search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Update NEWS.
[pwmd.git] / src / crypto.c
blob0e7dae98318a93d93e68fbd40dc2efd49d37f080
1 /*
2 Copyright (C) 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015,
3 2016
4 Ben Kibbey <bjk@luxsci.net>
5
6 This file is part of pwmd.
7
8 Pwmd is free software: you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation, either version 2 of the License, or
11 (at your option) any later version.
12
13 Pwmd is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with Pwmd. If not, see <http://www.gnu.org/licenses/>.
20 */
21 #ifdef HAVE_CONFIG_H
22 #include <config.h>
23 #endif
24
25 #include <stdio.h>
26 #include <sys/types.h>
27 #include <sys/stat.h>
28 #include <fcntl.h>
29 #include <errno.h>
30 #include <pthread.h>
31
32 #ifdef WITH_LIBACL
33 #include <sys/acl.h>
34 #endif
35
36 #include "pwmd-error.h"
37 #include "util-misc.h"
38 #include "common.h"
39 #include "rcfile.h"
40 #include "crypto.h"
41 #include "cache.h"
42 #include "mem.h"
43 #include "util-string.h"
44 #include "rcfile.h"
45 #include "mutex.h"
46
47 static unsigned keepalive;
48 static pthread_mutex_t crypto_mutex = PTHREAD_MUTEX_INITIALIZER;
49
50 #define BUFSIZE 4096
51
52 #define STATUS_TIMEOUT_INIT(crypto) \
53 do { \
54 crypto->status_timeout = time (NULL); \
55 crypto->progress_rc = 0; \
56 } while (0)
57
58 #define STATUS_TIMEOUT_TEST(crypto, rc, s, line) \
59 do { \
60 time_t now = time (NULL); \
61 if (now - crypto->status_timeout >= keepalive && crypto->client_ctx) { \
62 rc = send_status (crypto->client_ctx, s, line); \
63 crypto->status_timeout = now; \
64 } \
65 } while (0)
66
67 #if 0
68 static gpgme_error_t
69 show_key_output (gpgme_key_t key)
70 {
71 gpgme_subkey_t keyp; // first is primary
72
73 for (keyp = key->subkeys; keyp; keyp = keyp->next)
74 {
75 fprintf(stderr, "keyid: %s, revoked: %i, expired: %i, disabled: %i, invalid: %i,"
76 "encrypt: %i, sign: %i, cert: %i, auth: %i, secret: %i\n",
77 keyp->keyid, keyp->revoked, keyp->expired, keyp->disabled,
78 keyp->invalid, keyp->can_encrypt, keyp->can_sign,
79 keyp->can_certify, keyp->can_authenticate, keyp->secret);
80 }
81
82 return 0;
83 }
84 #endif
85
86 static gpg_error_t
87 get_password (const char *keyfile, unsigned char **result, size_t *len)
88 {
89 struct stat st;
90 int fd;
91 unsigned char *buf = NULL;
92 gpg_error_t rc = 0;
93
94 log_write (_ ("obtaining passphrase from passphrase file"));
95 rc = open_check_file (keyfile, &fd, &st, 0);
96 if (rc)
97 return rc;
98
99 buf = xmalloc (st.st_size+1);
100 if (buf)
101 {
102 size_t rlen = read (fd, buf, st.st_size);
103
104 if (rlen != st.st_size)
105 rc = GPG_ERR_ASS_READ_ERROR;
106 else
107 {
108 buf[rlen] = 0;
109 if (rlen && strlen ((char *)buf) != rlen)
110 rc = GPG_ERR_INV_PASSPHRASE;
111
112 if (!rc)
113 {
114 *result = buf;
115 *len = rlen;
116 }
117 }
118 }
119 else
120 rc = GPG_ERR_ENOMEM;
121
122 close (fd);
123 if (rc)
124 xfree (buf);
125
126 return rc;
127 }
128
129 static gpgme_error_t
130 status_cb (void *data, const char *keyword, const char *args)
131 {
132 struct crypto_s *crypto = data;
133
134 // Cache pushing.
135 if (!crypto->client_ctx)
136 return 0;
137
138 if (!strcmp (keyword, "INQUIRE_MAXLEN") &&
139 (crypto->flags & CRYPTO_FLAG_KEYFILE))
140 return 0;
141
142 return assuan_write_status (crypto->client_ctx, keyword, args);
143 }
144
145 static gpgme_error_t
146 passphrase_cb (void *data, const char *hint, const char *info, int bad, int fd)
147 {
148 struct crypto_s *crypto = data;
149 unsigned char *result = NULL;
150 size_t len;
151 gpg_error_t rc = 0;
152
153 if (crypto->flags & CRYPTO_FLAG_KEYFILE)
154 rc = get_password (crypto->keyfile, &result, &len);
155 else
156 {
157 if (hint)
158 rc = assuan_write_status (crypto->client_ctx, "PASSPHRASE_HINT", hint);
159
160 if (!rc && info)
161 rc = assuan_write_status (crypto->client_ctx, "PASSPHRASE_INFO", info);
162
163 if (!rc)
164 {
165 const char *keyword = "PASSPHRASE";
166
167 if (!bad && crypto->flags & CRYPTO_FLAG_PASSWD_SIGN)
168 keyword = "SIGN_PASSPHRASE";
169 else if (!bad && crypto->flags & CRYPTO_FLAG_PASSWD_NEW)
170 {
171 crypto->flags |= CRYPTO_FLAG_PASSWD_SIGN;
172 keyword = "NEW_PASSPHRASE";
173 }
