trunk/Src/wptGPGUtil.cpp

/* wptGPGUtil.cpp - GPG helper functions
 *      Copyright (C) 2005 g10 Code GmbH
 *
 * This file is part of WinPT.
 *
 * WinPT is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 * 
 * WinPT is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with WinPT; if not, write to the Free Software Foundation, 
 * Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA
 */
#include <windows.h>
#include <sys/stat.h>

#include "gpgme.h"


#define NROFHEXDIGITS 2  
/* Convert two hexadecimal digits from STR to the value they
   represent.  Returns -1 if one of the characters is not a
   hexadecimal digit.  */
static int
hextobyte (const unsigned char *str)
{
    int val = 0;  
    int i;

    for (i = 0; i < NROFHEXDIGITS; i++) {
        if (*str >= '0' && *str <= '9')
            val += *str - '0';
        else if (*str >= 'A' && *str <= 'F')
            val += 10 + *str - 'A';
        else if (*str >= 'a' && *str <= 'f')
            val += 10 + *str - 'a';
        else
            return -1;
        if (i < NROFHEXDIGITS - 1)
            val *= 16;
        str++;
    }
    return val;
}

/* Decode the C formatted string @src and store the result in the
   buffer @destp which is @len bytes long.  If @len is zero, then a
   large enough buffer is allocated with malloc and @destp is set to
   the result.  Currently, @len is only used to specify if allocation
   is desired or not, the caller is expected to make sure that @destp
   is large enough if @len is not zero.  */
gpgme_error_t
gpg_decode_c_string (const char *src, char **destp, size_t len)
{
  char *dest;

  /* Set up the destination buffer.  */
  if (len) {
      if (len < strlen (src) + 1)
          return gpg_error (GPG_ERR_TOO_SHORT);
      dest = *destp;
  }
  else {      
  /* The converted string will never be larger than the original string.  */
      dest = (char*)malloc (strlen (src) + 1);
      if (!dest)
          return gpg_error (GPG_ERR_ENOMEM);
      *destp = dest;
  }

  /* Convert the string.  */
  while (*src) {    
      if (*src != '\\') {
          *(dest++) = *(src++);
          continue;
        }

      switch (src[1]) {
#define DECODE_ONE(match,result)        \
      case match:                       \
          src += 2;                     \
          *(dest++) = result;           \
          break;

          DECODE_ONE ('\'', '\'');
          DECODE_ONE ('\"', '\"');
          DECODE_ONE ('\?', '\?');
          DECODE_ONE ('\\', '\\');
          DECODE_ONE ('a', '\a');
          DECODE_ONE ('b', '\b');
          DECODE_ONE ('f', '\f');
          DECODE_ONE ('n', '\n');
          DECODE_ONE ('r', '\r');
          DECODE_ONE ('t', '\t');
          DECODE_ONE ('v', '\v');

      case 'x': {
            int val = hextobyte ((unsigned char*)&src[2]);
            if (val == -1) {
                /* Should not happen.  */
                *(dest++) = *(src++);
                *(dest++) = *(src++);
                if (*src)
                  *(dest++) = *(src++);
                if (*src)
                  *(dest++) = *(src++);
            }
            else {
                if (!val) {               
                    /* A binary zero is not representable in a C
                       string.  */
                    *(dest++) = '\\';
                    *(dest++) = '0'; 
                }
                else 
                    *((unsigned char *) dest++) = val;
                src += 4;
            }
        }

        default:
          {
            /* Should not happen.  */
            *(dest++) = *(src++);
            *(dest++) = *(src++);
          }
        } 
  }
  *(dest++) = 0;
  return 0;
}

/* Replace %foo% entries with its real values.
   Return value: expanded path or NULL on error. */
static char *
expand_path (const char *path)
{
    DWORD len;
    char *p;

    len = ExpandEnvironmentStrings (path, NULL, 0);
    if (!len)
        return NULL;
    len += 1;
    p = (char*)calloc (1, len+1);
    if (!p)
        abort ();
    len = ExpandEnvironmentStrings (path, p, len);
    if (!len) {
        free (p);
        return NULL;
    }
    return p; 
}


