trunk/Src/wptGPGME.cpp

/* wptGPGME.cpp - WinPT GPGME interface
 *      Copyright (C) 2001-2005 Timo Schulz
 *
 * This file is part of WinPT.
 *
 * WinPT is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License 
 * as published by the Free Software Foundation; either version 2 
 * of the License, or (at your option) any later version.
 *  
 * WinPT is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
 * General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License 
 * along with WinPT; if not, write to the Free Software Foundation, 
 * Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA 
 */
#ifdef HAVE_CONFIG_H
#include <config.h>
#endif

#include <sys/types.h>
#include <windows.h>

#include "resource.h"
#include "wptNLS.h"
#include "wptGPG.h"
#include "wptErrors.h"
#include "wptTypes.h"
#include "wptW32API.h"
#include "wptVersion.h"
#include "wptCommonCtl.h"
#include "wptContext.h"
#include "wptRegistry.h"
#include "wptDlgs.h"

#include "openpgp.h"

BOOL CALLBACK  keycache_dlg_proc (HWND dlg, UINT msg, WPARAM wparam, LPARAM lparam);
void progress_cleanup (progress_filter_s * pfx);

static gpg_keycache_t pub = NULL;
static gpg_keycache_t sec = NULL;
static char *gpg_secring = NULL;


/* Reload the key cache. */
void
keycache_reload (HWND dlg) 
{       
    refresh_cache_s rcs;

    memset (&rcs, 0, sizeof rcs);
    rcs.kr_reload = rcs.kr_update = 1;
    rcs.tr_update = 0;
    DialogBoxParam (glob_hinst, (LPCSTR)IDD_WINPT_KEYCACHE, dlg,                                        
                    keycache_dlg_proc, (LPARAM)&rcs);
}


/* Release both key cache objects. If @cleanup is 1,
   also release other global structs. */
void
keycache_release (int cleanup)
{
    int n = gpg_keycache_get_size (pub);
    char tmpbuf[64];

    /* XXX: update the value when the cache has changed. */
    sprintf (tmpbuf, "%d", n);
    set_reg_key (HKEY_CURRENT_USER, "Software\\WinPT", "nKeys", tmpbuf);

    if (pub) {
        gpg_keycache_release (pub); 
        pub = NULL;
    }
    if (sec) {
        gpg_keycache_release (sec);
        sec = NULL;
    }
    if (cleanup) {
        if (gpg_secring)
            free (gpg_secring);
        gpg_secring = NULL;
    }
}


/* Update the key with the keyid @keyid in the key cache.
   If @is_sec is 1, the secret key cache is used. */
gpgme_error_t
keycache_update (int is_sec, const char *keyid)
{
    gpg_keycache_t ctx = pub;
    gpgme_error_t err;

    if (is_sec)
        ctx = sec;
    err = gpg_keycache_update_key (ctx, is_sec, pub, keyid);
    if (is_sec)
        gpg_keycache_prepare_single (ctx, keyid, NULL, gpg_secring);
    return err;
}


/* Initialize both cache contexts. Use @pubring for the public
   keyring and @secring for the secret keyring. */
gpgme_error_t
keycache_init (const char *pubring, const char *secring)
{
    struct progress_filter_s pfx;
    gpgme_error_t err;
    int val = 0;
    char *p;

    if (secring != NULL) {
        free_if_alloc (gpg_secring);
        gpg_secring = get_gnupg_keyring (0, NO_STRICT);
    }
    
    p = get_reg_entry (HKEY_CURRENT_USER, "Software\\WinPT", "nKeys");
    if (p && *p != ' ') {
        val = atoi (p);
        free_if_alloc (p);
        memset (&pfx, 0, sizeof (pfx));
    }

    /* Release old contexts first. */
    keycache_release (0);

    err = gpg_keycache_new (&pub);
    if (err)
        return err;
    if (val != 0)
        gpg_keycache_set_cb (pub, progress_callback, &pfx, val);
    err = gpg_keycache_new (&sec);
    if (!err)
        err = gpg_keycache_init (pub, NULL, 0);
    if (!err)
        err = gpg_keycache_init( sec, NULL, 1 );
    if( !err && pubring && *pubring )
        err = gpg_keycache_prepare( pub, pubring, NULL );
    if( !err && secring && * secring )
        err = gpg_keycache_prepare( sec, NULL, secring );
    if (!err)
        gpg_keycache_sync (pub, sec);
    if (val != 0)
        progress_cleanup (&pfx);
    return err;
}


