1
0
mirror of git://git.gnupg.org/gnupg.git synced 2025-01-18 14:17:03 +01:00

gpg: Store the Tofu meta handle for databases in CTRL.

* g10/gpg.h (struct tofu_dbs_s, tofu_dbs_t): New declarations.
(struct server_control_s): Add field tofu.dbs.
* g10/tofu.c (struct dbs): Rename to tofu_dbs_s.  Replace all users by
by tofu_dbs_t.
(opendbs):  Add arg CTRL.  Cache the DBS in CTRL.
(closedbs): Rename to tofu_closedbs and make global.  Add arg CTRL.
(tofu_register): Add arg CTRL.  Change all callers.  Do not call
closedbs.
(tofu_get_validity): Ditto.
(tofu_set_policy): Ditto.
(tofu_get_policy): Ditto.
(tofu_set_policy_by_keyid): Add arg CTRL.
* g10/gpg.c (gpg_deinit_default_ctrl): Call tofu_closedbs.

Signed-off-by: Werner Koch <wk@gnupg.org>
This commit is contained in:
Werner Koch 2016-05-21 12:26:44 +02:00
parent 027c4e5552
commit 754b1c4630
No known key found for this signature in database
GPG Key ID: E3FDFF218E45B72B
9 changed files with 70 additions and 47 deletions

View File

@ -2046,6 +2046,7 @@ gpg_init_default_ctrl (ctrl_t ctrl)
static void static void
gpg_deinit_default_ctrl (ctrl_t ctrl) gpg_deinit_default_ctrl (ctrl_t ctrl)
{ {
tofu_closedbs (ctrl);
gpg_dirmngr_deinit_session_data (ctrl); gpg_dirmngr_deinit_session_data (ctrl);
} }
@ -4586,7 +4587,7 @@ main (int argc, char **argv)
} }
merge_keys_and_selfsig (kb); merge_keys_and_selfsig (kb);
if (tofu_set_policy (kb, policy)) if (tofu_set_policy (ctrl, kb, policy))
g10_exit (1); g10_exit (1);
} }

View File

@ -63,6 +63,10 @@ typedef struct dirmngr_local_s *dirmngr_local_t;
typedef struct kbnode_struct *KBNODE; typedef struct kbnode_struct *KBNODE;
typedef struct kbnode_struct *kbnode_t; typedef struct kbnode_struct *kbnode_t;
/* TOFU database meta object. */
struct tofu_dbs_s;
typedef struct tofu_dbs_s *tofu_dbs_t;
/* Session control object. This object is passed to most functions to /* Session control object. This object is passed to most functions to
convey the status of a session. Note that the defaults are set by convey the status of a session. Note that the defaults are set by
@ -74,6 +78,12 @@ struct server_control_s
/* Local data for call-dirmngr.c */ /* Local data for call-dirmngr.c */
dirmngr_local_t dirmngr_local; dirmngr_local_t dirmngr_local;
/* Local data for tofu.c */
struct {
tofu_dbs_t dbs;
} tofu;
}; };

View File

@ -645,9 +645,10 @@ export_pubkey_buffer (ctrl_t ctrl, const char *keyspec, unsigned int options,
} }
gpg_error_t gpg_error_t
tofu_get_policy (PKT_public_key *pk, PKT_user_id *user_id, tofu_get_policy (ctrl_t ctrl, PKT_public_key *pk, PKT_user_id *user_id,
enum tofu_policy *policy) enum tofu_policy *policy)
{ {
(void)ctrl;
(void)pk; (void)pk;
(void)user_id; (void)user_id;
(void)policy; (void)policy;

View File

@ -3485,7 +3485,7 @@ show_key_with_all_names_colon (ctrl_t ctrl, estream_t fp, kbnode_t keyblock)
{ {
#ifdef USE_TOFU #ifdef USE_TOFU
enum tofu_policy policy; enum tofu_policy policy;
if (! tofu_get_policy (primary, uid, &policy) if (! tofu_get_policy (ctrl, primary, uid, &policy)
&& policy != TOFU_POLICY_NONE) && policy != TOFU_POLICY_NONE)
es_fprintf (fp, "%s", tofu_policy_str (policy)); es_fprintf (fp, "%s", tofu_policy_str (policy));
#endif /*USE_TOFU*/ #endif /*USE_TOFU*/

