1 /* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*- */
2 /* dbus-keyring.c Store secret cookies in your homedir
4 * Copyright (C) 2003, 2004 Red Hat Inc.
6 * Licensed under the Academic Free License version 2.1
8 * This program is free software; you can redistribute it and/or modify
9 * it under the terms of the GNU General Public License as published by
10 * the Free Software Foundation; either version 2 of the License, or
11 * (at your option) any later version.
13 * This program is distributed in the hope that it will be useful,
14 * but WITHOUT ANY WARRANTY; without even the implied warranty of
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 * GNU General Public License for more details.
18 * You should have received a copy of the GNU General Public License
19 * along with this program; if not, write to the Free Software
20 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
24 #include "dbus-keyring.h"
25 #include "dbus-protocol.h"
26 #include <dbus/dbus-string.h>
27 #include <dbus/dbus-list.h>
28 #include <dbus/dbus-sysdeps.h>
31 * @defgroup DBusKeyring keyring class
32 * @ingroup DBusInternals
33 * @brief DBusKeyring data structure
35 * Types and functions related to DBusKeyring. DBusKeyring is intended
36 * to manage cookies used to authenticate clients to servers. This is
37 * essentially the "verify that client can read the user's homedir"
38 * authentication mechanism. Both client and server must have access
41 * The secret keys are not kept in locked memory, and are written to a
42 * file in the user's homedir. However they are transient (only used
43 * by a single server instance for a fixed period of time, then
44 * discarded). Also, the keys are not sent over the wire.
46 * @todo there's a memory leak on some codepath in here, I saw it once
47 * when running make check - probably some specific initial cookies
48 * present in the cookie file, then depending on what we do with them.
52 * @defgroup DBusKeyringInternals DBusKeyring implementation details
53 * @ingroup DBusInternals
54 * @brief DBusKeyring implementation details
56 * The guts of DBusKeyring.
61 /** The maximum age of a key before we create a new key to use in
62 * challenges. This isn't super-reliably enforced, since system
63 * clocks can change or be wrong, but we make a best effort to only
64 * use keys for a short time.
66 #define NEW_KEY_TIMEOUT_SECONDS (60*5)
68 * The time after which we drop a key from the secrets file.
69 * The EXPIRE_KEYS_TIMEOUT_SECONDS - NEW_KEY_TIMEOUT_SECONDS is the minimum
70 * time window a client has to complete authentication.
72 #define EXPIRE_KEYS_TIMEOUT_SECONDS (NEW_KEY_TIMEOUT_SECONDS + (60*2))
74 * The maximum amount of time a key can be in the future.
76 #define MAX_TIME_TRAVEL_SECONDS (60*5)
79 * Maximum number of keys in the keyring before
80 * we just ignore the rest
82 #ifdef DBUS_BUILD_TESTS
83 #define MAX_KEYS_IN_FILE 10
85 #define MAX_KEYS_IN_FILE 256
89 * A single key from the cookie file
93 dbus_int32_t id; /**< identifier used to refer to the key */
95 long creation_time; /**< when the key was generated,
96 * as unix timestamp. signed long
97 * matches struct timeval.
100 DBusString secret; /**< the actual key */
105 * @brief Internals of DBusKeyring.
107 * DBusKeyring internals. DBusKeyring is an opaque object, it must be
108 * used via accessor functions.
112 int refcount; /**< Reference count */
113 DBusString directory; /**< Directory the below two items are inside */
114 DBusString filename; /**< Keyring filename */
115 DBusString filename_lock; /**< Name of lockfile */
116 DBusKey *keys; /**< Keys loaded from the file */
117 int n_keys; /**< Number of keys */
118 DBusCredentials *credentials; /**< Credentials containing user the keyring is for */
122 _dbus_keyring_new (void)
124 DBusKeyring *keyring;
126 keyring = dbus_new0 (DBusKeyring, 1);
130 if (!_dbus_string_init (&keyring->directory))
133 if (!_dbus_string_init (&keyring->filename))
136 if (!_dbus_string_init (&keyring->filename_lock))
139 keyring->refcount = 1;
140 keyring->keys = NULL;
146 _dbus_string_free (&keyring->filename_lock);
148 _dbus_string_free (&keyring->filename);
150 _dbus_string_free (&keyring->directory);
158 free_keys (DBusKey *keys,
163 /* should be safe for args NULL, 0 */
168 _dbus_string_free (&keys[i].secret);
175 /* Our locking scheme is highly unreliable. However, there is
176 * unfortunately no reliable locking scheme in user home directories;
177 * between bugs in Linux NFS, people using Tru64 or other total crap
178 * NFS, AFS, random-file-system-of-the-week, and so forth, fcntl() in
179 * homedirs simply generates tons of bug reports. This has been
180 * learned through hard experience with GConf, unfortunately.
