mirror of
git://git.gnupg.org/gnupg.git
synced 2024-12-24 10:39:57 +01:00
228 lines
5.5 KiB
C
228 lines
5.5 KiB
C
|
/* trustlist.c - Maintain the list of trusted keys
|
||
|
* Copyright (C) 2002 Free Software Foundation, Inc.
|
||
|
*
|
||
|
* This file is part of GnuPG.
|
||
|
*
|
||
|
* GnuPG is free software; you can redistribute it and/or modify
|
||
|
* it under the terms of the GNU General Public License as published by
|
||
|
* the Free Software Foundation; either version 2 of the License, or
|
||
|
* (at your option) any later version.
|
||
|
*
|
||
|
* GnuPG is distributed in the hope that it will be useful,
|
||
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
||
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
||
|
* GNU General Public License for more details.
|
||
|
*
|
||
|
* You should have received a copy of the GNU General Public License
|
||
|
* along with this program; if not, write to the Free Software
|
||
|
* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA
|
||
|
*/
|
||
|
|
||
|
#include <config.h>
|
||
|
#include <errno.h>
|
||
|
#include <stdio.h>
|
||
|
#include <stdlib.h>
|
||
|
#include <string.h>
|
||
|
#include <ctype.h>
|
||
|
#include <assert.h>
|
||
|
#include <unistd.h>
|
||
|
#include <sys/stat.h>
|
||
|
|
||
|
#include "agent.h"
|
||
|
#include "../assuan/assuan.h" /* fixme: nned a way to avoid assuna
|
||
|
calls here */
|
||
|
|
||
|
static const char headerblurb[] =
|
||
|
"# This is the list of trusted keys. Comments like this one and empty\n"
|
||
|
"# lines are allowed but keep in mind that the entire file is integrity\n"
|
||
|
"# protected by the use of a MAC, so changing the file does not make\n"
|
||
|
"# much sense without the knowledge of the MAC key. Lines do have a\n"
|
||
|
"# length limit but this is not serious limitation as the format of the\n"
|
||
|
"# entries is fixed and checked by gpg-agent: A non-comment line starts\n"
|
||
|
"# with optional white spaces, followed by exactly 40 hex character,\n"
|
||
|
"# optioanlly followed by a flag charcter which my either be 'P', 'S'\n"
|
||
|
"# or '*'. Additional data delimited with by a white space is ignored.\n"
|
||
|
"\n";
|
||
|
|
||
|
|
||
|
static FILE *trustfp;
|
||
|
|
||
|
|
||
|
static int
|
||
|
open_list (void)
|
||
|
{
|
||
|
char *fname;
|
||
|
|
||
|
fname = make_filename (opt.homedir, "trustlist.txt", NULL);
|
||
|
trustfp = fopen (fname, "r");
|
||
|
if (!trustfp && errno == ENOENT)
|
||
|
{
|
||
|
trustfp = fopen (fname, "wx");
|
||
|
if (!trustfp)
|
||
|
{
|
||
|
log_error ("can't create `%s': %s\n", fname, strerror (errno));
|
||
|
xfree (fname);
|
||
|
return seterr (File_Create_Error);
|
||
|
}
|
||
|
fputs (headerblurb, trustfp);
|
||
|
fclose (trustfp);
|
||
|
trustfp = fopen (fname, "r");
|
||
|
}
|
||
|
|
||
|
if (!trustfp)
|
||
|
{
|
||
|
log_error ("can't open `%s': %s\n", fname, strerror (errno));
|
||
|
xfree (fname);
|
||
|
return seterr (File_Open_Error);
|
||
|
}
|
||
|
|
||
|
/*FIXME: check the MAC */
|
||
|
|
||
|
return 0;
|
||
|
}
|
||
|
|
||
|
|
||
|
|
||
|
/* Read the trustlist and return entry by entry. KEY must point to a
|
||
|
buffer of at least 41 characters. KEYFLAG does return either 'P',
|
||
|
'S' or '*'.
