search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
KILL: A second time will cancel a gpgme operation.
[libpwmd.git] / src / crypto.c
blobbc87a883074fc1ea99b36e3f5dd8a214f24ebd2b
1 /*
2 Copyright (C) 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015,
3 2016
4 Ben Kibbey <bjk@luxsci.net>
5
6 This file is part of pwmd.
7
8 Pwmd is free software: you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation, either version 2 of the License, or
11 (at your option) any later version.
12
13 Pwmd is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with Pwmd. If not, see <http://www.gnu.org/licenses/>.
20 */
21 #ifdef HAVE_CONFIG_H
22 #include <config.h>
23 #endif
24
25 #include <stdio.h>
26 #include <sys/types.h>
27 #include <sys/stat.h>
28 #include <fcntl.h>
29 #include <errno.h>
30
31 #ifdef WITH_LIBACL
32 #include <sys/acl.h>
33 #endif
34
35 #include "pwmd-error.h"
36 #include "util-misc.h"
37 #include "common.h"
38 #include "rcfile.h"
39 #include "crypto.h"
40 #include "cache.h"
41 #include "mem.h"
42 #include "util-string.h"
43 #include "rcfile.h"
44
45 static int keepalive;
46
47 #define BUFSIZE 4096
48
49 #define STATUS_TIMEOUT_INIT(crypto) \
50 do { \
51 crypto->status_timeout = time (NULL); \
52 crypto->progress_rc = 0; \
53 } while (0)
54
55 #define STATUS_TIMEOUT_TEST(crypto, rc, s, line) \
56 do { \
57 time_t now = time (NULL); \
58 if (now - crypto->status_timeout >= keepalive && crypto->client_ctx) { \
59 rc = send_status (crypto->client_ctx, s, line); \
60 crypto->status_timeout = now; \
61 } \
62 } while (0)
63
64 #if 0
65 static gpgme_error_t
66 show_key_output (gpgme_key_t key)
67 {
68 gpgme_subkey_t keyp; // first is primary
69
70 for (keyp = key->subkeys; keyp; keyp = keyp->next)
71 {
72 fprintf(stderr, "keyid: %s, revoked: %i, expired: %i, disabled: %i, invalid: %i,"
73 "encrypt: %i, sign: %i, cert: %i, auth: %i, secret: %i\n",
74 keyp->keyid, keyp->revoked, keyp->expired, keyp->disabled,
75 keyp->invalid, keyp->can_encrypt, keyp->can_sign,
76 keyp->can_certify, keyp->can_authenticate, keyp->secret);
77 }
78
79 return 0;
80 }
81 #endif
82
83 static gpg_error_t
84 get_password (const char *keyfile, unsigned char **result, size_t *len)
85 {
86 struct stat st;
87 int fd;
88 unsigned char *buf = NULL;
89 gpg_error_t rc = 0;
90
91 log_write (_ ("obtaining passphrase from passphrase file"));
92 if (stat (keyfile, &st) == -1)
93 return gpg_error_from_syserror ();
94
95 fd = open (keyfile, O_RDONLY);
96 if (fd == -1)
97 return gpg_error_from_syserror ();
98
99 buf = xmalloc (st.st_size+1);
100 if (buf)
101 {
102 size_t rlen = read (fd, buf, st.st_size);
103
104 if (rlen != st.st_size)
105 rc = GPG_ERR_ASS_READ_ERROR;
106 else
107 {
108 buf[rlen] = 0;
109 if (rlen && strlen ((char *)buf) != rlen)
110 rc = GPG_ERR_INV_PASSPHRASE;
111
112 if (!rc)
113 {
114 *result = buf;
115 *len = rlen;
116 }
117 }
118 }
119 else
120 rc = GPG_ERR_ENOMEM;
121
122 close (fd);
123 if (rc)
124 xfree (buf);
125
126 return rc;
127 }
128
129 static gpgme_error_t
130 status_cb (void *data, const char *keyword, const char *args)
131 {
132 struct crypto_s *crypto = data;
133
134 // Cache pushing.
