/mandos/trunk

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to mandos-monitor

  • Committer: Teddy Hogeborn
  • Date: 2015-03-10 18:52:09 UTC
  • Revision ID: teddy@recompile.se-20150310185209-lxuovbu09zwyk9bx
Automatically determine the number of DH bits in the TLS handshake.

Instead of using a default value of 1024, check the OpenPGP key and
determine an appropriate number of DH bits to use, (using GnuTLS
functions made for this).  Document this new default behavior.

* plugins.d/mandos-client.c (safe_string): New function.
  (init_gnutls_global): If not specified, determine the number of DH
                        bits to use, based on the OpenPGP key.
* plugins.d/mandos-client.xml (OPTIONS): Document this new default of
                                         the --dh-bits option.

Thanks to Andreas Fischer <af@bantuX.org> for reporting this issue.

Show diffs side-by-side

added added

removed removed

Lines of Context:
 
1
#!/usr/bin/python
 
2
# -*- mode: python; coding: utf-8 -*-
 
3
 
4
# Mandos Monitor - Control and monitor the Mandos server
 
5
 
6
# Copyright © 2009-2014 Teddy Hogeborn
 
7
# Copyright © 2009-2014 Björn Påhlsson
 
8
 
9
# This program is free software: you can redistribute it and/or modify
 
10
# it under the terms of the GNU General Public License as published by
 
11
# the Free Software Foundation, either version 3 of the License, or
 
12
# (at your option) any later version.
 
13
#
 
14
#     This program is distributed in the hope that it will be useful,
 
15
#     but WITHOUT ANY WARRANTY; without even the implied warranty of
 
16
#     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 
17
#     GNU General Public License for more details.
 
18
 
19
# You should have received a copy of the GNU General Public License
 
20
# along with this program.  If not, see
 
21
# <http://www.gnu.org/licenses/>.
 
22
 
23
# Contact the authors at <mandos@recompile.se>.
 
24
 
25
 
 
26
from __future__ import (division, absolute_import, print_function,
 
27
                        unicode_literals)
 
28
try:
 
29
    from future_builtins import *
 
30
except ImportError:
 
31
    pass
 
32
 
 
33
import sys
 
34
import os
 
35
 
 
36
import datetime
 
37
 
 
38
import urwid.curses_display
 
39
import urwid
 
40
 
 
41
from dbus.mainloop.glib import DBusGMainLoop
 
42
try:
 
43
    import gobject
 
44
except ImportError:
 
45
    from gi.repository import GObject as gobject
 
46
 
 
47
import dbus
 
48
 
 
49
import locale
 
50
 
 
51
if sys.version_info.major == 2:
 
52
    str = unicode
 
53
 
 
54
locale.setlocale(locale.LC_ALL, '')
 
55
 
 
56
import logging
 
57
logging.getLogger('dbus.proxies').setLevel(logging.CRITICAL)
 
58
 
 
59
# Some useful constants
 
60
domain = 'se.recompile'
 
61
server_interface = domain + '.Mandos'
 
62
client_interface = domain + '.Mandos.Client'
 
63
version = "1.6.9"
 
64
 
 
65
def isoformat_to_datetime(iso):
 
66
    "Parse an ISO 8601 date string to a datetime.datetime()"
 
67
    if not iso:
 
68
        return None
 
69
    d, t = iso.split("T", 1)
 
70
    year, month, day = d.split("-", 2)
 
71
    hour, minute, second = t.split(":", 2)
 
72
    second, fraction = divmod(float(second), 1)
 
73
    return datetime.datetime(int(year),
 
74
                             int(month),
 
75
                             int(day),
 
76
                             int(hour),
 
77
                             int(minute),
 
78
                             int(second),           # Whole seconds
 
79
                             int(fraction*1000000)) # Microseconds
 
80
 
 
81
class MandosClientPropertyCache(object):
 
82
    """This wraps a Mandos Client D-Bus proxy object, caches the
 
83
    properties and calls a hook function when any of them are
 
84
    changed.
 
