search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Add open_check_file() to replace open/[fl]stat.
[pwmd.git] / src / crypto.c
blob6c3e7fc4a7749b0d5296f2fe371a424a6dd5e3c4
1 /*
2 Copyright (C) 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015,
3 2016
4 Ben Kibbey <bjk@luxsci.net>
5
6 This file is part of pwmd.
7
8 Pwmd is free software: you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation, either version 2 of the License, or
11 (at your option) any later version.
12
13 Pwmd is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with Pwmd. If not, see <http://www.gnu.org/licenses/>.
20 */
21 #ifdef HAVE_CONFIG_H
22 #include <config.h>
23 #endif
24
25 #include <stdio.h>
26 #include <sys/types.h>
27 #include <sys/stat.h>
28 #include <fcntl.h>
29 #include <errno.h>
30 #include <pthread.h>
31
32 #ifdef WITH_LIBACL
33 #include <sys/acl.h>
34 #endif
35
36 #include "pwmd-error.h"
37 #include "util-misc.h"
38 #include "common.h"
39 #include "rcfile.h"
40 #include "crypto.h"
41 #include "cache.h"
42 #include "mem.h"
43 #include "util-string.h"
44 #include "rcfile.h"
45 #include "mutex.h"
46
47 static int keepalive;
48 static pthread_mutex_t crypto_mutex = PTHREAD_MUTEX_INITIALIZER;
49
50 #define BUFSIZE 4096
51
52 #define STATUS_TIMEOUT_INIT(crypto) \
53 do { \
54 crypto->status_timeout = time (NULL); \
55 crypto->progress_rc = 0; \
56 } while (0)
57
58 #define STATUS_TIMEOUT_TEST(crypto, rc, s, line) \
59 do { \
60 time_t now = time (NULL); \
61 if (now - crypto->status_timeout >= keepalive && crypto->client_ctx) { \
62 rc = send_status (crypto->client_ctx, s, line); \
63 crypto->status_timeout = now; \
64 } \
65 } while (0)
66
67 #if 0
68 static gpgme_error_t
69 show_key_output (gpgme_key_t key)
70 {
71 gpgme_subkey_t keyp; // first is primary
72
73 for (keyp = key->subkeys; keyp; keyp = keyp->next)
74 {
75 fprintf(stderr, "keyid: %s, revoked: %i, expired: %i, disabled: %i, invalid: %i,"
76 "encrypt: %i, sign: %i, cert: %i, auth: %i, secret: %i\n",
77 keyp->keyid, keyp->revoked, keyp->expired, keyp->disabled,
78 keyp->invalid, keyp->can_encrypt, keyp->can_sign,
79 keyp->can_certify, keyp->can_authenticate, keyp->secret);
80 }
81
82 return 0;
83 }
84 #endif
85
86 static gpg_error_t
87 get_password (const char *keyfile, unsigned char **result, size_t *len)
88 {
89 struct stat st;
90 int fd;
91 unsigned char *buf = NULL;
92 gpg_error_t rc = 0;
93
94 log_write (_ ("obtaining passphrase from passphrase file"));
95 rc = open_check_file (keyfile, &fd, &st, 0);
96 if (rc)
97 return rc;
98
99 buf = xmalloc (st.st_size+1);
100 if (buf)
101 {
102 size_t rlen = read (fd, buf, st.st_size);
103
104 if (rlen != st.st_size)
105 rc = GPG_ERR_ASS_READ_ERROR;
106 else
107 {
108 buf[rlen] = 0;
109 if (rlen && strlen ((char *)buf) != rlen)
110 rc = GPG_ERR_INV_PASSPHRASE;
111
112 if (!rc)
113 {
114 *result = buf;
115 *len = rlen;
116 }
117 }
118 }
119 else
120 rc = GPG_ERR_ENOMEM;
121
122 close (fd);
123 if (rc)
124 xfree (buf);
125
126 return rc;
127 }
128
129 static gpgme_error_t
130 status_cb (void *data, const char *keyword, const char *args)
131 {
132 struct crypto_s *crypto = data;
133
134 // Cache pushing.