/* Read a string from the W32 registry. The directory is given
   in @dir and the name of the value in @name, */
static char *
read_w32_registry (HKEY root_key, const char *dir, const char *name )
{
    HKEY key_handle;
    DWORD n1, nbytes;
    DWORD type;
    char *result = NULL;
    
    if (RegOpenKeyEx (root_key, dir, 0, KEY_READ, &key_handle))
        return NULL; /* no need for a RegClose, so return direct */
    
    nbytes = 1;
    if (RegQueryValueEx (key_handle, name, 0, NULL, NULL, &nbytes))
        goto leave;
    result = (char*)calloc (1, (n1=nbytes+1));
    if (!result)
        abort ();
    if (RegQueryValueEx (key_handle, name, 0, &type, (BYTE*)result, &n1)) {
        free (result); 
        result = NULL;
        goto leave;
    }
    if (type == REG_EXPAND_SZ && strchr (result, '%')) {
        char *p = expand_path (result);
        free (result);
        result = p;
    }
    
leave:
    RegCloseKey (key_handle);
    return result;
}


/* Create a temp file based on the name of @name.
   Return value: handle to the file in case of success. */
static HANDLE
create_tmpfile (const char *name)
{    
    HANDLE out;
    SECURITY_ATTRIBUTES sattr;
    char tmp[300]; 

    memset (&sattr, 0, sizeof sattr);
    sattr.bInheritHandle = TRUE;
    sattr.lpSecurityDescriptor = NULL;
    sattr.nLength = sizeof sattr;

    GetTempPath (300 - 64, tmp);
    strcat (tmp, name);
    out = CreateFile (tmp, GENERIC_READ|GENERIC_WRITE, 
                      FILE_SHARE_WRITE, &sattr,
                      OPEN_ALWAYS, FILE_FLAG_DELETE_ON_CLOSE, NULL);
    return out;
}


/* Create a pipe with a readable remote end and
   write the data from @dat to the local end.
   Return value: read handle on success. */
static HANDLE
create_in_pipe (const char *dat)
{
    HANDLE r, w;
    SECURITY_ATTRIBUTES sec_attr;
    DWORD n;

    memset (&sec_attr, 0, sizeof sec_attr);
    sec_attr.bInheritHandle = TRUE;
    sec_attr.nLength = sizeof sec_attr;

    if (!CreatePipe (&r, &w, &sec_attr, 4096))
        return NULL;

    WriteFile (w, dat, strlen (dat), &n, NULL);
    CloseHandle (w);

    return r;
}


/* Map the contents of the file handle @out to
   a buffer and return it. */
static char*
map_tmpfile (HANDLE out)
{
    DWORD n;
    char *p;

    FlushFileBuffers (out);
    SetFilePointer (out, 0, NULL, FILE_BEGIN);
    n = GetFileSize (out, NULL);
    p = (char*)calloc (1, n+1);
    if (!p)
        abort ();
    ReadFile (out, p, n, &n, NULL);
    p[n] = 0;
    return p;
}


/* Create a process from the command line in @cmd.
   If @out is != NULL, the output of the process will
   be redirected to @out. If @in is != NULL the input
   will be read from @in.
   Return value: 0 on success. */
static int
create_process (const char *cmd, HANDLE in, HANDLE out)
{
    STARTUPINFO si;
    PROCESS_INFORMATION pi;

    memset (&si, 0, sizeof (si));
    si.cb = sizeof si;
    if (in || out)
        si.dwFlags = STARTF_USESTDHANDLES;
    if (out)
        si.hStdOutput = out;
    if (in)
        si.hStdInput = in;
    if (!CreateProcess (NULL, (char*)cmd, NULL, NULL, TRUE, 0, NULL, NULL, &si, &pi))
        return -1;
    WaitForSingleObject (pi.hProcess, INFINITE);
    CloseHandle (pi.hProcess);
    return 0;
}


