2012-04-08 10:52:01 -04:00
|
|
|
#pragma once
|
|
|
|
|
|
2012-03-26 17:17:04 -04:00
|
|
|
// This class implements an abstract pgp handler to be used in RetroShare.
|
|
|
|
|
//
|
|
|
|
|
#include <stdint.h>
|
|
|
|
|
#include <string>
|
|
|
|
|
#include <list>
|
2012-04-01 08:52:15 -04:00
|
|
|
#include <map>
|
2012-04-09 13:03:47 -04:00
|
|
|
#include <set>
|
2012-03-26 17:17:04 -04:00
|
|
|
#include <util/rsthreads.h>
|
|
|
|
|
|
|
|
|
|
extern "C" {
|
|
|
|
|
#include <openpgpsdk/types.h>
|
|
|
|
|
#include <openpgpsdk/keyring.h>
|
2012-03-27 16:48:21 -04:00
|
|
|
#include <openpgpsdk/keyring_local.h>
|
2012-03-26 17:17:04 -04:00
|
|
|
}
|
|
|
|
|
|
2012-04-08 10:52:01 -04:00
|
|
|
typedef std::string (*PassphraseCallback)(void *data, const char *uid_hint, const char *passphrase_info, int prev_was_bad) ;
|
2012-04-01 08:52:15 -04:00
|
|
|
|
2012-03-26 17:17:04 -04:00
|
|
|
class PGPIdType
|
|
|
|
|
{
|
|
|
|
|
public:
|
|
|
|
|
static const int KEY_ID_SIZE = 8 ;
|
2012-03-27 16:48:21 -04:00
|
|
|
PGPIdType() {}
|
2012-04-04 15:27:07 -04:00
|
|
|
|
|
|
|
|
static PGPIdType fromUserId_hex(const std::string& hex_string) ;
|
|
|
|
|
static PGPIdType fromFingerprint_hex(const std::string& hex_string) ;
|
|
|
|
|
|
|
|
|
|
explicit PGPIdType(const unsigned char bytes[]) ;
|
2012-03-26 17:17:04 -04:00
|
|
|
|
|
|
|
|
std::string toStdString() const ;
|
|
|
|
|
uint64_t toUInt64() const ;
|
2012-03-29 17:51:37 -04:00
|
|
|
const unsigned char *toByteArray() const { return &bytes[0] ; }
|
2012-03-26 17:17:04 -04:00
|
|
|
|
|
|
|
|
private:
|
|
|
|
|
unsigned char bytes[KEY_ID_SIZE] ;
|
2012-04-09 13:03:47 -04:00
|
|
|
std::string _string_id ;
|
2012-03-26 17:17:04 -04:00
|
|
|
};
|
2012-04-04 15:27:07 -04:00
|
|
|
class PGPFingerprintType
|
|
|
|
|
{
|
|
|
|
|
public:
|
|
|
|
|
static const int KEY_FINGERPRINT_SIZE = 20 ;
|
|
|
|
|
|
|
|
|
|
static PGPFingerprintType fromFingerprint_hex(const std::string& hex_string) ;
|
|
|
|
|
explicit PGPFingerprintType(const unsigned char bytes[]) ;
|
|
|
|
|
|
|
|
|
|
std::string toStdString() const ;
|
|
|
|
|
const unsigned char *toByteArray() const { return &bytes[0] ; }
|
|
|
|
|
|
|
|
|
|
bool operator==(const PGPFingerprintType& fp) const
|
|
|
|
|
{
|
|
|
|
|
for(int i=0;i<KEY_FINGERPRINT_SIZE;++i)
|
|
|
|
|
if(fp.bytes[i] != bytes[i])
|
|
|
|
|
return false ;
|
|
|
|
|
return true ;
|
|
|
|
|
}
|
|
|
|
|
bool operator!=(const PGPFingerprintType& fp) const
|
|
|
|
|
{
|
|
|
|
|
return !operator==(fp) ;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
PGPFingerprintType() {}
|
|
|
|
|
private:
|
|
|
|
|
unsigned char bytes[KEY_FINGERPRINT_SIZE] ;
|
2012-04-09 13:03:47 -04:00
|
|
|
std::string _string_id ;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
class PGPCertificateInfo
|
|
|
|
|
{
|
|
|
|
|
public:
|
|
|
|
|
PGPCertificateInfo() {}
|
|
|
|
|
|
|
|