174 else if (!bad && crypto->flags & CRYPTO_FLAG_PASSWD)
175 crypto->flags |= CRYPTO_FLAG_PASSWD_NEW;
176 else if (!bad && crypto->flags & CRYPTO_FLAG_NEWFILE)
177 {
178 keyword = "NEW_PASSPHRASE";
179 if (crypto->save.sigkey)
180 crypto->flags |= CRYPTO_FLAG_PASSWD_SIGN;
181 }
182
183 rc = assuan_inquire (crypto->client_ctx, keyword, &result, &len, 0);
184 }
185 }
186
187 if (!rc)
188 {
189 pthread_cleanup_push ((void *)xfree, result);
190
191 if (!len)
192 gpgme_io_writen (fd, "\n", 1);
193 else
194 {
195 int nl = result[len-1] == '\n';
196 int ret;
197
198 ret = gpgme_io_writen (fd, result, len);
199 if (!ret && !nl)
200 gpgme_io_writen (fd, "\n", 1);
201 else if (ret)
202 rc = GPG_ERR_CANCELED;
203 }
204
205 pthread_cleanup_pop (1);
206 }
207
208 return rc;
209 }
210
211 static void
212 progress_cb (void *data, const char *what, int type, int current, int total)
213 {
214 struct crypto_s *crypto = data;
215
216 crypto->progress_rc = send_status (crypto->client_ctx, STATUS_GPGME,
217 "%s %i %i %i", what, type, current, total);
218 }
219
220 gpgme_error_t
221 crypto_data_to_buf (const gpgme_data_t data, unsigned char **result,
222 size_t *rlen)
223 {
224 off_t ret = gpgme_data_seek (data, 0, SEEK_SET);
225 gpgme_error_t rc;
226 size_t total = 0, size = BUFSIZE;
227 unsigned char *buf = NULL;
228
229 *result = NULL;
230 *rlen = 0;
231
232 if (ret == -1)
233 return gpg_error_from_syserror ();
234
235 buf = xmalloc (size);
236 if (!buf)
237 return GPG_ERR_ENOMEM;
238
239 do
240 {
241 ret = gpgme_data_read (data, &buf[total], BUFSIZE);
242 if (ret > 0)
243 {
244 unsigned char *p;
245
246 total += ret;
247 size += BUFSIZE;
248 p = xrealloc (buf, size * sizeof (unsigned char));
249 if (!p)
250 {
251 xfree (buf);
252 return GPG_ERR_ENOMEM;
253 }
254
255 buf = p;
256 }
257 } while (ret > 0);
258
259 if (ret == -1)
260 {
261 rc = gpgme_err_code_from_syserror ();
262 xfree (buf);
263 return rc;
264 }
265
266 if (!total)
267 xfree (buf);
268 else
269 *result = buf;
270
271 *rlen = total;
272 return 0;
273 }
274
275 gpgme_error_t
276 crypto_list_keys (struct crypto_s *crypto, char *keys[], int secret,
277 gpgme_key_t **result)
278 {
279 gpgme_error_t rc;
280 gpgme_key_t key = NULL, *res = NULL;
281 size_t total = 0;
282
283 rc = gpgme_op_keylist_ext_start (crypto->ctx, (const char **)keys, secret, 0);
284 if (rc)
285 return rc;
286
287 STATUS_TIMEOUT_INIT (crypto);
288 do
289 {
290 gpgme_key_t *p;
291
292 pthread_cleanup_push ((void *)crypto_free_key_list, res);
293 rc = gpgme_op_keylist_next (crypto->ctx, &key);
294 pthread_cleanup_pop (0);
295 if (rc && gpgme_err_code(rc) != GPG_ERR_EOF)
296 break;
297
298 if (rc)
299 {
300 rc = 0;
301 break;
302 }
303
304 p = xrealloc (res, (total+2) * sizeof (gpgme_key_t));
305 if (!p)
306 {
307 rc = GPG_ERR_ENOMEM;
308 break;
309 }
310
311 res = p;
312 res[total++] = key;
313 res[total] = NULL;
314 pthread_cleanup_push ((void *)crypto_free_key_list, res);
315 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_KEEPALIVE, NULL);
316 pthread_cleanup_pop (0);
317 } while (!rc);
318
319 if (!rc)
320 {
321 rc = gpgme_op_keylist_end (crypto->ctx);
322 if (!rc)
323 {
324 *result = res;
325 rc = total ? 0 : secret ? GPG_ERR_NO_SECKEY : GPG_ERR_NO_PUBKEY;
326 }
327 }
328 else
329 crypto_free_key_list (res);
330
331 return rc;
332 }
333
334 void
335 crypto_free_save (struct save_s *save)
336 {
337 if (!save)
338 return;
339
340 strv_free (save->pubkey);
341 xfree (save->sigkey);
342 xfree (save->userid);
343 xfree (save->algo);
344 crypto_free_key_list (save->mainkey);
345
346 memset (save, 0, sizeof (struct save_s));
347 }
348
349 static gpg_error_t
350 crypto_kill_scd ()
351 {
352 return cache_kill_scd ();
353 }
354
355 static void
356 free_gpgme_data_cb (void *data)
357 {
358 gpgme_data_t d = data;
359 char *t;
360 size_t len;
361
362 if (!data)
363 return;
364
365 t = gpgme_data_release_and_get_mem (d, &len);
366 if (t)
367 wipememory (t, 0, len);
368
369 gpgme_free (t);
370 }
371
372 void
373 crypto_free_non_keys (struct crypto_s *crypto)
374 {
375 if (!crypto)
376 return;
377
378 if (crypto->ctx)
379 gpgme_release (crypto->ctx);
380
381 crypto->ctx = NULL;
382 xfree (crypto->plaintext);
383 crypto->plaintext = NULL;
384 crypto->plaintext_size = 0;