View File

@ -1545,7 +1545,7 @@ list_keyblock_colon (ctrl_t ctrl, kbnode_t keyblock,
{ {
#ifdef USE_TOFU #ifdef USE_TOFU
enum tofu_policy policy; enum tofu_policy policy;
if (! tofu_get_policy (pk, uid, &policy) if (! tofu_get_policy (ctrl, pk, uid, &policy)
&& policy != TOFU_POLICY_NONE) && policy != TOFU_POLICY_NONE)
es_fprintf (es_stdout, "%s", tofu_policy_str (policy)); es_fprintf (es_stdout, "%s", tofu_policy_str (policy));
#endif /*USE_TOFU*/ #endif /*USE_TOFU*/

View File

@ -456,9 +456,10 @@ export_pubkey_buffer (ctrl_t ctrl, const char *keyspec, unsigned int options,
} }
gpg_error_t gpg_error_t
tofu_get_policy (PKT_public_key *pk, PKT_user_id *user_id, tofu_get_policy (ctrl_t ctrl, PKT_public_key *pk, PKT_user_id *user_id,
enum tofu_policy *policy) enum tofu_policy *policy)
{ {
(void)ctrl;
(void)pk; (void)pk;
(void)user_id; (void)user_id;
(void)policy; (void)policy;