135 if (!crypto->client_ctx)
136 return 0;
137
138 if (!strcmp (keyword, "INQUIRE_MAXLEN") &&
139 (crypto->flags & CRYPTO_FLAG_KEYFILE))
140 return 0;
141
142 return assuan_write_status (crypto->client_ctx, keyword, args);
143 }
144
145 static gpgme_error_t
146 passphrase_cb (void *data, const char *hint, const char *info, int bad, int fd)
147 {
148 struct crypto_s *crypto = data;
149 unsigned char *result = NULL;
150 size_t len;
151 gpg_error_t rc = 0;
152
153 if (crypto->flags & CRYPTO_FLAG_KEYFILE)
154 rc = get_password (crypto->keyfile, &result, &len);
155 else
156 {
157 if (hint)
158 rc = assuan_write_status (crypto->client_ctx, "PASSPHRASE_HINT", hint);
159
160 if (!rc && info)
161 rc = assuan_write_status (crypto->client_ctx, "PASSPHRASE_INFO", info);
162
163 if (!rc)
164 {
165 char *keyword = "PASSPHRASE";
166
167 /* FIXME: how to handle multiple signers */
168 if (!bad && crypto->flags & CRYPTO_FLAG_PASSWD_SIGN)
169 keyword = "SIGN_PASSPHRASE";
170 else if (!bad && crypto->flags & CRYPTO_FLAG_PASSWD_NEW)
171 {
172 crypto->flags |= CRYPTO_FLAG_PASSWD_SIGN;
173 keyword = "NEW_PASSPHRASE";
174 }
175 else if (!bad && crypto->flags & CRYPTO_FLAG_PASSWD)
176 crypto->flags |= CRYPTO_FLAG_PASSWD_NEW;
177 else if (!bad && crypto->flags & CRYPTO_FLAG_NEWFILE)
178 {
179 keyword = "NEW_PASSPHRASE";
180 if (crypto->save.sigkey)
181 crypto->flags |= CRYPTO_FLAG_PASSWD_SIGN;
182 }
183
184 rc = assuan_inquire (crypto->client_ctx, keyword, &result, &len, 0);
185 }
186 }
187
188 if (!rc)
189 {
190 pthread_cleanup_push ((void *)xfree, result);
191
192 if (!len)
193 gpgme_io_writen (fd, "\n", 1);
194 else
195 {
196 int nl = result[len-1] == '\n';
197 int ret;
198
199 ret = gpgme_io_writen (fd, result, len);
200 if (!ret && !nl)
201 gpgme_io_writen (fd, "\n", 1);
202 else if (ret)
203 rc = GPG_ERR_CANCELED;
204 }
205
206 pthread_cleanup_pop (1);
207 }
208
209 return rc;
210 }
211
212 static void
213 progress_cb (void *data, const char *what, int type, int current, int total)
214 {
215 struct crypto_s *crypto = data;
216
217 crypto->progress_rc = send_status (crypto->client_ctx, STATUS_GPGME,
218 "%s %i %i %i", what, type, current, total);
219 }
220
221 gpgme_error_t
222 crypto_data_to_buf (const gpgme_data_t data, unsigned char **result,
223 size_t *rlen)
224 {
225 off_t ret = gpgme_data_seek (data, 0, SEEK_SET);
226 gpgme_error_t rc;
227 size_t total = 0, size = BUFSIZE;
228 unsigned char *buf;
229
230 if (ret == -1)
231 return gpg_error_from_syserror ();
232
233 buf = xmalloc (size);
234 if (!buf)
235 return GPG_ERR_ENOMEM;
236
237 do
238 {
239 pthread_cleanup_push ((void *)xfree, buf);
240 ret = gpgme_data_read (data, &buf[total], BUFSIZE);
241 pthread_cleanup_pop (0);
242 if (ret > 0)
243 {
244 unsigned char *p;
245
246 total += ret;
247 size += BUFSIZE;
248 p = xrealloc (buf, size * sizeof(char));
249 if (!p)
250 {
251 xfree (buf);
252 return GPG_ERR_ENOMEM;
253 }
254
255 buf = p;
256 }
257 } while (ret > 0);
258
259 if (ret == -1)
260 {
261 rc = gpgme_err_code_from_syserror ();
262 xfree (buf);
263 return rc;
264 }
265
266 *result = buf;
267 *rlen = total;
268 return 0;
269 }
270
271 static void
272 crypto_cancel_gpgme (void *data)
273 {
274 struct crypto_s *crypto = data;
275 struct client_s *client = assuan_get_pointer (crypto->client_ctx);
276 gpgme_error_t rc = 0;
277
278 if (client)
279 update_client_state (client, CLIENT_STATE_DISCON);
280
281 gpgme_cancel_async (crypto->ctx);
282 while (!gpgme_wait (crypto->ctx, &rc, 0) && !rc && client->thd->cancel < 2)
283 log_write1 (_ ("waiting for gpgme operation to finish"));
284 }
285
286 gpgme_error_t
287 crypto_list_keys (struct crypto_s *crypto, char *keys[], int secret,
288 gpgme_key_t **result)
289 {
290 gpgme_error_t rc;
291 gpgme_key_t key = NULL, *res = NULL;
292 size_t total = 0;
293
294 STATUS_TIMEOUT_INIT (crypto);
295 rc = gpgme_op_keylist_ext_start (crypto->ctx, (const char **)keys, secret, 0);
296 if (rc)
297 return rc;
298
299 pthread_cleanup_push ((void *)crypto_cancel_gpgme, crypto);
300
301 do
302 {
303 gpgme_key_t *p;
304
305 pthread_cleanup_push ((void *)crypto_free_key_list, res);
306 rc = gpgme_op_keylist_next (crypto->ctx, &key);
307 pthread_cleanup_pop (0);
308 if (rc && gpgme_err_code(rc) != GPG_ERR_EOF)