385
386 if (crypto->cipher)
387 free_gpgme_data_cb (crypto->cipher);
388
389 crypto->cipher = NULL;
390 crypto_free_save (&crypto->save);
391 xfree (crypto->keyfile);
392 crypto->keyfile = NULL;
393 crypto->flags &= ~CRYPTO_FLAG_KEYFILE;
394 (void)crypto_kill_scd ();
395 }
396
397 void
398 crypto_free (struct crypto_s *crypto)
399 {
400 if (!crypto)
401 return;
402
403 crypto_free_non_keys (crypto);
404 strv_free (crypto->pubkey);
405 xfree (crypto->sigkey);
406 xfree (crypto->filename);
407 xfree (crypto);
408 }
409
410 gpgme_error_t
411 crypto_init_ctx (struct crypto_s *crypto, int no_pinentry,
412 char *passphrase_file)
413 {
414 gpgme_ctx_t ctx;
415 gpgme_keylist_mode_t keylist_mode;
416 gpgme_error_t rc;
417
418 rc = gpgme_new (&ctx);
419 if (rc)
420 return rc;
421
422 rc = gpgme_set_protocol (ctx, GPGME_PROTOCOL_OPENPGP);
423 if (!rc)
424 {
425 keylist_mode = gpgme_get_keylist_mode (ctx);
426 keylist_mode |= GPGME_KEYLIST_MODE_LOCAL|GPGME_KEYLIST_MODE_WITH_SECRET;
427 rc = gpgme_set_keylist_mode (ctx, keylist_mode);
428 if (!rc)
429 {
430 if (no_pinentry || passphrase_file)
431 rc = gpgme_set_pinentry_mode (ctx, GPGME_PINENTRY_MODE_LOOPBACK);
432 else
433 rc = gpgme_set_pinentry_mode (ctx, GPGME_PINENTRY_MODE_DEFAULT);
434
435 if (!rc)
436 {
437 gpgme_set_passphrase_cb (ctx, passphrase_cb, crypto);
438 gpgme_set_progress_cb (ctx, progress_cb, crypto);
439 gpgme_set_status_cb (ctx, status_cb, crypto);
440 crypto->ctx = ctx;
441 crypto->flags = 0;
442 }
443
444 if (passphrase_file)
445 {
446 crypto->keyfile = passphrase_file;
447 crypto->flags |= CRYPTO_FLAG_KEYFILE;
448 }
449 }
450 }
451
452 if (rc)
453 gpgme_release (ctx);
454
455 return rc;
456 }
457
458 void
459 crypto_set_keepalive ()
460 {
461 keepalive = config_get_integer ("global", "keepalive_interval");
462 }
463
464 gpg_error_t
465 crypto_init (struct crypto_s **crypto, void *ctx, const char *filename,
466 int no_pinentry, char *passphrase_file)
467 {
468 struct crypto_s *new = xcalloc (1, sizeof (struct crypto_s));
469 gpgme_error_t rc;
470
471 crypto_set_keepalive ();
472
473 if (!new)
474 return GPG_ERR_ENOMEM;
475
476 rc = crypto_init_ctx (new, no_pinentry, passphrase_file);
477 if (rc)
478 goto fail;
479
480 if (filename)
481 {
482 new->filename = str_dup (filename);
483 if (!new->filename)
484 {
485 rc = GPG_ERR_ENOMEM;
486 goto fail;
487 }
488 }
489
490 new->client_ctx = ctx;
491 *crypto = new;
492 return 0;
493
494 fail:
495 crypto_free (new);
496 return rc;
497 }
498
499 /* Converts a 40 byte key id to the 16 byte form. Needed for comparison of
500 * gpgme_recipient_t.keyid. */
501 gpg_error_t
502 crypto_keyid_to_16b_once (char *key)
503 {
504 size_t len = strlen (key);
505
506 if (len < 16)
507 return GPG_ERR_INV_ARG;
508
509 memmove (&key[0], &key[len-16], 16);
510 key[16] = 0;
511 return 0;
512 }
513
514 gpg_error_t
515 crypto_keyid_to_16b (char **keys)
516 {
517 char **p;
518
519 for (p = keys; p && *p; p++)
520 {
521 gpg_error_t rc = crypto_keyid_to_16b_once (*p);
522 if (rc)
523 return rc;
524 }
525
526 return 0;
527 }
528
529 gpgme_error_t
530 crypto_decrypt (struct client_s *client, struct crypto_s *crypto)
531 {
532 gpgme_data_t plain;
533 gpgme_error_t rc;
534 gpgme_data_t cipher;
535 int fd = -1;
536 struct stat st;
537 char **new_recipients = NULL;
538 char **new_signers = NULL;
539 char **pp;
540 gpgme_decrypt_result_t result;
541
542 rc = gpgme_data_new (&plain);
543 if (rc)
544 return rc;
545
546 pthread_cleanup_push ((void *)free_gpgme_data_cb, plain);
547 rc = open_check_file (crypto->filename, &fd, &st, 1);
548 if (!rc)
549 {
550 pthread_cleanup_push ((void *)close_fd_cb, &fd);
551 rc = gpgme_data_new_from_fd (&cipher, fd);
552 if (!rc)
553 {
554 pthread_cleanup_push ((void *)free_gpgme_data_cb, cipher);
555 rc = send_status (client ? client->ctx : NULL, STATUS_DECRYPT, NULL);
556 if (!rc)
557 {
558 MUTEX_TRYLOCK (client->ctx, &crypto_mutex, rc,
559 client->lock_timeout);
560 if (!rc)
561 {
562 pthread_cleanup_push (release_mutex_cb, &crypto_mutex);
563 rc = gpgme_op_decrypt_verify_start (crypto->ctx, cipher, plain);
564 if (!rc)
565 {
566 STATUS_TIMEOUT_INIT(crypto);
567 do
568 {
569 if (!rc && crypto->progress_rc)
570 rc = crypto->progress_rc;
