/[winpt]/trunk/Gnupg/parse-packet.c
ViewVC logotype

Annotation of /trunk/Gnupg/parse-packet.c

Parent Directory Parent Directory | Revision Log Revision Log

Revision 214 - (hide annotations)
Sun May 14 18:40:36 2006 UTC (18 years, 9 months ago) by twoaday
File MIME type: text/plain
File size: 74385 byte(s) 
2006-05-14  Timo Schulz  <ts@g10code.de>
                                                                                
        * wptKeyCache.cpp (gpg_keycache_update_attr): Parse
        preferred keyserver URL.
        * wptHTTP.cpp (extractHostInfo): Fix segv.
        * wptGPGUtil.cpp (gpg_find_key_subpacket): Ignore default
        gpg.conf.
        * wptKeyserverSearchDlg.cpp (search_hkp_keys): Do not
        assume an existing user id.
        * wptPassphraseCB.cpp (passphrase_cb): Automatic cancel
        if no passphrase is available.

(for complete list of changes, see Src/ChangeLog)

About to release 0.12.1
1 werner 46 /* parse-packet.c - read packets
2     * Copyright (C) 1998, 1999, 2000, 2001, 2002 Free Software Foundation, Inc.
3     *
4     * This file is part of GnuPG.
5     *
6     * GnuPG is free software; you can redistribute it and/or modify
7     * it under the terms of the GNU General Public License as published by
8     * the Free Software Foundation; either version 2 of the License, or
9     * (at your option) any later version.
10     *
11     * GnuPG is distributed in the hope that it will be useful,
12     * but WITHOUT ANY WARRANTY; without even the implied warranty of
13     * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14     * GNU General Public License for more details.
15     *
16     * You should have received a copy of the GNU General Public License
17     * along with this program; if not, write to the Free Software
18     * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA
19     */
20    
21     #ifdef HAVE_CONFIG_H
22     #include <config.h>
23     #endif
24    
25     #include <stdio.h>
26     #include <stdio.h>
27     #include <stdlib.h>
28     #include <string.h>
29     #include <time.h>
30     #include <assert.h>
31     #include <process.h>
32     #include <sys/types.h>
33    
34     #include "openpgp.h"
35     #include "packet.h"
36     #include "md.h"
37    
38     static int mpi_print_mode = 0;
39     static int list_mode = 0;
40    
41     static int parse( gpg_iobuf_t inp, PACKET *pkt, int onlykeypkts,
42     _off_t *retpos, int *skip, gpg_iobuf_t out, int do_skip );
43     static int copy_packet( gpg_iobuf_t inp, gpg_iobuf_t out, int pkttype,
44     unsigned long pktlen );
45     static void skip_packet( gpg_iobuf_t inp, int pkttype, unsigned long pktlen );
46     static void skip_rest( gpg_iobuf_t inp, unsigned long pktlen );
47     static void *read_rest( gpg_iobuf_t inp, size_t pktlen );
48     static int parse_symkeyenc( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
49     PACKET *packet );
50     static int parse_pubkeyenc( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
51     PACKET *packet );
52     static int parse_signature( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
53     PKT_signature *sig );
54     static int parse_onepass_sig( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
55     PKT_onepass_sig *ops );
56     static int parse_key( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
57     byte *hdr, int hdrlen, PACKET *packet );
58     static int parse_user_id( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
59     PACKET *packet );
60     static int parse_attribute( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
61     PACKET *packet );
62     static int parse_comment( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
63     PACKET *packet );
64     static void parse_trust( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
65     PACKET *packet );
66     static int parse_plaintext( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
67     PACKET *packet, int new_ctb);
68     static int parse_compressed( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
69     PACKET *packet, int new_ctb );
70     static int parse_encrypted( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
71     PACKET *packet, int new_ctb);
72     static int parse_mdc( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
73     PACKET *packet, int new_ctb);
74     static int parse_gpg_control( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
75     PACKET *packet );
76    
77     static unsigned short
78     read_16(gpg_iobuf_t inp)
79     {
80     unsigned short a;
81     a = gpg_iobuf_get_noeof(inp) << 8;
82     a |= gpg_iobuf_get_noeof(inp);
83     return a;
84     }
85    
86     static unsigned long
87     read_32(gpg_iobuf_t inp)
88     {
89     unsigned long a;
90     a = gpg_iobuf_get_noeof(inp) << 24;
91     a |= gpg_iobuf_get_noeof(inp) << 16;
92     a |= gpg_iobuf_get_noeof(inp) << 8;
93     a |= gpg_iobuf_get_noeof(inp);
94     return a;
95     }
96    
97     static unsigned long
98     buffer_to_u32( const unsigned char *buffer )
99     {
100     unsigned long a;
101     a = *buffer << 24;
102     a |= buffer[1] << 16;
103     a |= buffer[2] << 8;
104     a |= buffer[3];
105     return a;
106     }
107    
108     int
109     set_packet_list_mode( int mode )
110     {
111     int old = list_mode;
112     list_mode = mode;
113     mpi_print_mode = 0;
114     return old;
115     }
116    
117 twoaday 2 static void
118 werner 46 unknown_pubkey_warning( int algo )
119     {
120     static byte unknown_pubkey_algos[256];
121    
122     algo &= 0xff;
123     if( !unknown_pubkey_algos[algo] ) {
124     unknown_pubkey_algos[algo] = 1;
125     }
126     }
127    
128     static const char *
129     strtimestamp( unsigned long stamp )
130     {
131     static char buffer[11+5];
132     struct tm *tp;
133     time_t atime = stamp;
134    
135     if (atime < 0) {
136     strcpy (buffer, "????" "-??" "-??");
137     }
138     else {
139     tp = gmtime( &atime );
140     sprintf(buffer,"%04d-%02d-%02d",
141     1900+tp->tm_year, tp->tm_mon+1, tp->tm_mday );
142     }
143     return buffer;
144     }
145    
146     static const char *
147     strtimevalue( unsigned long value )
148     {
149     static char buffer[30];
150     unsigned int years, days, hours, minutes;
151    
152     value /= 60;
153     minutes = value % 60;
154     value /= 60;
155     hours = value % 24;
156     value /= 24;
157     days = value % 365;
158     value /= 365;
159     years = value;
160    
161     sprintf(buffer,"%uy%ud%uh%um", years, days, hours, minutes );
162     if( years )
163     return buffer;
164     if( days )
165     return strchr( buffer, 'y' ) + 1;
166     return strchr( buffer, 'd' ) + 1;
167     }
168    
169    
170     static gpg_mpi_t
171     mpi_read( gpg_iobuf_t inp, size_t *ret_n, int flags )
172     {
173     gpg_mpi_t a;
174     int i = 0, j = 0;
175     u32 t;
176     size_t n;
177    
178     a = calloc( 1, sizeof *a );
179     a->nbits = read_16( inp );
180     n = (a->nbits + 7) / 8;
181     a->alloced = n;
182     a->d = calloc( n, 4 );
183     i = 4 - n % 4;
184     i %= 4;
185     j = (n+4-1) / 4;
186     for( ; j > 0; j-- ) {
187     t = 0;
188     for( ; i < 4; i++ ) {
189     t <<= 8;
190     t |= gpg_iobuf_get( inp ) & 0xff;
191     }
192     i = 0;
193     a->d[j-1] = t;
194     }
195     if( *ret_n )
196     *ret_n = n + 2;
197    
198     return a;
199     }
200    
201     void
202     mpi_print( FILE *fp, gpg_mpi_t a, int mode )
203     {
204     int i;
205     for( i = 0; i < a->alloced / 4; i++ )
206     printf( "%08lx", a->d[i] );
207     }
208    
209     static void
210     mpi_set_protect_flag( gpg_mpi_t a )
211     {
212     a->flags = 1;
213     }
214    
215     static gpg_mpi_t
216     mpi_set_opaque( gpg_mpi_t a, void *p, int len )
217     {
218     if( !a ) {
219     a = calloc( 1, sizeof *a );
220     }
221    
222     if( a->flags & 4 )
223     safe_free( a->d );
224     else {
225     safe_free( a->d );
226     }
227    
228     a->d = p;
229     a->alloced = 0;
230     a->nlimbs = 0;
231     a->nbits = len;
232     a->flags = 4;
233     return a;
234     }
235    
236     void
237     free_symkey_enc( PKT_symkey_enc *enc )
238     {
239     safe_free(enc);
240     }
241    
242     void
243     free_pubkey_enc( PKT_pubkey_enc *enc )
244     {
245     int n, i;
246     n = pubkey_get_nenc( enc->pubkey_algo );
247     if( !n )
248     safe_free(enc->data[0]);
249     for(i=0; i < n; i++ )
250     safe_free( enc->data[i] );
251     safe_free(enc);
252     }
253    
254     void
255     free_seckey_enc( PKT_signature *sig )
256     {
257     int n, i;
258    
259     n = pubkey_get_nsig( sig->pubkey_algo );
260     if( !n )
261     safe_free(sig->data[0]);
262     for(i=0; i < n; i++ )
263     safe_free( sig->data[i] );
264    
265     safe_free(sig->revkey);
266     safe_free(sig->hashed);
267     safe_free(sig->unhashed);
268     safe_free(sig);
269     }
270    
271    
272    
273     void
274     release_public_key_parts( PKT_public_key *pk )
275     {
276     int n, i;
277     n = pubkey_get_npkey( pk->pubkey_algo );
278     if( !n )
279     safe_free(pk->pkey[0]);
280     for(i=0; i < n; i++ ) {
281     safe_free( pk->pkey[i] );
282     pk->pkey[i] = NULL;
283     }
284     if (pk->prefs) {
285     safe_free (pk->prefs);
286     pk->prefs = NULL;
287     }
288     if( pk->namehash ) {
289     safe_free(pk->namehash);
290     pk->namehash = NULL;
291     }
292     if (pk->user_id) {
293     free_user_id (pk->user_id);
294     pk->user_id = NULL;
295     }
296     if (pk->revkey) {
297     safe_free(pk->revkey);
298     pk->revkey=NULL;
299     pk->numrevkeys=0;
300     }
301     }
302    
303    
304     void
305     free_public_key( PKT_public_key *pk )
306     {
307     release_public_key_parts( pk );
308     safe_free(pk);
309     }
310    
311    
312     int
313     pubkey_get_nenc( int algo )
314     {
315     switch( algo ) {
316     case 1:
317     case 2:
318     case 3: return 1;
319     case 16:
320     case 20: return 2;
321     }
322     return 0;
323     }
324    
325     int
326     pubkey_get_nsig( algo )
327     {
328     switch( algo ) {
329     case 1:
330     case 2:
331     case 3: return 1;
332     case 17:
333     case 16:
334     case 20: return 2;
335     }
336     return 0;
337     }
338    
339     int
340     pubkey_get_npkey( int algo )
341     {
342     if( is_ELGAMAL( algo ) ) return 3;
343     else if ( algo == 17 ) return 4;
344     else if ( is_RSA( algo ) ) return 2;
345     return 0;
346     } /* cdk_pk_get_npkey */
347    
348     int
349     pubkey_get_nskey( int algo )
350     {
351     if ( is_ELGAMAL( algo ) ) return 4;
352     else if ( algo == 17 ) return 5;
353     else if ( is_RSA( algo ) )return 6;
354     return 0;
355 twoaday 133 }
356 werner 46
357    
358    
359     /*
360     * Return a copy of the preferences
361     */
362     prefitem_t *
363     copy_prefs (const prefitem_t *prefs)
364     {
365     size_t n;
366     prefitem_t *new;
367    
368     if (!prefs)
369     return NULL;
370    
371     for (n=0; prefs[n].type; n++)
372     ;
373     new = malloc ( sizeof (*new) * (n+1));
374     for (n=0; prefs[n].type; n++) {
375     new[n].type = prefs[n].type;
376     new[n].value = prefs[n].value;
377     }
378     new[n].type = PREFTYPE_NONE;
379     new[n].value = 0;
380    
381     return new;
382     }
383    
384     /****************
385     * Replace all common parts of a sk by the one from the public key.
386     * This is a hack and a better solution will be to just store the real secret
387     * parts somewhere and don't duplicate all the other stuff.