135 if (!crypto->client_ctx)
136 return 0;
137
138 if (!strcmp (keyword, "INQUIRE_MAXLEN") &&
139 (crypto->flags & CRYPTO_FLAG_KEYFILE))
140 return 0;
141
142 return assuan_write_status (crypto->client_ctx, keyword, args);
143 }
144
145 static gpgme_error_t
146 passphrase_cb (void *data, const char *hint, const char *info, int bad, int fd)
147 {
148 struct crypto_s *crypto = data;
149 unsigned char *result = NULL;
150 size_t len;
151 gpg_error_t rc = 0;
152
153 if (crypto->flags & CRYPTO_FLAG_KEYFILE)
154 rc = get_password (crypto->keyfile, &result, &len);
155 else
156 {
157 if (hint)
158 rc = assuan_write_status (crypto->client_ctx, "PASSPHRASE_HINT", hint);
159
160 if (!rc && info)
161 rc = assuan_write_status (crypto->client_ctx, "PASSPHRASE_INFO", info);
162
163 if (!rc)
164 {
165 const char *keyword = "PASSPHRASE";
166
167 /* FIXME: how to handle multiple signers */
168 if (!bad && crypto->flags & CRYPTO_FLAG_PASSWD_SIGN)
169 keyword = "SIGN_PASSPHRASE";
170 else if (!bad && crypto->flags & CRYPTO_FLAG_PASSWD_NEW)
171 {
172 crypto->flags |= CRYPTO_FLAG_PASSWD_SIGN;
173 keyword = "NEW_PASSPHRASE";
174 }
175 else if (!bad && crypto->flags & CRYPTO_FLAG_PASSWD)
176 crypto->flags |= CRYPTO_FLAG_PASSWD_NEW;
177 else if (!bad && crypto->flags & CRYPTO_FLAG_NEWFILE)
178 {
179 keyword = "NEW_PASSPHRASE";
180 if (crypto->save.sigkey)
181 crypto->flags |= CRYPTO_FLAG_PASSWD_SIGN;
182 }
183
184 rc = assuan_inquire (crypto->client_ctx, keyword, &result, &len, 0);
185 }
186 }
187
188 if (!rc)
189 {
190 pthread_cleanup_push ((void *)xfree, result);
191
192 if (!len)
193 gpgme_io_writen (fd, "\n", 1);
194 else
195 {
196 int nl = result[len-1] == '\n';
197 int ret;
198
199 ret = gpgme_io_writen (fd, result, len);
200 if (!ret && !nl)
201 gpgme_io_writen (fd, "\n", 1);
202 else if (ret)
203 rc = GPG_ERR_CANCELED;
204 }
205
206 pthread_cleanup_pop (1);
207 }
208
209 return rc;
210 }
211
212 static void
213 progress_cb (void *data, const char *what, int type, int current, int total)
214 {
215 struct crypto_s *crypto = data;
216
217 crypto->progress_rc = send_status (crypto->client_ctx, STATUS_GPGME,
218 "%s %i %i %i", what, type, current, total);
219 }
220
221 gpgme_error_t
222 crypto_data_to_buf (const gpgme_data_t data, unsigned char **result,
223 size_t *rlen)
224 {
225 off_t ret = gpgme_data_seek (data, 0, SEEK_SET);
226 gpgme_error_t rc;
227 size_t total = 0, size = BUFSIZE;
228 unsigned char *buf;
229
230 if (ret == -1)
231 return gpg_error_from_syserror ();
232
233 buf = xmalloc (size);
234 if (!buf)
235 return GPG_ERR_ENOMEM;
236
237 do
238 {
239 pthread_cleanup_push ((void *)xfree, buf);
240 ret = gpgme_data_read (data, &buf[total], BUFSIZE);
241 pthread_cleanup_pop (0);
242 if (ret > 0)
243 {
244 unsigned char *p;
245
246 total += ret;
247 size += BUFSIZE;
248 p = xrealloc (buf, size * sizeof(char));
249 if (!p)
250 {
251 xfree (buf);
252 return GPG_ERR_ENOMEM;
253 }
254
255 buf = p;
256 }
257 } while (ret > 0);
258
259 if (ret == -1)
260 {
261 rc = gpgme_err_code_from_syserror ();
262 xfree (buf);
263 return rc;
264 }
265
266 *result = buf;
267 *rlen = total;
268 return 0;
269 }
270
271 gpgme_error_t
272 crypto_list_keys (struct crypto_s *crypto, char *keys[], int secret,
273 gpgme_key_t **result)
274 {
275 gpgme_error_t rc;
276 gpgme_key_t key = NULL, *res = NULL;
277 size_t total = 0;
278
279 rc = gpgme_op_keylist_ext_start (crypto->ctx, (const char **)keys, secret, 0);
280 if (rc)
281 return rc;
282
283 STATUS_TIMEOUT_INIT (crypto);
284 do
285 {
286 gpgme_key_t *p;
287
288 pthread_cleanup_push ((void *)crypto_free_key_list, res);
289 rc = gpgme_op_keylist_next (crypto->ctx, &key);
290 pthread_cleanup_pop (0);
291 if (rc && gpgme_err_code(rc) != GPG_ERR_EOF)
292 break;
293
294 if (rc)
295 {
296 rc = 0;
297 break;
298 }
299
300 p = xrealloc (res, (total+2) * sizeof (gpgme_key_t));
301 if (!p)
302 {
303 rc = GPG_ERR_ENOMEM;
304 break;
305 }
306
307 res = p;
308 res[total++] = key;
309 res[total] = NULL;
310 pthread_cleanup_push ((void *)crypto_free_key_list, res);
311 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_KEEPALIVE, NULL);
312 pthread_cleanup_pop (0);
313 } while (!rc);
314
315 if (!rc)
316 {
317 rc = gpgme_op_keylist_end (crypto->ctx);
318 if (!rc)
319 {
320 *result = res;