85
    """
 
86
    def __init__(self, proxy_object=None, properties=None, **kwargs):
 
87
        self.proxy = proxy_object # Mandos Client proxy object
 
88
        self.properties = dict() if properties is None else properties
 
89
        self.property_changed_match = (
 
90
            self.proxy.connect_to_signal("PropertiesChanged",
 
91
                                         self.properties_changed,
 
92
                                         dbus.PROPERTIES_IFACE,
 
93
                                         byte_arrays=True))
 
94
        
 
95
        if properties is None:
 
96
            self.properties.update(
 
97
                self.proxy.GetAll(client_interface,
 
98
                                  dbus_interface
 
99
                                  = dbus.PROPERTIES_IFACE))
 
100
        
 
101
        super(MandosClientPropertyCache, self).__init__(**kwargs)
 
102
    
 
103
    def properties_changed(self, interface, properties, invalidated):
 
104
        """This is called whenever we get a PropertiesChanged signal
 
105
        It updates the changed properties in the "properties" dict.
 
106
        """
 
107
        # Update properties dict with new value
 
108
        self.properties.update(properties)
 
109
    
 
110
    def delete(self):
 
111
        self.property_changed_match.remove()
 
112
 
 
113
 
 
114
class MandosClientWidget(urwid.FlowWidget, MandosClientPropertyCache):
 
115
    """A Mandos Client which is visible on the screen.
 
116
    """
 
117
    
 
118
    def __init__(self, server_proxy_object=None, update_hook=None,
 
119
                 delete_hook=None, logger=None, **kwargs):
 
120
        # Called on update
 
121
        self.update_hook = update_hook
 
122
        # Called on delete
 
123
        self.delete_hook = delete_hook
 
124
        # Mandos Server proxy object
 
125
        self.server_proxy_object = server_proxy_object
 
126
        # Logger
 
127
        self.logger = logger
 
128
        
 
129
        self._update_timer_callback_tag = None
 
130
        
 
131
        # The widget shown normally
 
132
        self._text_widget = urwid.Text("")
 
133
        # The widget shown when we have focus
 
134
        self._focus_text_widget = urwid.Text("")
 
135
        super(MandosClientWidget, self).__init__(**kwargs)
 
136
        self.update()
 
137
        self.opened = False
 
138
        
 
139
        self.match_objects = (
 
140
            self.proxy.connect_to_signal("CheckerCompleted",
 
141
                                         self.checker_completed,
 
142
                                         client_interface,
 
143
                                         byte_arrays=True),
 
144
            self.proxy.connect_to_signal("CheckerStarted",
 
145
                                         self.checker_started,
 
146
                                         client_interface,
 
147
                                         byte_arrays=True),
 
148
            self.proxy.connect_to_signal("GotSecret",
 
149
                                         self.got_secret,
 
150
                                         client_interface,
 
151
                                         byte_arrays=True),
 
152
            self.proxy.connect_to_signal("NeedApproval",
 
153
                                         self.need_approval,
 
154
                                         client_interface,
 
155
                                         byte_arrays=True),
 
156
            self.proxy.connect_to_signal("Rejected",
 
157
                                         self.rejected,
 
158
                                         client_interface,
 
159
                                         byte_arrays=True))
 
160
        self.logger('Created client {}'
 
161
                    .format(self.properties["Name"]), level=0)
 
162
    
 
163
    def using_timer(self, flag):
 
164
        """Call this method with True or False when timer should be
 
165
        activated or deactivated.
 