388     */
389     void
390     copy_public_parts_to_secret_key( PKT_public_key *pk, PKT_secret_key *sk )
391     {
392     sk->expiredate = pk->expiredate;
393     sk->pubkey_algo = pk->pubkey_algo;
394     sk->pubkey_usage= pk->pubkey_usage;
395     sk->req_usage = pk->req_usage;
396     sk->req_algo = pk->req_algo;
397     sk->has_expired = pk->has_expired;
398     sk->is_revoked = pk->is_revoked;
399     sk->is_valid = pk->is_valid;
400     sk->main_keyid[0]= pk->main_keyid[0];
401     sk->main_keyid[1]= pk->main_keyid[1];
402     sk->keyid[0] = pk->keyid[0];
403     sk->keyid[1] = pk->keyid[1];
404     }
405    
406     void
407     release_secret_key_parts( PKT_secret_key *sk )
408     {
409     int n, i;
410    
411     n = pubkey_get_nskey( sk->pubkey_algo );
412     if( !n )
413     safe_free(sk->skey[0]);
414     for(i=0; i < n; i++ ) {
415     safe_free( sk->skey[i] );
416     sk->skey[i] = NULL;
417     }
418     }
419    
420     void
421     free_secret_key( PKT_secret_key *sk )
422     {
423     release_secret_key_parts( sk );
424     safe_free(sk);
425     }
426    
427     void
428     free_comment( PKT_comment *rem )
429     {
430     safe_free(rem);
431     }
432    
433     void
434     free_attributes(PKT_user_id *uid)
435     {
436     safe_free(uid->attribs);
437     safe_free(uid->attrib_data);
438    
439     uid->attribs=NULL;
440     uid->attrib_data=NULL;
441     uid->attrib_len=0;
442     }
443    
444     void
445     free_user_id (PKT_user_id *uid)
446     {
447     assert (uid->ref > 0);
448     if (--uid->ref)
449     return;
450    
451     free_attributes(uid);
452    
453     if (uid->prefs)
454     safe_free (uid->prefs);
455     safe_free (uid);
456     }
457    
458     void
459     free_compressed( PKT_compressed *zd )
460     {
461     if( zd->buf ) { /* have to skip some bytes */
462     /* don't have any information about the length, so
463     * we assume this is the last packet */
464     while( gpg_iobuf_read( zd->buf, NULL, 1<<30 ) != -1 )
465     ;
466     }
467     safe_free(zd);
468     }
469    
470     void
471     free_encrypted( PKT_encrypted *ed )
472     {
473     if( ed->buf ) { /* have to skip some bytes */
474     if( gpg_iobuf_in_block_mode(ed->buf) ) {
475     while( gpg_iobuf_read( ed->buf, NULL, 1<<30 ) != -1 )
476     ;
477     }
478     else {
479     while( ed->len ) { /* skip the packet */
480     int n = gpg_iobuf_read( ed->buf, NULL, ed->len );
481     if( n == -1 )
482     ed->len = 0;
483     else
484     ed->len -= n;
485     }
486     }
487     }
488     safe_free(ed);
489     }
490    
491    
492     void
493     free_plaintext( PKT_plaintext *pt )
494     {
495     if( pt->buf ) { /* have to skip some bytes */
496     if( gpg_iobuf_in_block_mode(pt->buf) ) {
497     while( gpg_iobuf_read( pt->buf, NULL, 1<<30 ) != -1 )
498     ;
499     }
500     else {
501     while( pt->len ) { /* skip the packet */
502     int n = gpg_iobuf_read( pt->buf, NULL, pt->len );
503     if( n == -1 )
504     pt->len = 0;
505     else
506     pt->len -= n;
507     }
508     }
509     }
510     safe_free(pt);
511     }
512    
513     /****************
514     * Free the packet in pkt.
515     */
516     void
517     gpg_free_packet( PACKET *pkt )
518     {
519     if( !pkt || !pkt->pkt.generic )
520     return;
521    
522     switch( pkt->pkttype ) {
523     case PKT_SIGNATURE:
524     free_seckey_enc( pkt->pkt.signature );
525     break;
526     case PKT_PUBKEY_ENC:
527     free_pubkey_enc( pkt->pkt.pubkey_enc );
528     break;
529     case PKT_SYMKEY_ENC:
530     free_symkey_enc( pkt->pkt.symkey_enc );
531     break;
532     case PKT_PUBLIC_KEY:
533     case PKT_PUBLIC_SUBKEY:
534     free_public_key( pkt->pkt.public_key );
535     break;
536     case PKT_SECRET_KEY:
537     case PKT_SECRET_SUBKEY:
538     free_secret_key( pkt->pkt.secret_key );
539     break;
540     case PKT_COMMENT:
541     free_comment( pkt->pkt.comment );
542     break;
543     case PKT_USER_ID:
544     free_user_id( pkt->pkt.user_id );
545     break;
546     case PKT_COMPRESSED:
547     free_compressed( pkt->pkt.compressed);
548     break;
549     case PKT_ENCRYPTED:
550     case PKT_ENCRYPTED_MDC:
551     free_encrypted( pkt->pkt.encrypted );
552     break;
553     case PKT_PLAINTEXT:
554     free_plaintext( pkt->pkt.plaintext );
555     break;
556     default:
557     safe_free( pkt->pkt.generic );
558     break;
559     }
560     pkt->pkt.generic = NULL;
561     }
562    
563    
564    
565     /****************
566     * Parse a Packet and return it in packet
567     * Returns: 0 := valid packet in pkt
568     * -1 := no more packets
569     * >0 := error
570     * Note: The function may return an error and a partly valid packet;
571     * caller must free this packet.
572     */
573     int
574     gpg_parse_packet( gpg_iobuf_t inp, PACKET *pkt )
575     {
576     int skip, rc;
577    
578     do {
579     rc = parse( inp, pkt, 0, NULL, &skip, NULL, 0 );
580     } while( skip );
581     return rc;
582     }
583    
584     /****************
585     * Like parse packet, but only return secret or public (sub)key packets.
586     */
587     int
588     search_packet( gpg_iobuf_t inp, PACKET *pkt, _off_t *retpos, int with_uid )
589     {
590     int skip, rc;
591    
592     do {
593     rc = parse( inp, pkt, with_uid?2:1, retpos, &skip, NULL, 0 );
594     } while( skip );
595     return rc;
596     }
597    
598     /****************
599     * Copy all packets from INP to OUT, thereby removing unused spaces.
600     */
601     int
602     copy_all_packets( gpg_iobuf_t inp, gpg_iobuf_t out )
603     {
604     PACKET pkt;
605     int skip, rc=0;
606     do {
607     gpg_init_packet(&pkt);
608     } while( !(rc = parse( inp, &pkt, 0, NULL, &skip, out, 0 )));
609     return rc;
610     }
611    
612     /****************
613     * Copy some packets from INP to OUT, thereby removing unused spaces.
614     * Stop at offset STOPoff (i.e. don't copy packets at this or later offsets)
615     */
616     int
617     copy_some_packets( gpg_iobuf_t inp, gpg_iobuf_t out, _off_t stopoff )
618     {
619     PACKET pkt;
620     int skip, rc=0;
621     do {
622     if( gpg_iobuf_tell(inp) >= stopoff )
623     return 0;
624     gpg_init_packet(&pkt);
625     } while( !(rc = parse( inp, &pkt, 0, NULL, &skip, out, 0 )) );
626     return rc;
627     }
628    
629     /****************
630     * Skip over N packets
631     */
632     int
633     skip_some_packets( gpg_iobuf_t inp, unsigned n )
634     {
635     int skip, rc=0;
636     PACKET pkt;
637    
638     for( ;n && !rc; n--) {
639     gpg_init_packet(&pkt);
640     rc = parse( inp, &pkt, 0, NULL, &skip, NULL, 1 );
641     }
642     return rc;
643     }
644    
645     /****************
646     * Parse packet. Set the variable skip points to 1 if the packet
647     * should be skipped; this is the case if either ONLYKEYPKTS is set
648     * and the parsed packet isn't one or the
649     * packet-type is 0, indicating deleted stuff.
650     * if OUT is not NULL, a special copymode is used.
651     */
652     static int
653     parse( gpg_iobuf_t inp, PACKET *pkt, int onlykeypkts, _off_t *retpos,
654     int *skip, gpg_iobuf_t out, int do_skip
655     )
656     {
657     int rc=0, c, ctb, pkttype, lenbytes;
658     unsigned long pktlen;
659     byte hdr[8];
660     int hdrlen;
661     int new_ctb = 0;
662     int with_uid = (onlykeypkts == 2);
663    
664     *skip = 0;
665     /*assert( !pkt->pkt.generic );*/
666     if( retpos )
667     *retpos = gpg_iobuf_tell(inp);
668    
669     if( (ctb = gpg_iobuf_get(inp)) == -1 ) {
670     rc = -1;
671     goto leave;
672     }
673     hdrlen=0;
674     hdr[hdrlen++] = ctb;
675     if( !(ctb & 0x80) ) {
676     printf("%s: invalid packet (ctb=%02x)\n", gpg_iobuf_where(inp), ctb );
677     rc = G10ERR_INVALID_PACKET;
678     goto leave;
679     }
680     pktlen = 0;
681     new_ctb = !!(ctb & 0x40);
682     if( new_ctb ) {
683     pkttype = ctb & 0x3f;
684     if( (c = gpg_iobuf_get(inp)) == -1 ) {
685     printf("%s: 1st length byte missing\n", gpg_iobuf_where(inp) );
686     rc = G10ERR_INVALID_PACKET;
687     goto leave;
688     }
689     if (pkttype == PKT_COMPRESSED) {
690     gpg_iobuf_set_partial_block_mode(inp, c & 0xff);
691     pktlen = 0;/* to indicate partial length */
692     }
693     else {
694     hdr[hdrlen++] = c;
695     if( c < 192 )
696     pktlen = c;
697     else if( c < 224 ) {
698     pktlen = (c - 192) * 256;
699     if( (c = gpg_iobuf_get(inp)) == -1 ) {
700     printf("%s: 2nd length byte missing\n",
701     gpg_iobuf_where(inp) );
702     rc = G10ERR_INVALID_PACKET;
703     goto leave;
704     }
705     hdr[hdrlen++] = c;
706     pktlen += c + 192;
707     }
708     else if( c == 255 ) {
709     pktlen = (hdr[hdrlen++] = gpg_iobuf_get_noeof(inp)) << 24;
710     pktlen |= (hdr[hdrlen++] = gpg_iobuf_get_noeof(inp)) << 16;
711     pktlen |= (hdr[hdrlen++] = gpg_iobuf_get_noeof(inp)) << 8;
712     if( (c = gpg_iobuf_get(inp)) == -1 ) {
713     printf("%s: 4 byte length invalid\n",
714     gpg_iobuf_where(inp) );
715     rc = G10ERR_INVALID_PACKET;
716     goto leave;
717     }
718     pktlen |= (hdr[hdrlen++] = c );
719     }
720     else { /* partial body length */
721     gpg_iobuf_set_partial_block_mode(inp, c & 0xff);
722     pktlen = 0;/* to indicate partial length */
723     }
724     }
725     }
726     else {
727     pkttype = (ctb>>2)&0xf;
728     lenbytes = ((ctb&3)==3)? 0 : (1<<(ctb & 3));
729     if( !lenbytes ) {
730     pktlen = 0; /* don't know the value */
731     if( pkttype != PKT_COMPRESSED )
732     gpg_iobuf_set_block_mode(inp, 1);
733     }
734     else {
735     for( ; lenbytes; lenbytes-- ) {
736     pktlen <<= 8;
737     pktlen |= hdr[hdrlen++] = gpg_iobuf_get_noeof(inp);
738     }
739     }
740     }
741    
742     if (pktlen == 0xffffffff) {
743     /* with a some probability this is caused by a problem in the
744     * the uncompressing layer - in some error cases it just loops
745     * and spits out 0xff bytes. */
746 twoaday 214 /*printf ("%s: garbled packet detected\n", gpg_iobuf_where(inp));*/
747     rc = G10ERR_INVALID_PACKET;
748     goto leave;
749 werner 46 }
750    
751     if( out && pkttype ) {
752     if( gpg_iobuf_write( out, hdr, hdrlen ) == -1 )
753     rc = G10ERR_WRITE_FILE;
754     else
755     rc = copy_packet(inp, out, pkttype, pktlen );
