projects / u / mdw / putty / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Robustness fixes for KEXINIT handling and others. In particular, I've
[u/mdw/putty] / pageant.c
CommitLineData
5c58ad2d 1/*
2 * Pageant: the PuTTY Authentication Agent.
3 */
4
5#include <windows.h>
123bc6ea 6#ifndef NO_SECURITY
d70f60ae 7#include <aclapi.h>
123bc6ea 8#endif
9b581c37 9#include <stdio.h>
49bad831 10#include <stdlib.h>
11#include <ctype.h>
3f2d010c 12#include <assert.h>
ddecd643 13#include <tchar.h>
14
5c58ad2d 15#include "ssh.h"
ecea795f 16#include "misc.h"
5c58ad2d 17#include "tree234.h"
d3a1a808 18#include "winstuff.h"
5c58ad2d 19
20#define IDI_MAINICON 200
21#define IDI_TRAYICON 201
22
23#define WM_XUSER (WM_USER + 0x2000)
24#define WM_SYSTRAY (WM_XUSER + 6)
25#define WM_SYSTRAY2 (WM_XUSER + 7)
d70f60ae 26
27#define AGENT_COPYDATA_ID 0x804e50ba /* random goop */
28
29/*
30 * FIXME: maybe some day we can sort this out ...
31 */
32#define AGENT_MAX_MSGLEN 8192
5c58ad2d 33
34#define IDM_CLOSE 0x0010
35#define IDM_VIEWKEYS 0x0020
ab162329 36#define IDM_ADDKEY 0x0030
ecea795f 37#define IDM_HELP 0x0040
38#define IDM_ABOUT 0x0050
5c58ad2d 39
40#define APPNAME "Pageant"
41
5af3a3b6 42extern char ver[];
43
75cab814 44static HINSTANCE instance;
ecea795f 45static HWND main_hwnd;
75cab814 46static HWND keylist;
47static HWND aboutbox;
76b51e35 48static HMENU systray_menu, session_menu;
ddecd643 49static int already_running;
ecea795f 50static int requested_help;
51
52static char *help_path;
76b51e35 53static char *putty_path;
54
55#define IDM_PUTTY 0x0060
56#define IDM_SESSIONS_BASE 0x1000
57#define IDM_SESSIONS_MAX 0x2000
58#define PUTTY_REGKEY "Software\\SimonTatham\\PuTTY\\Sessions"
59#define PUTTY_DEFAULT "Default%20Settings"
60static int initial_menuitems_count;
61
1709795f 62/*
63 * Print a modal (Really Bad) message box and perform a fatal exit.
64 */
65void modalfatalbox(char *fmt, ...)
66{
67 va_list ap;
57356d63 68 char *buf;
1709795f 69
70 va_start(ap, fmt);
57356d63 71 buf = dupvprintf(fmt, ap);
1709795f 72 va_end(ap);
57356d63 73 MessageBox(main_hwnd, buf, "Pageant Fatal Error",
1709795f 74 MB_SYSTEMMODAL | MB_ICONERROR | MB_OK);
57356d63 75 sfree(buf);
1709795f 76 exit(1);
77}
78
76b51e35 79/* Un-munge session names out of the registry. */
80static void unmungestr(char *in, char *out, int outlen)
81{
82 while (*in) {
83 if (*in == '%' && in[1] && in[2]) {
84 int i, j;
85
86 i = in[1] - '0';
87 i -= (i > 9 ? 7 : 0);
88 j = in[2] - '0';
89 j -= (j > 9 ? 7 : 0);
90
91 *out++ = (i << 4) + j;
92 if (!--outlen)
93 return;
94 in += 3;
95 } else {
96 *out++ = *in++;
97 if (!--outlen)
98 return;
99 }
100 }
101 *out = '\0';
102 return;
103}
5c58ad2d 104
45cebe79 105static tree234 *rsakeys, *ssh2keys;
5c58ad2d 106
75cab814 107static int has_security;
123bc6ea 108#ifndef NO_SECURITY
32874aea 109typedef DWORD(WINAPI * gsi_fn_t)
110 (HANDLE, SE_OBJECT_TYPE, SECURITY_INFORMATION,
111 PSID *, PSID *, PACL *, PACL *, PSECURITY_DESCRIPTOR *);
75cab814 112static gsi_fn_t getsecurityinfo;
123bc6ea 113#endif
016ef8ab 114
5c58ad2d 115/*
260f3dec 116 * Exports from pageantc.c
117 */
118void agent_query(void *in, int inlen, void **out, int *outlen);
119int agent_exists(void);
120
121/*
3f2d010c 122 * Forward references
123 */
124static void *make_keylist1(int *length);
125static void *make_keylist2(int *length);
126static void *get_keylist1(void);
127static void *get_keylist2(void);
128
129/*
5c58ad2d 130 * We need this to link with the RSA code, because rsaencrypt()
45cebe79 131 * pads its data with random bytes. Since we only use rsadecrypt()
132 * and the signing functions, which are deterministic, this should
133 * never be called.
5c72ca61 134 *
5c58ad2d 135 * If it _is_ called, there is a _serious_ problem, because it
136 * won't generate true random numbers. So we must scream, panic,
137 * and exit immediately if that should happen.
138 */
32874aea 139int random_byte(void)
140{
ecea795f 141 MessageBox(main_hwnd, "Internal Error", APPNAME, MB_OK | MB_ICONERROR);
5c58ad2d 142 exit(0);
cdcbdf3b 143 /* this line can't be reached but it placates MSVC's warnings :-) */
144 return 0;
5c58ad2d 145}
146
147/*
45cebe79 148 * Blob structure for passing to the asymmetric SSH2 key compare
149 * function, prototyped here.
150 */
151struct blob {
152 unsigned char *blob;
153 int len;
154};
155static int cmpkeys_ssh2_asymm(void *av, void *bv);
156
5c58ad2d 157#define GET_32BIT(cp) \
158 (((unsigned long)(unsigned char)(cp)[0] << 24) | \
159 ((unsigned long)(unsigned char)(cp)[1] << 16) | \
160 ((unsigned long)(unsigned char)(cp)[2] << 8) | \
161 ((unsigned long)(unsigned char)(cp)[3]))
162
163#define PUT_32BIT(cp, value) { \
164 (cp)[0] = (unsigned char)((value) >> 24); \
165 (cp)[1] = (unsigned char)((value) >> 16); \
166 (cp)[2] = (unsigned char)((value) >> 8); \
167 (cp)[3] = (unsigned char)(value); }
168
169#define PASSPHRASE_MAXLEN 512
170
d4de2d2a 171struct PassphraseProcStruct {
172 char *passphrase;
173 char *comment;
174};
175
0959acf7 176static tree234 *passphrases = NULL;
177
178/*
179 * After processing a list of filenames, we want to forget the
180 * passphrases.
181 */
182static void forget_passphrases(void)
183{
0959acf7 184 while (count234(passphrases) > 0) {
185 char *pp = index234(passphrases, 0);
186 memset(pp, 0, strlen(pp));
187 delpos234(passphrases, 0);
188 free(pp);
189 }
190}
191
5c58ad2d 192/*
5af3a3b6 193 * Dialog-box function for the Licence box.
194 */
32874aea 195static int CALLBACK LicenceProc(HWND hwnd, UINT msg,
196 WPARAM wParam, LPARAM lParam)
197{
5af3a3b6 198 switch (msg) {
199 case WM_INITDIALOG:
200 return 1;
201 case WM_COMMAND:
202 switch (LOWORD(wParam)) {
203 case IDOK:
32874aea 204 EndDialog(hwnd, 1);
5af3a3b6 205 return 0;
206 }
207 return 0;
208 case WM_CLOSE:
209 EndDialog(hwnd, 1);
210 return 0;
211 }
212 return 0;
213}
214
215/*
216 * Dialog-box function for the About box.
217 */
32874aea 218static int CALLBACK AboutProc(HWND hwnd, UINT msg,
219 WPARAM wParam, LPARAM lParam)
220{
5af3a3b6 221 switch (msg) {
222 case WM_INITDIALOG:
32874aea 223 SetDlgItemText(hwnd, 100, ver);
5af3a3b6 224 return 1;
225 case WM_COMMAND:
226 switch (LOWORD(wParam)) {
227 case IDOK:
228 aboutbox = NULL;
32874aea 229 DestroyWindow(hwnd);
5af3a3b6 230 return 0;
231 case 101:
232 EnableWindow(hwnd, 0);
32874aea 233 DialogBox(instance, MAKEINTRESOURCE(214), NULL, LicenceProc);
5af3a3b6 234 EnableWindow(hwnd, 1);
32874aea 235 SetActiveWindow(hwnd);
5af3a3b6 236 return 0;
237 }
238 return 0;
239 case WM_CLOSE:
240 aboutbox = NULL;
32874aea 241 DestroyWindow(hwnd);
5af3a3b6 242 return 0;
243 }
244 return 0;
245}
246
cb5ca813 247static HWND passphrase_box;
248
5af3a3b6 249/*
5c58ad2d 250 * Dialog-box function for the passphrase box.
251 */
252static int CALLBACK PassphraseProc(HWND hwnd, UINT msg,
32874aea 253 WPARAM wParam, LPARAM lParam)
254{
8e1feb27 255 static char *passphrase = NULL;
d4de2d2a 256 struct PassphraseProcStruct *p;
5c58ad2d 257
258 switch (msg) {
259 case WM_INITDIALOG:
cb5ca813 260 passphrase_box = hwnd;
45cebe79 261 /*
262 * Centre the window.