/* Export a GPG secret key given by @keyid into the file @outfile.
   Return value: 0 on success. */
gpgme_error_t
gpg_export_seckey (const char *keyid, const char *outfile)
{
    gpgme_error_t err = gpg_error (GPG_ERR_NO_ERROR);
    struct stat st;
    char *p;
    char *cmd;

    p = read_w32_registry (HKEY_CURRENT_USER, "Software\\GNU\\GnuPG", "gpgProgram");
    if (!p)
        return gpg_error (GPG_ERR_INV_ARG);
    cmd = (char*)calloc (1, strlen (p) + strlen (keyid) + strlen (outfile ) + 64 + 2);
    if (!cmd)
        abort ();
    sprintf (cmd, "%s --yes --output \"%s\" --export-secret-key %s", p, outfile, keyid);
    if (create_process (cmd, NULL, NULL))
        err = gpg_error (GPG_ERR_INTERNAL);

    if (stat (outfile, &st) == -1 || st.st_size == 0)
        err = gpg_error (GPG_ERR_NO_DATA);

    free (p);
    free (cmd);
    return err;
}


/* If @export is 1, export the ownertrust data to the
   buffer @data. Otherwise import the ownertrust data from @data.
   Return value: 0 on success. */
gpgme_error_t
gpg_manage_ownertrust (char **data, int export)
{
    gpgme_error_t err = gpg_error (GPG_ERR_NO_ERROR);
    HANDLE out = NULL, in = NULL;
    char *p;
    char *cmd;

    p = read_w32_registry (HKEY_CURRENT_USER, "Software\\GNU\\GnuPG", "gpgProgram");
    if (!p)
        return gpg_error (GPG_ERR_INV_ARG);

    cmd = (char*)calloc (1, strlen (p) + 64 + 1);
    if (!cmd)
        abort ();  
    sprintf (cmd, "%s %s", p, export? "--export-ownertrust" : "--import-ownertrust");

    if (export)
        out = create_tmpfile ("gpg_ot_out");
    else {
        DWORD nw;
        in = create_tmpfile ("gpg_ot_in");
        WriteFile (in, *data, strlen (*data), &nw, NULL);
        FlushFileBuffers (in);
        /* XXX: need a rewind? */
    }
    if (create_process (cmd, in, out))
        err = gpg_error (GPG_ERR_INTERNAL);

    free (p);
    free (cmd);

    if (in)
        CloseHandle (in);
    if (out) {
        *data = map_tmpfile (out);
        CloseHandle (out);
    }
    return err;
}

/* Call gpg --rebuild-keydb-caches to speed up signature listings. */
gpgme_error_t
gpg_rebuild_cache (char **r_inf)
{
    gpgme_error_t err = gpg_error (GPG_ERR_NO_ERROR);
    HANDLE out = NULL;
    char *p;
    char *cmd;

    p = read_w32_registry (HKEY_CURRENT_USER, "Software\\GNU\\GnuPG", "gpgProgram");
    if (!p)
        return gpg_error (GPG_ERR_INV_ARG);
    cmd = (char*)calloc (1, strlen (p) + 64);
    if (!cmd)
        abort ();
    sprintf (cmd, "%s --logger-fd=1 --rebuild-keydb-caches", p);

    if (r_inf)
        out = create_tmpfile ("gpg_rebuild_cache");

    if (create_process (cmd, NULL, out))
        err = gpg_error (GPG_ERR_INTERNAL);

    if (r_inf)
        *r_inf = map_tmpfile (out);
    if (out)
        CloseHandle (out);
    free (p);
    free (cmd);
    return 0;
}

/* Call gpg --version to retrieve the 'about' information. */
gpgme_error_t
gpg_get_version (char **r_inf)
{
    gpgme_error_t err= gpg_error (GPG_ERR_NO_ERROR);
    HANDLE out;    
    char *p, *cmd;

    p =read_w32_registry (HKEY_CURRENT_USER, "Software\\GNU\\GnuPG", "gpgProgram");
    if (!p)
        return gpg_error (GPG_ERR_INV_ARG);
    cmd = (char*)calloc (1, strlen (p) + 32);
    if (!cmd)
        abort ();
    sprintf (cmd, "%s --version", p);

    out = create_tmpfile ("gpg_out");
    if (create_process (cmd, NULL, out))
        err = gpg_error (GPG_ERR_INTERNAL);

    free (p);
    free (cmd);

