2
2
# -*- mode: python; coding: utf-8 -*-
4
# Mandos Monitor - Control and monitor the Mandos server
6
# Copyright © 2009-2012 Teddy Hogeborn
7
# Copyright © 2009-2012 Björn Påhlsson
9
# This program is free software: you can redistribute it and/or modify
10
# it under the terms of the GNU General Public License as published by
11
# the Free Software Foundation, either version 3 of the License, or
12
# (at your option) any later version.
14
# This program is distributed in the hope that it will be useful,
15
# but WITHOUT ANY WARRANTY; without even the implied warranty of
16
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17
# GNU General Public License for more details.
19
# You should have received a copy of the GNU General Public License
20
# along with this program. If not, see <http://www.gnu.org/licenses/>.
22
# Contact the authors at <mandos@recompile.se>.
25
from __future__ import (division, absolute_import, print_function,
4
from __future__ import division, absolute_import, with_statement
130
102
self.logger = logger
132
104
self._update_timer_callback_tag = None
133
self._update_timer_callback_lock = 0
134
105
self.last_checker_failed = False
136
107
# The widget shown normally
137
self._text_widget = urwid.Text("")
108
self._text_widget = urwid.Text(u"")
138
109
# The widget shown when we have focus
139
self._focus_text_widget = urwid.Text("")
110
self._focus_text_widget = urwid.Text(u"")
140
111
super(MandosClientWidget, self).__init__(
141
112
update_hook=update_hook, delete_hook=delete_hook,
144
115
self.opened = False
116
self.proxy.connect_to_signal(u"CheckerCompleted",
117
self.checker_completed,
120
self.proxy.connect_to_signal(u"CheckerStarted",
121
self.checker_started,
124
self.proxy.connect_to_signal(u"GotSecret",
128
self.proxy.connect_to_signal(u"NeedApproval",
132
self.proxy.connect_to_signal(u"Rejected",
146
136
last_checked_ok = isoformat_to_datetime(self.properties
148
138
if last_checked_ok is None:
149
139
self.last_checker_failed = True
152
142
- last_checked_ok)
153
143
> datetime.timedelta
145
self.properties["interval"]))
158
146
if self.last_checker_failed:
159
self.using_timer(True)
161
if self.need_approval:
162
self.using_timer(True)
164
self.match_objects = (
165
self.proxy.connect_to_signal("CheckerCompleted",
166
self.checker_completed,
169
self.proxy.connect_to_signal("CheckerStarted",
170
self.checker_started,
173
self.proxy.connect_to_signal("GotSecret",
177
self.proxy.connect_to_signal("NeedApproval",
181
self.proxy.connect_to_signal("Rejected",
185
#self.logger('Created client %s' % (self.properties["Name"]))
187
def property_changed(self, property=None, value=None):
188
super(self, MandosClientWidget).property_changed(property,
190
if property == "ApprovalPending":
191
using_timer(bool(value))
193
def using_timer(self, flag):
194
"""Call this method with True or False when timer should be
195
activated or deactivated.
