|
Packit Service |
672cf4 |
/* encrypt-sign.c - encrypt and verify functions
|
|
Packit Service |
0ef63b |
* Copyright (C) 2000 Werner Koch (dd9jn)
|
|
Packit Service |
0ef63b |
* Copyright (C) 2001, 2002, 2003, 2004 g10 Code GmbH
|
|
Packit Service |
0ef63b |
*
|
|
Packit Service |
0ef63b |
* This file is part of GPGME.
|
|
Packit Service |
0ef63b |
*
|
|
Packit Service |
0ef63b |
* GPGME is free software; you can redistribute it and/or modify it
|
|
Packit Service |
0ef63b |
* under the terms of the GNU Lesser General Public License as
|
|
Packit Service |
0ef63b |
* published by the Free Software Foundation; either version 2.1 of
|
|
Packit Service |
0ef63b |
* the License, or (at your option) any later version.
|
|
Packit Service |
0ef63b |
*
|
|
Packit Service |
0ef63b |
* GPGME is distributed in the hope that it will be useful, but
|
|
Packit Service |
0ef63b |
* WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
Packit Service |
0ef63b |
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
Packit Service |
0ef63b |
* Lesser General Public License for more details.
|
|
Packit Service |
0ef63b |
*
|
|
Packit Service |
0ef63b |
* You should have received a copy of the GNU Lesser General Public
|
|
Packit Service |
0ef63b |
* License along with this program; if not, see <https://gnu.org/licenses/>.
|
|
Packit Service |
0ef63b |
* SPDX-License-Identifier: LGPL-2.1-or-later
|
|
Packit Service |
0ef63b |
*/
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
#if HAVE_CONFIG_H
|
|
Packit Service |
672cf4 |
#include <config.h>
|
|
Packit Service |
672cf4 |
#endif
|
|
Packit Service |
672cf4 |
#include <stdlib.h>
|
|
Packit Service |
672cf4 |
#include <string.h>
|
|
Packit Service |
672cf4 |
#include <errno.h>
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
#include "gpgme.h"
|
|
Packit Service |
672cf4 |
#include "debug.h"
|
|
Packit Service |
672cf4 |
#include "context.h"
|
|
Packit Service |
672cf4 |
#include "ops.h"
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
static gpgme_error_t
|
|
Packit Service |
672cf4 |
encrypt_sign_status_handler (void *priv, gpgme_status_code_t code, char *args)
|
|
Packit Service |
672cf4 |
{
|
|
Packit Service |
672cf4 |
gpgme_error_t err;
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
err = _gpgme_progress_status_handler (priv, code, args);
|
|
Packit Service |
672cf4 |
if (!err)
|
|
Packit Service |
672cf4 |
err = _gpgme_encrypt_status_handler (priv, code, args);
|
|
Packit Service |
672cf4 |
if (!err)
|
|
Packit Service |
672cf4 |
err = _gpgme_sign_status_handler (priv, code, args);
|
|
Packit Service |
672cf4 |
return err;
|
|
Packit Service |
672cf4 |
}
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
static gpgme_error_t
|
|
Packit Service |
672cf4 |
encrypt_sym_status_handler (void *priv, gpgme_status_code_t code, char *args)
|
|
Packit Service |
672cf4 |
{
|
|
Packit Service |
672cf4 |
gpgme_error_t err;
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
err = _gpgme_progress_status_handler (priv, code, args);
|
|
Packit Service |
672cf4 |
if (!err)
|
|
Packit Service |
672cf4 |
err = _gpgme_sign_status_handler (priv, code, args);
|
|
Packit Service |
672cf4 |
if (!err)
|
|
Packit Service |
672cf4 |
err = _gpgme_passphrase_status_handler (priv, code, args);
|
|
Packit Service |
672cf4 |
return err;
|
|
Packit Service |
672cf4 |
}
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
static gpgme_error_t
|
|
Packit Service |
672cf4 |
encrypt_sign_start (gpgme_ctx_t ctx, int synchronous, gpgme_key_t recp[],
|
|
Packit Service |
0ef63b |
const char *recpstring,
|
|
Packit Service |
672cf4 |
gpgme_encrypt_flags_t flags,
|
|
Packit Service |
672cf4 |
gpgme_data_t plain, gpgme_data_t cipher)
|
|
Packit Service |
672cf4 |
{
|
|
Packit Service |
672cf4 |
gpgme_error_t err;
|
|
Packit Service |
672cf4 |
int symmetric;
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
err = _gpgme_op_reset (ctx, synchronous);
|
|
Packit Service |
672cf4 |
if (err)
|
|
Packit Service |
672cf4 |
return err;
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
0ef63b |
symmetric = (!recp && !recpstring) || (flags & GPGME_ENCRYPT_SYMMETRIC);
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
if (!plain)
|
|
Packit Service |
672cf4 |
return gpg_error (GPG_ERR_NO_DATA);
|
|
Packit Service |
