static GSList *systems = NULL;
+/**
+ * Register a new Privacy System
+ *
+ * \param system The Privacy System that should be registered
+ */
void privacy_register_system(PrivacySystem *system)
{
systems = g_slist_append(systems, system);
}
+/**
+ * Unregister a new Privacy System. The system must not be in
+ * use anymore when it is unregistered.
+ *
+ * \param system The Privacy System that should be unregistered
+ */
void privacy_unregister_system(PrivacySystem *system)
{
systems = g_slist_remove(systems, system);
}
+/**
+ * Free a PrivacyData of a PrivacySystem
+ *
+ * \param privacydata The data to free
+ */
void privacy_free_privacydata(PrivacyData *privacydata)
{
g_return_if_fail(privacydata != NULL);
privacydata->system->free_privacydata(privacydata);
}
+/**
+ * Check if a MimeInfo is signed with one of the available
+ * privacy system. If a privacydata is set in the MimeInfo
+ * it will directory return the return value by the system
+ * set in the privacy data or check all available privacy
+ * systems otherwise.
+ *
+ * \return True if the MimeInfo has a signature
+ */
gboolean privacy_mimeinfo_is_signed(MimeInfo *mimeinfo)
{
GSList *cur;
return FALSE;
}
+/**
+ * Check the signature of a MimeInfo. privacy_mimeinfo_is_signed
+ * should be called before otherwise it is done by this function.
+ * If the MimeInfo is not signed an error code will be returned.
+ *
+ * \return Error code indicating the result of the check,
+ * < 0 if an error occured
+ */
gint privacy_mimeinfo_check_signature(MimeInfo *mimeinfo)
{
PrivacySystem *system;
gboolean privacy_mimeinfo_is_encrypted(MimeInfo *mimeinfo)
{
+ GSList *cur;
g_return_val_if_fail(mimeinfo != NULL, FALSE);
+ for(cur = systems; cur != NULL; cur = g_slist_next(cur)) {
+ PrivacySystem *system = (PrivacySystem *) cur->data;
+
+ if(system->is_encrypted != NULL && system->is_encrypted(mimeinfo))
+ return TRUE;
+ }
+
return FALSE;
}
+
+gint privacy_mimeinfo_decrypt(MimeInfo *mimeinfo)
+{
+ return -1;
+}
}
-static const gchar *
-sig_status_to_string (GpgmeSigStat status)
-{
- const gchar *result;
-
- switch (status) {
- case GPGME_SIG_STAT_NONE:
- result = _("Oops: Signature not verified");
- break;
- case GPGME_SIG_STAT_NOSIG:
- result = _("No signature found");
- break;
- case GPGME_SIG_STAT_GOOD:
- result = _("Good signature");
- break;
- case GPGME_SIG_STAT_GOOD_EXP:
- result = _("Good signature but it has expired");
- break;
- case GPGME_SIG_STAT_GOOD_EXPKEY:
- result = _("Good signature but the key has expired");
- break;
- case GPGME_SIG_STAT_BAD:
- result = _("BAD signature");
- break;
- case GPGME_SIG_STAT_NOKEY:
- result = _("No public key to verify the signature");
- break;
- case GPGME_SIG_STAT_ERROR:
- result = _("Error verifying the signature");
- break;
- case GPGME_SIG_STAT_DIFF:
- result = _("Different results for signatures");
- break;
- default:
- result = _("Error: Unknown status");
- break;
- }
-