197
old = self._update_timer_callback_lock
199
self._update_timer_callback_lock += 1
201
self._update_timer_callback_lock -= 1
202
if old == 0 and self._update_timer_callback_lock:
203
# Will update the shown timer value every second
204
147
self._update_timer_callback_tag = (gobject.timeout_add
206
149
self.update_timer))
207
elif old and self._update_timer_callback_lock == 0:
208
gobject.source_remove(self._update_timer_callback_tag)
209
self._update_timer_callback_tag = None
211
151
def checker_completed(self, exitstatus, condition, command):
212
152
if exitstatus == 0:
213
153
if self.last_checker_failed:
214
154
self.last_checker_failed = False
215
self.using_timer(False)
216
#self.logger('Checker for client %s (command "%s")'
218
# % (self.properties["Name"], command))
155
gobject.source_remove(self._update_timer_callback_tag)
156
self._update_timer_callback_tag = None
157
self.logger(u'Checker for client %s (command "%s")'
159
% (self.properties[u"name"], command))
222
163
if not self.last_checker_failed:
223
164
self.last_checker_failed = True
224
self.using_timer(True)
165
self._update_timer_callback_tag = (gobject.timeout_add
225
168
if os.WIFEXITED(condition):
226
self.logger('Checker for client %s (command "%s")'
227
' failed with exit code %s'
228
% (self.properties["Name"], command,
169
self.logger(u'Checker for client %s (command "%s")'
170
u' failed with exit code %s'
171
% (self.properties[u"name"], command,
229
172
os.WEXITSTATUS(condition)))
230
173
elif os.WIFSIGNALED(condition):
231
self.logger('Checker for client %s (command "%s")'
232
' was killed by signal %s'
233
% (self.properties["Name"], command,
174
self.logger(u'Checker for client %s (command "%s")'
175
u' was killed by signal %s'
176
% (self.properties[u"name"], command,
234
177
os.WTERMSIG(condition)))
235
178
elif os.WCOREDUMP(condition):
236
self.logger('Checker for client %s (command "%s")'
238
% (self.properties["Name"], command))
179
self.logger(u'Checker for client %s (command "%s")'
181
% (self.properties[u"name"], command))
240
self.logger('Checker for client %s completed'
183
self.logger(u'Checker for client %s completed mysteriously')
244
186
def checker_started(self, command):
245
"""Server signals that a checker started. This could be useful
246
to log in the future. """
247
#self.logger('Client %s started checker "%s"'
248
# % (self.properties["Name"], unicode(command)))
187
#self.logger(u'Client %s started checker "%s"'
188
# % (self.properties[u"name"], unicode(command)))
251
191
def got_secret(self):
252
192
self.last_checker_failed = False
253
self.logger('Client %s received its secret'
254
% self.properties["Name"])
193
self.logger(u'Client %s received its secret'
194
% self.properties[u"name"])
256
196
def need_approval(self, timeout, default):
258
message = 'Client %s needs approval within %s seconds'
198
message = u'Client %s needs approval within %s seconds'
260
message = 'Client %s will get its secret in %s seconds'
200
message = u'Client %s will get its secret in %s seconds'
261
201
self.logger(message
262
% (self.properties["Name"], timeout/1000))
263
self.using_timer(True)
202
% (self.properties[u"name"], timeout/1000))
265
204
def rejected(self, reason):
266
self.logger('Client %s was rejected; reason: %s'
267
% (self.properties["Name"], reason))
205
self.logger(u'Client %s was rejected; reason: %s'
206
% (self.properties[u"name"], reason))
269
208
def selectable(self):
270
209
"""Make this a "selectable" widget.
271
210
This overrides the method from urwid.FlowWidget."""
274
def rows(self, maxcolrow, focus=False):
213
def rows(self, (maxcol,), focus=False):
275
214
"""How many rows this widget will occupy might depend on
276
215
whether we have focus or not.
277
216
This overrides the method from urwid.FlowWidget"""
278
return self.current_widget(focus).rows(maxcolrow, focus=focus)
217
return self.current_widget(focus).rows((maxcol,), focus=focus)
280
219
def current_widget(self, focus=False):
281
220
if focus or self.opened:
285
224
def update(self):
286
225
"Called when what is visible on the screen should be updated."
287
226
# How to add standout mode to a style
288
with_standout = { "normal": "standout",
289
"bold": "bold-standout",
291
"underline-blink-standout",
292
"bold-underline-blink":
293
"bold-underline-blink-standout",
227
with_standout = { u"normal": u"standout",
228
u"bold": u"bold-standout",
230
u"underline-blink-standout",
231
u"bold-underline-blink":
232
u"bold-underline-blink-standout",
296
235
# Rebuild focus and non-focus widgets using current properties
298
237
# Base part of a client. Name!
300
% {"name": self.properties["Name"]})
301
if not self.properties["Enabled"]:
303
elif self.properties["ApprovalPending"]:
238
base = (u'%(name)s: '
239
% {u"name": self.properties[u"name"]})
240
if not self.properties[u"enabled"]:
241
message = u"DISABLED"
242
elif self.properties[u"approved_pending"]:
243
if self.properties[u"approved_by_default"]:
244
message = u"Connection established to client. (d)eny?"
246
message = u"Seeks approval to send secret. (a)pprove?"