756     goto leave;
757     }
758    
759     if (with_uid && pkttype == PKT_USER_ID)
760     ;
761     else if( do_skip
762     || !pkttype
763     || (onlykeypkts && pkttype != PKT_PUBLIC_SUBKEY
764     && pkttype != PKT_PUBLIC_KEY
765     && pkttype != PKT_SECRET_SUBKEY
766     && pkttype != PKT_SECRET_KEY ) ) {
767     skip_rest(inp, pktlen);
768     *skip = 1;
769     rc = 0;
770     goto leave;
771     }
772    
773     pkt->pkttype = pkttype;
774     rc = G10ERR_UNKNOWN_PACKET; /* default error */
775     switch( pkttype ) {
776     case PKT_PUBLIC_KEY:
777     case PKT_PUBLIC_SUBKEY:
778     pkt->pkt.public_key = calloc(1, sizeof *pkt->pkt.public_key );
779     rc = parse_key(inp, pkttype, pktlen, hdr, hdrlen, pkt );
780     break;
781     case PKT_SECRET_KEY:
782     case PKT_SECRET_SUBKEY:
783     pkt->pkt.secret_key = calloc(1,sizeof *pkt->pkt.secret_key );
784     rc = parse_key(inp, pkttype, pktlen, hdr, hdrlen, pkt );
785     break;
786     case PKT_SYMKEY_ENC:
787     rc = parse_symkeyenc( inp, pkttype, pktlen, pkt );
788     break;
789     case PKT_PUBKEY_ENC:
790     rc = parse_pubkeyenc(inp, pkttype, pktlen, pkt );
791     break;
792     case PKT_SIGNATURE:
793     pkt->pkt.signature = calloc(1,sizeof *pkt->pkt.signature );
794     rc = parse_signature(inp, pkttype, pktlen, pkt->pkt.signature );
795     break;
796     case PKT_ONEPASS_SIG:
797     pkt->pkt.onepass_sig = calloc(1,sizeof *pkt->pkt.onepass_sig );
798     rc = parse_onepass_sig(inp, pkttype, pktlen, pkt->pkt.onepass_sig );
799     break;
800     case PKT_USER_ID:
801     rc = parse_user_id(inp, pkttype, pktlen, pkt );
802     break;
803     case PKT_ATTRIBUTE:
804     pkt->pkttype = pkttype = PKT_USER_ID; /* we store it in the userID */
805     rc = parse_attribute(inp, pkttype, pktlen, pkt);
806     break;
807     case PKT_OLD_COMMENT:
808     case PKT_COMMENT:
809     rc = parse_comment(inp, pkttype, pktlen, pkt);
810     break;
811     case PKT_RING_TRUST:
812     parse_trust(inp, pkttype, pktlen, pkt);
813     rc = 0;
814     break;
815     case PKT_PLAINTEXT:
816     rc = parse_plaintext(inp, pkttype, pktlen, pkt, new_ctb );
817     break;
818     case PKT_COMPRESSED:
819     rc = parse_compressed(inp, pkttype, pktlen, pkt, new_ctb );
820     break;
821     case PKT_ENCRYPTED:
822     case PKT_ENCRYPTED_MDC:
823     rc = parse_encrypted(inp, pkttype, pktlen, pkt, new_ctb );
824     break;
825     case PKT_MDC:
826     rc = parse_mdc(inp, pkttype, pktlen, pkt, new_ctb );
827     break;
828     case PKT_GPG_CONTROL:
829     rc = parse_gpg_control(inp, pkttype, pktlen, pkt );
830     break;
831     default:
832     skip_packet(inp, pkttype, pktlen);
833     break;
834     }
835    
836     leave:
837     if( !rc && gpg_iobuf_error(inp) )
838     rc = G10ERR_INV_KEYRING;
839     return rc;
840     }
841    
842     static void
843     dump_hex_line( int c, int *i )
844     {
845     if( *i && !(*i%8) ) {
846     if( *i && !(*i%24) )
847     printf("\n%4d:", *i );
848     else
849     putchar(' ');
850     }
851     if( c == -1 )
852     printf(" EOF" );
853     else
854     printf(" %02x", c );
855     ++*i;
856     }
857    
858    
859     static int
860     copy_packet( gpg_iobuf_t inp, gpg_iobuf_t out, int pkttype, unsigned long pktlen )
861     {
862     int n;
863     char buf[100];
864    
865     if( gpg_iobuf_in_block_mode(inp) ) {
866     while( (n = gpg_iobuf_read( inp, buf, 100 )) != -1 )
867     if( gpg_iobuf_write(out, buf, n ) )
868     return G10ERR_WRITE_FILE; /* write error */
869     }
870     else if( !pktlen && pkttype == PKT_COMPRESSED ) {
871     printf("copy_packet: compressed!\n");
872     /* compressed packet, copy till EOF */
873     while( (n = gpg_iobuf_read( inp, buf, 100 )) != -1 )
874     if( gpg_iobuf_write(out, buf, n ) )
875     return G10ERR_WRITE_FILE; /* write error */
876     }
877     else {
878     for( ; pktlen; pktlen -= n ) {
879     n = pktlen > 100 ? 100 : pktlen;
880     n = gpg_iobuf_read( inp, buf, n );
881     if( n == -1 )
882     return G10ERR_READ_FILE;
883     if( gpg_iobuf_write(out, buf, n ) )
884     return G10ERR_WRITE_FILE; /* write error */
885     }
886     }
887     return 0;
888     }
889    
890    
891     static void
892     skip_packet( gpg_iobuf_t inp, int pkttype, unsigned long pktlen )
893     {
894     if( list_mode ) {
895     if( pkttype == PKT_MARKER )
896     fputs(":marker packet:\n", stdout );
897     else
898     printf(":unknown packet: type %2d, length %lu\n", pkttype, pktlen);
899     if( pkttype ) {
900     int c, i=0 ;
901     if( pkttype != PKT_MARKER )
902     fputs("dump:", stdout );
903     if( gpg_iobuf_in_block_mode(inp) ) {
904     while( (c=gpg_iobuf_get(inp)) != -1 )
905     dump_hex_line(c, &i);
906     }
907     else {
908     for( ; pktlen; pktlen-- )
909     dump_hex_line(gpg_iobuf_get(inp), &i);
910     }
911     putchar('\n');
912     return;
913     }
914     }
915     skip_rest(inp,pktlen);
916     }
917    
918     static void
919     skip_rest( gpg_iobuf_t inp, unsigned long pktlen )
920     {
921     if( gpg_iobuf_in_block_mode(inp) ) {
922     while( gpg_iobuf_get(inp) != -1 )
923     ;
924     }
925     else {
926     for( ; pktlen; pktlen-- )
927     if( gpg_iobuf_get(inp) == -1 )
928     break;
929     }
930     }
931    
932    
933     static void *
934     read_rest( gpg_iobuf_t inp, size_t pktlen )
935     {
936     byte *p;
937     int i;
938    
939     if( gpg_iobuf_in_block_mode(inp) ) {
940     printf("read_rest: can't store stream data\n");
941     p = NULL;
942     }
943     else {
944     p = malloc( pktlen );
945     for(i=0; pktlen; pktlen--, i++ )
946     p[i] = gpg_iobuf_get(inp);
947     }
948     return p;
949     }
950    
951    
952    
953     static int
954     parse_symkeyenc( gpg_iobuf_t inp, int pkttype, unsigned long pktlen, PACKET *packet )
955     {
956     PKT_symkey_enc *k;
957     int rc = 0;
958     int i, version, s2kmode, cipher_algo, hash_algo, seskeylen, minlen;
959    
960     if( pktlen < 4 ) {
961     printf("packet(%d) too short\n", pkttype);
962     rc = G10ERR_INVALID_PACKET;
963     goto leave;
964     }
965     version = gpg_iobuf_get_noeof(inp); pktlen--;
966     if( version != 4 ) {
967     printf("packet(%d) with unknown version %d\n", pkttype, version);
968     rc = G10ERR_INVALID_PACKET;
969     goto leave;
970     }
971     if( pktlen > 200 ) { /* (we encode the seskeylen in a byte) */
972     printf("packet(%d) too large\n", pkttype);
973     rc = G10ERR_INVALID_PACKET;
974     goto leave;
975     }
976     cipher_algo = gpg_iobuf_get_noeof(inp); pktlen--;
977     s2kmode = gpg_iobuf_get_noeof(inp); pktlen--;
978     hash_algo = gpg_iobuf_get_noeof(inp); pktlen--;
979     switch( s2kmode ) {
980     case 0: /* simple s2k */
981     minlen = 0;
982     break;
983     case 1: /* salted s2k */
984     minlen = 8;
985     break;
986     case 3: /* iterated+salted s2k */
987     minlen = 9;
988     break;
989     default:
990     printf("unknown S2K %d\n", s2kmode );
991     goto leave;
992     }
993     if( minlen > pktlen ) {
994     printf("packet with S2K %d too short\n", s2kmode );
995     rc = G10ERR_INVALID_PACKET;
996     goto leave;
997     }
998     seskeylen = pktlen - minlen;
999     k = packet->pkt.symkey_enc = calloc(1, sizeof *packet->pkt.symkey_enc
1000     + seskeylen - 1 );
1001     k->version = version;
1002     k->cipher_algo = cipher_algo;
1003     k->s2k.mode = s2kmode;
1004     k->s2k.hash_algo = hash_algo;
1005     if( s2kmode == 1 || s2kmode == 3 ) {
1006     for(i=0; i < 8 && pktlen; i++, pktlen-- )
1007     k->s2k.salt[i] = gpg_iobuf_get_noeof(inp);
1008     }
1009     if( s2kmode == 3 ) {
1010     k->s2k.count = gpg_iobuf_get(inp); pktlen--;
1011     }
1012     k->seskeylen = seskeylen;
1013     for(i=0; i < seskeylen && pktlen; i++, pktlen-- )
1014     k->seskey[i] = gpg_iobuf_get_noeof(inp);
1015     assert( !pktlen );
1016    
1017     if( list_mode ) {
1018     printf(":symkey enc packet: version %d, cipher %d, s2k %d, hash %d\n",
1019     version, cipher_algo, s2kmode, hash_algo);
1020     if( s2kmode == 1 || s2kmode == 3 ) {
1021     printf("\tsalt ");
1022     for(i=0; i < 8; i++ )
1023     printf("%02x", k->s2k.salt[i]);
1024     if( s2kmode == 3 )
1025     printf(", count %lu\n", (ulong)k->s2k.count );
1026     printf("\n");
1027     }
1028     }
1029    
1030     leave:
1031     skip_rest(inp, pktlen);
1032     return rc;
1033     }
1034    
1035     static int
1036     parse_pubkeyenc( gpg_iobuf_t inp, int pkttype, unsigned long pktlen, PACKET *packet )
1037     {
1038     unsigned int n;
1039     int rc = 0;
1040     int i, ndata;
1041     PKT_pubkey_enc *k;
1042    
1043     k = packet->pkt.pubkey_enc = calloc(1, sizeof *packet->pkt.pubkey_enc);
1044     if( pktlen < 12 ) {
1045     printf("packet(%d) too short\n", pkttype);
1046     rc = G10ERR_INVALID_PACKET;
1047     goto leave;
1048     }
1049     k->version = gpg_iobuf_get_noeof(inp); pktlen--;
1050     if( k->version != 2 && k->version != 3 ) {
1051     printf("packet(%d) with unknown version %d\n", pkttype, k->version);
1052     rc = G10ERR_INVALID_PACKET;
1053     goto leave;
1054     }
1055     k->keyid[0] = read_32(inp); pktlen -= 4;
1056     k->keyid[1] = read_32(inp); pktlen -= 4;
1057     k->pubkey_algo = gpg_iobuf_get_noeof(inp); pktlen--;
1058     k->throw_keyid = 0; /* only used as flag for build_packet */
1059     if( list_mode )
1060     printf(":pubkey enc packet: version %d, algo %d, keyid %08lX%08lX\n",
1061     k->version, k->pubkey_algo, (ulong)k->keyid[0], (ulong)k->keyid[1]);
1062    
1063     ndata = pubkey_get_nenc(k->pubkey_algo);
1064     if( !ndata ) {
1065     if( list_mode )
1066     printf("\tunsupported algorithm %d\n", k->pubkey_algo );
1067     unknown_pubkey_warning( k->pubkey_algo );
1068     k->data[0] = NULL; /* no need to store the encrypted data */
1069     }
1070     else {
1071     for( i=0; i < ndata; i++ ) {
1072     n = pktlen;
1073     k->data[i] = mpi_read(inp, &n, 0); pktlen -=n;
1074     if( list_mode ) {
1075     printf("\tdata: ");
1076     mpi_print(stdout, k->data[i], mpi_print_mode );
1077     putchar('\n');
1078     }
1079     if (!k->data[i])
1080     rc = G10ERR_INVALID_PACKET;
1081     }
1082     }
1083    
1084     leave:
1085     skip_rest(inp, pktlen);
1086     return rc;
1087     }
1088    
1089     static void
