_NO_TTY;
                        break;

                case ARG_ACCEPT_CACHED:
                        arg_flags |= ASK_PASSWORD_ACCEPT_CACHED;
                        break;

                case ARG_MULTIPLE:
                        arg_multiple = true;
                        break;

                case ARG_ID:
                        arg_id = optarg;
                        break;

                case ARG_KEYNAME:
                        arg_keyname = optarg;
                        break;

                case ARG_NO_OUTPUT:
                        arg_no_output = true;
                        break;

                case '?':
                        return -EINVAL;

                default:
                        assert_not_reached("Unhandled option");
                }

        if (argc > optind) {
                arg_message = strv_join(argv + optind, " ");
                if (!arg_message)
                        return log_oom();
        }

        return 1;
}

int main(int argc, char *argv[]) {
        _cleanup_strv_free_erase_ char **l = NULL;
        usec_t timeout;
        char **p;
        int r;

        log_parse_environment();
        log_open();

        r = parse_argv(argc, argv);
        if (r <= 0)
                goto finish;

        if (arg_timeout > 0)
                timeout = now(CLOCK_MONOTONIC) + arg_timeout;
        else
                timeout = 0;

        r = ask_password_auto(arg_message, arg_icon, arg_id, arg_keyname, timeout, arg_flags, &l);
        if (r < 0) {
                log_error_errno(r, "Failed to query password: %m");
                goto finish;
        }

        STRV_FOREACH(p, l) {
                if (!arg_no_output)
                        puts(*p);

                if (!arg_multiple)
                        break;
        }

finish:
        free(arg_message);

