1 /* SPDX-License-Identifier: LGPL-2.1+ */
3 This file is part of systemd.
5 Copyright 2010 Lennart Poettering
7 systemd is free software; you can redistribute it and/or modify it
8 under the terms of the GNU Lesser General Public License as published by
9 the Free Software Foundation; either version 2.1 of the License, or
10 (at your option) any later version.
12 systemd is distributed in the hope that it will be useful, but
13 WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 Lesser General Public License for more details.
17 You should have received a copy of the GNU Lesser General Public License
18 along with systemd; If not, see <http://www.gnu.org/licenses/>.
26 #include "ask-password-api.h"
32 static const char *arg_icon
= NULL
;
33 static const char *arg_id
= NULL
;
34 static const char *arg_keyname
= NULL
;
35 static char *arg_message
= NULL
;
36 static usec_t arg_timeout
= DEFAULT_TIMEOUT_USEC
;
37 static bool arg_multiple
= false;
38 static bool arg_no_output
= false;
39 static AskPasswordFlags arg_flags
= ASK_PASSWORD_PUSH_CACHE
;
41 static void help(void) {
42 printf("%s [OPTIONS...] MESSAGE\n\n"
43 "Query the user for a system passphrase, via the TTY or an UI agent.\n\n"
44 " -h --help Show this help\n"
45 " --icon=NAME Icon name\n"
46 " --id=ID Query identifier (e.g. \"cryptsetup:/dev/sda5\")\n"
47 " --keyname=NAME Kernel key name for caching passwords (e.g. \"cryptsetup\")\n"
48 " --timeout=SEC Timeout in seconds\n"
49 " --echo Do not mask input (useful for usernames)\n"
50 " --no-tty Ask question via agent even on TTY\n"
51 " --accept-cached Accept cached passwords\n"
52 " --multiple List multiple passwords if available\n"
53 " --no-output Do not print password to standard output\n"
54 , program_invocation_short_name
);
57 static int parse_argv(int argc
, char *argv
[]) {
71 static const struct option options
[] = {
72 { "help", no_argument
, NULL
, 'h' },
73 { "icon", required_argument
, NULL
, ARG_ICON
},
74 { "timeout", required_argument
, NULL
, ARG_TIMEOUT
},
75 { "echo", no_argument
, NULL
, ARG_ECHO
},
76 { "no-tty", no_argument
, NULL
, ARG_NO_TTY
},
77 { "accept-cached", no_argument
, NULL
, ARG_ACCEPT_CACHED
},
78 { "multiple", no_argument
, NULL
, ARG_MULTIPLE
},
79 { "id", required_argument
, NULL
, ARG_ID
},
80 { "keyname", required_argument
, NULL
, ARG_KEYNAME
},
81 { "no-output", no_argument
, NULL
, ARG_NO_OUTPUT
},
90 while ((c
= getopt_long(argc
, argv
, "h", options
, NULL
)) >= 0)
103 if (parse_sec(optarg
, &arg_timeout
) < 0) {
104 log_error("Failed to parse --timeout parameter %s", optarg
);
110 arg_flags
|= ASK_PASSWORD_ECHO
;
114 arg_flags
|= ASK_PASSWORD_NO_TTY
;
117 case ARG_ACCEPT_CACHED
:
118 arg_flags
|= ASK_PASSWORD_ACCEPT_CACHED
;
130 arg_keyname
= optarg
;
134 arg_no_output
= true;
141 assert_not_reached("Unhandled option");
145 arg_message
= strv_join(argv
+ optind
, " ");
153 int main(int argc
, char *argv
[]) {
154 _cleanup_strv_free_erase_
char **l
= NULL
;
159 log_parse_environment();
162 r
= parse_argv(argc
, argv
);
167 timeout
= now(CLOCK_MONOTONIC
) + arg_timeout
;
171 r
= ask_password_auto(arg_message
, arg_icon
, arg_id
, arg_keyname
, timeout
, arg_flags
, &l
);
173 log_error_errno(r
, "Failed to query password: %m");
188 return r
< 0 ? EXIT_FAILURE
: EXIT_SUCCESS
;