    *r_inf = map_tmpfile (out);
    CloseHandle (out);    
    return err;
}

/* Return the colon file output of the given file @fname in @r_out.
   Return value: 0 on success. */ 
gpgme_error_t
gpg_import_key_list (const char *fname, char **r_out)
{
    gpgme_error_t err = gpg_error (GPG_ERR_NO_ERROR);
    char *cmd, *p;
    HANDLE out;

    p = read_w32_registry (HKEY_CURRENT_USER, "Software\\GNU\\GnuPG", "gpgProgram");
    if (!p)
        return gpg_error (GPG_ERR_INV_ARG);

    cmd = (char*)calloc (1, strlen (p) + strlen (fname) + 2+2 + 64);
    if (!cmd)
        abort ();
    sprintf (cmd, "%s --fixed-list-mode --with-colons \"%s\"", p, fname);

    out = create_tmpfile ("gpg_keys");
    if (create_process (cmd, NULL, out))
        err = gpg_error (GPG_ERR_INTERNAL);

    free (p);
    free (cmd);

    *r_out = map_tmpfile (out);
    CloseHandle (out);
    return err;
}

char* 
generate_revoc_input (int code, const char *cmt, const char *pass)
{
    const char *fmt;
    char *p;
    size_t n;

    fmt = "Y\n"     /*  gen_revoke.okay */
          "%d\n"    /* ask_revocation_reason.code */
          "%s\n"    /* ask_revocation_reason.text */
          "%s"      /* text != NULL '\n' otherwise '' */
          "Y\n"     /* ask_revocation_reason.okay */
          "%s\n";   /* passphrase.enter. */
    n = strlen (fmt) + 32;
    if (pass)
        n += strlen (pass) + 1;
    if (cmt)
        n += strlen (cmt) + 1;
    p = (char*)calloc (1, n+1);
    if (!p)
        abort ();
    sprintf (p, fmt, code, cmt? cmt : "", cmt? "\n" : "", pass? pass : "");
    return p;
}
    

/* Generate a revocation certificate for the key with the keyid @keyid.
   @inp_data contains all needed data to answer the questions of the
   command handler. Each separate with a '\n'.
   @r_revcert contains the revocation cert on success.
   Return value: 0 on success. */
gpgme_error_t
gpg_revoke_key (const char *inp_data, const char *keyid, char **r_revcert)
{
    gpgme_error_t err = gpg_error (GPG_ERR_NO_ERROR);
    char *rcrt;
    char *cmd, *p;
    HANDLE in, out;
    
    p = read_w32_registry (HKEY_CURRENT_USER, "Software\\GNU\\GnuPG", "gpgProgram");
    if (!p)
        return gpg_error (GPG_ERR_INV_ARG);

    cmd = (char*)calloc (1, strlen (p) + 128);
    if (!cmd)
        abort ();
    sprintf (cmd, "%s --pgp7 --command-fd=0 --status-fd=2 --gen-revoke %s", p, keyid);

    in = create_in_pipe (inp_data);
    out = create_tmpfile ("gpg_revcert");
    if (create_process (cmd, in, out)) {
        *r_revcert = NULL;
        err = gpg_error (GPG_ERR_INTERNAL);
    }
    else {
        rcrt = map_tmpfile (out);
        *r_revcert = rcrt;
    }

    free (p);
    free (cmd);

