Hide passwords more in `read-password'

* lisp/subr.el (read-password--hide-password): Factor out (bug#17127). (read-passwd): Use it in post-command-hook instead of after-change-functions to ensure that we hide the password no matter what inserts text.
author: Lars Ingebrigtsen 2019-10-13 05:15:18 +0200
committer: Lars Ingebrigtsen 2019-10-13 05:15:18 +0200
commit: de88ed8646383301f20f8340e13d43e5918310fa (patch)
tree: 3b9e7ebebeac8d956b36ebfb8c912ebbddeb8e28
parent: 4d74b2b9539964758fc433480ad93ce912b6f3db (diff)
download: emacs-de88ed8646383301f20f8340e13d43e5918310fa.tar.gz
emacs-de88ed8646383301f20f8340e13d43e5918310fa.zip
1 files changed, 10 insertions, 11 deletions
diff --git a/lisp/subr.el b/lisp/subr.el
index 76b0e4b3944..1a4a2e8b81b 100644
--- a/lisp/subr.el
+++ b/lisp/subr.el
@@ -2463,6 +2463,12 @@ some sort of escape sequence, the ambiguity is resolved via `read-key-delay'."
    map)
  "Keymap used while reading passwords.")
+(defun read-password--hide-password ()
+  (let ((beg (minibuffer-prompt-end)))
+    (dotimes (i (1+ (- (buffer-size) beg)))
+      (put-text-property (+ i beg) (+ 1 i beg)
+                         'display (string (or read-hide-char ?*))))))
 (defun read-passwd (prompt &optional confirm default)
  "Read a password, prompting with PROMPT, and return it.
 If optional CONFIRM is non-nil, read the password twice to make sure.
@@ -2487,15 +2493,7 @@ by doing (clear-string STRING)."
              (message "Password not repeated accurately; please start over")
              (sit-for 1))))
        success)
-    (let ((hide-chars-fun
+    (let (minibuf)
-           (lambda (beg end _len)
-             (clear-this-command-keys)
-             (setq beg (min end (max (minibuffer-prompt-end)
-                                     beg)))
-             (dotimes (i (- end beg))
-               (put-text-property (+ i beg) (+ 1 i beg)
-                                  'display (string (or read-hide-char ?*))))))
-          minibuf)
      (minibuffer-with-setup-hook
          (lambda ()
            (setq minibuf (current-buffer))
@@ -2506,7 +2504,7 @@ by doing (clear-string STRING)."
            (use-local-map read-passwd-map)
            (setq-local inhibit-modification-hooks nil) ;bug#15501.
            (setq-local show-paren-mode nil)            ;bug#16091.
-            (add-hook 'after-change-functions hide-chars-fun nil 'local))
+            (add-hook 'post-command-hook 'read-password--hide-password nil t))
        (unwind-protect
            (let ((enable-recursive-minibuffers t)
                  (read-hide-char (or read-hide-char ?*)))
@@ -2516,7 +2514,8 @@ by doing (clear-string STRING)."
              ;; Not sure why but it seems that there might be cases where the
              ;; minibuffer is not always properly reset later on, so undo
              ;; whatever we've done here (bug#11392).
-              (remove-hook 'after-change-functions hide-chars-fun 'local)
+              (remove-hook 'after-change-functions 'read-password--hide-password
+                           'local)
              (kill-local-variable 'post-self-insert-hook)
              ;; And of course, don't keep the sensitive data around.
              (erase-buffer))))))))
author	Lars Ingebrigtsen	2019-10-13 05:15:18 +0200
committer	Lars Ingebrigtsen	2019-10-13 05:15:18 +0200
commit	de88ed8646383301f20f8340e13d43e5918310fa (patch)
tree	3b9e7ebebeac8d956b36ebfb8c912ebbddeb8e28
parent	4d74b2b9539964758fc433480ad93ce912b6f3db (diff)
download	emacs-de88ed8646383301f20f8340e13d43e5918310fa.tar.gz emacs-de88ed8646383301f20f8340e13d43e5918310fa.zip