// SPDX-License-Identifier: GPL-2.0+

/* NetworkManager Applet -- allow user control over networking

 *

 * Dan Williams <dcbw@redhat.com>

 *

 * Copyright 2007 - 2014 Red Hat, Inc.

 */

#include "nm-default.h"

#include <string.h>

#include "wireless-security.h"

#include "utils.h"

#include "helpers.h"

#include "nma-ui-utils.h"

struct _WirelessSecurityWEPKey {

	WirelessSecurity parent;

	gboolean editing_connection;

	const char *password_flags_name;

	NMWepKeyType type;

	char keys[4][65];

	guint8 cur_index;

};

static void

show_toggled_cb (GtkCheckButton *button, WirelessSecurity *sec)

{

	GtkWidget *widget;

	gboolean visible;

	widget = GTK_WIDGET (gtk_builder_get_object (sec->builder, "wep_key_entry"));

	g_assert (widget);

	visible = gtk_toggle_button_get_active (GTK_TOGGLE_BUTTON (button));

	gtk_entry_set_visibility (GTK_ENTRY (widget), visible);

}

static void

key_index_combo_changed_cb (GtkWidget *combo, WirelessSecurity *parent)

{

	WirelessSecurityWEPKey *sec = (WirelessSecurityWEPKey *) parent;

	GtkWidget *entry;

	const char *key;

	int key_index;

	/* Save WEP key for old key index */

	entry = GTK_WIDGET (gtk_builder_get_object (parent->builder, "wep_key_entry"));

	key = gtk_entry_get_text (GTK_ENTRY (entry));

	if (key)

		g_strlcpy (sec->keys[sec->cur_index], key, sizeof (sec->keys[sec->cur_index]));

	else

		memset (sec->keys[sec->cur_index], 0, sizeof (sec->keys[sec->cur_index]));

	key_index = gtk_combo_box_get_active (GTK_COMBO_BOX (combo));

	g_return_if_fail (key_index <= 3);

	g_return_if_fail (key_index >= 0);

	/* Populate entry with key from new index */

	gtk_entry_set_text (GTK_ENTRY (entry), sec->keys[key_index]);

	sec->cur_index = key_index;

	wireless_security_changed_cb (combo, parent);

}

static void

destroy (WirelessSecurity *parent)

{

	WirelessSecurityWEPKey *sec = (WirelessSecurityWEPKey *) parent;

	int i;

	for (i = 0; i < 4; i++)

		memset (sec->keys[i], 0, sizeof (sec->keys[i]));

}

static gboolean

validate (WirelessSecurity *parent, GError **error)

{

	WirelessSecurityWEPKey *sec = (WirelessSecurityWEPKey *) parent;

	NMSettingSecretFlags secret_flags;

	GtkWidget *entry;

	const char *key;

	int i;

	entry = GTK_WIDGET (gtk_builder_get_object (parent->builder, "wep_key_entry"));

	g_assert (entry);

	secret_flags = nma_utils_menu_to_secret_flags (entry);

	key = gtk_entry_get_text (GTK_ENTRY (entry));

        if (   secret_flags & NM_SETTING_SECRET_FLAG_NOT_SAVED

            || secret_flags & NM_SETTING_SECRET_FLAG_NOT_REQUIRED) {

		/* All good. */

	} else if (!key) {

		widget_set_error (entry);

		g_set_error_literal (error, NMA_ERROR, NMA_ERROR_GENERIC, _("missing wep-key"));

		return FALSE;

	} else if (sec->type == NM_WEP_KEY_TYPE_KEY) {

		if ((strlen (key) == 10) || (strlen (key) == 26)) {

			for (i = 0; i < strlen (key); i++) {

				if (!g_ascii_isxdigit (key[i])) {

					widget_set_error (entry);

					g_set_error (error, NMA_ERROR, NMA_ERROR_GENERIC, _("invalid wep-key: key with a length of %zu must contain only hex-digits"), strlen (key));

					return FALSE;

				}

			}

		} else if ((strlen (key) == 5) || (strlen (key) == 13)) {

			for (i = 0; i < strlen (key); i++) {

				if (!utils_char_is_ascii_print (key[i])) {

					widget_set_error (entry);

					g_set_error (error, NMA_ERROR, NMA_ERROR_GENERIC, _("invalid wep-key: key with a length of %zu must contain only ascii characters"), strlen (key));

					return FALSE;

				}

			}

		} else {

			widget_set_error (entry);

			g_set_error (error, NMA_ERROR, NMA_ERROR_GENERIC, _("invalid wep-key: wrong key length %zu. A key must be either of length 5/13 (ascii) or 10/26 (hex)"), strlen (key));

			return FALSE;