321 rc = total ? 0 : secret ? GPG_ERR_NO_SECKEY : GPG_ERR_NO_PUBKEY;
322 }
323 }
324 else
325 crypto_free_key_list (res);
326
327 return rc;
328 }
329
330 void
331 crypto_free_save (struct save_s *save)
332 {
333 if (!save)
334 return;
335
336 strv_free (save->pubkey);
337 strv_free (save->sigkey);
338 memset (save, 0, sizeof (struct save_s));
339 }
340
341 static gpg_error_t
342 crypto_kill_scd ()
343 {
344 return cache_kill_scd ();
345 }
346
347 static void
348 free_gpgme_data_cb (void *data)
349 {
350 gpgme_data_t d = data;
351 char *t;
352 size_t len;
353
354 if (!data)
355 return;
356
357 t = gpgme_data_release_and_get_mem (d, &len);
358 if (t)
359 wipememory (t, 0, len);
360
361 gpgme_free (t);
362 }
363
364 void
365 crypto_free_non_keys (struct crypto_s *crypto)
366 {
367 if (!crypto)
368 return;
369
370 if (crypto->ctx)
371 gpgme_release (crypto->ctx);
372
373 crypto->ctx = NULL;
374 xfree (crypto->plaintext);
375 crypto->plaintext = NULL;
376 crypto->plaintext_size = 0;
377
378 if (crypto->cipher)
379 free_gpgme_data_cb (crypto->cipher);
380
381 crypto->cipher = NULL;
382 crypto_free_save (&crypto->save);
383 xfree (crypto->keyfile);
384 crypto->keyfile = NULL;
385 crypto->flags &= ~CRYPTO_FLAG_KEYFILE;
386 (void)crypto_kill_scd ();
387 }
388
389 void
390 crypto_free (struct crypto_s *crypto)
391 {
392 if (!crypto)
393 return;
394
395 crypto_free_non_keys (crypto);
396 strv_free (crypto->pubkey);
397 strv_free (crypto->sigkey);
398 xfree (crypto->filename);
399 xfree (crypto);
400 }
401
402 gpgme_error_t
403 crypto_init_ctx (struct crypto_s *crypto, int no_pinentry,
404 char *passphrase_file)
405 {
406 gpgme_ctx_t ctx;
407 gpgme_keylist_mode_t keylist_mode;
408 gpgme_error_t rc;
409
410 rc = gpgme_new (&ctx);
411 if (rc)
412 return rc;
413
414 rc = gpgme_set_protocol (ctx, GPGME_PROTOCOL_OPENPGP);
415 if (!rc)
416 {
417 keylist_mode = gpgme_get_keylist_mode (ctx);
418 keylist_mode |= GPGME_KEYLIST_MODE_LOCAL|GPGME_KEYLIST_MODE_WITH_SECRET;
419 rc = gpgme_set_keylist_mode (ctx, keylist_mode);
420 if (!rc)
421 {
422 if (no_pinentry || passphrase_file)
423 rc = gpgme_set_pinentry_mode (ctx, GPGME_PINENTRY_MODE_LOOPBACK);
424 else
425 rc = gpgme_set_pinentry_mode (ctx, GPGME_PINENTRY_MODE_DEFAULT);
426
427 if (!rc)
428 {
429 gpgme_set_passphrase_cb (ctx, passphrase_cb, crypto);
430 gpgme_set_progress_cb (ctx, progress_cb, crypto);
431 gpgme_set_status_cb (ctx, status_cb, crypto);
432 crypto->ctx = ctx;
433 crypto->flags = 0;
434 }
435
436 if (passphrase_file)
437 {
438 crypto->keyfile = passphrase_file;
439 crypto->flags |= CRYPTO_FLAG_KEYFILE;
440 }
441 }
442 }
443
444 if (rc)
445 gpgme_release (ctx);
446
447 return rc;
448 }
449
450 void
451 crypto_set_keepalive ()
452 {
453 keepalive = config_get_integer ("global", "keepalive_interval");
454 }
455
456 gpg_error_t
457 crypto_init (struct crypto_s **crypto, void *ctx, const char *filename,
458 int no_pinentry, char *passphrase_file)
459 {
460 struct crypto_s *new = xcalloc (1, sizeof (struct crypto_s));
461 gpgme_error_t rc;
462
463 crypto_set_keepalive ();
464
465 if (!new)
466 return GPG_ERR_ENOMEM;
467
468 rc = crypto_init_ctx (new, no_pinentry, passphrase_file);
469 if (rc)
470 goto fail;
471
472 if (filename)
473 {
474 new->filename = str_dup (filename);
475 if (!new->filename)
476 {
477 rc = GPG_ERR_ENOMEM;
478 goto fail;
479 }
480 }
481
482 new->client_ctx = ctx;
483 *crypto = new;
484 return 0;
485
486 fail:
487 crypto_free (new);
488 return rc;
489 }
490
491 /* Converts a 40 byte key id to the 16 byte form. Needed for comparison of
492 * gpgme_recipient_t.keyid. */
493 gpg_error_t
494 crypto_keyid_to_16b (char **keys)
495 {
496 char **p;
497
498 for (p = keys; p && *p; p++)
499 {
500 char *t = *p;
501 size_t len = strlen (t);
502
503 if (len < 16)
504 return GPG_ERR_INV_ARG;
505
506 memmove (&t[0], &t[len-16], 16);
507 t[16] = 0;
508 }
509
510 return 0;
511 }
512
513 gpgme_error_t
514 crypto_decrypt (struct client_s *client, struct crypto_s *crypto)
515 {
516 gpgme_data_t plain;
517 gpgme_error_t rc;
518 gpgme_data_t cipher;
519 int fd;
520 struct stat st;
521 char **new_recipients = NULL;
522 char **new_signers = NULL;
523 char **pp;
524 gpgme_decrypt_result_t result;
525
526 rc = gpgme_data_new (&plain);
527 if (rc)