263 */
264 { /* centre the window */
265 RECT rs, rd;
266 HWND hw;
267
268 hw = GetDesktopWindow();
32874aea 269 if (GetWindowRect(hw, &rs) && GetWindowRect(hwnd, &rd))
270 MoveWindow(hwnd,
271 (rs.right + rs.left + rd.left - rd.right) / 2,
272 (rs.bottom + rs.top + rd.top - rd.bottom) / 2,
273 rd.right - rd.left, rd.bottom - rd.top, TRUE);
45cebe79 274 }
275
32874aea 276 SetForegroundWindow(hwnd);
277 SetWindowPos(hwnd, HWND_TOP, 0, 0, 0, 0,
278 SWP_NOMOVE | SWP_NOSIZE | SWP_SHOWWINDOW);
279 p = (struct PassphraseProcStruct *) lParam;
280 passphrase = p->passphrase;
281 if (p->comment)
282 SetDlgItemText(hwnd, 101, p->comment);
283 *passphrase = 0;
284 SetDlgItemText(hwnd, 102, passphrase);
285 return 0;
5c58ad2d 286 case WM_COMMAND:
287 switch (LOWORD(wParam)) {
288 case IDOK:
289 if (*passphrase)
32874aea 290 EndDialog(hwnd, 1);
5c58ad2d 291 else
32874aea 292 MessageBeep(0);
5c58ad2d 293 return 0;
294 case IDCANCEL:
32874aea 295 EndDialog(hwnd, 0);
5c58ad2d 296 return 0;
32874aea 297 case 102: /* edit box */
8e1feb27 298 if ((HIWORD(wParam) == EN_CHANGE) && passphrase) {
32874aea 299 GetDlgItemText(hwnd, 102, passphrase,
300 PASSPHRASE_MAXLEN - 1);
301 passphrase[PASSPHRASE_MAXLEN - 1] = '\0';
302 }
303 return 0;
5c58ad2d 304 }
305 return 0;
306 case WM_CLOSE:
32874aea 307 EndDialog(hwnd, 0);
5c58ad2d 308 return 0;
309 }
310 return 0;
311}
312
313/*
7bedb13c 314 * Warn about the obsolescent key file format.
315 */
316void old_keyfile_warning(void)
317{
318 static const char mbtitle[] = "PuTTY Key File Warning";
319 static const char message[] =
320 "You are loading an SSH 2 private key which has an\n"
321 "old version of the file format. This means your key\n"
322 "file is not fully tamperproof. Future versions of\n"
323 "PuTTY may stop supporting this private key format,\n"
324 "so we recommend you convert your key to the new\n"
325 "format.\n"
326 "\n"
327 "You can perform this conversion by loading the key\n"
328 "into PuTTYgen and then saving it again.";
329
330 MessageBox(NULL, message, mbtitle, MB_OK);
331}
332
333/*
3c0b3d06 334 * Update the visible key list.
335 */
32874aea 336static void keylist_update(void)
337{
45cebe79 338 struct RSAKey *rkey;
339 struct ssh2_userkey *skey;
d2371c81 340 int i;
3c0b3d06 341
342 if (keylist) {
32874aea 343 SendDlgItemMessage(keylist, 100, LB_RESETCONTENT, 0, 0);
344 for (i = 0; NULL != (rkey = index234(rsakeys, i)); i++) {
345 char listentry[512], *p;
346 /*
347 * Replace two spaces in the fingerprint with tabs, for
348 * nice alignment in the box.
349 */
45cebe79 350 strcpy(listentry, "ssh1\t");
32874aea 351 p = listentry + strlen(listentry);
352 rsa_fingerprint(p, sizeof(listentry) - (p - listentry), rkey);
353 p = strchr(listentry, ' ');
354 if (p)
355 *p = '\t';
356 p = strchr(listentry, ' ');
357 if (p)
358 *p = '\t';
359 SendDlgItemMessage(keylist, 100, LB_ADDSTRING,
360 0, (LPARAM) listentry);
361 }
362 for (i = 0; NULL != (skey = index234(ssh2keys, i)); i++) {
363 char listentry[512], *p;
45cebe79 364 int len;
32874aea 365 /*
366 * Replace two spaces in the fingerprint with tabs, for
367 * nice alignment in the box.
368 */
45cebe79 369 p = skey->alg->fingerprint(skey->data);
370 strncpy(listentry, p, sizeof(listentry));
32874aea 371 p = strchr(listentry, ' ');
372 if (p)
373 *p = '\t';
374 p = strchr(listentry, ' ');
375 if (p)
376 *p = '\t';
45cebe79 377 len = strlen(listentry);
32874aea 378 if (len < sizeof(listentry) - 2) {
45cebe79 379 listentry[len] = '\t';
32874aea 380 strncpy(listentry + len + 1, skey->comment,
381 sizeof(listentry) - len - 1);
45cebe79 382 }
32874aea 383 SendDlgItemMessage(keylist, 100, LB_ADDSTRING, 0,
384 (LPARAM) listentry);
385 }
386 SendDlgItemMessage(keylist, 100, LB_SETCURSEL, (WPARAM) - 1, 0);
3c0b3d06 387 }
388}
389
390/*
5c58ad2d 391 * This function loads a key from a file and adds it.
392 */
32874aea 393static void add_keyfile(char *filename)
394{
5c58ad2d 395 char passphrase[PASSPHRASE_MAXLEN];
2d466ffd 396 struct RSAKey *rkey = NULL;
397 struct ssh2_userkey *skey = NULL;
5c58ad2d 398 int needs_pass;
399 int ret;
400 int attempts;
d4de2d2a 401 char *comment;
402 struct PassphraseProcStruct pps;
231ee168 403 int type;
0959acf7 404 int original_pass;
405
231ee168 406 type = key_type(filename);
407 if (type != SSH_KEYTYPE_SSH1 && type != SSH_KEYTYPE_SSH2) {
408 char msg[256];
409 sprintf(msg, "Couldn't load this key (%s)", key_type_to_str(type));
410 MessageBox(NULL, msg, APPNAME, MB_OK | MB_ICONERROR);
32874aea 411 return;
45cebe79 412 }
5c58ad2d 413
3f2d010c 414 /*
415 * See if the key is already loaded (in the primary Pageant,
416 * which may or may not be us).
417 */
418 {
419 void *blob;
420 unsigned char *keylist, *p;
421 int i, nkeys, bloblen;
422
231ee168 423 if (type == SSH_KEYTYPE_SSH1) {
3f2d010c 424 if (!rsakey_pubblob(filename, &blob, &bloblen)) {
425 MessageBox(NULL, "Couldn't load private key.", APPNAME,
426 MB_OK | MB_ICONERROR);
427 return;
428 }
429 keylist = get_keylist1();
430 } else {
431 unsigned char *blob2;
432 blob = ssh2_userkey_loadpub(filename, NULL, &bloblen);
433 if (!blob) {
434 MessageBox(NULL, "Couldn't load private key.", APPNAME,
435 MB_OK | MB_ICONERROR);
436 return;
437 }
438 /* For our purposes we want the blob prefixed with its length */
439 blob2 = smalloc(bloblen+4);
440 PUT_32BIT(blob2, bloblen);
441 memcpy(blob2 + 4, blob, bloblen);
442 sfree(blob);
443 blob = blob2;
444
445 keylist = get_keylist2();
446 }
447 if (keylist) {
448 nkeys = GET_32BIT(keylist);
449 p = keylist + 4;
450
451 for (i = 0; i < nkeys; i++) {
452 if (!memcmp(blob, p, bloblen)) {
453 /* Key is already present; we can now leave. */
454 sfree(keylist);
455 sfree(blob);
456 return;
457 }
458 /* Now skip over public blob */
231ee168 459 if (type == SSH_KEYTYPE_SSH1)
3f2d010c 460 p += rsa_public_blob_len(p);
461 else
462 p += 4 + GET_32BIT(p);
463 /* Now skip over comment field */
464 p += 4 + GET_32BIT(p);
465 }
466
467 sfree(keylist);
468 }
469
470 sfree(blob);
471 }
472
231ee168 473 if (type == SSH_KEYTYPE_SSH1)
45cebe79 474 needs_pass = rsakey_encrypted(filename, &comment);
475 else
476 needs_pass = ssh2_userkey_encrypted(filename, &comment);
5c58ad2d 477 attempts = 0;
231ee168 478 if (type == SSH_KEYTYPE_SSH1)
45cebe79 479 rkey = smalloc(sizeof(*rkey));
d4de2d2a 480 pps.passphrase = passphrase;
481 pps.comment = comment;
0959acf7 482 original_pass = 0;
5c58ad2d 483 do {
32874aea 484 if (needs_pass) {
0959acf7 485 /* try all the remembered passphrases first */
486 char *pp = index234(passphrases, attempts);
487 if(pp) {
488 strcpy(passphrase, pp);
489 } else {
490 int dlgret;
491 original_pass = 1;
492 dlgret = DialogBoxParam(instance, MAKEINTRESOURCE(210),
493 NULL, PassphraseProc, (LPARAM) & pps);
494 passphrase_box = NULL;
495 if (!dlgret) {
496 if (comment)
497 sfree(comment);
231ee168 498 if (type == SSH_KEYTYPE_SSH1)
0959acf7 499 sfree(rkey);
500 return; /* operation cancelled */
501 }
32874aea 502 }
503 } else
504 *passphrase = '\0';
231ee168 505 if (type == SSH_KEYTYPE_SSH1)
45cebe79 506 ret = loadrsakey(filename, rkey, passphrase);
507 else {
508 skey = ssh2_load_userkey(filename, passphrase);
509 if (skey == SSH2_WRONG_PASSPHRASE)
510 ret = -1;
511 else if (!skey)
512 ret = 0;
513 else
514 ret = 1;
515 }
32874aea 516 attempts++;
5c58ad2d 517 } while (ret == -1);
0959acf7 518
519 /* if they typed in an ok passphrase, remember it */
520 if(original_pass && ret) {
521 char *pp = dupstr(passphrase);
522 addpos234(passphrases, pp, 0);
523 }
524
32874aea 525 if (comment)
526 sfree(comment);
5c58ad2d 527 if (ret == 0) {
32874aea 528 MessageBox(NULL, "Couldn't load private key.", APPNAME,
529 MB_OK | MB_ICONERROR);
231ee168 530 if (type == SSH_KEYTYPE_SSH1)