672cf4 |
if (!cipher)
|
|
Packit Service |
672cf4 |
return gpg_error (GPG_ERR_INV_VALUE);
|
|
Packit Service |
672cf4 |
if (recp && !*recp)
|
|
Packit Service |
672cf4 |
return gpg_error (GPG_ERR_INV_VALUE);
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
err = _gpgme_op_encrypt_init_result (ctx);
|
|
Packit Service |
672cf4 |
if (err)
|
|
Packit Service |
672cf4 |
return err;
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
err = _gpgme_op_sign_init_result (ctx);
|
|
Packit Service |
672cf4 |
if (err)
|
|
Packit Service |
672cf4 |
return err;
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
if (ctx->passphrase_cb)
|
|
Packit Service |
672cf4 |
{
|
|
Packit Service |
672cf4 |
err = _gpgme_engine_set_command_handler
|
|
Packit Service |
0ef63b |
(ctx->engine, _gpgme_passphrase_command_handler, ctx);
|
|
Packit Service |
672cf4 |
if (err)
|
|
Packit Service |
672cf4 |
return err;
|
|
Packit Service |
672cf4 |
}
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
_gpgme_engine_set_status_handler (ctx->engine,
|
|
Packit Service |
672cf4 |
symmetric
|
|
Packit Service |
672cf4 |
? encrypt_sym_status_handler
|
|
Packit Service |
672cf4 |
: encrypt_sign_status_handler,
|
|
Packit Service |
672cf4 |
ctx);
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
0ef63b |
return _gpgme_engine_op_encrypt_sign (ctx->engine, recp, recpstring,
|
|
Packit Service |
0ef63b |
flags, plain,
|
|
Packit Service |
672cf4 |
cipher, ctx->use_armor,
|
|
Packit Service |
672cf4 |
ctx /* FIXME */);
|
|
Packit Service |
672cf4 |
}
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
0ef63b |
/* Old version of gpgme_op_encrypt_sign_ext_start w/o RECPSTRING. */
|
|
Packit Service |
672cf4 |
gpgme_error_t
|
|
Packit Service |
672cf4 |
gpgme_op_encrypt_sign_start (gpgme_ctx_t ctx, gpgme_key_t recp[],
|
|
Packit Service |
672cf4 |
gpgme_encrypt_flags_t flags,
|
|
Packit Service |
672cf4 |
gpgme_data_t plain, gpgme_data_t cipher)
|
|
Packit Service |
672cf4 |
{
|
|
Packit Service |
0ef63b |
return gpgme_op_encrypt_sign_ext_start (ctx, recp, NULL,
|
|
Packit Service |
0ef63b |
flags, plain, cipher);
|
|
Packit Service |
0ef63b |
}
|
|
Packit Service |
0ef63b |
|
|
Packit Service |
0ef63b |
|
|
Packit Service |
0ef63b |
/* Old version of gpgme_op_encrypt_sign_ext w/o RECPSTRING. */
|
|
Packit Service |
0ef63b |
gpgme_error_t
|
|
Packit Service |
0ef63b |
gpgme_op_encrypt_sign (gpgme_ctx_t ctx, gpgme_key_t recp[],
|
|
Packit Service |
0ef63b |
gpgme_encrypt_flags_t flags,
|
|
Packit Service |
0ef63b |
gpgme_data_t plain, gpgme_data_t cipher)
|
|
Packit Service |
0ef63b |
{
|
|
Packit Service |
0ef63b |
return gpgme_op_encrypt_sign_ext (ctx, recp, NULL, flags, plain, cipher);
|
|
Packit Service |
0ef63b |
}
|
|
Packit Service |
0ef63b |
|
|
Packit Service |
0ef63b |
|
|
Packit Service |
0ef63b |
/* Encrypt plaintext PLAIN within CTX for the recipients RECP and
|
|
Packit Service |
0ef63b |
* store the resulting ciphertext in CIPHER. Also sign the ciphertext
|
|
Packit Service |
0ef63b |
* with the signers in CTX. */
|
|
Packit Service |
0ef63b |
gpgme_error_t
|
|
Packit Service |
0ef63b |
gpgme_op_encrypt_sign_ext (gpgme_ctx_t ctx, gpgme_key_t recp[],
|
|
Packit Service |
0ef63b |
const char *recpstring,
|
|
Packit Service |
0ef63b |
gpgme_encrypt_flags_t flags,
|
|
Packit Service |
0ef63b |
gpgme_data_t plain, gpgme_data_t cipher)
|
|
Packit Service |
0ef63b |
{
|
|
Packit Service |
672cf4 |
gpgme_error_t err;
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
0ef63b |
TRACE_BEG (DEBUG_CTX, "gpgme_op_encrypt_sign", ctx,
|
|
Packit Service |
672cf4 |
"flags=0x%x, plain=%p, cipher=%p", flags, plain, cipher);
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
if (!ctx)
|
|
Packit Service |
672cf4 |
return TRACE_ERR (gpg_error (GPG_ERR_INV_VALUE));
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
0ef63b |
if (_gpgme_debug_trace () && (recp || recpstring))
|
|
Packit Service |
672cf4 |
{
|
|
Packit Service |
0ef63b |
if (recp)
|
|
Packit Service |
0ef63b |
{
|
|
Packit Service |
0ef63b |
int i = 0;
|
|
Packit Service |
0ef63b |
|
|
Packit Service |
0ef63b |
while (recp[i])
|
|
Packit Service |
0ef63b |
{
|
|
Packit Service |
0ef63b |
TRACE_LOG ("recipient[%i] = %p (%s)", i, recp[i],
|
|
Packit Service |
0ef63b |
(recp[i]->subkeys && recp[i]->subkeys->fpr) ?