        return r < 0 ? EXIT_FAILURE : EXIT_SUCCESS;
}
Commit	Line	Data
53e1b683	1	/* SPDX-License-Identifier: LGPL-2.1+ */
490aed58	2	/***
490aed58	3	Copyright 2010 Lennart Poettering
490aed58 LP	4	***/
490aed58 LP	5
490aed58	6	#include <errno.h>
490aed58	7	#include <getopt.h>
0e098b15	8	#include <stddef.h>
00843602	9	#include <unistd.h>
490aed58	10
00843602 LP	11	#include "ask-password-api.h"
00843602 LP	12	#include "def.h"
490aed58 LP	13	#include "log.h"
490aed58 LP	14	#include "macro.h"
21bc923a	15	#include "strv.h"
490aed58 LP	16
490aed58 LP	17	static const char *arg_icon = NULL;
9fa1de96	18	static const char *arg_id = NULL;
e287086b LP	19	static const char *arg_keyname = NULL;
e287086b LP	20	static char *arg_message = NULL;
7f434cf4	21	static usec_t arg_timeout = DEFAULT_TIMEOUT_USEC;
21bc923a	22	static bool arg_multiple = false;
a5a4e365	23	static bool arg_no_output = false;
e287086b	24	static AskPasswordFlags arg_flags = ASK_PASSWORD_PUSH_CACHE;
490aed58	25
601185b4	26	static void help(void) {
490aed58	27	printf("%s [OPTIONS...] MESSAGE\n\n"
ad6ab0af	28	"Query the user for a system passphrase, via the TTY or an UI agent.\n\n"
e287086b LP	29	" -h --help Show this help\n"
	30	" --icon=NAME Icon name\n"
	31	" --id=ID Query identifier (e.g. \"cryptsetup:/dev/sda5\")\n"
	32	" --keyname=NAME Kernel key name for caching passwords (e.g. \"cryptsetup\")\n"
	33	" --timeout=SEC Timeout in seconds\n"
	34	" --echo Do not mask input (useful for usernames)\n"
	35	" --no-tty Ask question via agent even on TTY\n"
	36	" --accept-cached Accept cached passwords\n"
	37	" --multiple List multiple passwords if available\n"
a5a4e365	38	" --no-output Do not print password to standard output\n"
601185b4	39	, program_invocation_short_name);
490aed58 LP	40	}
	41
	42	static int parse_argv(int argc, char *argv[]) {
	43
	44	enum {
	45	ARG_ICON = 0x100,
1b39d4b9	46	ARG_TIMEOUT,
64845bdc	47	ARG_ECHO,
21bc923a LP	48	ARG_NO_TTY,
21bc923a LP	49	ARG_ACCEPT_CACHED,
9fa1de96	50	ARG_MULTIPLE,
e287086b LP	51	ARG_ID,
e287086b LP	52	ARG_KEYNAME,
a5a4e365	53	ARG_NO_OUTPUT,
490aed58 LP	54	};
	55
	56	static const struct option options[] = {
21bc923a LP	57	{ "help", no_argument, NULL, 'h' },
	58	{ "icon", required_argument, NULL, ARG_ICON },
	59	{ "timeout", required_argument, NULL, ARG_TIMEOUT },
64845bdc	60	{ "echo", no_argument, NULL, ARG_ECHO },
21bc923a LP	61	{ "no-tty", no_argument, NULL, ARG_NO_TTY },
	62	{ "accept-cached", no_argument, NULL, ARG_ACCEPT_CACHED },
	63	{ "multiple", no_argument, NULL, ARG_MULTIPLE },
9fa1de96	64	{ "id", required_argument, NULL, ARG_ID },
e287086b	65	{ "keyname", required_argument, NULL, ARG_KEYNAME },
a5a4e365	66	{ "no-output", no_argument, NULL, ARG_NO_OUTPUT },
eb9da376	67	{}
490aed58 LP	68	};
	69
	70	int c;
	71
	72	assert(argc >= 0);
	73	assert(argv);
	74
601185b4	75	while ((c = getopt_long(argc, argv, "h", options, NULL)) >= 0)
490aed58 LP	76
	77	switch (c) {
	78
	79	case 'h':
601185b4 ZJS	80	help();
601185b4 ZJS	81	return 0;
490aed58 LP	82
	83	case ARG_ICON:
	84	arg_icon = optarg;
	85	break;
	86
	87	case ARG_TIMEOUT:
7f602784	88	if (parse_sec(optarg, &arg_timeout) < 0) {
490aed58 LP	89	log_error("Failed to parse --timeout parameter %s", optarg);
	90	return -EINVAL;
	91	}
	92	break;
	93
64845bdc	94	case ARG_ECHO:
e287086b	95	arg_flags \|= ASK_PASSWORD_ECHO;
64845bdc DS	96	break;
64845bdc DS	97
1b39d4b9	98	case ARG_NO_TTY:
e287086b	99	arg_flags \|= ASK_PASSWORD_NO_TTY;
1b39d4b9 LP	100	break;
1b39d4b9 LP	101
21bc923a	102	case ARG_ACCEPT_CACHED:
e287086b	103	arg_flags \|= ASK_PASSWORD_ACCEPT_CACHED;
21bc923a LP	104	break;
	105
	106	case ARG_MULTIPLE:
	107	arg_multiple = true;
	108	break;
	109
9fa1de96 DH	110	case ARG_ID:
	111	arg_id = optarg;
	112	break;
	113
e287086b LP	114	case ARG_KEYNAME:
	115	arg_keyname = optarg;
	116	break;
	117
a5a4e365 CH	118	case ARG_NO_OUTPUT:
	119	arg_no_output = true;
	120	break;
	121
490aed58 LP	122	case '?':
	123	return -EINVAL;
	124
	125	default:
eb9da376	126	assert_not_reached("Unhandled option");
490aed58	127	}
490aed58	128
e287086b LP	129	if (argc > optind) {
	130	arg_message = strv_join(argv + optind, " ");
	131	if (!arg_message)
	132	return log_oom();
490aed58 LP	133	}
490aed58 LP	134
1b39d4b9	135	return 1;
490aed58 LP	136	}
490aed58 LP	137
1b39d4b9	138	int main(int argc, char *argv[]) {
ab84f5b9	139	_cleanup_strv_free_erase_ char **l = NULL;
7dcda352	140	usec_t timeout;
e287086b LP	141	char **p;
e287086b LP	142	int r;
1b39d4b9 LP	143
	144	log_parse_environment();
	145	log_open();
	146
601185b4 ZJS	147	r = parse_argv(argc, argv);
601185b4 ZJS	148	if (r <= 0)
1b39d4b9 LP	149	goto finish;
1b39d4b9 LP	150
7dcda352 LP	151	if (arg_timeout > 0)
	152	timeout = now(CLOCK_MONOTONIC) + arg_timeout;
	153	else
	154	timeout = 0;
	155
e287086b LP	156	r = ask_password_auto(arg_message, arg_icon, arg_id, arg_keyname, timeout, arg_flags, &l);
	157	if (r < 0) {
	158	log_error_errno(r, "Failed to query password: %m");
	159	goto finish;
	160	}
21bc923a	161
e287086b	162	STRV_FOREACH(p, l) {
a5a4e365 CH	163	if (!arg_no_output)
a5a4e365 CH	164	puts(*p);
ec863ba6	165
e287086b LP	166	if (!arg_multiple)
e287086b LP	167	break;
7f4e0805	168	}
1b39d4b9 LP	169
1b39d4b9 LP	170	finish:
e287086b LP	171	free(arg_message);
e287086b LP	172
1b39d4b9 LP	173	return r < 0 ? EXIT_FAILURE : EXIT_SUCCESS;
1b39d4b9 LP	174	}