|
|
std::string _name;
|
|
|
|
|
std::string _email;
|
|
|
|
|
std::string _comment;
|
|
|
|
|
|
|
|
|
|
std::set<std::string> signers;
|
|
|
|
|
|
|
|
|
|
uint32_t _trustLvl;
|
|
|
|
|
uint32_t _validLvl;
|
|
|
|
|
uint32_t _flags ;
|
|
|
|
|
|
|
|
|
|
PGPFingerprintType _fpr; /* fingerprint */
|
|
|
|
|
PGPIdType _key_id ;
|
|
|
|
|
|
|
|
|
|
uint32_t _key_index ; // index to array of keys in the public keyring
|
|
|
|
|
|
|
|
|
|
static const uint32_t PGP_CERTIFICATE_FLAG_ACCEPT_CONNEXION = 0x0001 ;
|
|
|
|
|
static const uint32_t PGP_CERTIFICATE_FLAG_HAS_OWN_SIGNATURE = 0x0002 ;
|
|
|
|
|
static const uint32_t PGP_CERTIFICATE_FLAG_HAS_SIGNED_ME = 0x0004 ;
|
2012-04-04 15:27:07 -04:00
|
|
|
};
|
2012-03-26 17:17:04 -04:00
|
|
|
|
|
|
|
|
class PGPHandler
|
|
|
|
|
{
|
|
|
|
|
public:
|
2012-05-01 04:53:32 -04:00
|
|
|
PGPHandler(const std::string& path_to_public_keyring, const std::string& path_to_secret_keyring) ;
|
2012-03-26 17:17:04 -04:00
|
|
|
|
|
|
|
|
virtual ~PGPHandler() ;
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @param ids list of gpg certificate ids (note, not the actual certificates)
|
|
|
|
|
*/
|
2012-04-09 13:03:47 -04:00
|
|
|
bool getGPGFilteredList(std::list<PGPIdType>& list,bool (*filter)(const PGPCertificateInfo&) = NULL) const ;
|
2012-03-26 17:17:04 -04:00
|
|
|
|
|
|
|
|
bool availableGPGCertificatesWithPrivateKeys(std::list<PGPIdType>& ids);
|
|
|
|
|
bool GeneratePGPCertificate(const std::string& name, const std::string& email, const std::string& passwd, PGPIdType& pgpId, std::string& errString) ;
|
|
|
|
|
|
|
|
|
|
bool LoadCertificateFromString(const std::string& pem, PGPIdType& gpg_id, std::string& error_string);
|
|
|
|
|
std::string SaveCertificateToString(const PGPIdType& id,bool include_signatures) ;
|
|
|
|
|
|
|
|
|
|
bool TrustCertificate(const PGPIdType& id, int trustlvl);
|
|
|
|
|
|
2012-04-01 08:52:15 -04:00
|
|
|
bool SignDataBin(const PGPIdType& id,const void *data, const uint32_t len, unsigned char *sign, unsigned int *signlen) ;
|
2012-04-04 15:27:07 -04:00
|
|
|
bool VerifySignBin(const void *data, uint32_t data_len, unsigned char *sign, unsigned int sign_len, const PGPFingerprintType& withfingerprint) ;
|
|
|
|
|
|
2012-04-08 10:52:01 -04:00
|
|
|
bool encryptTextToFile(const PGPIdType& key_id,const std::string& text,const std::string& outfile) ;
|
|
|
|
|
bool decryptTextFromFile(const PGPIdType& key_id,std::string& text,const std::string& inputfile) ;
|
|
|
|
|
|
2012-04-04 15:27:07 -04:00
|
|
|
bool getKeyFingerprint(const PGPIdType& id,PGPFingerprintType& fp) const ;
|
2012-04-09 13:03:47 -04:00
|
|
|
void setAcceptConnexion(const PGPIdType&,bool) ;
|
|
|
|
|
|
2012-05-01 14:45:24 -04:00
|
|
|
// Write keyring
|
|
|
|
|
bool writePublicKeyring(const std::string& filename) const ;
|
|
|
|
|
|
2012-03-26 17:17:04 -04:00
|
|
|
// Debug stuff.
