search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Fix error creation and warning
[claws.git] / src / plugins / pgpcore / sgpgme.c
bloba9d7cf1bf936248eaacc8a90aa5836534b7b4472
1 /*
2 * Claws Mail -- a GTK based, lightweight, and fast e-mail client
3 * Copyright (C) 1999-2022 the Claws Mail team
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 3 of the License, or
8 * (at your option) any later version.
9 *
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
14 *
15 * You should have received a copy of the GNU General Public License
16 * along with this program. If not, see <http://www.gnu.org/licenses/>.
17 */
18
19 #ifdef HAVE_CONFIG_H
20 # include "config.h"
21 #include "claws-features.h"
22 #endif
23
24 #ifdef USE_GPGME
25
26 #include <time.h>
27 #include <gtk/gtk.h>
28 #include <gpgme.h>
29 #include <glib.h>
30 #include <glib/gi18n.h>
31 #include <stdio.h>
32 #include <string.h>
33 #include <stdlib.h>
34 #include <errno.h>
35 #include <sys/types.h>
36 #ifndef G_OS_WIN32
37 # include <sys/wait.h>
38 #else
39 # include <pthread.h>
40 # include <windows.h>
41 #endif
42 #if (defined(__DragonFly__) || defined(SOLARIS) || defined (__NetBSD__) || defined (__FreeBSD__) || defined (__OpenBSD__))
43 # include <sys/signal.h>
44 #endif
45 #ifndef G_OS_WIN32
46 #include <sys/mman.h>
47 #endif
48 #if HAVE_LOCALE_H
49 # include <locale.h>
50 #endif
51
52 #include "sgpgme.h"
53 #include "privacy.h"
54 #include "prefs_common.h"
55 #include "utils.h"
56 #include "alertpanel.h"
57 #include "passphrase.h"
58 #include "prefs_gpg.h"
59 #include "account.h"
60 #include "select-keys.h"
61 #include "claws.h"
62 #include "file-utils.h"
63
64 static void sgpgme_disable_all(void)
65 {
66 /* FIXME: set a flag, so that we don't bother the user with failed
67 * gpgme messages */
68 }
69
70 void cm_free_detached_sig_task_data(gpointer data)
71 {
72 DetachedSigTaskData *task_data = (DetachedSigTaskData *)data;
73
74 g_free(task_data->boundary);
75 g_free(task_data->text_filename);
76 g_free(task_data->sig_filename);
77 g_free(task_data);
78 }
79
80 void cm_check_detached_sig(GTask *task,
81 gpointer source_object,
82 gpointer _task_data,
83 GCancellable *cancellable)
84 {
85 DetachedSigTaskData *task_data = (DetachedSigTaskData *)_task_data;
86 GQuark domain;
87 FILE *fp;
88 gpgme_ctx_t ctx;
89 gpgme_error_t err;
90 gpgme_data_t textdata = NULL;
91 gpgme_data_t sigdata = NULL;
92 gpgme_verify_result_t gpgme_res;
93 gchar *textstr;
94 gboolean return_err = TRUE;
95 gboolean cancelled = FALSE;
96 SigCheckTaskResult *task_result = NULL;
97 char err_str[GPGERR_BUFSIZE] = "";
98
99 domain = g_quark_from_static_string("claws_pgpcore");
100
101 err = gpgme_new(&ctx);
102 if (err != GPG_ERR_NO_ERROR) {
103 gpgme_strerror_r(err, err_str, GPGERR_BUFSIZE);
104 g_warning("couldn't initialize GPG context: %s", err_str);
105 goto out;
106 }
107
108 err = gpgme_set_protocol(ctx, task_data->protocol);
109 if (err != GPG_ERR_NO_ERROR) {
110 gpgme_strerror_r(err, err_str, GPGERR_BUFSIZE);
111 g_warning("couldn't set GPG protocol: %s", err_str);
112 goto out_ctx;
113 }
114
115 fp = claws_fopen(task_data->text_filename, "rb");
116 if (fp == NULL) {
117 err = GPG_ERR_GENERAL;
118 g_snprintf(err_str, GPGERR_BUFSIZE, "claws_fopen failed");
119 goto out_ctx;
120 }
121
122 textstr = task_data->get_canonical_content(fp, task_data->boundary);
123 claws_fclose(fp);
124
125 err = gpgme_data_new_from_mem(&textdata, textstr, textstr?strlen(textstr):0, 0);
126 if (err != GPG_ERR_NO_ERROR) {
127 gpgme_strerror_r(err, err_str, GPGERR_BUFSIZE);
128 g_warning("gpgme_data_new_from_mem failed: %s", err_str);
129 goto out_textstr;
130 }
131
132 fp = claws_fopen(task_data->sig_filename, "rb");
133 if (fp == NULL) {
134 err = GPG_ERR_GENERAL;
135 g_snprintf(err_str, GPGERR_BUFSIZE, "claws_fopen failed");
136 goto out_textdata;
137 }
138
139 err = gpgme_data_new_from_filepart(&sigdata, NULL, fp, task_data->sig_offset, task_data->sig_length);
140 claws_fclose(fp);
141 if (err != GPG_ERR_NO_ERROR) {
142 gpgme_strerror_r(err, err_str, GPGERR_BUFSIZE);