|
|
Packit Service |
0ef63b |
recp[i]->subkeys->fpr : "invalid");
|
|
Packit Service |
0ef63b |
i++;
|
|
Packit Service |
0ef63b |
}
|
|
Packit Service |
0ef63b |
}
|
|
Packit Service |
0ef63b |
else
|
|
Packit Service |
0ef63b |
{
|
|
Packit Service |
0ef63b |
TRACE_LOG ("recipients = '%s'", recpstring);
|
|
Packit Service |
0ef63b |
}
|
|
Packit Service |
672cf4 |
}
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
0ef63b |
err = encrypt_sign_start (ctx, 1, recp, recpstring, flags, plain, cipher);
|
|
Packit Service |
0ef63b |
if (!err)
|
|
Packit Service |
0ef63b |
err = _gpgme_wait_one (ctx);
|
|
Packit Service |
0ef63b |
return TRACE_ERR (err);
|
|
Packit Service |
672cf4 |
}
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
/* Encrypt plaintext PLAIN within CTX for the recipients RECP and
|
|
Packit Service |
672cf4 |
store the resulting ciphertext in CIPHER. Also sign the ciphertext
|
|
Packit Service |
672cf4 |
with the signers in CTX. */
|
|
Packit Service |
672cf4 |
gpgme_error_t
|
|
Packit Service |
0ef63b |
gpgme_op_encrypt_sign_ext_start (gpgme_ctx_t ctx, gpgme_key_t recp[],
|
|
Packit Service |
0ef63b |
const char *recpstring,
|
|
Packit Service |
0ef63b |
gpgme_encrypt_flags_t flags,
|
|
Packit Service |
0ef63b |
gpgme_data_t plain, gpgme_data_t cipher)
|
|
Packit Service |
672cf4 |
{
|
|
Packit Service |
672cf4 |
gpgme_error_t err;
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
0ef63b |
TRACE_BEG (DEBUG_CTX, "gpgme_op_encrypt_sign_start", ctx,
|
|
Packit Service |
672cf4 |
"flags=0x%x, plain=%p, cipher=%p", flags, plain, cipher);
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
672cf4 |
if (!ctx)
|
|
Packit Service |
672cf4 |
return TRACE_ERR (gpg_error (GPG_ERR_INV_VALUE));
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
0ef63b |
if (_gpgme_debug_trace () && (recp || recpstring))
|
|
Packit Service |
672cf4 |
{
|
|
Packit Service |
0ef63b |
if (recp)
|
|
Packit Service |
0ef63b |
{
|
|
Packit Service |
0ef63b |
int i = 0;
|
|
Packit Service |
0ef63b |
|
|
Packit Service |
0ef63b |
while (recp[i])
|
|
Packit Service |
0ef63b |
{
|
|
Packit Service |
0ef63b |
TRACE_LOG ("recipient[%i] = %p (%s)", i, recp[i],
|
|
Packit Service |
0ef63b |
(recp[i]->subkeys && recp[i]->subkeys->fpr) ?
|
|
Packit Service |
0ef63b |
recp[i]->subkeys->fpr : "invalid");
|
|
Packit Service |
0ef63b |
i++;
|
|
Packit Service |
0ef63b |
}
|
|
Packit Service |
0ef63b |
}
|
|
Packit Service |
0ef63b |
else
|
|
Packit Service |
0ef63b |
{
|
|
Packit Service |
0ef63b |
TRACE_LOG ("recipients = '%s'", recpstring);
|
|
Packit Service |
0ef63b |
}
|
|
Packit Service |
672cf4 |
}
|
|
Packit Service |
672cf4 |
|
|
Packit Service |
0ef63b |
err = encrypt_sign_start (ctx, 0, recp, recpstring, flags, plain, cipher);
|
|
Packit Service |
0ef63b |
return err;
|
|
Packit Service |
672cf4 |
}
|