166
        """
 
167
        if flag and self._update_timer_callback_tag is None:
 
168
            # Will update the shown timer value every second
 
169
            self._update_timer_callback_tag = (gobject.timeout_add
 
170
                                               (1000,
 
171
                                                self.update_timer))
 
172
        elif not (flag or self._update_timer_callback_tag is None):
 
173
            gobject.source_remove(self._update_timer_callback_tag)
 
174
            self._update_timer_callback_tag = None
 
175
    
 
176
    def checker_completed(self, exitstatus, condition, command):
 
177
        if exitstatus == 0:
 
178
            self.logger('Checker for client {} (command "{}")'
 
179
                        ' succeeded'.format(self.properties["Name"],
 
180
                                            command), level=0)
 
181
            self.update()
 
182
            return
 
183
        # Checker failed
 
184
        if os.WIFEXITED(condition):
 
185
            self.logger('Checker for client {} (command "{}") failed'
 
186
                        ' with exit code {}'
 
187
                        .format(self.properties["Name"], command,
 
188
                                os.WEXITSTATUS(condition)))
 
189
        elif os.WIFSIGNALED(condition):
 
190
            self.logger('Checker for client {} (command "{}") was'
 
191
                        ' killed by signal {}'
 
192
                        .format(self.properties["Name"], command,
 
193
                                os.WTERMSIG(condition)))
 
194
        elif os.WCOREDUMP(condition):
 
195
            self.logger('Checker for client {} (command "{}") dumped'
 
196
                        ' core'.format(self.properties["Name"],
 
197
                                       command))
 
198
        else:
 
199
            self.logger('Checker for client {} completed'
 
200
                        ' mysteriously'
 
201
                        .format(self.properties["Name"]))
 
202
        self.update()
 
203
    
 
204
    def checker_started(self, command):
 
205
        """Server signals that a checker started."""
 
206
        self.logger('Client {} started checker "{}"'
 
207
                    .format(self.properties["Name"],
 
208
                            command), level=0)
 
209
    
 
210
    def got_secret(self):
 
211
        self.logger('Client {} received its secret'
 
212
                    .format(self.properties["Name"]))
 
213
    
 
214
    def need_approval(self, timeout, default):
 
215
        if not default:
 
216
            message = 'Client {} needs approval within {} seconds'
 
217
        else:
 
218
            message = 'Client {} will get its secret in {} seconds'
 
219
        self.logger(message.format(self.properties["Name"],
 
220
                                   timeout/1000))
 
221
    
 
222
    def rejected(self, reason):
 
223
        self.logger('Client {} was rejected; reason: {}'
 
224
                    .format(self.properties["Name"], reason))
 
225
    
 
226
    def selectable(self):
 
227
        """Make this a "selectable" widget.
 
228
        This overrides the method from urwid.FlowWidget."""
 
229
        return True
 
230
    
 
231
    def rows(self, maxcolrow, focus=False):
 
232
        """How many rows this widget will occupy might depend on
 
233
        whether we have focus or not.
 
234
        This overrides the method from urwid.FlowWidget"""
 
235
        return self.current_widget(focus).rows(maxcolrow, focus=focus)
 
236
    
 
237
    def current_widget(self, focus=False):
 
238
        if focus or self.opened:
 
239
            return self._focus_widget
 
240
        return self._widget
 
241
    
 
242
    def update(self):
 
243
        "Called when what is visible on the screen should be updated."
 
244
        # How to add standout mode to a style
 
245
        with_standout = { "normal": "standout",
 
246
                          "bold": "bold-standout",
 
247
                          "underline-blink":
 
248
                              "underline-blink-standout",
 
249
                          "bold-underline-blink":
 
250
                              "bold-underline-blink-standout",
 
251
                          }
 
252
        
 
253
        # Rebuild focus and non-focus widgets using current properties
 
254
        
 
255
        # Base part of a client. Name!
 
256
        base = '{name}: '.format(name=self.properties["Name"])
 
257
        if not self.properties["Enabled"]:
 
258
            message = "DISABLED"
 
259
            self.using_timer(False)
 
260
        elif self.properties["ApprovalPending"]:
 
261
            timeout = datetime.timedelta(milliseconds
 
262
                                         = self.properties
 
263
                                         ["ApprovalDelay"])
 
264
            last_approval_request = isoformat_to_datetime(
 
265
                self.properties["LastApprovalRequest"])
 
266
            if last_approval_request is not None:
 
267
                timer = max(timeout - (datetime.datetime.utcnow()
 
268
                                       - last_approval_request),
 
269
                            datetime.timedelta())
 
270
            else:
 
271
                timer = datetime.timedelta()
 
272
            if self.properties["ApprovedByDefault"]:
 
273
                message = "Approval in {}. (d)eny?"
 