143 g_warning("gpgme_data_new_from_filepart failed: %s", err_str);
144 goto out_textdata;
145 }
146
147 if (task_data->sig_encoding == ENC_BASE64) {
148 err = gpgme_data_set_encoding(sigdata, GPGME_DATA_ENCODING_BASE64);
149 if (err != GPG_ERR_NO_ERROR) {
150 gpgme_strerror_r(err, err_str, GPGERR_BUFSIZE);
151 g_warning("gpgme_data_set_encoding failed: %s\n", err_str);
152 goto out_sigdata;
153 }
154 }
155
156 if (g_task_return_error_if_cancelled(task)) {
157 debug_print("task was cancelled, aborting task:%p\n", task);
158 cancelled = TRUE;
159 goto out_sigdata;
160 }
161
162 err = gpgme_op_verify(ctx, sigdata, textdata, NULL);
163 if (err != GPG_ERR_NO_ERROR) {
164 gpgme_strerror_r(err, err_str, GPGERR_BUFSIZE);
165 g_warning("gpgme_op_verify failed: %s\n", err_str);
166 goto out_sigdata;
167 }
168
169 if (g_task_return_error_if_cancelled(task)) {
170 debug_print("task was cancelled, aborting task:%p\n", task);
171 cancelled = TRUE;
172 goto out_sigdata;
173 }
174
175 gpgme_res = gpgme_op_verify_result(ctx);
176 if (gpgme_res && gpgme_res->signatures == NULL) {
177 err = GPG_ERR_SYSTEM_ERROR;
178 g_warning("no signature found");
179 g_snprintf(err_str, GPGERR_BUFSIZE, "No signature found");
180 goto out_sigdata;
181 }
182
183 task_result = g_new0(SigCheckTaskResult, 1);
184 task_result->sig_data = g_new0(SignatureData, 1);
185
186 task_result->sig_data->status = sgpgme_sigstat_gpgme_to_privacy(ctx, gpgme_res);
187 task_result->sig_data->info_short = sgpgme_sigstat_info_short(ctx, gpgme_res);
188 task_result->sig_data->info_full = sgpgme_sigstat_info_full(ctx, gpgme_res);
189
190 return_err = FALSE;
191
192 out_sigdata:
193 gpgme_data_release(sigdata);
194 out_textdata:
195 gpgme_data_release(textdata);
196 out_textstr:
197 g_free(textstr);
198 out_ctx:
199 gpgme_release(ctx);
200 out:
201 if (cancelled)
202 return;
203
204 if (return_err)
205 g_task_return_new_error(task, domain, err, "%s", err_str);
206 else
207 g_task_return_pointer(task, task_result, privacy_free_sig_check_task_result);
208 }
209
210 gint cm_check_detached_sig_async(MimeInfo *mimeinfo,
211 GCancellable *cancellable,
212 GAsyncReadyCallback callback,
213 gpointer user_data,
214 gpgme_protocol_t protocol,
215 gchar *(*get_canonical_content)(FILE *, const gchar *))
216 {
217 GTask *task;
218 DetachedSigTaskData *task_data;
219 MimeInfo *parent;
220 MimeInfo *signature;
221 gchar *boundary;
222
223 parent = procmime_mimeinfo_parent(mimeinfo);
224
225 boundary = g_hash_table_lookup(parent->typeparameters, "boundary");
226 if (boundary == NULL) {
227 debug_print("failed to lookup boundary string\n");
228 return -1;
229 }
230
231 signature = (MimeInfo *) mimeinfo->node->next->data;
232
233 task_data = g_new0(DetachedSigTaskData, 1);
234
235 task_data->protocol = protocol;
236 task_data->boundary = g_strdup(boundary);
237 task_data->text_filename = g_strdup(parent->data.filename);
238 task_data->sig_filename = g_strdup(signature->data.filename);
239 task_data->sig_offset = signature->offset;
240 task_data->sig_length = signature->length;
241 task_data->sig_encoding = signature->encoding_type;
242 task_data->get_canonical_content = get_canonical_content;
243
244 task = g_task_new(NULL, cancellable, callback, user_data);
245 mimeinfo->last_sig_check_task = task;
246
247 g_task_set_task_data(task, task_data, cm_free_detached_sig_task_data);
248 debug_print("creating check sig async task:%p task_data:%p\n", task, task_data);
249 g_task_set_return_on_cancel(task, TRUE);
250 g_task_run_in_thread(task, cm_check_detached_sig);
251 g_object_unref(task);
252
253 return 0;
254 }
255
256 gpgme_verify_result_t sgpgme_verify_signature(gpgme_ctx_t ctx, gpgme_data_t sig,
257 gpgme_data_t plain, gpgme_data_t dummy)
258 {
259 gpgme_verify_result_t status = NULL;
260 gpgme_error_t err;
261
262 if ((err = gpgme_op_verify(ctx, sig, plain, dummy)) != GPG_ERR_NO_ERROR) {
263 debug_print("op_verify err %s\n", gpgme_strerror(err));
264 privacy_set_error("%s", gpgme_strerror(err));
265 return GINT_TO_POINTER(-GPG_ERR_SYSTEM_ERROR);
266 }
267 status = gpgme_op_verify_result(ctx);