182 * This bad hack might work better for the kind of lock we have here,
183 * which we don't expect to hold for any length of time. Crashing
184 * while we hold it should be unlikely, and timing out such that we
185 * delete a stale lock should also be unlikely except when the
186 * filesystem is running really slowly. Stuff might break in corner
187 * cases but as long as it's not a security-level breakage it should
191 /** Maximum number of timeouts waiting for lock before we decide it's stale */
192 #define MAX_LOCK_TIMEOUTS 32
193 /** Length of each timeout while waiting for a lock */
194 #define LOCK_TIMEOUT_MILLISECONDS 250
197 _dbus_keyring_lock (DBusKeyring *keyring)
202 while (n_timeouts < MAX_LOCK_TIMEOUTS)
204 DBusError error = DBUS_ERROR_INIT;
206 if (_dbus_create_file_exclusively (&keyring->filename_lock,
210 _dbus_verbose ("Did not get lock file, sleeping %d milliseconds (%s)\n",
211 LOCK_TIMEOUT_MILLISECONDS, error.message);
212 dbus_error_free (&error);
214 _dbus_sleep_milliseconds (LOCK_TIMEOUT_MILLISECONDS);
219 if (n_timeouts == MAX_LOCK_TIMEOUTS)
221 DBusError error = DBUS_ERROR_INIT;
223 _dbus_verbose ("Lock file timed out %d times, assuming stale\n",
226 if (!_dbus_delete_file (&keyring->filename_lock, &error))
228 _dbus_verbose ("Couldn't delete old lock file: %s\n",
230 dbus_error_free (&error);
234 if (!_dbus_create_file_exclusively (&keyring->filename_lock,
237 _dbus_verbose ("Couldn't create lock file after deleting stale one: %s\n",
239 dbus_error_free (&error);
248 _dbus_keyring_unlock (DBusKeyring *keyring)
250 DBusError error = DBUS_ERROR_INIT;
252 if (!_dbus_delete_file (&keyring->filename_lock, &error))
254 _dbus_warn ("Failed to delete lock file: %s\n",
256 dbus_error_free (&error);
261 find_key_by_id (DBusKey *keys,
270 if (keys[i].id == id)
280 add_new_key (DBusKey **keys_p,
288 const unsigned char *s;
293 _DBUS_ASSERT_ERROR_IS_CLEAR (error);
295 if (!_dbus_string_init (&bytes))
297 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
305 /* Generate an integer ID and then the actual key. */
308 if (!_dbus_generate_random_bytes (&bytes, 4))
310 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
314 s = (const unsigned char*) _dbus_string_get_const_data (&bytes);
316 id = s[0] | (s[1] << 8) | (s[2] << 16) | (s[3] << 24);
319 _dbus_assert (id >= 0);
321 if (find_key_by_id (keys, n_keys, id) != NULL)
323 _dbus_string_set_length (&bytes, 0);
324 _dbus_verbose ("Key ID %d already existed, trying another one\n",
329 _dbus_verbose ("Creating key with ID %d\n", id);
331 #define KEY_LENGTH_BYTES 24
332 _dbus_string_set_length (&bytes, 0);
333 if (!_dbus_generate_random_bytes (&bytes, KEY_LENGTH_BYTES))
335 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
339 new = dbus_realloc (keys, sizeof (DBusKey) * (n_keys + 1));
342 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
347 *keys_p = keys; /* otherwise *keys_p ends up invalid */
350 if (!_dbus_string_init (&keys[n_keys-1].secret))
352 n_keys -= 1; /* we don't want to free the one we didn't init */
353 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
357 _dbus_get_current_time (×tamp, NULL);
359 keys[n_keys-1].id = id;
360 keys[n_keys-1].creation_time = timestamp;
361 if (!_dbus_string_move (&bytes, 0,
362 &keys[n_keys-1].secret,
365 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
366 _dbus_string_free (&keys[n_keys-1].secret);
376 _dbus_string_free (&bytes);
381 * Reloads the keyring file, optionally adds one new key to the file,
382 * removes all expired keys from the file iff a key was added, then
383 * resaves the file. Stores the keys from the file in keyring->keys.