309 break;
310
311 if (rc)
312 {
313 rc = 0;
314 break;
315 }
316
317 p = xrealloc (res, (total+2) * sizeof (gpgme_key_t));
318 if (!p)
319 {
320 rc = GPG_ERR_ENOMEM;
321 break;
322 }
323
324 res = p;
325 res[total++] = key;
326 res[total] = NULL;
327 pthread_cleanup_push ((void *)crypto_free_key_list, res);
328 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_KEEPALIVE, NULL);
329 pthread_cleanup_pop (0);
330 } while (!rc);
331
332 pthread_cleanup_pop (0);
333
334 if (!rc)
335 {
336 rc = gpgme_op_keylist_end (crypto->ctx);
337 if (!rc)
338 {
339 *result = res;
340 rc = total ? 0 : secret ? GPG_ERR_NO_SECKEY : GPG_ERR_NO_PUBKEY;
341 }
342 }
343 else
344 crypto_free_key_list (res);
345
346 return rc;
347 }
348
349 void
350 crypto_free_save (struct save_s *save)
351 {
352 if (!save)
353 return;
354
355 strv_free (save->pubkey);
356 strv_free (save->sigkey);
357 memset (save, 0, sizeof (struct save_s));
358 }
359
360 static gpg_error_t
361 crypto_kill_scd ()
362 {
363 return cache_kill_scd ();
364 }
365
366 static void
367 free_gpgme_data_cb (void *data)
368 {
369 gpgme_data_t d = data;
370 char *t;
371 size_t len;
372
373 if (!data)
374 return;
375
376 t = gpgme_data_release_and_get_mem (d, &len);
377 if (t)
378 wipememory (t, 0, len);
379
380 gpgme_free (t);
381 }
382
383 void
384 crypto_free_non_keys (struct crypto_s *crypto)
385 {
386 if (!crypto)
387 return;
388
389 if (crypto->ctx)
390 gpgme_release (crypto->ctx);
391
392 crypto->ctx = NULL;
393 xfree (crypto->plaintext);
394 crypto->plaintext = NULL;
395 crypto->plaintext_size = 0;
396
397 if (crypto->cipher)
398 free_gpgme_data_cb (crypto->cipher);
399
400 crypto->cipher = NULL;
401 crypto_free_save (&crypto->save);
402 xfree (crypto->keyfile);
403 crypto->keyfile = NULL;
404 crypto->flags &= ~CRYPTO_FLAG_KEYFILE;
405 (void)crypto_kill_scd ();
406 }
407
408 void
409 crypto_free (struct crypto_s *crypto)
410 {
411 if (!crypto)
412 return;
413
414 crypto_free_non_keys (crypto);
415 strv_free (crypto->pubkey);
416 strv_free (crypto->sigkey);
417 xfree (crypto->filename);
418 xfree (crypto);
419 }
420
421 gpgme_error_t
422 crypto_init_ctx (struct crypto_s *crypto, int no_pinentry,
423 char *passphrase_file)
424 {
425 gpgme_ctx_t ctx;
426 gpgme_keylist_mode_t keylist_mode;
427 gpgme_error_t rc;
428
429 rc = gpgme_new (&ctx);
430 if (rc)
431 return rc;
432
433 rc = gpgme_set_protocol (ctx, GPGME_PROTOCOL_OPENPGP);
434 if (!rc)
435 {
436 keylist_mode = gpgme_get_keylist_mode (ctx);
437 keylist_mode |= GPGME_KEYLIST_MODE_LOCAL|GPGME_KEYLIST_MODE_WITH_SECRET;
438 rc = gpgme_set_keylist_mode (ctx, keylist_mode);
439 if (!rc)
440 {
441 if (no_pinentry || passphrase_file)
442 rc = gpgme_set_pinentry_mode (ctx, GPGME_PINENTRY_MODE_LOOPBACK);
443 else
444 rc = gpgme_set_pinentry_mode (ctx, GPGME_PINENTRY_MODE_DEFAULT);
445
446 if (!rc)
447 {
448 gpgme_set_passphrase_cb (ctx, passphrase_cb, crypto);
449 gpgme_set_progress_cb (ctx, progress_cb, crypto);
450 gpgme_set_status_cb (ctx, status_cb, crypto);
451 crypto->ctx = ctx;
452 crypto->flags = 0;
453 }
454
455 if (passphrase_file)
456 {
457 crypto->keyfile = passphrase_file;
458 crypto->flags |= CRYPTO_FLAG_KEYFILE;
459 }
460 }
461 }
462
463 if (rc)
464 gpgme_release (ctx);
465
466 return rc;
467 }
468
469 void
470 crypto_set_keepalive ()
471 {
472 keepalive = config_get_integer ("global", "keepalive_interval");
473 }
474
475 gpg_error_t
476 crypto_init (struct crypto_s **crypto, void *ctx, const char *filename,
477 int no_pinentry, char *passphrase_file)
478 {
479 struct crypto_s *new = xcalloc (1, sizeof (struct crypto_s));
480 gpgme_error_t rc;
481
482 crypto_set_keepalive ();
483
484 if (!new)
485 return GPG_ERR_ENOMEM;
486
487 rc = crypto_init_ctx (new, no_pinentry, passphrase_file);
488 if (rc)
489 goto fail;
490
491 if (filename)
492 {
493 new->filename = str_dup (filename);
494 if (!new->filename)
495 {
496 rc = GPG_ERR_ENOMEM;
497 goto fail;
498 }
499 }
500
501 new->client_ctx = ctx;
502 *crypto = new;
503 return 0;
504
505 fail:
506 crypto_free (new);
507 return rc;
508 }
509
510 /* Converts a 40 byte key id to the 16 byte form. Needed for comparison of
511 * gpgme_recipient_t.keyid. */
512 gpg_error_t
513 crypto_keyid_to_16b (char **keys)
514 {