45cebe79 531 sfree(rkey);
32874aea 532 return;
5c58ad2d 533 }
231ee168 534 if (type == SSH_KEYTYPE_SSH1) {
ddecd643 535 if (already_running) {
536 unsigned char *request, *response;
2d466ffd 537 void *vresponse;
ddecd643 538 int reqlen, clen, resplen;
539
ddecd643 540 clen = strlen(rkey->comment);
ddecd643 541
542 reqlen = 4 + 1 + /* length, message type */
543 4 + /* bit count */
544 ssh1_bignum_length(rkey->modulus) +
545 ssh1_bignum_length(rkey->exponent) +
546 ssh1_bignum_length(rkey->private_exponent) +
547 ssh1_bignum_length(rkey->iqmp) +
548 ssh1_bignum_length(rkey->p) +
32874aea 549 ssh1_bignum_length(rkey->q) + 4 + clen /* comment */
ddecd643 550 ;
ddecd643 551
552 request = smalloc(reqlen);
ddecd643 553
ddecd643 554 request[4] = SSH1_AGENTC_ADD_RSA_IDENTITY;
ddecd643 555 reqlen = 5;
32874aea 556 PUT_32BIT(request + reqlen, bignum_bitcount(rkey->modulus));
ddecd643 557 reqlen += 4;
32874aea 558 reqlen += ssh1_write_bignum(request + reqlen, rkey->modulus);
559 reqlen += ssh1_write_bignum(request + reqlen, rkey->exponent);
560 reqlen +=
561 ssh1_write_bignum(request + reqlen,
562 rkey->private_exponent);
563 reqlen += ssh1_write_bignum(request + reqlen, rkey->iqmp);
564 reqlen += ssh1_write_bignum(request + reqlen, rkey->p);
565 reqlen += ssh1_write_bignum(request + reqlen, rkey->q);
566 PUT_32BIT(request + reqlen, clen);
567 memcpy(request + reqlen + 4, rkey->comment, clen);
568 reqlen += 4 + clen;
569 PUT_32BIT(request, reqlen - 4);
ddecd643 570
2d466ffd 571 agent_query(request, reqlen, &vresponse, &resplen);
572 response = vresponse;
ddecd643 573 if (resplen < 5 || response[4] != SSH_AGENT_SUCCESS)
574 MessageBox(NULL, "The already running Pageant "
575 "refused to add the key.", APPNAME,
576 MB_OK | MB_ICONERROR);
3f2d010c 577
578 sfree(request);
579 sfree(response);
ddecd643 580 } else {
581 if (add234(rsakeys, rkey) != rkey)
582 sfree(rkey); /* already present, don't waste RAM */
583 }
45cebe79 584 } else {
ddecd643 585 if (already_running) {
586 unsigned char *request, *response;
2d466ffd 587 void *vresponse;
ddecd643 588 int reqlen, alglen, clen, keybloblen, resplen;
ddecd643 589 alglen = strlen(skey->alg->name);
ddecd643 590 clen = strlen(skey->comment);
ddecd643 591
ddecd643 592 keybloblen = skey->alg->openssh_fmtkey(skey->data, NULL, 0);
ddecd643 593
ddecd643 594 reqlen = 4 + 1 + /* length, message type */
595 4 + alglen + /* algorithm name */
596 keybloblen + /* key data */
597 4 + clen /* comment */
598 ;
ddecd643 599
ddecd643 600 request = smalloc(reqlen);
ddecd643 601
602 request[4] = SSH2_AGENTC_ADD_IDENTITY;
ddecd643 603 reqlen = 5;
32874aea 604 PUT_32BIT(request + reqlen, alglen);
ddecd643 605 reqlen += 4;
32874aea 606 memcpy(request + reqlen, skey->alg->name, alglen);
ddecd643 607 reqlen += alglen;
ddecd643 608 reqlen += skey->alg->openssh_fmtkey(skey->data,
32874aea 609 request + reqlen,
610 keybloblen);
611 PUT_32BIT(request + reqlen, clen);
612 memcpy(request + reqlen + 4, skey->comment, clen);
613 PUT_32BIT(request, reqlen - 4);
614 reqlen += clen + 4;
ddecd643 615
2d466ffd 616 agent_query(request, reqlen, &vresponse, &resplen);
617 response = vresponse;
ddecd643 618 if (resplen < 5 || response[4] != SSH_AGENT_SUCCESS)
cc93d5e6 619 MessageBox(NULL, "The already running Pageant "
ddecd643 620 "refused to add the key.", APPNAME,
621 MB_OK | MB_ICONERROR);
3f2d010c 622
623 sfree(request);
624 sfree(response);
ddecd643 625 } else {
626 if (add234(ssh2keys, skey) != skey) {
627 skey->alg->freekey(skey->data);
628 sfree(skey); /* already present, don't waste RAM */
629 }
45cebe79 630 }
631 }
5c58ad2d 632}
633
634/*
3f2d010c 635 * Create an SSH1 key list in a malloc'ed buffer; return its
636 * length.
637 */
638static void *make_keylist1(int *length)
639{
640 int i, nkeys, len;
641 struct RSAKey *key;
642 unsigned char *blob, *p, *ret;
643 int bloblen;
644
645 /*
646 * Count up the number and length of keys we hold.
647 */
648 len = 4;
649 nkeys = 0;
650 for (i = 0; NULL != (key = index234(rsakeys, i)); i++) {
651 nkeys++;
652 blob = rsa_public_blob(key, &bloblen);
653 len += bloblen;
654 sfree(blob);
655 len += 4 + strlen(key->comment);
656 }
657
658 /* Allocate the buffer. */
659 p = ret = smalloc(len);
660 if (length) *length = len;
661
662 PUT_32BIT(p, nkeys);
663 p += 4;
664 for (i = 0; NULL != (key = index234(rsakeys, i)); i++) {
665 blob = rsa_public_blob(key, &bloblen);
666 memcpy(p, blob, bloblen);
667 p += bloblen;
668 sfree(blob);
669 PUT_32BIT(p, strlen(key->comment));
670 memcpy(p + 4, key->comment, strlen(key->comment));
671 p += 4 + strlen(key->comment);
672 }
673
674 assert(p - ret == len);
675 return ret;
676}
677
678/*
679 * Create an SSH2 key list in a malloc'ed buffer; return its
680 * length.
681 */
682static void *make_keylist2(int *length)
683{
684 struct ssh2_userkey *key;
685 int i, len, nkeys;
686 unsigned char *blob, *p, *ret;
687 int bloblen;
688
689 /*
690 * Count up the number and length of keys we hold.
691 */
692 len = 4;
693 nkeys = 0;
694 for (i = 0; NULL != (key = index234(ssh2keys, i)); i++) {
695 nkeys++;
696 len += 4; /* length field */
697 blob = key->alg->public_blob(key->data, &bloblen);
698 len += bloblen;
699 sfree(blob);
700 len += 4 + strlen(key->comment);
701 }
702
703 /* Allocate the buffer. */
704 p = ret = smalloc(len);
705 if (length) *length = len;
706
707 /*
708 * Packet header is the obvious five bytes, plus four
709 * bytes for the key count.
710 */
711 PUT_32BIT(p, nkeys);
712 p += 4;
713 for (i = 0; NULL != (key = index234(ssh2keys, i)); i++) {
714 blob = key->alg->public_blob(key->data, &bloblen);
715 PUT_32BIT(p, bloblen);
716 p += 4;
717 memcpy(p, blob, bloblen);
718 p += bloblen;
719 sfree(blob);
720 PUT_32BIT(p, strlen(key->comment));
721 memcpy(p + 4, key->comment, strlen(key->comment));
722 p += 4 + strlen(key->comment);
723 }
724
725 assert(p - ret == len);
726 return ret;
727}
728
729/*
730 * Acquire a keylist1 from the primary Pageant; this means either
731 * calling make_keylist1 (if that's us) or sending a message to the
732 * primary Pageant (if it's not).
733 */
734static void *get_keylist1(void)
735{
736 void *ret;
737
738 if (already_running) {
739 unsigned char request[5], *response;
740 void *vresponse;
741 int resplen;
742 request[4] = SSH1_AGENTC_REQUEST_RSA_IDENTITIES;
743 PUT_32BIT(request, 4);
744
745 agent_query(request, 5, &vresponse, &resplen);
746 response = vresponse;
747 if (resplen < 5 || response[4] != SSH1_AGENT_RSA_IDENTITIES_ANSWER)
748 return NULL;
749
750 ret = smalloc(resplen-5);
751 memcpy(ret, response+5, resplen-5);
752 sfree(response);
753 } else {
754 ret = make_keylist1(NULL);
755 }
756 return ret;
757}
758
759/*
760 * Acquire a keylist2 from the primary Pageant; this means either
761 * calling make_keylist2 (if that's us) or sending a message to the
762 * primary Pageant (if it's not).
763 */
764static void *get_keylist2(void)
765{
766 void *ret;
767
768 if (already_running) {
769 unsigned char request[5], *response;
770 void *vresponse;
771 int resplen;
772
773 request[4] = SSH2_AGENTC_REQUEST_IDENTITIES;
774 PUT_32BIT(request, 4);
775
776 agent_query(request, 5, &vresponse, &resplen);
777 response = vresponse;
778 if (resplen < 5 || response[4] != SSH2_AGENT_IDENTITIES_ANSWER)
779 return NULL;
780
781 ret = smalloc(resplen-5);
782 memcpy(ret, response+5, resplen-5);
783 sfree(response);
784 } else {
785 ret = make_keylist2(NULL);
786 }
787 return ret;
788}
789
790/*
5c58ad2d 791 * This is the main agent function that answers messages.
792 */
32874aea 793static void answer_msg(void *msg)
794{
d70f60ae 795 unsigned char *p = msg;
796 unsigned char *ret = msg;
5c58ad2d 797 int type;
798
5c58ad2d 799 /*
800 * Get the message type.