528 return rc;
529
530 pthread_cleanup_push ((void *)free_gpgme_data_cb, plain);
531 rc = open_check_file (crypto->filename, &fd, &st, 1);
532 if (!rc)
533 {
534 pthread_cleanup_push ((void *)close_fd_cb, &fd);
535 rc = gpgme_data_new_from_fd (&cipher, fd);
536 if (!rc)
537 {
538 pthread_cleanup_push ((void *)free_gpgme_data_cb, cipher);
539 rc = send_status (client ? client->ctx : NULL, STATUS_DECRYPT, NULL);
540 if (!rc)
541 {
542 MUTEX_TRYLOCK (client->ctx, &crypto_mutex, rc,
543 client->lock_timeout);
544 if (!rc)
545 {
546 pthread_cleanup_push (release_mutex_cb, &crypto_mutex);
547 rc = gpgme_op_decrypt_verify_start (crypto->ctx, cipher, plain);
548 if (!rc)
549 {
550 STATUS_TIMEOUT_INIT(crypto);
551 do
552 {
553 if (!rc && crypto->progress_rc)
554 rc = crypto->progress_rc;
555 if (!rc)
556 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_DECRYPT, NULL);
557 TEST_CANCEL ();
558 } while (!rc && !gpgme_wait (crypto->ctx, &rc, 0) && !rc);
559 }
560 pthread_cleanup_pop (1); // release_mutex_cb
561 }
562 }
563 pthread_cleanup_pop (1); // free_gpgme_data_cb (cipher)
564 }
565
566 pthread_cleanup_pop (1); // close (fd)
567 }
568
569 pthread_cleanup_pop (0); // free_gpgme_data_cb (plain)
570
571 if (rc)
572 {
573 free_gpgme_data_cb (plain);
574 return rc;
575 }
576
577 pthread_cleanup_push ((void *)free_gpgme_data_cb, plain);
578 result = gpgme_op_decrypt_result (crypto->ctx);
579 if (!result->unsupported_algorithm && !result->wrong_key_usage)
580 {
581 gpgme_recipient_t r;
582
583 for (r = result->recipients; r; r = r->next)
584 {
585 pthread_cleanup_push ((void *)strv_free, new_recipients);
586 log_write1 (_ ("%s: recipient: %s, status=%u"),
587 crypto->filename, r->keyid, r->status);
588 pthread_cleanup_pop (0);
589 pp = strv_cat(new_recipients, str_dup (r->keyid));
590 if (!pp)
591 {
592 rc = GPG_ERR_ENOMEM;
593 break;
594 }
595
596 new_recipients = pp;
597 }
598 }
599 else if (result->wrong_key_usage)
600 rc = GPG_ERR_WRONG_KEY_USAGE;
601 else if (result->unsupported_algorithm)
602 rc = GPG_ERR_UNSUPPORTED_ALGORITHM;
603
604 if (!rc)
605 {
606 gpgme_verify_result_t verify;
607 gpgme_signature_t s;
608
609 verify = gpgme_op_verify_result (crypto->ctx);
610
611 for (s = verify->signatures; s; s = s->next)
612 {
613 pthread_cleanup_push ((void *)strv_free, new_signers);
614 log_write1 (_ ("%s: signer: %s, status=%u"),
615 crypto->filename, s->fpr, s->status);
616 pthread_cleanup_pop (0);
617 if (s->status || s->wrong_key_usage
618 || !(s->summary & GPGME_SIGSUM_VALID))
619 continue;
620
621 pp = strv_cat (new_signers, str_dup (s->fpr));
622 if (!pp)
623 {
624 rc = GPG_ERR_ENOMEM;
625 break;
626 }
627
628 new_signers = pp;
629 }
630
631 if (verify->signatures && !new_signers)
632 rc = GPG_ERR_BAD_SIGNATURE;
633
634 if (!rc)
635 {
636 xfree (crypto->plaintext);
637 crypto->plaintext = NULL;
638 crypto->plaintext_size = 0;
639 pthread_cleanup_push ((void *)strv_free, new_recipients);
640 pthread_cleanup_push ((void *)strv_free, new_signers);
641 rc = crypto_data_to_buf (plain, &crypto->plaintext,
642 &crypto->plaintext_size);
643 pthread_cleanup_pop (0);
644 pthread_cleanup_pop (0);
645 if (!rc)
646 {
647 strv_free (crypto->pubkey);
648 crypto->pubkey = new_recipients;
649 crypto_keyid_to_16b (crypto->pubkey);
650 strv_free (crypto->sigkey);
651 crypto->sigkey = new_signers;
652 crypto_keyid_to_16b (crypto->sigkey);
653 }
654 }
655 }
656
657 if (rc)
658 {
659 strv_free (new_recipients);
660 strv_free (new_signers);
661 }
662
663 pthread_cleanup_pop (1); // free_gpgme_data_cb (plain)
664 return rc;
665 }
666
667 void
668 crypto_free_key_list (gpgme_key_t *keys)
669 {
670 int i;
671
672 for (i = 0; keys && keys[i]; i++)
673 gpgme_key_unref (keys[i]);
674
675 xfree (keys);
676 }
677
678 /* Removes strings in 'prune' from 'a'. */
679 static char **
680 prune_keys (char **a, char **prune)
681 {
682 char **p;
683
684 for (p = prune; p && *p; p++)
685 {
686 char **ap;
687
688 for (ap = a; ap && *ap; ap++)
689 {
690 if (!strcmp (*ap, *p))
691 {
692 while (*ap)
693 {
694 *ap = *(ap+1);
695 ap++;
696 }
697 }
698 }
699 }
700
701 return a;
702 }
703
704 static void
705 remove_duplicates (char **a)
706 {
707 char **p;
708
709 for (p = a; p && *p; p++)
710 {
711 char **t;
712
713 for (t = p+1; t && *t; t++)