    CloseHandle (in);
    CloseHandle (out);
    return err;
}
1	/* wptGPGUtil.cpp - GPG helper functions
2	* Copyright (C) 2005 g10 Code GmbH
3	*
4	* This file is part of WinPT.
5	*
6	* WinPT is free software; you can redistribute it and/or modify
7	* it under the terms of the GNU General Public License as published by
8	* the Free Software Foundation; either version 2 of the License, or
9	* (at your option) any later version.
10	*
11	* WinPT is distributed in the hope that it will be useful,
12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14	* GNU General Public License for more details.
15	*
16	* You should have received a copy of the GNU General Public License
17	* along with WinPT; if not, write to the Free Software Foundation,
18	* Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA
19	*/
20	#include <windows.h>
21	#include <sys/stat.h>
22
23	#include "gpgme.h"
24
25
26	#define NROFHEXDIGITS 2
27	/* Convert two hexadecimal digits from STR to the value they
28	represent. Returns -1 if one of the characters is not a
29	hexadecimal digit. */
30	static int
31	hextobyte (const unsigned char *str)
32	{
33	int val = 0;
34	int i;
35
36	for (i = 0; i < NROFHEXDIGITS; i++) {
37	if (str >= '0' && str <= '9')
38	val += *str - '0';
39	else if (str >= 'A' && str <= 'F')
40	val += 10 + *str - 'A';
41	else if (str >= 'a' && str <= 'f')
42	val += 10 + *str - 'a';
43	else
44	return -1;
45	if (i < NROFHEXDIGITS - 1)
46	val *= 16;
47	str++;
48	}
49	return val;
50	}
51
52	/* Decode the C formatted string @src and store the result in the
53	buffer @destp which is @len bytes long. If @len is zero, then a
54	large enough buffer is allocated with malloc and @destp is set to
55	the result. Currently, @len is only used to specify if allocation
56	is desired or not, the caller is expected to make sure that @destp
57	is large enough if @len is not zero. */
58	gpgme_error_t
59	gpg_decode_c_string (const char src, char *destp, size_t len)
60	{
61	char *dest;
62
63	/* Set up the destination buffer. */
64	if (len) {
65	if (len < strlen (src) + 1)
66	return gpg_error (GPG_ERR_TOO_SHORT);
67	dest = *destp;
68	}
69	else {
70	/* The converted string will never be larger than the original string. */
71	dest = (char*)malloc (strlen (src) + 1);
72	if (!dest)
73	return gpg_error (GPG_ERR_ENOMEM);
74	*destp = dest;
75	}
76
77	/* Convert the string. */
78	while (*src) {
79	if (*src != '\\') {
80	(dest++) = (src++);
81	continue;
82	}
83
84	switch (src[1]) {
85	#define DECODE_ONE(match,result) \
86	case match: \
87	src += 2; \
88	*(dest++) = result; \
89	break;
90
91	DECODE_ONE ('\'', '\'');
92	DECODE_ONE ('\"', '\"');
93	DECODE_ONE ('\?', '\?');
94	DECODE_ONE ('\\', '\\');
95	DECODE_ONE ('a', '\a');
96	DECODE_ONE ('b', '\b');
97	DECODE_ONE ('f', '\f');
98	DECODE_ONE ('n', '\n');
99	DECODE_ONE ('r', '\r');
100	DECODE_ONE ('t', '\t');
101	DECODE_ONE ('v', '\v');
102
103	case 'x': {
104	int val = hextobyte ((unsigned char*)&src[2]);
105	if (val == -1) {
106	/* Should not happen. */
107	(dest++) = (src++);
108	(dest++) = (src++);
109	if (*src)
110	(dest++) = (src++);
111	if (*src)
112	(dest++) = (src++);
113	}
114	else {
115	if (!val) {
116	/* A binary zero is not representable in a C
117	string. */
118	*(dest++) = '\\';
119	*(dest++) = '0';
120	}
121	else
122	((unsigned char ) dest++) = val;
123	src += 4;
124	}
125	}
126
127	default:
128	{