274
            else:
 
275
                message = "Denial in {}. (a)pprove?"
 
276
            message = message.format(str(timer).rsplit(".", 1)[0])
 
277
            self.using_timer(True)
 
278
        elif self.properties["LastCheckerStatus"] != 0:
 
279
            # When checker has failed, show timer until client expires
 
280
            expires = self.properties["Expires"]
 
281
            if expires == "":
 
282
                timer = datetime.timedelta(0)
 
283
            else:
 
284
                expires = (datetime.datetime.strptime
 
285
                           (expires, '%Y-%m-%dT%H:%M:%S.%f'))
 
286
                timer = max(expires - datetime.datetime.utcnow(),
 
287
                            datetime.timedelta())
 
288
            message = ('A checker has failed! Time until client'
 
289
                       ' gets disabled: {}'
 
290
                       .format(str(timer).rsplit(".", 1)[0]))
 
291
            self.using_timer(True)
 
292
        else:
 
293
            message = "enabled"
 
294
            self.using_timer(False)
 
295
        self._text = "{}{}".format(base, message)
 
296
        
 
297
        if not urwid.supports_unicode():
 
298
            self._text = self._text.encode("ascii", "replace")
 
299
        textlist = [("normal", self._text)]
 
300
        self._text_widget.set_text(textlist)
 
301
        self._focus_text_widget.set_text([(with_standout[text[0]],
 
302
                                           text[1])
 
303
                                          if isinstance(text, tuple)
 
304
                                          else text
 
305
                                          for text in textlist])
 
306
        self._widget = self._text_widget
 
307
        self._focus_widget = urwid.AttrWrap(self._focus_text_widget,
 
308
                                            "standout")
 
309
        # Run update hook, if any
 
310
        if self.update_hook is not None:
 
311
            self.update_hook()
 
312
    
 
313
    def update_timer(self):
 
314
        """called by gobject. Will indefinitely loop until
 
315
        gobject.source_remove() on tag is called"""
 
316
        self.update()
 
317
        return True             # Keep calling this
 
318
    
 
319
    def delete(self, **kwargs):
 
320
        if self._update_timer_callback_tag is not None:
 
321
            gobject.source_remove(self._update_timer_callback_tag)
 
322
            self._update_timer_callback_tag = None
 
323
        for match in self.match_objects:
 
324
            match.remove()
 
325
        self.match_objects = ()
 
326
        if self.delete_hook is not None:
 
327
            self.delete_hook(self)
 
328
        return super(MandosClientWidget, self).delete(**kwargs)
 
329
    
 
330
    def render(self, maxcolrow, focus=False):
 
331
        """Render differently if we have focus.
 
332
        This overrides the method from urwid.FlowWidget"""
 
333
        return self.current_widget(focus).render(maxcolrow,
 
334
                                                 focus=focus)
 
335
    
 
336
    def keypress(self, maxcolrow, key):
 
337
        """Handle keys.
 
338
        This overrides the method from urwid.FlowWidget"""
 
339
        if key == "+":
 
340
            self.proxy.Enable(dbus_interface = client_interface,
 
341
                              ignore_reply=True)
 
342
        elif key == "-":
 
343
            self.proxy.Disable(dbus_interface = client_interface,
 
344
                               ignore_reply=True)
 
345
        elif key == "a":
 
346
            self.proxy.Approve(dbus.Boolean(True, variant_level=1),
 
347
                               dbus_interface = client_interface,
 
348
                               ignore_reply=True)
 
349
        elif key == "d":
 
350
            self.proxy.Approve(dbus.Boolean(False, variant_level=1),
 
351
                                  dbus_interface = client_interface,
 
352
                               ignore_reply=True)
 
353
        elif key == "R" or key == "_" or key == "ctrl k":
 
354
            self.server_proxy_object.RemoveClient(self.proxy
 
355
                                                  .object_path,
 
356
                                                  ignore_reply=True)
 