714 {
715 if (!strcmp (*p, *t))
716 {
717 char *tmp = *t;
718
719 while (*(t+1))
720 {
721 *t = *(t+1);
722 t++;
723 }
724
725 *t = NULL;
726 xfree (tmp);
727 remove_duplicates (a);
728 return;
729 }
730 }
731 }
732 }
733
734 gpgme_error_t
735 crypto_encrypt (struct client_s *client, struct crypto_s *crypto)
736 {
737 gpgme_error_t rc;
738 gpgme_data_t cipher = NULL;
739 gpgme_key_t *keys = NULL;
740 gpgme_key_t *sigkeys = NULL;
741 unsigned flags = 0;
742 int sign = 0;
743
744 if (!(crypto->flags & CRYPTO_FLAG_SYMMETRIC))
745 {
746 crypto_keyid_to_16b (crypto->save.pubkey);
747 remove_duplicates (crypto->save.pubkey);
748 rc = crypto_list_keys (crypto, crypto->save.pubkey, 0, &keys);
749 if (rc)
750 return rc;
751 }
752
753 pthread_cleanup_push ((void *)crypto_free_key_list, keys);
754 rc = gpgme_data_new (&cipher);
755 pthread_cleanup_push ((void *)free_gpgme_data_cb, cipher);
756 if (!rc)
757 rc = gpgme_data_set_file_name (cipher, crypto->filename);
758
759 if (!rc && (crypto->save.sigkey
760 || !(crypto->flags & CRYPTO_FLAG_SYMMETRIC)))
761 {
762 crypto_keyid_to_16b (crypto->save.sigkey);
763 remove_duplicates (crypto->save.sigkey);
764 rc = crypto_list_keys (crypto, crypto->save.sigkey, 1, &sigkeys);
765 if (gpg_err_code (rc) == GPG_ERR_NO_DATA)
766 rc = 0;
767 }
768
769 if (!rc)
770 {
771 gpgme_data_t plain = NULL;
772
773 pthread_cleanup_push ((void *)crypto_free_key_list, sigkeys);
774 rc = gpgme_data_new_from_mem (&plain, (char *)crypto->plaintext,
775 crypto->plaintext_size, 0);
776 pthread_cleanup_push ((void *)free_gpgme_data_cb, plain);
777 if (!rc)
778 {
779 int i;
780
781 gpgme_signers_clear (crypto->ctx);
782
783 for (i = 0; sigkeys && sigkeys[i]; i++)
784 gpgme_signers_add (crypto->ctx, sigkeys[i]);
785
786 if (!i && !(crypto->flags & CRYPTO_FLAG_SYMMETRIC))
787 rc = GPG_ERR_NO_SIGNATURE_SCHEME;
788 }
789
790 if (!rc)
791 {
792 gpgme_data_set_encoding (cipher, GPGME_DATA_ENCODING_ARMOR);
793 rc = send_status (client ? client->ctx : NULL, STATUS_ENCRYPT, NULL);
794 }
795
796 if (!rc)
797 {
798 int f = config_get_boolean ("global", "encrypt_to");
799
800 if (!f)
801 flags |= GPGME_ENCRYPT_NO_ENCRYPT_TO;
802
803 f = config_get_boolean ("global", "always_trust");
804 if (f)
805 flags |= GPGME_ENCRYPT_ALWAYS_TRUST;
806
807 if (!(crypto->flags & CRYPTO_FLAG_SYMMETRIC)
808 || (crypto->flags & CRYPTO_FLAG_SYMMETRIC && sigkeys))
809 sign = 1;
810 }
811
812 if (!rc)
813 MUTEX_TRYLOCK (client->ctx, &crypto_mutex, rc, client->lock_timeout);
814
815 if (!rc)
816 {
817 pthread_cleanup_push (release_mutex_cb, &crypto_mutex);
818 if (sign)
819 rc = gpgme_op_encrypt_sign_start (crypto->ctx, keys, flags, plain,
820 cipher);
821 else
822 rc = gpgme_op_encrypt_start (crypto->ctx, NULL, flags, plain,
823 cipher);
824 if (!rc)
825 {
826 STATUS_TIMEOUT_INIT (crypto);
827 do
828 {
829 if (!rc && crypto->progress_rc)
830 rc = crypto->progress_rc;
831 if (!rc)
832 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_ENCRYPT, NULL);
833 TEST_CANCEL();
834 } while (!rc && !gpgme_wait (crypto->ctx, &rc, 0) && !rc);
835 }
836 pthread_cleanup_pop (1);
837
838 if (!rc)
839 {
840 gpgme_encrypt_result_t result;
841 gpgme_sign_result_t sresult;
842 gpgme_invalid_key_t inv;
843 gpgme_new_signature_t sigs;
844 char **prune = NULL;
845 char **p = NULL;
846
847 result = gpgme_op_encrypt_result (crypto->ctx);
848 inv = result->invalid_recipients;
849 while (inv)
850 {
851 pthread_cleanup_push ((void *)strv_free, prune);
852 log_write1 (_ ("%s: invalid recipient: %s, rc=%u"),
853 crypto->filename, inv->fpr, inv->reason);
854 pthread_cleanup_pop (0);
855 p = strv_cat (prune, str_dup(inv->fpr));
856 if (!p)
857 {
858 rc = GPG_ERR_ENOMEM;
859 strv_free (prune);
860 break;
861 }
862
863 prune = p;
864 inv = inv->next;
865 }
866
867 if (prune)
868 {
869 p = prune_keys (crypto->save.pubkey, prune);
870 crypto->save.pubkey = p;
871 strv_free (prune);
872 }
873
874 crypto_keyid_to_16b (crypto->save.pubkey);
875 sresult = gpgme_op_sign_result (crypto->ctx);
876 inv = sresult ? sresult->invalid_signers : NULL;
877 while (!rc && inv)
878 {
879 log_write1 (_ ("%s: invalid signer: %s, rc=%u"),
880 crypto->filename, inv->fpr, inv->reason);
881 inv = inv->next;
882 }
883
884 sigs = sresult ? sresult->signatures : NULL;