129	/* Should not happen. */
130	(dest++) = (src++);
131	(dest++) = (src++);
132	}
133	}
134	}
135	*(dest++) = 0;
136	return 0;
137	}
138
139	/* Replace %foo% entries with its real values.
140	Return value: expanded path or NULL on error. */
141	static char *
142	expand_path (const char *path)
143	{
144	DWORD len;
145	char *p;
146
147	len = ExpandEnvironmentStrings (path, NULL, 0);
148	if (!len)
149	return NULL;
150	len += 1;
151	p = (char*)calloc (1, len+1);
152	if (!p)
153	abort ();
154	len = ExpandEnvironmentStrings (path, p, len);
155	if (!len) {
156	free (p);
157	return NULL;
158	}
159	return p;
160	}
161
162
163	/* Read a string from the W32 registry. The directory is given
164	in @dir and the name of the value in @name, */
165	static char *
166	read_w32_registry (HKEY root_key, const char dir, const char name )
167	{
168	HKEY key_handle;
169	DWORD n1, nbytes;
170	DWORD type;
171	char *result = NULL;
172
173	if (RegOpenKeyEx (root_key, dir, 0, KEY_READ, &key_handle))
174	return NULL; /* no need for a RegClose, so return direct */
175
176	nbytes = 1;
177	if (RegQueryValueEx (key_handle, name, 0, NULL, NULL, &nbytes))
178	goto leave;
179	result = (char*)calloc (1, (n1=nbytes+1));
180	if (!result)
181	abort ();
182	if (RegQueryValueEx (key_handle, name, 0, &type, (BYTE*)result, &n1)) {
183	free (result);
184	result = NULL;
185	goto leave;
186	}
187	if (type == REG_EXPAND_SZ && strchr (result, '%')) {
188	char *p = expand_path (result);
189	free (result);
190	result = p;
191	}
192
193	leave:
194	RegCloseKey (key_handle);
195	return result;
196	}
197
198
199	/* Create a temp file based on the name of @name.
200	Return value: handle to the file in case of success. */
201	static HANDLE
202	create_tmpfile (const char *name)
203	{
204	HANDLE out;
205	SECURITY_ATTRIBUTES sattr;
206	char tmp[300];
207
208	memset (&sattr, 0, sizeof sattr);
209	sattr.bInheritHandle = TRUE;
210	sattr.lpSecurityDescriptor = NULL;
211	sattr.nLength = sizeof sattr;
212
213	GetTempPath (300 - 64, tmp);
214	strcat (tmp, name);
215	out = CreateFile (tmp, GENERIC_READ\|GENERIC_WRITE,
216	FILE_SHARE_WRITE, &sattr,
217	OPEN_ALWAYS, FILE_FLAG_DELETE_ON_CLOSE, NULL);
218	return out;
219	}
220
221
222	/* Create a pipe with a readable remote end and
223	write the data from @dat to the local end.
224	Return value: read handle on success. */
225	static HANDLE
226	create_in_pipe (const char *dat)
227	{
228	HANDLE r, w;
229	SECURITY_ATTRIBUTES sec_attr;
230	DWORD n;
231
232	memset (&sec_attr, 0, sizeof sec_attr);
233	sec_attr.bInheritHandle = TRUE;
234	sec_attr.nLength = sizeof sec_attr;
235
236	if (!CreatePipe (&r, &w, &sec_attr, 4096))
237	return NULL;
238
239	WriteFile (w, dat, strlen (dat), &n, NULL);
240	CloseHandle (w);
241
242	return r;
243	}
244
245
246	/* Map the contents of the file handle @out to
247	a buffer and return it. */
248	static char*
249	map_tmpfile (HANDLE out)
250	{
251	DWORD n;
252	char *p;
253
254	FlushFileBuffers (out);
255	SetFilePointer (out, 0, NULL, FILE_BEGIN);
256	n = GetFileSize (out, NULL);
257	p = (char*)calloc (1, n+1);
258	if (!p)
259	abort ();
260	ReadFile (out, p, n, &n, NULL);
261	p[n] = 0;
262	return p;
263	}
264
265
266	/* Create a process from the command line in @cmd.
267	If @out is != NULL, the output of the process will
268	be redirected to @out. If @in is != NULL the input
269	will be read from @in.
270	Return value: 0 on success. */
