Fix a leak, CID #1220437.

[claws.git] / src / plugins / smime / smime.c
diff --git a/src/plugins/smime/smime.c b/src/plugins/smime/smime.c

index 4a29f1dd2f124151a0351c3deab1dc4bd1804d69..823ba373216bd0d95281f8f6a830ce85311a2020 100644 (file)
--- a/src/plugins/smime/smime.c
+++ b/src/plugins/smime/smime.c
@@ -1,7 +1,6 @@
  /* 
   * Claws Mail -- a GTK+ based, lightweight, and fast e-mail client
- * Copyright (C) 1999-2009 Colin Leroy <colin@colino.net> and 
- * the Claws Mail team
+ * Copyright (C) 1999-2016 Colin Leroy and the Claws Mail team
   *
   * This program is free software; you can redistribute it and/or modify
   * it under the terms of the GNU General Public License as published by
@@ -14,12 +13,12 @@
   * GNU General Public License for more details.
   *
   * You should have received a copy of the GNU General Public License
- * along with this program; if not, write to the Free Software
- * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+ * along with this program; if not, see <http://www.gnu.org/licenses/>.
   */
  
  #ifdef HAVE_CONFIG_H
  #  include "config.h"
+#include "claws-features.h"
  #endif
  
  #ifdef USE_GPGME
@@ -37,6 +36,7 @@
  #include "smime.h"
  #include <plugins/pgpcore/sgpgme.h>
  #include <plugins/pgpcore/prefs_gpg.h>
+#include <plugins/pgpcore/pgp_utils.h>
  #include <plugins/pgpcore/passphrase.h>
  
  #include "alertpanel.h"
@@ -63,13 +63,19 @@ static gint smime_check_signature(MimeInfo *mimeinfo);
  static PrivacyDataPGP *smime_new_privacydata()
  {
         PrivacyDataPGP *data;
+       gpgme_ctx_t     ctx;
+
+       if (gpgme_new(&ctx) != GPG_ERR_NO_ERROR) {
+               debug_print("gpgme_new failed\n");
+               return NULL;
+       }
  
         data = g_new0(PrivacyDataPGP, 1);
         data->data.system = &smime_system;
         data->done_sigtest = FALSE;
         data->is_signed = FALSE;
         data->sigstatus = NULL;
-       gpgme_new(&data->ctx);
+       data->ctx = ctx;
         
         return data;
  }
@@ -101,6 +107,8 @@ static gboolean smime_is_signed(MimeInfo *mimeinfo)
                 if (tmpstr && !g_ascii_strcasecmp(tmpstr, "signed-data")) {
                         if (data == NULL) {
                                 data = smime_new_privacydata();
+                               if (!data)
+                                       return FALSE;
                                 mimeinfo->privacy = (PrivacyData *) data;
                         }
  
@@ -142,6 +150,8 @@ static gboolean smime_is_signed(MimeInfo *mimeinfo)
  
         if (data == NULL) {
                 data = smime_new_privacydata();
+               if (!data)
+                       return FALSE;
                 mimeinfo->privacy = (PrivacyData *) data;
         }
         
@@ -194,12 +204,21 @@ static gint smime_check_signature(MimeInfo *mimeinfo)
         const gchar *tmpstr;
         gpgme_data_t sigdata = NULL, textdata = NULL;
         gpgme_error_t err;
+       EncodingType oldenc = ENC_BINARY;
+
         cm_return_val_if_fail(mimeinfo != NULL, -1);
         cm_return_val_if_fail(mimeinfo->privacy != NULL, -1);
+
         data = (PrivacyDataPGP *) mimeinfo->privacy;
-       gpgme_new(&data->ctx);
-       EncodingType oldenc = ENC_BINARY;
-       
+
+       if (!data->ctx) {
+               if ((err = gpgme_new(&data->ctx)) != GPG_ERR_NO_ERROR) {
+                       debug_print("gpgme_new failed: %s\n",
+                               gpgme_strerror(err));
+                       return -1;
+               }
+       }
+
         debug_print("Checking S/MIME signature\n");
  
         err = gpgme_set_protocol(data->ctx, GPGME_PROTOCOL_CMS);
@@ -265,21 +284,22 @@ static gint smime_check_signature(MimeInfo *mimeinfo)
                         if (textstr && len) {
                                 gchar *tmp_file = get_tmp_file();
                                 MimeInfo *newinfo = NULL, *decinfo = NULL, *parentinfo = NULL;
-                               gint childnumber = 0;
-                                                               
+
                                 str_write_to_file(textstr, tmp_file);
                                 newinfo = procmime_scan_file(tmp_file);
                                 decinfo = g_node_first_child(newinfo->node) != NULL ?
                                         g_node_first_child(newinfo->node)->data : NULL;
  