/* Return the public cache context if @is_pub is set
   the secre cache context otherwise. */
gpg_keycache_t
keycache_get_ctx (int is_pub)
{
    return is_pub? pub : sec;
}


/* Get the GPG key with keyid @keyid from the cache. Return it 
   in @r_key on success. */
static int
get_key_from_cache (const char *keyid, gpgme_key_t *r_key, 
                    struct keycache_s **c, int secret)
{
    gpg_keycache_t cache;
    gpgme_error_t err;
    int mode = secret? KEYCACHE_PRV : KEYCACHE_PUB;

    if (!keyid)
        return WPTERR_GENERAL;
    if (r_key)
        *r_key = NULL;
    cache = keycache_get_ctx (mode);
    if (!cache)
        BUG( NULL );
    if (!c)
        err = gpg_keycache_find_key (cache, keyid, 0, r_key);
    else
        err = gpg_keycache_find_key2 (cache, keyid, 0, r_key, c);
    return err? WPTERR_GENERAL : 0;
}


/* Get GPG key with keyid @keyid directly from GPG and return
   it in @r_key on success. */
static int
get_key_directly (const char *keyid, gpgme_key_t *r_key, int secret)
{
    gpgme_ctx_t ctx;
    gpgme_error_t err;

    err = gpgme_new (&ctx);
    if (err)
        return WPTERR_GENERAL;
    err = gpgme_get_key (ctx, keyid, r_key, secret);
    gpgme_release (ctx);
    return err? WPTERR_GENERAL : 0;
}


/* Search the public key with @keyid as the keyid in the cache and
   return the item in @k. */
int
winpt_get_pubkey (const char *keyid, winpt_key_s *k)
{
    int rc;
    
    rc = get_key_from_cache (keyid, &k->ctx, &k->ext, 0);
    if (rc)
        return rc;
    k->is_v3 = k->ctx->subkeys->pubkey_algo == GPGME_PK_RSA && 
                strlen (k->ctx->subkeys->fpr) == 32;
    k->is_protected = k->ext->gloflags.is_protected;
    k->keyid = k->ctx->subkeys->keyid;
    k->uid = k->ctx->uids->uid;
    return rc;
}


int
winpt_get_seckey (const char *keyid, winpt_key_s *k)
{
    int rc;
    rc = get_key_from_cache (keyid, &k->ctx, &k->ext, 1);
    if (rc)
        return rc;
    k->is_v3 = k->ctx->subkeys->pubkey_algo == GPGME_PK_RSA && 
                strlen (k->ctx->subkeys->fpr) == 32;
    k->is_protected = k->ext->gloflags.is_protected;
    k->keyid = k->ctx->subkeys->keyid;
    k->uid = k->ctx->uids->uid;
    return rc;
}


int
get_pubkey (const char *keyid, gpgme_key_t *ret_key)
{
    int rc;

    if (pub && sec)
        rc = get_key_from_cache (keyid, ret_key, NULL, 0);
    else
        rc = get_key_directly (keyid, ret_key, 0);
    return rc;
}


int
get_seckey (const char *keyid, gpgme_key_t *ret_skey)
{
    int rc;

    if (pub && sec)
        rc = get_key_from_cache (keyid, ret_skey, NULL, 1);
    else
        rc = get_key_directly (keyid, ret_skey, 1);
    return rc;
}


/* Search for insecure ElGamal keys and return the
   number of founded keys. */
int
count_insecure_elgkeys (void)
{
    gpg_keycache_t pc;
    gpgme_key_t key;
    int n=0;

    pc = keycache_get_ctx (1);
    if (!pc)
        BUG (0);
    while (!gpg_keycache_next_key (pc, 0, &key)) {
        if (key->subkeys->pubkey_algo == GPGME_PK_ELG)
            n++;
    }
    gpg_keycache_rewind (pc);
    return n;
}