- return result;
-}
-
-static const gchar *
-sig_status_with_name (GpgmeSigStat status)
-{
- const gchar *result;
-
- switch (status) {
- case GPGME_SIG_STAT_NONE:
- result = _("Oops: Signature not verified");
- break;
- case GPGME_SIG_STAT_NOSIG:
- result = _("No signature found");
- break;
- case GPGME_SIG_STAT_GOOD:
- result = _("Good signature from \"%s\"");
- break;
- case GPGME_SIG_STAT_GOOD_EXP:
- result = _("Good signature from \"%s\" but it has expired");
- break;
- case GPGME_SIG_STAT_GOOD_EXPKEY:
- result = _("Good signature from \"%s\" but the key has expired");
- break;
- case GPGME_SIG_STAT_BAD:
- result = _("BAD signature from \"%s\"");
- break;
- case GPGME_SIG_STAT_NOKEY:
- result = _("No public key to verify the signature");
- break;
- case GPGME_SIG_STAT_ERROR:
- result = _("Error verifying the signature");
- break;
- case GPGME_SIG_STAT_DIFF:
- result = _("Different results for signatures");
- break;
- default:
- result = _("Error: Unknown status");
- break;
- }
-
- return result;
-}
-
-static void
-sig_status_for_key(GString *str, GpgmeCtx ctx, GpgmeSigStat status,
- GpgmeKey key, const gchar *fpr)
-{
- gint idx = 0;
- const char *uid;
-
- uid = gpgme_key_get_string_attr (key, GPGME_ATTR_USERID, NULL, idx);
- if (uid == NULL) {
- g_string_sprintfa (str, "%s\n",
- sig_status_to_string (status));
- if ((fpr != NULL) && (*fpr != '\0'))
- g_string_sprintfa (str, "Key fingerprint: %s\n", fpr);
- g_string_append (str, _("Cannot find user ID for this key."));
- sig_expiration_check(str, ctx, key, status, 0);
- return;
- }
- g_string_sprintfa (str, sig_status_with_name (status), uid);
- g_string_append (str, "\n");
-
- while (1) {
- uid = gpgme_key_get_string_attr (key, GPGME_ATTR_USERID,
- NULL, ++idx);
- if (uid == NULL)
- break;
- g_string_sprintfa (str, _(" aka \"%s\"\n"),
- uid);
- }
- sig_expiration_check(str, ctx, key, status, 0);
-}
-
-static void
-sig_expiration_check(GString *str, GpgmeCtx ctx, GpgmeKey key,
- GpgmeSigStat status, int idx)
-{
- if (status == GPGME_SIG_STAT_GOOD_EXP)
- sig_expired(str, ctx, idx);
- else if (status == GPGME_SIG_STAT_GOOD_EXPKEY)
- sig_key_expired(str, key, idx);
-}
-
-static void
-sig_expired(GString *str, GpgmeCtx ctx, int idx)
-{
- unsigned long exp_time;
- exp_time = gpgme_get_sig_ulong_attr(ctx, idx, GPGME_ATTR_EXPIRE, 0);
- g_string_sprintfa(str, _("Signature expired %s"), ctime(&exp_time));
-}
-
-static void
-sig_key_expired(GString *str, GpgmeKey key, int idx)
-{
- unsigned long exp_time;
- exp_time = gpgme_key_get_ulong_attr(key, GPGME_ATTR_EXPIRE, NULL, idx);
- g_string_sprintfa(str, _("Key expired %s"), ctime(&exp_time));
-}
-
-static gchar *
-sig_status_full (GpgmeCtx ctx)
-{
- GString *str;
- gint sig_idx = 0;
- GpgmeError err;
- GpgmeSigStat status;
- GpgmeKey key;
- const char *fpr;
- time_t created;
- struct tm *ctime_val;
- char ctime_str[80];
- gchar *retval;
-
- str = g_string_new ("");
-
