/[winpt]/trunk/Src/wptKeyCache.cpp
ViewVC logotype

Annotation of /trunk/Src/wptKeyCache.cpp

Parent Directory Parent Directory | Revision Log Revision Log

Revision 28 - (hide annotations)
Thu Oct 20 12:35:59 2005 UTC (19 years, 4 months ago) by twoaday
File size: 15698 byte(s) 
Minor cleanups and prepare the translation.
1 twoaday 28 /* wptKeyCache.cpp- Caching for the pub- and the secring
2     * Copyright (C) 2001-2005 Timo Schulz
3     *
4     * This file is part of MyGPGME.
5     *
6     * MyGPGME is free software; you can redistribute it and/or modify
7     * it under the terms of the GNU General Public License as published by
8     * the Free Software Foundation; either version 2 of the License, or
9     * (at your option) any later version.
10     *
11     * MyGPGME is distributed in the hope that it will be useful,
12     * but WITHOUT ANY WARRANTY; without even the implied warranty of
13     * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14     * GNU General Public License for more details.
15     *
16     * You should have received a copy of the GNU General Public License
17     * along with this program; if not, write to the Free Software
18     * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA
19     */
20     #include <windows.h>
21     #include <stdio.h>
22     #include <string.h>
23     #include <malloc.h>
24     #include <ctype.h>
25     #include <assert.h>
26    
27     #include "w32gpgme.h"
28     #include "openpgp.h"
29     #include "wptNLS.h"
30     #include "wptErrors.h"
31    
32    
33     /* convert a binary buffer into its hex representation. */
34     static void
35     buffer_to_string (char *dst, size_t dlen, const byte *buf, size_t nbytes)
36     {
37     char dig[3];
38     size_t i;
39    
40     memset (dst, 0, dlen);
41     for (i = 0; i < nbytes && dlen > 0; i++) {
42     sprintf (dig, "%02X", buf[i]);
43     strcat (dst, dig);
44     dlen -= 2;
45     }
46     }
47    
48    
49     /* Parse the secret keyring and retrieve some additional information
50     for each key which was found. */
51     static void
52     parse_secring (gpg_keycache_t cache, const char *kid, const char *secring)
53     {
54     PACKET *pkt = (PACKET*)calloc (1, sizeof *pkt);
55     PKT_secret_key *sk;
56     gpg_iobuf_t inp;
57     gpgme_error_t err;
58     gpgme_key_t key;
59     struct keycache_s *c=NULL;
60     char keyid[16+1];
61    
62     inp = gpg_iobuf_open (secring);
63     if (!inp) {
64     safe_free (pkt);
65     return;
66     }
67     gpg_iobuf_ioctl (inp, 3, 1, NULL);
68     gpg_init_packet (pkt);
69     while (gpg_parse_packet (inp, pkt) != -1) {
70     if (pkt->pkttype == PKT_SECRET_KEY) {
71     sk = pkt->pkt.secret_key;
72     /* XXX: key IDs of card public keys are wrong! */
73     _snprintf (keyid, sizeof (keyid)-1, "%08lX",
74     gpg_keyid_from_sk (sk, NULL));
75     if (kid && strcmp (kid, keyid) != 0)
76     goto next;
77     err = gpg_keycache_find_key2 (cache, keyid, 0, &key, &c);
78     if (err)
79     goto next;
80     c->gloflags.is_protected = sk->is_protected;
81     c->gloflags.divert_to_card = sk->protect.s2k.mode==1002? 1 : 0;
82     if (c->pubpart != NULL) {
83     c->pubpart->gloflags.is_protected = sk->is_protected;
84     c->pubpart->gloflags.divert_to_card = sk->protect.s2k.mode==1002? 1 : 0;
85     }
86     }
87     next:
88     gpg_free_packet (pkt);
89     gpg_init_packet (pkt);
90     }
91     safe_free (pkt);
92     gpg_iobuf_close (inp);
93     }
94    
95    
96     /* Merge the information from the keyrings into the key cache structure. */
97     gpgme_error_t
98     keycache_prepare2 (gpg_keycache_t ctx, const char *kid,
