/[winpt]/trunk/Src/wptGPGME.cpp

Diff of /trunk/Src/wptGPGME.cpp

Parent Directory | Revision Log | View Patch Patch

-revision 23 by twoaday,
Fri Sep 30 10:10:16 2005 UTC
+revision 175 by twoaday,
Tue Feb  7 08:58:04 2006 UTC
 Line 1
  /* wptGPGME.cpp - WinPT GPGME interface
   *      Copyright (C) 2001-2005 Timo Schulz
   *
   * This file is part of WinPT.
   *
   * WinPT is free software; you can redistribute it and/or
   * modify it under the terms of the GNU General Public License
   * as published by the Free Software Foundation; either version 2
   * of the License, or (at your option) any later version.
   *
   * WinPT is distributed in the hope that it will be useful,
   * but WITHOUT ANY WARRANTY; without even the implied warranty of
   * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
   * General Public License for more details.
   *
   * You should have received a copy of the GNU General Public License
   * along with WinPT; if not, write to the Free Software Foundation,
   * Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
   */
+ #ifdef HAVE_CONFIG_H
- #include <sys/types.h>
+ #include <config.h>
- #include <windows.h>
+ #endif
- #include "../resource.h"
+ #include <sys/types.h>
- #include "wptNLS.h"
+ #include <windows.h>
- #include "wptGPG.h"
- #include "wptErrors.h"
+ #include "resource.h"
- #include "wptTypes.h"
+ #include "wptNLS.h"
- #include "wptW32API.h"
+ #include "wptGPG.h"
- #include "wptVersion.h"
+ #include "wptErrors.h"
- #include "wptCommonCtl.h"
+ #include "wptTypes.h"
- #include "wptContext.h"
+ #include "wptW32API.h"
- #include "wptRegistry.h"
+ #include "wptVersion.h"
- #include "wptDlgs.h"
+ #include "wptCommonCtl.h"
+ #include "wptContext.h"
- #include "openpgp.h"
+ #include "wptRegistry.h"
+ #include "wptDlgs.h"
- BOOL CALLBACK  keycache_dlg_proc (HWND dlg, UINT msg, WPARAM wparam, LPARAM lparam);
- void progress_cleanup (progress_filter_s * pfx);
+ #include "openpgp.h"
- static gpgme_keycache_t pub = NULL;
+ BOOL CALLBACK  keycache_dlg_proc (HWND dlg, UINT msg, WPARAM wparam, LPARAM lparam);
- static gpgme_keycache_t sec = NULL;
+ void progress_cleanup (progress_filter_s * pfx);
- static unsigned int reload = 0;
- static char *gpg_secring = NULL;
+ static gpg_keycache_t pub = NULL;
+ static gpg_keycache_t sec = NULL;
- void
+ static char *gpg_secring = NULL;
- keycache_reload (HWND dlg)
- {
-     refresh_cache_s rcs;
+ /* Reload the key cache. */
+ void
-     memset (&rcs, 0, sizeof rcs);
+ keycache_reload (HWND dlg)
-     rcs.kr_reload = rcs.kr_update = 1;
+ {
-     rcs.tr_update = 0;
+     refresh_cache_s rcs;
-     DialogBoxParam (glob_hinst, (LPCSTR)IDD_WINPT_KEYCACHE, dlg,
-                     keycache_dlg_proc, (LPARAM)&rcs);
+     memset (&rcs, 0, sizeof rcs);
- } /* keycache_reload */
+     rcs.kr_reload = rcs.kr_update = 1;
+     rcs.tr_update = 0;
- void
+     DialogBoxParam (glob_hinst, (LPCSTR)IDD_WINPT_KEYCACHE, dlg,
- keycache_release (void)
+                     keycache_dlg_proc, (LPARAM)&rcs);
- {
+ }
-     int n = gpgme_keycache_count (pub);
-     char tmpbuf[64];
+ /* Release both key cache objects. If @cleanup is 1,
-     /* XXX: update the value when the cache has changed. */