		}

	} else if (sec->type == NM_WEP_KEY_TYPE_PASSPHRASE) {

		if (!*key || (strlen (key) > 64)) {

			widget_set_error (entry);

			if (!*key)

				g_set_error_literal (error, NMA_ERROR, NMA_ERROR_GENERIC, _("invalid wep-key: passphrase must be non-empty"));

			else

				g_set_error_literal (error, NMA_ERROR, NMA_ERROR_GENERIC, _("invalid wep-key: passphrase must be shorter than 64 characters"));

			return FALSE;

		}

	}

	widget_unset_error (entry);

	return TRUE;

}

static void

add_to_size_group (WirelessSecurity *parent, GtkSizeGroup *group)

{

	GtkWidget *widget;

	widget = GTK_WIDGET (gtk_builder_get_object (parent->builder, "auth_method_label"));

	gtk_size_group_add_widget (group, widget);

	widget = GTK_WIDGET (gtk_builder_get_object (parent->builder, "wep_key_label"));

	gtk_size_group_add_widget (group, widget);

	widget = GTK_WIDGET (gtk_builder_get_object (parent->builder, "key_index_label"));

	gtk_size_group_add_widget (group, widget);

}

static void

fill_connection (WirelessSecurity *parent, NMConnection *connection)

{

	WirelessSecurityWEPKey *sec = (WirelessSecurityWEPKey *) parent;

	NMSettingWirelessSecurity *s_wsec;

	NMSettingSecretFlags secret_flags;

	GtkWidget *widget, *passwd_entry;

	gint auth_alg;

	const char *key;

	int i;

	widget = GTK_WIDGET (gtk_builder_get_object (parent->builder, "auth_method_combo"));

	auth_alg = gtk_combo_box_get_active (GTK_COMBO_BOX (widget));

	widget = GTK_WIDGET (gtk_builder_get_object (parent->builder, "wep_key_entry"));

	passwd_entry = widget;

	key = gtk_entry_get_text (GTK_ENTRY (widget));

	g_strlcpy (sec->keys[sec->cur_index], key, sizeof (sec->keys[sec->cur_index]));

	/* Blow away the old security setting by adding a clear one */

	s_wsec = (NMSettingWirelessSecurity *) nm_setting_wireless_security_new ();

	nm_connection_add_setting (connection, (NMSetting *) s_wsec);

	g_object_set (s_wsec,

	              NM_SETTING_WIRELESS_SECURITY_KEY_MGMT, "none",

	              NM_SETTING_WIRELESS_SECURITY_WEP_TX_KEYIDX, sec->cur_index,

	              NM_SETTING_WIRELESS_SECURITY_AUTH_ALG, (auth_alg == 1) ? "shared" : "open",

	              NM_SETTING_WIRELESS_SECURITY_WEP_KEY_TYPE, sec->type,

	              NULL);

	for (i = 0; i < 4; i++) {

		if (strlen (sec->keys[i]))

			nm_setting_wireless_security_set_wep_key (s_wsec, i, sec->keys[i]);

	}

	/* Save WEP_KEY_FLAGS to the connection */

	secret_flags = nma_utils_menu_to_secret_flags (passwd_entry);

	g_object_set (s_wsec, NM_SETTING_WIRELESS_SECURITY_WEP_KEY_FLAGS, secret_flags, NULL);

	/* Update secret flags and popup when editing the connection */

	if (sec->editing_connection)

		nma_utils_update_password_storage (passwd_entry, secret_flags,

		                                   NM_SETTING (s_wsec), sec->password_flags_name);

}

static void

wep_entry_filter_cb (GtkEditable *editable,

                     gchar *text,

                     gint length,

                     gint *position,

                     gpointer data)

{

	WirelessSecurityWEPKey *sec = (WirelessSecurityWEPKey *) data;

	if (sec->type == NM_WEP_KEY_TYPE_KEY) {

		utils_filter_editable_on_insert_text (editable,

		                                      text, length, position, data,

		                                      utils_char_is_ascii_print,

		                                      wep_entry_filter_cb);

	}

}

static void

update_secrets (WirelessSecurity *parent, NMConnection *connection)

{

	WirelessSecurityWEPKey *sec = (WirelessSecurityWEPKey *) parent;

	NMSettingWirelessSecurity *s_wsec;

	GtkWidget *widget;

	const char *tmp;

	int i;

	s_wsec = nm_connection_get_setting_wireless_security (connection);

	for (i = 0; s_wsec && i < 4; i++) {

		tmp = nm_setting_wireless_security_get_wep_key (s_wsec, i);

		if (tmp)

			g_strlcpy (sec->keys[i], tmp, sizeof (sec->keys[i]));

	}

	widget = GTK_WIDGET (gtk_builder_get_object (parent->builder, "wep_key_entry"));

	if (strlen (sec->keys[sec->cur_index]))

		gtk_entry_set_text (GTK_ENTRY (widget), sec->keys[sec->cur_index]);

}

WirelessSecurityWEPKey *

ws_wep_key_new (NMConnection *connection,

                NMWepKeyType type,

                gboolean adhoc_create,

                gboolean secrets_only)