99     const char *pubring, const char *secring)
100     {
101     gpgme_error_t err;
102     gpgme_key_t key = NULL;
103     gpg_iobuf_t inp;
104     PACKET *pkt = (PACKET*)calloc (1, sizeof * pkt);
105     struct keycache_s *c;
106     const byte *sym_prefs;
107     char keyid[16+1], *id = NULL;
108     int key_seen = 0;
109     size_t nbytes = 0, nsym =0;
110    
111     if (secring) {
112     parse_secring (ctx, kid, secring);
113     if (!pubring) {
114     safe_free(pkt);
115     return 0;
116     }
117     }
118     inp = gpg_iobuf_open (pubring);
119     if (!inp) {
120     safe_free( pkt );
121     return gpg_error (GPG_ERR_KEYRING_OPEN);
122     }
123     gpg_iobuf_ioctl( inp, 3, 1, NULL ); /* disable cache */
124    
125     gpg_init_packet( pkt );
126     while (gpg_parse_packet (inp, pkt) != -1) {
127     if (pkt->pkttype == PKT_PUBLIC_KEY) {
128     strcpy (keyid, "");
129     key_seen = 1;
130     }
131    
132     if (pkt->pkttype == PKT_SIGNATURE && pkt->pkt.signature->sig_class == 0x1F) {
133     if (pkt->pkt.signature->numrevkeys == 0)
134     goto next;
135     _snprintf (keyid, sizeof keyid -1, "%08X", pkt->pkt.signature->keyid[1]);
136     if (kid && strcmp (kid, keyid) != 0)
137     goto next;
138     err = gpg_keycache_find_key2 (ctx, keyid, 0, &key, &c);
139     if (err)
140     goto next;
141     c->gloflags.has_desig_rev = 1;
142     }
143     if (pkt->pkttype == PKT_SIGNATURE && key_seen == 1 ) {
144     sym_prefs=gpg_parse_sig_subpkt (pkt->pkt.signature->hashed,
145     SIGSUBPKT_PREF_SYM, &nsym);
146     if (sym_prefs == NULL)
147     goto next;
148     _snprintf (keyid, sizeof keyid - 1, "%08X", pkt->pkt.signature->keyid[1]);
149     if (kid && strcmp (kid, keyid) != 0)
150     goto next;
151     err = gpg_keycache_find_key2 (ctx, keyid, 0, &key, &c);
152     if (err)
153     goto next;
154     else if (nsym > 0) {
155     c->sym_prefs = (unsigned char*)calloc (1, nsym+1);
156     if (!c->sym_prefs)
157     return gpg_error (GPG_ERR_ENOMEM);
158     memcpy (c->sym_prefs, sym_prefs, nsym);
159     }
160     }
161     if (pkt->pkttype == PKT_USER_ID) {
162     if (id)
163     free (id);
164     id = strdup (pkt->pkt.user_id->name);
165     if (!id) {
166     err = gpg_error (GPG_ERR_ENOMEM);
167     goto fail;
168     }
169     }
170     if ((pkt->pkttype == PKT_USER_ID || pkt->pkttype == PKT_ATTRIBUTE)
171     && pkt->pkt.user_id->attrib_data && key) {
172     PKT_user_id *id = pkt->pkt.user_id;
173     c->attrib.used = 1;
174     c->attrib.len = id->attrib_len;
175     c->attrib.d = (unsigned char*)calloc (1, id->attrib_len + 1);
176     if (!c->attrib.d) {
177     err = gpg_error (GPG_ERR_ENOMEM);
178     goto fail;
179     }
180     memcpy (c->attrib.d, id->attrib_data, id->attrib_len);
181     key = NULL;
182     c = NULL;
183     }
184     next:
185     gpg_free_packet (pkt);
186     gpg_init_packet(pkt);
187     }
188    
189     fail:
190     safe_free (id);
191     safe_free (pkt);
192     gpg_iobuf_close (inp);
193     return err;
194     }
195    
196    
197     gpgme_error_t
198     gpg_keycache_prepare (gpg_keycache_t ctx, const char *pubr, const char *secr)
199     {
200     return keycache_prepare2 (ctx, NULL, pubr, secr);
201     }
202    
203     gpgme_error_t
204     gpg_keycache_prepare_single (gpg_keycache_t ctx, const char *keyid,
205     const char *pubr, const char *secr)
206     {
207     if (!strncmp (keyid, "0x", 2))
208     keyid += 2;
209     return keycache_prepare2 (ctx, keyid, pubr, secr);
210     }
211    
212    
213     /* Create new keycache object and return it in @r_ctx.