384 * Note that the file is only resaved (written to) if a key is added,
385 * this means that only servers ever write to the file and need to
386 * lock it, which avoids a lot of lock contention at login time and
389 * @param keyring the keyring
390 * @param add_new #TRUE to add a new key to the file, expire keys, and resave
391 * @param error return location for errors
392 * @returns #FALSE on failure
395 _dbus_keyring_reload (DBusKeyring *keyring,
402 dbus_bool_t have_lock;
409 _DBUS_ASSERT_ERROR_IS_CLEAR (error);
411 if (!_dbus_check_dir_is_private_to_user (&keyring->directory, error))
414 if (!_dbus_string_init (&contents))
416 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
420 if (!_dbus_string_init (&line))
422 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
423 _dbus_string_free (&contents);
432 _dbus_get_current_time (&now, NULL);
436 if (!_dbus_keyring_lock (keyring))
438 dbus_set_error (error, DBUS_ERROR_FAILED,
439 "Could not lock keyring file to add to it");
446 dbus_error_init (&tmp_error);
447 if (!_dbus_file_get_contents (&contents,
451 _dbus_verbose ("Failed to load keyring file: %s\n",
453 /* continue with empty keyring file, so we recreate it */
454 dbus_error_free (&tmp_error);
457 if (!_dbus_string_validate_ascii (&contents, 0,
458 _dbus_string_get_length (&contents)))
460 _dbus_warn ("Secret keyring file contains non-ASCII! Ignoring existing contents\n");
461 _dbus_string_set_length (&contents, 0);
464 /* FIXME this is badly inefficient for large keyring files
465 * (not that large keyring files exist outside of test suites)
467 while (_dbus_string_pop_line (&contents, &line))
477 /* Don't load more than the max. */
478 if (n_keys >= (add_new ? MAX_KEYS_IN_FILE - 1 : MAX_KEYS_IN_FILE))
482 if (!_dbus_string_parse_int (&line, 0, &val, &next))
484 _dbus_verbose ("could not parse secret key ID at start of line\n");
488 if (val > _DBUS_INT32_MAX || val < 0)
490 _dbus_verbose ("invalid secret key ID at start of line\n");
496 _dbus_string_skip_blank (&line, next, &next);
498 if (!_dbus_string_parse_int (&line, next, ×tamp, &next))
500 _dbus_verbose ("could not parse secret key timestamp\n");
505 (now + MAX_TIME_TRAVEL_SECONDS) < timestamp ||
506 (now - EXPIRE_KEYS_TIMEOUT_SECONDS) > timestamp)
508 _dbus_verbose ("dropping/ignoring %ld-seconds old key with timestamp %ld as current time is %ld\n",
509 now - timestamp, timestamp, now);
513 _dbus_string_skip_blank (&line, next, &next);
515 len = _dbus_string_get_length (&line);
517 if ((len - next) == 0)
519 _dbus_verbose ("no secret key after ID and timestamp\n");
523 /* We have all three parts */
524 new = dbus_realloc (keys, sizeof (DBusKey) * (n_keys + 1));
527 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
534 if (!_dbus_string_init (&keys[n_keys-1].secret))
536 n_keys -= 1; /* we don't want to free the one we didn't init */
537 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
541 keys[n_keys-1].id = id;
542 keys[n_keys-1].creation_time = timestamp;
543 if (!_dbus_string_hex_decode (&line, next, &end,
544 &keys[n_keys-1].secret, 0))
546 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
550 if (_dbus_string_get_length (&line) != end)
552 _dbus_verbose ("invalid hex encoding in keyring file\n");
553 _dbus_string_free (&keys[n_keys - 1].secret);
559 _dbus_verbose ("Successfully loaded %d existing keys\n",
564 if (!add_new_key (&keys, &n_keys, error))
566 _dbus_verbose ("Failed to generate new key: %s\n",
567 error ? error->message : "(unknown)");
571 _dbus_string_set_length (&contents, 0);
576 if (!_dbus_string_append_int (&contents,
580 if (!_dbus_string_append_byte (&contents, ' '))
583 if (!_dbus_string_append_int (&contents,
584 keys[i].creation_time))
587 if (!_dbus_string_append_byte (&contents, ' '))
590 if (!_dbus_string_hex_encode (&keys[i].secret, 0,
592 _dbus_string_get_length (&contents)))
595 if (!_dbus_string_append_byte (&contents, '\n'))
602 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
606 if (!_dbus_string_save_to_file (&contents, &keyring->filename,
612 free_keys (keyring->keys, keyring->n_keys);
613 keyring->keys = keys;
614 keyring->n_keys = n_keys;
