mirror of
https://github.com/RetroShare/RetroShare.git
synced 2025-01-03 20:01:07 -05:00
ad a read / write lock and refactor authgpg with it
git-svn-id: http://svn.code.sf.net/p/retroshare/code/trunk@2695 b45a01b8-16f6-495d-af2f-9b41ad6348cc
This commit is contained in:
parent
a2a567851e
commit
0f5214ff76
@ -126,7 +126,8 @@ static char *PgpPassword = NULL;
|
|||||||
AuthGPG::AuthGPG()
|
AuthGPG::AuthGPG()
|
||||||
:gpgmeInit(false),gpgmeKeySelected(false),p3Config(CONFIG_TYPE_AUTHGPG)
|
:gpgmeInit(false),gpgmeKeySelected(false),p3Config(CONFIG_TYPE_AUTHGPG)
|
||||||
{
|
{
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
{
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
setlocale(LC_ALL, "");
|
setlocale(LC_ALL, "");
|
||||||
gpgme_check_version(NULL);
|
gpgme_check_version(NULL);
|
||||||
@ -138,11 +139,11 @@ AuthGPG::AuthGPG()
|
|||||||
|
|
||||||
#ifndef WINDOWS_SYS
|
#ifndef WINDOWS_SYS
|
||||||
/* setup the engine (gpg2) */
|
/* setup the engine (gpg2) */
|
||||||
// if (GPG_ERR_NO_ERROR != gpgme_set_engine_info(GPGME_PROTOCOL_OpenPGP, "/usr/bin/gpg2", NULL))
|
// if (GPG_ERR_NO_ERROR != gpgme_set_engine_info(GPGME_PROTOCOL_OpenPGP, "/usr/bin/gpg2", NULL))
|
||||||
// {
|
// {
|
||||||
// std::cerr << "Error creating Setting engine" << std::endl;
|
// std::cerr << "Error creating Setting engine" << std::endl;
|
||||||
// return;
|
// return;
|
||||||
// }
|
// }
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
if (GPG_ERR_NO_ERROR != gpgme_engine_check_version(GPGME_PROTOCOL_OpenPGP))
|
if (GPG_ERR_NO_ERROR != gpgme_engine_check_version(GPGME_PROTOCOL_OpenPGP))
|
||||||
@ -190,8 +191,8 @@ AuthGPG::AuthGPG()
|
|||||||
|
|
||||||
gpgme_set_passphrase_cb(CTX, pgp_pwd_callback, (void *) NULL);
|
gpgme_set_passphrase_cb(CTX, pgp_pwd_callback, (void *) NULL);
|
||||||
|
|
||||||
/* if we get to here -> we have inited okay */
|
|
||||||
gpgmeInit = true;
|
gpgmeInit = true;
|
||||||
|
}
|
||||||
|
|
||||||
storeAllKeys_locked();
|
storeAllKeys_locked();
|
||||||
#ifdef GPG_DEBUG
|
#ifdef GPG_DEBUG
|
||||||
@ -209,13 +210,13 @@ AuthGPG::AuthGPG()
|
|||||||
*/
|
*/
|
||||||
bool AuthGPG::availableGPGCertificatesWithPrivateKeys(std::list<std::string> &ids)
|
bool AuthGPG::availableGPGCertificatesWithPrivateKeys(std::list<std::string> &ids)
|
||||||
{
|
{
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
|
||||||
|
|
||||||
int i = 0;
|
int i = 0;
|
||||||
gpgme_key_t KEY = NULL;
|
gpgme_key_t KEY = NULL;
|
||||||
gpg_error_t ERR;
|
gpg_error_t ERR;
|
||||||
|
|
||||||
/* XXX should check that CTX is valid */
|
/* XXX should check that CTX is valid */
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
if (!gpgmeInit)
|
if (!gpgmeInit)
|
||||||
{
|
{
|
||||||
return false;
|
return false;
|
||||||
@ -269,36 +270,43 @@ bool AuthGPG::availableGPGCertificatesWithPrivateKeys(std::list<std::string> &id
|
|||||||
*/
|
*/
|
||||||
int AuthGPG::GPGInit(std::string ownId)
|
int AuthGPG::GPGInit(std::string ownId)
|
||||||
{
|
{
|
||||||
is_set_gpg_password_static= false;
|
|
||||||
|
|
||||||
{
|
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
|
||||||
std::cerr << "AuthGPG::GPGInit() called with own gpg id : " << ownId << std::endl;
|
std::cerr << "AuthGPG::GPGInit() called with own gpg id : " << ownId << std::endl;
|
||||||
|
|
||||||
|
{
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
|
is_set_gpg_password_static= false;
|
||||||
if (!gpgmeInit) {
|
if (!gpgmeInit) {
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|
||||||
mOwnGpgId = ownId;
|
mOwnGpgId = ownId;
|
||||||
|
}
|
||||||
|
|
||||||
storeAllKeys_locked();
|
storeAllKeys_locked();