801 */
802 type = p[4];
803
804 p += 5;
5c58ad2d 805 switch (type) {
45cebe79 806 case SSH1_AGENTC_REQUEST_RSA_IDENTITIES:
32874aea 807 /*
808 * Reply with SSH1_AGENT_RSA_IDENTITIES_ANSWER.
809 */
810 {
3f2d010c 811 int len;
812 void *keylist;
32874aea 813
32874aea 814 ret[4] = SSH1_AGENT_RSA_IDENTITIES_ANSWER;
3f2d010c 815 keylist = make_keylist1(&len);
816 if (len + 5 > AGENT_MAX_MSGLEN) {
817 sfree(keylist);
818 goto failure;
32874aea 819 }
3f2d010c 820 PUT_32BIT(ret, len + 1);
821 memcpy(ret + 5, keylist, len);
822 sfree(keylist);
32874aea 823 }
824 break;
45cebe79 825 case SSH2_AGENTC_REQUEST_IDENTITIES:
32874aea 826 /*
827 * Reply with SSH2_AGENT_IDENTITIES_ANSWER.
828 */
829 {
3f2d010c 830 int len;
831 void *keylist;
32874aea 832
32874aea 833 ret[4] = SSH2_AGENT_IDENTITIES_ANSWER;
3f2d010c 834 keylist = make_keylist2(&len);
835 if (len + 5 > AGENT_MAX_MSGLEN) {
836 sfree(keylist);
837 goto failure;
32874aea 838 }
3f2d010c 839 PUT_32BIT(ret, len + 1);
840 memcpy(ret + 5, keylist, len);
841 sfree(keylist);
32874aea 842 }
843 break;
45cebe79 844 case SSH1_AGENTC_RSA_CHALLENGE:
32874aea 845 /*
846 * Reply with either SSH1_AGENT_RSA_RESPONSE or
847 * SSH_AGENT_FAILURE, depending on whether we have that key
848 * or not.
849 */
850 {
851 struct RSAKey reqkey, *key;
852 Bignum challenge, response;
853 unsigned char response_source[48], response_md5[16];
854 struct MD5Context md5c;
855 int i, len;
856
857 p += 4;
858 p += ssh1_read_bignum(p, &reqkey.exponent);
859 p += ssh1_read_bignum(p, &reqkey.modulus);
860 p += ssh1_read_bignum(p, &challenge);
861 memcpy(response_source + 32, p, 16);
862 p += 16;
863 if (GET_32BIT(p) != 1 ||
864 (key = find234(rsakeys, &reqkey, NULL)) == NULL) {
865 freebn(reqkey.exponent);
866 freebn(reqkey.modulus);
867 freebn(challenge);
868 goto failure;
869 }
870 response = rsadecrypt(challenge, key);
871 for (i = 0; i < 32; i++)
872 response_source[i] = bignum_byte(response, 31 - i);
873
874 MD5Init(&md5c);
875 MD5Update(&md5c, response_source, 48);
876 MD5Final(response_md5, &md5c);
877 memset(response_source, 0, 48); /* burn the evidence */
878 freebn(response); /* and that evidence */
879 freebn(challenge); /* yes, and that evidence */
880 freebn(reqkey.exponent); /* and free some memory ... */
881 freebn(reqkey.modulus); /* ... while we're at it. */
882
883 /*
884 * Packet is the obvious five byte header, plus sixteen
885 * bytes of MD5.
886 */
887 len = 5 + 16;
888 PUT_32BIT(ret, len - 4);
889 ret[4] = SSH1_AGENT_RSA_RESPONSE;
890 memcpy(ret + 5, response_md5, 16);
891 }
892 break;
45cebe79 893 case SSH2_AGENTC_SIGN_REQUEST:
32874aea 894 /*
5c72ca61 895 * Reply with either SSH2_AGENT_SIGN_RESPONSE or
32874aea 896 * SSH_AGENT_FAILURE, depending on whether we have that key
897 * or not.
898 */
45cebe79 899 {
900 struct ssh2_userkey *key;
901 struct blob b;
902 unsigned char *data, *signature;
903 int datalen, siglen, len;
904
905 b.len = GET_32BIT(p);
906 p += 4;
907 b.blob = p;
908 p += b.len;
909 datalen = GET_32BIT(p);
910 p += 4;
911 data = p;
912 key = find234(ssh2keys, &b, cmpkeys_ssh2_asymm);
913 if (!key)
914 goto failure;
915 signature = key->alg->sign(key->data, data, datalen, &siglen);
32874aea 916 len = 5 + 4 + siglen;
917 PUT_32BIT(ret, len - 4);
918 ret[4] = SSH2_AGENT_SIGN_RESPONSE;
919 PUT_32BIT(ret + 5, siglen);
920 memcpy(ret + 5 + 4, signature, siglen);
45cebe79 921 sfree(signature);
922 }
923 break;
924 case SSH1_AGENTC_ADD_RSA_IDENTITY:
32874aea 925 /*
926 * Add to the list and return SSH_AGENT_SUCCESS, or
927 * SSH_AGENT_FAILURE if the key was malformed.
928 */
929 {
930 struct RSAKey *key;
931 char *comment;
080954b8 932 int commentlen;
32874aea 933 key = smalloc(sizeof(struct RSAKey));
28edeffe 934 memset(key, 0, sizeof(struct RSAKey));
32874aea 935 p += makekey(p, key, NULL, 1);
936 p += makeprivate(p, key);
080954b8 937 p += ssh1_read_bignum(p, &key->iqmp); /* p^-1 mod q */
938 p += ssh1_read_bignum(p, &key->p); /* p */
939 p += ssh1_read_bignum(p, &key->q); /* q */
940 commentlen = GET_32BIT(p);
941 comment = smalloc(commentlen+1);
32874aea 942 if (comment) {
080954b8 943 memcpy(comment, p + 4, commentlen);
944 comment[commentlen] = '\0';
32874aea 945 key->comment = comment;
946 }
947 PUT_32BIT(ret, 1);
948 ret[4] = SSH_AGENT_FAILURE;
949 if (add234(rsakeys, key) == key) {
950 keylist_update();
951 ret[4] = SSH_AGENT_SUCCESS;
952 } else {
953 freersakey(key);
954 sfree(key);
955 }
956 }
957 break;
45cebe79 958 case SSH2_AGENTC_ADD_IDENTITY:
32874aea 959 /*
960 * Add to the list and return SSH_AGENT_SUCCESS, or
961 * SSH_AGENT_FAILURE if the key was malformed.
962 */
963 {
964 struct ssh2_userkey *key;
965 char *comment, *alg;
45cebe79 966 int alglen, commlen;
967 int bloblen;
968
969 key = smalloc(sizeof(struct ssh2_userkey));
970
32874aea 971 alglen = GET_32BIT(p);
972 p += 4;
973 alg = p;
974 p += alglen;
45cebe79 975 /* Add further algorithm names here. */
976 if (alglen == 7 && !memcmp(alg, "ssh-rsa", 7))
977 key->alg = &ssh_rsa;
5c72ca61 978 else if (alglen == 7 && !memcmp(alg, "ssh-dss", 7))
979 key->alg = &ssh_dss;
45cebe79 980 else {
981 sfree(key);
982 goto failure;
983 }
984
32874aea 985 bloblen =
986 GET_32BIT((unsigned char *) msg) - (p -
987 (unsigned char *) msg -
988 4);
45cebe79 989 key->data = key->alg->openssh_createkey(&p, &bloblen);
990 if (!key->data) {
991 sfree(key);
992 goto failure;
993 }
32874aea 994 commlen = GET_32BIT(p);
995 p += 4;
45cebe79 996
32874aea 997 comment = smalloc(commlen + 1);
998 if (comment) {
999 memcpy(comment, p, commlen);
45cebe79 1000 comment[commlen] = '\0';
32874aea 1001 }
45cebe79 1002 key->comment = comment;
1003
32874aea 1004 PUT_32BIT(ret, 1);
1005 ret[4] = SSH_AGENT_FAILURE;
1006 if (add234(ssh2keys, key) == key) {
1007 keylist_update();
1008 ret[4] = SSH_AGENT_SUCCESS;
1009 } else {
45cebe79 1010 key->alg->freekey(key->data);
1011 sfree(key->comment);
32874aea 1012 sfree(key);
1013 }
1014 }
1015 break;
45cebe79 1016 case SSH1_AGENTC_REMOVE_RSA_IDENTITY:
32874aea 1017 /*
1018 * Remove from the list and return SSH_AGENT_SUCCESS, or
1019 * perhaps SSH_AGENT_FAILURE if it wasn't in the list to
1020 * start with.
1021 */
1022 {
1023 struct RSAKey reqkey, *key;
1024
1025 p += makekey(p, &reqkey, NULL, 0);
1026 key = find234(rsakeys, &reqkey, NULL);
1027 freebn(reqkey.exponent);
1028 freebn(reqkey.modulus);
1029 PUT_32BIT(ret, 1);
1030 ret[4] = SSH_AGENT_FAILURE;
1031 if (key) {
1032 del234(rsakeys, key);
1033 keylist_update();
1034 freersakey(key);
45cebe79 1035 sfree(key);
32874aea 1036 ret[4] = SSH_AGENT_SUCCESS;
1037 }
1038 }
1039 break;
45cebe79 1040 case SSH2_AGENTC_REMOVE_IDENTITY:
32874aea 1041 /*
1042 * Remove from the list and return SSH_AGENT_SUCCESS, or
1043 * perhaps SSH_AGENT_FAILURE if it wasn't in the list to
1044 * start with.
1045 */
1046 {
1047 struct ssh2_userkey *key;
45cebe79 1048 struct blob b;
1049
1050 b.len = GET_32BIT(p);
1051 p += 4;
1052 b.blob = p;
1053 p += b.len;
1054 key = find234(ssh2keys, &b, cmpkeys_ssh2_asymm);
1055 if (!key)
1056 goto failure;
1057
32874aea 1058 PUT_32BIT(ret, 1);
1059 ret[4] = SSH_AGENT_FAILURE;
1060 if (key) {
1061 del234(ssh2keys, key);
1062 keylist_update();
45cebe79 1063 key->alg->freekey(key->data);
1064 sfree(key);
32874aea 1065 ret[4] = SSH_AGENT_SUCCESS;
1066 }
1067 }
1068 break;
45cebe79 1069 case SSH1_AGENTC_REMOVE_ALL_RSA_IDENTITIES:
32874aea 1070 /*
1071 * Remove all SSH1 keys. Always returns success.