247
elif self.last_checker_failed:
304
248
timeout = datetime.timedelta(milliseconds
307
last_approval_request = isoformat_to_datetime(
308
self.properties["LastApprovalRequest"])
309
if last_approval_request is not None:
310
timer = timeout - (datetime.datetime.utcnow()
311
- last_approval_request)
313
timer = datetime.timedelta()
314
if self.properties["ApprovedByDefault"]:
315
message = "Approval in %s. (d)eny?"
317
message = "Denial in %s. (a)pprove?"
318
message = message % unicode(timer).rsplit(".", 1)[0]
319
elif self.last_checker_failed:
320
# When checker has failed, print a timer until client expires
321
expires = self.properties["Expires"]
323
timer = datetime.timedelta(0)
325
expires = datetime.datetime.strptime(expires,
326
'%Y-%m-%dT%H:%M:%S.%f')
327
timer = expires - datetime.datetime.utcnow()
328
message = ('A checker has failed! Time until client'
249
= self.properties[u"timeout"])
250
last_ok = isoformat_to_datetime(
251
max((self.properties["last_checked_ok"]
252
or self.properties["created"]),
253
self.properties[u"last_enabled"]))
254
timer = timeout - (datetime.datetime.utcnow() - last_ok)
255
message = (u'A checker has failed! Time until client gets diabled: %s'
330
256
% unicode(timer).rsplit(".", 1)[0])
333
259
self._text = "%s%s" % (base, message)
335
261
if not urwid.supports_unicode():
336
262
self._text = self._text.encode("ascii", "replace")
337
textlist = [("normal", self._text)]
263
textlist = [(u"normal", self._text)]
338
264
self._text_widget.set_text(textlist)
339
265
self._focus_text_widget.set_text([(with_standout[text[0]],
349
275
self.update_hook()
351
277
def update_timer(self):
352
"""called by gobject. Will indefinitely loop until
353
gobject.source_remove() on tag is called"""
355
280
return True # Keep calling this
357
def delete(self, *args, **kwargs):
358
283
if self._update_timer_callback_tag is not None:
359
284
gobject.source_remove(self._update_timer_callback_tag)
360
285
self._update_timer_callback_tag = None
361
for match in self.match_objects:
363
self.match_objects = ()
364
286
if self.delete_hook is not None:
365
287
self.delete_hook(self)
366
return super(MandosClientWidget, self).delete(*args, **kwargs)
368
def render(self, maxcolrow, focus=False):
289
def render(self, (maxcol,), focus=False):
369
290
"""Render differently if we have focus.
370
291
This overrides the method from urwid.FlowWidget"""
371
return self.current_widget(focus).render(maxcolrow,
292
return self.current_widget(focus).render((maxcol,),
374
def keypress(self, maxcolrow, key):
295
def keypress(self, (maxcol,), key):
376
297
This overrides the method from urwid.FlowWidget"""
378
self.proxy.Enable(dbus_interface = client_interface,
381
self.proxy.Disable(dbus_interface = client_interface,
299
self.proxy.Enable(dbus_interface = client_interface)
301
self.proxy.Disable(dbus_interface = client_interface)
384
303
self.proxy.Approve(dbus.Boolean(True, variant_level=1),
385
dbus_interface = client_interface,
304
dbus_interface = client_interface)
388
306
self.proxy.Approve(dbus.Boolean(False, variant_level=1),
389
dbus_interface = client_interface,
391
elif key == "R" or key == "_" or key == "ctrl k":
307
dbus_interface = client_interface)
308
elif key == u"r" or key == u"_" or key == u"ctrl k":
392
309
self.server_proxy_object.RemoveClient(self.proxy
396
self.proxy.StartChecker(dbus_interface = client_interface,
399
self.proxy.StopChecker(dbus_interface = client_interface,
402
self.proxy.CheckedOK(dbus_interface = client_interface,
312
self.proxy.StartChecker(dbus_interface = client_interface)
314
self.proxy.StopChecker(dbus_interface = client_interface)
316
self.proxy.CheckedOK(dbus_interface = client_interface)
405
# elif key == "p" or key == "=":
318
# elif key == u"p" or key == "=":
406
319
# self.proxy.pause()
407