|
||||||
|
|
||||||
|
int lvl = 0;
|
||||||
|
|
||||||
|
{
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
if (mOwnGpgCert.id != mOwnGpgId) {
|
if (mOwnGpgCert.id != mOwnGpgId) {
|
||||||
std::cerr << "AuthGPG::GPGInit() failed to find your id." << std::endl;
|
std::cerr << "AuthGPG::GPGInit() failed to find your id." << std::endl;
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
gpgmeKeySelected = true;
|
||||||
|
|
||||||
|
lvl = mOwnGpgCert.validLvl;
|
||||||
}
|
}
|
||||||
|
|
||||||
//check the validity of the private key. When set to unknown, it caused signature and text encryptions bugs
|
//check the validity of the private key. When set to unknown, it caused signature and text encryptions bugs
|
||||||
if (mOwnGpgCert.validLvl < 2) {
|
if (lvl < 2) {
|
||||||
std::cerr << "AuthGPG::GPGInit() abnormal validity set to private key. Switch it to none by default." << std::endl;
|
std::cerr << "AuthGPG::GPGInit() abnormal validity set to private key. Switch it to none by default." << std::endl;
|
||||||
privateTrustCertificate(mOwnGpgId, 4);
|
privateTrustCertificate(mOwnGpgId, 4);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
gpgmeKeySelected = true;
|
|
||||||
//printAllKeys_locked();
|
//printAllKeys_locked();
|
||||||
|
|
||||||
|
|
||||||
std::cerr << "AuthGPG::GPGInit finished." << std::endl;
|
std::cerr << "AuthGPG::GPGInit finished." << std::endl;
|
||||||
|
|
||||||
return true;
|
return true;
|
||||||
@ -313,7 +321,6 @@ bool AuthGPG::storeAllKeys_timed() {
|
|||||||
std::cerr << "AuthGPG::storeAllKeys_timed() called." << std::endl;
|
std::cerr << "AuthGPG::storeAllKeys_timed() called." << std::endl;
|
||||||
#endif
|
#endif
|
||||||
if ((time(NULL) - mStoreKeyTime) > STORE_KEY_TIMEOUT) {
|
if ((time(NULL) - mStoreKeyTime) > STORE_KEY_TIMEOUT) {
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
|
||||||
storeAllKeys_locked();
|
storeAllKeys_locked();
|
||||||
}
|
}
|
||||||
return true ;
|
return true ;
|
||||||
@ -325,7 +332,8 @@ bool AuthGPG::storeAllKeys_locked()
|
|||||||
#ifdef GPG_DEBUG
|
#ifdef GPG_DEBUG
|
||||||
std::cerr << "AuthGPG::storeAllKeys_locked()" << std::endl;
|
std::cerr << "AuthGPG::storeAllKeys_locked()" << std::endl;
|
||||||
#endif
|
#endif
|
||||||
mStoreKeyTime = time(NULL);
|
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
gpg_error_t ERR;
|
gpg_error_t ERR;
|
||||||
if (!gpgmeInit)
|
if (!gpgmeInit)
|
||||||
@ -359,6 +367,7 @@ bool AuthGPG::storeAllKeys_locked()
|
|||||||
}
|
}
|
||||||
|
|
||||||
/* Loop until end of key */
|
/* Loop until end of key */
|
||||||
|
mStoreKeyTime = time(NULL);
|
||||||
ERR = gpgme_op_keylist_next (CTX, &KEY);
|
ERR = gpgme_op_keylist_next (CTX, &KEY);
|
||||||
if (GPG_ERR_NO_ERROR != ERR) {
|
if (GPG_ERR_NO_ERROR != ERR) {
|
||||||
std::cerr << "AuthGPG::storeAllKeys_locked() didn't find any gpg key in the keyring" << std::endl;
|
std::cerr << "AuthGPG::storeAllKeys_locked() didn't find any gpg key in the keyring" << std::endl;
|
||||||
@ -408,7 +417,6 @@ bool AuthGPG::storeAllKeys_locked()
|
|||||||
/* NB uids is a linked list and can contain multiple ids.
|
/* NB uids is a linked list and can contain multiple ids.
|
||||||
* first id is primary.
|
* first id is primary.
|
||||||
*/
|
*/
|
||||||
|
|
||||||
gpgme_user_id_t mainuid = KEY->uids;
|
gpgme_user_id_t mainuid = KEY->uids;
|
||||||
nu.name = mainuid->name;
|
nu.name = mainuid->name;
|
||||||
nu.email = mainuid->email;
|
nu.email = mainuid->email;
|
||||||
@ -503,7 +511,7 @@ bool AuthGPG::storeAllKeys_locked()
|
|||||||
|
|
||||||
}
|
}
|
||||||
|
|
||||||
// update trust on all available keys.