268 if (status && status->signatures == NULL) {
269 debug_print("no signature found\n");
270 privacy_set_error(_("No signature found"));
271 return GINT_TO_POINTER(-GPG_ERR_SYSTEM_ERROR);
272 }
273 return status;
274 }
275
276 SignatureStatus sgpgme_sigstat_gpgme_to_privacy(gpgme_ctx_t ctx, gpgme_verify_result_t status)
277 {
278 gpgme_signature_t sig = NULL;
279
280 if (GPOINTER_TO_INT(status) == -GPG_ERR_SYSTEM_ERROR) {
281 debug_print("system error\n");
282 return SIGNATURE_CHECK_FAILED;
283 }
284
285 if (status == NULL) {
286 debug_print("status == NULL\n");
287 return SIGNATURE_UNCHECKED;
288 }
289 sig = status->signatures;
290
291 if (sig == NULL) {
292 debug_print("sig == NULL\n");
293 return SIGNATURE_UNCHECKED;
294 }
295
296 debug_print("err code %d\n", gpg_err_code(sig->status));
297 switch (gpg_err_code(sig->status)) {
298 case GPG_ERR_NO_ERROR:
299 switch (sig->validity) {
300 case GPGME_VALIDITY_NEVER:
301 return SIGNATURE_INVALID;
302 case GPGME_VALIDITY_UNKNOWN:
303 case GPGME_VALIDITY_UNDEFINED:
304 case GPGME_VALIDITY_MARGINAL:
305 case GPGME_VALIDITY_FULL:
306 case GPGME_VALIDITY_ULTIMATE:
307 return SIGNATURE_OK;
308 default:
309 return SIGNATURE_CHECK_FAILED;
310 }
311 case GPG_ERR_SIG_EXPIRED:
312 case GPG_ERR_CERT_REVOKED:
313 return SIGNATURE_WARN;
314 case GPG_ERR_KEY_EXPIRED:
315 return SIGNATURE_KEY_EXPIRED;
316 case GPG_ERR_BAD_SIGNATURE:
317 return SIGNATURE_INVALID;
318 case GPG_ERR_NO_PUBKEY:
319 return SIGNATURE_CHECK_FAILED;
320 default:
321 return SIGNATURE_CHECK_FAILED;
322 }
323 return SIGNATURE_CHECK_FAILED;
324 }
325
326 static const gchar *get_validity_str(unsigned long validity)
327 {
328 switch (gpg_err_code(validity)) {
329 case GPGME_VALIDITY_UNKNOWN:
330 return _("Unknown");
331 case GPGME_VALIDITY_UNDEFINED:
332 return _("Undefined");
333 case GPGME_VALIDITY_NEVER:
334 return _("Never");
335 case GPGME_VALIDITY_MARGINAL:
336 return _("Marginal");
337 case GPGME_VALIDITY_FULL:
338 return _("Full");
339 case GPGME_VALIDITY_ULTIMATE:
340 return _("Ultimate");
341 default:
342 return _("Error");
343 }
344 }
345
346 static const gchar *get_owner_trust_str(unsigned long owner_trust)
347 {
348 switch (gpgme_err_code(owner_trust)) {
349 case GPGME_VALIDITY_NEVER:
350 return _("Untrusted");
351 case GPGME_VALIDITY_MARGINAL:
352 return _("Marginal");
353 case GPGME_VALIDITY_FULL:
354 return _("Full");
355 case GPGME_VALIDITY_ULTIMATE:
356 return _("Ultimate");
357 default:
358 return _("Unknown");
359 }
360 }
361
362 gchar *get_gpg_executable_name()
363 {
364 gpgme_engine_info_t e;
365
366 if (!gpgme_get_engine_info(&e)) {
367 while (e != NULL) {
368 if (e->protocol == GPGME_PROTOCOL_OpenPGP
369 && e->file_name != NULL) {
370 debug_print("Found gpg executable: '%s'\n", e->file_name);
371 return e->file_name;
372 }
373 }
374 }
375
376 return NULL;
377 }
378
379 static gchar *get_gpg_version_string()
380 {
381 gpgme_engine_info_t e;
382
383 if (!gpgme_get_engine_info(&e)) {
384 while (e != NULL) {
385 if (e->protocol == GPGME_PROTOCOL_OpenPGP
386 && e->version != NULL) {
387 debug_print("Got OpenPGP version: '%s'\n", e->version);
388 return e->version;
389 }
390 }
391 }
392
393 return NULL;
394 }
395
396 static gchar *extract_name(const char *uid)
397 {
398 if (uid == NULL)
399 return NULL;
400 if (!strncmp(uid, "CN=", 3)) {
401 gchar *result = g_strdup(uid+3);
402 if (strstr(result, ","))
403 *(strstr(result, ",")) = '\0';
404 return result;
405 } else if (strstr(uid, ",CN=")) {
406 gchar *result = g_strdup(strstr(uid, ",CN=")+4);
407 if (strstr(result, ","))
408 *(strstr(result, ",")) = '\0';
409 return result;
410 } else {
411 return g_strdup(uid);
412 }
413 }
414 gchar *sgpgme_sigstat_info_short(gpgme_ctx_t ctx, gpgme_verify_result_t status)
415 {
416 gpgme_signature_t sig = NULL;
417 gchar *uname = NULL;
418 gpgme_key_t key;
419 gchar *result = NULL;
420 gpgme_error_t err = 0;
421 static gboolean warned = FALSE;
422
423 if (GPOINTER_TO_INT(status) == -GPG_ERR_SYSTEM_ERROR) {
424 return g_strdup_printf(_("The signature can't be checked - %s"), privacy_get_error());
425 }