571 if (!rc)
572 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_DECRYPT, NULL);
573 TEST_CANCEL ();
574 } while (!rc && !gpgme_wait (crypto->ctx, &rc, 0) && !rc);
575 }
576 pthread_cleanup_pop (1); // release_mutex_cb
577 }
578 }
579 pthread_cleanup_pop (1); // free_gpgme_data_cb (cipher)
580 }
581
582 pthread_cleanup_pop (1); // close (fd)
583 }
584
585 pthread_cleanup_pop (0); // free_gpgme_data_cb (plain)
586
587 if (rc)
588 {
589 free_gpgme_data_cb (plain);
590 return rc;
591 }
592
593 pthread_cleanup_push ((void *)free_gpgme_data_cb, plain);
594 result = gpgme_op_decrypt_result (crypto->ctx);
595 if (!result->unsupported_algorithm && !result->wrong_key_usage)
596 {
597 gpgme_recipient_t r;
598
599 for (r = result->recipients; r; r = r->next)
600 {
601 pthread_cleanup_push ((void *)strv_free, new_recipients);
602 log_write1 (_ ("%s: recipient: %s, status=%u"),
603 crypto->filename, r->keyid, r->status);
604 pthread_cleanup_pop (0);
605 pp = strv_cat(new_recipients, str_dup (r->keyid));
606 if (!pp)
607 {
608 rc = GPG_ERR_ENOMEM;
609 break;
610 }
611
612 new_recipients = pp;
613 }
614 }
615 else if (result->wrong_key_usage)
616 rc = GPG_ERR_WRONG_KEY_USAGE;
617 else if (result->unsupported_algorithm)
618 rc = GPG_ERR_UNSUPPORTED_ALGORITHM;
619
620 if (!rc)
621 {
622 gpgme_verify_result_t verify;
623 gpgme_signature_t s;
624
625 verify = gpgme_op_verify_result (crypto->ctx);
626
627 for (s = verify->signatures; s; s = s->next)
628 {
629 pthread_cleanup_push ((void *)strv_free, new_signers);
630 log_write1 (_ ("%s: signer: %s, status=%u"),
631 crypto->filename, s->fpr, s->status);
632 pthread_cleanup_pop (0);
633 if (s->status || s->wrong_key_usage
634 || !(s->summary & GPGME_SIGSUM_VALID))
635 continue;
636
637 pp = strv_cat (new_signers, str_dup (s->fpr));
638 if (!pp)
639 {
640 rc = GPG_ERR_ENOMEM;
641 break;
642 }
643
644 new_signers = pp;
645 }
646
647 if (verify->signatures && !new_signers)
648 rc = GPG_ERR_BAD_SIGNATURE;
649
650 if (!rc)
651 {
652 xfree (crypto->plaintext);
653 crypto->plaintext = NULL;
654 crypto->plaintext_size = 0;
655 pthread_cleanup_push ((void *)strv_free, new_recipients);
656 pthread_cleanup_push ((void *)strv_free, new_signers);
657 rc = crypto_data_to_buf (plain, &crypto->plaintext,
658 &crypto->plaintext_size);
659 pthread_cleanup_pop (0);
660 pthread_cleanup_pop (0);
661 if (!rc)
662 {
663 strv_free (crypto->pubkey);
664 crypto->pubkey = new_recipients;
665 crypto_keyid_to_16b (crypto->pubkey);
666
667 xfree (crypto->sigkey);
668 crypto->sigkey = NULL;
669 if (new_signers)
670 {
671 crypto->sigkey = str_dup (*new_signers);
672 strv_free (new_signers);
673 crypto_keyid_to_16b_once (crypto->sigkey);
674 }
675 }
676 }
677 }
678
679 if (rc)
680 {
681 strv_free (new_recipients);
682 strv_free (new_signers);
683 }
684
685 pthread_cleanup_pop (1); // free_gpgme_data_cb (plain)
686 return rc;
687 }
688
689 void
690 crypto_free_key_list (gpgme_key_t *keys)
691 {
692 int i;
693
694 for (i = 0; keys && keys[i]; i++)
695 gpgme_key_unref (keys[i]);
696
697 xfree (keys);
698 }
699
700 /* Removes strings in 'prune' from 'a'. */
701 static char **
702 prune_keys (char **a, char **prune)
703 {
704 char **p;
705
706 for (p = prune; p && *p; p++)
707 {
708 char **ap;
709
710 for (ap = a; ap && *ap; ap++)
711 {
712 if (!strcmp (*ap, *p))
713 {
714 while (*ap)
715 {
716 *ap = *(ap+1);
717 ap++;
718 }
719 }
720 }
721 }
722
723 return a;
724 }
725
726 static void
727 remove_duplicates (char **a)
728 {
729 char **p;
730
731 for (p = a; p && *p; p++)
732 {
733 char **t;
734
735 for (t = p+1; t && *t; t++)
736 {
737 if (!strcmp (*p, *t))
738 {
739 char *tmp = *t;
740
741 while (*(t+1))
742 {
743 *t = *(t+1);
744 t++;
745 }
746
747 *t = NULL;
748 xfree (tmp);
749 remove_duplicates (a);
750 return;
751 }
752 }
753 }
754 }
755
756 gpgme_error_t
757 crypto_encrypt (struct client_s *client, struct crypto_s *crypto)
758 {
759 gpgme_error_t rc;
760 gpgme_data_t cipher = NULL;
761 gpgme_key_t *keys = NULL;
762 gpgme_key_t *sigkeys = NULL;
763 unsigned flags = 0;
764 int sign = 0;
765
766 if (!(crypto->flags & CRYPTO_FLAG_SYMMETRIC))
767 {
768 crypto_keyid_to_16b (crypto->save.pubkey);
769 remove_duplicates (crypto->save.pubkey);