- fpr = gpgme_get_sig_status (ctx, sig_idx, &status, &created);
- while (fpr != NULL) {
- if (created != 0) {
- ctime_val = localtime (&created);
- strftime (ctime_str, sizeof (ctime_str), "%c",
- ctime_val);
- g_string_sprintfa (str,
- _("Signature made at %s\n"),
- ctime_str);
- }
- err = gpgme_get_sig_key (ctx, sig_idx, &key);
- if (err != 0) {
- g_string_sprintfa (str, "%s\n",
- sig_status_to_string (status));
- if ((fpr != NULL) && (*fpr != '\0'))
- g_string_sprintfa (str,
- _("Key fingerprint: %s\n"),
- fpr);
- } else {
- const char *key_id_str;
-
- sig_status_for_key (str, ctx, status, key, fpr);
- key_id_str = gpgme_key_get_string_attr(key,
- GPGME_ATTR_KEYID, NULL, 0);
- key_id_str += 8;
- g_string_sprintfa (str, _("Key ID: %s\n"), key_id_str);
- gpgme_key_unref (key);
- }
- g_string_append (str, "\n\n");
-
- fpr = gpgme_get_sig_status (ctx, ++sig_idx, &status, &created);
- }
-
- retval = str->str;
- g_string_free (str, FALSE);
- return retval;
-}
-
-static void check_signature (MimeInfo *mimeinfo, MimeInfo *partinfo, FILE *fp)
-{
-#if 0 /* FIXME */
- GpgmeCtx ctx = NULL;
- GpgmeError err;
- GpgmeData sig = NULL, text = NULL;
- GpgmeSigStat status = GPGME_SIG_STAT_NONE;
- GpgmegtkSigStatus statuswindow = NULL;
- const char *result = NULL;
- gchar *tmp_file;
- gint n_exclude_chars = 0;
-
- if (prefs_common.gpg_signature_popup)
- statuswindow = gpgmegtk_sig_status_create ();
-
- err = gpgme_new (&ctx);
- if (err) {
- debug_print ("gpgme_new failed: %s\n", gpgme_strerror (err));
- goto leave;
- }
-
- /* don't include the last empty line.
- It does not belong to the signed text */
- if (mimeinfo->children->length > 0) {
- if (fseek(fp, mimeinfo->children->offset + mimeinfo->children->length - 1,
- SEEK_SET) < 0) {
- perror("fseek");
- goto leave;
- }
- if (fgetc(fp) == '\n') {
- n_exclude_chars++;
- if (mimeinfo->children->length > 1) {
- if (fseek(fp, mimeinfo->children->offset + mimeinfo->children->length - 2,
- SEEK_SET) < 0) {
- perror("fseek");
- goto leave;
- }
- if (fgetc(fp) == '\r')
- n_exclude_chars++;
- }
- }
- }
-
- /* canonicalize the file part. */
- tmp_file = get_tmp_file();
- if (copy_file_part(fp, mimeinfo->children->offset,
- mimeinfo->children->length - n_exclude_chars,
- tmp_file) < 0) {
- g_free(tmp_file);
- goto leave;
- }
- if (canonicalize_file_replace(tmp_file) < 0) {
- unlink(tmp_file);
- g_free(tmp_file);
- goto leave;
- }
-
- err = gpgme_data_new_from_file(&text, tmp_file, 1);
-
- unlink(tmp_file);
- g_free(tmp_file);
-
- if (!err)
- err = gpgme_data_new_from_filepart (&sig, NULL, fp,
- partinfo->offset, partinfo->length);
- if (err) {
- debug_print ("gpgme_data_new_from_filepart failed: %s\n",
- gpgme_strerror (err));
- goto leave;
- }
-
- err = gpgme_op_verify (ctx, sig, text, &status);
- if (err) {
- debug_print ("gpgme_op_verify failed: %s\n", gpgme_strerror (err));
- goto leave;
- }
-
- /* FIXME: check what the heck this sig_status_full stuff is.
