WIP: Add prompt implementation for service methods lock & unlock

[warusadura]

Please see the commits.

[bilelmoussaoui]

also needs a rebase

[bilelmoussaoui]

what is inefficient about it

[bilelmoussaoui]

The prompt also needs a way to pass it a future that would be executed when the prompt is done

[warusadura]

Thanks for the prompt review @bilelmoussaoui

[bilelmoussaoui]

This lacks an openssl implementation as well as that is what most distros will likely use the daemon with

[warusadura]

Will do, thanks!

[warusadura]

Sorry for the delay @bilelmoussaoui

I have removed the prompt implementation for now. Just wanted get the crypto part and secret_exchange impl cleared before moving into the Prompt impl. I have removed a lot of unwraps, but I'm still not sure this is any good. Very much like to hear what you think of the current impl :)

[bilelmoussaoui]

I am still not sure how the SecretExchange is supposed to be used. The current API, even if used internally only, is not really nice. why there is a need for a SecretExchange struct at all? who would call begin/create_shared_secret? and what about retrieve_secret? I would need to see how it is used in a real-case scenario to provide any meaningful feedback

[warusadura]

Yeah, thanks!

[bilelmoussaoui]

You should create a PrompterProxy here and keepe it around for the functions below.

[warusadura]

Good idea. But I can't access self inside tokio::spawn. All these following functions are associated functions.

[bilelmoussaoui]

Instead of passing the objects, this should pass a future directly that you can spawn here. Keeping the logic that is supposed to be in Service::set_locked, stay there.

[bilelmoussaoui]

If there would always be one single prompt (which i don't believe is true, except for maybe GNOME specifically) as the API clearly allows modal keyring dialogs so every app could have an ongoing prompt operation.

[bilelmoussaoui]

why is this needed?

[bilelmoussaoui]

Not sure why this has to be in PrompterCallback,

[bilelmoussaoui]

Shouldn't most of the prompting code be exactly the same no matter the PromptRole? the only thing that i see being different is the Properties and the future to execute once the prompt is done

[warusadura]

I think this is correct. I have just pushed the unlock commit (wip) and the code looks mostly the same with a couple of changes.

[warusadura]

With this approach, during the second PromptReady call return I'm getting the following error, Unexpected non-0 padding byte 1. I can't figure out why. I think this is related to this. Then again all the fields here are properly renamed using #[zvariant(rename = "")

[bilelmoussaoui]

Check what gets send over the bus with busctl and see what is going on? Probably a mismatched type

[warusadura]

Will do, thanks.

[warusadura]

I tried everything I can think of. I think this is happening due to a bug in zbus. Probably related to zbus issues #1193 and #320.

[bilelmoussaoui]

Can you write a minimal reproducer of the issue? I am using the exact same thing in ashpd and it works fine.

[bilelmoussaoui]

Can you confirm this is caused by the properties and not the the reply param of PromptReady?

[warusadura]

Sorry I missed the notification.

Yes I'm 100% certain this is caused by Properties struct. Everything works with the HashMap<&str, zvariant::OwnedValue> approach.

git diff:

diff --git a/server/src/gnome/prompter.rs b/server/src/gnome/prompter.rs
index a139fba..b4104e5 100644
--- a/server/src/gnome/prompter.rs
+++ b/server/src/gnome/prompter.rs
@@ -1,11 +1,13 @@
 // org.gnome.keyring.Prompter
 // https://gitlab.gnome.org/GNOME/gcr/-/blob/main/gcr/org.gnome.keyring.Prompter.xml
 
+use std::collections::HashMap;
+
 use clap::error::Result;
 use oo7::dbus::ServiceError;
 use serde::{Deserialize, Serialize};
 use zbus::{
-    interface, proxy,
+    interface, proxy, zvariant,
     zvariant::{DeserializeDict, OwnedObjectPath, OwnedValue, SerializeDict, Type, Value},
 };
 
@@ -138,7 +140,7 @@ pub trait Prompter {
         &self,
         callback: OwnedObjectPath,
         type_: PromptType,
-        properties: Properties,
+        properties: HashMap<&str, OwnedValue>,
         exchange: &str,
     ) -> Result<(), ServiceError>;
 
@@ -157,7 +159,7 @@ impl PrompterCallback {
     pub async fn prompt_ready(
         &self,
         reply: Reply,
-        _properties: Properties,
+        _properties: HashMap<&str, OwnedValue>,
         exchange: &str,
         #[zbus(connection)] connection: &zbus::Connection,
     ) -> Result<(), ServiceError> {
@@ -181,6 +183,21 @@ impl PrompterCallback {
                         })?;
                         let exchange = secret_exchange.begin();
 