/* Map the signature summary in @sum to signature status table index. 
   Return value: index to table. */
static int
sigsum_to_index (gpgme_sigsum_t sum)
{
    if ((sum & GPGME_SIGSUM_VALID) && (sum & GPGME_SIGSUM_KEY_REVOKED))
        return 7;
    if ((sum & GPGME_SIGSUM_VALID) && (sum & GPGME_SIGSUM_SIG_EXPIRED))
        return 6;
    if (sum & GPGME_SIGSUM_GREEN)
        return 1;
    else if (sum & GPGME_SIGSUM_RED)
        return 2;
    else if (sum & GPGME_SIGSUM_KEY_MISSING)
        return 3;
    return 0;
}


/* Return a humand readable description for the signature status @sum. */
const char*
get_gpg_sigstat (gpgme_sigsum_t sum)
{
    const char *gpg_sigstat[] = {
        _("Error during verification process."),
        _("The signature is good."),
        _("The signature is BAD!"),
        _("The signature could not be checked due to a missing key."),
        _("No valid OpenPGP signature."),
        _("Signature Error"),
        _("Good Signature (Expired Key)"),
        _("Good Signature (Revoked Key)"),
        NULL
    };
    const unsigned int mask = 8;

    return gpg_sigstat[sigsum_to_index (sum) % mask];
}
1	/* wptGPGME.cpp - WinPT GPGME interface
2	* Copyright (C) 2001-2005 Timo Schulz
3	*
4	* This file is part of WinPT.
5	*
6	* WinPT is free software; you can redistribute it and/or
7	* modify it under the terms of the GNU General Public License
8	* as published by the Free Software Foundation; either version 2
9	* of the License, or (at your option) any later version.
10	*
11	* WinPT is distributed in the hope that it will be useful,
12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14	* General Public License for more details.
15	*
16	* You should have received a copy of the GNU General Public License
17	* along with WinPT; if not, write to the Free Software Foundation,
18	* Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
19	*/
20	#ifdef HAVE_CONFIG_H
21	#include <config.h>
22	#endif
23
24	#include <sys/types.h>
25	#include <windows.h>
26
27	#include "resource.h"
28	#include "wptNLS.h"
29	#include "wptGPG.h"
30	#include "wptErrors.h"
31	#include "wptTypes.h"
32	#include "wptW32API.h"
33	#include "wptVersion.h"
34	#include "wptCommonCtl.h"
35	#include "wptContext.h"
36	#include "wptRegistry.h"
37	#include "wptDlgs.h"
38
39	#include "openpgp.h"
40
41	BOOL CALLBACK keycache_dlg_proc (HWND dlg, UINT msg, WPARAM wparam, LPARAM lparam);
42	void progress_cleanup (progress_filter_s * pfx);
43
44	static gpg_keycache_t pub = NULL;
45	static gpg_keycache_t sec = NULL;
46	static char *gpg_secring = NULL;
47
48
49	/* Reload the key cache. */
50	void
51	keycache_reload (HWND dlg)
52	{
53	refresh_cache_s rcs;
54
55	memset (&rcs, 0, sizeof rcs);
56	rcs.kr_reload = rcs.kr_update = 1;
57	rcs.tr_update = 0;
58	DialogBoxParam (glob_hinst, (LPCSTR)IDD_WINPT_KEYCACHE, dlg,
59	keycache_dlg_proc, (LPARAM)&rcs);
60	}
61
62
63	/* Release both key cache objects. If @cleanup is 1,
64	also release other global structs. */
65	void
66	keycache_release (int cleanup)
67	{
68	int n = gpg_keycache_get_size (pub);
69	char tmpbuf[64];
70
71	/* XXX: update the value when the cache has changed. */
72	sprintf (tmpbuf, "%d", n);