770 rc = crypto_list_keys (crypto, crypto->save.pubkey, 0, &keys);
771 if (rc)
772 return rc;
773 }
774
775 pthread_cleanup_push ((void *)crypto_free_key_list, keys);
776 rc = gpgme_data_new (&cipher);
777 pthread_cleanup_push ((void *)free_gpgme_data_cb, cipher);
778 if (!rc)
779 rc = gpgme_data_set_file_name (cipher, crypto->filename);
780
781 if (!rc && crypto->save.sigkey)
782 {
783 char **tmp = NULL;
784
785 crypto_keyid_to_16b_once (crypto->save.sigkey);
786 strv_printf (&tmp, "%s", crypto->save.sigkey);
787 pthread_cleanup_push ((void *)strv_free, tmp);
788 rc = crypto_list_keys (crypto, tmp, 1, &sigkeys);
789 pthread_cleanup_pop (1);
790 if (gpg_err_code (rc) == GPG_ERR_NO_DATA)
791 rc = 0;
792 }
793
794 if (!rc)
795 {
796 gpgme_data_t plain = NULL;
797
798 pthread_cleanup_push ((void *)crypto_free_key_list, sigkeys);
799 rc = gpgme_data_new_from_mem (&plain, (char *)crypto->plaintext,
800 crypto->plaintext_size, 0);
801 pthread_cleanup_push ((void *)free_gpgme_data_cb, plain);
802 if (!rc)
803 {
804 int i;
805
806 gpgme_signers_clear (crypto->ctx);
807
808 for (i = 0; sigkeys && sigkeys[i]; i++)
809 gpgme_signers_add (crypto->ctx, sigkeys[i]);
810 }
811
812 if (!rc)
813 {
814 gpgme_data_set_encoding (cipher, GPGME_DATA_ENCODING_ARMOR);
815 rc = send_status (client ? client->ctx : NULL, STATUS_ENCRYPT, NULL);
816 }
817
818 if (!rc)
819 {
820 int f = config_get_boolean ("global", "encrypt_to");
821
822 if (!f)
823 flags |= GPGME_ENCRYPT_NO_ENCRYPT_TO;
824
825 f = config_get_boolean ("global", "always_trust");
826 if (f)
827 flags |= GPGME_ENCRYPT_ALWAYS_TRUST;
828
829 if (!(crypto->flags & CRYPTO_FLAG_SYMMETRIC)
830 || (crypto->flags & CRYPTO_FLAG_SYMMETRIC && sigkeys))
831 sign = 1;
832 }
833
834 if (!rc)
835 MUTEX_TRYLOCK (client->ctx, &crypto_mutex, rc, client->lock_timeout);
836
837 if (!rc)
838 {
839 pthread_cleanup_push (release_mutex_cb, &crypto_mutex);
840 if (sign)
841 rc = gpgme_op_encrypt_sign_start (crypto->ctx, keys, flags, plain,
842 cipher);
843 else
844 rc = gpgme_op_encrypt_start (crypto->ctx, NULL, flags, plain,
845 cipher);
846 if (!rc)
847 {
848 STATUS_TIMEOUT_INIT (crypto);
849 do
850 {
851 if (!rc && crypto->progress_rc)
852 rc = crypto->progress_rc;
853 if (!rc)
854 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_ENCRYPT, NULL);
855 TEST_CANCEL();
856 } while (!rc && !gpgme_wait (crypto->ctx, &rc, 0) && !rc);
857 }
858 pthread_cleanup_pop (1);
859
860 if (!rc)
861 {
862 gpgme_encrypt_result_t result;
863 gpgme_sign_result_t sresult;
864 gpgme_invalid_key_t inv;
865 gpgme_new_signature_t sigs;
866 char **prune = NULL;
867 char **p = NULL;
868
869 result = gpgme_op_encrypt_result (crypto->ctx);
870 inv = result->invalid_recipients;
871 while (inv)
872 {
873 pthread_cleanup_push ((void *)strv_free, prune);
874 log_write1 (_ ("%s: invalid recipient: %s, rc=%u"),
875 crypto->filename, inv->fpr, inv->reason);
876 pthread_cleanup_pop (0);
877 p = strv_cat (prune, str_dup(inv->fpr));
878 if (!p)
879 {
880 rc = GPG_ERR_ENOMEM;
881 strv_free (prune);
882 break;
883 }
884
885 prune = p;
886 inv = inv->next;
887 }
888
889 if (prune)
890 {
891 p = prune_keys (crypto->save.pubkey, prune);
892 crypto->save.pubkey = p;
893 strv_free (prune);
894 }
895
896 crypto_keyid_to_16b (crypto->save.pubkey);
897 sresult = gpgme_op_sign_result (crypto->ctx);
898 inv = sresult ? sresult->invalid_signers : NULL;
899 while (!rc && inv)
900 {
901 log_write1 (_ ("%s: invalid signer: %s, rc=%u"),
902 crypto->filename, inv->fpr, inv->reason);
903 inv = inv->next;
904 }
905
906 sigs = sresult ? sresult->signatures : NULL;
907 if (!rc && sigs)
908 {
909 p = NULL;
910
911 while (sigs)
912 {
913 char **pp;
914
915 pthread_cleanup_push ((void *)strv_free, p);
916 log_write1 (_ ("%s: signer: %s"), crypto->filename,
917 sigs->fpr);
918 pthread_cleanup_pop (0);
919
920 pp = strv_cat (p, str_dup (sigs->fpr));
921 if (!pp)
922 {
923 rc = GPG_ERR_ENOMEM;
924 strv_free (p);
925 break;
926 }
927
928 p = pp;
929 sigs = sigs->next;
930 }
931
932 if (!rc)
933 {
934 xfree (crypto->save.sigkey);
935 crypto->save.sigkey = str_dup (*p);
936 strv_free (p);
937 crypto_keyid_to_16b_once (crypto->save.sigkey);
938 crypto->cipher = cipher;
939 }
940 }