# elif key == "u" or key == ":":
320
# elif key == u"u" or key == ":":
408
321
# self.proxy.unpause()
322
# elif key == u"RET":
325
# self.proxy.Approve(True)
327
# self.proxy.Approve(False)
445
362
self.screen = urwid.curses_display.Screen()
447
364
self.screen.register_palette((
449
"default", "default", None),
451
"default", "default", "bold"),
453
"default", "default", "underline"),
455
"default", "default", "standout"),
456
("bold-underline-blink",
457
"default", "default", ("bold", "underline")),
459
"default", "default", ("bold", "standout")),
460
("underline-blink-standout",
461
"default", "default", ("underline", "standout")),
462
("bold-underline-blink-standout",
463
"default", "default", ("bold", "underline",
366
u"default", u"default", None),
368
u"default", u"default", u"bold"),
370
u"default", u"default", u"underline"),
372
u"default", u"default", u"standout"),
373
(u"bold-underline-blink",
374
u"default", u"default", (u"bold", u"underline")),
376
u"default", u"default", (u"bold", u"standout")),
377
(u"underline-blink-standout",
378
u"default", u"default", (u"underline", u"standout")),
379
(u"bold-underline-blink-standout",
380
u"default", u"default", (u"bold", u"underline",
467
384
if urwid.supports_unicode():
468
self.divider = "─" # \u2500
469
#self.divider = "━" # \u2501
385
self.divider = u"─" # \u2500
386
#self.divider = u"━" # \u2501
471
#self.divider = "-" # \u002d
472
self.divider = "_" # \u005f
388
#self.divider = u"-" # \u002d
389
self.divider = u"_" # \u005f
474
391
self.screen.start()
489
406
# This keeps track of whether self.uilist currently has
490
407
# self.logbox in it or not
491
408
self.log_visible = True
492
self.log_wrap = "any"
409
self.log_wrap = u"any"
495
self.log_message_raw(("bold",
496
"Mandos Monitor version " + version))
497
self.log_message_raw(("bold",
412
self.log_message_raw((u"bold",
413
u"Mandos Monitor version " + version))
414
self.log_message_raw((u"bold",
500
417
self.busname = domain + '.Mandos'
501
418
self.main_loop = gobject.MainLoop()
419
self.bus = dbus.SystemBus()
420
mandos_dbus_objc = self.bus.get_object(
421
self.busname, u"/", follow_name_owner_changes=True)
422
self.mandos_serv = dbus.Interface(mandos_dbus_objc,
426
mandos_clients = (self.mandos_serv
427
.GetAllClientsWithProperties())
428
except dbus.exceptions.DBusException:
429
mandos_clients = dbus.Dictionary()
432
.connect_to_signal(u"ClientRemoved",
433
self.find_and_remove_client,
434
dbus_interface=server_interface,
437
.connect_to_signal(u"ClientAdded",
439
dbus_interface=server_interface,
442
.connect_to_signal(u"ClientNotFound",
443
self.client_not_found,
444
dbus_interface=server_interface,
446
for path, client in mandos_clients.iteritems():
447
client_proxy_object = self.bus.get_object(self.busname,
449
self.add_client(MandosClientWidget(server_proxy_object
452
=client_proxy_object,
503
462
def client_not_found(self, fingerprint, address):
504
self.log_message(("Client with address %s and fingerprint %s"
505
" could not be found" % (address,
463
self.log_message((u"Client with address %s and fingerprint %s"
464
u" could not be found" % (address,
508
467
def rebuild(self):
532
489
and len(self.log) > self.max_log_length):
533
490
del self.log[0:len(self.log)-self.max_log_length-1]
534
491
self.logbox.set_focus(len(self.logbox.body.contents),
492
coming_from=u"above")
538
495
def toggle_log_display(self):
539
496
"""Toggle visibility of the log buffer."""
540
497
self.log_visible = not self.log_visible
542
#self.log_message("Log visibility changed to: "
543
# + unicode(self.log_visible))
499
self.log_message(u"Log visibility changed to: "
500
+ unicode(self.log_visible))
545
502
def change_log_display(self):
546
503
"""Change type of log display.
547
504
Currently, this toggles wrapping of text lines."""