1090     dump_sig_subpkt( int hashed, int type, int critical,
1091     const byte *buffer, size_t buflen, size_t length )
1092     {
1093     const char *p=NULL;
1094     int i;
1095    
1096     /* The CERT has warning out with explains how to use GNUPG to
1097     * detect the ARRs - we print our old message here when it is a faked
1098     * ARR and add an additional notice */
1099     if ( type == SIGSUBPKT_ARR && !hashed ) {
1100     printf("\tsubpkt %d len %u (additional recipient request)\n"
1101     "WARNING: PGP versions > 5.0 and < 6.5.8 will automagically "
1102     "encrypt to this key and thereby reveal the plaintext to "
1103     "the owner of this ARR key. Detailed info follows:\n",
1104     type, (unsigned)length );
1105     }
1106    
1107    
1108     printf("\t%s%ssubpkt %d len %u (", /*)*/
1109     critical ? "critical ":"",
1110     hashed ? "hashed ":"", type, (unsigned)length );
1111     buffer++;
1112     length--;
1113     if( length > buflen ) {
1114     printf("too short: buffer is only %u)\n", (unsigned)buflen );
1115     return;
1116     }
1117     switch( type ) {
1118     case SIGSUBPKT_SIG_CREATED:
1119     if( length >= 4 )
1120     printf("sig created %s", strtimestamp( buffer_to_u32(buffer) ) );
1121     break;
1122     case SIGSUBPKT_SIG_EXPIRE:
1123     if( length >= 4 )
1124     printf("sig expires after %s",
1125     strtimevalue( buffer_to_u32(buffer) ) );
1126     break;
1127     case SIGSUBPKT_EXPORTABLE:
1128     if( length )
1129     printf("%sexportable", *buffer? "":"not ");
1130     break;
1131     case SIGSUBPKT_TRUST:
1132     if(length!=2)
1133     p="[invalid trust signature]";
1134     else
1135     printf("trust signature of level %d, amount %d",buffer[0],buffer[1]);
1136     break;
1137     case SIGSUBPKT_REGEXP:
1138     if(!length)
1139     p="[invalid regexp]";
1140     else
1141     printf("regular expression: \"%s\"",buffer);
1142     break;
1143     case SIGSUBPKT_REVOCABLE:
1144     if( length )
1145     printf("%srevocable", *buffer? "":"not ");
1146     break;
1147     case SIGSUBPKT_KEY_EXPIRE:
1148     if( length >= 4 )
1149     printf("key expires after %s",
1150     strtimevalue( buffer_to_u32(buffer) ) );
1151     break;
1152     case SIGSUBPKT_PREF_SYM:
1153     fputs("pref-sym-algos:", stdout );
1154     for( i=0; i < length; i++ )
1155     printf(" %d", buffer[i] );
1156     break;
1157     case SIGSUBPKT_REV_KEY:
1158     fputs("revocation key: ", stdout );
1159     if( length < 22 )
1160     p = "[too short]";
1161     else {
1162     printf("c=%02x a=%d f=", buffer[0], buffer[1] );
1163     for( i=2; i < length; i++ )
1164     printf("%02X", buffer[i] );
1165     }
1166     break;
1167     case SIGSUBPKT_ISSUER:
1168     if( length >= 8 )
1169     printf("issuer key ID %08lX%08lX",
1170     (ulong)buffer_to_u32(buffer),
1171     (ulong)buffer_to_u32(buffer+4) );
1172     break;
1173     case SIGSUBPKT_NOTATION:
1174     {
1175     fputs("notation: ", stdout );
1176     if( length < 8 )
1177     p = "[too short]";
1178     else if( !(*buffer & 0x80) )
1179     p = "[not human readable]";
1180     else {
1181     const byte *s = buffer;
1182     size_t n1, n2;
1183    
1184     n1 = (s[4] << 8) | s[5];
1185     n2 = (s[6] << 8) | s[7];
1186     s += 8;
1187     if( 8+n1+n2 != length )
1188     p = "[error]";
1189     else {
1190     print_string( stdout, s, n1, ')' );
1191     putc( '=', stdout );
1192     print_string( stdout, s+n1, n2, ')' );
1193     }
1194     }
1195     }
1196     break;
1197     case SIGSUBPKT_PREF_HASH:
1198     fputs("pref-hash-algos:", stdout );
1199     for( i=0; i < length; i++ )
1200     printf(" %d", buffer[i] );
1201     break;
1202     case SIGSUBPKT_PREF_COMPR:
1203     fputs("pref-zip-algos:", stdout );
1204     for( i=0; i < length; i++ )
1205     printf(" %d", buffer[i] );
1206     break;
1207     case SIGSUBPKT_KS_FLAGS:
1208     fputs("key server preferences:",stdout);
1209     for(i=0;i<length;i++)
1210     printf(" %02X", buffer[i]);
1211     break;
1212     case SIGSUBPKT_PREF_KS:
1213     p = "preferred key server";
1214     break;
1215     case SIGSUBPKT_PRIMARY_UID:
1216     p = "primary user ID";
1217     break;
1218     case SIGSUBPKT_POLICY:
1219     fputs("policy: ", stdout );
1220     print_string( stdout, buffer, length, ')' );
1221     break;
1222     case SIGSUBPKT_KEY_FLAGS:
1223     fputs ( "key flags:", stdout );
1224     for( i=0; i < length; i++ )
1225     printf(" %02X", buffer[i] );
1226     break;
1227     case SIGSUBPKT_SIGNERS_UID:
1228     p = "signer's user ID";
1229     break;
1230     case SIGSUBPKT_REVOC_REASON:
1231     if( length ) {
1232     printf("revocation reason 0x%02x (", *buffer );
1233     print_string( stdout, buffer+1, length-1, ')' );
1234     p = ")";
1235     }
1236     break;
1237     case SIGSUBPKT_ARR:
1238     fputs("Big Brother's key (ignored): ", stdout );
1239     if( length < 22 )
1240     p = "[too short]";
1241     else {
1242     printf("c=%02x a=%d f=", buffer[0], buffer[1] );
1243     for( i=2; i < length; i++ )
1244     printf("%02X", buffer[i] );
1245     }
1246     break;
1247     case SIGSUBPKT_FEATURES:
1248     fputs ( "features:", stdout );
1249     for( i=0; i < length; i++ )
1250     printf(" %02x", buffer[i] );
1251     break;
1252     case SIGSUBPKT_PRIV_VERIFY_CACHE:
1253     p = "obsolete verification cache";
1254     break;
1255     default: p = "?"; break;
1256     }
1257    
1258     printf("%s)\n", p? p: "");
1259     }
1260    
1261     /****************
1262     * Returns: >= 0 offset into buffer
1263     * -1 unknown type
1264     * -2 unsupported type
1265     * -3 subpacket too short
1266     */
1267     int
1268     parse_one_sig_subpkt( const byte *buffer, size_t n, int type )
1269     {
1270     switch( type ) {
1271     case SIGSUBPKT_REV_KEY:
1272     if(n < 22)
1273     break;
1274     return 0;
1275     case SIGSUBPKT_SIG_CREATED:
1276     case SIGSUBPKT_SIG_EXPIRE:
1277     case SIGSUBPKT_KEY_EXPIRE:
1278     if( n < 4 )
1279     break;
1280     return 0;
1281     case SIGSUBPKT_KEY_FLAGS:
1282     case SIGSUBPKT_KS_FLAGS:
1283     case SIGSUBPKT_PREF_SYM:
1284     case SIGSUBPKT_PREF_HASH:
1285     case SIGSUBPKT_PREF_COMPR:
1286     case SIGSUBPKT_POLICY:
1287     case SIGSUBPKT_FEATURES:
1288     return 0;
1289     case SIGSUBPKT_EXPORTABLE:
1290     case SIGSUBPKT_REVOCABLE:
1291     if( !n )
1292     break;
1293     return 0;
1294     case SIGSUBPKT_ISSUER: /* issuer key ID */
1295     if( n < 8 )
1296     break;
1297     return 0;
1298     case SIGSUBPKT_NOTATION:
1299     if( n < 8 ) /* minimum length needed */
1300     break;
1301     return 0;
1302     case SIGSUBPKT_REVOC_REASON:
1303     if( !n )
1304     break;
1305     return 0;
1306     case SIGSUBPKT_PRIMARY_UID:
1307     if ( n != 1 )
1308     break;
1309     return 0;
1310     case SIGSUBPKT_PRIV_VERIFY_CACHE:
1311     /* We used this in gpg 1.0.5 and 1.0.6 to cache signature
1312     * verification results - it is no longer used.
1313     * "GPG" 0x00 <mode> <stat>
1314     * where mode == 1: valid data, stat == 0: invalid signature
1315     * stat == 1: valid signature
1316     * (because we use private data, we check our marker) */
1317     if( n < 6 )
1318     break;
1319     if( buffer[0] != 'G' || buffer[1] != 'P'
1320     || buffer[2] != 'G' || buffer[3] )
1321     return -2;
1322     return 4;
1323     default: return -1;
1324     }
1325     return -3;
1326     }
1327    
1328    
1329     static int
1330     can_handle_critical( const byte *buffer, size_t n, int type )
1331     {
1332     switch( type ) {
1333     case SIGSUBPKT_NOTATION:
1334     if( n >= 8 && (*buffer & 0x80) )
1335     return 1; /* human readable is handled */
1336     return 0;
1337    
1338     case SIGSUBPKT_SIG_CREATED:
1339     case SIGSUBPKT_SIG_EXPIRE:
1340     case SIGSUBPKT_KEY_EXPIRE:
1341     case SIGSUBPKT_EXPORTABLE:
1342     case SIGSUBPKT_REVOCABLE:
1343     case SIGSUBPKT_REV_KEY:
1344     case SIGSUBPKT_ISSUER:/* issuer key ID */
1345     case SIGSUBPKT_PREF_SYM:
1346     case SIGSUBPKT_PREF_HASH:
1347     case SIGSUBPKT_PREF_COMPR:
1348     case SIGSUBPKT_KEY_FLAGS:
1349     case SIGSUBPKT_PRIMARY_UID:
1350     case SIGSUBPKT_FEATURES:
1351     case SIGSUBPKT_POLICY: /* Is it enough to show the policy? */
1352     return 1;
1353    
1354     default:
1355     return 0;
1356     }
1357     }
1358    
1359    
1360     const byte *
1361     enum_sig_subpkt( const subpktarea_t *pktbuf, sigsubpkttype_t reqtype,
1362     size_t *ret_n, int *start, int *critical )
1363     {
1364     const byte *buffer;
1365     int buflen;
1366     int type;
1367     int critical_dummy;
1368     int offset;
1369     size_t n;
1370     int seq = 0;
1371     int reqseq = start? *start: 0;
1372    
1373     if(!critical)
1374     critical=&critical_dummy;
1375    
1376     if( !pktbuf || reqseq == -1 ) {
1377     /* return some value different from NULL to indicate that
1378     * there is no critical bit we do not understand. The caller
1379     * will never use the value. Yes I know, it is an ugly hack */
1380     return reqtype == SIGSUBPKT_TEST_CRITICAL? (const byte*)&pktbuf : NULL;
1381     }
1382     buffer = pktbuf->data;
1383     buflen = pktbuf->len;
1384     while( buflen ) {
1385     n = *buffer++; buflen--;
1386     if( n == 255 ) { /* 4 byte length header */
1387     if( buflen < 4 )
1388     goto too_short;
1389     n = (buffer[0] << 24) | (buffer[1] << 16)
1390     | (buffer[2] << 8) | buffer[3];
1391     buffer += 4;
1392     buflen -= 4;
1393     }
1394     else if( n >= 192 ) { /* 2 byte special encoded length header */
1395     if( buflen < 2 )
1396     goto too_short;
1397     n = (( n - 192 ) << 8) + *buffer + 192;
1398     buffer++;
1399     buflen--;
1400     }
1401     if( buflen < n )
1402     goto too_short;
1403     type = *buffer;
1404     if( type & 0x80 ) {
1405     type &= 0x7f;
1406     *critical = 1;
1407     }
1408     else
1409     *critical = 0;
1410     if( !(++seq > reqseq) )
1411     ;
1412     else if( reqtype == SIGSUBPKT_TEST_CRITICAL ) {
1413     if( *critical ) {
1414     if( n-1 > buflen+1 )
1415     goto too_short;
1416     if( !can_handle_critical(buffer+1, n-1, type ) ) {
1417     printf("subpacket of type %d has critical bit set\n",
1418     type);
1419     if( start )
1420     *start = seq;
1421     return NULL; /* this is an error */