885 if (!rc && sigs)
886 {
887 p = NULL;
888
889 while (sigs)
890 {
891 char **pp;
892
893 pthread_cleanup_push ((void *)strv_free, p);
894 log_write1 (_ ("%s: signer: %s"), crypto->filename,
895 sigs->fpr);
896 pthread_cleanup_pop (0);
897
898 pp = strv_cat (p, str_dup (sigs->fpr));
899 if (!pp)
900 {
901 rc = GPG_ERR_ENOMEM;
902 strv_free (p);
903 break;
904 }
905
906 p = pp;
907 sigs = sigs->next;
908 }
909
910 if (!rc)
911 {
912 strv_free (crypto->save.sigkey);
913 crypto->save.sigkey = p;
914 crypto_keyid_to_16b (crypto->save.sigkey);
915 crypto->cipher = cipher;
916 }
917 }
918 else if (!rc && crypto->flags & CRYPTO_FLAG_SYMMETRIC)
919 {
920 crypto->cipher = cipher;
921 }
922 else if (!rc)
923 {
924 if (!(crypto->flags & CRYPTO_FLAG_SYMMETRIC)
925 || (crypto->flags & CRYPTO_FLAG_SYMMETRIC && sigkeys))
926 rc = GPG_ERR_NO_SIGNATURE_SCHEME;
927 }
928 }
929 }
930
931 pthread_cleanup_pop (1); // free_gpgme_data_cb (plain)
932 pthread_cleanup_pop (1); // crypto_free_key_list (sigkeys)
933 }
934
935 pthread_cleanup_pop (0); // free_gpgme_data_cb (cipher)
936 pthread_cleanup_pop (1); // crypto_free_key_list (keys)
937
938 if (rc)
939 free_gpgme_data_cb (cipher);
940
941 return rc;
942 }
943
944 gpgme_error_t
945 crypto_passwd (struct client_s *client, struct crypto_s *crypto)
946 {
947 gpgme_error_t rc;
948 gpgme_key_t *keys = NULL;
949
950 /* Use SAVE instead for symmetric files. */
951 rc = crypto_is_symmetric (client->filename);
952 if (!rc || rc != GPG_ERR_BAD_DATA)
953 return !rc ? GPG_ERR_NOT_SUPPORTED : rc;
954
955 rc = crypto_list_keys (crypto, crypto->pubkey, 1, &keys);
956 if (rc)
957 return rc;
958
959 crypto->flags |= CRYPTO_FLAG_PASSWD;
960 pthread_cleanup_push ((void *)crypto_free_key_list, keys);
961 rc = send_status (client->ctx, STATUS_KEEPALIVE, NULL);
962 if (!rc)
963 MUTEX_TRYLOCK (client->ctx, &crypto_mutex, rc, client->lock_timeout);
964
965 if (!rc)
966 {
967 pthread_cleanup_push (release_mutex_cb, &crypto_mutex);
968 rc = gpgme_op_passwd_start (crypto->ctx, keys[0], 0);
969 if (!rc)
970 {
971 STATUS_TIMEOUT_INIT (crypto);
972 do
973 {
974 if (!rc && crypto->progress_rc)
975 rc = crypto->progress_rc;
976 if (!rc)
977 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_KEEPALIVE, NULL);
978 TEST_CANCEL();
979 } while (!rc && !gpgme_wait (crypto->ctx, &rc, 0) && !rc);
980 }
981 pthread_cleanup_pop (1);
982 }
983
984 pthread_cleanup_pop (1);
985 return rc;
986 }
987
988 /* Generate a new key pair. The resulting keyid's are stored in crypto->save.
989 */
990 gpgme_error_t
991 crypto_genkey (struct client_s *client, struct crypto_s *crypto,
992 const unsigned char *params)
993 {
994 gpgme_error_t rc;
995
996 if (strstr ((char *) params, "%pubring")
997 || strstr ((char *) params, "%secring"))
998 return GPG_ERR_INV_VALUE;
999
1000 rc = send_status (client ? client->ctx : NULL, STATUS_GENKEY, NULL);
1001 if (!rc)
1002 MUTEX_TRYLOCK (client->ctx, &crypto_mutex, rc, client->lock_timeout);
1003
1004 if (!rc)
1005 {
1006 pthread_cleanup_push (release_mutex_cb, &crypto_mutex);
1007 rc = gpgme_op_genkey_start (crypto->ctx, (const char *)params, NULL, NULL);
1008 if (!rc)
1009 {
1010 STATUS_TIMEOUT_INIT (crypto);
1011 do
1012 {
1013 if (!rc && crypto->progress_rc)
1014 rc = crypto->progress_rc;
1015 if (!rc)
1016 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_GENKEY, NULL);
1017 TEST_CANCEL();
1018 } while (!rc && !gpgme_wait (crypto->ctx, &rc, 0) && !rc);
1019 }
1020 pthread_cleanup_pop (1);
1021 }
1022
1023 if (!rc)
1024 {
1025 gpgme_key_t *keys = NULL;
1026 char *p;
1027 char **pp;
1028 gpgme_genkey_result_t result;
1029
1030 result = gpgme_op_genkey_result (crypto->ctx);
1031 p = str_dup (result->fpr);
1032 if (p)
1033 {
1034 pp = strv_cat (crypto->save.sigkey, p);
1035 if (pp)
1036 {
1037 crypto->save.sigkey = pp;
1038 crypto_keyid_to_16b (crypto->save.sigkey);
1039 }
1040 else
1041 {
1042 xfree (p);
1043 rc = GPG_ERR_ENOMEM;
1044 }
1045 }
1046 else
1047 rc = GPG_ERR_ENOMEM;
1048
1049 if (!rc)
1050 rc = crypto_list_keys (crypto, crypto->save.sigkey, 1, &keys);
1051
1052 if (!rc)
1053 {
1054 gpgme_subkey_t key = keys[0]->subkeys;
1055
1056 for (; key; key = key->next)
1057 {
1058 if (key->can_encrypt)
1059 break;
1060 }
1061