357
        elif key == "s":
 
358
            self.proxy.StartChecker(dbus_interface = client_interface,
 
359
                                    ignore_reply=True)
 
360
        elif key == "S":
 
361
            self.proxy.StopChecker(dbus_interface = client_interface,
 
362
                                   ignore_reply=True)
 
363
        elif key == "C":
 
364
            self.proxy.CheckedOK(dbus_interface = client_interface,
 
365
                                 ignore_reply=True)
 
366
        # xxx
 
367
#         elif key == "p" or key == "=":
 
368
#             self.proxy.pause()
 
369
#         elif key == "u" or key == ":":
 
370
#             self.proxy.unpause()
 
371
#         elif key == "RET":
 
372
#             self.open()
 
373
        else:
 
374
            return key
 
375
    
 
376
    def properties_changed(self, interface, properties, invalidated):
 
377
        """Call self.update() if any properties changed.
 
378
        This overrides the method from MandosClientPropertyCache"""
 
379
        old_values = { key: self.properties.get(key)
 
380
                       for key in properties.keys() }
 
381
        super(MandosClientWidget, self).properties_changed(
 
382
            interface, properties, invalidated)
 
383
        if any(old_values[key] != self.properties.get(key)
 
384
               for key in old_values):
 
385
            self.update()
 
386
 
 
387
 
 
388
class ConstrainedListBox(urwid.ListBox):
 
389
    """Like a normal urwid.ListBox, but will consume all "up" or
 
390
    "down" key presses, thus not allowing any containing widgets to
 
391
    use them as an excuse to shift focus away from this widget.
 
392
    """
 
393
    def keypress(self, *args, **kwargs):
 
394
        ret = super(ConstrainedListBox, self).keypress(*args, **kwargs)
 
395
        if ret in ("up", "down"):
 
396
            return
 
397
        return ret
 
398
 
 
399
 
 
400
class UserInterface(object):
 
401
    """This is the entire user interface - the whole screen
 
402
    with boxes, lists of client widgets, etc.
 
403
    """
 
404
    def __init__(self, max_log_length=1000, log_level=1):
 
405
        DBusGMainLoop(set_as_default=True)
 
406
        
 
407
        self.screen = urwid.curses_display.Screen()
 
408
        
 
409
        self.screen.register_palette((
 
410
                ("normal",
 
411
                 "default", "default", None),
 
412
                ("bold",
 
413
                 "bold", "default", "bold"),
 
414
                ("underline-blink",
 
415
                 "underline,blink", "default", "underline,blink"),
 
416
                ("standout",
 
417
                 "standout", "default", "standout"),
 
418
                ("bold-underline-blink",
 
419
                 "bold,underline,blink", "default", "bold,underline,blink"),
 
420
                ("bold-standout",
 
421
                 "bold,standout", "default", "bold,standout"),
 
422
                ("underline-blink-standout",
 
423
                 "underline,blink,standout", "default",
 
424
                 "underline,blink,standout"),
 
425
                ("bold-underline-blink-standout",
 
426
                 "bold,underline,blink,standout", "default",
 
427
                 "bold,underline,blink,standout"),
 
428
                ))
 
429
        
 
430
        if urwid.supports_unicode():
 
431
            self.divider = "─" # \u2500
 
432
            #self.divider = "━" # \u2501
 
433
        else:
 
434
            #self.divider = "-" # \u002d
 
435
            self.divider = "_" # \u005f
 
436
        
 
437
        self.screen.start()
 
438
        
 
439
        self.size = self.screen.get_cols_rows()
 
440
        
 
441
        self.clients = urwid.SimpleListWalker([])
 
442
        self.clients_dict = {}
 
443
        
 
444
        # We will add Text widgets to this list
 
445
        self.log = []
 
446
        self.max_log_length = max_log_length
 
447
        
 
448
        self.log_level = log_level
 
449
        
 
450
        # We keep a reference to the log widget so we can remove it
 
451
        # from the ListWalker without it getting destroyed
 
452
        self.logbox = ConstrainedListBox(self.log)
 