1422     }
1423     }
1424     }
1425     else if( reqtype < 0 ) /* list packets */
1426     dump_sig_subpkt( reqtype == SIGSUBPKT_LIST_HASHED,
1427     type, *critical, buffer, buflen, n );
1428     else if( type == reqtype ) { /* found */
1429     buffer++;
1430     n--;
1431     if( n > buflen )
1432     goto too_short;
1433     if( ret_n )
1434     *ret_n = n;
1435     offset = parse_one_sig_subpkt(buffer, n, type );
1436     switch( offset ) {
1437     case -3:
1438     printf("subpacket of type %d too short\n", type);
1439     return NULL;
1440     case -2:
1441     return NULL;
1442     case -1:
1443     printf( "This is a BUG.\n%s:%d\n", __FILE__, __LINE__ );
1444     exit( -1 );
1445     default:
1446     break;
1447     }
1448     if( start )
1449     *start = seq;
1450     return buffer+offset;
1451     }
1452     buffer += n; buflen -=n;
1453     }
1454     if( reqtype == SIGSUBPKT_TEST_CRITICAL )
1455     return buffer; /* as value true to indicate that there is no */
1456     /* critical bit we don't understand */
1457     if( start )
1458     *start = -1;
1459     return NULL; /* end of packets; not found */
1460    
1461     too_short:
1462     printf("buffer shorter than subpacket\n");
1463     if( start )
1464     *start = -1;
1465     return NULL;
1466     }
1467    
1468    
1469     const byte *
1470     gpg_parse_sig_subpkt (const subpktarea_t *buffer, sigsubpkttype_t reqtype,
1471     size_t *ret_n)
1472     {
1473     return enum_sig_subpkt( buffer, reqtype, ret_n, NULL, NULL );
1474     }
1475    
1476     const byte *
1477     gpg_parse_sig_subpkt2 (PKT_signature *sig, sigsubpkttype_t reqtype,
1478     size_t *ret_n )
1479     {
1480     const byte *p;
1481    
1482     p = gpg_parse_sig_subpkt (sig->hashed, reqtype, ret_n );
1483     if( !p )
1484     p = gpg_parse_sig_subpkt (sig->unhashed, reqtype, ret_n );
1485     return p;
1486     }
1487    
1488     /* Find all revocation keys. Look in hashed area only. */
1489     void parse_revkeys(PKT_signature *sig)
1490     {
1491     struct revocation_key *revkey;
1492     int seq=0;
1493     size_t len;
1494    
1495     if( sig->sig_class != 0x1F )
1496     return;
1497    
1498     while((revkey=
1499     (struct revocation_key *)enum_sig_subpkt(sig->hashed,
1500     SIGSUBPKT_REV_KEY,
1501     &len,&seq,NULL))) {
1502     if( len==sizeof(struct revocation_key) &&
1503     (revkey->rclass&0x80)) /* 0x80 bit must be set */ {
1504     sig->revkey=realloc(sig->revkey,
1505     sizeof(struct revocation_key *)*(sig->numrevkeys+1));
1506     sig->revkey[sig->numrevkeys]=revkey;
1507     sig->numrevkeys++;
1508     }
1509     }
1510     }
1511    
1512     static int
1513     parse_signature( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
1514     PKT_signature *sig )
1515     {
1516     int md5_len=0;
1517     unsigned n;
1518     int is_v4=0;
1519     int rc=0;
1520     int i, ndata;
1521    
1522     if( pktlen < 16 ) {
1523     printf("packet(%d) too short\n", pkttype);
1524     goto leave;
1525     }
1526     sig->version = gpg_iobuf_get_noeof(inp); pktlen--;
1527     if( sig->version == 4 )
1528     is_v4=1;
1529     else if( sig->version != 2 && sig->version != 3 ) {
1530     printf("packet(%d) with unknown version %d\n", pkttype, sig->version);
1531     rc = G10ERR_INVALID_PACKET;
1532     goto leave;
1533     }
1534    
1535     if( !is_v4 ) {
1536     md5_len = gpg_iobuf_get_noeof(inp); pktlen--;
1537     }
1538     sig->sig_class = gpg_iobuf_get_noeof(inp); pktlen--;
1539     if( !is_v4 ) {
1540     sig->timestamp = read_32(inp); pktlen -= 4;
1541     sig->keyid[0] = read_32(inp); pktlen -= 4;
1542     sig->keyid[1] = read_32(inp); pktlen -= 4;
1543     }
1544     sig->pubkey_algo = gpg_iobuf_get_noeof(inp); pktlen--;
1545     sig->digest_algo = gpg_iobuf_get_noeof(inp); pktlen--;
1546     sig->flags.exportable=1;
1547     sig->flags.revocable=1;
1548     if( is_v4 ) { /* read subpackets */
1549     n = read_16(inp); pktlen -= 2; /* length of hashed data */
1550     if( n > 10000 ) {
1551     printf("signature packet: hashed data too long\n");
1552     rc = G10ERR_INVALID_PACKET;
1553     goto leave;
1554     }
1555     if( n ) {
1556     sig->hashed = malloc (sizeof (*sig->hashed) + n - 1 );
1557     sig->hashed->size = n;
1558     sig->hashed->len = n;
1559     if( gpg_iobuf_read (inp, sig->hashed->data, n ) != n ) {
1560     printf ("premature eof while reading "
1561     "hashed signature data\n");
1562     rc = -1;
1563     goto leave;
1564     }
1565     pktlen -= n;
1566     }
1567     n = read_16(inp); pktlen -= 2; /* length of unhashed data */
1568     if( n > 10000 ) {
1569     printf("signature packet: unhashed data too long\n");
1570     rc = G10ERR_INVALID_PACKET;
1571     goto leave;
1572     }
1573     if( n ) {
1574     /* we add 8 extra bytes so that we have space for the signature
1575     * status cache. Well we are wastin this if there is a cache
1576     * packet already, but in the other case it avoids an realloc */
1577     sig->unhashed = malloc (sizeof(*sig->unhashed) + n + 8 - 1 );
1578     sig->unhashed->size = n + 8;
1579     sig->unhashed->len = n;
1580     if( gpg_iobuf_read(inp, sig->unhashed->data, n ) != n ) {
1581     printf("premature eof while reading "
1582     "unhashed signature data\n");
1583     rc = -1;
1584     goto leave;
1585     }
1586     pktlen -= n;
1587     }
1588     }
1589    
1590     if( pktlen < 5 ) { /* sanity check */
1591     printf("packet(%d) too short\n", pkttype);
1592     rc = G10ERR_INVALID_PACKET;
1593     goto leave;
1594     }
1595    
1596     sig->digest_start[0] = gpg_iobuf_get_noeof(inp); pktlen--;
1597     sig->digest_start[1] = gpg_iobuf_get_noeof(inp); pktlen--;
1598    
1599     if( is_v4 && sig->pubkey_algo ) { /*extract required information */
1600     const byte *p;
1601    
1602     /* set sig->flags.unknown_critical if there is a
1603     * critical bit set for packets which we do not understand */
1604     if( !gpg_parse_sig_subpkt (sig->hashed, SIGSUBPKT_TEST_CRITICAL, NULL)
1605     || !gpg_parse_sig_subpkt (sig->unhashed, SIGSUBPKT_TEST_CRITICAL,
1606     NULL) )
1607     {
1608     sig->flags.unknown_critical = 1;
1609     }
1610    
1611     p = gpg_parse_sig_subpkt (sig->hashed, SIGSUBPKT_SIG_CREATED, NULL );
1612     if( !p )
1613     printf("signature packet without timestamp\n");
1614     else
1615     sig->timestamp = buffer_to_u32(p);
1616     p = gpg_parse_sig_subpkt2( sig, SIGSUBPKT_ISSUER, NULL );
1617     if( !p )
1618     printf("signature packet without keyid\n");
1619     else {
1620     sig->keyid[0] = buffer_to_u32(p);
1621     sig->keyid[1] = buffer_to_u32(p+4);
1622     }
1623    
1624     p=gpg_parse_sig_subpkt(sig->hashed,SIGSUBPKT_SIG_EXPIRE,NULL);
1625     if(p)
1626     sig->expiredate=sig->timestamp+buffer_to_u32(p);
1627     if(sig->expiredate && sig->expiredate<=time(NULL))
1628     sig->flags.expired=1;
1629    
1630     p=gpg_parse_sig_subpkt(sig->hashed,SIGSUBPKT_POLICY,NULL);
1631     if(p)
1632     sig->flags.policy_url=1;
1633    
1634     p=gpg_parse_sig_subpkt(sig->hashed,SIGSUBPKT_NOTATION,NULL);
1635     if(p)
1636     sig->flags.notation=1;
1637    
1638     p=gpg_parse_sig_subpkt(sig->hashed,SIGSUBPKT_REVOCABLE,NULL);
1639     if(p && *p==0)
1640     sig->flags.revocable=0;
1641    
1642     /* We accept the exportable subpacket from either the hashed
1643     or unhashed areas as older versions of gpg put it in the
1644     unhashed area. In theory, anyway, we should never see this
1645     packet off of a local keyring. */
1646    
1647     p=gpg_parse_sig_subpkt2(sig,SIGSUBPKT_EXPORTABLE,NULL);
1648     if(p && *p==0)
1649     sig->flags.exportable=0;
1650    
1651     /* Find all revocation keys. */
1652     if(sig->sig_class==0x1F)
1653     parse_revkeys(sig);
1654     }
1655    
1656     if( list_mode ) {
1657     printf(":signature packet: algo %d, keyid %08lX%08lX\n"
1658     "\tversion %d, created %lu, md5len %d, sigclass %02x\n"
1659     "\tdigest algo %d, begin of digest %02x %02x\n",
1660     sig->pubkey_algo,
1661     (ulong)sig->keyid[0], (ulong)sig->keyid[1],
1662     sig->version, (ulong)sig->timestamp, md5_len, sig->sig_class,
1663     sig->digest_algo,
1664     sig->digest_start[0], sig->digest_start[1] );
1665     if( is_v4 ) {
1666     gpg_parse_sig_subpkt (sig->hashed, SIGSUBPKT_LIST_HASHED, NULL );
1667     gpg_parse_sig_subpkt (sig->unhashed, SIGSUBPKT_LIST_UNHASHED, NULL);
1668     }
1669     }
1670    
1671     ndata = pubkey_get_nsig(sig->pubkey_algo);
1672     if( !ndata ) {
1673     if( list_mode )
1674     printf("\tunknown algorithm %d\n", sig->pubkey_algo );
1675     unknown_pubkey_warning( sig->pubkey_algo );
1676     /* we store the plain material in data[0], so that we are able
1677     * to write it back with build_packet() */
1678     sig->data[0] = mpi_set_opaque(NULL, read_rest(inp, pktlen), pktlen );
1679     pktlen = 0;
1680     }
1681     else {
1682     for( i=0; i < ndata; i++ ) {
1683     n = pktlen;
1684     sig->data[i] = mpi_read(inp, &n, 0 );
1685     pktlen -=n;
1686     if( list_mode ) {
1687     printf("\tdata: ");
1688     mpi_print(stdout, sig->data[i], mpi_print_mode );
1689     putchar('\n');
1690     }
1691     if (!sig->data[i])
1692     rc = G10ERR_INVALID_PACKET;
1693     }
1694     }
1695    
1696     leave:
1697     skip_rest(inp, pktlen);
1698     return rc;
1699     }
1700    
1701    
1702     static int
1703     parse_onepass_sig( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
1704     PKT_onepass_sig *ops )
1705     {
1706     int version;
1707     int rc = 0;
1708    
1709     if( pktlen < 13 ) {
1710     printf("packet(%d) too short\n", pkttype);
1711     rc = G10ERR_INVALID_PACKET;
1712     goto leave;
1713     }
1714     version = gpg_iobuf_get_noeof(inp); pktlen--;
1715     if( version != 3 ) {
1716     printf("onepass_sig with unknown version %d\n", version);
1717     rc = G10ERR_INVALID_PACKET;
1718     goto leave;
1719     }
1720     ops->sig_class = gpg_iobuf_get_noeof(inp); pktlen--;
1721     ops->digest_algo = gpg_iobuf_get_noeof(inp); pktlen--;
1722     ops->pubkey_algo = gpg_iobuf_get_noeof(inp); pktlen--;
1723     ops->keyid[0] = read_32(inp); pktlen -= 4;
1724     ops->keyid[1] = read_32(inp); pktlen -= 4;
1725     ops->last = gpg_iobuf_get_noeof(inp); pktlen--;
1726     if( list_mode )