426
427 if (status == NULL) {
428 return g_strdup(_("The signature has not been checked."));
429 }
430 sig = status->signatures;
431 if (sig == NULL) {
432 return g_strdup(_("The signature has not been checked."));
433 }
434
435 err = gpgme_get_key(ctx, sig->fpr, &key, 0);
436 if (gpg_err_code(err) == GPG_ERR_NO_AGENT) {
437 if (!warned)
438 alertpanel_error(_("PGP Core: Can't get key - no gpg-agent running."));
439 else
440 g_warning("PGP Core: can't get key - no gpg-agent running");
441 warned = TRUE;
442 } else if (gpg_err_code(err) != GPG_ERR_NO_ERROR && gpg_err_code(err) != GPG_ERR_EOF) {
443 return g_strdup_printf(_("The signature can't be checked - %s"),
444 gpgme_strerror(err));
445 }
446
447 if (key)
448 uname = extract_name(key->uids->uid);
449 else
450 uname = g_strdup("<?>");
451
452 switch (gpg_err_code(sig->status)) {
453 case GPG_ERR_NO_ERROR:
454 switch ((key && key->uids) ? key->uids->validity : GPGME_VALIDITY_UNKNOWN) {
455 case GPGME_VALIDITY_ULTIMATE:
456 result = g_strdup_printf(_("Good signature from \"%s\" [ultimate]"), uname);
457 break;
458 case GPGME_VALIDITY_FULL:
459 result = g_strdup_printf(_("Good signature from \"%s\" [full]"), uname);
460 break;
461 case GPGME_VALIDITY_MARGINAL:
462 result = g_strdup_printf(_("Good signature from \"%s\" [marginal]"), uname);
463 break;
464 case GPGME_VALIDITY_UNKNOWN:
465 case GPGME_VALIDITY_UNDEFINED:
466 case GPGME_VALIDITY_NEVER:
467 default:
468 if (key) {
469 result = g_strdup_printf(_("Good signature from \"%s\""), uname);
470 } else {
471 result = g_strdup_printf(_("Key 0x%s not available to verify this signature"), sig->fpr);
472 }
473 break;
474 }
475 break;
476 case GPG_ERR_SIG_EXPIRED:
477 result = g_strdup_printf(_("Expired signature from \"%s\""), uname);
478 break;
479 case GPG_ERR_KEY_EXPIRED:
480 result = g_strdup_printf(_("Good signature from \"%s\", but the key has expired"), uname);
481 break;
482 case GPG_ERR_CERT_REVOKED:
483 result = g_strdup_printf(_("Good signature from \"%s\", but the key has been revoked"), uname);
484 break;
485 case GPG_ERR_BAD_SIGNATURE:
486 result = g_strdup_printf(_("Bad signature from \"%s\""), uname);
487 break;
488 case GPG_ERR_NO_PUBKEY: {
489 result = g_strdup_printf(_("Key 0x%s not available to verify this signature"), sig->fpr);
490 break;
491 }
492 default:
493 result = g_strdup(_("The signature has not been checked"));
494 break;
495 }
496 if (result == NULL)
497 result = g_strdup(_("Error"));
498 g_free(uname);
499
500 if (key)
501 gpgme_key_unref(key);
502
503 return result;
504 }
505
506 gchar *sgpgme_sigstat_info_full(gpgme_ctx_t ctx, gpgme_verify_result_t status)
507 {
508 gint i = 0;
509 gchar *ret;
510 GString *siginfo;
511 gpgme_signature_t sig = NULL;
512
513 siginfo = g_string_sized_new(64);
514 if (status == NULL) {
515 g_string_append_printf(siginfo,
516 _("Error checking signature: no status\n"));
517 goto bail;
518 }
519
520 sig = status->signatures;
521
522 while (sig) {
523 char buf[100];
524 struct tm lt;
525 gpgme_key_t key;
526 gpgme_error_t err;
527 gpgme_user_id_t tmp;
528 const gchar *keytype, *keyid, *uid;
529
530 err = gpgme_get_key(ctx, sig->fpr, &key, 0);
531
532 if (err != GPG_ERR_NO_ERROR) {
533 key = NULL;
534 g_string_append_printf(siginfo,
535 _("Error checking signature: %s\n"),
536 gpgme_strerror(err));
537 goto bail;
538 }
539 if (key) {
540 keytype = gpgme_pubkey_algo_name(
541 key->subkeys->pubkey_algo);
542 keyid = key->subkeys->keyid;
543 uid = key->uids->uid;
544 } else {
545 keytype = "?";
546 keyid = "?";
547 uid = "?";
548 }
549
550 memset(buf, 0, sizeof(buf));
551 fast_strftime(buf, sizeof(buf)-1, prefs_common_get_prefs()->date_format, localtime_r((time_t *)&sig->timestamp, &lt));
552 g_string_append_printf(siginfo,
553 _("Signature made on %s using %s key ID %s\n"),
554 buf, keytype, keyid);
555
556 switch (gpg_err_code(sig->status)) {
557 case GPG_ERR_NO_ERROR:
558 g_string_append_printf(siginfo,
559 _("Good signature from uid \"%s\" (Validity: %s)\n"),
560 uid, get_validity_str((key && key->uids) ? key->uids->validity:GPGME_VALIDITY_UNKNOWN));