515 char **p;
516
517 for (p = keys; p && *p; p++)
518 {
519 char *t = *p;
520 size_t len = strlen (t);
521
522 if (len < 16)
523 return GPG_ERR_INV_ARG;
524
525 memmove (&t[0], &t[len-16], 16);
526 t[16] = 0;
527 }
528
529 return 0;
530 }
531
532 gpgme_error_t
533 crypto_decrypt (struct client_s *client, struct crypto_s *crypto)
534 {
535 gpgme_data_t plain;
536 gpgme_error_t rc;
537 gpgme_data_t cipher;
538 int fd;
539 char **new_recipients = NULL;
540 char **new_signers = NULL;
541 char **pp;
542 gpgme_decrypt_result_t result;
543
544 rc = gpgme_data_new (&plain);
545 if (rc)
546 return rc;
547
548 pthread_cleanup_push ((void *)free_gpgme_data_cb, plain);
549 fd = open (crypto->filename, O_RDONLY);
550 if (fd != -1)
551 {
552 pthread_cleanup_push ((void *)close_fd_cb, &fd);
553 rc = gpgme_data_new_from_fd (&cipher, fd);
554 if (!rc)
555 {
556 pthread_cleanup_push ((void *)free_gpgme_data_cb, cipher);
557 STATUS_TIMEOUT_INIT(crypto);
558 rc = send_status (client ? client->ctx : NULL, STATUS_DECRYPT, NULL);
559 if (!rc)
560 rc = gpgme_op_decrypt_verify_start (crypto->ctx, cipher, plain);
561
562 if (!rc)
563 {
564 pthread_cleanup_push ((void *)crypto_cancel_gpgme, crypto);
565
566 do
567 {
568 if (!rc && crypto->progress_rc)
569 rc = crypto->progress_rc;
570
571 if (!rc)
572 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_DECRYPT, NULL);
573
574 if (rc)
575 break;
576 } while (!gpgme_wait (crypto->ctx, &rc, 0) && !rc);
577
578 pthread_cleanup_pop (0); // cancellation
579 }
580
581 pthread_cleanup_pop (1); // free_gpgme_data_cb (cipher)
582 }
583
584 pthread_cleanup_pop (1); // close (fd)
585 }
586 else
587 rc = gpgme_err_code_from_syserror ();
588
589 pthread_cleanup_pop (0); // free_gpgme_data_cb (plain)
590
591 if (rc)
592 {
593 free_gpgme_data_cb (plain);
594 return rc;
595 }
596
597 pthread_cleanup_push ((void *)free_gpgme_data_cb, plain);
598 result = gpgme_op_decrypt_result (crypto->ctx);
599 if (!result->unsupported_algorithm && !result->wrong_key_usage)
600 {
601 gpgme_recipient_t r;
602
603 for (r = result->recipients; r; r = r->next)
604 {
605 pthread_cleanup_push ((void *)strv_free, new_recipients);
606 log_write1 (_ ("%s: recipient: %s, status=%u"),
607 crypto->filename, r->keyid, r->status);
608 pthread_cleanup_pop (0);
609 pp = strv_cat(new_recipients, str_dup (r->keyid));
610 if (!pp)
611 {
612 rc = GPG_ERR_ENOMEM;
613 break;
614 }
615
616 new_recipients = pp;
617 }
618 }
619 else if (result->wrong_key_usage)
620 rc = GPG_ERR_WRONG_KEY_USAGE;
621 else if (result->unsupported_algorithm)
622 rc = GPG_ERR_UNSUPPORTED_ALGORITHM;
623
624 if (!rc)
625 {
626 gpgme_verify_result_t result;
627 gpgme_signature_t s;
628
629 result = gpgme_op_verify_result (crypto->ctx);
630
631 for (s = result->signatures; s; s = s->next)
632 {
633 pthread_cleanup_push ((void *)strv_free, new_signers);
634 log_write1 (_ ("%s: signer: %s, status=%u"),
635 crypto->filename, s->fpr, s->status);
636 pthread_cleanup_pop (0);
637 if (s->status || s->wrong_key_usage
638 || !(s->summary & GPGME_SIGSUM_VALID))
639 continue;
640
641 pp = strv_cat (new_signers, str_dup (s->fpr));
642 if (!pp)
643 {
644 rc = GPG_ERR_ENOMEM;
645 break;
646 }
647
648 new_signers = pp;
649 }
650
651 if (result->signatures && !new_signers)
652 rc = GPG_ERR_BAD_SIGNATURE;
653
654 if (!rc)
655 {
656 xfree (crypto->plaintext);
657 crypto->plaintext = NULL;
658 crypto->plaintext_size = 0;
659 pthread_cleanup_push ((void *)strv_free, new_recipients);
660 pthread_cleanup_push ((void *)strv_free, new_signers);
661 rc = crypto_data_to_buf (plain, &crypto->plaintext,
662 &crypto->plaintext_size);
663 pthread_cleanup_pop (0);
664 pthread_cleanup_pop (0);
665 if (!rc)
666 {
667 strv_free (crypto->pubkey);
668 crypto->pubkey = new_recipients;
669 crypto_keyid_to_16b (crypto->pubkey);
670 strv_free (crypto->sigkey);
671 crypto->sigkey = new_signers;
672 crypto_keyid_to_16b (crypto->sigkey);
673 }
674 }
675 }
676
677 if (rc)
678 {
679 strv_free (new_recipients);
680 strv_free (new_signers);
681 }
682
683 pthread_cleanup_pop (1); // free_gpgme_data_cb (plain)
684 return rc;
685 }
686
687 void
688 crypto_free_key_list (gpgme_key_t *keys)
689 {
690 int i;
691
692 for (i = 0; keys && keys[i]; i++)
693 gpgme_key_unref (keys[i]);