214     Return value: 0 on success. */
215     gpgme_error_t
216     gpg_keycache_new (gpg_keycache_t *r_ctx)
217     {
218     gpg_keycache_t ctx;
219    
220     if (!r_ctx)
221     return gpg_error (GPG_ERR_INV_ARG);
222     ctx = (gpg_keycache_t)calloc (1, sizeof *ctx);
223     if (!ctx)
224     return gpg_error (GPG_ERR_ENOMEM);
225     ctx->secret = 0;
226     ctx->pos = 0;
227     *r_ctx = ctx;
228     return 0;
229     }
230    
231    
232     /* Release keycache object @ctx. */
233     void
234     gpg_keycache_release (gpg_keycache_t ctx)
235     {
236     struct keycache_s *c, *c2;
237    
238     if (!ctx)
239     return;
240    
241     for (c = ctx->item; c; c = c2) {
242     c2 = c->next;
243     gpgme_key_release (c->key);
244     c->key = NULL;
245     if (c->sym_prefs)
246     free (c->sym_prefs);
247     c->sym_prefs = NULL;
248     if (c->attrib.d)
249     free (c->attrib.d);
250     c->attrib.d = NULL;
251     if (c->card_type)
252     free (c->card_type);
253     free (c);
254     }
255     if (ctx)
256     free (ctx);
257     }
258    
259    
260     /* Set (progress) callback for the given keycache object.
261     @ctx the keycache
262     @cb the callback function
263     @cb_value1 opaque value which is passed to the callback.
264     @cb_value2 see @cb_value1. */
265     void
266     gpg_keycache_set_cb (gpg_keycache_t ctx,
267     void (*cb)(void *, const char *, int, int, int),
268     void * cb_value1, int cb_value2)
269     {
270     if (!ctx)
271     return;
272     ctx->cb = cb;
273     ctx->cb_value = cb_value1;
274     ctx->cb_value2 = cb_value2;
275     }
276    
277    
278     /* Add @key to the cache @ctx. @opaque return the key cache context as a void*.
279     Return value: 0 on success. */
280     gpgme_error_t
281     gpg_keycache_add_key (gpg_keycache_t ctx, gpgme_key_t key, void **opaque)
282     {
283     struct keycache_s * c, * n1;
284    
285     if (!ctx)
286     return gpg_error (GPG_ERR_INV_ARG);
287    
288     c = (struct keycache_s*)calloc (1, sizeof *c);
289     if (!c)
290     return gpg_error (GPG_ERR_ENOMEM);
291     c->gloflags.is_protected = 1; /*default: assume protection. */
292     c->key = key;
293     if (!ctx->item)
294     ctx->item = c;
295     else {
296     for (n1 = ctx->item; n1 && n1->next; n1 = n1->next)
297     ;
298     n1->next = c;
299     }
300     if (opaque)
301     *opaque = c;
302     return 0;
303     }
304    
305    
306    
307     #define has_keyid_len(pattern) (\
308     strlen (pattern) == 8 || strlen (pattern) == 10 || \
309     strlen (pattern) == 16 || strlen (pattern) == 18)
310    
311    
312     gpgme_error_t
313     gpg_keycache_find_key2 (gpg_keycache_t ctx, const char *pattern, int flags,
314     gpgme_key_t *r_key, struct keycache_s **r_item)
315     {
316     struct keycache_s *c;
317     gpgme_subkey_t s;
318     gpgme_user_id_t u;
319     gpgme_key_t key;
320     const char *kid;
321    
322     if (!ctx || !r_key)
323     return gpg_error (GPG_ERR_INV_ARG);
324    
325     if (strstr (pattern, "0x"))
326     pattern += 2;
327    
328     /* Sometimes a subkey has no valid fpr. As a kludge we convert v4
329     fingerprints into the 64-bit keyid. */
330     if (strlen (pattern) == 40 && isxdigit (*pattern))
331     pattern += 32;
332    
333     /* XXX: this code is very slow, revamp it and use hash tables whenever
334     it is possible. */
335     for (c = ctx->item; c; c = c->next) {
336     key = c->key;
337     assert (key->_refs >= 1);
338     for (s = key->subkeys; s; s = s->next) {