|
// update trust on all available keys. Not used anymore
|
||||||
bool AuthGPG::updateTrustAllKeys_locked()
|
bool AuthGPG::updateTrustAllKeys_locked()
|
||||||
{
|
{
|
||||||
gpg_error_t ERR;
|
gpg_error_t ERR;
|
||||||
@ -624,7 +632,7 @@ bool AuthGPG::printOwnKeys_locked()
|
|||||||
|
|
||||||
bool AuthGPG::printKeys()
|
bool AuthGPG::printKeys()
|
||||||
{
|
{
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
printAllKeys_locked();
|
printAllKeys_locked();
|
||||||
return printOwnKeys_locked();
|
return printOwnKeys_locked();
|
||||||
}
|
}
|
||||||
@ -672,6 +680,7 @@ void print_pgpme_verify_summary(unsigned int summary)
|
|||||||
|
|
||||||
bool AuthGPG::DoOwnSignature_locked(const void *data, unsigned int datalen, void *buf_sigout, unsigned int *outl)
|
bool AuthGPG::DoOwnSignature_locked(const void *data, unsigned int datalen, void *buf_sigout, unsigned int *outl)
|
||||||
{
|
{
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
/* setup signers */
|
/* setup signers */
|
||||||
gpgme_signers_clear(CTX);
|
gpgme_signers_clear(CTX);
|
||||||
if (GPG_ERR_NO_ERROR != gpgme_signers_add(CTX, mOwnGpgCert.key))
|
if (GPG_ERR_NO_ERROR != gpgme_signers_add(CTX, mOwnGpgCert.key))
|
||||||
@ -764,6 +773,7 @@ bool AuthGPG::VerifySignature_locked(const void *data, int datalen, const void *
|
|||||||
std::cerr << "VerifySignature: datalen: " << datalen << " siglen: " << siglen << std::endl;
|
std::cerr << "VerifySignature: datalen: " << datalen << " siglen: " << siglen << std::endl;
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
if(!(gpgmeInit || gpgmeKeySelected))
|
if(!(gpgmeInit || gpgmeKeySelected))
|
||||||
return false ;
|
return false ;
|
||||||
|
|
||||||
@ -847,7 +857,6 @@ bool AuthGPG::VerifySignature_locked(const void *data, int datalen, const void *
|
|||||||
fprintf(stderr, "AuthGPG::VerifySignature() FAILED\n");
|
fprintf(stderr, "AuthGPG::VerifySignature() FAILED\n");
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
return valid;
|
return valid;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -856,12 +865,15 @@ bool AuthGPG::VerifySignature_locked(const void *data, int datalen, const void *
|
|||||||
|
|
||||||
bool AuthGPG::active()
|
bool AuthGPG::active()
|
||||||
{
|
{
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
return ((gpgmeInit) && (gpgmeKeySelected));
|
return ((gpgmeInit) && (gpgmeKeySelected));
|
||||||
}
|
}
|
||||||
|
|
||||||
bool AuthGPG::GeneratePGPCertificate(std::string name, std::string email, std::string passwd, std::string &pgpId, std::string &errString) {
|
bool AuthGPG::GeneratePGPCertificate(std::string name, std::string email, std::string passwd, std::string &pgpId, std::string &errString) {
|
||||||
|
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
gpgme_key_t newKey;
|
gpgme_key_t newKey;
|
||||||
gpgme_genkey_result_t result;
|
gpgme_genkey_result_t result;
|
||||||
gpg_error_t ERR;
|
gpg_error_t ERR;
|
||||||
@ -895,7 +907,8 @@ bool AuthGPG::CloseAuth()
|
|||||||
std::string AuthGPG::getGPGName(GPG_id id)
|
std::string AuthGPG::getGPGName(GPG_id id)
|
||||||
{
|
{
|
||||||
storeAllKeys_timed();
|
storeAllKeys_timed();
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
if (mKeyList.end() != (it = mKeyList.find(id)))
|
if (mKeyList.end() != (it = mKeyList.find(id)))
|
||||||
@ -908,7 +921,8 @@ std::string AuthGPG::getGPGName(GPG_id id)
|
|||||||
std::string AuthGPG::getGPGEmail(GPG_id id)
|
std::string AuthGPG::getGPGEmail(GPG_id id)
|
||||||
{
|
{
|
||||||
storeAllKeys_timed();
|
storeAllKeys_timed();
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
if (mKeyList.end() != (it = mKeyList.find(id)))
|
if (mKeyList.end() != (it = mKeyList.find(id)))
|
||||||
@ -921,20 +935,20 @@ std::string AuthGPG::getGPGEmail(GPG_id id)
|
|||||||
|
|
||||||
std::string AuthGPG::getGPGOwnId()
|
std::string AuthGPG::getGPGOwnId()
|
||||||
{
|
{
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
return mOwnGpgId;
|
return mOwnGpgId;
|
||||||