941 else if (!rc && crypto->flags & CRYPTO_FLAG_SYMMETRIC)
942 {
943 crypto->cipher = cipher;
944 }
945 else if (!rc)
946 {
947 if (!(crypto->flags & CRYPTO_FLAG_SYMMETRIC)
948 || (crypto->flags & CRYPTO_FLAG_SYMMETRIC && sigkeys))
949 rc = GPG_ERR_NO_SIGNATURE_SCHEME;
950 }
951 }
952 }
953
954 pthread_cleanup_pop (1); // free_gpgme_data_cb (plain)
955 pthread_cleanup_pop (1); // crypto_free_key_list (sigkeys)
956 }
957
958 pthread_cleanup_pop (0); // free_gpgme_data_cb (cipher)
959 pthread_cleanup_pop (1); // crypto_free_key_list (keys)
960
961 if (rc)
962 free_gpgme_data_cb (cipher);
963
964 return rc;
965 }
966
967 gpgme_error_t
968 crypto_passwd (struct client_s *client, struct crypto_s *crypto)
969 {
970 gpgme_error_t rc;
971 gpgme_key_t *keys = NULL;
972
973 /* Use SAVE instead for symmetric files. */
974 rc = crypto_is_symmetric (client->filename);
975 if (!rc || rc != GPG_ERR_BAD_DATA)
976 return !rc ? GPG_ERR_NOT_SUPPORTED : rc;
977
978 rc = crypto_list_keys (crypto, crypto->pubkey, 1, &keys);
979 if (rc)
980 return rc;
981
982 crypto->flags |= CRYPTO_FLAG_PASSWD;
983 pthread_cleanup_push ((void *)crypto_free_key_list, keys);
984 rc = send_status (client->ctx, STATUS_KEEPALIVE, NULL);
985 if (!rc)
986 MUTEX_TRYLOCK (client->ctx, &crypto_mutex, rc, client->lock_timeout);
987
988 if (!rc)
989 {
990 pthread_cleanup_push (release_mutex_cb, &crypto_mutex);
991 rc = gpgme_op_passwd_start (crypto->ctx, keys[0], 0);
992 if (!rc)
993 {
994 STATUS_TIMEOUT_INIT (crypto);
995 do
996 {
997 if (!rc && crypto->progress_rc)
998 rc = crypto->progress_rc;
999 if (!rc)
1000 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_KEEPALIVE, NULL);
1001 TEST_CANCEL();
1002 } while (!rc && !gpgme_wait (crypto->ctx, &rc, 0) && !rc);
1003 }
1004 pthread_cleanup_pop (1);
1005 }
1006
1007 pthread_cleanup_pop (1);
1008 return rc;
1009 }
1010
1011 /* Generate a new key pair. The resulting keyid's are stored in crypto->save.
1012 */
1013 gpgme_error_t
1014 crypto_genkey (struct client_s *client, struct crypto_s *crypto)
1015 {
1016 gpgme_error_t rc;
1017
1018 rc = send_status (client ? client->ctx : NULL, STATUS_GENKEY, NULL);
1019 if (!rc)
1020 MUTEX_TRYLOCK ((client ? client->ctx : NULL), &crypto_mutex, rc,
1021 (client ? client->lock_timeout : 0));
1022
1023 if (!rc)
1024 {
1025 pthread_cleanup_push (release_mutex_cb, &crypto_mutex);
1026 if (crypto->save.mainkey)
1027 {
1028 rc = gpgme_op_createsubkey_start (crypto->ctx,
1029 crypto->save.mainkey[0],
1030 crypto->save.algo,
1031 0,
1032 crypto->save.expire,
1033 crypto->save.flags);
1034 }
1035 else
1036 {
1037 rc = gpgme_op_createkey_start (crypto->ctx,
1038 crypto->save.userid,
1039 crypto->save.algo,
1040 0,
1041 crypto->save.expire,
1042 NULL,
1043 crypto->save.flags);
1044 }
1045
1046 if (!rc)
1047 {
1048 STATUS_TIMEOUT_INIT (crypto);
1049 do
1050 {
1051 if (!rc && crypto->progress_rc)
1052 rc = crypto->progress_rc;
1053 if (!rc)
1054 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_GENKEY, NULL);
1055 TEST_CANCEL();
1056 } while (!rc && !gpgme_wait (crypto->ctx, &rc, 0) && !rc);
1057 }
1058 pthread_cleanup_pop (1);
1059 }
1060
1061 if (!rc)
1062 {
1063 gpgme_key_t *keys = NULL;
1064 gpgme_genkey_result_t result;
1065
1066 result = gpgme_op_genkey_result (crypto->ctx);
1067 xfree (crypto->save.sigkey);
1068 crypto->save.sigkey = str_dup (result->fpr);
1069 crypto_keyid_to_16b_once (crypto->save.sigkey);
1070
1071 if (!rc)
1072 {
1073 char **tmp = NULL;
1074
1075 strv_printf (&tmp, "%s", crypto->save.sigkey);
1076 pthread_cleanup_push ((void *)strv_free, tmp);
1077 rc = crypto_list_keys (crypto, tmp, 1, &keys);
1078 pthread_cleanup_pop (1);
1079 }
1080
1081 if (!rc)
1082 {
1083 gpgme_subkey_t key = keys[0]->subkeys;
1084
1085 for (; key; key = key->next)
1086 {
1087 if (key->can_encrypt)
1088 break;
1089 }
1090
1091 pthread_cleanup_push ((void *)crypto_free_key_list, keys);
1092 rc = send_status (client ? client->ctx : NULL, STATUS_GENKEY, "%s %s",
1093 crypto->save.sigkey, key ? key->fpr : "");
1094 if (!rc && key)
1095 {
1096 crypto->save.pubkey = strv_cat (crypto->save.pubkey,
1097 str_dup (key->fpr));
1098 crypto_keyid_to_16b (crypto->save.pubkey);
1099 }
1100
1101 pthread_cleanup_pop (1);
1102 }
1103 }
1104
1105 return rc;
1106 }