561 break;
562 case GPG_ERR_KEY_EXPIRED:
563 g_string_append_printf(siginfo,
564 _("Expired key uid \"%s\"\n"),
565 uid);
566 break;
567 case GPG_ERR_SIG_EXPIRED:
568 g_string_append_printf(siginfo,
569 _("Expired signature from uid \"%s\" (Validity: %s)\n"),
570 uid, get_validity_str((key && key->uids) ? key->uids->validity:GPGME_VALIDITY_UNKNOWN));
571 break;
572 case GPG_ERR_CERT_REVOKED:
573 g_string_append_printf(siginfo,
574 _("Revoked key uid \"%s\"\n"),
575 uid);
576 break;
577 case GPG_ERR_BAD_SIGNATURE:
578 g_string_append_printf(siginfo,
579 _("BAD signature from \"%s\"\n"),
580 uid);
581 break;
582 default:
583 break;
584 }
585 if (sig->status != GPG_ERR_BAD_SIGNATURE) {
586 gint j = 1;
587 if (key) {
588 tmp = key->uids ? key->uids->next : NULL;
589 while (tmp != NULL) {
590 g_string_append_printf(siginfo,
591 _(" uid \"%s\" (Validity: %s)\n"),
592 tmp->uid,
593 tmp->revoked==TRUE?_("Revoked"):get_validity_str(tmp->validity));
594 j++;
595 tmp = tmp->next;
596 }
597 }
598 g_string_append_printf(siginfo,_("Owner Trust: %s\n"),
599 key ? get_owner_trust_str(key->owner_trust) : _("No key!"));
600 g_string_append(siginfo,
601 _("Primary key fingerprint:"));
602 const char* primary_fpr = NULL;
603 if (key && key->subkeys && key->subkeys->fpr)
604 primary_fpr = key->subkeys->fpr;
605 else
606 g_string_append(siginfo, " ?");
607 int idx; /* now pretty-print the fingerprint */
608 for (idx=0; primary_fpr && *primary_fpr!='\0'; idx++, primary_fpr++) {
609 if (idx%4==0)
610 g_string_append_c(siginfo, ' ');
611 if (idx%20==0)
612 g_string_append_c(siginfo, ' ');
613 g_string_append_c(siginfo, (gchar)*primary_fpr);
614 }
615 g_string_append_c(siginfo, '\n');
616
617 if (sig->pka_trust == 1 && sig->pka_address) {
618 g_string_append_printf(siginfo,
619 _("WARNING: Signer's address \"%s\" "
620 "does not match DNS entry\n"),
621 sig->pka_address);
622 }
623 else if (sig->pka_trust == 2 && sig->pka_address) {
624 g_string_append_printf(siginfo,
625 _("Verified signer's address is \"%s\"\n"),
626 sig->pka_address);
627 /* FIXME: Compare the address to the
628 * From: address. */
629 }
630 }
631
632 g_string_append(siginfo, "\n");
633 i++;
634 sig = sig->next;
635 gpgme_key_unref(key);
636 }
637 bail:
638 ret = siginfo->str;
639 g_string_free(siginfo, FALSE);
640 return ret;
641 }
642
643 gpgme_data_t sgpgme_data_from_mimeinfo(MimeInfo *mimeinfo)
644 {
645 gpgme_data_t data = NULL;
646 gpgme_error_t err;
647 FILE *fp = claws_fopen(mimeinfo->data.filename, "rb");
648
649 if (!fp)
650 return NULL;
651
652 err = gpgme_data_new_from_filepart(&data, NULL, fp, mimeinfo->offset, mimeinfo->length);
653 claws_fclose(fp);
654
655 debug_print("data %p (%d %d)\n", (void *)&data, mimeinfo->offset, mimeinfo->length);
656 if (err) {
657 debug_print ("gpgme_data_new_from_file failed: %s\n",
658 gpgme_strerror (err));
659 privacy_set_error(_("Couldn't get data from message, %s"), gpgme_strerror(err));
660 return NULL;
661 }
662 return data;
663 }
664
665 gpgme_data_t sgpgme_decrypt_verify(gpgme_data_t cipher, gpgme_verify_result_t *status, gpgme_ctx_t ctx)
666 {
667 struct passphrase_cb_info_s info;
668 gpgme_data_t plain;
669 gpgme_error_t err;
670
671 memset (&info, 0, sizeof info);
672
673 if ((err = gpgme_data_new(&plain)) != GPG_ERR_NO_ERROR) {
674 gpgme_release(ctx);
675 privacy_set_error(_("Couldn't initialize data, %s"), gpgme_strerror(err));
676 return NULL;
677 }
678
679 if (gpgme_get_protocol(ctx) == GPGME_PROTOCOL_OpenPGP) {
680 prefs_gpg_enable_agent(prefs_gpg_get_config()->use_gpg_agent);
681 if (!g_getenv("GPG_AGENT_INFO") || !prefs_gpg_get_config()->use_gpg_agent) {
682 info.c = ctx;
683 gpgme_set_passphrase_cb (ctx, gpgmegtk_passphrase_cb, &info);
684 }
685 } else {
686 prefs_gpg_enable_agent(TRUE);
687 info.c = ctx;
688 gpgme_set_passphrase_cb (ctx, NULL, &info);
689 }
690
691
692 if (gpgme_get_protocol(ctx) == GPGME_PROTOCOL_OpenPGP) {
693 err = gpgme_op_decrypt_verify(ctx, cipher, plain);
694 if (err != GPG_ERR_NO_ERROR) {
695 debug_print("can't decrypt (%s)\n", gpgme_strerror(err));