|
||
|
|
||
|
Reading a valid entry return 0, EOF returns -1 any other error
|
||
|
returns the appropriate error code. */
|
||
|
static int
|
||
|
read_list (char *key, int *keyflag)
|
||
|
{
|
||
|
int rc;
|
||
|
int c, i;
|
||
|
char *p, line[256];
|
||
|
|
||
|
if (!trustfp)
|
||
|
{
|
||
|
rc = open_list ();
|
||
|
if (rc)
|
||
|
return rc;
|
||
|
}
|
||
|
|
||
|
do
|
||
|
{
|
||
|
if (!fgets (line, DIM(line)-1, trustfp) )
|
||
|
{
|
||
|
if (feof (trustfp))
|
||
|
return -1;
|
||
|
return GNUPG_Read_Error;
|
||
|
}
|
||
|
|
||
|
if (!*line || line[strlen(line)-1] != '\n')
|
||
|
{
|
||
|
/* eat until end of line */
|
||
|
while ( (c=getc (trustfp)) != EOF && c != '\n')
|
||
|
;
|
||
|
return *line? GNUPG_Line_Too_Long: GNUPG_Incomplete_Line;
|
||
|
}
|
||
|
|
||
|
/* Allow for emty lines and spaces */
|
||
|
for (p=line; spacep (p); p++)
|
||
|
;
|
||
|
}
|
||
|
while (!*p || *p == '\n' || *p == '#');
|
||
|
|
||
|
for (i=0; hexdigitp (p+i) && i < 40; i++)
|
||
|
key[i] = p[i] >= 'a'? (p[i] & 0xdf): p[i];
|
||
|
key[i] = 0;
|
||
|
if (i!=40 || !(spacep (p+i) || p[i] == '\n'))
|
||
|
{
|
||
|
log_error ("invalid formatted fingerprint in trustlist\n");
|
||
|
return GNUPG_Bad_Data;
|
||
|
}
|
||
|
assert (p[i]);
|
||
|
if (p[i] == '\n')
|
||
|
*keyflag = '*';
|
||
|
else
|
||
|
{
|
||
|
i++;
|
||
|
if ( p[i] == 'P' || p[i] == 'p')
|
||
|
*keyflag = 'P';
|
||
|
else if ( p[i] == 'S' || p[i] == 's')
|
||
|
*keyflag = 'S';
|
||
|
else if ( p[i] == '*')
|
||
|
*keyflag = '*';
|
||
|
else
|
||
|
{
|
||
|
log_error ("invalid keyflag in trustlist\n");
|
||
|
return GNUPG_Bad_Data;
|
||
|
}
|
||
|
i++;
|
||
|
if ( !(spacep (p+i) || p[i] == '\n'))
|
||
|
{
|
||
|
log_error ("invalid keyflag in trustlist\n");
|
||
|
return GNUPG_Bad_Data;
|
||
|
}
|
||
|
}
|
||
|
|
||
|
return 0;
|
||
|
}
|
||
|
|
||
|
/* check whether the given fr is in our trustdb. We expect FPR to be
|
||
|
an all uppercase hexstring of 40 characters. */
|
||
|
int
|
||
|
agent_istrusted (const char *fpr)
|
||
|
{
|
||
|
int rc;
|
||
|
static char key[41];
|
||
|
int keyflag;
|
||
|
|
||
|
if (trustfp)
|
||
|
rewind (trustfp);
|
||
|
while (!(rc=read_list (key, &keyflag)))
|
||
|
{
|
||
|
if (!strcmp (key, fpr))
|
||
|
return 0;
|
||
|
}
|
||
|
if (rc != -1)
|
||
|
{
|
||
|
/* error in the trustdb - close it to give the user a chance for
|
||
|
correction */
|
||
|
fclose (trustfp);
|
||
|
trustfp = NULL;
|
||
|
}
|
||
|
return rc;
|
||
|
}
|
||
|
|
||
|
|
||
|
/* write all trust entries to FP */
|
||
|
int
|
||
|
agent_listtrusted (void *assuan_context)
|
||
|
{
|
||
|
int rc;
|
||
|
static char key[51];
|
||
|
int keyflag;
|
||
|
|
||
|
if (trustfp)
|
||
|
rewind (trustfp);
|
||
|
while (!(rc=read_list (key, &keyflag)))
|
||
|
{
|
||
|
key[40] = ' ';
|
||
|
key[41] = keyflag;
|
||
|
key[42] = '\n';
|
||
|
assuan_send_data (assuan_context, key, 43);
|
||
|
assuan_send_data (assuan_context, NULL, 0); /* flush */
|
||
|
}
|
||
|
if (rc == -1)
|
||
|
rc = 0;
|
||
|
if (rc)
|
||
|
{
|
||
|
/* error in the trustdb - close it to give the user a chance for
|
||
|
correction */
|
||
|
fclose (trustfp);
|
||
|
trustfp = NULL;
|
||
|
}
|
||
|
return rc;
|
||
|
}
|
||
|
|
||
|
|
||
|
|
||
|
|
||
|
|
||
|
|
||
|
|