+    also release other global structs. */
-     sprintf (tmpbuf, "%d", n);
+ void
-     set_reg_key (HKEY_CURRENT_USER, "Software\\WinPT", "nKeys", tmpbuf);
+ keycache_release (int cleanup)
+ {
-     if (pub) {
+     int n = gpg_keycache_get_size (pub);
-         gpgme_keycache_release (pub);
+     char tmpbuf[64];
-         pub = NULL;
-     }
+     /* XXX: update the value when the cache has changed. */
-     if (sec) {
+     sprintf (tmpbuf, "%d", n);
-         gpgme_keycache_release (sec);
+     set_reg_key (HKEY_CURRENT_USER, "Software\\WinPT", "nKeys", tmpbuf);
-         sec = NULL;
-     }
+     if (pub) {
- } /* keycache_release */
+         gpg_keycache_release (pub);
+         pub = NULL;
+     }
- gpgme_error_t
+     if (sec) {
- keycache_update (int is_sec, const char *keyid)
+         gpg_keycache_release (sec);
- {
+         sec = NULL;
-     gpgme_keycache_t ctx = pub;
+     }
-     gpgme_error_t err;
+     if (cleanup) {
+         if (gpg_secring)
-     if (is_sec)
+             free (gpg_secring);
-         ctx = sec;
+         gpg_secring = NULL;
-     err =  gpgme_keycache_update_key (ctx, is_sec, pub, keyid);
+     }
-     if (is_sec)
+ }
-         gpgme_keycache_prepare_single (ctx, keyid, NULL, gpg_secring);
-     return err;
- }
+ /* Update the key with the keyid @keyid in the key cache.
+    If @is_sec is 1, the secret key cache is used. */
- /* XXX: cache_keyring_names must be called then the GPG homedir changes! */
+ gpgme_error_t
+ keycache_update (int is_sec, const char *keyid)
- gpgme_error_t
+ {
- keycache_init (const char *pubring, const char * secring)
+     gpg_keycache_t ctx = pub;
- {
+     gpgme_error_t err;
-     struct progress_filter_s pfx;
-     gpgme_error_t err;
+     if (is_sec)
-     int val = 0;
+         ctx = sec;
-     char * p;
+     err = gpg_keycache_update_key (ctx, is_sec, pub, keyid);
+     if (is_sec)
-     if (secring != NULL) {
+         gpg_keycache_prepare_single (ctx, keyid, NULL, gpg_secring);
-         free_if_alloc (gpg_secring);
+     return err;
-         gpg_secring = get_gnupg_keyring (0, NO_STRICT);
+ }
-     }
-     if (reload) {
+ /* Initialize both cache contexts. Use @pubring for the public
-         keycache_release ();
+    keyring and @secring for the secret keyring. */
-         reload = 0;
+ gpgme_error_t
-     }
+ keycache_init (const char *pubring, const char *secring)
-     p = get_reg_entry (HKEY_CURRENT_USER, "Software\\WinPT", "nKeys");
+ {
-     if (p && *p != ' ') {
+     struct progress_filter_s pfx;
-         val = atoi (p);
+     gpgme_error_t err;
-         free_if_alloc (p);
+     int val = 0;
-         memset (&pfx, 0, sizeof (pfx));
+     char *p;
-     }
+     if (secring != NULL) {
-     err = gpgme_keycache_new (&pub);
+         free_if_alloc (gpg_secring);
-     if (err)
+         gpg_secring = get_gnupg_keyring (0, NO_STRICT);
-         return err;
+     }
-     if (val != 0)
-         gpgme_keycache_set_cb (pub, progress_callback, &pfx, val);
+     p = get_reg_entry (HKEY_CURRENT_USER, "Software\\WinPT", "nKeys");
-     err = gpgme_keycache_new (&sec);
+     if (p && *p != ' ') {
-     if (!err)
+         val = atoi (p);
-         err = gpgme_keycache_init (pub, NULL, 0);