696 privacy_set_error("%s", gpgme_strerror(err));
697 gpgmegtk_free_passphrase();
698 gpgme_data_release(plain);
699 return NULL;
700 }
701
702 err = cm_gpgme_data_rewind(plain);
703 if (err) {
704 debug_print("can't seek (%d %d %s)\n", err, errno, g_strerror(errno));
705 }
706
707 debug_print("decrypted.\n");
708 *status = gpgme_op_verify_result (ctx);
709 } else {
710 err = gpgme_op_decrypt(ctx, cipher, plain);
711 if (err != GPG_ERR_NO_ERROR) {
712 debug_print("can't decrypt (%s)\n", gpgme_strerror(err));
713 privacy_set_error("%s", gpgme_strerror(err));
714 gpgmegtk_free_passphrase();
715 gpgme_data_release(plain);
716 return NULL;
717 }
718
719 err = cm_gpgme_data_rewind(plain);
720 if (err) {
721 debug_print("can't seek (%d %d %s)\n", err, errno, g_strerror(errno));
722 }
723
724 debug_print("decrypted.\n");
725 *status = gpgme_op_verify_result (ctx);
726 }
727 return plain;
728 }
729
730 gchar *sgpgme_get_encrypt_data(GSList *recp_names, gpgme_protocol_t proto)
731 {
732 SelectionResult result = KEY_SELECTION_CANCEL;
733 gpgme_key_t *keys = gpgmegtk_recipient_selection(recp_names, &result,
734 proto);
735 gchar *ret = NULL;
736 int i = 0;
737
738 if (!keys) {
739 if (result == KEY_SELECTION_DONT)
740 return g_strdup("_DONT_ENCRYPT_");
741 else
742 return NULL;
743 }
744 while (keys[i]) {
745 gpgme_subkey_t skey = keys[i]->subkeys;
746 gchar *fpr = skey->fpr;
747 gchar *tmp = NULL;
748 debug_print("adding %s\n", fpr);
749 tmp = g_strconcat(ret ? ret : "", fpr, " ", NULL);
750 if (ret)
751 g_free(ret);
752 ret = tmp;
753 i++;
754 }
755 g_free(keys);
756 return ret;
757 }
758
759 gboolean sgpgme_setup_signers(gpgme_ctx_t ctx, PrefsAccount *account,
760 const gchar *from_addr)
761 {
762 GPGAccountConfig *config;
763 const gchar *signer_addr = account->address;
764 SignKeyType sk;
765 gchar *skid;
766 gboolean smime = FALSE;
767
768 gpgme_signers_clear(ctx);
769
770 if (gpgme_get_protocol(ctx) == GPGME_PROTOCOL_CMS)
771 smime = TRUE;
772
773 if (from_addr)
774 signer_addr = from_addr;
775 config = prefs_gpg_account_get_config(account);
776
777 if(smime) {
778 debug_print("sgpgme_setup_signers: S/MIME protocol\n");
779 sk = config->smime_sign_key;
780 skid = config->smime_sign_key_id;
781 } else {
782 debug_print("sgpgme_setup_signers: OpenPGP protocol\n");
783 sk = config->sign_key;
784 skid = config->sign_key_id;
785 }
786
787 switch(sk) {
788 case SIGN_KEY_DEFAULT:
789 debug_print("using default gnupg key\n");
790 break;
791 case SIGN_KEY_BY_FROM:
792 debug_print("using key for %s\n", signer_addr);
793 break;
794 case SIGN_KEY_CUSTOM:
795 debug_print("using key for %s\n", skid);
796 break;
797 }
798
799 if (sk != SIGN_KEY_DEFAULT) {
800 const gchar *keyid;
801 gpgme_key_t key, found_key;
802 gpgme_error_t err;
803
804 if (sk == SIGN_KEY_BY_FROM)
805 keyid = signer_addr;
806 else if (sk == SIGN_KEY_CUSTOM)
807 keyid = skid;
808 else
809 goto bail;
810
811 found_key = NULL;
812 /* Look for any key, not just private ones, or GPGMe doesn't
813 * correctly set the revoked flag. */
814 err = gpgme_op_keylist_start(ctx, keyid, 0);
815 while (err == 0) {
816 if ((err = gpgme_op_keylist_next(ctx, &key)) != 0)
817 break;
818
819 if (key == NULL)
820 continue;
821
822 if (!key->can_sign) {
823 debug_print("skipping a key, can not be used for signing\n");
824 gpgme_key_unref(key);
825 continue;
826 }
827
828 if (key->protocol != gpgme_get_protocol(ctx)) {
829 debug_print("skipping a key (wrong protocol %d)\n", key->protocol);
830 gpgme_key_unref(key);
831 continue;
832 }
833
834 if (key->expired) {
835 debug_print("skipping a key, expired\n");
836 gpgme_key_unref(key);
837 continue;
838 }
839 if (key->revoked) {
840 debug_print("skipping a key, revoked\n");
841 gpgme_key_unref(key);
842 continue;
843 }
844 if (key->disabled) {
845 debug_print("skipping a key, disabled\n");
846 gpgme_key_unref(key);
847 continue;
848 }
849
850 if (found_key != NULL) {
851 gpgme_key_unref(key);
852 gpgme_op_keylist_end(ctx);
853 g_warning("ambiguous specification of secret key '%s'", keyid);
854 privacy_set_error(_("Secret key specification is ambiguous"));