548
if self.log_wrap == "clip":
549
self.log_wrap = "any"
505
if self.log_wrap == u"clip":
506
self.log_wrap = u"any"
551
self.log_wrap = "clip"
508
self.log_wrap = u"clip"
552
509
for textwidget in self.log:
553
510
textwidget.set_wrap_mode(self.log_wrap)
554
#self.log_message("Wrap mode: " + self.log_wrap)
511
self.log_message(u"Wrap mode: " + self.log_wrap)
556
513
def find_and_remove_client(self, path, name):
557
"""Find a client by its object path and remove it.
514
"""Find an client from its object path and remove it.
559
516
This is connected to the ClientRemoved signal from the
560
517
Mandos server object."""
610
565
"""Start the main loop and exit when it's done."""
611
self.bus = dbus.SystemBus()
612
mandos_dbus_objc = self.bus.get_object(
613
self.busname, "/", follow_name_owner_changes=True)
614
self.mandos_serv = dbus.Interface(mandos_dbus_objc,
618
mandos_clients = (self.mandos_serv
619
.GetAllClientsWithProperties())
620
except dbus.exceptions.DBusException:
621
mandos_clients = dbus.Dictionary()
624
.connect_to_signal("ClientRemoved",
625
self.find_and_remove_client,
626
dbus_interface=server_interface,
629
.connect_to_signal("ClientAdded",
631
dbus_interface=server_interface,
634
.connect_to_signal("ClientNotFound",
635
self.client_not_found,
636
dbus_interface=server_interface,
638
for path, client in mandos_clients.iteritems():
639
client_proxy_object = self.bus.get_object(self.busname,
641
self.add_client(MandosClientWidget(server_proxy_object
644
=client_proxy_object,
655
567
self._input_callback_tag = (gobject.io_add_watch
656
568
(sys.stdin.fileno(),
682
594
except KeyError: # :-)
685
if key == "q" or key == "Q":
597
if key == u"q" or key == u"Q":
688
elif key == "window resize":
600
elif key == u"window resize":
689
601
self.size = self.screen.get_cols_rows()
691
elif key == "\f": # Ctrl-L
603
elif key == u"\f": # Ctrl-L
693
elif key == "l" or key == "D":
605
elif key == u"l" or key == u"D":
694
606
self.toggle_log_display()
696
elif key == "w" or key == "i":
608
elif key == u"w" or key == u"i":
697
609
self.change_log_display()
699
elif key == "?" or key == "f1" or key == "esc":
611
elif key == u"?" or key == u"f1" or key == u"esc":
700
612
if not self.log_visible:
701
613
self.log_visible = True
703
self.log_message_raw(("bold",
707
"l: Log window toggle",
708
"TAB: Switch window",
710
self.log_message_raw(("bold",
716
"s: Start new checker",
615
self.log_message_raw((u"bold",
619
u"l: Log window toggle",
620
u"TAB: Switch window",
622
self.log_message_raw((u"bold",
628
u"s: Start new checker",
723
635
if self.topwidget.get_focus() is self.logbox:
724
636
self.topwidget.set_focus(0)
726
638
self.topwidget.set_focus(self.logbox)
728
#elif (key == "end" or key == "meta >" or key == "G"
640
#elif (key == u"end" or key == u"meta >" or key == u"G"
730
642
# pass # xxx end-of-buffer
731
#elif (key == "home" or key == "meta <" or key == "g"
643
#elif (key == u"home" or key == u"meta <" or key == u"g"
733
645
# pass # xxx beginning-of-buffer
734
#elif key == "ctrl e" or key == "$":
646
#elif key == u"ctrl e" or key == u"$":
735
647
# pass # xxx move-end-of-line
736
#elif key == "ctrl a" or key == "^":
648
#elif key == u"ctrl a" or key == u"^":
737
649
# pass # xxx move-beginning-of-line
738
#elif key == "ctrl b" or key == "meta (" or key == "h":
650
#elif key == u"ctrl b" or key == u"meta (" or key == u"h":
739
651
# pass # xxx left
740
#elif key == "ctrl f" or key == "meta )" or key == "l":
652
#elif key == u"ctrl f" or key == u"meta )" or key == u"l":
741
653
# pass # xxx right
743
655
# pass # scroll up log
745
657
# pass # scroll down log
746
658
elif self.topwidget.selectable():
747
659
self.topwidget.keypress(self.size, key)