Fixed signature parsing

git-svn-id: http://svn.code.sf.net/p/retroshare/code/branches/v0.5-OpenPGP@5164 b45a01b8-16f6-495d-af2f-9b41ad6348cc
2025-05-02 06:06:10 -04:00 · 2012-05-13 19:04:13 +00:00 · 2012-05-13 19:04:13 +00:00 · ad5ca59a7a
commit ad5ca59a7a
parent fcb202f666
7 changed files with 104 additions and 47 deletions
--- a/openpgpsdk/src/accumulate.c
+++ b/openpgpsdk/src/accumulate.c
@ -26,7 +26,7 @@
 #include <openpgpsdk/packet-parse.h>
 #include <openpgpsdk/util.h>
 #include <openpgpsdk/accumulate.h>
-#include <openpgpsdk/keyring_local.h>
+#include "keyring_local.h"
 #include "parse_local.h"
 #include <openpgpsdk/signature.h>
 #include <assert.h>
--- a/openpgpsdk/src/keyring.c
+++ b/openpgpsdk/src/keyring.c
@ -977,6 +977,18 @@ cb_keyring_read(const ops_parser_content_t *content_,
 	return OPS_RELEASE_MEMORY;
 }

+/**
+   \ingroup HighLevel_KeyringList
+
+   \brief Saves keyring to specified file
+
+   \param keyring  Keyring to save
+   \param armoured Save in ascii armoured format
+   \param output filename
+
+   \return ops_true is anything when ok
+*/
+
 ops_boolean_t ops_write_keyring_to_file(const ops_keyring_t *keyring,ops_boolean_t armoured,const char *filename)
 {
 	ops_create_info_t *info;
@ -994,8 +1006,9 @@ ops_boolean_t ops_write_keyring_to_file(const ops_keyring_t *keyring,ops_boolean
 			ops_write_transferable_public_key(&keyring->keys[i],armoured,info) ;
 		else
 		{
-			fprintf(stderr, "ops_write_keyring: not writing key. Algorithm not handled: ") ;
+			fprintf(stdout, "ops_write_keyring: not writing key. Algorithm not handled: ") ;
 			ops_print_public_keydata(&keyring->keys[i]);
+			fprintf(stdout, "\n") ;
 		}

 	ops_writer_close(info);
--- a/openpgpsdk/src/openssl_crypto.c
+++ b/openpgpsdk/src/openssl_crypto.c
@ -420,7 +420,16 @@ ops_boolean_t ops_dsa_verify(const unsigned char *hash,size_t hash_length,
        {
        fprintf(stderr,"ret=%d\n",ret);
        }
-    assert(ret >= 0);
+
+	 if(ret < 0)
+	 {
+		 ERR_load_crypto_strings() ;
+		 unsigned long err = 0 ;
+		 while(err = ERR_get_error())
+			 fprintf(stderr,"DSA_do_verify(): ERR = %ld. lib error:\"%s\", func_error:\"%s\", reason:\"%s\"\n",err,ERR_lib_error_string(err),ERR_func_error_string(err),ERR_reason_error_string(err)) ;
+    	//assert(ret >= 0);
+		return ops_false ;
+	 }

    odsa->p=odsa->q=odsa->g=odsa->pub_key=NULL;
    DSA_free(odsa);
--- a/openpgpsdk/src/signature.c
+++ b/openpgpsdk/src/signature.c
@ -408,6 +408,8 @@ ops_boolean_t ops_check_signature(const unsigned char *hash, unsigned length,
    case OPS_PKA_DSA:
 	ret=ops_dsa_verify(hash, length, &sig->info.signature.dsa,
 			   &signer->key.dsa);
+/*		fprintf(stderr,"Cannot verify DSA signature. skipping.\n") ;
+		 ret = ops_false ; */
 	break;

    case OPS_PKA_RSA:
@ -1237,6 +1239,7 @@ ops_boolean_t ops_sign_file(const char* input_filename,
 \param sig_type Signature type
 \param skey Secret Key
 \param use_armour Write armoured text, if set
+\param include_data Includes the signed data in the output message. If not, creates a detached signature.
 \return New ops_memory_t struct containing signed text
 \note It is the caller's responsibility to call ops_memory_free(me)

--- a/openpgpsdk/src/validate.c
+++ b/openpgpsdk/src/validate.c
@ -146,7 +146,7 @@ static void add_sig_to_valid_list(ops_validate_result_t * result, const ops_sign

 	// copy key ptr to array
 	start=(sizeof *sig) * (result->valid_count-1);
-	copy_signature_info(result->valid_sigs+start,sig);
+	copy_signature_info(&result->valid_sigs[result->valid_count-1],sig);
 }

 static void add_sig_to_invalid_list(ops_validate_result_t * result, const ops_signature_info_t *sig)
@ -166,7 +166,7 @@ static void add_sig_to_invalid_list(ops_validate_result_t * result, const ops_si

 	// copy key ptr to array
 	start=(sizeof *sig) * (result->invalid_count-1);
-	copy_signature_info(result->invalid_sigs+start, sig);
+	copy_signature_info(&result->invalid_sigs[result->invalid_count-1],sig);
 }

 static void add_sig_to_unknown_list(ops_validate_result_t * result, const ops_signature_info_t *sig)
@ -186,7 +186,7 @@ static void add_sig_to_unknown_list(ops_validate_result_t * result, const ops_si

 	// copy key id to array
 	start=OPS_KEY_ID_SIZE * (result->unknown_signer_count-1);
-	copy_signature_info(result->unknown_sigs+start, sig);
+	copy_signature_info(&result->unknown_sigs[result->unknown_signer_count-1],sig);
 }

 	ops_parse_cb_return_t
@ -752,6 +752,17 @@ ops_boolean_t ops_validate_mem(ops_validate_result_t *result, ops_memory_t* mem,
 	return validate_result_status(result);
 }

+/**
+  \ingroup HighLevel_Verify
+  \brief Verifies the signature in a detached signature data packet, given the literal data
+  \param literal_data Literal data that is signed
+  \param literal_data_length length of the literal data that is signed
+  \param signature_packet signature packet in binary PGP format
+  \param signature_packet_length length of the signature packet
+  \param signers_key Public key of the signer to check the signature for.
+  \return ops_true if signature validates successfully; ops_false if not
+ */
+
 ops_boolean_t ops_validate_detached_signature(const void *literal_data, unsigned int literal_data_length, const unsigned char *signature_packet, unsigned int signature_packet_length,const ops_keydata_t *signers_key)
 {
   ops_validate_result_t *result = (ops_validate_result_t*)ops_mallocz(sizeof(ops_validate_result_t));
@ -769,7 +780,7 @@ ops_boolean_t ops_validate_detached_signature(const void *literal_data, unsigned
   ops_keyring_t tmp_keyring ;
   tmp_keyring.nkeys = 1 ;
   tmp_keyring.nkeys_allocated = 1 ;
-   tmp_keyring.keys = signers_key ;
+   tmp_keyring.keys = (ops_keydata_t *)signers_key ;	// this is a const_cast, somehow

   memset(&validate_arg,'\0',sizeof validate_arg);