1072 */
1073 {
45cebe79 1074 struct RSAKey *rkey;
45cebe79 1075
32874aea 1076 while ((rkey = index234(rsakeys, 0)) != NULL) {
1077 del234(rsakeys, rkey);
45cebe79 1078 freersakey(rkey);
1079 sfree(rkey);
32874aea 1080 }
45cebe79 1081 keylist_update();
1082
1083 PUT_32BIT(ret, 1);
1084 ret[4] = SSH_AGENT_SUCCESS;
32874aea 1085 }
1086 break;
45cebe79 1087 case SSH2_AGENTC_REMOVE_ALL_IDENTITIES:
32874aea 1088 /*
1089 * Remove all SSH2 keys. Always returns success.
1090 */
1091 {
1092 struct ssh2_userkey *skey;
1093
1094 while ((skey = index234(ssh2keys, 0)) != NULL) {
1095 del234(ssh2keys, skey);
45cebe79 1096 skey->alg->freekey(skey->data);
1097 sfree(skey);
32874aea 1098 }
45cebe79 1099 keylist_update();
1100
1101 PUT_32BIT(ret, 1);
1102 ret[4] = SSH_AGENT_SUCCESS;
32874aea 1103 }
1104 break;
5c58ad2d 1105 default:
32874aea 1106 failure:
1107 /*
1108 * Unrecognised message. Return SSH_AGENT_FAILURE.
1109 */
1110 PUT_32BIT(ret, 1);
1111 ret[4] = SSH_AGENT_FAILURE;
1112 break;
5c58ad2d 1113 }
5c58ad2d 1114}
1115
1116/*
1117 * Key comparison function for the 2-3-4 tree of RSA keys.
1118 */
32874aea 1119static int cmpkeys_rsa(void *av, void *bv)
1120{
1121 struct RSAKey *a = (struct RSAKey *) av;
1122 struct RSAKey *b = (struct RSAKey *) bv;
5c58ad2d 1123 Bignum am, bm;
1124 int alen, blen;
1125
1126 am = a->modulus;
1127 bm = b->modulus;
1128 /*
1129 * Compare by length of moduli.
1130 */
ddecd643 1131 alen = bignum_bitcount(am);
1132 blen = bignum_bitcount(bm);
32874aea 1133 if (alen > blen)
1134 return +1;
1135 else if (alen < blen)
1136 return -1;
5c58ad2d 1137 /*
1138 * Now compare by moduli themselves.
1139 */
32874aea 1140 alen = (alen + 7) / 8; /* byte count */
5c58ad2d 1141 while (alen-- > 0) {
32874aea 1142 int abyte, bbyte;
1143 abyte = bignum_byte(am, alen);
1144 bbyte = bignum_byte(bm, alen);
1145 if (abyte > bbyte)
1146 return +1;
1147 else if (abyte < bbyte)
1148 return -1;
5c58ad2d 1149 }
1150 /*
1151 * Give up.
1152 */
1153 return 0;
1154}
1155
45cebe79 1156/*
1157 * Key comparison function for the 2-3-4 tree of SSH2 keys.
1158 */
32874aea 1159static int cmpkeys_ssh2(void *av, void *bv)
1160{
1161 struct ssh2_userkey *a = (struct ssh2_userkey *) av;
1162 struct ssh2_userkey *b = (struct ssh2_userkey *) bv;
45cebe79 1163 int i;
1164 int alen, blen;
1165 unsigned char *ablob, *bblob;
1166 int c;
32874aea 1167
45cebe79 1168 /*
1169 * Compare purely by public blob.
1170 */
1171 ablob = a->alg->public_blob(a->data, &alen);
1172 bblob = b->alg->public_blob(b->data, &blen);
1173
1174 c = 0;
1175 for (i = 0; i < alen && i < blen; i++) {
1176 if (ablob[i] < bblob[i]) {
32874aea 1177 c = -1;
1178 break;
45cebe79 1179 } else if (ablob[i] > bblob[i]) {
32874aea 1180 c = +1;
1181 break;
45cebe79 1182 }
1183 }
32874aea 1184 if (c == 0 && i < alen)
1185 c = +1; /* a is longer */
1186 if (c == 0 && i < blen)
1187 c = -1; /* a is longer */
45cebe79 1188
1189 sfree(ablob);
1190 sfree(bblob);
1191
1192 return c;
1193}
1194
1195/*
1196 * Key comparison function for looking up a blob in the 2-3-4 tree
1197 * of SSH2 keys.
1198 */
32874aea 1199static int cmpkeys_ssh2_asymm(void *av, void *bv)
1200{
1201 struct blob *a = (struct blob *) av;
1202 struct ssh2_userkey *b = (struct ssh2_userkey *) bv;
45cebe79 1203 int i;
1204 int alen, blen;
1205 unsigned char *ablob, *bblob;
1206 int c;
32874aea 1207
45cebe79 1208 /*
1209 * Compare purely by public blob.
1210 */
1211 ablob = a->blob;
1212 alen = a->len;
1213 bblob = b->alg->public_blob(b->data, &blen);
1214
1215 c = 0;
1216 for (i = 0; i < alen && i < blen; i++) {
1217 if (ablob[i] < bblob[i]) {
32874aea 1218 c = -1;
1219 break;
45cebe79 1220 } else if (ablob[i] > bblob[i]) {
32874aea 1221 c = +1;
1222 break;
45cebe79 1223 }
1224 }
32874aea 1225 if (c == 0 && i < alen)
1226 c = +1; /* a is longer */
1227 if (c == 0 && i < blen)
1228 c = -1; /* a is longer */
45cebe79 1229
1230 sfree(bblob);
1231
1232 return c;
1233}
1234
5c58ad2d 1235/*
ab162329 1236 * Prompt for a key file to add, and add it.
1237 */
32874aea 1238static void prompt_add_keyfile(void)
1239{
ab162329 1240 OPENFILENAME of;
1241 char filename[FILENAME_MAX];
0959acf7 1242 char *filelist = smalloc(8192);
1243 char *filewalker;
1244 int n, dirlen;
1245
ab162329 1246 memset(&of, 0, sizeof(of));
1247#ifdef OPENFILENAME_SIZE_VERSION_400
1248 of.lStructSize = OPENFILENAME_SIZE_VERSION_400;
1249#else
1250 of.lStructSize = sizeof(of);
1251#endif
ecea795f 1252 of.hwndOwner = main_hwnd;
e2210ffc 1253 of.lpstrFilter = "PuTTY Private Key Files\0*.PPK\0AllFiles\0*\0\0\0";
ab162329 1254 of.lpstrCustomFilter = NULL;
1255 of.nFilterIndex = 1;
0959acf7 1256 of.lpstrFile = filelist;
1257 *filelist = '\0';
1258 of.nMaxFile = FILENAME_MAX;
ab162329 1259 of.lpstrFileTitle = NULL;
1260 of.lpstrInitialDir = NULL;
1261 of.lpstrTitle = "Select Private Key File";
0959acf7 1262 of.Flags = OFN_ALLOWMULTISELECT | OFN_EXPLORER;
ab162329 1263 if (GetOpenFileName(&of)) {
0959acf7 1264 if(strlen(filelist) > of.nFileOffset)
1265 /* Only one filename returned? */
1266 add_keyfile(filelist);
1267 else {
1268 /* we are returned a bunch of strings, end to
1269 * end. first string is the directory, the
1270 * rest the filenames. terminated with an
1271 * empty string.
1272 */
1273 filewalker = filelist;
1274 dirlen = strlen(filewalker);
1275 if(dirlen > FILENAME_MAX - 8) return;
1276 memcpy(filename, filewalker, dirlen);
1277
1278 filewalker += dirlen + 1;
1279 filename[dirlen++] = '\\';
1280
1281 /* then go over names one by one */
1282 for(;;) {
1283 n = strlen(filewalker) + 1;
1284 /* end of the list */
1285 if(n == 1)
1286 break;
1287 /* too big, shouldn't happen */
1288 if(n + dirlen > FILENAME_MAX)
1289 break;
1290
1291 memcpy(filename + dirlen, filewalker, n);
1292 filewalker += n;
1293
1294 add_keyfile(filename);
1295 }
1296 }
1297
32874aea 1298 keylist_update();
0959acf7 1299 forget_passphrases();
ab162329 1300 }
0959acf7 1301 sfree(filelist);
ab162329 1302}
1303
1304/*
5c58ad2d 1305 * Dialog-box function for the key list box.
1306 */
1307static int CALLBACK KeyListProc(HWND hwnd, UINT msg,
32874aea 1308 WPARAM wParam, LPARAM lParam)
1309{
45cebe79 1310 struct RSAKey *rkey;
1311 struct ssh2_userkey *skey;
5c58ad2d 1312
1313 switch (msg) {
1314 case WM_INITDIALOG:
45cebe79 1315 /*
1316 * Centre the window.