694
695 xfree (keys);
696 }
697
698 /* Removes strings in 'prune' from 'a'. */
699 static char **
700 prune_keys (char **a, char **prune)
701 {
702 char **p;
703
704 for (p = prune; p && *p; p++)
705 {
706 char **ap;
707
708 for (ap = a; ap && *ap; ap++)
709 {
710 if (!strcmp (*ap, *p))
711 {
712 while (*ap)
713 {
714 *ap = *(ap+1);
715 ap++;
716 }
717 }
718 }
719 }
720
721 return a;
722 }
723
724 static void
725 remove_duplicates (char **a)
726 {
727 char **p;
728
729 for (p = a; p && *p; p++)
730 {
731 char **t;
732
733 for (t = p+1; t && *t; t++)
734 {
735 if (!strcmp (*p, *t))
736 {
737 char *tmp = *t;
738
739 while (*(t+1))
740 {
741 *t = *(t+1);
742 t++;
743 }
744
745 *t = NULL;
746 xfree (tmp);
747 remove_duplicates (a);
748 return;
749 }
750 }
751 }
752 }
753
754 gpgme_error_t
755 crypto_encrypt (struct client_s *client, struct crypto_s *crypto)
756 {
757 gpgme_error_t rc;
758 gpgme_data_t cipher = NULL;
759 gpgme_key_t *keys = NULL;
760 gpgme_key_t *sigkeys = NULL;
761
762 STATUS_TIMEOUT_INIT (crypto);
763 if (!(crypto->flags & CRYPTO_FLAG_SYMMETRIC))
764 {
765 crypto_keyid_to_16b (crypto->save.pubkey);
766 remove_duplicates (crypto->save.pubkey);
767 rc = crypto_list_keys (crypto, crypto->save.pubkey, 0, &keys);
768 if (rc)
769 return rc;
770 }
771
772 pthread_cleanup_push ((void *)crypto_free_key_list, keys);
773 rc = gpgme_data_new (&cipher);
774 pthread_cleanup_push ((void *)free_gpgme_data_cb, cipher);
775 if (!rc)
776 rc = gpgme_data_set_file_name (cipher, crypto->filename);
777
778 if (!rc && (crypto->save.sigkey
779 || !(crypto->flags & CRYPTO_FLAG_SYMMETRIC)))
780 {
781 crypto_keyid_to_16b (crypto->save.sigkey);
782 remove_duplicates (crypto->save.sigkey);
783 rc = crypto_list_keys (crypto, crypto->save.sigkey, 1, &sigkeys);
784 if (gpg_err_code (rc) == GPG_ERR_NO_DATA)
785 rc = 0;
786 }
787
788 if (!rc)
789 {
790 gpgme_data_t plain = NULL;
791
792 pthread_cleanup_push ((void *)crypto_free_key_list, sigkeys);
793 rc = gpgme_data_new_from_mem (&plain, (char *)crypto->plaintext,
794 crypto->plaintext_size, 0);
795 pthread_cleanup_push ((void *)free_gpgme_data_cb, plain);
796 if (!rc)
797 {
798 int i;
799
800 gpgme_signers_clear (crypto->ctx);
801
802 for (i = 0; sigkeys && sigkeys[i]; i++)
803 gpgme_signers_add (crypto->ctx, sigkeys[i]);
804
805 if (!i && !(crypto->flags & CRYPTO_FLAG_SYMMETRIC))
806 rc = GPG_ERR_NO_SIGNATURE_SCHEME;
807 }
808
809 if (!rc)
810 {
811 gpgme_data_set_encoding (cipher, GPGME_DATA_ENCODING_ARMOR);
812
813 rc = send_status (client ? client->ctx : NULL, STATUS_ENCRYPT, NULL);
814 if (!rc)
815 {
816 unsigned flags = 0;
817 int f = config_get_boolean ("global", "encrypt_to");
818
819 if (!f)
820 flags |= GPGME_ENCRYPT_NO_ENCRYPT_TO;
821
822 f = config_get_boolean ("global", "always_trust");
823 if (f)
824 flags |= GPGME_ENCRYPT_ALWAYS_TRUST;
825
826 if (!(crypto->flags & CRYPTO_FLAG_SYMMETRIC)
827 || (crypto->flags & CRYPTO_FLAG_SYMMETRIC && sigkeys))
828 rc = gpgme_op_encrypt_sign_start (crypto->ctx,
829 (crypto->flags & CRYPTO_FLAG_SYMMETRIC) ? NULL : keys,
830 flags, plain, cipher);
831 else
832 rc = gpgme_op_encrypt_start (crypto->ctx, NULL, flags,
833 plain, cipher);
834 }
835 }
836
837 if (!rc)
838 {
839 pthread_cleanup_push ((void *)crypto_cancel_gpgme, crypto);
840
841 do
842 {
843 if (!rc && crypto->progress_rc)
844 rc = crypto->progress_rc;
845
846 if (!rc)
847 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_ENCRYPT, NULL);
848
849 if (rc)
850 break;
851 } while (!gpgme_wait (crypto->ctx, &rc, 0) && !rc);
852
853 pthread_cleanup_pop (0);
854
855 if (!rc)
856 {
857 gpgme_encrypt_result_t result;
858 gpgme_sign_result_t sresult;
859 gpgme_invalid_key_t inv;
860 gpgme_new_signature_t sigs;
861 char **prune = NULL;
862 char **p = NULL;
863
864 result = gpgme_op_encrypt_result (crypto->ctx);
865 inv = result->invalid_recipients;
866 while (inv)
867 {
868 pthread_cleanup_push ((void *)strv_free, prune);
869 log_write1 (_ ("%s: invalid recipient: %s, rc=%u"),
870 crypto->filename, inv->fpr, inv->reason);
871 pthread_cleanup_pop (0);
872 p = strv_cat (prune, str_dup(inv->fpr));
873 if (!p)
874 {
875 rc = GPG_ERR_ENOMEM;
876 strv_free (prune);
877 break;
878 }
879
880 prune = p;
881 inv = inv->next;