}
|
}
|
||||||
|
|
||||||
std::string AuthGPG::getGPGOwnName()
|
std::string AuthGPG::getGPGOwnName()
|
||||||
{
|
{
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
return mOwnGpgCert.name;
|
return mOwnGpgCert.name;
|
||||||
}
|
}
|
||||||
|
|
||||||
bool AuthGPG::getGPGAllList(std::list<std::string> &ids)
|
bool AuthGPG::getGPGAllList(std::list<std::string> &ids)
|
||||||
{
|
{
|
||||||
storeAllKeys_timed();
|
storeAllKeys_timed();
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
/* add an id for each pgp certificate */
|
/* add an id for each pgp certificate */
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
@ -952,7 +966,7 @@ bool AuthGPG::getGPGDetails(std::string id, RsPeerDetails &d)
|
|||||||
#endif
|
#endif
|
||||||
|
|
||||||
storeAllKeys_timed();
|
storeAllKeys_timed();
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
/* add an id for each pgp certificate */
|
/* add an id for each pgp certificate */
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
@ -989,7 +1003,7 @@ bool AuthGPG::getGPGDetails(std::string id, RsPeerDetails &d)
|
|||||||
}
|
}
|
||||||
|
|
||||||
bool AuthGPG::decryptText(gpgme_data_t CIPHER, gpgme_data_t PLAIN) {
|
bool AuthGPG::decryptText(gpgme_data_t CIPHER, gpgme_data_t PLAIN) {
|
||||||
//RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
gpgme_set_armor (CTX, 1);
|
gpgme_set_armor (CTX, 1);
|
||||||
gpg_error_t ERR;
|
gpg_error_t ERR;
|
||||||
if (GPG_ERR_NO_ERROR != (ERR = gpgme_op_decrypt (CTX, CIPHER, PLAIN)))
|
if (GPG_ERR_NO_ERROR != (ERR = gpgme_op_decrypt (CTX, CIPHER, PLAIN)))
|
||||||
@ -1003,7 +1017,7 @@ bool AuthGPG::decryptText(gpgme_data_t CIPHER, gpgme_data_t PLAIN) {
|
|||||||
}
|
}
|
||||||
|
|
||||||
bool AuthGPG::encryptText(gpgme_data_t PLAIN, gpgme_data_t CIPHER) {
|
bool AuthGPG::encryptText(gpgme_data_t PLAIN, gpgme_data_t CIPHER) {
|
||||||
//RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
gpgme_encrypt_flags_t* flags = new gpgme_encrypt_flags_t();
|
gpgme_encrypt_flags_t* flags = new gpgme_encrypt_flags_t();
|
||||||
gpgme_key_t keys[2] = {mOwnGpgCert.key, NULL};
|
gpgme_key_t keys[2] = {mOwnGpgCert.key, NULL};
|
||||||
gpgme_set_armor (CTX, 1);
|
gpgme_set_armor (CTX, 1);
|
||||||
@ -1021,7 +1035,7 @@ bool AuthGPG::encryptText(gpgme_data_t PLAIN, gpgme_data_t CIPHER) {
|
|||||||
bool AuthGPG::getGPGValidList(std::list<std::string> &ids)
|
bool AuthGPG::getGPGValidList(std::list<std::string> &ids)
|
||||||
{
|
{
|
||||||
storeAllKeys_timed();
|
storeAllKeys_timed();
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
/* add an id for each pgp certificate */
|
/* add an id for each pgp certificate */
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
for(it = mKeyList.begin(); it != mKeyList.end(); it++)
|
for(it = mKeyList.begin(); it != mKeyList.end(); it++)
|
||||||
@ -1036,7 +1050,7 @@ bool AuthGPG::getGPGValidList(std::list<std::string> &ids)
|
|||||||
bool AuthGPG::getGPGAcceptedList(std::list<std::string> &ids)
|
bool AuthGPG::getGPGAcceptedList(std::list<std::string> &ids)
|
||||||
{
|
{
|
||||||
storeAllKeys_timed();
|
storeAllKeys_timed();
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
for(it = mKeyList.begin(); it != mKeyList.end(); it++)
|
for(it = mKeyList.begin(); it != mKeyList.end(); it++)
|
||||||
{
|
{
|
||||||
@ -1051,7 +1065,7 @@ bool AuthGPG::getGPGAcceptedList(std::list<std::string> &ids)
|
|||||||
bool AuthGPG::getGPGSignedList(std::list<std::string> &ids)
|
bool AuthGPG::getGPGSignedList(std::list<std::string> &ids)
|
||||||
{
|
{
|
||||||
storeAllKeys_timed();
|
storeAllKeys_timed();
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
for(it = mKeyList.begin(); it != mKeyList.end(); it++)
|
for(it = mKeyList.begin(); it != mKeyList.end(); it++)
|
||||||
{
|
{
|
||||||
@ -1066,7 +1080,7 @@ bool AuthGPG::getGPGSignedList(std::list<std::string> &ids)
|
|||||||
bool AuthGPG::isGPGValid(GPG_id id)
|
bool AuthGPG::isGPGValid(GPG_id id)
|
||||||
{
|
{
|
||||||
storeAllKeys_timed();