339     for (u = key->uids; u; u = u->next) {
340     if (u->name && stristr (u->name, pattern)) {
341     if (r_item)
342     *r_item = c;
343     *r_key = flags? c->pubpart->key : c->key;
344     return 0;
345     }
346     }
347     if (has_keyid_len (pattern))
348     kid = s->keyid;
349     else
350     kid = s->fpr;
351     if (kid && stristr (kid, pattern)) {
352     if (r_item)
353     *r_item = c;
354     *r_key = flags? c->pubpart->key : c->key;
355     return 0;
356     }
357     }
358     }
359     *r_key = NULL;
360     return gpg_error (GPG_ERR_INTERNAL);
361     } /* keycache_find_key */
362    
363    
364     gpgme_error_t
365     gpg_keycache_find_key (gpg_keycache_t ctx, const char *pattern,
366     int flags, gpgme_key_t *r_key)
367     {
368     return gpg_keycache_find_key2 (ctx, pattern, flags, r_key, NULL);
369     }
370    
371    
372     gpgme_error_t
373     gpg_keycache_update_key (gpg_keycache_t ctx, int is_sec,
374     void *opaque, const char *keyid)
375     {
376     struct keycache_s *c = NULL, *c_new=NULL;
377     gpgme_key_t key=NULL, fndkey=NULL;
378     gpgme_error_t err;
379     gpgme_ctx_t gctx;
380     gpg_keycache_t pub = (gpg_keycache_t)opaque;
381    
382     err = gpgme_new (&gctx);
383     if (err)
384     return err;
385     err = gpgme_get_key (gctx, keyid, &key, is_sec);
386     gpgme_release (gctx);
387     if (err)
388     return err;
389     err = gpg_keycache_find_key2 (ctx, keyid, 0, &fndkey, &c);
390     if (!err && c != NULL) {
391     log_debug ("keycache update: keyid=%s %p\r\n", keyid, pub);
392     gpgme_key_release (fndkey);
393     c->key = key;
394     c->flags = 0;
395     if (is_sec && pub != NULL &&
396     !gpg_keycache_find_key (pub, keyid, 0, &fndkey)) {
397     log_debug ("keycache update: set public part %p\r\n", fndkey);
398     c->pubpart->key = fndkey;
399     }
400     }
401     else {
402     log_debug ("keycache add: sync public part\r\n");
403     if (is_sec)
404     gpg_keycache_find_key2 (pub, keyid, 0, &fndkey, &c_new);
405     gpg_keycache_add_key (ctx, key, (void **)&c);
406     if (c != NULL && is_sec) {
407     log_debug ("keycache add: keyid=%s %p %p\r\n", keyid, c, fndkey);
408     c->pubpart = c_new;
409     if (c_new != NULL) {
410     c->pubpart->key = fndkey;
411     c->gloflags.is_protected = c_new->gloflags.is_protected;
412     c->gloflags.divert_to_card = c_new->gloflags.divert_to_card;
413     }
414     }
415     }
416     return 0;
417     }
418    
419    
420     /* Delete a key from the cache @ctx with the pattern @pattern.
421     Return value: 0 on success. */
422     gpgme_error_t
423     gpg_keycache_delete_key (gpg_keycache_t ctx, const char *pattern)
424     {
425     struct keycache_s *itm = NULL, *c;
426     gpgme_key_t key;
427     gpgme_error_t rc;
428    
429     if (!ctx)
430     return gpg_error (GPG_ERR_INV_ARG);
431     rc = gpg_keycache_find_key2 (ctx, pattern, 0, &key, &itm);
432     if (rc)
433     return rc;
434    
435     c = ctx->item;
436     if (c->next == NULL) {
437     gpgme_key_release (itm->key);
438     if (itm)
439     free (itm);
440     ctx->item = NULL;
441     }
442     else {
443     while (c && c->next != itm)
444     c = c->next;
445     c->next = c->next->next;
446     gpgme_key_release (itm->key);
447     if (itm)
448     free (itm);
449     }
450     return 0;
451     }
452    
453    
454     /* Initialize the given cache @ctx. If @pattern is NULL, the entire keyring
455     will be added to the cache. @secret is 1 if the source is the secret keyring.