882 }
883
884 if (prune)
885 {
886 p = prune_keys (crypto->save.pubkey, prune);
887 crypto->save.pubkey = p;
888 }
889
890 crypto_keyid_to_16b (crypto->save.pubkey);
891 sresult = gpgme_op_sign_result (crypto->ctx);
892 inv = sresult ? sresult->invalid_signers : NULL;
893 while (!rc && inv)
894 {
895 log_write1 (_ ("%s: invalid signer: %s, rc=%u"),
896 crypto->filename, inv->fpr, inv->reason);
897 inv = inv->next;
898 }
899
900 sigs = sresult ? sresult->signatures : NULL;
901 if (!rc && sigs)
902 {
903 p = NULL;
904
905 while (sigs)
906 {
907 char **pp;
908
909 pthread_cleanup_push ((void *)strv_free, p);
910 log_write1 (_ ("%s: signer: %s"), crypto->filename,
911 sigs->fpr);
912 pthread_cleanup_pop (0);
913
914 pp = strv_cat (p, str_dup (sigs->fpr));
915 if (!pp)
916 {
917 rc = GPG_ERR_ENOMEM;
918 strv_free (p);
919 break;
920 }
921
922 p = pp;
923 sigs = sigs->next;
924 }
925
926 if (!rc)
927 {
928 strv_free (crypto->save.sigkey);
929 crypto->save.sigkey = p;
930 crypto_keyid_to_16b (crypto->save.sigkey);
931 crypto->cipher = cipher;
932 }
933 }
934 else if (!rc && crypto->flags & CRYPTO_FLAG_SYMMETRIC)
935 {
936 crypto->cipher = cipher;
937 }
938 else if (!rc)
939 {
940 if (!(crypto->flags & CRYPTO_FLAG_SYMMETRIC)
941 || (crypto->flags & CRYPTO_FLAG_SYMMETRIC && sigkeys))
942 rc = GPG_ERR_NO_SIGNATURE_SCHEME;
943 }
944 }
945 }
946
947 pthread_cleanup_pop (1); // free_gpgme_data_cb (plain)
948 pthread_cleanup_pop (1); // crypto_free_key_list (sigkeys)
949 }
950
951 pthread_cleanup_pop (0); // free_gpgme_data_cb (cipher)
952 pthread_cleanup_pop (1); // crypto_free_key_list (keys)
953
954 if (rc)
955 free_gpgme_data_cb (cipher);
956
957 return rc;
958 }
959
960 gpgme_error_t
961 crypto_passwd (struct client_s *client, struct crypto_s *crypto)
962 {
963 gpgme_error_t rc;
964 gpgme_key_t *keys = NULL;
965
966 /* Use SAVE instead for symmetric files. */
967 rc = crypto_is_symmetric (client->filename);
968 if (!rc || rc != GPG_ERR_BAD_DATA)
969 return !rc ? GPG_ERR_NOT_SUPPORTED : rc;
970
971 rc = crypto_list_keys (crypto, crypto->pubkey, 1, &keys);
972 if (rc)
973 return rc;
974
975 crypto->flags |= CRYPTO_FLAG_PASSWD;
976 pthread_cleanup_push ((void *)crypto_free_key_list, keys);
977 STATUS_TIMEOUT_INIT (crypto);
978 rc = send_status (client->ctx, STATUS_KEEPALIVE, NULL);
979 if (!rc)
980 rc = gpgme_op_passwd_start (crypto->ctx, keys[0], 0);
981
982 if (!rc)
983 {
984 pthread_cleanup_push ((void *)crypto_cancel_gpgme, crypto);
985
986 do
987 {
988 if (!rc && crypto->progress_rc)
989 rc = crypto->progress_rc;
990
991 if (!rc)
992 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_KEEPALIVE, NULL);
993
994 if (rc)
995 break;
996 } while (!gpgme_wait (crypto->ctx, &rc, 0) && !rc);
997
998 pthread_cleanup_pop (0);
999 }
1000
1001 pthread_cleanup_pop (1);
1002 return rc;
1003 }
1004
1005 /* Generate a new key pair. The resulting keyid's are stored in crypto->save.
1006 */
1007 gpgme_error_t
1008 crypto_genkey (struct client_s *client, struct crypto_s *crypto,
1009 const unsigned char *params)
1010 {
1011 gpgme_genkey_result_t result;
1012 gpgme_error_t rc;
1013
1014 if (strstr ((char *) params, "%pubring")
1015 || strstr ((char *) params, "%secring"))
1016 return GPG_ERR_INV_VALUE;
1017
1018 STATUS_TIMEOUT_INIT (crypto);
1019 rc = send_status (client ? client->ctx : NULL, STATUS_GENKEY, NULL);
1020 if (!rc)
1021 rc = gpgme_op_genkey_start (crypto->ctx, (const char *)params, NULL, NULL);
1022
1023 if (rc)
1024 return rc;
1025
1026 pthread_cleanup_push ((void *)crypto_cancel_gpgme, crypto);
1027
1028 do
1029 {
1030 if (!rc && crypto->progress_rc)
1031 rc = crypto->progress_rc;
1032
1033 if (!rc)
1034 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_GENKEY, NULL);
1035
1036 if (rc)
1037 break;
1038 } while (!gpgme_wait (crypto->ctx, &rc, 0) && !rc);
1039
1040 pthread_cleanup_pop (0);
1041
1042 if (!rc)
1043 {
1044 gpgme_key_t *keys = NULL;
1045
1046 result = gpgme_op_genkey_result (crypto->ctx);
1047 crypto->save.sigkey = strv_cat (crypto->save.sigkey,
1048 str_dup (result->fpr));
1049 crypto_keyid_to_16b (crypto->save.sigkey);
1050
1051 rc = crypto_list_keys (crypto, crypto->save.sigkey, 1, &keys);
1052 if (!rc)
1053 {
1054 gpgme_subkey_t key = keys[0]->subkeys;