1062 pthread_cleanup_push ((void *)crypto_free_key_list, keys);
1063 rc = send_status (client ? client->ctx : NULL, STATUS_GENKEY, "%s %s",
1064 crypto->save.sigkey[0], key ? key->fpr : "");
1065 if (!rc)
1066 {
1067 crypto->save.pubkey = strv_cat (crypto->save.pubkey,
1068 str_dup (key->fpr));
1069 crypto_keyid_to_16b (crypto->save.pubkey);
1070 }
1071
1072 pthread_cleanup_pop (1);
1073 }
1074 }
1075
1076 return rc;
1077 }
1078
1079 char *
1080 crypto_default_key_params ()
1081 {
1082 char *user = get_username (getuid());
1083 char *params = str_asprintf(
1084 "<GnupgKeyParms format=\"internal\">\n"
1085 " Key-Type: default\n"
1086 " Subkey-Type: default\n"
1087 " Name-Real: %s\n"
1088 " Name-Email: %s\n"
1089 " Expire-Date: 0\n"
1090 "</GnupgKeyParms>",
1091 getenv ("REALNAME") ? getenv ("REALNAME") : user,
1092 getenv ("EMAIL") ? getenv ("EMAIL") : user);
1093
1094 xfree (user);
1095 return params;
1096 }
1097
1098 #ifdef WITH_LIBACL
1099 static void
1100 acl_free_cb (void *arg)
1101 {
1102 acl_t acl = arg ? (acl_t) arg : NULL;
1103
1104 if (acl)
1105 acl_free (acl);
1106 }
1107 #endif
1108
1109 /* The advisory lock should be obtained before calling this function. */
1110 gpg_error_t
1111 crypto_write_file (struct crypto_s *crypto)
1112 {
1113 unsigned char *buf;
1114 size_t size, len;
1115 int fd;
1116 gpg_error_t rc;
1117 char tmp[PATH_MAX];
1118 struct stat st;
1119 mode_t mode = 0600;
1120 #ifdef WITH_LIBACL
1121 acl_t acl = NULL;
1122 #endif
1123
1124 if (crypto->filename)
1125 {
1126 if (lstat (crypto->filename, &st) == 0)
1127 {
1128 mode = st.st_mode & (S_IRWXU | S_IRWXG | S_IRWXO);
1129
1130 if (!(mode & S_IWUSR))
1131 return GPG_ERR_EACCES;
1132 }
1133 else if (errno != ENOENT)
1134 return gpg_error_from_errno (errno);
1135
1136 snprintf (tmp, sizeof (tmp), "%s.XXXXXX", crypto->filename);
1137 mode_t tmode = umask (0600);
1138 fd = mkstemp (tmp);
1139 if (fd == -1)
1140 {
1141 rc = gpg_error_from_errno (errno);
1142 umask (tmode);
1143 log_write ("%s: %s", tmp, pwmd_strerror (rc));
1144 return rc;
1145 }
1146
1147 umask (tmode);
1148 }
1149 else
1150 fd = STDOUT_FILENO;
1151
1152 rc = crypto_data_to_buf (crypto->cipher, &buf, &size);
1153 if (rc)
1154 {
1155 if (crypto->filename)
1156 close (fd);
1157 return rc;
1158 }
1159
1160 pthread_cleanup_push ((void *)close_fd_cb, &fd);
1161 pthread_cleanup_push ((void *)xfree, buf);
1162 len = write (fd, buf, size);
1163 pthread_cleanup_pop (1);
1164 if (len != size)
1165 rc = gpg_error_from_errno (errno);
1166
1167 if (!rc)
1168 {
1169 if (fsync (fd) != -1)
1170 {
1171 if (crypto->filename && close (fd) != -1)
1172 {
1173 #ifdef WITH_LIBACL
1174 acl = acl_get_file (crypto->filename, ACL_TYPE_ACCESS);
1175 if (!acl && errno == ENOENT)
1176 acl = acl_get_file (".", ACL_TYPE_DEFAULT);
1177 if (!acl)
1178 log_write ("ACL: %s: %s", crypto->filename,
1179 pwmd_strerror (gpg_error_from_errno (errno)));
1180 pthread_cleanup_push ((void *)acl_free_cb, acl);
1181 #endif
1182
1183 fd = -1;
1184 if (config_get_boolean (crypto->filename, "backup"))
1185 {
1186 char tmp2[PATH_MAX];
1187
1188 snprintf (tmp2, sizeof (tmp2), "%s.backup", crypto->filename);
1189 if (rename (crypto->filename, tmp2) == -1)
1190 if (errno != ENOENT)
1191 rc = gpg_error_from_errno (errno);
1192 }
1193
1194 if (!rc && rename (tmp, crypto->filename) == -1)
1195 rc = gpg_error_from_errno (errno);
1196
1197 if (!rc)
1198 {
1199 if (chmod (crypto->filename, mode) == -1)
1200 log_write ("%s(%u): %s", __FILE__, __LINE__,
1201 pwmd_strerror (gpg_error_from_syserror ()));
1202 }
1203 #ifdef WITH_LIBACL
1204 if (!rc && acl && acl_set_file (crypto->filename,
1205 ACL_TYPE_ACCESS, acl))
1206 log_write ("ACL: %s: %s", crypto->filename,
1207 pwmd_strerror (gpg_error_from_errno (errno)));
1208 pthread_cleanup_pop (1);
1209 #endif
1210 }
1211 else if (crypto->filename)
1212 rc = gpg_error_from_errno (errno);
1213
1214 if (!rc && fd != -1)
1215 {
1216 char *datadir = str_asprintf ("%s/data", homedir);
1217
1218 if (datadir)
1219 {
1220 int dfd = open (datadir, O_RDONLY);
1221
1222 if (dfd != -1)
1223 {
1224 if (fsync (dfd) == -1)
1225 log_write ("%s %d: %s", __FILE__, __LINE__,
1226 pwmd_strerror (errno));
1227
1228 close (dfd);
1229 }
1230 else
1231 log_write ("%s %d: %s", __FILE__, __LINE__,
1232 pwmd_strerror (errno));