-                               if (decinfo == NULL)
+                               if (decinfo == NULL) {
+                                       g_free(textstr);
                                         return -1;
+                               }
  
                                 g_node_unlink(decinfo->node);
-                               procmime_mimeinfo_free_all(newinfo);
+                               procmime_mimeinfo_free_all(&newinfo);
                                 decinfo->tmp = TRUE;
                                 parentinfo = procmime_mimeinfo_parent(mimeinfo);
-                               childnumber = g_node_child_index(parentinfo->node, mimeinfo);
+
                                 if (parentinfo->type == MIMETYPE_MESSAGE && 
                                     !strcmp(parentinfo->subtype, "rfc822")) {
                                         procmime_decode_content(parentinfo);
@@ -295,6 +315,7 @@ static gint smime_check_signature(MimeInfo *mimeinfo)
                                 g_node_prepend(parentinfo->node, decinfo->node);
                                 return 0;
                         } else {
+                               g_free(textstr);
                                 return -1;
                         }
                 }
@@ -330,10 +351,6 @@ static SignatureStatus smime_get_sig_status(MimeInfo *mimeinfo)
         
         cm_return_val_if_fail(data != NULL, SIGNATURE_INVALID);
  
-       if (data->sigstatus == NULL && 
-           prefs_gpg_get_config()->auto_check_signatures)
-               smime_check_signature(mimeinfo);
-       
         return sgpgme_sigstat_gpgme_to_privacy(data->ctx, data->sigstatus);
  }
  
@@ -343,10 +360,6 @@ static gchar *smime_get_sig_info_short(MimeInfo *mimeinfo)
         
         cm_return_val_if_fail(data != NULL, g_strdup("Error"));
  
-       if (data->sigstatus == NULL && 
-           prefs_gpg_get_config()->auto_check_signatures)
-               smime_check_signature(mimeinfo);
-       
         return sgpgme_sigstat_info_short(data->ctx, data->sigstatus);
  }
  
@@ -356,10 +369,6 @@ static gchar *smime_get_sig_info_full(MimeInfo *mimeinfo)
         
         cm_return_val_if_fail(data != NULL, g_strdup("Error"));
  
-       if (data->sigstatus == NULL && 
-           prefs_gpg_get_config()->auto_check_signatures)
-               smime_check_signature(mimeinfo);
-       
         return sgpgme_sigstat_info_full(data->ctx, data->sigstatus);
  }
  
@@ -497,7 +506,7 @@ static MimeInfo *smime_decrypt(MimeInfo *mimeinfo)
         }
  
         g_node_unlink(decinfo->node);
-       procmime_mimeinfo_free_all(parseinfo);
+       procmime_mimeinfo_free_all(&parseinfo);
  
         decinfo->tmp = TRUE;
  
@@ -506,6 +515,10 @@ static MimeInfo *smime_decrypt(MimeInfo *mimeinfo)
                         data = (PrivacyDataPGP *) decinfo->privacy;
                 } else {
                         data = smime_new_privacydata();
+                       if (!data) {
+                               gpgme_release(ctx);
+                               return NULL;
+                       }
                         decinfo->privacy = (PrivacyData *) data;        
                 }
                 data->done_sigtest = TRUE;
@@ -629,8 +642,10 @@ gboolean smime_sign(MimeInfo *mimeinfo, PrefsAccount *account, const gchar *from
         result = gpgme_op_sign_result(ctx);
         if (result && result->signatures) {
             if (gpgme_get_protocol(ctx) == GPGME_PROTOCOL_OpenPGP) {
-               micalg = g_strdup_printf("PGP-%s", gpgme_hash_algo_name(
-                           result->signatures->hash_algo));
+               gchar *down_algo = g_ascii_strdown(gpgme_hash_algo_name(
+                           result->signatures->hash_algo), -1);
+               micalg = g_strdup_printf("pgp-%s", down_algo);
+               g_free(down_algo);
             } else {
                 micalg = g_strdup(gpgme_hash_algo_name(
                             result->signatures->hash_algo));
@@ -704,37 +719,6 @@ static void smime_inhibit_encrypt_warning(gboolean inhibit)
                 prefs_gpg_remove_skip_encryption_warning(smime_system.id);
  }
  