1055
1056 for (; key; key = key->next)
1057 {
1058 if (key->can_encrypt)
1059 break;
1060 }
1061
1062 pthread_cleanup_push ((void *)crypto_free_key_list, keys);
1063 rc = send_status (client ? client->ctx : NULL, STATUS_GENKEY, "%s %s",
1064 crypto->save.sigkey[0], key ? key->fpr : "");
1065 if (!rc)
1066 {
1067 crypto->save.pubkey = strv_cat (crypto->save.pubkey,
1068 str_dup (key->fpr));
1069 crypto_keyid_to_16b (crypto->save.pubkey);
1070 }
1071
1072 pthread_cleanup_pop (1);
1073 }
1074 }
1075
1076 return rc;
1077 }
1078
1079 char *
1080 crypto_default_key_params ()
1081 {
1082 char *user = get_username (getuid());
1083 char *params = str_asprintf(
1084 "<GnupgKeyParms format=\"internal\">\n"
1085 " Key-Type: default\n"
1086 " Subkey-Type: default\n"
1087 " Name-Real: %s\n"
1088 " Name-Email: %s\n"
1089 " Expire-Date: 0\n"
1090 "</GnupgKeyParms>",
1091 getenv ("REALNAME") ? getenv ("REALNAME") : user,
1092 getenv ("EMAIL") ? getenv ("EMAIL") : user);
1093
1094 xfree (user);
1095 return params;
1096 }
1097
1098 #ifdef WITH_LIBACL
1099 static void
1100 acl_free_cb (void *arg)
1101 {
1102 acl_t acl = arg ? (acl_t) arg : NULL;
1103
1104 if (acl)
1105 acl_free (acl);
1106 }
1107 #endif
1108
1109 /* The advisory lock should be obtained before calling this function. */
1110 gpg_error_t
1111 crypto_write_file (struct crypto_s *crypto)
1112 {
1113 unsigned char *buf;
1114 size_t size, len;
1115 int fd;
1116 gpg_error_t rc;
1117 char tmp[PATH_MAX];
1118 struct stat st;
1119 mode_t mode = 0600;
1120 #ifdef WITH_LIBACL
1121 acl_t acl = NULL;
1122 #endif
1123
1124 if (crypto->filename)
1125 {
1126 if (lstat (crypto->filename, &st) == 0)
1127 {
1128 mode = st.st_mode & (S_IRWXU | S_IRWXG | S_IRWXO);
1129
1130 if (!(mode & S_IWUSR))
1131 return GPG_ERR_EACCES;
1132 }
1133 else if (errno != ENOENT)
1134 return gpg_error_from_errno (errno);
1135
1136 snprintf (tmp, sizeof (tmp), "%s.XXXXXX", crypto->filename);
1137 mode_t tmode = umask (0600);
1138 fd = mkstemp (tmp);
1139 if (fd == -1)
1140 {
1141 rc = gpg_error_from_errno (errno);
1142 umask (tmode);
1143 log_write ("%s: %s", tmp, pwmd_strerror (rc));
1144 return rc;
1145 }
1146
1147 umask (tmode);
1148 }
1149 else
1150 fd = STDOUT_FILENO;
1151
1152 rc = crypto_data_to_buf (crypto->cipher, &buf, &size);
1153 if (rc)
1154 {
1155 if (crypto->filename)
1156 close (fd);
1157 return rc;
1158 }
1159
1160 pthread_cleanup_push ((void *)close_fd_cb, &fd);
1161 pthread_cleanup_push ((void *)xfree, buf);
1162 len = write (fd, buf, size);
1163 pthread_cleanup_pop (1);
1164 if (len != size)
1165 rc = gpg_error_from_errno (errno);
1166
1167 if (!rc)
1168 {
1169 if (fsync (fd) != -1)
1170 {
1171 if (crypto->filename && close (fd) != -1)
1172 {
1173 #ifdef WITH_LIBACL
1174 acl = acl_get_file (crypto->filename, ACL_TYPE_ACCESS);
1175 if (!acl && errno == ENOENT)
1176 acl = acl_get_file (".", ACL_TYPE_DEFAULT);
1177 if (!acl)
1178 log_write ("ACL: %s: %s", crypto->filename,
1179 pwmd_strerror (gpg_error_from_errno (errno)));
1180 pthread_cleanup_push ((void *)acl_free_cb, acl);
1181 #endif
1182
1183 fd = -1;
1184 if (config_get_boolean (crypto->filename, "backup"))
1185 {
1186 char tmp2[PATH_MAX];
1187
1188 snprintf (tmp2, sizeof (tmp2), "%s.backup", crypto->filename);
1189 if (rename (crypto->filename, tmp2) == -1)
1190 if (errno != ENOENT)
1191 rc = gpg_error_from_errno (errno);
1192 }
1193
1194 if (!rc && rename (tmp, crypto->filename) == -1)
1195 rc = gpg_error_from_errno (errno);
1196
1197 if (!rc)
1198 chmod (crypto->filename, mode);
1199 #ifdef WITH_LIBACL
1200 if (!rc && acl && acl_set_file (crypto->filename,
1201 ACL_TYPE_ACCESS, acl))
1202 log_write ("ACL: %s: %s", crypto->filename,
1203 pwmd_strerror (gpg_error_from_errno (errno)));
1204 pthread_cleanup_pop (1);
1205 #endif
1206 }
1207 else if (crypto->filename)
1208 rc = gpg_error_from_errno (errno);
1209
1210 if (!rc && fd != -1)
1211 {
1212 char *tmp = str_asprintf ("%s/data", homedir);
1213
1214 if (tmp)
1215 {
1216 int dfd = open (tmp, O_RDONLY);
1217
1218 if (dfd != -1)
1219 {
1220 if (fsync (dfd) == -1)
1221 log_write ("%s %d: %s", __FILE__, __LINE__,
1222 pwmd_strerror (errno));
1223
1224 close (dfd);
1225 }
1226 else
1227 log_write ("%s %d: %s", __FILE__, __LINE__,