+         free_if_alloc (p);
-     if (!err)
+         memset (&pfx, 0, sizeof (pfx));
-         err = gpgme_keycache_init( sec, NULL, 1 );
+     }
-     if( !err && pubring && *pubring )
-         err = gpgme_keycache_prepare( pub, pubring, NULL );
+     /* Release old contexts first. */
-     if( !err && secring && * secring )
+     keycache_release (0);
-         err = gpgme_keycache_prepare( sec, NULL, secring );
-     if (!err)
+     err = gpg_keycache_new (&pub);
-         gpgme_keycache_sync (pub, sec);
+     if (err)
-     if (val != 0)
+         return err;
-         progress_cleanup (&pfx);
+     if (val != 0)
-     return err;
+         gpg_keycache_set_cb (pub, progress_callback, &pfx, val);
- } /* keycache_init */
+     err = gpg_keycache_new (&sec);
+     if (!err)
+         err = gpg_keycache_init (pub, NULL, 0);
- void
+     if (!err)
- keycache_set_reload( int yes )
+         err = gpg_keycache_init (sec, NULL, 1);
- {
+     if (!err && pubring && *pubring)
-     reload = yes;
+         err = gpg_keycache_prepare( pub, pubring, NULL);
- } /* keycache_set_reload */
+     if (!err && secring && * secring)
+         err = gpg_keycache_prepare (sec, NULL, secring);
+     if (!err)
- int
+         gpg_keycache_sync (pub, sec);
- keycache_get_reload( void )
+     if (val != 0)
- {
+         progress_cleanup (&pfx);
-     return reload;
+     return err;
- } /* keycache_get_reload */
+ }
- gpgme_keycache_t
+ /* Return the public cache context if @is_pub is set
- keycache_get_ctx (int is_pub)
+    the secre cache context otherwise. */
- {
+ gpg_keycache_t
-     return is_pub? pub : sec;
+ keycache_get_ctx (int is_pub)
- } /* keycache_get_ctx */
+ {
+     return is_pub? pub : sec;
+ }
- static int
- get_key (const char *keyid, gpgme_key_t *r_key, struct keycache_s **c, int secret)
- {
+ /* Get the GPG key with keyid @keyid from the cache. Return it
-     gpgme_keycache_t cache;
+    in @r_key on success. */
-     gpgme_error_t err;
+ static int
-     int mode = secret? KEYCACHE_PRV : KEYCACHE_PUB;
+ get_key_from_cache (const char *keyid, gpgme_key_t *r_key,
+                     struct keycache_s **c, int secret)
-     if( !keyid )
+ {
-         return WPTERR_GENERAL;
+     gpg_keycache_t cache;
-     if( r_key )
+     gpgme_error_t err;
-         *r_key = NULL;
+     int mode = secret? KEYCACHE_PRV : KEYCACHE_PUB;
-     cache = keycache_get_ctx (mode);
-     if( !cache )
+     if (!keyid)
-         BUG( NULL );
+         return WPTERR_GENERAL;
-     if (!c)
+     if (r_key)
-         err = gpgme_keycache_find_key( cache, keyid, 0, r_key );
+         *r_key = NULL;
-     else
+     cache = keycache_get_ctx (mode);
-         err = gpgme_keycache_find_key2 (cache, keyid, 0, r_key, c);
+     if (!cache)
-     if( err )
+         BUG( NULL );
-         return WPTERR_GENERAL;
+     if (!c)
-     return 0;
+         err = gpg_keycache_find_key (cache, keyid, 0, r_key);
- } /* get_key */
+     else
+         err = gpg_keycache_find_key2 (cache, keyid, 0, r_key, c);
+     return err? WPTERR_GENERAL : 0;
- static int
+ }
- get_key2( const char * keyid, gpgme_key_t * r_key, int secret )
- {
-     gpg_iobuf_t inp;