View File

@ -782,7 +782,8 @@ opendb (char *filename, enum db_type type)
return db; return db;
} }
struct dbs /* Definition of the Tofu dabase meta handle. */
struct tofu_dbs_s
{ {
struct db *db; struct db *db;
}; };
@ -814,7 +815,7 @@ link_db (struct db **head, struct db *db)
TYPE must be either DB_MAIL or DB_KEY. In the combined format, the TYPE must be either DB_MAIL or DB_KEY. In the combined format, the
combined DB is always returned. */ combined DB is always returned. */
static struct db * static struct db *
getdb (struct dbs *dbs, const char *name, enum db_type type) getdb (tofu_dbs_t dbs, const char *name, enum db_type type)
{ {
struct db *t = NULL; struct db *t = NULL;
char *name_sanitized = NULL; char *name_sanitized = NULL;
@ -980,9 +981,12 @@ closedb (struct db *db)
/* Create a new DB meta-handle. Returns NULL on error. */ /* Create a new DB meta-handle. Returns NULL on error. */
/* FIXME: Change to return an error code for better reporting by the /* FIXME: Change to return an error code for better reporting by the
caller. */ caller. */
static struct dbs * static tofu_dbs_t
opendbs (void) opendbs (ctrl_t ctrl)
{ {
if (ctrl->tofu.dbs)
return ctrl->tofu.dbs;
if (opt.tofu_db_format == TOFU_DB_AUTO) if (opt.tofu_db_format == TOFU_DB_AUTO)
{ {
char *filename = make_filename (opt.homedir, "tofu.db", NULL); char *filename = make_filename (opt.homedir, "tofu.db", NULL);
@ -1045,13 +1049,20 @@ opendbs (void)
} }
} }
return xmalloc_clear (sizeof (struct dbs)); ctrl->tofu.dbs = xmalloc_clear (sizeof (struct tofu_dbs_s));
return ctrl->tofu.dbs;
} }
/* Release all of the resources associated with a DB meta-handle. */ /* Release all of the resources associated with a DB meta-handle. */
static void void
closedbs (struct dbs *dbs) tofu_closedbs (ctrl_t ctrl)
{ {
tofu_dbs_t dbs = ctrl->tofu.dbs;
if (!dbs)
return; /* Not initialized. */
if (dbs->db) if (dbs->db)
{ {
struct db *old_head = db_cache; struct db *old_head = db_cache;
@ -1103,7 +1114,8 @@ closedbs (struct dbs *dbs)
} }
} }
xfree (dbs); xfree (ctrl->tofu.dbs);
ctrl->tofu.dbs = NULL;
#if DEBUG_TOFU_CACHE #if DEBUG_TOFU_CACHE
log_debug ("Queries: %d (prepares saved: %d)\n", log_debug ("Queries: %d (prepares saved: %d)\n",
@ -1142,7 +1154,7 @@ get_single_long_cb2 (void *cookie, int argc, char **argv, char **azColName,
If SHOW_OLD is set, the binding's old policy is displayed. */ If SHOW_OLD is set, the binding's old policy is displayed. */
static gpg_error_t static gpg_error_t
record_binding (struct dbs *dbs, const char *fingerprint, const char *email, record_binding (tofu_dbs_t dbs, const char *fingerprint, const char *email,
const char *user_id, enum tofu_policy policy, int show_old) const char *user_id, enum tofu_policy policy, int show_old)
{ {
char *fingerprint_pp = format_hexfingerprint (fingerprint, NULL, 0); char *fingerprint_pp = format_hexfingerprint (fingerprint, NULL, 0);
@ -1485,7 +1497,7 @@ time_ago_scale (signed long t)
if CONFLICT is not NULL. Returns _tofu_GET_POLICY_ERROR if an error if CONFLICT is not NULL. Returns _tofu_GET_POLICY_ERROR if an error
occurs. */ occurs. */
static enum tofu_policy static enum tofu_policy
get_policy (struct dbs *dbs, const char *fingerprint, const char *email, get_policy (tofu_dbs_t dbs, const char *fingerprint, const char *email,
char **conflict) char **conflict)
{ {
struct db *db; struct db *db;
@ -1598,7 +1610,7 @@ get_policy (struct dbs *dbs, const char *fingerprint, const char *email,
conflicting binding's policy to TOFU_POLICY_ASK. In either case, conflicting binding's policy to TOFU_POLICY_ASK. In either case,
we return TRUST_UNDEFINED. */ we return TRUST_UNDEFINED. */
static enum tofu_policy static enum tofu_policy
get_trust (struct dbs *dbs, const char *fingerprint, const char *email, get_trust (tofu_dbs_t dbs, const char *fingerprint, const char *email,
const char *user_id, int may_ask) const char *user_id, int may_ask)
{ {
char *fingerprint_pp; char *fingerprint_pp;
@ -2405,7 +2417,7 @@ write_stats_status (long messages, enum tofu_policy policy,
} }
static void static void
show_statistics (struct dbs *dbs, const char *fingerprint, show_statistics (tofu_dbs_t dbs, const char *fingerprint,
const char *email, const char *user_id, const char *email, const char *user_id,
const char *sig_exclude) const char *sig_exclude)
{ {
@ -2646,11 +2658,11 @@ email_from_user_id (const char *user_id)
This function returns the binding's trust level on return. If an This function returns the binding's trust level on return. If an
error occurs, this function returns TRUST_UNKNOWN. */ error occurs, this function returns TRUST_UNKNOWN. */
int int
tofu_register (PKT_public_key *pk, const char *user_id, tofu_register (ctrl_t ctrl, PKT_public_key *pk, const char *user_id,
const byte *sig_digest_bin, int sig_digest_bin_len, const byte *sig_digest_bin, int sig_digest_bin_len,