1317 */
1318 { /* centre the window */
1319 RECT rs, rd;
1320 HWND hw;
1321
1322 hw = GetDesktopWindow();
32874aea 1323 if (GetWindowRect(hw, &rs) && GetWindowRect(hwnd, &rd))
1324 MoveWindow(hwnd,
1325 (rs.right + rs.left + rd.left - rd.right) / 2,
1326 (rs.bottom + rs.top + rd.top - rd.bottom) / 2,
1327 rd.right - rd.left, rd.bottom - rd.top, TRUE);
45cebe79 1328 }
1329
ecea795f 1330 if (help_path)
1331 SetWindowLong(hwnd, GWL_EXSTYLE,
1332 GetWindowLong(hwnd, GWL_EXSTYLE) | WS_EX_CONTEXTHELP);
1333 else {
1334 HWND item = GetDlgItem(hwnd, 103); /* the Help button */
1335 if (item)
1336 DestroyWindow(item);
1337 }
1338 requested_help = FALSE;
1339
32874aea 1340 keylist = hwnd;
1c2a93c4 1341 {
32874aea 1342 static int tabs[] = { 35, 60, 210 };
1343 SendDlgItemMessage(hwnd, 100, LB_SETTABSTOPS,
1344 sizeof(tabs) / sizeof(*tabs),
1345 (LPARAM) tabs);
1c2a93c4 1346 }
32874aea 1347 keylist_update();
1348 return 0;
5c58ad2d 1349 case WM_COMMAND:
1350 switch (LOWORD(wParam)) {
1351 case IDOK:
1352 case IDCANCEL:
32874aea 1353 keylist = NULL;
1354 DestroyWindow(hwnd);
1355 return 0;
1356 case 101: /* add key */
5c58ad2d 1357 if (HIWORD(wParam) == BN_CLICKED ||
1358 HIWORD(wParam) == BN_DOUBLECLICKED) {
cb5ca813 1359 if (passphrase_box) {
1360 MessageBeep(MB_ICONERROR);
1361 SetForegroundWindow(passphrase_box);
1362 break;
1363 }
32874aea 1364 prompt_add_keyfile();
1365 }
1366 return 0;
1367 case 102: /* remove key */
5c58ad2d 1368 if (HIWORD(wParam) == BN_CLICKED ||
1369 HIWORD(wParam) == BN_DOUBLECLICKED) {
d2371c81 1370 int i;
0959acf7 1371 int rCount, sCount;
1372 int *selectedArray;
1373
1374 /* our counter within the array of selected items */
1375 int itemNum;
1376
1377 /* get the number of items selected in the list */
1378 int numSelected =
1379 SendDlgItemMessage(hwnd, 100, LB_GETSELCOUNT, 0, 0);
1380
1381 /* none selected? that was silly */
1382 if (numSelected == 0) {
5c58ad2d 1383 MessageBeep(0);
1384 break;
1385 }
0959acf7 1386
1387 /* get item indices in an array */
1388 selectedArray = smalloc(numSelected * sizeof(int));
1389 SendDlgItemMessage(hwnd, 100, LB_GETSELITEMS,
1390 numSelected, (WPARAM)selectedArray);
1391
1392 itemNum = numSelected - 1;
1393 rCount = count234(rsakeys);
1394 sCount = count234(ssh2keys);
1395
1396 /* go through the non-rsakeys until we've covered them all,
1397 * and/or we're out of selected items to check. note that
1398 * we go *backwards*, to avoid complications from deleting
1399 * things hence altering the offset of subsequent items
1400 */
1401 for (i = sCount - 1; (itemNum >= 0) && (i >= 0); i--) {
1402 skey = index234(ssh2keys, i);
1403
1404 if (selectedArray[itemNum] == rCount + i) {
1405 del234(ssh2keys, skey);
1406 skey->alg->freekey(skey->data);
1407 sfree(skey);
1408 itemNum--;
1409 }
45cebe79 1410 }
0959acf7 1411
1412 /* do the same for the rsa keys */
1413 for (i = rCount - 1; (itemNum >= 0) && (i >= 0); i--) {
1414 rkey = index234(rsakeys, i);
1415
1416 if(selectedArray[itemNum] == i) {
1417 del234(rsakeys, rkey);
1418 freersakey(rkey);
1419 sfree(rkey);
1420 itemNum--;
1421 }
1422 }
1423
1424 sfree(selectedArray);
32874aea 1425 keylist_update();
1426 }
1427 return 0;
ecea795f 1428 case 103: /* help */
1429 if (HIWORD(wParam) == BN_CLICKED ||
1430 HIWORD(wParam) == BN_DOUBLECLICKED) {
1431 if (help_path) {
1432 WinHelp(main_hwnd, help_path, HELP_COMMAND,
1433 (DWORD)"JI(`',`pageant.general')");
1434 requested_help = TRUE;
1435 }
1436 }
1437 return 0;
5c58ad2d 1438 }
1439 return 0;
ecea795f 1440 case WM_HELP:
1441 if (help_path) {
1442 int id = ((LPHELPINFO)lParam)->iCtrlId;
1443 char *cmd = NULL;
1444 switch (id) {
1445 case 100: cmd = "JI(`',`pageant.keylist')"; break;
1446 case 101: cmd = "JI(`',`pageant.addkey')"; break;
1447 case 102: cmd = "JI(`',`pageant.remkey')"; break;
1448 }
1449 if (cmd) {
1450 WinHelp(main_hwnd, help_path, HELP_COMMAND, (DWORD)cmd);
1451 requested_help = TRUE;
1452 } else {
1453 MessageBeep(0);
1454 }
1455 }
1456 break;
5c58ad2d 1457 case WM_CLOSE:
32874aea 1458 keylist = NULL;
1459 DestroyWindow(hwnd);
5c58ad2d 1460 return 0;
1461 }
1462 return 0;
1463}
1464
15ad2e8a 1465/* Set up a system tray icon */
1466static BOOL AddTrayIcon(HWND hwnd)
1467{
1468 BOOL res;
1469 NOTIFYICONDATA tnid;
1470 HICON hicon;
1471
1472#ifdef NIM_SETVERSION
1473 tnid.uVersion = 0;
1474 res = Shell_NotifyIcon(NIM_SETVERSION, &tnid);
1475#endif
1476
1477 tnid.cbSize = sizeof(NOTIFYICONDATA);
1478 tnid.hWnd = hwnd;
1479 tnid.uID = 1; /* unique within this systray use */
1480 tnid.uFlags = NIF_MESSAGE | NIF_ICON | NIF_TIP;
1481 tnid.uCallbackMessage = WM_SYSTRAY;
1482 tnid.hIcon = hicon = LoadIcon(instance, MAKEINTRESOURCE(201));
1483 strcpy(tnid.szTip, "Pageant (PuTTY authentication agent)");
1484
1485 res = Shell_NotifyIcon(NIM_ADD, &tnid);
1486
1487 if (hicon) DestroyIcon(hicon);
1488
1489 return res;
1490}
1491
76b51e35 1492/* Update the saved-sessions menu. */
1493static void update_sessions(void)
1494{
1495 int num_entries;
1496 HKEY hkey;
1497 TCHAR buf[MAX_PATH + 1];
1498 MENUITEMINFO mii;
1499
1500 int index_key, index_menu;
1501
1502 if (!putty_path)
1503 return;
1504
1505 if(ERROR_SUCCESS != RegOpenKey(HKEY_CURRENT_USER, PUTTY_REGKEY, &hkey))
1506 return;
1507
1508 for(num_entries = GetMenuItemCount(session_menu);
1509 num_entries > initial_menuitems_count;
1510 num_entries--)
1511 RemoveMenu(session_menu, 0, MF_BYPOSITION);
1512
1513 index_key = 0;
1514 index_menu = 0;
1515
1516 while(ERROR_SUCCESS == RegEnumKey(hkey, index_key, buf, MAX_PATH)) {
1517 TCHAR session_name[MAX_PATH + 1];
1518 unmungestr(buf, session_name, MAX_PATH);
1519 if(strcmp(buf, PUTTY_DEFAULT) != 0) {
1520 memset(&mii, 0, sizeof(mii));
1521 mii.cbSize = sizeof(mii);
1522 mii.fMask = MIIM_TYPE | MIIM_STATE | MIIM_ID;
1523 mii.fType = MFT_STRING;
1524 mii.fState = MFS_ENABLED;
1525 mii.wID = (index_menu * 16) + IDM_SESSIONS_BASE;
1526 mii.dwTypeData = session_name;
1527 InsertMenuItem(session_menu, index_menu, TRUE, &mii);
1528 index_menu++;
1529 }
1530 index_key++;
1531 }
1532
1533 RegCloseKey(hkey);
1534
1535 if(index_menu == 0) {
1536 mii.cbSize = sizeof(mii);
1537 mii.fMask = MIIM_TYPE | MIIM_STATE;
1538 mii.fType = MFT_STRING;
1539 mii.fState = MFS_GRAYED;
1540 mii.dwTypeData = _T("(No sessions)");
1541 InsertMenuItem(session_menu, index_menu, TRUE, &mii);
1542 }
1543}
1544
32874aea 1545static LRESULT CALLBACK WndProc(HWND hwnd, UINT message,
1546 WPARAM wParam, LPARAM lParam)
1547{
5c58ad2d 1548 int ret;
1549 static int menuinprogress;
15ad2e8a 1550 static UINT msgTaskbarCreated = 0;
5c58ad2d 1551
1552 switch (message) {
15ad2e8a 1553 case WM_CREATE:
1554 msgTaskbarCreated = RegisterWindowMessage(_T("TaskbarCreated"));
1555 break;
1556 default:
1557 if (message==msgTaskbarCreated) {
8e3a513c 1558 /*
1559 * Explorer has been restarted, so the tray icon will
1560 * have been lost.