1727     printf(":onepass_sig packet: keyid %08lX%08lX\n"
1728     "\tversion %d, sigclass %02x, digest %d, pubkey %d, last=%d\n",
1729     (ulong)ops->keyid[0], (ulong)ops->keyid[1],
1730     version, ops->sig_class,
1731     ops->digest_algo, ops->pubkey_algo, ops->last );
1732    
1733    
1734     leave:
1735     skip_rest(inp, pktlen);
1736     return rc;
1737     }
1738    
1739    
1740     static int
1741     parse_key( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
1742     byte *hdr, int hdrlen, PACKET *pkt )
1743     {
1744     int i, version, algorithm;
1745     unsigned n;
1746     unsigned long timestamp, expiredate, max_expiredate;
1747     int npkey, nskey;
1748     int is_v4=0;
1749     int rc=0;
1750    
1751     version = gpg_iobuf_get_noeof(inp); pktlen--;
1752     if( pkttype == PKT_PUBLIC_SUBKEY && version == '#' ) {
1753     /* early versions of G10 use old PGP comments packets;
1754     * luckily all those comments are started by a hash */
1755     if( list_mode ) {
1756     printf(":rfc1991 comment packet: \"" );
1757     for( ; pktlen; pktlen-- ) {
1758     int c;
1759     c = gpg_iobuf_get_noeof(inp);
1760     if( c >= ' ' && c <= 'z' )
1761     putchar(c);
1762     else
1763     printf("\\x%02x", c );
1764     }
1765     printf("\"\n");
1766     }
1767     skip_rest(inp, pktlen);
1768     return 0;
1769     }
1770     else if( version == 4 )
1771     is_v4=1;
1772     else if( version != 2 && version != 3 ) {
1773     printf("packet(%d) with unknown version %d\n", pkttype, version);
1774     rc = G10ERR_INVALID_PACKET;
1775     goto leave;
1776     }
1777    
1778     if( pktlen < 11 ) {
1779     printf("packet(%d) too short\n", pkttype);
1780     rc = G10ERR_INVALID_PACKET;
1781     goto leave;
1782     }
1783    
1784     timestamp = read_32(inp); pktlen -= 4;
1785     if( is_v4 ) {
1786     expiredate = 0; /* have to get it from the selfsignature */
1787     max_expiredate = 0;
1788     }
1789     else {
1790     unsigned short ndays;
1791     ndays = read_16(inp); pktlen -= 2;
1792     if( ndays )
1793     expiredate = timestamp + ndays * 86400L;
1794     else
1795     expiredate = 0;
1796    
1797     max_expiredate=expiredate;
1798     }
1799     algorithm = gpg_iobuf_get_noeof(inp); pktlen--;
1800     if( list_mode )
1801     printf(":%s key packet:\n"
1802     "\tversion %d, algo %d, created %lu, expires %lu\n",
1803     pkttype == PKT_PUBLIC_KEY? "public" :
1804     pkttype == PKT_SECRET_KEY? "secret" :
1805     pkttype == PKT_PUBLIC_SUBKEY? "public sub" :
1806     pkttype == PKT_SECRET_SUBKEY? "secret sub" : "??",
1807     version, algorithm, timestamp, expiredate );
1808    
1809     if( pkttype == PKT_SECRET_KEY || pkttype == PKT_SECRET_SUBKEY ) {
1810     PKT_secret_key *sk = pkt->pkt.secret_key;
1811    
1812     sk->timestamp = timestamp;
1813     sk->expiredate = expiredate;
1814     sk->max_expiredate = max_expiredate;
1815     sk->hdrbytes = hdrlen;
1816     sk->version = version;
1817     sk->is_primary = pkttype == PKT_SECRET_KEY;
1818     sk->pubkey_algo = algorithm;
1819     sk->req_usage = 0;
1820     sk->pubkey_usage = 0; /* not yet used */
1821     }
1822     else {
1823     PKT_public_key *pk = pkt->pkt.public_key;
1824    
1825     pk->timestamp = timestamp;
1826     pk->expiredate = expiredate;
1827     pk->max_expiredate = max_expiredate;
1828     pk->hdrbytes = hdrlen;
1829     pk->version = version;
1830     pk->is_primary = pkttype == PKT_PUBLIC_KEY;
1831     pk->pubkey_algo = algorithm;
1832     pk->req_usage = 0;
1833     pk->pubkey_usage = 0; /* not yet used */
1834     pk->is_revoked = 0;
1835     pk->keyid[0] = 0;
1836     pk->keyid[1] = 0;
1837     }
1838     nskey = pubkey_get_nskey( algorithm );
1839     npkey = pubkey_get_npkey( algorithm );
1840     if( !npkey ) {
1841     if( list_mode )
1842     printf("\tunknown algorithm %d\n", algorithm );
1843     unknown_pubkey_warning( algorithm );
1844     }
1845    
1846    
1847     if( pkttype == PKT_SECRET_KEY || pkttype == PKT_SECRET_SUBKEY ) {
1848     PKT_secret_key *sk = pkt->pkt.secret_key;
1849     byte temp[16];
1850     size_t snlen = 0;
1851    
1852     if( !npkey ) {
1853     sk->skey[0] = mpi_set_opaque( NULL,
1854     read_rest(inp, pktlen), pktlen );
1855     pktlen = 0;
1856     goto leave;
1857     }
1858    
1859     for(i=0; i < npkey; i++ ) {
1860     n = pktlen; sk->skey[i] = mpi_read(inp, &n, 0 ); pktlen -=n;
1861     if( list_mode ) {
1862     printf( "\tskey[%d]: ", i);
1863     mpi_print(stdout, sk->skey[i], mpi_print_mode );
1864     putchar('\n');
1865     }
1866     if (!sk->skey[i])
1867     rc = G10ERR_INVALID_PACKET;
1868     }
1869     if (rc) /* one of the MPIs were bad */
1870     goto leave;
1871     sk->protect.algo = gpg_iobuf_get_noeof(inp); pktlen--;
1872     sk->protect.sha1chk = 0;
1873     if( sk->protect.algo ) {
1874     sk->is_protected = 1;
1875     sk->protect.s2k.count = 0;
1876     if( sk->protect.algo == 254 || sk->protect.algo == 255 ) {
1877     if( pktlen < 3 ) {
1878     rc = G10ERR_INVALID_PACKET;
1879     goto leave;
1880     }
1881     sk->protect.sha1chk = (sk->protect.algo == 254);
1882     sk->protect.algo = gpg_iobuf_get_noeof(inp); pktlen--;
1883     /* Note that a sk->protect.algo > 110 is illegal, but
1884     I'm not erroring on it here as otherwise there
1885     would be no way to delete such a key. */
1886     sk->protect.s2k.mode = gpg_iobuf_get_noeof(inp); pktlen--;
1887     sk->protect.s2k.hash_algo = gpg_iobuf_get_noeof(inp); pktlen--;
1888     /* check for the special GNU extension */
1889     if( is_v4 && sk->protect.s2k.mode == 101 ) {
1890     for(i=0; i < 4 && pktlen; i++, pktlen-- )
1891     temp[i] = gpg_iobuf_get_noeof(inp);
1892     if( i < 4 || memcmp( temp, "GNU", 3 ) ) {
1893     if( list_mode )
1894     printf( "\tunknown S2K %d\n",
1895     sk->protect.s2k.mode );
1896     rc = G10ERR_INVALID_PACKET;
1897     goto leave;
1898     }
1899     /* here we know that it is a gnu extension
1900     * What follows is the GNU protection mode:
1901     * All values have special meanings
1902     * and they are mapped in the mode with a base of 1000.
1903     */
1904     sk->protect.s2k.mode = 1000 + temp[3];
1905     }
1906     switch( sk->protect.s2k.mode ) {
1907     case 1:
1908     case 3:
1909     for(i=0; i < 8 && pktlen; i++, pktlen-- )
1910     temp[i] = gpg_iobuf_get_noeof(inp);
1911     memcpy(sk->protect.s2k.salt, temp, 8 );
1912     break;
1913     }
1914     switch( sk->protect.s2k.mode ) {
1915     case 0: if( list_mode ) printf( "\tsimple S2K" );
1916     break;
1917     case 1: if( list_mode ) printf( "\tsalted S2K" );
1918     break;
1919     case 3: if( list_mode ) printf( "\titer+salt S2K" );
1920     break;
1921     case 1001: if( list_mode ) printf( "\tgnu-dummy S2K" );
1922     break;
1923     case 1002: if (list_mode) printf("\tgnu-divert-to-card S2K");
1924     break;
1925     default:
1926     if( list_mode )
1927     printf( "\tunknown %sS2K %d\n",
1928     sk->protect.s2k.mode < 1000? "":"GNU ",
1929     sk->protect.s2k.mode );
1930     rc = G10ERR_INVALID_PACKET;
1931     goto leave;
1932     }
1933    
1934     if( list_mode ) {
1935     printf(", algo: %d,%s hash: %d",
1936     sk->protect.algo,
1937     sk->protect.sha1chk?" SHA1 protection,"
1938     :" simple checksum,",
1939     sk->protect.s2k.hash_algo );
1940     if( sk->protect.s2k.mode == 1
1941     || sk->protect.s2k.mode == 3 ) {
1942     printf(", salt: ");
1943     for(i=0; i < 8; i++ )
1944     printf("%02x", sk->protect.s2k.salt[i]);
1945     }
1946     putchar('\n');
1947     }
1948    
1949     if( sk->protect.s2k.mode == 3 ) {
1950     if( pktlen < 1 ) {
1951     rc = G10ERR_INVALID_PACKET;
1952     goto leave;
1953     }
1954     sk->protect.s2k.count = gpg_iobuf_get(inp);
1955     pktlen--;
1956     if( list_mode )
1957     printf("\tprotect count: %lu\n",
1958     (ulong)sk->protect.s2k.count);
1959     }
1960     else if( sk->protect.s2k.mode == 1002 ) {
1961     /* Read the serial number. */
1962     if (pktlen < 1) {
1963     rc = G10ERR_INVALID_PACKET;
1964     goto leave;
1965     }
1966     snlen = gpg_iobuf_get (inp);
1967     pktlen--;
1968     if (pktlen < snlen || snlen == -1) {
1969     rc = G10ERR_INVALID_PACKET;
1970     goto leave;
1971     }
1972     }
1973     }
1974     /* Note that a sk->protect.algo > 110 is illegal, but I'm
1975     not erroring on it here as otherwise there would be no
1976     way to delete such a key. */
1977     else { /* old version; no S2K, so we set mode to 0, hash MD5 */
1978     sk->protect.s2k.mode = 0;
1979     sk->protect.s2k.hash_algo = DIGEST_ALGO_MD5;
1980     if( list_mode )
1981     printf( "\tprotect algo: %d (hash algo: %d)\n",
1982     sk->protect.algo, sk->protect.s2k.hash_algo );
1983     }
1984     /* It is really ugly that we don't know the size
1985     * of the IV here in cases we are not aware of the algorithm.
1986     * so a
1987     * sk->protect.ivlen = cipher_get_blocksize(sk->protect.algo);
1988     * won't work. The only solution I see is to hardwire it here.
1989     * NOTE: if you change the ivlen above 16, don't forget to
1990     * enlarge temp.
1991     */
1992     switch( sk->protect.algo ) {
1993     case 7: case 8: case 9: /* reserved for AES */
1994     case 10: /* Twofish */
1995     sk->protect.ivlen = 16;
1996     break;
1997     default:
1998     sk->protect.ivlen = 8;
1999     }
2000     if( sk->protect.s2k.mode == 1001 )
2001     sk->protect.ivlen = 0;
2002     else if( sk->protect.s2k.mode == 1002 )
2003     sk->protect.ivlen = snlen < 16? snlen : 16;
2004    
2005     if( pktlen < sk->protect.ivlen ) {
2006     rc = G10ERR_INVALID_PACKET;
2007     goto leave;
2008     }
2009     for(i=0; i < sk->protect.ivlen && pktlen; i++, pktlen-- )
2010     temp[i] = gpg_iobuf_get_noeof(inp);
2011     if( list_mode ) {
2012     printf( sk->protect.s2k.mode == 1002? "\tserial-number: "
2013     : "\tprotect IV: ");
2014     for(i=0; i < sk->protect.ivlen; i++ )
2015     printf(" %02x", temp[i] );
2016     putchar('\n');
2017     }
2018     memcpy( sk->protect.iv, temp, sk->protect.ivlen );
2019     }
2020     else
2021     sk->is_protected = 0;
2022     /* It does not make sense to read it into secure memory.
2023     * If the user is so careless, not to protect his secret key,
2024     * we can assume, that he operates an open system :=(.