{

	WirelessSecurity *parent;

	WirelessSecurityWEPKey *sec;

	GtkWidget *widget;

	NMSettingWirelessSecurity *s_wsec = NULL;

	NMSetting *setting = NULL;

	guint8 default_key_idx = 0;

	gboolean is_adhoc = adhoc_create;

	gboolean is_shared_key = FALSE;

	parent = wireless_security_init (sizeof (WirelessSecurityWEPKey),

	                                 validate,

	                                 add_to_size_group,

	                                 fill_connection,

	                                 update_secrets,

	                                 destroy,

	                                 "/org/freedesktop/network-manager-applet/ws-wep-key.ui",

	                                 "wep_key_notebook",

	                                 "wep_key_entry");

	if (!parent)

		return NULL;

	sec = (WirelessSecurityWEPKey *) parent;

	sec->editing_connection = secrets_only ? FALSE : TRUE;

	sec->password_flags_name = NM_SETTING_WIRELESS_SECURITY_WEP_KEY0;

	sec->type = type;

	widget = GTK_WIDGET (gtk_builder_get_object (parent->builder, "wep_key_entry"));

	g_assert (widget);

	gtk_entry_set_width_chars (GTK_ENTRY (widget), 28);

	/* Create password-storage popup menu for password entry under entry's secondary icon */

	if (connection)

		setting = (NMSetting *) nm_connection_get_setting_wireless_security (connection);

	nma_utils_setup_password_storage (widget, 0, setting, sec->password_flags_name,

	                                  FALSE, secrets_only);

	if (connection) {

		NMSettingWireless *s_wireless;

		const char *mode, *auth_alg;

		s_wireless = nm_connection_get_setting_wireless (connection);

		mode = s_wireless ? nm_setting_wireless_get_mode (s_wireless) : NULL;

		if (mode && !strcmp (mode, "adhoc"))

			is_adhoc = TRUE;

		s_wsec = nm_connection_get_setting_wireless_security (connection);

		if (s_wsec) {

			auth_alg = nm_setting_wireless_security_get_auth_alg (s_wsec);

			if (auth_alg && !strcmp (auth_alg, "shared"))

				is_shared_key = TRUE;

		}

	}

	g_signal_connect (G_OBJECT (widget), "changed",

	                  (GCallback) wireless_security_changed_cb,

	                  sec);

	g_signal_connect (G_OBJECT (widget), "insert-text",

	                  (GCallback) wep_entry_filter_cb,

	                  sec);

	if (sec->type == NM_WEP_KEY_TYPE_KEY)

		gtk_entry_set_max_length (GTK_ENTRY (widget), 26);

	else if (sec->type == NM_WEP_KEY_TYPE_PASSPHRASE)

		gtk_entry_set_max_length (GTK_ENTRY (widget), 64);

	widget = GTK_WIDGET (gtk_builder_get_object (parent->builder, "key_index_combo"));

	if (connection && s_wsec)

		default_key_idx = nm_setting_wireless_security_get_wep_tx_keyidx (s_wsec);

	gtk_combo_box_set_active (GTK_COMBO_BOX (widget), default_key_idx);

	sec->cur_index = default_key_idx;

	g_signal_connect (G_OBJECT (widget), "changed",

	                  (GCallback) key_index_combo_changed_cb,

	                  sec);

	/* Key index is useless with adhoc networks */

	if (is_adhoc || secrets_only) {

		gtk_widget_hide (widget);

		widget = GTK_WIDGET (gtk_builder_get_object (parent->builder, "key_index_label"));

		gtk_widget_hide (widget);

	}

	/* Fill the key entry with the key for that index */

	if (connection)

		update_secrets (WIRELESS_SECURITY (sec), connection);

	widget = GTK_WIDGET (gtk_builder_get_object (parent->builder, "show_checkbutton_wep"));

	g_assert (widget);

	g_signal_connect (G_OBJECT (widget), "toggled",

	                  (GCallback) show_toggled_cb,

	                  sec);

	widget = GTK_WIDGET (gtk_builder_get_object (parent->builder, "auth_method_combo"));

	gtk_combo_box_set_active (GTK_COMBO_BOX (widget), is_shared_key ? 1 : 0);

	g_signal_connect (G_OBJECT (widget), "changed",

	                  (GCallback) wireless_security_changed_cb,

	                  sec);

	/* Don't show auth method for adhoc (which always uses open-system) or

	 * when in "simple" mode.

	 */

	if (is_adhoc || secrets_only) {

		/* Ad-Hoc connections can't use Shared Key auth */

		if (is_adhoc)

			gtk_combo_box_set_active (GTK_COMBO_BOX (widget), 0);

		gtk_widget_hide (widget);

		widget = GTK_WIDGET (gtk_builder_get_object (parent->builder, "auth_method_label"));

		gtk_widget_hide (widget);

	}

	return sec;

}