|
storeAllKeys_timed();
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
if (mKeyList.end() != (it = mKeyList.find(id))) {
|
if (mKeyList.end() != (it = mKeyList.find(id))) {
|
||||||
return (it->second.validLvl >= GPGME_VALIDITY_MARGINAL);
|
return (it->second.validLvl >= GPGME_VALIDITY_MARGINAL);
|
||||||
@ -1079,7 +1093,7 @@ bool AuthGPG::isGPGValid(GPG_id id)
|
|||||||
bool AuthGPG::isGPGId(GPG_id id)
|
bool AuthGPG::isGPGId(GPG_id id)
|
||||||
{
|
{
|
||||||
storeAllKeys_timed();
|
storeAllKeys_timed();
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
if (mKeyList.end() != (it = mKeyList.find(id))) {
|
if (mKeyList.end() != (it = mKeyList.find(id))) {
|
||||||
return true;
|
return true;
|
||||||
@ -1092,7 +1106,7 @@ bool AuthGPG::isGPGId(GPG_id id)
|
|||||||
bool AuthGPG::isGPGSigned(GPG_id id)
|
bool AuthGPG::isGPGSigned(GPG_id id)
|
||||||
{
|
{
|
||||||
storeAllKeys_timed();
|
storeAllKeys_timed();
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
if (mKeyList.end() != (it = mKeyList.find(id)))
|
if (mKeyList.end() != (it = mKeyList.find(id)))
|
||||||
{
|
{
|
||||||
@ -1104,7 +1118,7 @@ bool AuthGPG::isGPGSigned(GPG_id id)
|
|||||||
bool AuthGPG::isGPGAccepted(GPG_id id)
|
bool AuthGPG::isGPGAccepted(GPG_id id)
|
||||||
{
|
{
|
||||||
storeAllKeys_timed();
|
storeAllKeys_timed();
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
if (mKeyList.end() != (it = mKeyList.find(id)))
|
if (mKeyList.end() != (it = mKeyList.find(id)))
|
||||||
{
|
{
|
||||||
@ -1132,7 +1146,7 @@ std::string AuthGPG::SaveCertificateToString(std::string id)
|
|||||||
}
|
}
|
||||||
|
|
||||||
storeAllKeys_timed();
|
storeAllKeys_timed();
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
std::string tmp;
|
std::string tmp;
|
||||||
const char *pattern[] = { NULL, NULL };
|
const char *pattern[] = { NULL, NULL };
|
||||||
@ -1176,16 +1190,17 @@ std::string AuthGPG::SaveCertificateToString(std::string id)
|
|||||||
/* import to GnuPG and other Certificates */
|
/* import to GnuPG and other Certificates */
|
||||||
bool AuthGPG::LoadCertificateFromString(std::string str, std::string &gpg_id)
|
bool AuthGPG::LoadCertificateFromString(std::string str, std::string &gpg_id)
|
||||||
{
|
{
|
||||||
|
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
|
||||||
|
|
||||||
if (str == "") {
|
if (str == "") {
|
||||||
#ifdef GPG_DEBUG
|
#ifdef GPG_DEBUG
|
||||||
std::cerr << "AuthGPG::LoadCertificateFromString() cert is empty string, returning false." << std::endl;
|
std::cerr << "AuthGPG::LoadCertificateFromString() cert is empty string, returning false." << std::endl;
|
||||||
#endif
|
#endif
|
||||||
return false;
|
return false;
|
||||||
}
|
}
|
||||||
|
int imported = 0;
|
||||||
|
std::string fingerprint;
|
||||||
|
|
||||||
|
{
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
//std::string cleancert = cleanUpCertificate(str); disable for p3disc message on windows system. Move the clean cert in p3peers
|
//std::string cleancert = cleanUpCertificate(str); disable for p3disc message on windows system. Move the clean cert in p3peers
|
||||||
std::string cleancert = str;
|
std::string cleancert = str;
|
||||||
|
|
||||||
@ -1203,7 +1218,6 @@ bool AuthGPG::LoadCertificateFromString(std::string str, std::string &gpg_id)
|
|||||||
/* move string data to gpgmeData */
|
/* move string data to gpgmeData */
|
||||||
|
|
||||||
gpgme_set_armor (CTX, 1);
|
gpgme_set_armor (CTX, 1);
|
||||||
|
|
||||||
if (GPG_ERR_NO_ERROR != gpgme_op_import (CTX,gpgmeData))
|
if (GPG_ERR_NO_ERROR != gpgme_op_import (CTX,gpgmeData))
|
||||||
{
|
{
|
||||||
std::cerr << "AuthGPG::LoadCertificateFromString() Error Importing Certificate" << std::endl;
|
std::cerr << "AuthGPG::LoadCertificateFromString() Error Importing Certificate" << std::endl;
|
||||||
@ -1213,23 +1227,24 @@ bool AuthGPG::LoadCertificateFromString(std::string str, std::string &gpg_id)
|
|||||||
|
|
||||||
gpgme_import_result_t res = gpgme_op_import_result(CTX);
