mirrors
/
jgit
mirror of https://github.com/eclipse/jgit.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 204 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6907 Commits
49 Branches
Tree: 0b320b2c35
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '0b320b2c35'
${ noResults }
jgit/org.eclipse.jgit.ssh.apache/src/org/eclipse/jgit/internal/transport/sshd/PasswordProviderWrapper.java

PasswordProviderWrapper.java 4.4KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137 
  1. /*

  2.  * Copyright (C) 2018, Thomas Wolf <thomas.wolf@paranor.ch>

  3.  * and other copyright owners as documented in the project's IP log.

  4.  *

  5.  * This program and the accompanying materials are made available

  6.  * under the terms of the Eclipse Distribution License v1.0 which

  7.  * accompanies this distribution, is reproduced below, and is

  8.  * available at http://www.eclipse.org/org/documents/edl-v10.php

  9.  *

  10.  * All rights reserved.

  11.  *

  12.  * Redistribution and use in source and binary forms, with or

  13.  * without modification, are permitted provided that the following

  14.  * conditions are met:

  15.  *

  16.  * - Redistributions of source code must retain the above copyright

  17.  *   notice, this list of conditions and the following disclaimer.

  18.  *

  19.  * - Redistributions in binary form must reproduce the above

  20.  *   copyright notice, this list of conditions and the following

  21.  *   disclaimer in the documentation and/or other materials provided

  22.  *   with the distribution.

  23.  *

  24.  * - Neither the name of the Eclipse Foundation, Inc. nor the

  25.  *   names of its contributors may be used to endorse or promote

  26.  *   products derived from this software without specific prior

  27.  *   written permission.

  28.  *

  29.  * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND

  30.  * CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES,

  31.  * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES

  32.  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

  33.  * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR

  34.  * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

  35.  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT

  36.  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;

  37.  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER

  38.  * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

  39.  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)

  40.  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF

  41.  * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

  42.  */

  43. package org.eclipse.jgit.internal.transport.sshd;

  44. 

  45. import java.io.IOException;

  46. import java.net.URISyntaxException;

  47. import java.security.GeneralSecurityException;

  48. import java.util.Arrays;

  49. import java.util.Map;

  50. import java.util.concurrent.ConcurrentHashMap;

  51. import java.util.concurrent.atomic.AtomicInteger;

  52. 

  53. import org.eclipse.jgit.annotations.NonNull;

  54. import org.eclipse.jgit.transport.CredentialsProvider;

  55. import org.eclipse.jgit.transport.URIish;

  56. import org.eclipse.jgit.transport.sshd.KeyPasswordProvider;

  57. 

  58. /**

  59.  * A bridge from sshd's {@link RepeatingFilePasswordProvider} to our

  60.  * {@link KeyPasswordProvider} API.

  61.  */

  62. public class PasswordProviderWrapper implements RepeatingFilePasswordProvider {

  63. 

  64. 	private final KeyPasswordProvider delegate;

  65. 

  66. 	private Map<String, AtomicInteger> counts = new ConcurrentHashMap<>();

  67. 

  68. 	/**

  69. 	 * @param delegate

  70. 	 */

  71. 	public PasswordProviderWrapper(@NonNull KeyPasswordProvider delegate) {

  72. 		this.delegate = delegate;

  73. 	}

  74. 

  75. 	@Override

  76. 	public void setAttempts(int numberOfPasswordPrompts) {

  77. 		delegate.setAttempts(numberOfPasswordPrompts);

  78. 	}

  79. 

  80. 	@Override

  81. 	public int getAttempts() {

  82. 		return delegate.getAttempts();

  83. 	}

  84. 

  85. 	@Override

  86. 	public String getPassword(String resourceKey) throws IOException {

  87. 		int attempt = counts

  88. 				.computeIfAbsent(resourceKey, k -> new AtomicInteger()).get();

  89. 		char[] passphrase = delegate.getPassphrase(toUri(resourceKey), attempt);

  90. 		if (passphrase == null) {

  91. 			return null;

  92. 		}

  93. 		try {

  94. 			return new String(passphrase);

  95. 		} finally {

  96. 			Arrays.fill(passphrase, '\000');

  97. 		}

  98. 	}

  99. 

  100. 	@Override

  101. 	public ResourceDecodeResult handleDecodeAttemptResult(String resourceKey,

  102. 			String password, Exception err)

  103. 			throws IOException, GeneralSecurityException {

  104. 		AtomicInteger count = counts.get(resourceKey);

  105. 		int numberOfAttempts = count == null ? 0 : count.incrementAndGet();

  106. 		ResourceDecodeResult result = null;

  107. 		try {

  108. 			if (delegate.keyLoaded(toUri(resourceKey), numberOfAttempts, err)) {

  109. 				result = ResourceDecodeResult.RETRY;

  110. 			} else {

  111. 				result = ResourceDecodeResult.TERMINATE;

  112. 			}

  113. 		} finally {

  114. 			if (result != ResourceDecodeResult.RETRY) {

  115. 				counts.remove(resourceKey);

  116. 			}

  117. 		}

  118. 		return result;

  119. 	}

  120. 

  121. 	/**

  122. 	 * Creates a {@link URIish} from a given string. The

  123. 	 * {@link CredentialsProvider} uses uris as resource identifications.

  124. 	 *

  125. 	 * @param resourceKey

  126. 	 *            to convert

  127. 	 * @return the uri

  128. 	 */

  129. 	private URIish toUri(String resourceKey) {

  130. 		try {

  131. 			return new URIish(resourceKey);

  132. 		} catch (URISyntaxException e) {

  133. 			return new URIish().setPath(resourceKey); // Doesn't check!!

  134. 		}

  135. 	}

  136. 

  137. }