456     Return value: 0 on success. */
457     gpgme_error_t
458     gpg_keycache_init (gpg_keycache_t ctx, const char *pattern, int secret)
459     {
460     gpgme_error_t err;
461     gpgme_ctx_t c;
462     gpgme_key_t key;
463     int count = 0;
464    
465     if (!ctx)
466     return gpg_error (GPG_ERR_INV_ARG);
467    
468     err = gpgme_new (&c);
469     if (err)
470     return err;
471    
472     gpgme_set_keylist_mode (c, GPGME_KEYLIST_MODE_SIGS);
473     err = gpgme_op_keylist_start (c, pattern, secret);
474     while(!err) {
475     err = gpgme_op_keylist_next (c, &key);
476     if (!err)
477     err = gpg_keycache_add_key (ctx, key, NULL);
478     if (ctx->cb)
479     ctx->cb (ctx->cb_value, _("Load GPG Keyrings..."), 0,
480     count++, ctx->cb_value2);
481     }
482     if (gpgme_err_code (err) == GPG_ERR_EOF)
483     err = gpg_error (GPG_ERR_NO_ERROR);
484     /* XXX: make sure the progress dialog is closed. */
485     gpgme_op_keylist_end (c);
486     gpgme_release (c);
487     return err;
488     }
489    
490    
491     /* XXX: kludge to see if the key is stored on a card. */
492     static int
493     key_divert_to_card (gpgme_key_t key)
494     {
495     gpgme_subkey_t k;
496     int n=0, n_alg=0, can_auth = 0;
497    
498     for (k = key->subkeys; k; k = k->next) {
499     n++;
500     if (k->pubkey_algo == GPGME_PK_RSA && k->length == 1024)
501     n_alg++;
502     if (k->can_authenticate)
503     can_auth++;
504     }
505     if (n == 3 && n_alg == 3 && can_auth == 1)
506     return 1;
507     return 0;
508     }
509    
510    
511     gpgme_error_t
512     gpg_keycache_sync (gpg_keycache_t pub, gpg_keycache_t sec)
513     {
514     struct keycache_s *c, *c_sec;
515     gpgme_key_t key;
516    
517     if (!pub || !sec)
518     return gpg_error (GPG_ERR_INV_ARG);
519    
520     for (c=sec->item; c; c=c->next) {
521     if (!gpg_keycache_find_key2 (pub, c->key->subkeys->keyid, 0, &key, &c_sec)) {
522     c_sec->gloflags.is_protected = c->gloflags.is_protected;
523     c_sec->gloflags.divert_to_card = c->gloflags.divert_to_card;
524     if (!c->gloflags.divert_to_card)
525     c->gloflags.divert_to_card = key_divert_to_card (key);
526     c->pubpart = c_sec;
527     c->pubpart->key = key;
528     }
529     }
530     return 0;
531     }
532    
533    
534     /* Rewind the given cache @ctx to the begin. */
535     void
536     gpg_keycache_rewind (gpg_keycache_t ctx)
537     {
538     if (ctx)
539     ctx->pos = 0;
540     }
541    
542    
543    
544     /* Return the number of elements in the cache @ctx. */
545     int
546     gpg_keycache_get_size (gpg_keycache_t ctx)
547     {
548     struct keycache_s *c;
549     int count = 0;
550    
551     if (!ctx)
552     return 0;
553     for (c = ctx->item; c; c = c->next)
554     count++;
555     return count;
556     }
557    
558    
559     static gpgme_error_t
560     keycache_next_key (gpg_keycache_t ctx, int flags,
561     struct keycache_s **c, gpgme_key_t *r_key)
562     {
563     if (!ctx || !r_key)
564     return gpg_error (GPG_ERR_INV_ARG);
565    
566     if (!ctx->pos)
567     ctx->tmp = ctx->item;
568    
569     if (!ctx->tmp || !ctx->tmp->key) {
570     ctx->pos = 0;
571     *r_key = NULL;
572     return gpg_error (GPG_ERR_EOF);
573     }
574    
575     *r_key = flags? ctx->tmp->pubpart->key : ctx->tmp->key;
576     *c = ctx->tmp = ctx->tmp->next;
577     ctx->pos++;
578    
579     return 0;
580     }
581    
582    
583     /* Return the next key from the cache @ctx. The key will be returned
584     in @r_key. @flags can contain additional flags.
585     Return value: 0 on success. */
586     gpgme_error_t
587     gpg_keycache_next_key (gpg_keycache_t ctx, int flags, gpgme_key_t *r_key)
588     {
589     struct keycache_s *c=NULL;
590     gpgme_error_t err = 0;
591    
592     err = keycache_next_key (ctx, flags, &c, r_key);
593     return err;
594     }
[email protected]
 ViewVC Help
Powered by ViewVC 1.1.26