2025     * So we put the key into secure memory when we unprotect it. */
2026     if( sk->protect.s2k.mode == 1001
2027     || sk->protect.s2k.mode == 1002 ) {
2028     /* better set some dummy stuff here */
2029     sk->skey[npkey] = mpi_set_opaque(NULL, strdup("dummydata"), 10);
2030     pktlen = 0;
2031     }
2032     else if( is_v4 && sk->is_protected ) {
2033     /* ugly; the length is encrypted too, so we read all
2034     * stuff up to the end of the packet into the first
2035     * skey element */
2036     sk->skey[npkey] = mpi_set_opaque(NULL,
2037     read_rest(inp, pktlen), pktlen );
2038     pktlen = 0;
2039     if( list_mode ) {
2040     printf("\tencrypted stuff follows\n");
2041     }
2042     }
2043     else { /* v3 method: the mpi length is not encrypted */
2044     for(i=npkey; i < nskey; i++ ) {
2045     n = pktlen; sk->skey[i] = mpi_read(inp, &n, 0 ); pktlen -=n;
2046     if( sk->is_protected && sk->skey[i] )
2047     mpi_set_protect_flag(sk->skey[i]);
2048     if( list_mode ) {
2049     printf( "\tskey[%d]: ", i);
2050     if( sk->is_protected )
2051     printf( "[encrypted]\n");
2052     else {
2053     mpi_print(stdout, sk->skey[i], mpi_print_mode );
2054     putchar('\n');
2055     }
2056     }
2057     if (!sk->skey[i])
2058     rc = G10ERR_INVALID_PACKET;
2059     }
2060     if (rc)
2061     goto leave;
2062    
2063     sk->csum = read_16(inp); pktlen -= 2;
2064     if( list_mode ) {
2065     printf("\tchecksum: %04hx\n", sk->csum);
2066     }
2067     }
2068     }
2069     else {
2070     PKT_public_key *pk = pkt->pkt.public_key;
2071    
2072     if( !npkey ) {
2073     pk->pkey[0] = mpi_set_opaque( NULL,
2074     read_rest(inp, pktlen), pktlen );
2075     pktlen = 0;
2076     goto leave;
2077     }
2078    
2079     for(i=0; i < npkey; i++ ) {
2080     n = pktlen; pk->pkey[i] = mpi_read(inp, &n, 0 ); pktlen -=n;
2081     if( list_mode ) {
2082     printf( "\tpkey[%d]: ", i);
2083     mpi_print(stdout, pk->pkey[i], mpi_print_mode );
2084     putchar('\n');
2085     }
2086     if (!pk->pkey[i])
2087     rc = G10ERR_INVALID_PACKET;
2088     }
2089     if (rc)
2090     goto leave;
2091     }
2092    
2093     leave:
2094     skip_rest(inp, pktlen);
2095     return rc;
2096     }
2097    
2098     /* Attribute subpackets have the same format as v4 signature
2099     subpackets. This is not part of OpenPGP, but is done in several
2100     versions of PGP nevertheless. */
2101     int
2102     parse_attribute_subpkts(PKT_user_id *uid)
2103     {
2104     size_t n;
2105     int count=0;
2106     struct user_attribute *attribs=NULL;
2107     const byte *buffer=uid->attrib_data;
2108     int buflen=uid->attrib_len;
2109     byte type;
2110    
2111     safe_free(uid->attribs);
2112    
2113     while(buflen) {
2114     n = *buffer++; buflen--;
2115     if( n == 255 ) { /* 4 byte length header */
2116     if( buflen < 4 )
2117     goto too_short;
2118     n = (buffer[0] << 24) | (buffer[1] << 16)
2119     | (buffer[2] << 8) | buffer[3];
2120     buffer += 4;
2121     buflen -= 4;
2122     }
2123     else if( n >= 192 ) { /* 2 byte special encoded length header */
2124     if( buflen < 2 )
2125     goto too_short;
2126     n = (( n - 192 ) << 8) + *buffer + 192;
2127     buffer++;
2128     buflen--;
2129     }
2130     if( buflen < n )
2131     goto too_short;
2132    
2133     attribs=realloc(attribs,(count+1)*sizeof(struct user_attribute));
2134     memset(&attribs[count],0,sizeof(struct user_attribute));
2135    
2136     type=*buffer;
2137     buffer++;
2138     buflen--;
2139     n--;
2140    
2141     attribs[count].type=type;
2142     attribs[count].data=buffer;
2143     attribs[count].len=n;
2144     buffer+=n;
2145     buflen-=n;
2146     count++;
2147     }
2148    
2149     uid->attribs=attribs;
2150     uid->numattribs=count;
2151     return count;
2152    
2153     too_short:
2154     printf("buffer shorter than attribute subpacket\n");
2155     uid->attribs=attribs;
2156     uid->numattribs=count;
2157     return count;
2158     }
2159    
2160     static void
2161     setup_user_id(PACKET *packet)
2162     {
2163     packet->pkt.user_id->ref = 1;
2164     packet->pkt.user_id->attribs = NULL;
2165     packet->pkt.user_id->attrib_data = NULL;
2166     packet->pkt.user_id->attrib_len = 0;
2167     packet->pkt.user_id->is_primary = 0;
2168     packet->pkt.user_id->is_revoked = 0;
2169     packet->pkt.user_id->is_expired = 0;
2170     packet->pkt.user_id->expiredate = 0;
2171     packet->pkt.user_id->created = 0;
2172     packet->pkt.user_id->help_key_usage = 0;
2173     packet->pkt.user_id->help_key_expire = 0;
2174     packet->pkt.user_id->prefs = NULL;
2175     }
2176    
2177     static int
2178     parse_user_id( gpg_iobuf_t inp, int pkttype, unsigned long pktlen, PACKET *packet )
2179     {
2180     byte *p;
2181    
2182     packet->pkt.user_id = malloc(sizeof *packet->pkt.user_id + pktlen);
2183     packet->pkt.user_id->len = pktlen;
2184    
2185     setup_user_id(packet);
2186    
2187     p = packet->pkt.user_id->name;
2188     for( ; pktlen; pktlen--, p++ )
2189     *p = gpg_iobuf_get_noeof(inp);
2190     *p = 0;
2191    
2192     if( list_mode ) {
2193     int n = packet->pkt.user_id->len;
2194     printf(":user ID packet: \"");
2195     /* fixme: Hey why don't we replace this with print_string?? */
2196     for(p=packet->pkt.user_id->name; n; p++, n-- ) {
2197     if( *p >= ' ' && *p <= 'z' )
2198     putchar(*p);
2199     else
2200     printf("\\x%02x", *p );
2201     }
2202     printf("\"\n");
2203     }
2204     return 0;
2205     }
2206    
2207     /* Returns 0 for error, 1 for valid */
2208     int parse_image_header(const struct user_attribute *attr,byte *type,u32 *len)
2209     {
2210     u16 headerlen;
2211    
2212     if(attr->len<3)
2213     return 0;
2214    
2215     /* For historical reasons (i.e. "oops!"), the header length is
2216     little endian. */
2217     headerlen=(attr->data[1]<<8) | attr->data[0];
2218    
2219     if(headerlen>attr->len)
2220     return 0;
2221    
2222     if(type && attr->len>=4)
2223     {
2224     if(attr->data[2]==1) /* header version 1 */
2225     *type=attr->data[3];
2226     else
2227     *type=0;
2228     }
2229    
2230     *len=attr->len-headerlen;
2231    
2232     if(*len==0)
2233     return 0;
2234    
2235     return 1;
2236     }
2237    
2238     /* style==0 for extension, 1 for name, 2 for MIME type. Remember that
2239     the "name" style string could be used in a user ID name field, so
2240     make sure it is not too big (see
2241     parse-packet.c:parse_attribute). */
2242     char *image_type_to_string(byte type,int style)
2243     {
2244     char *string;
2245    
2246     switch(type) {
2247     case 1: /* jpeg */
2248     if(style==0)
2249     string="jpg";
2250     else if(style==1)
2251     string="jpeg";
2252     else
2253     string="image/jpeg";
2254     break;
2255    
2256     default:
2257     if(style==0)
2258     string="bin";
2259     else if(style==1)
2260     string="unknown";
2261     else
2262     string="image/x-unknown";
2263     break;
2264     }
2265    
2266     return string;
2267     }
2268    
2269     void
2270     make_attribute_uidname(PKT_user_id *uid)
2271     {
2272     if(uid->numattribs<=0)
2273     sprintf(uid->name,"[bad attribute packet of size %lu]",uid->attrib_len);
2274     else if(uid->numattribs>1)
2275     sprintf(uid->name,"[%d attributes of size %lu]",
2276     uid->numattribs,uid->attrib_len);
2277     else {
2278     /* Only one attribute, so list it as the "user id" */
2279    
2280     if(uid->attribs->type==ATTRIB_IMAGE) {
2281     u32 len;
2282     byte type;
2283    
2284     if(parse_image_header(uid->attribs,&type,&len))
2285     sprintf(uid->name,"[%s image of size %lu]",
2286     image_type_to_string(type,1),(ulong)len);
2287     else
2288     sprintf(uid->name,"[invalid image]");
2289     }
2290     else
2291     sprintf(uid->name,"[unknown attribute of size %lu]",
2292     (ulong)uid->attribs->len);
2293     }
2294    
2295     uid->len = strlen(uid->name);
2296     }
2297    
2298     static int
2299     parse_attribute( gpg_iobuf_t inp, int pkttype, unsigned long pktlen, PACKET *packet )
2300     {
2301     byte *p;
2302    
2303     packet->pkt.user_id = malloc(sizeof *packet->pkt.user_id + 70);
2304    
2305     setup_user_id(packet);
2306    
2307     packet->pkt.user_id->attrib_data = malloc(pktlen);
2308     packet->pkt.user_id->attrib_len = pktlen;
2309     p = packet->pkt.user_id->attrib_data;
2310     for( ; pktlen; pktlen--, p++ )
2311     *p = gpg_iobuf_get_noeof(inp);
2312    
2313     /* Now parse out the individual attribute subpackets. This is
2314     somewhat pointless since there is only one currently defined
2315     attribute type (jpeg), but it is correct by the spec. */
2316     parse_attribute_subpkts(packet->pkt.user_id);
2317    
2318     make_attribute_uidname(packet->pkt.user_id);
2319    
2320     if( list_mode ) {
2321     printf(":attribute packet: %s\n", packet->pkt.user_id->name );
2322     }
2323     return 0;
2324     }
2325    
2326    
2327     static int
2328     parse_comment( gpg_iobuf_t inp, int pkttype, unsigned long pktlen, PACKET *packet )
2329     {
2330     byte *p;
2331    
2332     packet->pkt.comment = malloc(sizeof *packet->pkt.comment + pktlen - 1);
2333     packet->pkt.comment->len = pktlen;
2334     p = packet->pkt.comment->data;
2335     for( ; pktlen; pktlen--, p++ )
2336     *p = gpg_iobuf_get_noeof(inp);
2337    
2338     if( list_mode ) {
2339     int n = packet->pkt.comment->len;
2340     printf(":%scomment packet: \"", pkttype == PKT_OLD_COMMENT?
2341     "OpenPGP draft " : "" );
2342     for(p=packet->pkt.comment->data; n; p++, n-- ) {
2343     if( *p >= ' ' && *p <= 'z' )
2344     putchar(*p);
2345     else
2346     printf("\\x%02x", *p );
2347     }
2348     printf("\"\n");
2349     }
2350     return 0;
2351     }
2352    
2353    
2354     static void
2355     parse_trust( gpg_iobuf_t inp, int pkttype, unsigned long pktlen, PACKET *pkt )
2356     {
2357     int c;
2358    
2359     if (pktlen) {
2360     c = gpg_iobuf_get_noeof(inp);
2361     pktlen--;
2362     pkt->pkt.ring_trust = malloc( sizeof *pkt->pkt.ring_trust );
2363     pkt->pkt.ring_trust->trustval = c;
2364     pkt->pkt.ring_trust->sigcache = 0;
2365     if (!c && pktlen==1) {
2366     c = gpg_iobuf_get_noeof (inp);
2367     pktlen--;
2368     /* we require that bit 7 of the sigcache is 0 (easier eof handling)*/
2369     if ( !(c & 0x80) )
2370     pkt->pkt.ring_trust->sigcache = c;
2371     }
2372     if( list_mode )
2373     printf(":trust packet: flag=%02x sigcache=%02x\n",
2374     pkt->pkt.ring_trust->trustval,
2375     pkt->pkt.ring_trust->sigcache);
2376     }
2377     else {
2378     if( list_mode )
2379     printf(":trust packet: empty\n");
2380     }
2381     skip_rest (inp, pktlen);
2382     }
2383    
2384    
2385     static int
2386     parse_plaintext( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
2387     PACKET *pkt, int new_ctb )
2388     {
2389     int rc = 0;
2390     int mode, namelen, partial=0;
2391     PKT_plaintext *pt;
2392     byte *p;
2393     int c, i;
2394    
2395     if( pktlen && pktlen < 6 ) {
2396     printf("packet(%d) too short (%lu)\n", pkttype, (ulong)pktlen);
2397     rc = G10ERR_INVALID_PACKET;
2398     goto leave;
2399     }
2400     /* A packet length of zero indicates partial body length. A zero
2401     data length isn't a zero length packet due to the header (mode,
2402     name, etc), so this is accurate. */
2403     if(pktlen==0)
2404     partial=1;
2405     mode = gpg_iobuf_get_noeof(inp); if( pktlen ) pktlen--;
2406     namelen = gpg_iobuf_get_noeof(inp); if( pktlen ) pktlen--;
2407     pt = pkt->pkt.plaintext = malloc(sizeof *pkt->pkt.plaintext + namelen -1);
2408     pt->new_ctb = new_ctb;
2409     pt->mode = mode;
2410     pt->namelen = namelen;
2411     pt->is_partial = partial;
2412     if( pktlen ) {
2413     for( i=0; pktlen > 4 && i < namelen; pktlen--, i++ )
2414     pt->name[i] = gpg_iobuf_get_noeof(inp);
2415     }
2416     else {
2417     for( i=0; i < namelen; i++ )
2418     if( (c=gpg_iobuf_get(inp)) == -1 )
2419     break;
2420     else
2421     pt->name[i] = c;
2422     }
2423     pt->timestamp = read_32(inp); if( pktlen) pktlen -= 4;
2424     pt->len = pktlen;
2425     pt->buf = inp;
2426     pktlen = 0;
2427    
2428     if( list_mode ) {
2429     printf(":literal data packet:\n"
2430     "\tmode %c, created %lu, name=\"",
2431     mode >= ' ' && mode <'z'? mode : '?',
2432     (ulong)pt->timestamp );
2433     for(p=pt->name,i=0; i < namelen; p++, i++ ) {
2434     if( *p >= ' ' && *p <= 'z' )
2435     putchar(*p);
2436     else
2437     printf("\\x%02x", *p );
2438     }
2439     printf("\",\n\traw data: %lu bytes\n", (ulong)pt->len );
2440     }
2441    
2442     leave:
2443     return rc;
2444     }
2445    
2446    
2447     static int
2448     parse_compressed( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
2449     PACKET *pkt, int new_ctb )
2450     {
2451     PKT_compressed *zd;
2452    
2453     /* pktlen is here 0, but data follows
2454     * (this should be the last object in a file or
2455     * the compress algorithm should know the length)
2456     */
2457     zd = pkt->pkt.compressed = malloc(sizeof *pkt->pkt.compressed );
2458     zd->algorithm = gpg_iobuf_get_noeof(inp);
2459     zd->len = 0; /* not used */
2460     zd->new_ctb = new_ctb;
2461     zd->buf = inp;
2462     if( list_mode )
2463     printf(":compressed packet: algo=%d\n", zd->algorithm);
2464     return 0;
2465     }
2466    
2467    
2468     static int
2469     parse_encrypted( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
2470     PACKET *pkt, int new_ctb )
2471     {
2472     int rc = 0;
2473     PKT_encrypted *ed;
2474     unsigned long orig_pktlen = pktlen;
2475    
2476     ed = pkt->pkt.encrypted = malloc(sizeof *pkt->pkt.encrypted );
2477     ed->len = pktlen;
2478     /* we don't know the extralen which is (cipher_blocksize+2)
2479     because the algorithm ist not specified in this packet.