271	static int
272	create_process (const char *cmd, HANDLE in, HANDLE out)
273	{
274	STARTUPINFO si;
275	PROCESS_INFORMATION pi;
276
277	memset (&si, 0, sizeof (si));
278	si.cb = sizeof si;
279	if (in \|\| out)
280	si.dwFlags = STARTF_USESTDHANDLES;
281	if (out)
282	si.hStdOutput = out;
283	if (in)
284	si.hStdInput = in;
285	if (!CreateProcess (NULL, (char*)cmd, NULL, NULL, TRUE, 0, NULL, NULL, &si, &pi))
286	return -1;
287	WaitForSingleObject (pi.hProcess, INFINITE);
288	CloseHandle (pi.hProcess);
289	return 0;
290	}
291
292
293	/* Export a GPG secret key given by @keyid into the file @outfile.
294	Return value: 0 on success. */
295	gpgme_error_t
296	gpg_export_seckey (const char keyid, const char outfile)
297	{
298	gpgme_error_t err = gpg_error (GPG_ERR_NO_ERROR);
299	struct stat st;
300	char *p;
301	char *cmd;
302
303	p = read_w32_registry (HKEY_CURRENT_USER, "Software\\GNU\\GnuPG", "gpgProgram");
304	if (!p)
305	return gpg_error (GPG_ERR_INV_ARG);
306	cmd = (char*)calloc (1, strlen (p) + strlen (keyid) + strlen (outfile ) + 64 + 2);
307	if (!cmd)
308	abort ();
309	sprintf (cmd, "%s --yes --output \"%s\" --export-secret-key %s", p, outfile, keyid);
310	if (create_process (cmd, NULL, NULL))
311	err = gpg_error (GPG_ERR_INTERNAL);
312
313	if (stat (outfile, &st) == -1 \|\| st.st_size == 0)
314	err = gpg_error (GPG_ERR_NO_DATA);
315
316	free (p);
317	free (cmd);
318	return err;
319	}
320
321
322	/* If @export is 1, export the ownertrust data to the
323	buffer @data. Otherwise import the ownertrust data from @data.
324	Return value: 0 on success. */
325	gpgme_error_t
326	gpg_manage_ownertrust (char **data, int export)
327	{
328	gpgme_error_t err = gpg_error (GPG_ERR_NO_ERROR);
329	HANDLE out = NULL, in = NULL;
330	char *p;
331	char *cmd;
332
333	p = read_w32_registry (HKEY_CURRENT_USER, "Software\\GNU\\GnuPG", "gpgProgram");
334	if (!p)
335	return gpg_error (GPG_ERR_INV_ARG);
336
337	cmd = (char*)calloc (1, strlen (p) + 64 + 1);
338	if (!cmd)
339	abort ();
340	sprintf (cmd, "%s %s", p, export? "--export-ownertrust" : "--import-ownertrust");
341
342	if (export)
343	out = create_tmpfile ("gpg_ot_out");
344	else {
345	DWORD nw;
346	in = create_tmpfile ("gpg_ot_in");
347	WriteFile (in, data, strlen (data), &nw, NULL);
348	FlushFileBuffers (in);
349	/* XXX: need a rewind? */
350	}
351	if (create_process (cmd, in, out))
352	err = gpg_error (GPG_ERR_INTERNAL);
353
354	free (p);
355	free (cmd);
356
357	if (in)
358	CloseHandle (in);
359	if (out) {
360	*data = map_tmpfile (out);
361	CloseHandle (out);
362	}
363	return err;
364	}
365
366	/* Call gpg --rebuild-keydb-caches to speed up signature listings. */
367	gpgme_error_t
368	gpg_rebuild_cache (char **r_inf)
369	{
370	gpgme_error_t err = gpg_error (GPG_ERR_NO_ERROR);
371	HANDLE out = NULL;
372	char *p;
373	char *cmd;
374
375	p = read_w32_registry (HKEY_CURRENT_USER, "Software\\GNU\\GnuPG", "gpgProgram");
376	if (!p)
377	return gpg_error (GPG_ERR_INV_ARG);
378	cmd = (char*)calloc (1, strlen (p) + 64);
379	if (!cmd)
380	abort ();
381	sprintf (cmd, "%s --logger-fd=1 --rebuild-keydb-caches", p);
382
383	if (r_inf)
384	out = create_tmpfile ("gpg_rebuild_cache");
385
386	if (create_process (cmd, NULL, out))
387	err = gpg_error (GPG_ERR_INTERNAL);
388
389	if (r_inf)
390	*r_inf = map_tmpfile (out);
391	if (out)
392	CloseHandle (out);
393	free (p);
394	free (cmd);
395	return 0;