|
gpgme_import_result_t res = gpgme_op_import_result(CTX);
|
||||||
|
|
||||||
if(res->imports == NULL)
|
if(res == NULL || res->imports == NULL)
|
||||||
return false ;
|
return false ;
|
||||||
|
|
||||||
std::string fingerprint = std::string(res->imports->fpr);
|
std::string fingerprint = std::string(res->imports->fpr);
|
||||||
#ifdef GPG_DEBUG
|
#ifdef GPG_DEBUG
|
||||||
std::cerr << "AuthGPG::LoadCertificateFromString() Importing considered folowing fpr : " << fingerprint << std::endl;
|
std::cerr << "AuthGPG::LoadCertificateFromString() Importing considered folowing fpr : " << fingerprint << std::endl;
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
int imported = res->imported;
|
imported = res->imported;
|
||||||
|
|
||||||
#ifdef GPG_DEBUG
|
#ifdef GPG_DEBUG
|
||||||
fprintf(stderr, "ImportCertificate(Considered: %d Imported: %d)\n",
|
fprintf(stderr, "ImportCertificate(Considered: %d Imported: %d)\n",
|
||||||
res->considered, res->imported);
|
res->considered, res->imported);
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
/* do we need to delete res??? */
|
/* do we need to delete res??? */
|
||||||
gpgme_data_release (gpgmeData);
|
gpgme_data_release (gpgmeData);
|
||||||
|
}
|
||||||
|
|
||||||
/* extract id(s)! (only if we actually imported one) */
|
/* extract id(s)! (only if we actually imported one) */
|
||||||
if (imported) {
|
if (imported) {
|
||||||
@ -1237,6 +1252,7 @@ bool AuthGPG::LoadCertificateFromString(std::string str, std::string &gpg_id)
|
|||||||
}
|
}
|
||||||
//retrieve the id of the key
|
//retrieve the id of the key
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
for(it = mKeyList.begin(); it != mKeyList.end(); it++)
|
for(it = mKeyList.begin(); it != mKeyList.end(); it++)
|
||||||
{
|
{
|
||||||
if (it->second.fpr == fingerprint)
|
if (it->second.fpr == fingerprint)
|
||||||
@ -1273,10 +1289,9 @@ bool AuthGPG::setAcceptToConnectGPGCertificate(std::string gpg_id, bool acceptan
|
|||||||
std::cerr << "AuthGPG::markGPGCertificateAsFriends(" << gpg_id << ")" << std::endl;
|
std::cerr << "AuthGPG::markGPGCertificateAsFriends(" << gpg_id << ")" << std::endl;
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
|
||||||
|
|
||||||
/* reload stuff now ... */
|
/* reload stuff now ... */
|
||||||
storeAllKeys_locked();
|
storeAllKeys_locked();
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
if (mKeyList.end() == (it = mKeyList.find(gpg_id))) {
|
if (mKeyList.end() == (it = mKeyList.find(gpg_id))) {
|
||||||
return false;
|
return false;
|
||||||
@ -1297,22 +1312,20 @@ bool AuthGPG::SignCertificateLevel0(GPG_id id)
|
|||||||
std::cerr << "AuthGPG::SignCertificat(" << id << ")" << std::endl;
|
std::cerr << "AuthGPG::SignCertificat(" << id << ")" << std::endl;
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
|
||||||
if (1 != privateSignCertificate(id))
|
if (1 != privateSignCertificate(id))
|
||||||
{
|
{
|
||||||
|
storeAllKeys_locked();
|
||||||
return false;
|
return false;
|
||||||
}
|
}
|
||||||
|
|
||||||
/* reload stuff now ... */
|
/* reload stuff now ... */
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
|
||||||
storeAllKeys_locked();
|
storeAllKeys_locked();
|
||||||
|
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
|
|
||||||
bool AuthGPG::RevokeCertificate(std::string id)
|
bool AuthGPG::RevokeCertificate(std::string id)
|
||||||
{
|
{
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
//RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
#ifdef GPG_DEBUG
|
#ifdef GPG_DEBUG
|
||||||
std::cerr << "AuthGPG::RevokeCertificate(" << id << ") not implemented yet" << std::endl;
|
std::cerr << "AuthGPG::RevokeCertificate(" << id << ") not implemented yet" << std::endl;
|
||||||
@ -1326,7 +1339,15 @@ bool AuthGPG::TrustCertificate(std::string id, int trustlvl)
|
|||||||
#ifdef GPG_DEBUG
|
#ifdef GPG_DEBUG
|
||||||
std::cerr << "AuthGPG::TrustCertificate(" << id << ", " << trustlvl << ")" << std::endl;
|