1107
1108 #ifdef WITH_LIBACL
1109 static void
1110 acl_free_cb (void *arg)
1111 {
1112 acl_t acl = arg ? (acl_t) arg : NULL;
1113
1114 if (acl)
1115 acl_free (acl);
1116 }
1117 #endif
1118
1119 /* The advisory lock should be obtained before calling this function. */
1120 gpg_error_t
1121 crypto_write_file (struct crypto_s *crypto, unsigned char **r_crc,
1122 size_t *r_crclen)
1123 {
1124 unsigned char *buf;
1125 size_t size, len;
1126 int fd;
1127 gpg_error_t rc;
1128 char tmp[PATH_MAX];
1129 struct stat st;
1130 mode_t mode = 0600;
1131 #ifdef WITH_LIBACL
1132 acl_t acl = NULL;
1133 #endif
1134
1135 if (crypto->filename)
1136 {
1137 if (lstat (crypto->filename, &st) == 0)
1138 {
1139 mode = st.st_mode & (S_IRWXU | S_IRWXG | S_IRWXO);
1140
1141 if (!(mode & S_IWUSR))
1142 return GPG_ERR_EACCES;
1143 }
1144 else if (errno != ENOENT)
1145 return gpg_error_from_errno (errno);
1146
1147 snprintf (tmp, sizeof (tmp), "%s.XXXXXX", crypto->filename);
1148 mode_t tmode = umask (0600);
1149 fd = mkstemp (tmp);
1150 if (fd == -1)
1151 {
1152 rc = gpg_error_from_errno (errno);
1153 umask (tmode);
1154 log_write ("%s: %s", tmp, pwmd_strerror (rc));
1155 return rc;
1156 }
1157
1158 umask (tmode);
1159 }
1160 else
1161 fd = STDOUT_FILENO;
1162
1163 rc = crypto_data_to_buf (crypto->cipher, &buf, &size);
1164 if (rc)
1165 {
1166 if (crypto->filename)
1167 close (fd);
1168 return rc;
1169 }
1170
1171 pthread_cleanup_push ((void *)close_fd_cb, &fd);
1172 if (r_crc)
1173 rc = get_checksum_memory (buf, size, r_crc, r_crclen);
1174
1175 if (!rc)
1176 {
1177 pthread_cleanup_push ((void *)xfree, buf);
1178 len = write (fd, buf, size);
1179 pthread_cleanup_pop (1);
1180 if (len != size)
1181 rc = gpg_error_from_errno (errno);
1182 }
1183
1184 if (!rc)
1185 {
1186 if (fsync (fd) != -1)
1187 {
1188 if (crypto->filename && close (fd) != -1)
1189 {
1190 #ifdef WITH_LIBACL
1191 acl = acl_get_file (crypto->filename, ACL_TYPE_ACCESS);
1192 if (!acl && errno == ENOENT)
1193 acl = acl_get_file (".", ACL_TYPE_DEFAULT);
1194 if (!acl)
1195 log_write ("ACL: %s: %s", crypto->filename,
1196 pwmd_strerror (gpg_error_from_errno (errno)));
1197 pthread_cleanup_push ((void *)acl_free_cb, acl);
1198 #endif
1199
1200 fd = -1;
1201 if (config_get_boolean (crypto->filename, "backup"))
1202 {
1203 char tmp2[PATH_MAX];
1204
1205 snprintf (tmp2, sizeof (tmp2), "%s.backup", crypto->filename);
1206 if (rename (crypto->filename, tmp2) == -1)
1207 if (errno != ENOENT)
1208 rc = gpg_error_from_errno (errno);
1209 }
1210
1211 if (!rc && rename (tmp, crypto->filename) == -1)
1212 rc = gpg_error_from_errno (errno);
1213
1214 if (!rc)
1215 {
1216 if (chmod (crypto->filename, mode) == -1)
1217 log_write ("%s(%u): %s", __FILE__, __LINE__,
1218 pwmd_strerror (gpg_error_from_syserror ()));
1219 }
1220 #ifdef WITH_LIBACL
1221 if (!rc && acl && acl_set_file (crypto->filename,
1222 ACL_TYPE_ACCESS, acl))
1223 log_write ("ACL: %s: %s", crypto->filename,
1224 pwmd_strerror (gpg_error_from_errno (errno)));
1225 pthread_cleanup_pop (1);
1226 #endif
1227 }
1228 else if (crypto->filename)
1229 rc = gpg_error_from_errno (errno);
1230
1231 if (!rc && fd != -1)
1232 {
1233 char *datadir = str_asprintf ("%s/data", homedir);
1234
1235 if (datadir)
1236 {
1237 int dfd = open (datadir, O_RDONLY);
1238
1239 if (dfd != -1)
1240 {
1241 if (fsync (dfd) == -1)
1242 log_write ("%s %d: %s", __FILE__, __LINE__,
1243 pwmd_strerror (errno));
1244
1245 close (dfd);
1246 }
1247 else
1248 log_write ("%s %d: %s", __FILE__, __LINE__,
1249 pwmd_strerror (errno));
1250
1251 xfree (datadir);
1252 }
1253 }
1254 }
1255 else
1256 rc = gpg_error_from_errno (errno);
1257 }
1258
1259 pthread_cleanup_pop (0); // close (fd)
1260 if (fd != -1)
1261 close (fd);
1262
1263 return rc;
1264 }
1265
1266 char *
1267 crypto_key_info (const gpgme_key_t key)
1268 {
1269 struct string_s *string = string_new (NULL), *s;
1270 char *line = NULL;
1271 unsigned n, u;
1272 gpgme_subkey_t subkey;
1273 gpgme_user_id_t uid;
1274
1275 if (!string)
1276 return NULL;
1277
1278 for (u = 0, uid = key->uids; uid; uid = uid->next)
1279 u++;
1280
1281 for (n = 0, subkey = key->subkeys; subkey; subkey = subkey->next)
1282 n++;
1283
1284 s = string_append_printf (string, "%u:%u:%u:%u:%u:%u:%u:%u:%u:%u:%i:%s:%s:%s:%i:%u:%u",