1561 */
1562 AddTrayIcon(hwnd);
15ad2e8a 1563 }
1564 break;
1565
5c58ad2d 1566 case WM_SYSTRAY:
32874aea 1567 if (lParam == WM_RBUTTONUP) {
1568 POINT cursorpos;
1569 GetCursorPos(&cursorpos);
1570 PostMessage(hwnd, WM_SYSTRAY2, cursorpos.x, cursorpos.y);
1571 } else if (lParam == WM_LBUTTONDBLCLK) {
1572 /* Equivalent to IDM_VIEWKEYS. */
1573 PostMessage(hwnd, WM_COMMAND, IDM_VIEWKEYS, 0);
1574 }
1575 break;
5c58ad2d 1576 case WM_SYSTRAY2:
32874aea 1577 if (!menuinprogress) {
1578 menuinprogress = 1;
76b51e35 1579 update_sessions();
32874aea 1580 SetForegroundWindow(hwnd);
1581 ret = TrackPopupMenu(systray_menu,
1582 TPM_RIGHTALIGN | TPM_BOTTOMALIGN |
1583 TPM_RIGHTBUTTON,
1584 wParam, lParam, 0, hwnd, NULL);
1585 menuinprogress = 0;
1586 }
1587 break;
5c58ad2d 1588 case WM_COMMAND:
1589 case WM_SYSCOMMAND:
1590 switch (wParam & ~0xF) { /* low 4 bits reserved to Windows */
76b51e35 1591 case IDM_PUTTY:
1592 if((int)ShellExecute(hwnd, NULL, putty_path, _T(""), _T(""),
1593 SW_SHOW) <= 32) {
1594 MessageBox(NULL, "Unable to execute PuTTY!",
1595 "Error", MB_OK | MB_ICONERROR);
1596 }
1597 break;
32874aea 1598 case IDM_CLOSE:
cb5ca813 1599 if (passphrase_box)
1600 SendMessage(passphrase_box, WM_CLOSE, 0, 0);
32874aea 1601 SendMessage(hwnd, WM_CLOSE, 0, 0);
1602 break;
1603 case IDM_VIEWKEYS:
1604 if (!keylist) {
1605 keylist = CreateDialog(instance, MAKEINTRESOURCE(211),
1606 NULL, KeyListProc);
1607 ShowWindow(keylist, SW_SHOWNORMAL);
32874aea 1608 }
afb2076d 1609 /*
1610 * Sometimes the window comes up minimised / hidden for
1611 * no obvious reason. Prevent this. This also brings it
1612 * to the front if it's already present (the user
1613 * selected View Keys because they wanted to _see_ the
1614 * thing).
1615 */
1616 SetForegroundWindow(keylist);
1617 SetWindowPos(keylist, HWND_TOP, 0, 0, 0, 0,
1618 SWP_NOMOVE | SWP_NOSIZE | SWP_SHOWWINDOW);
32874aea 1619 break;
1620 case IDM_ADDKEY:
cb5ca813 1621 if (passphrase_box) {
1622 MessageBeep(MB_ICONERROR);
1623 SetForegroundWindow(passphrase_box);
1624 break;
1625 }
32874aea 1626 prompt_add_keyfile();
1627 break;
1628 case IDM_ABOUT:
1629 if (!aboutbox) {
1630 aboutbox = CreateDialog(instance, MAKEINTRESOURCE(213),
1631 NULL, AboutProc);
1632 ShowWindow(aboutbox, SW_SHOWNORMAL);
1633 /*
1634 * Sometimes the window comes up minimised / hidden
1635 * for no obvious reason. Prevent this.
1636 */
1637 SetForegroundWindow(aboutbox);
1638 SetWindowPos(aboutbox, HWND_TOP, 0, 0, 0, 0,
1639 SWP_NOMOVE | SWP_NOSIZE | SWP_SHOWWINDOW);
1640 }
1641 break;
ecea795f 1642 case IDM_HELP:
1643 if (help_path) {
1644 WinHelp(main_hwnd, help_path, HELP_COMMAND,
1645 (DWORD)"JI(`',`pageant.general')");
1646 requested_help = TRUE;
1647 }
1648 break;
76b51e35 1649 default:
1650 {
1651 if(wParam >= IDM_SESSIONS_BASE && wParam <= IDM_SESSIONS_MAX) {
1652 MENUITEMINFO mii;
1653 TCHAR buf[MAX_PATH + 1];
1654 TCHAR param[MAX_PATH + 1];
1655 memset(&mii, 0, sizeof(mii));
1656 mii.cbSize = sizeof(mii);
1657 mii.fMask = MIIM_TYPE;
1658 mii.cch = MAX_PATH;
1659 mii.dwTypeData = buf;
1660 GetMenuItemInfo(session_menu, wParam, FALSE, &mii);
1661 strcpy(param, "@");
1662 strcat(param, mii.dwTypeData);
1663 if((int)ShellExecute(hwnd, NULL, putty_path, param,
1664 _T(""), SW_SHOW) <= 32) {
1665 MessageBox(NULL, "Unable to execute PuTTY!", "Error",
1666 MB_OK | MB_ICONERROR);
1667 }
1668 }
1669 }
1670 break;
32874aea 1671 }
1672 break;
5c58ad2d 1673 case WM_DESTROY:
ecea795f 1674 if (requested_help) {
1675 WinHelp(main_hwnd, help_path, HELP_QUIT, 0);
1676 requested_help = FALSE;
1677 }
32874aea 1678 PostQuitMessage(0);
5c58ad2d 1679 return 0;
1680 case WM_COPYDATA:
32874aea 1681 {
1682 COPYDATASTRUCT *cds;
1683 char *mapname;
1684 void *p;
2d466ffd 1685 HANDLE filemap;
1686#ifndef NO_SECURITY
1687 HANDLE proc;
32874aea 1688 PSID mapowner, procowner;
1689 PSECURITY_DESCRIPTOR psd1 = NULL, psd2 = NULL;
2d466ffd 1690#endif
32874aea 1691 int ret = 0;
1692
1693 cds = (COPYDATASTRUCT *) lParam;
1694 if (cds->dwData != AGENT_COPYDATA_ID)
1695 return 0; /* not our message, mate */
1696 mapname = (char *) cds->lpData;
1697 if (mapname[cds->cbData - 1] != '\0')
1698 return 0; /* failure to be ASCIZ! */
d70f60ae 1699#ifdef DEBUG_IPC
32874aea 1700 debug(("mapname is :%s:\n", mapname));
d70f60ae 1701#endif
32874aea 1702 filemap = OpenFileMapping(FILE_MAP_ALL_ACCESS, FALSE, mapname);
d70f60ae 1703#ifdef DEBUG_IPC
32874aea 1704 debug(("filemap is %p\n", filemap));
d70f60ae 1705#endif
32874aea 1706 if (filemap != NULL && filemap != INVALID_HANDLE_VALUE) {
123bc6ea 1707#ifndef NO_SECURITY
2d466ffd 1708 int rc;
32874aea 1709 if (has_security) {
1710 if ((proc = OpenProcess(MAXIMUM_ALLOWED, FALSE,
1711 GetCurrentProcessId())) ==
1712 NULL) {
d70f60ae 1713#ifdef DEBUG_IPC
32874aea 1714 debug(("couldn't get handle for process\n"));
d70f60ae 1715#endif
32874aea 1716 return 0;
1717 }
1718 if (getsecurityinfo(proc, SE_KERNEL_OBJECT,
1719 OWNER_SECURITY_INFORMATION,
1720 &procowner, NULL, NULL, NULL,
1721 &psd2) != ERROR_SUCCESS) {
d70f60ae 1722#ifdef DEBUG_IPC
32874aea 1723 debug(("couldn't get owner info for process\n"));
d70f60ae 1724#endif
32874aea 1725 CloseHandle(proc);
1726 return 0; /* unable to get security info */
1727 }
1728 CloseHandle(proc);
1729 if ((rc = getsecurityinfo(filemap, SE_KERNEL_OBJECT,
1730 OWNER_SECURITY_INFORMATION,
1731 &mapowner, NULL, NULL, NULL,
1732 &psd1) != ERROR_SUCCESS)) {
d70f60ae 1733#ifdef DEBUG_IPC
32874aea 1734 debug(
1735 ("couldn't get owner info for filemap: %d\n",
1736 rc));
d70f60ae 1737#endif
32874aea 1738 return 0;
1739 }
016ef8ab 1740#ifdef DEBUG_IPC
32874aea 1741 debug(("got security stuff\n"));
016ef8ab 1742#endif
32874aea 1743 if (!EqualSid(mapowner, procowner))
1744 return 0; /* security ID mismatch! */
d70f60ae 1745#ifdef DEBUG_IPC
32874aea 1746 debug(("security stuff matched\n"));
d70f60ae 1747#endif
32874aea 1748 LocalFree(psd1);
1749 LocalFree(psd2);
1750 } else {
d70f60ae 1751#ifdef DEBUG_IPC
32874aea 1752 debug(("security APIs not present\n"));
d70f60ae 1753#endif
32874aea 1754 }
123bc6ea 1755#endif
32874aea 1756 p = MapViewOfFile(filemap, FILE_MAP_WRITE, 0, 0, 0);
d70f60ae 1757#ifdef DEBUG_IPC
32874aea 1758 debug(("p is %p\n", p));
1759 {
1760 int i;
1761 for (i = 0; i < 5; i++)
1762 debug(
1763 ("p[%d]=%02x\n", i,
1764 ((unsigned char *) p)[i]));}
d70f60ae 1765#endif
32874aea 1766 answer_msg(p);
1767 ret = 1;
1768 UnmapViewOfFile(p);
1769 }
1770 CloseHandle(filemap);
1771 return ret;
1772 }
5c58ad2d 1773 }
1774
32874aea 1775 return DefWindowProc(hwnd, message, wParam, lParam);
5c58ad2d 1776}
1777
ddecd643 1778/*
1779 * Fork and Exec the command in cmdline. [DBW]
1780 */
2c975497 1781void spawn_cmd(char *cmdline, char * args, int show)
32874aea 1782{
ddecd643 1783 if (ShellExecute(NULL, _T("open"), cmdline,
2c975497 1784 args, NULL, show) <= (HINSTANCE) 32) {
57356d63 1785 char *msg;
1786 msg = dupprintf("Failed to run \"%.100s\", Error: %d", cmdline,
1787 (int)GetLastError());
1788 MessageBox(NULL, msg, APPNAME, MB_OK | MB_ICONEXCLAMATION);
1789 sfree(msg);
ddecd643 1790 }
1791}
1792
93b581bd 1793void cleanup_exit(int code) { exit(code); }
1794
32874aea 1795int WINAPI WinMain(HINSTANCE inst, HINSTANCE prev, LPSTR cmdline, int show)
1796{
5c58ad2d 1797 WNDCLASS wndclass;
5c58ad2d 1798 MSG msg;
016ef8ab 1799 OSVERSIONINFO osi;
1800 HMODULE advapi;
ddecd643 1801 char *command = NULL;
1802 int added_keys = 0;
d3a1a808 1803 int argc, i;
1804 char **argv, **argstart;
016ef8ab 1805
1806 /*
1807 * Determine whether we're an NT system (should have security
1808 * APIs) or a non-NT system (don't do security).