+ /* Get GPG key with keyid @keyid directly from GPG and return
-     char * p;
+    it in @r_key on success. */
-     int rc;
+ static int
+ get_key_directly (const char *keyid, gpgme_key_t *r_key, int secret)
-     p = get_gnupg_keyring (1, !NO_STRICT);
+ {
-     if( !p )
+     gpgme_ctx_t ctx;
-         BUG( NULL );
+     gpgme_error_t err;
-     inp = gpg_iobuf_open( p );
+     err = gpgme_new (&ctx);
-     if( !inp ) {
+     if (err)
-         const char *s = winpt_strerror( WPTERR_FILE_OPEN );
+         return WPTERR_GENERAL;
-         log_box( _("WinPT Error"), 0, "%s: %s", p, s );
+     err = gpgme_get_key (ctx, keyid, r_key, secret);
-         free_if_alloc( p );
+     gpgme_release (ctx);
-         return NULL;
+     return err? WPTERR_GENERAL : 0;
-     }
+ }
-     gpg_iobuf_ioctl( inp, 3, 1, NULL ); /* disable cache */
-     rc = gpgme_getkey_bykeyid( inp, keyid, r_key );
+ /* Search the public key with @keyid as the keyid in the cache and
-     gpg_iobuf_close( inp );
+    return the item in @k. */
-     free_if_alloc( p );
+ int
-     return rc;
+ winpt_get_pubkey (const char *keyid, winpt_key_s *k)
- } /* get_key2 */
+ {
+     int rc;
- int
+     rc = get_key_from_cache (keyid, &k->ctx, &k->ext, 0);
- winpt_get_pubkey (const char *keyid, winpt_key_s *k)
+     if (rc)
- {
+         return rc;
-     int rc;
+     k->is_v3 = k->ctx->subkeys->pubkey_algo == GPGME_PK_RSA &&
+                 strlen (k->ctx->subkeys->fpr) == 32;
-     rc = get_key (keyid, &k->ctx, &k->ext, 0);
+     k->is_protected = k->ext->gloflags.is_protected;
-     if (rc)
+     k->keyid = k->ctx->subkeys->keyid;
-         return rc;
+     k->uid = k->ctx->uids->uid;
-     k->is_v3 = k->ctx->subkeys->pubkey_algo == GPGME_PK_RSA && strlen (k->ctx->subkeys->fpr) == 32;
+     return rc;
-     k->is_protected = k->ext->gloflags.is_protected;
+ }
-     k->keyid = k->ctx->subkeys->keyid;
-     k->uid = k->ctx->uids->uid;
-     return rc;
+ int
- }
+ winpt_get_seckey (const char *keyid, winpt_key_s *k)
+ {
+     int rc;
- int
+     rc = get_key_from_cache (keyid, &k->ctx, &k->ext, 1);
- winpt_get_seckey (const char *keyid, winpt_key_s *k)
+     if (rc)
- {
+         return rc;
-     int rc;
+     k->is_v3 = k->ctx->subkeys->pubkey_algo == GPGME_PK_RSA &&
-     rc = get_key (keyid, &k->ctx, &k->ext, 1);
+                 strlen (k->ctx->subkeys->fpr) == 32;
-     if (rc)
+     k->is_protected = k->ext->gloflags.is_protected;
-         return rc;
+     k->keyid = k->ctx->subkeys->keyid;
-     k->is_v3 = k->ctx->subkeys->pubkey_algo == GPGME_PK_RSA && strlen (k->ctx->subkeys->fpr) == 32;
+     k->uid = k->ctx->uids->uid;
-     k->is_protected = k->ext->gloflags.is_protected;
+     return rc;
-     k->keyid = k->ctx->subkeys->keyid;
+ }
-     k->uid = k->ctx->uids->uid;
-     return rc;
- }
+ int
+ get_pubkey (const char *keyid, gpgme_key_t *ret_key)
+ {
- int
+     int rc;
- get_pubkey (const char *keyid, gpgme_key_t *ret_key)
- {
+     if (pub && sec)
-     int rc = 0;
+         rc = get_key_from_cache (keyid, ret_key, NULL, 0);
+     else
-     if (pub && sec)
+         rc = get_key_directly (keyid, ret_key, 0);
-         rc = get_key (keyid, ret_key, NULL, 0);
+     return rc;
-     else
+ }