453
        
 
454
        # This keeps track of whether self.uilist currently has
 
455
        # self.logbox in it or not
 
456
        self.log_visible = True
 
457
        self.log_wrap = "any"
 
458
        
 
459
        self.rebuild()
 
460
        self.log_message_raw(("bold",
 
461
                              "Mandos Monitor version " + version))
 
462
        self.log_message_raw(("bold",
 
463
                              "q: Quit  ?: Help"))
 
464
        
 
465
        self.busname = domain + '.Mandos'
 
466
        self.main_loop = gobject.MainLoop()
 
467
    
 
468
    def client_not_found(self, fingerprint, address):
 
469
        self.log_message("Client with address {} and fingerprint {}"
 
470
                         " could not be found"
 
471
                         .format(address, fingerprint))
 
472
    
 
473
    def rebuild(self):
 
474
        """This rebuilds the User Interface.
 
475
        Call this when the widget layout needs to change"""
 
476
        self.uilist = []
 
477
        #self.uilist.append(urwid.ListBox(self.clients))
 
478
        self.uilist.append(urwid.Frame(ConstrainedListBox(self.
 
479
                                                          clients),
 
480
                                       #header=urwid.Divider(),
 
481
                                       header=None,
 
482
                                       footer=
 
483
                                       urwid.Divider(div_char=
 
484
                                                     self.divider)))
 
485
        if self.log_visible:
 
486
            self.uilist.append(self.logbox)
 
487
        self.topwidget = urwid.Pile(self.uilist)
 
488
    
 
489
    def log_message(self, message, level=1):
 
490
        """Log message formatted with timestamp"""
 
491
        if level < self.log_level:
 
492
            return
 
493
        timestamp = datetime.datetime.now().isoformat()
 
494
        self.log_message_raw("{}: {}".format(timestamp, message),
 
495
                             level=level)
 
496
    
 
497
    def log_message_raw(self, markup, level=1):
 
498
        """Add a log message to the log buffer."""
 
499
        if level < self.log_level:
 
500
            return
 
501
        self.log.append(urwid.Text(markup, wrap=self.log_wrap))
 
502
        if (self.max_log_length
 
503
            and len(self.log) > self.max_log_length):
 
504
            del self.log[0:len(self.log)-self.max_log_length-1]
 
505
        self.logbox.set_focus(len(self.logbox.body.contents),
 
506
                              coming_from="above")
 
507
        self.refresh()
 
508
    
 
509
    def toggle_log_display(self):
 
510
        """Toggle visibility of the log buffer."""
 
511
        self.log_visible = not self.log_visible
 
512
        self.rebuild()
 
513
        self.log_message("Log visibility changed to: {}"
 
514
                         .format(self.log_visible), level=0)
 
515
    
 
516
    def change_log_display(self):
 
517
        """Change type of log display.
 
518
        Currently, this toggles wrapping of text lines."""
 
519
        if self.log_wrap == "clip":
 
520
            self.log_wrap = "any"
 
521
        else:
 
522
            self.log_wrap = "clip"
 
523
        for textwidget in self.log:
 
524
            textwidget.set_wrap_mode(self.log_wrap)
 
525
        self.log_message("Wrap mode: {}".format(self.log_wrap),
 
526
                         level=0)
 
527
    
 
528
    def find_and_remove_client(self, path, name):
 
529
        """Find a client by its object path and remove it.
 
530
        
 
531
        This is connected to the ClientRemoved signal from the
 
532
        Mandos server object."""
 
533
        try:
 
534
            client = self.clients_dict[path]
 
535
        except KeyError:
 
536
            # not found?
 