73	set_reg_key (HKEY_CURRENT_USER, "Software\\WinPT", "nKeys", tmpbuf);
74
75	if (pub) {
76	gpg_keycache_release (pub);
77	pub = NULL;
78	}
79	if (sec) {
80	gpg_keycache_release (sec);
81	sec = NULL;
82	}
83	if (cleanup) {
84	if (gpg_secring)
85	free (gpg_secring);
86	gpg_secring = NULL;
87	}
88	}
89
90
91	/* Update the key with the keyid @keyid in the key cache.
92	If @is_sec is 1, the secret key cache is used. */
93	gpgme_error_t
94	keycache_update (int is_sec, const char *keyid)
95	{
96	gpg_keycache_t ctx = pub;
97	gpgme_error_t err;
98
99	if (is_sec)
100	ctx = sec;
101	err = gpg_keycache_update_key (ctx, is_sec, pub, keyid);
102	if (is_sec)
103	gpg_keycache_prepare_single (ctx, keyid, NULL, gpg_secring);
104	return err;
105	}
106
107
108	/* Initialize both cache contexts. Use @pubring for the public
109	keyring and @secring for the secret keyring. */
110	gpgme_error_t
111	keycache_init (const char pubring, const char secring)
112	{
113	struct progress_filter_s pfx;
114	gpgme_error_t err;
115	int val = 0;
116	char *p;
117
118	if (secring != NULL) {
119	free_if_alloc (gpg_secring);
120	gpg_secring = get_gnupg_keyring (0, NO_STRICT);
121	}
122
123	p = get_reg_entry (HKEY_CURRENT_USER, "Software\\WinPT", "nKeys");
124	if (p && *p != ' ') {
125	val = atoi (p);
126	free_if_alloc (p);
127	memset (&pfx, 0, sizeof (pfx));
128	}
129
130	/* Release old contexts first. */
131	keycache_release (0);
132
133	err = gpg_keycache_new (&pub);
134	if (err)
135	return err;
136	if (val != 0)
137	gpg_keycache_set_cb (pub, progress_callback, &pfx, val);
138	err = gpg_keycache_new (&sec);
139	if (!err)
140	err = gpg_keycache_init (pub, NULL, 0);
141	if (!err)
142	err = gpg_keycache_init( sec, NULL, 1 );
143	if( !err && pubring && *pubring )
144	err = gpg_keycache_prepare( pub, pubring, NULL );
145	if( !err && secring && * secring )
146	err = gpg_keycache_prepare( sec, NULL, secring );
147	if (!err)
148	gpg_keycache_sync (pub, sec);
149	if (val != 0)
150	progress_cleanup (&pfx);
151	return err;
152	}
153
154
155	/* Return the public cache context if @is_pub is set
156	the secre cache context otherwise. */
157	gpg_keycache_t
158	keycache_get_ctx (int is_pub)
159	{
160	return is_pub? pub : sec;
161	}
162
163
164	/* Get the GPG key with keyid @keyid from the cache. Return it
165	in @r_key on success. */
166	static int
167	get_key_from_cache (const char keyid, gpgme_key_t r_key,
168	struct keycache_s **c, int secret)
169	{
170	gpg_keycache_t cache;
171	gpgme_error_t err;
172	int mode = secret? KEYCACHE_PRV : KEYCACHE_PUB;
173
174	if (!keyid)
175	return WPTERR_GENERAL;
176	if (r_key)
177	*r_key = NULL;
178	cache = keycache_get_ctx (mode);
179	if (!cache)
180	BUG( NULL );
181	if (!c)
182	err = gpg_keycache_find_key (cache, keyid, 0, r_key);
183	else
184	err = gpg_keycache_find_key2 (cache, keyid, 0, r_key, c);
185	return err? WPTERR_GENERAL : 0;
186	}
187
188
189	/* Get GPG key with keyid @keyid directly from GPG and return
190	it in @r_key on success. */
191	static int
192	get_key_directly (const char keyid, gpgme_key_t r_key, int secret)
193	{
194	gpgme_ctx_t ctx;
195	gpgme_error_t err;
196
197	err = gpgme_new (&ctx);
198	if (err)