1285 key->revoked, key->expired, key->disabled,
1286 key->invalid, key->can_encrypt, key->can_sign,
1287 key->can_certify, key->secret,
1288 key->can_authenticate, key->is_qualified,
1289 key->protocol,
1290 key->issuer_serial ? key->issuer_serial : "",
1291 key->issuer_name ? key->issuer_name : "",
1292 key->chain_id ? key->chain_id : "",
1293 key->owner_trust, u, n);
1294 if (!s)
1295 {
1296 string_free (string, 1);
1297 return NULL;
1298 }
1299
1300 string = s;
1301 for (subkey = key->subkeys; subkey; subkey = subkey->next)
1302 {
1303 char *tmp;
1304
1305 s = string_append_printf (string, ":%u:%u:%u:%u:%u:%u:%u:%u:%u:%u:%u:%i:%u",
1306 subkey->revoked, subkey->expired,
1307 subkey->disabled, subkey->invalid,
1308 subkey->can_encrypt, subkey->can_sign,
1309 subkey->can_certify, subkey->secret,
1310 subkey->can_authenticate, subkey->is_qualified,
1311 subkey->is_cardkey, subkey->pubkey_algo,
1312 subkey->length);
1313 if (!s)
1314 {
1315 string_free (string, 1);
1316 return NULL;
1317 }
1318
1319 string = s;
1320 s = string_append_printf (string, ":%s:%s:%s:%li:%li:%s",
1321 subkey->keyid, subkey->fpr,
1322 subkey->keygrip ? subkey->keygrip : "",
1323 subkey->timestamp, subkey->expires,
1324 subkey->card_number ? subkey->card_number : "0");
1325 if (!s)
1326 {
1327 string_free (string, 1);
1328 return NULL;
1329 }
1330
1331 string = s;
1332 tmp = gnupg_escape (subkey->curve);
1333 s = string_append_printf (string, ":%s", tmp ? tmp : "");
1334 xfree (tmp);
1335 if (!s)
1336 {
1337 string_free (string, 1);
1338 return NULL;
1339 }
1340
1341 string = s;
1342 }
1343
1344 for (uid = key->uids; uid; uid = uid->next)
1345 {
1346 char *userid, *name, *email, *comment;
1347
1348 userid = gnupg_escape (uid->uid);
1349 name = gnupg_escape (uid->name);
1350 email = gnupg_escape (uid->email);
1351 comment = gnupg_escape (uid->comment);
1352 s = string_append_printf (string, ":%u:%u:%u:%s:%s:%s:%s",
1353 uid->revoked, uid->invalid, uid->validity,
1354 userid ? userid : "",
1355 name ? name : "",
1356 email ? email : "",
1357 comment ? comment : "");
1358 xfree (userid);
1359 xfree (name);
1360 xfree (email);
1361 xfree (comment);
1362 if (!s)
1363 {
1364 string_free (string, 1);
1365 return NULL;
1366 }
1367
1368 string = s;
1369 }
1370
1371 line = string->str;
1372 string_free (string, 0);
1373 return line;
1374 }
1375
1376 gpg_error_t
1377 crypto_try_decrypt (struct client_s *client, int no_pinentry)
1378 {
1379 struct crypto_s *crypto;
1380 gpg_error_t rc;
1381 char *keyfile = config_get_string (client->filename, "passphrase_file");
1382
1383 rc = crypto_init (&crypto, client->ctx, client->filename, no_pinentry,
1384 keyfile);
1385 if (!rc)
1386 {
1387 pthread_cleanup_push ((void *)crypto_free, crypto);
1388 rc = crypto_decrypt (client, crypto);
1389 pthread_cleanup_pop (1);
1390 }
1391 else
1392 xfree (keyfile);
1393
1394 return rc;
1395 }
1396
1397 /* The advisory lock should be obtained before calling this function. */
1398 gpg_error_t
1399 crypto_is_symmetric (const char *filename)
1400 {
1401 int fd;
1402 uint8_t magic[2];
1403 ssize_t len;
1404 gpg_error_t rc;
1405
1406 rc = open_check_file (filename, &fd, NULL, 1);
1407 if (rc)
1408 return rc;
1409
1410 len = read (fd, &magic, sizeof(magic));
1411 close (fd);
1412 if (len != sizeof (magic))
1413 return GPG_ERR_INV_VALUE;
1414
1415 // Always read as big endian.
1416 if (magic[0] != 0x8c || magic[1] != 0x0d)
1417 return GPG_ERR_BAD_DATA;
1418
1419 return 0;
1420 }
1421
1422 gpg_error_t
1423 crypto_delete_key (struct client_s *client, struct crypto_s *crypto,
1424 const gpgme_key_t key, int secret)
1425 {
1426 gpg_error_t rc;
1427
1428 STATUS_TIMEOUT_INIT (crypto);
1429 rc = send_status (client->ctx, STATUS_DECRYPT, NULL);
1430 if (!rc)
1431 rc = gpgme_op_delete_start (crypto->ctx, key, secret);
1432
1433 if (rc)
1434 return rc;
1435
1436 do
1437 {
1438 if (!rc && crypto->progress_rc)
1439 rc = crypto->progress_rc;
1440
1441 if (!rc)
1442 STATUS_TIMEOUT_TEST (crypto, rc, STATUS_DECRYPT, NULL);
1443
1444 if (rc)
1445 break;
1446 } while (!gpgme_wait (crypto->ctx, &rc, 0) && !rc);
1447
1448 return rc;
1449 }
A server for managing passphrases and anything else.