2480     However, it is only important to know this for some sanity
2481     checks on the packet length - it doesn't matter that we can't
2482     do it */
2483     ed->extralen = 0;
2484     ed->buf = NULL;
2485     ed->new_ctb = new_ctb;
2486     ed->mdc_method = 0;
2487     if( pkttype == PKT_ENCRYPTED_MDC ) {
2488     /* fixme: add some pktlen sanity checks */
2489     int version;
2490    
2491     version = gpg_iobuf_get_noeof(inp);
2492     if (orig_pktlen)
2493     pktlen--;
2494     if( version != 1 ) {
2495     printf("encrypted_mdc packet with unknown version %d\n",
2496     version);
2497     /*skip_rest(inp, pktlen); should we really do this? */
2498     rc = G10ERR_INVALID_PACKET;
2499     goto leave;
2500     }
2501     ed->mdc_method = DIGEST_ALGO_SHA1;
2502     }
2503     if( orig_pktlen && pktlen < 10 ) { /* actually this is blocksize+2 */
2504     printf("packet(%d) too short\n", pkttype);
2505     rc = G10ERR_INVALID_PACKET;
2506     skip_rest(inp, pktlen);
2507     goto leave;
2508     }
2509     if( list_mode ) {
2510     if( orig_pktlen )
2511     printf(":encrypted data packet:\n\tlength: %lu\n", orig_pktlen);
2512     else
2513     printf(":encrypted data packet:\n\tlength: unknown\n");
2514     if( ed->mdc_method )
2515     printf("\tmdc_method: %d\n", ed->mdc_method );
2516     }
2517    
2518     ed->buf = inp;
2519     pktlen = 0;
2520    
2521     leave:
2522     return rc;
2523     }
2524    
2525    
2526     static int
2527     parse_mdc( gpg_iobuf_t inp, int pkttype, unsigned long pktlen,
2528     PACKET *pkt, int new_ctb )
2529     {
2530     int rc = 0;
2531     PKT_mdc *mdc;
2532     byte *p;
2533    
2534     mdc = pkt->pkt.mdc= malloc(sizeof *pkt->pkt.mdc );
2535     if( list_mode )
2536     printf(":mdc packet: length=%lu\n", pktlen);
2537     if( !new_ctb || pktlen != 20 ) {
2538     printf("mdc_packet with invalid encoding\n");
2539     rc = G10ERR_INVALID_PACKET;
2540     goto leave;
2541     }
2542     p = mdc->hash;
2543     for( ; pktlen; pktlen--, p++ )
2544     *p = gpg_iobuf_get_noeof(inp);
2545    
2546     leave:
2547     return rc;
2548     }
2549    
2550    
2551     /*
2552     * This packet is internally generated by PGG (by armor.c) to
2553     * transfer some information to the lower layer. To make sure that
2554     * this packet is really a GPG faked one and not one comming from outside,
2555     * we first check that tehre is a unique tag in it.
2556     * The format of such a control packet is:
2557     * n byte session marker
2558     * 1 byte control type CTRLPKT_xxxxx
2559     * m byte control data
2560     */
2561    
2562     /* Return a string which is used as a kind of process ID */
2563     const byte *
2564     get_session_marker( size_t *rlen )
2565     {
2566     static byte marker[SIZEOF_UNSIGNED_LONG*2];
2567     static int initialized;
2568    
2569     if ( !initialized ) {
2570     volatile ulong aa, bb; /* we really want the uninitialized value */
2571     ulong a, b;
2572    
2573     initialized = 1;
2574     /* also this marker is guessable it is not easy to use this
2575     * for a faked control packet because an attacker does not
2576     * have enough control about the time the verification does
2577     * take place. Of course, we can add just more random but
2578     * than we need the random generator even for verification
2579     * tasks - which does not make sense. */
2580     a = aa ^ (ulong)getpid();
2581     b = bb ^ (ulong)time(NULL);
2582     memcpy( marker, &a, SIZEOF_UNSIGNED_LONG );
2583     memcpy( marker+SIZEOF_UNSIGNED_LONG, &b, SIZEOF_UNSIGNED_LONG );
2584     }
2585     *rlen = sizeof(marker);
2586     return marker;
2587     }
2588    
2589     static int
2590     parse_gpg_control( gpg_iobuf_t inp,
2591     int pkttype, unsigned long pktlen, PACKET *packet )
2592     {
2593     byte *p;
2594     const byte *sesmark;
2595     size_t sesmarklen;
2596     int i;
2597    
2598     if ( list_mode )
2599     printf(":packet 63: length %lu ", pktlen);
2600    
2601     sesmark = get_session_marker ( &sesmarklen );
2602     if ( pktlen < sesmarklen+1 ) /* 1 is for the control bytes */
2603     goto skipit;
2604     for( i=0; i < sesmarklen; i++, pktlen-- ) {
2605     if ( sesmark[i] != gpg_iobuf_get_noeof(inp) )
2606     goto skipit;
2607     }
2608     if ( list_mode )
2609     puts ("- gpg control packet");
2610    
2611     packet->pkt.gpg_control = malloc(sizeof *packet->pkt.gpg_control
2612     + pktlen - 1);
2613     packet->pkt.gpg_control->control = gpg_iobuf_get_noeof(inp); pktlen--;
2614     packet->pkt.gpg_control->datalen = pktlen;
2615     p = packet->pkt.gpg_control->data;
2616     for( ; pktlen; pktlen--, p++ )
2617     *p = gpg_iobuf_get_noeof(inp);
2618    
2619     return 0;
2620    
2621     skipit:
2622     if ( list_mode ) {
2623     int c;
2624    
2625     i=0;
2626     printf("- private (rest length %lu)\n", pktlen);
2627     if( gpg_iobuf_in_block_mode(inp) ) {
2628     while( (c=gpg_iobuf_get(inp)) != -1 )
2629     dump_hex_line(c, &i);
2630     }
2631     else {
2632     for( ; pktlen; pktlen-- )
2633     dump_hex_line(gpg_iobuf_get(inp), &i);
2634     }
2635     putchar('\n');
2636     }
2637     skip_rest(inp,pktlen);
2638     return G10ERR_INVALID_PACKET;
2639     }
2640    
2641    
2642     u32
2643     gpg_keyid_from_pk( PKT_public_key * pk, byte *fprint )
2644     {
2645     gpg_md_t md;
2646     int npkey, pktlen, i;
2647     const byte *mdbuf;
2648    
2649     if( pk->version == 3 && pk->pubkey_algo == PUBKEY_ALGO_RSA )
2650     return pk->pkey[0]->d[0];
2651     else {
2652     md = gpg_md_open( DIGEST_ALGO_SHA1 );
2653     gpg_md_putc( md, 0x99 );
2654     npkey = pubkey_get_npkey( pk->pubkey_algo );
2655     pktlen = 6;
2656     for( i = 0 ; i <npkey; i++ )
2657     pktlen = pktlen + 2 + pk->pkey[i]->alloced;
2658     gpg_md_putc( md, pktlen>>8 );
2659     gpg_md_putc( md, pktlen );
2660     gpg_md_putc( md, 4 );
2661     gpg_md_putc( md, pk->timestamp >> 24 );
2662     gpg_md_putc( md, pk->timestamp >> 16 );
2663     gpg_md_putc( md, pk->timestamp >> 8 );
2664     gpg_md_putc( md, pk->timestamp );
2665     gpg_md_putc( md, pk->pubkey_algo );
2666     for( i=0; i <npkey; i++ ) {
2667     const u32 * d = pk->pkey[i]->d;
2668     int nbits = pk->pkey[i]->nbits,
2669     n = pk->pkey[i]->alloced;
2670     gpg_md_putc( md, nbits >> 8 );
2671     gpg_md_putc( md, nbits );
2672     n = n>4? n/4 : n;
2673     while( n-- ) {
2674     if( pk->pkey[i]->alloced > 3 )
2675     gpg_md_putc( md, d[n] >> 24 );
2676     if( pk->pkey[i]->alloced > 2 )
2677     gpg_md_putc( md, d[n] >> 16 );
2678     if( pk->pkey[i]->alloced > 1 )
2679     gpg_md_putc( md, d[n] >> 8 );
2680     if( pk->pkey[i]->alloced > 0 )
2681     gpg_md_putc( md, d[n] );
2682     }
2683     }
2684     gpg_md_final( md );
2685     mdbuf = gpg_md_read( md );
2686     }
2687     if( mdbuf && fprint )
2688     memcpy( fprint, mdbuf, 20 );
2689     return mdbuf? mdbuf[16] << 24 | mdbuf[17] << 16 | mdbuf[18] << 8 | mdbuf[19] : 0;
2690     }
2691    
2692    
2693     u32
2694     gpg_keyid_from_sk( PKT_secret_key * sk, byte *fprint )
2695     {
2696     PKT_public_key pk;
2697     int npkey = pubkey_get_npkey( sk->pubkey_algo );
2698     int i;
2699    
2700     pk.pubkey_algo = sk->pubkey_algo;
2701     pk.version = sk->version;
2702     pk.timestamp = sk->timestamp;
2703     pk.expiredate = sk->expiredate;
2704     pk.pubkey_algo = sk->pubkey_algo;
2705     for( i=0; i < npkey; i++ )
2706     pk.pkey[i] = sk->skey[i];
2707     return gpg_keyid_from_pk( &pk, fprint );
2708     }
2709    
2710    
2711     /****************
2712     * Read the next keyblock from stream A.
2713     * PENDING_PKT should be initialzed to NULL
2714     * and not chnaged form the caller.
2715     * Retunr: 0 = okay, -1 no more blocks or another errorcode.
2716     */
2717     int
2718     gpg_read_keyblock( gpg_iobuf_t a, PACKET **pending_pkt, gpg_kbnode_t *ret_root )
2719     {
2720     int rc;
2721     PACKET *pkt;
2722     gpg_kbnode_t root = NULL;
2723     int in_cert;
2724    
2725     if( *pending_pkt ) {
2726     root = gpg_new_kbnode( *pending_pkt );
2727     *pending_pkt = NULL;
2728     in_cert = 1;
2729     }
2730     else
2731     in_cert = 0;
2732     pkt = malloc( sizeof *pkt );
2733     gpg_init_packet(pkt);
2734     while( (rc=gpg_parse_packet(a, pkt)) != -1 ) {
2735     if( rc ) { /* ignore errors */
2736     if( rc != G10ERR_UNKNOWN_PACKET ) {
2737     printf("read_block: read error: %d\n", rc );
2738     rc = G10ERR_INV_KEYRING;
2739     goto ready;
2740     }
2741     gpg_free_packet( pkt );
2742     gpg_init_packet(pkt);
2743     continue;
2744     }
2745    
2746     if( !root && pkt->pkttype == PKT_SIGNATURE
2747     && pkt->pkt.signature->sig_class == 0x20 ) {
2748     /* this is a revocation certificate which is handled
2749     * in a special way */
2750     root = gpg_new_kbnode( pkt );
2751     pkt = NULL;
2752     goto ready;
2753     }
2754    
2755     /* make a linked list of all packets */
2756     switch( pkt->pkttype ) {
2757     case PKT_RING_TRUST:
2758     /* skip those packets */
2759     gpg_free_packet( pkt );
2760     gpg_init_packet(pkt);
2761     break;
2762    
2763     case PKT_PUBLIC_KEY:
2764     case PKT_SECRET_KEY:
2765     if( in_cert ) { /* store this packet */
2766     *pending_pkt = pkt;
2767     pkt = NULL;
2768     goto ready;
2769     }
2770     in_cert = 1;
2771     default:
2772     if( in_cert ) {
2773     if( !root )
2774     root = gpg_new_kbnode( pkt );
2775     else
2776     gpg_add_kbnode( root, gpg_new_kbnode( pkt ) );
2777     pkt = malloc( sizeof *pkt );
2778     }
2779     gpg_init_packet(pkt);
2780     break;
2781     }
2782     }
2783     ready:
2784     if( rc == -1 && root )
2785     rc = 0;
2786    
2787     if( rc )
2788     gpg_release_kbnode( root );
2789     else
2790     *ret_root = root;
2791     gpg_free_packet( pkt );
2792     free( pkt );
2793     return rc;
2794     }

Properties

Name Value
svn:eol-style native
[email protected]
 ViewVC Help
Powered by ViewVC 1.1.26