std::cerr << "AuthGPG::TrustCertificate(" << id << ", " << trustlvl << ")" << std::endl;
|
||||||
#endif
|
#endif
|
||||||
return this->privateTrustCertificate(id, trustlvl);
|
if (1 != privateTrustCertificate(id, trustlvl))
|
||||||
|
{
|
||||||
|
storeAllKeys_locked();
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
|
||||||
|
/* reload stuff now ... */
|
||||||
|
storeAllKeys_locked();
|
||||||
|
return true;
|
||||||
}
|
}
|
||||||
|
|
||||||
bool AuthGPG::SignData(std::string input, std::string &sign)
|
bool AuthGPG::SignData(std::string input, std::string &sign)
|
||||||
@ -1346,13 +1367,11 @@ bool AuthGPG::SignDataBin(std::string input, unsigned char *sign, unsigned int *
|
|||||||
}
|
}
|
||||||
|
|
||||||
bool AuthGPG::SignDataBin(const void *data, unsigned int datalen, unsigned char *sign, unsigned int *signlen) {
|
bool AuthGPG::SignDataBin(const void *data, unsigned int datalen, unsigned char *sign, unsigned int *signlen) {
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
|
||||||
return DoOwnSignature_locked(data, datalen,
|
return DoOwnSignature_locked(data, datalen,
|
||||||
sign, signlen);
|
sign, signlen);
|
||||||
}
|
}
|
||||||
|
|
||||||
bool AuthGPG::VerifySignBin(const void *data, uint32_t datalen, unsigned char *sign, unsigned int signlen, std::string withfingerprint) {
|
bool AuthGPG::VerifySignBin(const void *data, uint32_t datalen, unsigned char *sign, unsigned int signlen, std::string withfingerprint) {
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
|
||||||
return VerifySignature_locked(data, datalen,
|
return VerifySignature_locked(data, datalen,
|
||||||
sign, signlen, withfingerprint);
|
sign, signlen, withfingerprint);
|
||||||
}
|
}
|
||||||
@ -1362,11 +1381,11 @@ bool AuthGPG::VerifySignBin(const void *data, uint32_t datalen, unsigned char *s
|
|||||||
|
|
||||||
int AuthGPG::privateSignCertificate(std::string id)
|
int AuthGPG::privateSignCertificate(std::string id)
|
||||||
{
|
{
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
|
||||||
/* The key should be in Others list and not in Peers list ??
|
/* The key should be in Others list and not in Peers list ??
|
||||||
* Once the key is signed, it moves from Others to Peers list ???
|
* Once the key is signed, it moves from Others to Peers list ???
|
||||||
*/
|
*/
|
||||||
|
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
certmap::iterator it;
|
certmap::iterator it;
|
||||||
if (mKeyList.end() == (it = mKeyList.find(id)))
|
if (mKeyList.end() == (it = mKeyList.find(id)))
|
||||||
{
|
{
|
||||||
@ -1390,7 +1409,7 @@ int AuthGPG::privateSignCertificate(std::string id)
|
|||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
delete &stack;
|
||||||
if(GPG_ERR_NO_ERROR != (ERR = gpgme_op_edit(CTX, signKey, keySignCallback, ¶ms, out))) {
|
if(GPG_ERR_NO_ERROR != (ERR = gpgme_op_edit(CTX, signKey, keySignCallback, ¶ms, out))) {
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
@ -1401,7 +1420,7 @@ int AuthGPG::privateSignCertificate(std::string id)
|
|||||||
/* revoke the signature on Certificate */
|
/* revoke the signature on Certificate */
|
||||||
int AuthGPG::privateRevokeCertificate(std::string id)
|
int AuthGPG::privateRevokeCertificate(std::string id)
|
||||||
{
|
{
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
//RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
@ -1414,6 +1433,7 @@ int AuthGPG::privateTrustCertificate(std::string id, int trustlvl)
|
|||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
gpgcert trustCert = mKeyList.find(id)->second;
|
gpgcert trustCert = mKeyList.find(id)->second;
|
||||||
gpgme_key_t trustKey = trustCert.key;
|
gpgme_key_t trustKey = trustCert.key;
|
||||||
std::string trustString;
|
std::string trustString;
|
||||||
@ -1435,9 +1455,6 @@ int AuthGPG::privateTrustCertificate(std::string id, int trustlvl)
|
|||||||
//the key ref has changed, we got to get rid of the old reference.
|
//the key ref has changed, we got to get rid of the old reference.