-         rc = get_key2 (keyid, ret_key, 0);
-     return rc;
- } /* get_pubkey */
+ int
+ get_seckey (const char *keyid, gpgme_key_t *ret_skey)
+ {
- int
+     int rc;
- get_seckey( const char *keyid, gpgme_key_t *ret_skey )
- {
+     if (pub && sec)
-     int rc = 0;
+         rc = get_key_from_cache (keyid, ret_skey, NULL, 1);
+     else
-     if( pub && sec )
+         rc = get_key_directly (keyid, ret_skey, 1);
-         rc = get_key( keyid, ret_skey, NULL, 1 );
+     return rc;
-     else
+ }
-         rc = get_key2( keyid, ret_skey, 1 );
-     return rc;
- } /* get_seckey */
+ /* Search for insecure ElGamal keys and return the
+    number of founded keys. */
+ int
- int
+ count_insecure_elgkeys (void)
- count_insecure_elgkeys (void)
+ {
- {
+     gpg_keycache_t pc;
-     gpgme_keycache_t pc;
+     gpgme_key_t key;
-     gpgme_key_t key;
+     int n=0;
-     int n=0;
+     pc = keycache_get_ctx (1);
-     pc = keycache_get_ctx (1);
+     if (!pc)
-     if (!pc)
+         BUG (0);
-         BUG (0);
+     while (!gpg_keycache_next_key (pc, 0, &key)) {
-     while (!gpgme_keycache_next_key (pc, 0, &key)) {
+         if (key->subkeys->pubkey_algo == GPGME_PK_ELG)
-         if (key->subkeys->pubkey_algo == GPGME_PK_ELG)
+             n++;
-             n++;
+     }
-     }
+     gpg_keycache_rewind (pc);
-     gpgme_keycache_rewind (pc);
+     return n;
-     return n;
+ }
- }
+ /* Map the signature summary in @sum to signature status table index.
+    Return value: index to table. */
+ static int
+ sigsum_to_index (gpgme_sigsum_t sum)
+ {
+     if ((sum & GPGME_SIGSUM_VALID) && (sum & GPGME_SIGSUM_KEY_REVOKED))
+         return 7;
+     if ((sum & GPGME_SIGSUM_VALID) && (sum & GPGME_SIGSUM_SIG_EXPIRED))
+         return 6;
+     if (sum & GPGME_SIGSUM_GREEN)
+         return 1;
+     else if (sum & GPGME_SIGSUM_RED)
+         return 2;
+     else if (sum & GPGME_SIGSUM_KEY_MISSING)
+         return 3;
+     return 0;
+ }
+ /* Return a humand readable description for the signature status @sum. */
+ const char*
+ get_gpg_sigstat (gpgme_sigsum_t sum)
+ {
+     const char *gpg_sigstat[] = {
+         _("Error during verification process."),
+         _("The signature is good."),
+         _("The signature is BAD!"),
+         _("The signature could not be checked due to a missing key."),
+         _("No valid OpenPGP signature."),
+         _("Signature Error"),
+         _("Good Signature (Expired Key)"),
+         _("Good Signature (Revoked Key)"),
+         NULL
+     };
+     const unsigned int mask = 8;
+     return gpg_sigstat[sigsum_to_index (sum) % mask];
+ }
+ /* Check if the secret keyring contains at least one
+    key with ultimate trust.
+    Return value: 0 on success. */
+ int
+ check_ultimate_trusted_key (void)
+ {
+     struct keycache_s *n;
+     for (n = sec->item; n; n = n->next) {
+         if (n->pubpart &&
+             n->pubpart->key->owner_trust == GPGME_VALIDITY_ULTIMATE)
+         return 0;
+     }
+     return -1;
+ }

 Legend:



Removed from v.23
 


changed lines


 
Added in v.175
 Legend:



Removed from v.23
 


changed lines


 
Added in v.175
-Removed from v.23
+Added in v.175

[email protected]	ViewVC Help
Powered by ViewVC 1.1.26