199	return WPTERR_GENERAL;
200	err = gpgme_get_key (ctx, keyid, r_key, secret);
201	gpgme_release (ctx);
202	return err? WPTERR_GENERAL : 0;
203	}
204
205
206	/* Search the public key with @keyid as the keyid in the cache and
207	return the item in @k. */
208	int
209	winpt_get_pubkey (const char keyid, winpt_key_s k)
210	{
211	int rc;
212
213	rc = get_key_from_cache (keyid, &k->ctx, &k->ext, 0);
214	if (rc)
215	return rc;
216	k->is_v3 = k->ctx->subkeys->pubkey_algo == GPGME_PK_RSA &&
217	strlen (k->ctx->subkeys->fpr) == 32;
218	k->is_protected = k->ext->gloflags.is_protected;
219	k->keyid = k->ctx->subkeys->keyid;
220	k->uid = k->ctx->uids->uid;
221	return rc;
222	}
223
224
225	int
226	winpt_get_seckey (const char keyid, winpt_key_s k)
227	{
228	int rc;
229	rc = get_key_from_cache (keyid, &k->ctx, &k->ext, 1);
230	if (rc)
231	return rc;
232	k->is_v3 = k->ctx->subkeys->pubkey_algo == GPGME_PK_RSA &&
233	strlen (k->ctx->subkeys->fpr) == 32;
234	k->is_protected = k->ext->gloflags.is_protected;
235	k->keyid = k->ctx->subkeys->keyid;
236	k->uid = k->ctx->uids->uid;
237	return rc;
238	}
239
240
241	int
242	get_pubkey (const char keyid, gpgme_key_t ret_key)
243	{
244	int rc;
245
246	if (pub && sec)
247	rc = get_key_from_cache (keyid, ret_key, NULL, 0);
248	else
249	rc = get_key_directly (keyid, ret_key, 0);
250	return rc;
251	}
252
253
254	int
255	get_seckey (const char keyid, gpgme_key_t ret_skey)
256	{
257	int rc;
258
259	if (pub && sec)
260	rc = get_key_from_cache (keyid, ret_skey, NULL, 1);
261	else
262	rc = get_key_directly (keyid, ret_skey, 1);
263	return rc;
264	}
265
266
267	/* Search for insecure ElGamal keys and return the
268	number of founded keys. */
269	int
270	count_insecure_elgkeys (void)
271	{
272	gpg_keycache_t pc;
273	gpgme_key_t key;
274	int n=0;
275
276	pc = keycache_get_ctx (1);
277	if (!pc)
278	BUG (0);
279	while (!gpg_keycache_next_key (pc, 0, &key)) {
280	if (key->subkeys->pubkey_algo == GPGME_PK_ELG)
281	n++;
282	}
283	gpg_keycache_rewind (pc);
284	return n;
285	}
286
287
288
289	/* Map the signature summary in @sum to signature status table index.
290	Return value: index to table. */
291	static int
292	sigsum_to_index (gpgme_sigsum_t sum)
293	{
294	if ((sum & GPGME_SIGSUM_VALID) && (sum & GPGME_SIGSUM_KEY_REVOKED))
295	return 7;
296	if ((sum & GPGME_SIGSUM_VALID) && (sum & GPGME_SIGSUM_SIG_EXPIRED))
297	return 6;
298	if (sum & GPGME_SIGSUM_GREEN)
299	return 1;
300	else if (sum & GPGME_SIGSUM_RED)
301	return 2;
302	else if (sum & GPGME_SIGSUM_KEY_MISSING)
303	return 3;
304	return 0;
305	}
306
307
308	/* Return a humand readable description for the signature status @sum. */
309	const char*
310	get_gpg_sigstat (gpgme_sigsum_t sum)
311	{
312	const char *gpg_sigstat[] = {
313	_("Error during verification process."),
314	_("The signature is good."),
315	_("The signature is BAD!"),
316	_("The signature could not be checked due to a missing key."),
317	_("No valid OpenPGP signature."),
318	_("Signature Error"),
319	_("Good Signature (Expired Key)"),
320	_("Good Signature (Revoked Key)"),
321	NULL
322	};
323	const unsigned int mask = 8;
324
325	return gpg_sigstat[sigsum_to_index (sum) % mask];
326	}