622 _dbus_keyring_unlock (keyring);
624 if (! ((retval == TRUE && (error == NULL || error->name == NULL)) ||
625 (retval == FALSE && (error == NULL || error->name != NULL))))
627 if (error && error->name)
628 _dbus_verbose ("error is %s: %s\n", error->name, error->message);
629 _dbus_warn ("returning %d but error pointer %p name %s\n",
630 retval, error, error->name ? error->name : "(none)");
631 _dbus_assert_not_reached ("didn't handle errors properly");
639 _dbus_string_zero (&keys[i].secret);
640 _dbus_string_free (&keys[i].secret);
647 _dbus_string_free (&contents);
648 _dbus_string_free (&line);
653 /** @} */ /* end of internals */
656 * @addtogroup DBusKeyring
662 * Increments reference count of the keyring
664 * @param keyring the keyring
665 * @returns the keyring
668 _dbus_keyring_ref (DBusKeyring *keyring)
670 keyring->refcount += 1;
676 * Decrements refcount and finalizes if it reaches
679 * @param keyring the keyring
682 _dbus_keyring_unref (DBusKeyring *keyring)
684 keyring->refcount -= 1;
686 if (keyring->refcount == 0)
688 if (keyring->credentials)
689 _dbus_credentials_unref (keyring->credentials);
691 _dbus_string_free (&keyring->filename);
692 _dbus_string_free (&keyring->filename_lock);
693 _dbus_string_free (&keyring->directory);
694 free_keys (keyring->keys, keyring->n_keys);
700 * Creates a new keyring that lives in the ~/.dbus-keyrings directory
701 * of the given user credentials. If the credentials are #NULL or
702 * empty, uses those of the current process.
704 * @param username username to get keyring for, or #NULL
705 * @param context which keyring to get
706 * @param error return location for errors
707 * @returns the keyring or #NULL on error
710 _dbus_keyring_new_for_credentials (DBusCredentials *credentials,
711 const DBusString *context,
715 DBusKeyring *keyring;
716 dbus_bool_t error_set;
718 DBusCredentials *our_credentials;
720 _DBUS_ASSERT_ERROR_IS_CLEAR (error);
724 our_credentials = NULL;
726 if (!_dbus_string_init (&ringdir))
728 dbus_set_error (error, DBUS_ERROR_NO_MEMORY, NULL);
732 if (credentials != NULL)
734 our_credentials = _dbus_credentials_copy (credentials);
738 our_credentials = _dbus_credentials_new_from_current_process ();
741 if (our_credentials == NULL)
744 if (_dbus_credentials_are_anonymous (our_credentials))
746 if (!_dbus_credentials_add_from_current_process (our_credentials))
750 if (!_dbus_append_keyring_directory_for_credentials (&ringdir,
754 keyring = _dbus_keyring_new ();
758 _dbus_assert (keyring->credentials == NULL);
759 keyring->credentials = our_credentials;
760 our_credentials = NULL; /* so we don't unref it again later */
762 /* should have been validated already, but paranoia check here */
763 if (!_dbus_keyring_validate_context (context))
766 dbus_set_error_const (error,
768 "Invalid context in keyring creation");
772 /* Save keyring dir in the keyring object */
773 if (!_dbus_string_copy (&ringdir, 0,
774 &keyring->directory, 0))
777 /* Create keyring->filename based on keyring dir and context */
778 if (!_dbus_string_copy (&keyring->directory, 0,
779 &keyring->filename, 0))
782 if (!_dbus_concat_dir_and_file (&keyring->filename,
786 /* Create lockfile name */
787 if (!_dbus_string_copy (&keyring->filename, 0,
788 &keyring->filename_lock, 0))
791 if (!_dbus_string_append (&keyring->filename_lock, ".lock"))
795 dbus_error_init (&tmp_error);
796 if (!_dbus_keyring_reload (keyring, FALSE, &tmp_error))
798 _dbus_verbose ("didn't load an existing keyring: %s\n",
800 dbus_error_free (&tmp_error);
803 /* We don't fail fatally if we can't create the directory,
804 * but the keyring will probably always be empty
805 * unless someone else manages to create it
807 dbus_error_init (&tmp_error);
808 if (!_dbus_create_directory (&keyring->directory,
811 _dbus_verbose ("Creating keyring directory: %s\n",
813 dbus_error_free (&tmp_error);
816 _dbus_string_free (&ringdir);
822 dbus_set_error_const (error,
823 DBUS_ERROR_NO_MEMORY,
826 _dbus_credentials_unref (our_credentials);
828 _dbus_keyring_unref (keyring);
829 _dbus_string_free (&ringdir);
835 * Checks whether the context is a valid context.