855 goto bail;
856 }
857
858 found_key = key;
859 }
860 gpgme_op_keylist_end(ctx);
861
862 if (found_key == NULL) {
863 g_warning("setup_signers start: %s", gpgme_strerror(err));
864 privacy_set_error(_("Secret key not found (%s)"), gpgme_strerror(err));
865 goto bail;
866 }
867
868 err = gpgme_signers_add(ctx, found_key);
869 debug_print("got key (proto %d (pgp %d, smime %d).\n",
870 found_key->protocol, GPGME_PROTOCOL_OpenPGP,
871 GPGME_PROTOCOL_CMS);
872 gpgme_key_unref(found_key);
873
874 if (err) {
875 g_warning("error adding secret key: %s",
876 gpgme_strerror(err));
877 privacy_set_error(_("Error setting secret key: %s"),
878 gpgme_strerror(err));
879 goto bail;
880 }
881 }
882
883 prefs_gpg_account_free_config(config);
884
885 return TRUE;
886 bail:
887 prefs_gpg_account_free_config(config);
888 return FALSE;
889 }
890
891 void sgpgme_init()
892 {
893 gchar *ctype_locale = NULL, *messages_locale = NULL;
894 gchar *ctype_utf8_locale = NULL, *messages_utf8_locale = NULL;
895 gpgme_error_t err = 0;
896
897 gpgme_engine_info_t engineInfo;
898
899 if (strcmp(prefs_gpg_get_config()->gpg_path, "") != 0
900 && access(prefs_gpg_get_config()->gpg_path, X_OK) != -1) {
901 err = gpgme_set_engine_info(GPGME_PROTOCOL_OpenPGP, prefs_gpg_get_config()->gpg_path, NULL);
902 if (err != GPG_ERR_NO_ERROR)
903 g_warning("failed to set crypto engine configuration: %s", gpgme_strerror(err));
904 }
905
906 if (gpgme_check_version("1.0.0")) {
907 #ifdef LC_CTYPE
908 debug_print("setting gpgme CTYPE locale\n");
909 #ifdef G_OS_WIN32
910 ctype_locale = g_win32_getlocale();
911 #else
912 ctype_locale = g_strdup(setlocale(LC_CTYPE, NULL));
913 #endif
914 if (ctype_locale) {
915 debug_print("setting gpgme CTYPE locale to: %s\n", ctype_locale);
916 if (strchr(ctype_locale, '.'))
917 *(strchr(ctype_locale, '.')) = '\0';
918 else if (strchr(ctype_locale, '@'))
919 *(strchr(ctype_locale, '@')) = '\0';
920 ctype_utf8_locale = g_strconcat(ctype_locale, ".UTF-8", NULL);
921
922 debug_print("setting gpgme locale to UTF8: %s\n", ctype_utf8_locale ? ctype_utf8_locale : "NULL");
923 gpgme_set_locale(NULL, LC_CTYPE, ctype_utf8_locale);
924
925 debug_print("done\n");
926 g_free(ctype_utf8_locale);
927 g_free(ctype_locale);
928 } else {
929 debug_print("couldn't set gpgme CTYPE locale\n");
930 }
931 #endif
932 #ifdef LC_MESSAGES
933 debug_print("setting gpgme MESSAGES locale\n");
934 #ifdef G_OS_WIN32
935 messages_locale = g_win32_getlocale();
936 #else
937 messages_locale = g_strdup(setlocale(LC_MESSAGES, NULL));
938 #endif
939 if (messages_locale) {
940 debug_print("setting gpgme MESSAGES locale to: %s\n", messages_locale);
941 if (strchr(messages_locale, '.'))
942 *(strchr(messages_locale, '.')) = '\0';
943 else if (strchr(messages_locale, '@'))
944 *(strchr(messages_locale, '@')) = '\0';
945 messages_utf8_locale = g_strconcat(messages_locale, ".UTF-8", NULL);
946 debug_print("setting gpgme locale to UTF8: %s\n", messages_utf8_locale ? messages_utf8_locale : "NULL");
947
948 gpgme_set_locale(NULL, LC_MESSAGES, messages_utf8_locale);
949
950 debug_print("done\n");
951 g_free(messages_utf8_locale);
952 g_free(messages_locale);
953 } else {
954 debug_print("couldn't set gpgme MESSAGES locale\n");
955 }
956 #endif
957 if (!gpgme_get_engine_info(&engineInfo)) {
958 while (engineInfo) {
959 debug_print("GpgME Protocol: %s\n"
960 "Version: %s (req %s)\n"
961 "Executable: %s\n",
962 gpgme_get_protocol_name(engineInfo->protocol) ? gpgme_get_protocol_name(engineInfo->protocol):"???",
963 engineInfo->version ? engineInfo->version:"???",
964 engineInfo->req_version ? engineInfo->req_version:"???",
965 engineInfo->file_name ? engineInfo->file_name:"???");
966 if (engineInfo->protocol == GPGME_PROTOCOL_OpenPGP
967 && gpgme_engine_check_version(engineInfo->protocol) !=
968 GPG_ERR_NO_ERROR) {
969 if (engineInfo->file_name && !engineInfo->version) {
970 alertpanel_error(_("Gpgme protocol '%s' is unusable: "
971 "Engine '%s' isn't installed properly."),
972 gpgme_get_protocol_name(engineInfo->protocol),
973 engineInfo->file_name);
