[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: [PATCH] gpg-agent storage - add support for /run based sockets

From: James McCoy <jamessan_at_jamessan.com>
Date: Sun, 30 Apr 2017 14:49:43 -0400

On Fri, Apr 28, 2017 at 05:46:21PM +0200, Lukas Jirkovsky wrote:
> Add support for sockets in /run used by recent gpg-agent

Thanks for the patch! Aside from a few comments on the code, I wonder
if it would be better to use "gpgconf --list-dir agent-socket" instead
of reimplementing the various bits of logic ourselves? That's only
usable with the gnupg 2.x series, though.

> Index: subversion/libsvn_subr/gpg_agent.c
> ===================================================================
> *** subversion/libsvn_subr/gpg_agent.c (revision 1792920)
> --- subversion/libsvn_subr/gpg_agent.c (working copy)
> *************** find_running_gpg_agent(int *new_sd, apr_
> *** 266,278 ****
> }
> else
> {
> const char *homedir = svn_user_get_homedir(pool);
> !
> ! if (!homedir)
> ! return SVN_NO_ERROR;
> !
> ! socket_name = svn_dirent_join_many(pool, homedir, ".gnupg",
> ! "S.gpg-agent", SVN_VA_NULL);
> }
>
> if (socket_name != NULL)
> --- 269,309 ----
> }
> else
> {
> + int isockmax = 0;
> + const char* socketpaths[3] = {0,0,0};
> + /* GnuPG since 2.1.13 uses /run/user/UID/gnupg based sockets */
> + apr_uid_t uid;
> + apr_gid_t gid;
> + if(apr_uid_current(&uid, &gid, pool) == APR_SUCCESS) {

apr_uid_current is only available when APR_HAS_USER is defined.

> + char* uidbuf = apr_psprintf(pool, "%lu", (unsigned long)uid);
> + socketpaths[isockmax++] = svn_dirent_join_many(pool, "/run/user",
> + uidbuf, "gnupg",
> + "S.gpg-agent",
> + SVN_VA_NULL);
> + socketpaths[isockmax++] = svn_dirent_join_many(pool, "/var/run/user",
> + uidbuf, "gnupg",
> + "S.gpg-agent",
> + SVN_VA_NULL);
> + }
> + /* older GnuPG versions use /home/USER/.gnupg based sockets */
> const char *homedir = svn_user_get_homedir(pool);
> ! if(homedir) {
> ! socketpaths[isockmax++] = svn_dirent_join_many(pool, homedir,
> ! ".gnupg",
> ! "S.gpg-agent",
> ! SVN_VA_NULL);
> ! }
> !
> ! /* find which of the available socket paths actually exists */
> ! int isock = 0;
> ! for (isock = 0; isock < isockmax; isock++) {
> ! struct stat statbuf;
> ! stat(socketpaths[isock], &statbuf);

Should probably use svn_io_stat here instead, with wanted set to
APR_FINFO_TYPE.

> ! if(S_ISSOCK(statbuf.st_mode)) {
> ! socket_name = socketpaths[isock];
> ! break;
> ! }
> ! }
> }
>
> if (socket_name != NULL)

Cheers, 

-- 
James
GPG Key: 4096R/91BF BF4D 6956 BD5D F7B7  2D23 DFE6 91AE 331B A3DB
Received on 2017-04-30 20:49:52 CEST

This is an archived mail posted to the Subversion Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.