1228 pwmd_strerror (errno));
1229
1230 xfree (tmp);
1231 }
1232 }
1233 }
1234 else
1235 rc = gpg_error_from_errno (errno);
1236 }
1237
1238 pthread_cleanup_pop (0); // close (fd)
1239 if (fd != -1)
1240 close (fd);
1241 return rc;
1242 }
1243
1244 char *
1245 crypto_key_info (const gpgme_key_t key)
1246 {
1247 struct string_s *string = string_new (NULL), *s;
1248 char *line = NULL;
1249 unsigned n, u;
1250 gpgme_subkey_t subkey;
1251 gpgme_user_id_t uid;
1252
1253 if (!string)
1254 return NULL;
1255
1256 for (u = 0, uid = key->uids; uid; uid = uid->next)
1257 u++;
1258
1259 for (n = 0, subkey = key->subkeys; subkey; subkey = subkey->next)
1260 n++;
1261
1262 s = string_append_printf (string, "%u:%u:%u:%u:%u:%u:%u:%u:%u:%u:%i:%s:%s:%s:%i:%u:%u",
1263 key->revoked, key->expired, key->disabled,
1264 key->invalid, key->can_encrypt, key->can_sign,
1265 key->can_certify, key->secret,
1266 key->can_authenticate, key->is_qualified,
1267 key->protocol,
1268 key->issuer_serial ? key->issuer_serial : "",
1269 key->issuer_name ? key->issuer_name : "",
1270 key->chain_id ? key->chain_id : "",
1271 key->owner_trust, u, n);
1272 if (!s)
1273 {
1274 string_free (string, 1);
1275 return NULL;
1276 }
1277
1278 string = s;
1279 for (subkey = key->subkeys; subkey; subkey = subkey->next)
1280 {
1281 char *tmp;
1282
1283 s = string_append_printf (string, ":%u:%u:%u:%u:%u:%u:%u:%u:%u:%u:%u:%i:%u",
1284 subkey->revoked, subkey->expired,
1285 subkey->disabled, subkey->invalid,
1286 subkey->can_encrypt, subkey->can_sign,
1287 subkey->can_certify, subkey->secret,
1288 subkey->can_authenticate, subkey->is_qualified,
1289 subkey->is_cardkey, subkey->pubkey_algo,
1290 subkey->length);
1291 if (!s)
1292 {
1293 string_free (string, 1);
1294 return NULL;
1295 }
1296
1297 string = s;
1298 s = string_append_printf (string, ":%s:%s:%s:%li:%li:%s",
1299 subkey->keyid, subkey->fpr,
1300 subkey->keygrip ? subkey->keygrip : "",
1301 subkey->timestamp, subkey->expires,
1302 subkey->card_number ? subkey->card_number : "0");
1303 if (!s)
1304 {
1305 string_free (string, 1);
1306 return NULL;
1307 }
1308
1309 string = s;
1310 tmp = gnupg_escape (subkey->curve);
1311 s = string_append_printf (string, ":%s", tmp ? tmp : "");
1312 xfree (tmp);
1313 if (!s)
1314 {
1315 string_free (string, 1);
1316 return NULL;
1317 }
1318
1319 string = s;
1320 }
1321
1322 for (uid = key->uids; uid; uid = uid->next)
1323 {
1324 char *userid, *name, *email, *comment;
1325
1326 userid = gnupg_escape (uid->uid);
1327 name = gnupg_escape (uid->name);
1328 email = gnupg_escape (uid->email);
1329 comment = gnupg_escape (uid->comment);
1330 s = string_append_printf (string, ":%u:%u:%u:%s:%s:%s:%s",
1331 uid->revoked, uid->invalid, uid->validity,
1332 userid ? userid : "",
1333 name ? name : "",
1334 email ? email : "",
1335 comment ? comment : "");
1336 xfree (userid);
1337 xfree (name);
1338 xfree (email);
1339 xfree (comment);
1340 if (!s)
1341 {
1342 string_free (string, 1);
1343 return NULL;
1344 }
1345
1346 string = s;
1347 }
1348
1349 line = string->str;
1350 string_free (string, 0);
1351 return line;
1352 }
1353
1354 gpg_error_t
1355 crypto_try_decrypt (struct client_s *client, int no_pinentry)
1356 {
1357 struct crypto_s *crypto;
1358 gpg_error_t rc;
1359 char *keyfile = config_get_string (client->filename, "passphrase_file");
1360
1361 rc = crypto_init (&crypto, client->ctx, client->filename, no_pinentry,
1362 keyfile);
1363 if (!rc)
1364 {
1365 pthread_cleanup_push ((void *)crypto_free, crypto);
1366 rc = crypto_decrypt (client, crypto);
1367 pthread_cleanup_pop (1);
1368 }
1369 else
1370 xfree (keyfile);
1371
1372 return rc;
1373 }
1374
1375 /* The advisory lock should be obtained before calling this function. */
1376 gpg_error_t
1377 crypto_is_symmetric (const char *filename)
1378 {
1379 int fd;
1380 uint8_t magic[2];
1381 ssize_t len;
1382
1383 fd = open (filename, O_RDONLY);
1384 if (fd == -1)
1385 return gpg_error_from_errno (errno);
1386
1387 len = read (fd, &magic, sizeof(magic));
1388 close (fd);
1389 if (len != sizeof (magic))
1390 return GPG_ERR_INV_VALUE;
1391
1392 // Always read as big endian.
1393 if (magic[0] != 0x8c || magic[1] != 0x0d)
1394 return GPG_ERR_BAD_DATA;
1395
1396 return 0;
1397 }
An API for pwmd.