1809 */
1810 memset(&osi, 0, sizeof(OSVERSIONINFO));
1811 osi.dwOSVersionInfoSize = sizeof(OSVERSIONINFO);
32874aea 1812 if (GetVersionEx(&osi) && osi.dwPlatformId == VER_PLATFORM_WIN32_NT) {
1813 has_security = TRUE;
016ef8ab 1814 } else
32874aea 1815 has_security = FALSE;
016ef8ab 1816
1817 if (has_security) {
123bc6ea 1818#ifndef NO_SECURITY
32874aea 1819 /*
1820 * Attempt to get the security API we need.
1821 */
1822 advapi = LoadLibrary("ADVAPI32.DLL");
1823 getsecurityinfo =
1824 (gsi_fn_t) GetProcAddress(advapi, "GetSecurityInfo");
1825 if (!getsecurityinfo) {
1826 MessageBox(NULL,
1827 "Unable to access security APIs. Pageant will\n"
1828 "not run, in case it causes a security breach.",
1829 "Pageant Fatal Error", MB_ICONERROR | MB_OK);
1830 return 1;
1831 }
123bc6ea 1832#else
1833 MessageBox(NULL,
1834 "This program has been compiled for Win9X and will\n"
1835 "not run on NT, in case it causes a security breach.",
1836 "Pageant Fatal Error", MB_ICONERROR | MB_OK);
1837 return 1;
1838#endif
016ef8ab 1839 } else
32874aea 1840 advapi = NULL;
5c58ad2d 1841
1842 instance = inst;
1843
ddecd643 1844 /*
ecea795f 1845 * See if we can find our Help file.
1846 */
1847 {
1848 char b[2048], *p, *q, *r;
1849 FILE *fp;
1850 GetModuleFileName(NULL, b, sizeof(b) - 1);
1851 r = b;
1852 p = strrchr(b, '\\');
1853 if (p && p >= r) r = p+1;
1854 q = strrchr(b, ':');
1855 if (q && q >= r) r = q+1;
1856 strcpy(r, "putty.hlp");
1857 if ( (fp = fopen(b, "r")) != NULL) {
1858 help_path = dupstr(b);
1859 fclose(fp);
1860 } else
1861 help_path = NULL;
1862 }
1863
1864 /*
76b51e35 1865 * Look for the PuTTY binary (we will enable the saved session
1866 * submenu if we find it).
1867 */
1868 {
1869 char b[2048], *p, *q, *r;
1870 FILE *fp;
1871 GetModuleFileName(NULL, b, sizeof(b) - 1);
1872 r = b;
1873 p = strrchr(b, '\\');
1874 if (p && p >= r) r = p+1;
1875 q = strrchr(b, ':');
1876 if (q && q >= r) r = q+1;
1877 strcpy(r, "putty.exe");
1878 if ( (fp = fopen(b, "r")) != NULL) {
1879 putty_path = dupstr(b);
1880 fclose(fp);
1881 } else
1882 putty_path = NULL;
1883 }
1884
1885 /*
ddecd643 1886 * Find out if Pageant is already running.
1887 */
1888 already_running = FALSE;
260f3dec 1889 if (agent_exists())
ddecd643 1890 already_running = TRUE;
1891 else {
1892
1893 if (!prev) {
32874aea 1894 wndclass.style = 0;
1895 wndclass.lpfnWndProc = WndProc;
1896 wndclass.cbClsExtra = 0;
1897 wndclass.cbWndExtra = 0;
1898 wndclass.hInstance = inst;
1899 wndclass.hIcon = LoadIcon(inst, MAKEINTRESOURCE(IDI_MAINICON));
1900 wndclass.hCursor = LoadCursor(NULL, IDC_IBEAM);
1901 wndclass.hbrBackground = GetStockObject(BLACK_BRUSH);
1902 wndclass.lpszMenuName = NULL;
ddecd643 1903 wndclass.lpszClassName = APPNAME;
1904
32874aea 1905 RegisterClass(&wndclass);
ddecd643 1906 }
5c58ad2d 1907
ecea795f 1908 main_hwnd = keylist = NULL;
5c58ad2d 1909
ecea795f 1910 main_hwnd = CreateWindow(APPNAME, APPNAME,
1911 WS_OVERLAPPEDWINDOW | WS_VSCROLL,
1912 CW_USEDEFAULT, CW_USEDEFAULT,
1913 100, 100, NULL, NULL, inst, NULL);
5c58ad2d 1914
ddecd643 1915 /* Set up a system tray icon */
ecea795f 1916 AddTrayIcon(main_hwnd);
15ad2e8a 1917
76b51e35 1918 /* Accelerators used: nsvkxa */
15ad2e8a 1919 systray_menu = CreatePopupMenu();
76b51e35 1920 if (putty_path) {
1921 session_menu = CreateMenu();
1922 AppendMenu(systray_menu, MF_ENABLED, IDM_PUTTY, "&New Session");
1923 AppendMenu(systray_menu, MF_POPUP | MF_ENABLED,
1924 (UINT) session_menu, "&Saved Sessions");
1925 AppendMenu(systray_menu, MF_SEPARATOR, 0, 0);
1926 }
15ad2e8a 1927 AppendMenu(systray_menu, MF_ENABLED, IDM_VIEWKEYS,
1928 "&View Keys");
1929 AppendMenu(systray_menu, MF_ENABLED, IDM_ADDKEY, "Add &Key");
ecea795f 1930 AppendMenu(systray_menu, MF_SEPARATOR, 0, 0);
1931 if (help_path)
1932 AppendMenu(systray_menu, MF_ENABLED, IDM_HELP, "&Help");
15ad2e8a 1933 AppendMenu(systray_menu, MF_ENABLED, IDM_ABOUT, "&About");
ecea795f 1934 AppendMenu(systray_menu, MF_SEPARATOR, 0, 0);
15ad2e8a 1935 AppendMenu(systray_menu, MF_ENABLED, IDM_CLOSE, "E&xit");
76b51e35 1936 initial_menuitems_count = GetMenuItemCount(session_menu);
5c58ad2d 1937
ecea795f 1938 ShowWindow(main_hwnd, SW_HIDE);
5c58ad2d 1939
ddecd643 1940 /*
1941 * Initialise storage for RSA keys.
1942 */
1943 rsakeys = newtree234(cmpkeys_rsa);
1944 ssh2keys = newtree234(cmpkeys_ssh2);
1945
1946 }
dacbd0e8 1947
1948 /*
0959acf7 1949 * Initialise storage for short-term passphrase cache.
1950 */
1951 passphrases = newtree234(NULL);
1952
1953 /*
45cebe79 1954 * Process the command line and add keys as listed on it.
5c58ad2d 1955 */
d3a1a808 1956 split_into_argv(cmdline, &argc, &argv, &argstart);
1957 for (i = 0; i < argc; i++) {
1958 if (!strcmp(argv[i], "-c")) {
1959 /*
1960 * If we see `-c', then the rest of the
1961 * command line should be treated as a
1962 * command to be spawned.
1963 */
1964 if (i < argc-1)
1965 command = argstart[i+1];
1966 else
1967 command = "";
1968 break;
1969 } else {
1970 add_keyfile(argv[i]);
1971 added_keys = TRUE;
32874aea 1972 }
5c58ad2d 1973 }
1974
0959acf7 1975 /*
1976 * Forget any passphrase that we retained while going over
1977 * command line keyfiles.
1978 */
1979 forget_passphrases();
1980
2c975497 1981 if (command) {
1982 char *args;
1983 if (command[0] == '"')
1984 args = strchr(++command, '"');
1985 else
1986 args = strchr(command, ' ');
1987 if (args) {
1988 *args++ = 0;
1989 while(*args && isspace(*args)) args++;
1990 }
1991 spawn_cmd(command, args, show);
1992 }
ddecd643 1993
1994 /*
1995 * If Pageant was already running, we leave now. If we haven't
1996 * even taken any auxiliary action (spawned a command or added
1997 * keys), complain.
1998 */
1999 if (already_running) {
2000 if (!command && !added_keys) {
2001 MessageBox(NULL, "Pageant is already running", "Pageant Error",
2002 MB_ICONERROR | MB_OK);
2003 }
32874aea 2004 if (advapi)
2005 FreeLibrary(advapi);
2006 return 0;
ddecd643 2007 }
2008
5c58ad2d 2009 /*
dacbd0e8 2010 * Main message loop.
5c58ad2d 2011 */
5c58ad2d 2012 while (GetMessage(&msg, NULL, 0, 0) == 1) {
6de8ca59 2013 if (!(IsWindow(keylist) && IsDialogMessage(keylist, &msg)) &&
2014 !(IsWindow(aboutbox) && IsDialogMessage(aboutbox, &msg))) {
2015 TranslateMessage(&msg);
2016 DispatchMessage(&msg);
2017 }
5c58ad2d 2018 }
2019
2020 /* Clean up the system tray icon */
2021 {
32874aea 2022 NOTIFYICONDATA tnid;
5c58ad2d 2023
32874aea 2024 tnid.cbSize = sizeof(NOTIFYICONDATA);
ecea795f 2025 tnid.hWnd = main_hwnd;
32874aea 2026 tnid.uID = 1;
5c58ad2d 2027
32874aea 2028 Shell_NotifyIcon(NIM_DELETE, &tnid);
5c58ad2d 2029
32874aea 2030 DestroyMenu(systray_menu);
5c58ad2d 2031 }
2032
32874aea 2033 if (advapi)
2034 FreeLibrary(advapi);
76b51e35 2035 return msg.wParam;
5c58ad2d 2036}
Local modifications for Simon Tatham's `PuTTY' SSH client and terminal emulator