-static gchar *fp_read_noconv(FILE *fp)
-{
-       GByteArray *array;
-       guchar buf[BUFSIZ];
-       gint n_read;
-       gchar *result = NULL;
-
-       if (!fp)
-               return NULL;
-       array = g_byte_array_new();
-
-       while ((n_read = fread(buf, sizeof(gchar), sizeof(buf), fp)) > 0) {
-               if (n_read < sizeof(buf) && ferror(fp))
-                       break;
-               g_byte_array_append(array, buf, n_read);
-       }
-
-       if (ferror(fp)) {
-               FILE_OP_ERROR("file stream", "fread");
-               g_byte_array_free(array, TRUE);
-               return NULL;
-       }
-
-       buf[0] = '\0';
-       g_byte_array_append(array, buf, 1);
-       result = (gchar *)array->data;
-       g_byte_array_free(array, FALSE);
-       
-       return result;
-}
-
  gboolean smime_encrypt(MimeInfo *mimeinfo, const gchar *encrypt_data)
  {
         MimeInfo *msgcontent, *encmultipart;
@@ -753,15 +737,18 @@ gboolean smime_encrypt(MimeInfo *mimeinfo, const gchar *encrypt_data)
         while (fprs[i] && strlen(fprs[i])) {
                 i++;
         }
-       
-       gpgme_new(&ctx);
+
+       if ((err = gpgme_new(&ctx)) != GPG_ERR_NO_ERROR) {
+               debug_print ("gpgme_new failed: %s\n", gpgme_strerror(err));
+               return FALSE;
+       }
  
         err = gpgme_set_protocol(ctx, GPGME_PROTOCOL_CMS);
  
         if (err) {
                 debug_print ("gpgme_set_protocol failed: %s\n",
                     gpgme_strerror (err));
-               return FALSE;   
+               return FALSE;
         }
  
         kset = g_malloc(sizeof(gpgme_key_t)*(i+1));
@@ -808,7 +795,7 @@ gboolean smime_encrypt(MimeInfo *mimeinfo, const gchar *encrypt_data)
         tmpfile = get_tmp_file();
         fp = g_fopen(tmpfile, "wb");
         if (fp == NULL) {
-               perror("get_tmp_file");
+               FILE_OP_ERROR(tmpfile, "create");
                 g_free(kset);
                 return FALSE;
         }
@@ -819,7 +806,7 @@ gboolean smime_encrypt(MimeInfo *mimeinfo, const gchar *encrypt_data)
         canonicalize_file_replace(tmpfile);
         fp = g_fopen(tmpfile, "rb");
         if (fp == NULL) {
-               perror("get_tmp_file");
+               FILE_OP_ERROR(tmpfile, "open");
                 g_free(kset);
                 return FALSE;
         }
@@ -842,7 +829,7 @@ gboolean smime_encrypt(MimeInfo *mimeinfo, const gchar *encrypt_data)
         enccontent = sgpgme_data_release_and_get_mem(gpgenc, &len);
  
         if (!enccontent) {
-               g_warning("no enccontent\n");
+               g_warning("no enccontent");
                 return FALSE;
         }
  
@@ -854,24 +841,27 @@ gboolean smime_encrypt(MimeInfo *mimeinfo, const gchar *encrypt_data)
                         fclose(fp);
                         claws_unlink(tmpfile);
                         g_free(tmpfile);
+                       g_free(enccontent);
                         return FALSE;
                 }
                 if (fclose(fp) == EOF) {
                         FILE_OP_ERROR(tmpfile, "fclose");
                         claws_unlink(tmpfile);
                         g_free(tmpfile);
+                       g_free(enccontent);
                         return FALSE;
                 }
         } else {
-               perror("get_tmp_file");
+               FILE_OP_ERROR(tmpfile, "create");
                 g_free(tmpfile);
+               g_free(enccontent);
                 return FALSE;
         }
         gpgme_data_release(gpgtext);
         g_free(textstr);
  
         /* create encrypted multipart */
-       procmime_mimeinfo_free_all(msgcontent);
+       procmime_mimeinfo_free_all(&msgcontent);
         g_node_append(mimeinfo->node, encmultipart->node);
  
         encmultipart->content = MIMECONTENT_FILE;
@@ -906,6 +896,7 @@ static PrivacySystem smime_system = {
         smime_encrypt,
         smime_get_encrypt_warning,
         smime_inhibit_encrypt_warning,
+       prefs_gpg_auto_check_signatures,
  };
  
  void smime_init()