1233
1234 xfree (datadir);
1235 }
1236 }
1237 }
1238 else
1239 rc = gpg_error_from_errno (errno);
1240 }
1241
1242 pthread_cleanup_pop (0); // close (fd)
1243 if (fd != -1)
1244 close (fd);
1245 return rc;
1246 }
1247
1248 char *
1249 crypto_key_info (const gpgme_key_t key)
1250 {
1251 struct string_s *string = string_new (NULL), *s;
1252 char *line = NULL;
1253 unsigned n, u;
1254 gpgme_subkey_t subkey;
1255 gpgme_user_id_t uid;
1256
1257 if (!string)
1258 return NULL;
1259
1260 for (u = 0, uid = key->uids; uid; uid = uid->next)
1261 u++;
1262
1263 for (n = 0, subkey = key->subkeys; subkey; subkey = subkey->next)
1264 n++;
1265
1266 s = string_append_printf (string, "%u:%u:%u:%u:%u:%u:%u:%u:%u:%u:%i:%s:%s:%s:%i:%u:%u",
1267 key->revoked, key->expired, key->disabled,
1268 key->invalid, key->can_encrypt, key->can_sign,
1269 key->can_certify, key->secret,
1270 key->can_authenticate, key->is_qualified,
1271 key->protocol,
1272 key->issuer_serial ? key->issuer_serial : "",
1273 key->issuer_name ? key->issuer_name : "",
1274 key->chain_id ? key->chain_id : "",
1275 key->owner_trust, u, n);
1276 if (!s)
1277 {
1278 string_free (string, 1);
1279 return NULL;
1280 }
1281
1282 string = s;
1283 for (subkey = key->subkeys; subkey; subkey = subkey->next)
1284 {
1285 char *tmp;
1286
1287 s = string_append_printf (string, ":%u:%u:%u:%u:%u:%u:%u:%u:%u:%u:%u:%i:%u",
1288 subkey->revoked, subkey->expired,
1289 subkey->disabled, subkey->invalid,
1290 subkey->can_encrypt, subkey->can_sign,
1291 subkey->can_certify, subkey->secret,
1292 subkey->can_authenticate, subkey->is_qualified,
1293 subkey->is_cardkey, subkey->pubkey_algo,
1294 subkey->length);
1295 if (!s)
1296 {
1297 string_free (string, 1);
1298 return NULL;
1299 }
1300
1301 string = s;
1302 s = string_append_printf (string, ":%s:%s:%s:%li:%li:%s",
1303 subkey->keyid, subkey->fpr,
1304 subkey->keygrip ? subkey->keygrip : "",
1305 subkey->timestamp, subkey->expires,
1306 subkey->card_number ? subkey->card_number : "0");
1307 if (!s)
1308 {
1309 string_free (string, 1);
1310 return NULL;
1311 }
1312
1313 string = s;
1314 tmp = gnupg_escape (subkey->curve);
1315 s = string_append_printf (string, ":%s", tmp ? tmp : "");
1316 xfree (tmp);
1317 if (!s)
1318 {
1319 string_free (string, 1);
1320 return NULL;
1321 }
1322
1323 string = s;
1324 }
1325
1326 for (uid = key->uids; uid; uid = uid->next)
1327 {
1328 char *userid, *name, *email, *comment;
1329
1330 userid = gnupg_escape (uid->uid);
1331 name = gnupg_escape (uid->name);
1332 email = gnupg_escape (uid->email);
1333 comment = gnupg_escape (uid->comment);
1334 s = string_append_printf (string, ":%u:%u:%u:%s:%s:%s:%s",
1335 uid->revoked, uid->invalid, uid->validity,
1336 userid ? userid : "",
1337 name ? name : "",
1338 email ? email : "",
1339 comment ? comment : "");
1340 xfree (userid);
1341 xfree (name);
1342 xfree (email);
1343 xfree (comment);
1344 if (!s)
1345 {
1346 string_free (string, 1);
1347 return NULL;
1348 }
1349
1350 string = s;
1351 }
1352
1353 line = string->str;
1354 string_free (string, 0);
1355 return line;
1356 }
1357
1358 gpg_error_t
1359 crypto_try_decrypt (struct client_s *client, int no_pinentry)
1360 {
1361 struct crypto_s *crypto;
1362 gpg_error_t rc;
1363 char *keyfile = config_get_string (client->filename, "passphrase_file");
1364
1365 rc = crypto_init (&crypto, client->ctx, client->filename, no_pinentry,
1366 keyfile);
1367 if (!rc)
1368 {
1369 pthread_cleanup_push ((void *)crypto_free, crypto);
1370 rc = crypto_decrypt (client, crypto);
1371 pthread_cleanup_pop (1);
1372 }
1373 else
1374 xfree (keyfile);
1375
1376 return rc;
1377 }
1378
1379 /* The advisory lock should be obtained before calling this function. */
1380 gpg_error_t
1381 crypto_is_symmetric (const char *filename)
1382 {
1383 int fd;
1384 uint8_t magic[2];
1385 ssize_t len;
1386 gpg_error_t rc;
1387
1388 rc = open_check_file (filename, &fd, NULL, 1);
1389 if (rc)
1390 return rc;
1391
1392 len = read (fd, &magic, sizeof(magic));
1393 close (fd);
1394 if (len != sizeof (magic))
1395 return GPG_ERR_INV_VALUE;
1396
1397 // Always read as big endian.
1398 if (magic[0] != 0x8c || magic[1] != 0x0d)
1399 return GPG_ERR_BAD_DATA;
1400
1401 return 0;
1402 }
A server for managing passphrases and anything else.