- * it should better go into sigstatus.c */
- g_free (partinfo->sigstatus_full);
- partinfo->sigstatus_full = sig_status_full (ctx);
-
-leave:
- result = gpgmegtk_sig_status_to_string(status);
- debug_print("verification status: %s\n", result);
- if (prefs_common.gpg_signature_popup)
- gpgmegtk_sig_status_update (statuswindow, ctx);
-
- g_free (partinfo->sigstatus);
- partinfo->sigstatus = g_strdup (result);
- partinfo->sig_ok = (status == GPGME_SIG_STAT_GOOD);
- partinfo->sig_unknown = (status == GPGME_SIG_STAT_NOKEY);
- partinfo->sig_expired = (status == GPGME_SIG_STAT_GOOD_EXP);
- partinfo->key_expired = (status == GPGME_SIG_STAT_GOOD_EXPKEY);
-
- gpgme_data_release (sig);
- gpgme_data_release (text);
- gpgme_release (ctx);
- if (prefs_common.gpg_signature_popup)
- gpgmegtk_sig_status_destroy (statuswindow);
-#endif
-}
-
/*
* Copy a gpgme data object to a temporary file and
* return this filename
while (gpgme_get_sig_key(ctx, i, &key) != GPGME_EOF) {
time_t sigtime, expiretime;
GpgmeSigStat sigstatus;
- gchar time[64];
- const gchar *keytype, *keyid;
+ gchar timestr[64];
+ const gchar *keytype, *keyid, *uid;
sigtime = gpgme_get_sig_ulong_attr(ctx, i, GPGME_ATTR_CREATED, 0);
- strftime(time, 64, "%c", gmtime(&sigtime));
+ strftime(timestr, 64, "%c", gmtime(&sigtime));
keytype = gpgme_key_get_string_attr(key, GPGME_ATTR_ALGO, NULL, 0);
keyid = gpgme_key_get_string_attr(key, GPGME_ATTR_KEYID, NULL, 0);
g_string_sprintfa(siginfo,
_("Signature made %s using %s key ID %s\n"),
- time, keytype, keyid);
+ timestr, keytype, keyid);
sigstatus = gpgme_get_sig_ulong_attr(ctx, i, GPGME_ATTR_SIG_STATUS, 0);
+ uid = gpgme_key_get_string_attr(key, GPGME_ATTR_USERID, NULL, 0);
switch (sigstatus) {
case GPGME_SIG_STAT_GOOD:
- case GPGME_SIG_STAT_GOOD_EXP:
case GPGME_SIG_STAT_GOOD_EXPKEY:
- {
- gint j = 1;
- const gchar *uid;
-
g_string_sprintfa(siginfo,
_("Good signature from \"%s\"\n"),
- gpgme_key_get_string_attr(key, GPGME_ATTR_USERID, NULL, 0));
+ uid);
+ break;
+ case GPGME_SIG_STAT_GOOD_EXP:
+ g_string_sprintfa(siginfo,
+ _("Expired signature from \"%s\"\n"),
+ uid);
+ break;
+ case GPGME_SIG_STAT_BAD:
+ g_string_sprintfa(siginfo,
+ _("BAD signature from \"%s\"\n"),
+ uid);
+ break;
+ default:
+ break;
+ }
+ if (sigstatus != GPGME_SIG_STAT_BAD) {
+ gint j = 1;
+
while (uid = gpgme_key_get_string_attr(key, GPGME_ATTR_USERID, NULL, j)) {
g_string_sprintfa(siginfo,
_(" aka \"%s\"\n"),
g_string_sprintfa(siginfo,
_("Primary key fingerprint: %s\n"),
gpgme_key_get_string_attr(key, GPGME_ATTR_FPR, NULL, 0));
- break;
- }
- case GPGME_SIG_STAT_BAD:
- g_string_sprintfa(siginfo,
- _("BAD signature from \"%s\"\n"),
- gpgme_key_get_string_attr(key, GPGME_ATTR_USERID, NULL, 0));
- break;
- default:
- break;
}
+
expiretime = gpgme_get_sig_ulong_attr(ctx, i, GPGME_ATTR_EXPIRE, 0);
if (expiretime > 0) {
- strftime(time, 64, "%c", gmtime(&expiretime));
- g_string_sprintfa(siginfo,
- _("Signature expires %s\n"),
- time);
+ const gchar *format;
+
+ strftime(timestr, 64, "%c", gmtime(&expiretime));
+ if (time(NULL) < expiretime)
+ format = _("Signature expires %s\n");
+ else
+ format = _("Signature expired %s\n");
+ g_string_sprintfa(siginfo, format, time);
}
g_string_append(siginfo, "\n");
projects / claws.git / commitdiff