836 * Contexts that might cause confusion when used
837 * in filenames are not allowed (contexts can't
838 * start with a dot or contain dir separators).
840 * @todo this is the most inefficient implementation
843 * @param context the context
844 * @returns #TRUE if valid
847 _dbus_keyring_validate_context (const DBusString *context)
849 if (_dbus_string_get_length (context) == 0)
851 _dbus_verbose ("context is zero-length\n");
855 if (!_dbus_string_validate_ascii (context, 0,
856 _dbus_string_get_length (context)))
858 _dbus_verbose ("context not valid ascii\n");
862 /* no directory separators */
863 if (_dbus_string_find (context, 0, "/", NULL))
865 _dbus_verbose ("context contains a slash\n");
869 if (_dbus_string_find (context, 0, "\\", NULL))
871 _dbus_verbose ("context contains a backslash\n");
875 /* prevent attempts to use dotfiles or ".." or ".lock"
876 * all of which might allow some kind of attack
878 if (_dbus_string_find (context, 0, ".", NULL))
880 _dbus_verbose ("context contains a dot\n");
884 /* no spaces/tabs, those are used for separators in the protocol */
885 if (_dbus_string_find_blank (context, 0, NULL))
887 _dbus_verbose ("context contains a blank\n");
891 if (_dbus_string_find (context, 0, "\n", NULL))
893 _dbus_verbose ("context contains a newline\n");
897 if (_dbus_string_find (context, 0, "\r", NULL))
899 _dbus_verbose ("context contains a carriage return\n");
907 find_recent_key (DBusKeyring *keyring)
910 long tv_sec, tv_usec;
912 _dbus_get_current_time (&tv_sec, &tv_usec);
915 while (i < keyring->n_keys)
917 DBusKey *key = &keyring->keys[i];
919 _dbus_verbose ("Key %d is %ld seconds old\n",
920 i, tv_sec - key->creation_time);
922 if ((tv_sec - NEW_KEY_TIMEOUT_SECONDS) < key->creation_time)
932 * Gets a recent key to use for authentication.
933 * If no recent key exists, creates one. Returns
934 * the key ID. If a key can't be written to the keyring
935 * file so no recent key can be created, returns -1.
936 * All valid keys are > 0.
938 * @param keyring the keyring
939 * @param error error on failure
940 * @returns key ID to use for auth, or -1 on failure
943 _dbus_keyring_get_best_key (DBusKeyring *keyring,
948 _DBUS_ASSERT_ERROR_IS_CLEAR (error);
950 key = find_recent_key (keyring);
954 /* All our keys are too old, or we've never loaded the
955 * keyring. Create a new one.
957 if (!_dbus_keyring_reload (keyring, TRUE,
961 key = find_recent_key (keyring);
966 dbus_set_error_const (error,
968 "No recent-enough key found in keyring, and unable to create a new key");
974 * Checks whether the keyring is for the same user as the given credentials.
976 * @param keyring the keyring
977 * @param credentials the credentials to check
979 * @returns #TRUE if the keyring belongs to the given user
982 _dbus_keyring_is_for_credentials (DBusKeyring *keyring,
983 DBusCredentials *credentials)
985 return _dbus_credentials_same_user (keyring->credentials,
990 * Gets the hex-encoded secret key for the given ID.