+                        let mut p: HashMap<&str, zvariant::OwnedValue> = HashMap::new();
+                        p.insert("continue-label", Value::new("Lock").try_to_owned().unwrap());
+                        p.insert(
+                            "description",
+                            Value::new("Confirm locking \"login\", Keyring.")
+                                .try_to_owned()
+                                .unwrap(),
+                        );
+                        p.insert(
+                            "message",
+                            Value::new("Lock Keyring").try_to_owned().unwrap(),
+                        );
+                        p.insert("caller-window", Value::new("").try_to_owned().unwrap());
+                        p.insert("cancel-label", Value::new("Cancel").try_to_owned().unwrap());
+
                         let properties = Properties::for_lock();
                         let path = self.path.clone();
 
@@ -188,7 +205,7 @@ impl PrompterCallback {
                             connection.clone(),
                             path,
                             PromptType::Confirm,
-                            properties,
+                            p,
                             exchange,
                         ));
                     }
@@ -261,6 +278,8 @@ impl PrompterCallback {
                                 })?;
                         self.service.set_secret_exchange_key(aes_key).await;
 
+                        let p: HashMap<&str, zvariant::OwnedValue> = HashMap::new();
+
                         let properties = Properties::for_unlock();
                         let path = self.path.clone();
 
@@ -268,7 +287,7 @@ impl PrompterCallback {
                             connection.clone(),
                             path,
                             PromptType::Confirm,
-                            properties,
+                            p,
                             daemon_exchange,
                         ));
                     }
@@ -373,7 +392,7 @@ impl PrompterCallback {
         connection: zbus::Connection,
         path: OwnedObjectPath,
         prompt_type: PromptType,
-        properties: Properties,
+        properties: HashMap<&str, OwnedValue>,
         exchange: String,
     ) -> Result<(), ServiceError> {
         let prompter = PrompterProxy::new(&connection).await?;

[bilelmoussaoui]

Then keep the Properties struct there and add a todo comment about it so we can investigate it further.

[warusadura]

got it, thanks! I think I'll have to keep this diff as well. I can't test anything without it :)

[warusadura]

Just locally.

[bilelmoussaoui]

This should be a WindowIdentifierType from ashpd

[warusadura]

Don't know anything about ashpd. I'll look into it :)

[bilelmoussaoui]

You don't have to do anything special here, just use that type.

[bilelmoussaoui]

What does empty corresponds to? Please link in the code to where those answers are defined

[warusadura]

Empty corresponds to: ''. The first PromptReady call's reply argument is always '' and also the properties dict is empty.

[bilelmoussaoui]

Check if you can use the zvariant::Optional type here and drop the Empty variant.

[warusadura]

Will do, thanks!

[warusadura]

hey. I tried reply: Optional<Reply> approach and I think the current approach with Empty variant is bit better or shorter. Because all we have to do is impl Serialize and Deserialize. When using Optional, I had to impl NoneValue and bunch of String, &str traits. I just stopped at: trait FromStr is not implemented for Reply. Should I keep Empty variant or continue with Optional?

[bilelmoussaoui]

Use zvariant::Optional please. and you shouldn't have to implement that many traits but if you are struggling with it, you can leave it as is and i will take care of it before merging.

[warusadura]

Ok, thanks :)

[bilelmoussaoui]

No need for those consts

[bilelmoussaoui]

Should this implement the serialisation traits or the derived ones are correct?

[warusadura]

Yes, the derived ones are correct. I had to implement the serialisation and de-serialisation for Reply because of the Empty variant.

[bilelmoussaoui]

Why is this unused? Already mentioned it before but you marked the thread as resolved except not really...

[warusadura]

I'll take another look.

[bilelmoussaoui]

The prompt callback creates the prompt path again, just pass it here instead

[bilelmoussaoui]

cc @ueno, could you review & ack the crypto code please?

[bilelmoussaoui]

Those new methods needs tests, similar to the previous ones to ensure we have the same behaviour in both native & openssl crypto.

[bilelmoussaoui]

As those APIs are only useful for the secret exchange, which is only used by the GNOME implementation I don't think we should have them here and instead move them to the server side under /gnome. Especially that we have a Key::new

[bilelmoussaoui]

This assumes the keyring used. Shouldn't be hardcoded but rather passed as a parameter

[bilelmoussaoui]

Same, this assumes the keyring to open

[bilelmoussaoui]

same as i mentioned earlier, Prompt should take a Future. The current code is way too complex just to avoid passing a future which would make everything much easier to follow