time_t sig_time, const char *origin, int may_ask) time_t sig_time, const char *origin, int may_ask)
{ {
struct dbs *dbs; tofu_dbs_t dbs;
struct db *db; struct db *db;
char *fingerprint = NULL; char *fingerprint = NULL;
char *fingerprint_pp = NULL; char *fingerprint_pp = NULL;
@ -2664,7 +2676,7 @@ tofu_register (PKT_public_key *pk, const char *user_id,
sig_digest = make_radix64_string (sig_digest_bin, sig_digest_bin_len); sig_digest = make_radix64_string (sig_digest_bin, sig_digest_bin_len);
dbs = opendbs (); dbs = opendbs (ctrl);
if (! dbs) if (! dbs)
{ {
log_error (_("error opening TOFU database: %s\n"), log_error (_("error opening TOFU database: %s\n"),
@ -2806,8 +2818,6 @@ tofu_register (PKT_public_key *pk, const char *user_id,
xfree (email); xfree (email);
xfree (fingerprint_pp); xfree (fingerprint_pp);
xfree (fingerprint); xfree (fingerprint);
if (dbs)
closedbs (dbs);
xfree (sig_digest); xfree (sig_digest);
return trust_level; return trust_level;
@ -2887,15 +2897,15 @@ tofu_wot_trust_combine (int tofu_base, int wot_base)
Returns TRUST_UNDEFINED if an error occurs. */ Returns TRUST_UNDEFINED if an error occurs. */
int int
tofu_get_validity (PKT_public_key *pk, const char *user_id, tofu_get_validity (ctrl_t ctrl, PKT_public_key *pk, const char *user_id,
int may_ask) int may_ask)
{ {
struct dbs *dbs; tofu_dbs_t dbs;
char *fingerprint = NULL; char *fingerprint = NULL;
char *email = NULL; char *email = NULL;
int trust_level = TRUST_UNDEFINED; int trust_level = TRUST_UNDEFINED;
dbs = opendbs (); dbs = opendbs (ctrl);
if (! dbs) if (! dbs)
{ {
log_error (_("error opening TOFU database: %s\n"), log_error (_("error opening TOFU database: %s\n"),
@ -2925,9 +2935,6 @@ tofu_get_validity (PKT_public_key *pk, const char *user_id,
die: die:
xfree (email); xfree (email);
xfree (fingerprint); xfree (fingerprint);
if (dbs)
closedbs (dbs);
return trust_level; return trust_level;
} }
@ -2939,16 +2946,16 @@ tofu_get_validity (PKT_public_key *pk, const char *user_id,
Returns 0 on success and an error code otherwise. */ Returns 0 on success and an error code otherwise. */
gpg_error_t gpg_error_t
tofu_set_policy (kbnode_t kb, enum tofu_policy policy) tofu_set_policy (ctrl_t ctrl, kbnode_t kb, enum tofu_policy policy)
{ {
struct dbs *dbs; tofu_dbs_t dbs;
PKT_public_key *pk; PKT_public_key *pk;
char *fingerprint = NULL; char *fingerprint = NULL;
log_assert (kb->pkt->pkttype == PKT_PUBLIC_KEY); log_assert (kb->pkt->pkttype == PKT_PUBLIC_KEY);
pk = kb->pkt->pkt.public_key; pk = kb->pkt->pkt.public_key;
dbs = opendbs (); dbs = opendbs (ctrl);
if (! dbs) if (! dbs)
{ {
log_error (_("error opening TOFU database: %s\n"), log_error (_("error opening TOFU database: %s\n"),
@ -2987,8 +2994,6 @@ tofu_set_policy (kbnode_t kb, enum tofu_policy policy)
} }
xfree (fingerprint); xfree (fingerprint);
closedbs (dbs);
return 0; return 0;
} }
@ -3000,13 +3005,13 @@ tofu_set_policy (kbnode_t kb, enum tofu_policy policy)
Returns 0 on success and an error code otherwise. */ Returns 0 on success and an error code otherwise. */
gpg_error_t gpg_error_t
tofu_set_policy_by_keyid (u32 *keyid, enum tofu_policy policy) tofu_set_policy_by_keyid (ctrl_t ctrl, u32 *keyid, enum tofu_policy policy)
{ {
kbnode_t keyblock = get_pubkeyblock (keyid); kbnode_t keyblock = get_pubkeyblock (keyid);
if (! keyblock) if (! keyblock)
return gpg_error (GPG_ERR_NO_PUBKEY); return gpg_error (GPG_ERR_NO_PUBKEY);
return tofu_set_policy (keyblock, policy); return tofu_set_policy (ctrl, keyblock, policy);
} }
/* Return the TOFU policy for the specified binding in *POLICY. If no /* Return the TOFU policy for the specified binding in *POLICY. If no
@ -3017,10 +3022,10 @@ tofu_set_policy_by_keyid (u32 *keyid, enum tofu_policy policy)
Returns 0 on success and an error code otherwise. */ Returns 0 on success and an error code otherwise. */
gpg_error_t gpg_error_t
tofu_get_policy (PKT_public_key *pk, PKT_user_id *user_id, tofu_get_policy (ctrl_t ctrl, PKT_public_key *pk, PKT_user_id *user_id,
enum tofu_policy *policy) enum tofu_policy *policy)
{ {
struct dbs *dbs; tofu_dbs_t dbs;
char *fingerprint; char *fingerprint;
char *email; char *email;
@ -3028,7 +3033,7 @@ tofu_get_policy (PKT_public_key *pk, PKT_user_id *user_id,
log_assert (pk->main_keyid[0] == pk->keyid[0] log_assert (pk->main_keyid[0] == pk->keyid[0]
&& pk->main_keyid[1] == pk->keyid[1]); && pk->main_keyid[1] == pk->keyid[1]);
dbs = opendbs (); dbs = opendbs (ctrl);
if (! dbs) if (! dbs)
{ {
log_error (_("error opening TOFU database: %s\n"), log_error (_("error opening TOFU database: %s\n"),
@ -3044,8 +3049,6 @@ tofu_get_policy (PKT_public_key *pk, PKT_user_id *user_id,
xfree (email); xfree (email);
xfree (fingerprint); xfree (fingerprint);
closedbs (dbs);
if (*policy == _tofu_GET_POLICY_ERROR) if (*policy == _tofu_GET_POLICY_ERROR)
return gpg_error (GPG_ERR_GENERAL); return gpg_error (GPG_ERR_GENERAL);
return 0; return 0;