|
||||||
trustCert.key = NULL;
|
trustCert.key = NULL;
|
||||||
|
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
|
||||||
storeAllKeys_locked();
|
|
||||||
|
|
||||||
return 1;
|
return 1;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -2073,7 +2090,7 @@ std::list<RsItem*> AuthGPG::saveList(bool& cleanup)
|
|||||||
std::cerr << "AuthGPG::saveList() called" << std::endl ;
|
std::cerr << "AuthGPG::saveList() called" << std::endl ;
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
RsStackMutex stack(pgpMtx); /******* LOCKED ******/
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::READ_LOCK); /******* LOCKED ******/
|
||||||
|
|
||||||
cleanup = true ;
|
cleanup = true ;
|
||||||
std::list<RsItem*> lst ;
|
std::list<RsItem*> lst ;
|
||||||
@ -2105,10 +2122,9 @@ bool AuthGPG::loadList(std::list<RsItem*> load)
|
|||||||
std::cerr << "AuthGPG::loadList() Item Count: " << load.size() << std::endl;
|
std::cerr << "AuthGPG::loadList() Item Count: " << load.size() << std::endl;
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
RsStackMutex stack(pgpMtx); /****** STACK LOCK MUTEX *******/
|
|
||||||
|
|
||||||
storeAllKeys_locked();
|
storeAllKeys_locked();
|
||||||
|
|
||||||
|
RsStackReadWriteMutex stack(pgpMtx, RsReadWriteMutex::WRITE_LOCK); /******* LOCKED ******/
|
||||||
/* load the list of accepted gpg keys */
|
/* load the list of accepted gpg keys */
|
||||||
std::list<RsItem *>::iterator it;
|
std::list<RsItem *>::iterator it;
|
||||||
for(it = load.begin(); it != load.end(); it++) {
|
for(it = load.begin(); it != load.end(); it++) {
|
||||||
|
@ -230,7 +230,7 @@ private:
|
|||||||
|
|
||||||
static AuthGPG *instance_gpg; // pointeur vers le singleton
|
static AuthGPG *instance_gpg; // pointeur vers le singleton
|
||||||
|
|
||||||
RsMutex pgpMtx;
|
RsReadWriteMutex pgpMtx;
|
||||||
/* Below is protected via the mutex */
|
/* Below is protected via the mutex */
|
||||||
|
|
||||||
certmap mKeyList;
|
certmap mKeyList;
|
||||||
|
@ -98,6 +98,40 @@ class RsStackMutex
|
|||||||
RsMutex &mMtx;
|
RsMutex &mMtx;
|
||||||
};
|
};
|
||||||
|
|
||||||
|
class RsReadWriteMutex: public RsMutex
|
||||||
|
{
|
||||||
|
public:
|
||||||
|
RsReadWriteMutex(): readLocks(0) { }
|
||||||
|
|
||||||
|
void readLock() { if (readLocks == 0) {lock();} ; readLocks++;}
|
||||||
|
void readUnlock() { if (readLocks == 1) {unlock();} if (readLocks != 0) {readLocks--;} }
|
||||||
|
void writeLock() {lock();}
|
||||||
|
void writeUnlock() {unlock();}
|
||||||
|
|
||||||
|
void rwlock(uint32_t type) { if (type & READ_LOCK) {readLock();} else {writeLock();} }
|
||||||
|
void rwunlock(uint32_t type) { if (type & READ_LOCK) {readUnlock();} else {writeUnlock();} }
|
||||||
|
|
||||||
|
const static uint32_t READ_LOCK = 0x0001;
|
||||||
|
const static uint32_t WRITE_LOCK = 0x0002;
|
||||||
|
|
||||||
|
|
||||||
|
private:
|
||||||
|
int readLocks;
|
||||||
|
};
|
||||||
|
|
||||||
|
class RsStackReadWriteMutex
|
||||||
|
{
|
||||||
|
public:
|
||||||
|
|
||||||
|
RsStackReadWriteMutex(RsReadWriteMutex &mtx): mMtx(mtx) { mMtx.writeLock(); writeLock = true;}
|
||||||
|
RsStackReadWriteMutex(RsReadWriteMutex &mtx, uint32_t type): mMtx(mtx) { if (type == RsReadWriteMutex::READ_LOCK) {mMtx.readLock(); writeLock = false;} else {mMtx.writeLock(); writeLock = true;} }
|
||||||
|
~RsStackReadWriteMutex() { if(writeLock) {mMtx.writeUnlock();} else {mMtx.readUnlock();} }
|
||||||
|
|
||||||
|
private:
|
||||||
|
RsReadWriteMutex &mMtx;
|
||||||
|
bool writeLock;
|
||||||
|
};
|
||||||
|
|
||||||
class RsThread;
|
class RsThread;
|
||||||
|
|
||||||
/* to create a thread! */
|
/* to create a thread! */
|
||||||
|
Loading…
Reference in New Issue
Block a user