396	}
397
398	/* Call gpg --version to retrieve the 'about' information. */
399	gpgme_error_t
400	gpg_get_version (char **r_inf)
401	{
402	gpgme_error_t err= gpg_error (GPG_ERR_NO_ERROR);
403	HANDLE out;
404	char p, cmd;
405
406	p =read_w32_registry (HKEY_CURRENT_USER, "Software\\GNU\\GnuPG", "gpgProgram");
407	if (!p)
408	return gpg_error (GPG_ERR_INV_ARG);
409	cmd = (char*)calloc (1, strlen (p) + 32);
410	if (!cmd)
411	abort ();
412	sprintf (cmd, "%s --version", p);
413
414	out = create_tmpfile ("gpg_out");
415	if (create_process (cmd, NULL, out))
416	err = gpg_error (GPG_ERR_INTERNAL);
417
418	free (p);
419	free (cmd);
420
421	*r_inf = map_tmpfile (out);
422	CloseHandle (out);
423	return err;
424	}
425
426	/* Return the colon file output of the given file @fname in @r_out.
427	Return value: 0 on success. */
428	gpgme_error_t
429	gpg_import_key_list (const char fname, char *r_out)
430	{
431	gpgme_error_t err = gpg_error (GPG_ERR_NO_ERROR);
432	char cmd, p;
433	HANDLE out;
434
435	p = read_w32_registry (HKEY_CURRENT_USER, "Software\\GNU\\GnuPG", "gpgProgram");
436	if (!p)
437	return gpg_error (GPG_ERR_INV_ARG);
438
439	cmd = (char*)calloc (1, strlen (p) + strlen (fname) + 2+2 + 64);
440	if (!cmd)
441	abort ();
442	sprintf (cmd, "%s --fixed-list-mode --with-colons \"%s\"", p, fname);
443
444	out = create_tmpfile ("gpg_keys");
445	if (create_process (cmd, NULL, out))
446	err = gpg_error (GPG_ERR_INTERNAL);
447
448	free (p);
449	free (cmd);
450
451	*r_out = map_tmpfile (out);
452	CloseHandle (out);
453	return err;
454	}
455
456	char*
457	generate_revoc_input (int code, const char cmt, const char pass)
458	{
459	const char *fmt;
460	char *p;
461	size_t n;
462
463	fmt = "Y\n" /* gen_revoke.okay */
464	"%d\n" /* ask_revocation_reason.code */
465	"%s\n" /* ask_revocation_reason.text */
466	"%s" /* text != NULL '\n' otherwise '' */
467	"Y\n" /* ask_revocation_reason.okay */
468	"%s\n"; /* passphrase.enter. */
469	n = strlen (fmt) + 32;
470	if (pass)
471	n += strlen (pass) + 1;
472	if (cmt)
473	n += strlen (cmt) + 1;
474	p = (char*)calloc (1, n+1);
475	if (!p)
476	abort ();
477	sprintf (p, fmt, code, cmt? cmt : "", cmt? "\n" : "", pass? pass : "");
478	return p;
479	}
480
481
482	/* Generate a revocation certificate for the key with the keyid @keyid.
483	@inp_data contains all needed data to answer the questions of the
484	command handler. Each separate with a '\n'.
485	@r_revcert contains the revocation cert on success.
486	Return value: 0 on success. */
487	gpgme_error_t
488	gpg_revoke_key (const char inp_data, const char keyid, char **r_revcert)
489	{
490	gpgme_error_t err = gpg_error (GPG_ERR_NO_ERROR);
491	char *rcrt;
492	char cmd, p;
493	HANDLE in, out;
494
495	p = read_w32_registry (HKEY_CURRENT_USER, "Software\\GNU\\GnuPG", "gpgProgram");
496	if (!p)
497	return gpg_error (GPG_ERR_INV_ARG);
498
499	cmd = (char*)calloc (1, strlen (p) + 128);
500	if (!cmd)
501	abort ();
502	sprintf (cmd, "%s --pgp7 --command-fd=0 --status-fd=2 --gen-revoke %s", p, keyid);
503
504	in = create_in_pipe (inp_data);
505	out = create_tmpfile ("gpg_revcert");
506	if (create_process (cmd, in, out)) {
507	*r_revcert = NULL;
508	err = gpg_error (GPG_ERR_INTERNAL);
509	}
510	else {
511	rcrt = map_tmpfile (out);
512	*r_revcert = rcrt;
513	}
514
515	free (p);
516	free (cmd);
517
518	CloseHandle (in);
519	CloseHandle (out);
520	return err;
521	}