|
2012-04-09 13:03:47 -04:00
|
|
|
virtual bool printKeys() const ;
|
|
|
|
|
|
|
|
|
|
const PGPCertificateInfo *getCertificateInfo(const PGPIdType& id) const ;
|
|
|
|
|
|
|
|
|
|
bool isGPGId(const std::string &id);
|
|
|
|
|
bool isGPGSigned(const std::string &id);
|
|
|
|
|
bool isGPGAccepted(const std::string &id);
|
2012-03-26 17:17:04 -04:00
|
|
|
|
2012-05-01 04:53:32 -04:00
|
|
|
static void setPassphraseCallback(PassphraseCallback cb) ;
|
|
|
|
|
static PassphraseCallback passphraseCallback() { return _passphrase_callback ; }
|
2012-03-26 17:17:04 -04:00
|
|
|
private:
|
2012-04-09 13:03:47 -04:00
|
|
|
void initCertificateInfo(PGPCertificateInfo& cert,const ops_keydata_t *keydata,uint32_t i) ;
|
2012-05-13 15:04:13 -04:00
|
|
|
void validateAndUpdateSignatures(PGPCertificateInfo& cert,const ops_keydata_t *keydata) ;
|
2012-04-09 13:03:47 -04:00
|
|
|
|
2012-04-01 08:52:15 -04:00
|
|
|
const ops_keydata_t *getPublicKey(const PGPIdType&) const ;
|
|
|
|
|
const ops_keydata_t *getSecretKey(const PGPIdType&) const ;
|
2012-03-29 17:51:37 -04:00
|
|
|
|
2012-05-01 14:45:24 -04:00
|
|
|
// Members.
|
|
|
|
|
//
|
2012-03-26 17:17:04 -04:00
|
|
|
RsMutex pgphandlerMtx ;
|
|
|
|
|
|
|
|
|
|
ops_keyring_t *_pubring ;
|
|
|
|
|
ops_keyring_t *_secring ;
|
|
|
|
|
|
2012-04-09 13:03:47 -04:00
|
|
|
std::map<std::string,PGPCertificateInfo> _public_keyring_map ; // used for fast access to keys. Gives the index in the keyring.
|
|
|
|
|
std::map<std::string,PGPCertificateInfo> _secret_keyring_map ;
|
2012-04-01 08:52:15 -04:00
|
|
|
|
2012-03-26 17:17:04 -04:00
|
|
|
const std::string _pubring_path ;
|
|
|
|
|
const std::string _secring_path ;
|
2012-04-01 08:52:15 -04:00
|
|
|
|
2012-05-01 14:45:24 -04:00
|
|
|
// Helper functions.
|
|
|
|
|
//
|
|
|
|
|
static std::string makeRadixEncodedPGPKey(const ops_keydata_t *key) ;
|
|
|
|
|
static ops_keyring_t *allocateOPSKeyring() ;
|
|
|
|
|
static void addNewKeyToOPSKeyring(ops_keyring_t*, const ops_keydata_t&) ;
|
2012-05-01 04:53:32 -04:00
|
|
|
static PassphraseCallback _passphrase_callback ;
|
2012-03-26 17:17:04 -04:00
|
|
|
};
|
2012-04-01 08:52:15 -04:00
|
|
|
|