537
            self.log_message("Unknown client {!r} ({!r}) removed"
 
538
                             .format(name, path))
 
539
            return
 
540
        client.delete()
 
541
    
 
542
    def add_new_client(self, path):
 
543
        client_proxy_object = self.bus.get_object(self.busname, path)
 
544
        self.add_client(MandosClientWidget(server_proxy_object
 
545
                                           =self.mandos_serv,
 
546
                                           proxy_object
 
547
                                           =client_proxy_object,
 
548
                                           update_hook
 
549
                                           =self.refresh,
 
550
                                           delete_hook
 
551
                                           =self.remove_client,
 
552
                                           logger
 
553
                                           =self.log_message),
 
554
                        path=path)
 
555
    
 
556
    def add_client(self, client, path=None):
 
557
        self.clients.append(client)
 
558
        if path is None:
 
559
            path = client.proxy.object_path
 
560
        self.clients_dict[path] = client
 
561
        self.clients.sort(key=lambda c: c.properties["Name"])
 
562
        self.refresh()
 
563
    
 
564
    def remove_client(self, client, path=None):
 
565
        self.clients.remove(client)
 
566
        if path is None:
 
567
            path = client.proxy.object_path
 
568
        del self.clients_dict[path]
 
569
        self.refresh()
 
570
    
 
571
    def refresh(self):
 
572
        """Redraw the screen"""
 
573
        canvas = self.topwidget.render(self.size, focus=True)
 
574
        self.screen.draw_screen(self.size, canvas)
 
575
    
 
576
    def run(self):
 
577
        """Start the main loop and exit when it's done."""
 
578
        self.bus = dbus.SystemBus()
 
579
        mandos_dbus_objc = self.bus.get_object(
 
580
            self.busname, "/", follow_name_owner_changes=True)
 
581
        self.mandos_serv = dbus.Interface(mandos_dbus_objc,
 
582
                                          dbus_interface
 
583
                                          = server_interface)
 
584
        try:
 
585
            mandos_clients = (self.mandos_serv
 
586
                              .GetAllClientsWithProperties())
 
587
            if not mandos_clients:
 
588
                self.log_message_raw(("bold", "Note: Server has no clients."))
 
589
        except dbus.exceptions.DBusException:
 
590
            self.log_message_raw(("bold", "Note: No Mandos server running."))
 
591
            mandos_clients = dbus.Dictionary()
 
592
        
 
593
        (self.mandos_serv
 
594
         .connect_to_signal("ClientRemoved",
 
595
                            self.find_and_remove_client,
 
596
                            dbus_interface=server_interface,
 
597
                            byte_arrays=True))
 
598
        (self.mandos_serv
 
599
         .connect_to_signal("ClientAdded",
 
600
                            self.add_new_client,
 
601
                            dbus_interface=server_interface,
 
602
                            byte_arrays=True))
 
603
        (self.mandos_serv
 
604
         .connect_to_signal("ClientNotFound",
 
605
                            self.client_not_found,
 
606
                            dbus_interface=server_interface,
 
607
                            byte_arrays=True))
 
608
        for path, client in mandos_clients.items():
 
609
            client_proxy_object = self.bus.get_object(self.busname,
 
610
                                                      path)
 
611
            self.add_client(MandosClientWidget(server_proxy_object
 
612
                                               =self.mandos_serv,
 
613
                                               proxy_object
 
614
                                               =client_proxy_object,
 
615
                                               properties=client,
 
616
                                               update_hook
 
617
                                               =self.refresh,
 
618
                                               delete_hook
 
619
                                               =self.remove_client,
 
620
                                               logger
 
621
                                               =self.log_message),
 
622
                            path=path)
 
623
        
 
624
        self.refresh()
 
625
        self._input_callback_tag = (gobject.io_add_watch
 
626
                                    (sys.stdin.fileno(),
 
627
                                     gobject.IO_IN,
 
628
                                     self.process_input))
 
629
        self.main_loop.run()
 
630
        # Main loop has finished, we should close everything now
 
631
        gobject.source_remove(self._input_callback_tag)
 
632
        self.screen.stop()
 
633
    
 
634
    def stop(self):
 
635
        self.main_loop.quit()
 
636
    
 
637
    def process_input(self, source, condition):
 
638
        keys = self.screen.get_input()
 