View File

@ -63,6 +63,7 @@ enum tofu_policy
_tofu_GET_POLICY_ERROR = 100 _tofu_GET_POLICY_ERROR = 100
}; };
/* Return a string representation of a trust policy. Returns "???" if /* Return a string representation of a trust policy. Returns "???" if
POLICY is not valid. */ POLICY is not valid. */
const char *tofu_policy_str (enum tofu_policy policy); const char *tofu_policy_str (enum tofu_policy policy);
@ -78,7 +79,7 @@ int tofu_policy_to_trust_level (enum tofu_policy policy);
interact with the user in the case of a conflict or if the interact with the user in the case of a conflict or if the
binding's policy is ask. This function returns the binding's trust binding's policy is ask. This function returns the binding's trust
level. If an error occurs, it returns TRUST_UNKNOWN. */ level. If an error occurs, it returns TRUST_UNKNOWN. */
int tofu_register (PKT_public_key *pk, const char *user_id, int tofu_register (ctrl_t ctrl, PKT_public_key *pk, const char *user_id,
const byte *sigs_digest, int sigs_digest_len, const byte *sigs_digest, int sigs_digest_len,
time_t sig_time, const char *origin, int may_ask); time_t sig_time, const char *origin, int may_ask);
@ -91,18 +92,21 @@ int tofu_wot_trust_combine (int tofu, int wot);
<PK, USER_ID>. If MAY_ASK is 1, then this function may <PK, USER_ID>. If MAY_ASK is 1, then this function may
interact with the user. If not, TRUST_UNKNOWN is returned. If an interact with the user. If not, TRUST_UNKNOWN is returned. If an
error occurs, TRUST_UNDEFINED is returned. */ error occurs, TRUST_UNDEFINED is returned. */
int tofu_get_validity (PKT_public_key *pk, const char *user_id, int may_ask); int tofu_get_validity (ctrl_t ctrl,
PKT_public_key *pk, const char *user_id, int may_ask);
/* Set the policy for all non-revoked user ids in the keyblock KB to /* Set the policy for all non-revoked user ids in the keyblock KB to
POLICY. */ POLICY. */
gpg_error_t tofu_set_policy (kbnode_t kb, enum tofu_policy policy); gpg_error_t tofu_set_policy (ctrl_t ctrl, kbnode_t kb, enum tofu_policy policy);
/* Set the TOFU policy for all non-revoked users in the key with the /* Set the TOFU policy for all non-revoked users in the key with the
key id KEYID to POLICY. */ key id KEYID to POLICY. */
gpg_error_t tofu_set_policy_by_keyid (u32 *keyid, enum tofu_policy policy); gpg_error_t tofu_set_policy_by_keyid (ctrl_t ctrl,
u32 *keyid, enum tofu_policy policy);
/* Return the TOFU policy for the specified binding in *POLICY. */ /* Return the TOFU policy for the specified binding in *POLICY. */
gpg_error_t tofu_get_policy (PKT_public_key *pk, PKT_user_id *user_id, gpg_error_t tofu_get_policy (ctrl_t ctrl,
PKT_public_key *pk, PKT_user_id *user_id,
enum tofu_policy *policy); enum tofu_policy *policy);
/* When doing a lot of DB activities (in particular, when listing /* When doing a lot of DB activities (in particular, when listing
@ -111,4 +115,7 @@ gpg_error_t tofu_get_policy (PKT_public_key *pk, PKT_user_id *user_id,
void tofu_begin_batch_update (void); void tofu_begin_batch_update (void);
void tofu_end_batch_update (void); void tofu_end_batch_update (void);
/* Release all of the resources associated with a DB meta-handle. */
void tofu_closedbs (ctrl_t ctrl);
#endif /*G10_TOFU_H*/ #endif /*G10_TOFU_H*/

View File

@ -1065,12 +1065,12 @@ tdb_get_validity_core (ctrl_t ctrl,
user_ids ++; user_ids ++;
if (sig) if (sig)
tl = tofu_register (main_pk, user_id->name, tl = tofu_register (ctrl, main_pk, user_id->name,
sig->digest, sig->digest_len, sig->digest, sig->digest_len,
sig->timestamp, "unknown", sig->timestamp, "unknown",
may_ask); may_ask);
else else
tl = tofu_get_validity (main_pk, user_id->name, may_ask); tl = tofu_get_validity (ctrl, main_pk, user_id->name, may_ask);
if (tl == TRUST_EXPIRED) if (tl == TRUST_EXPIRED)
user_ids_expired ++; user_ids_expired ++;