991 * Returns #FALSE if not enough memory. Returns #TRUE
992 * but empty key on any other error such as unknown
995 * @param keyring the keyring
996 * @param key_id the key ID
997 * @param hex_key string to append hex-encoded key to
998 * @returns #TRUE if we had enough memory
1001 _dbus_keyring_get_hex_key (DBusKeyring *keyring,
1003 DBusString *hex_key)
1007 key = find_key_by_id (keyring->keys,
1011 return TRUE; /* had enough memory, so TRUE */
1013 return _dbus_string_hex_encode (&key->secret, 0,
1015 _dbus_string_get_length (hex_key));
1018 /** @} */ /* end of exposed API */
1020 #ifdef DBUS_BUILD_TESTS
1021 #include "dbus-test.h"
1025 _dbus_keyring_test (void)
1037 /* Context validation */
1039 _dbus_string_init_const (&context, "foo");
1040 _dbus_assert (_dbus_keyring_validate_context (&context));
1041 _dbus_string_init_const (&context, "org_freedesktop_blah");
1042 _dbus_assert (_dbus_keyring_validate_context (&context));
1044 _dbus_string_init_const (&context, "");
1045 _dbus_assert (!_dbus_keyring_validate_context (&context));
1046 _dbus_string_init_const (&context, ".foo");
1047 _dbus_assert (!_dbus_keyring_validate_context (&context));
1048 _dbus_string_init_const (&context, "bar.foo");
1049 _dbus_assert (!_dbus_keyring_validate_context (&context));
1050 _dbus_string_init_const (&context, "bar/foo");
1051 _dbus_assert (!_dbus_keyring_validate_context (&context));
1052 _dbus_string_init_const (&context, "bar\\foo");
1053 _dbus_assert (!_dbus_keyring_validate_context (&context));
1054 _dbus_string_init_const (&context, "foo\xfa\xf0");
1055 _dbus_assert (!_dbus_keyring_validate_context (&context));
1056 _dbus_string_init_const (&context, "foo\x80");
1057 _dbus_assert (!_dbus_keyring_validate_context (&context));
1058 _dbus_string_init_const (&context, "foo\x7f");
1059 _dbus_assert (_dbus_keyring_validate_context (&context));
1060 _dbus_string_init_const (&context, "foo bar");
1061 _dbus_assert (!_dbus_keyring_validate_context (&context));
1063 if (!_dbus_string_init (&context))
1064 _dbus_assert_not_reached ("no memory");
1065 if (!_dbus_string_append_byte (&context, '\0'))
1066 _dbus_assert_not_reached ("no memory");
1067 _dbus_assert (!_dbus_keyring_validate_context (&context));
1068 _dbus_string_free (&context);
1070 /* Now verify that if we create a key in keyring 1,
1071 * it is properly loaded in keyring 2
1074 _dbus_string_init_const (&context, "org_freedesktop_dbus_testsuite");
1075 dbus_error_init (&error);
1076 ring1 = _dbus_keyring_new_for_credentials (NULL, &context,
1078 _dbus_assert (ring1 != NULL);
1079 _dbus_assert (error.name == NULL);
1081 id = _dbus_keyring_get_best_key (ring1, &error);
1084 fprintf (stderr, "Could not load keyring: %s\n", error.message);
1085 dbus_error_free (&error);
1089 ring2 = _dbus_keyring_new_for_credentials (NULL, &context, &error);
1090 _dbus_assert (ring2 != NULL);
1091 _dbus_assert (error.name == NULL);
1093 if (ring1->n_keys != ring2->n_keys)
1095 fprintf (stderr, "Different number of keys in keyrings\n");
1099 /* We guarantee we load and save keeping keys in a fixed
1103 while (i < ring1->n_keys)
1105 if (ring1->keys[i].id != ring2->keys[i].id)
1107 fprintf (stderr, "Keyring 1 has first key ID %d and keyring 2 has %d\n",
1108 ring1->keys[i].id, ring2->keys[i].id);
1112 if (ring1->keys[i].creation_time != ring2->keys[i].creation_time)
1114 fprintf (stderr, "Keyring 1 has first key time %ld and keyring 2 has %ld\n",
1115 ring1->keys[i].creation_time, ring2->keys[i].creation_time);
1119 if (!_dbus_string_equal (&ring1->keys[i].secret,
1120 &ring2->keys[i].secret))
1122 fprintf (stderr, "Keyrings 1 and 2 have different secrets for same ID/timestamp\n");
1129 printf (" %d keys in test\n", ring1->n_keys);
1131 /* Test ref/unref */
1132 _dbus_keyring_ref (ring1);
1133 _dbus_keyring_ref (ring2);
1134 _dbus_keyring_unref (ring1);
1135 _dbus_keyring_unref (ring2);
1139 _dbus_keyring_unref (ring1);
1140 _dbus_keyring_unref (ring2);
1146 _dbus_keyring_unref (ring1);
1148 _dbus_keyring_unref (ring2);
1153 #endif /* DBUS_BUILD_TESTS */