639
        translations = { "ctrl n": "down",      # Emacs
 
640
                         "ctrl p": "up",        # Emacs
 
641
                         "ctrl v": "page down", # Emacs
 
642
                         "meta v": "page up",   # Emacs
 
643
                         " ": "page down",      # less
 
644
                         "f": "page down",      # less
 
645
                         "b": "page up",        # less
 
646
                         "j": "down",           # vi
 
647
                         "k": "up",             # vi
 
648
                         }
 
649
        for key in keys:
 
650
            try:
 
651
                key = translations[key]
 
652
            except KeyError:    # :-)
 
653
                pass
 
654
            
 
655
            if key == "q" or key == "Q":
 
656
                self.stop()
 
657
                break
 
658
            elif key == "window resize":
 
659
                self.size = self.screen.get_cols_rows()
 
660
                self.refresh()
 
661
            elif key == "ctrl l":
 
662
                self.screen.clear()
 
663
                self.refresh()
 
664
            elif key == "l" or key == "D":
 
665
                self.toggle_log_display()
 
666
                self.refresh()
 
667
            elif key == "w" or key == "i":
 
668
                self.change_log_display()
 
669
                self.refresh()
 
670
            elif key == "?" or key == "f1" or key == "esc":
 
671
                if not self.log_visible:
 
672
                    self.log_visible = True
 
673
                    self.rebuild()
 
674
                self.log_message_raw(("bold",
 
675
                                      "  ".
 
676
                                      join(("q: Quit",
 
677
                                            "?: Help",
 
678
                                            "l: Log window toggle",
 
679
                                            "TAB: Switch window",
 
680
                                            "w: Wrap (log lines)",
 
681
                                            "v: Toggle verbose log",
 
682
                                            ))))
 
683
                self.log_message_raw(("bold",
 
684
                                      "  "
 
685
                                      .join(("Clients:",
 
686
                                             "+: Enable",
 
687
                                             "-: Disable",
 
688
                                             "R: Remove",
 
689
                                             "s: Start new checker",
 
690
                                             "S: Stop checker",
 
691
                                             "C: Checker OK",
 
692
                                             "a: Approve",
 
693
                                             "d: Deny"))))
 
694
                self.refresh()
 
695
            elif key == "tab":
 
696
                if self.topwidget.get_focus() is self.logbox:
 
697
                    self.topwidget.set_focus(0)
 
698
                else:
 
699
                    self.topwidget.set_focus(self.logbox)
 
700
                self.refresh()
 
701
            elif key == "v":
 
702
                if self.log_level == 0:
 
703
                    self.log_level = 1
 
704
                    self.log_message("Verbose mode: Off")
 
705
                else:
 
706
                    self.log_level = 0
 
707
                    self.log_message("Verbose mode: On")
 
708
            #elif (key == "end" or key == "meta >" or key == "G"
 
709
            #      or key == ">"):
 
710
            #    pass            # xxx end-of-buffer
 
711
            #elif (key == "home" or key == "meta <" or key == "g"
 
712
            #      or key == "<"):
 
713
            #    pass            # xxx beginning-of-buffer
 
714
            #elif key == "ctrl e" or key == "$":
 
715
            #    pass            # xxx move-end-of-line
 
716
            #elif key == "ctrl a" or key == "^":
 
717
            #    pass            # xxx move-beginning-of-line
 
718
            #elif key == "ctrl b" or key == "meta (" or key == "h":
 
719
            #    pass            # xxx left
 
720
            #elif key == "ctrl f" or key == "meta )" or key == "l":
 
721
            #    pass            # xxx right
 
722
            #elif key == "a":
 
723
            #    pass            # scroll up log
 
724
            #elif key == "z":
 
725
            #    pass            # scroll down log
 
726
            elif self.topwidget.selectable():
 
727
                self.topwidget.keypress(self.size, key)
 
728
                self.refresh()
 
729
        return True
 
730
 
 
731
ui = UserInterface()
 
732
try:
 
733
    ui.run()
 
734
except KeyboardInterrupt:
 
735
    ui.screen.stop()
 
736
except Exception as e:
 
737
    ui.log_message(str(e))
 
738
    ui.screen.stop()
 
739
    raise