use NEC to handle ssl error events

This commit is contained in:
Yann Leboulanger 2010-11-24 16:50:37 +01:00
parent b5497da876
commit b80254e20e
3 changed files with 23 additions and 15 deletions

View File

@ -1250,8 +1250,10 @@ class Connection(CommonConnection, ConnectionHandlers):
text += _('\nSSL Error: <b>%s</b>') % ssl_error[errnum] text += _('\nSSL Error: <b>%s</b>') % ssl_error[errnum]
else: else:
text += _('\nUnknown SSL error: %d') % errnum text += _('\nUnknown SSL error: %d') % errnum
self.dispatch('SSL_ERROR', (text, errnum, con.Connection.ssl_cert_pem, gajim.nec.push_incoming_event(SSLErrorEvent(None, conn=self,
con.Connection.ssl_fingerprint_sha1)) error_text=text, error_num=errnum,
cert=con.Connection.ssl_cert_pem,
fingerprint=con.Connection.ssl_fingerprint_sha1))
return True return True
if hasattr(con.Connection, 'ssl_fingerprint_sha1'): if hasattr(con.Connection, 'ssl_fingerprint_sha1'):
saved_fingerprint = gajim.config.get_per('accounts', self.name, 'ssl_fingerprint_sha1') saved_fingerprint = gajim.config.get_per('accounts', self.name, 'ssl_fingerprint_sha1')

View File

@ -1443,3 +1443,7 @@ class InsecurePasswordEvent(nec.NetworkIncomingEvent):
class InsecureSSLConnectionEvent(nec.NetworkIncomingEvent): class InsecureSSLConnectionEvent(nec.NetworkIncomingEvent):
name = 'insecure-ssl-connection' name = 'insecure-ssl-connection'
base_network_events = [] base_network_events = []
class SSLErrorEvent(nec.NetworkIncomingEvent):
name = 'ssl-error'
base_network_events = []

View File

@ -1413,8 +1413,9 @@ class Interface:
instance = data[1] instance = data[1]
instance.unique_room_id_error(data[0]) instance.unique_room_id_error(data[0])
def handle_event_ssl_error(self, account, data): def handle_event_ssl_error(self, obj):
# ('SSL_ERROR', account, (text, errnum, cert, sha1_fingerprint)) # ('SSL_ERROR', account, (text, errnum, cert, sha1_fingerprint))
account = obj.conn.name
server = gajim.config.get_per('accounts', account, 'hostname') server = gajim.config.get_per('accounts', account, 'hostname')
def on_ok(is_checked): def on_ok(is_checked):
@ -1426,37 +1427,38 @@ class Interface:
f = open(gajim.MY_CACERTS) f = open(gajim.MY_CACERTS)
certs = f.read() certs = f.read()
f.close() f.close()
if data[2] in certs: if obj.cert in certs:
dialogs.ErrorDialog(_('Certificate Already in File'), dialogs.ErrorDialog(_('Certificate Already in File'),
_('This certificate is already in file %s, so it\'s ' _('This certificate is already in file %s, so it\'s '
'not added again.') % gajim.MY_CACERTS) 'not added again.') % gajim.MY_CACERTS)
else: else:
f = open(gajim.MY_CACERTS, 'a') f = open(gajim.MY_CACERTS, 'a')
f.write(server + '\n') f.write(server + '\n')
f.write(data[2] + '\n\n') f.write(obj.cert + '\n\n')
f.close() f.close()
gajim.config.set_per('accounts', account, gajim.config.set_per('accounts', account,
'ssl_fingerprint_sha1', data[3]) 'ssl_fingerprint_sha1', obj.fingerprint)
if is_checked[1]: if is_checked[1]:
ignore_ssl_errors = gajim.config.get_per('accounts', account, ignore_ssl_errors = gajim.config.get_per('accounts', account,
'ignore_ssl_errors').split() 'ignore_ssl_errors').split()
ignore_ssl_errors.append(str(data[1])) ignore_ssl_errors.append(str(obj.error_num))
gajim.config.set_per('accounts', account, 'ignore_ssl_errors', gajim.config.set_per('accounts', account, 'ignore_ssl_errors',
' '.join(ignore_ssl_errors)) ' '.join(ignore_ssl_errors))
gajim.connections[account].ssl_certificate_accepted() obj.conn.ssl_certificate_accepted()
def on_cancel(): def on_cancel():
del self.instances[account]['online_dialog']['ssl_error'] del self.instances[account]['online_dialog']['ssl_error']
gajim.connections[account].disconnect(on_purpose=True) iobj.conn.disconnect(on_purpose=True)
self.handle_event_status(account, 'offline') self.handle_event_status(account, 'offline')
pritext = _('Error verifying SSL certificate') pritext = _('Error verifying SSL certificate')
sectext = _('There was an error verifying the SSL certificate of your ' sectext = _('There was an error verifying the SSL certificate of your '
'jabber server: %(error)s\nDo you still want to connect to this ' 'jabber server: %(error)s\nDo you still want to connect to this '
'server?') % {'error': data[0]} 'server?') % {'error': obj.error_text}
if data[1] in (18, 27): if obj.error_num in (18, 27):
checktext1 = _('Add this certificate to the list of trusted ' checktext1 = _('Add this certificate to the list of trusted '
'certificates.\nSHA1 fingerprint of the certificate:\n%s') % data[3] 'certificates.\nSHA1 fingerprint of the certificate:\n%s') % \
obj.fingerprint
else: else:
checktext1 = '' checktext1 = ''
checktext2 = _('Ignore this error for this certificate.') checktext2 = _('Ignore this error for this certificate.')
@ -1640,7 +1642,6 @@ class Interface:
'UNIQUE_ROOM_ID_SUPPORTED': \ 'UNIQUE_ROOM_ID_SUPPORTED': \
[self.handle_event_unique_room_id_supported], [self.handle_event_unique_room_id_supported],
'PASSWORD_REQUIRED': [self.handle_event_password_required], 'PASSWORD_REQUIRED': [self.handle_event_password_required],
'SSL_ERROR': [self.handle_event_ssl_error],
'FINGERPRINT_ERROR': [self.handle_event_fingerprint_error], 'FINGERPRINT_ERROR': [self.handle_event_fingerprint_error],
'atom-entry-received': [self.handle_atom_entry], 'atom-entry-received': [self.handle_atom_entry],
'bad-gpg-passphrase': [self.handle_event_bad_gpg_passphrase], 'bad-gpg-passphrase': [self.handle_event_bad_gpg_passphrase],
@ -1672,6 +1673,7 @@ class Interface:
'roster-info': [self.handle_event_roster_info], 'roster-info': [self.handle_event_roster_info],
'roster-item-exchange-received': \ 'roster-item-exchange-received': \
[self.handle_event_roster_item_exchange], [self.handle_event_roster_item_exchange],
'ssl-error': [self.handle_event_ssl_error],
'stream-conflict-received': [self.handle_event_resource_conflict], 'stream-conflict-received': [self.handle_event_resource_conflict],
'subscribe-presence-received': [ 'subscribe-presence-received': [
self.handle_event_subscribe_presence], self.handle_event_subscribe_presence],