974 } else if (engineInfo->file_name && engineInfo->version
975 && engineInfo->req_version) {
976 alertpanel_error(_("Gpgme protocol '%s' is unusable: "
977 "Engine '%s' version %s is installed, "
978 "but version %s is required.\n"),
979 gpgme_get_protocol_name(engineInfo->protocol),
980 engineInfo->file_name,
981 engineInfo->version,
982 engineInfo->req_version);
983 } else {
984 alertpanel_error(_("Gpgme protocol '%s' is unusable "
985 "(unknown problem)"),
986 gpgme_get_protocol_name(engineInfo->protocol));
987 }
988 }
989 engineInfo = engineInfo->next;
990 }
991 }
992 } else {
993 sgpgme_disable_all();
994
995 if (prefs_gpg_get_config()->gpg_warning) {
996 AlertValue val;
997
998 val = alertpanel_full
999 (_("Warning"),
1000 _("GnuPG is not installed properly, or needs "
1001 "to be upgraded.\n"
1002 "OpenPGP support disabled."),
1003 "window-close", _("_Close"), NULL, NULL, NULL, NULL,
1004 ALERTFOCUS_FIRST, TRUE, NULL, ALERT_WARNING);
1005 if (val & G_ALERTDISABLE)
1006 prefs_gpg_get_config()->gpg_warning = FALSE;
1007 }
1008 }
1009 }
1010
1011 void sgpgme_done()
1012 {
1013 gpgmegtk_free_passphrase();
1014 }
1015
1016 #ifdef G_OS_WIN32
1017 struct _ExportCtx {
1018 gboolean done;
1019 gchar *cmd;
1020 DWORD exitcode;
1021 };
1022
1023 static void *_export_threaded(void *arg)
1024 {
1025 struct _ExportCtx *ctx = (struct _ExportCtx *)arg;
1026 gboolean result;
1027
1028 PROCESS_INFORMATION pi = {0};
1029 STARTUPINFO si = {0};
1030
1031 result = CreateProcess(NULL, ctx->cmd, NULL, NULL, FALSE,
1032 NORMAL_PRIORITY_CLASS | CREATE_NO_WINDOW,
1033 NULL, NULL, &si, &pi);
1034
1035 if (!result) {
1036 debug_print("Couldn't execute '%s'\n", ctx->cmd);
1037 } else {
1038 WaitForSingleObject(pi.hProcess, 10000);
1039 result = GetExitCodeProcess(pi.hProcess, &ctx->exitcode);
1040 if (ctx->exitcode == STILL_ACTIVE) {
1041 debug_print("Process still running, terminating it.\n");
1042 TerminateProcess(pi.hProcess, 255);
1043 }
1044
1045 CloseHandle(pi.hProcess);
1046 CloseHandle(pi.hThread);
1047
1048 if (!result) {
1049 debug_print("Process executed, but we couldn't get its exit code (huh?)\n");
1050 }
1051 }
1052
1053 ctx->done = TRUE;
1054 return NULL;
1055 }
1056 #endif
1057
1058 void sgpgme_create_secret_key(PrefsAccount *account, gboolean ask_create)
1059 {
1060 AlertValue val = G_ALERTDEFAULT;
1061 gchar *key_parms = NULL;
1062 gchar *name = NULL;
1063 gchar *email = NULL;
1064 gchar *passphrase = NULL, *passphrase_second = NULL;
1065 gint prev_bad = 0;
1066 gchar *tmp = NULL, *gpgver;
1067 gpgme_error_t err = 0;
1068 gpgme_ctx_t ctx;
1069 GtkWidget *window = NULL;
1070 gpgme_genkey_result_t key;
1071 gboolean exported = FALSE;
1072
1073 if (account == NULL)
1074 account = account_get_default();
1075
1076 if (account->address == NULL) {
1077 alertpanel_error(_("You have to save the account's information with \"OK\" "
1078 "before being able to generate a key pair.\n"));
1079 return;
1080 }
1081 if (ask_create) {
1082 val = alertpanel(_("No PGP key found"),
1083 _("Claws Mail did not find a secret PGP key, "
1084 "which means that you won't be able to sign "
1085 "emails or receive encrypted emails.\n"
1086 "Do you want to create a new key pair now?"),
1087 NULL, _("_No"), NULL, _("_Yes"), NULL, NULL,
1088 ALERTFOCUS_SECOND);
1089 if (val == G_ALERTDEFAULT) {
1090 return;
1091 }
1092 }
1093
1094 if (account->name) {
1095 name = g_strdup(account->name);
1096 } else {
1097 name = g_strdup(account->address);
1098 }
1099 email = g_strdup(account->address);
1100 tmp = g_strdup_printf("%s <%s>", account->name?account->name:account->address, account->address);
1101 gpgver = get_gpg_version_string();
1102 if (gpgver == NULL || !strncmp(gpgver, "1.", 2)) {
1103 debug_print("Using gpg 1.x, using builtin passphrase dialog.\n");
1104 again:
1105 passphrase = passphrase_mbox(tmp, NULL, prev_bad, 1);
1106 if (passphrase == NULL) {
1107 g_free(tmp);
1108 g_free(email);
1109 g_free(name);
1110 return;
1111 }
1112 passphrase_second = passphrase_mbox(tmp, NULL, 0, 2);
1113 if (passphrase_second == NULL) {
1114 g_free(tmp);
1115 g_free(email);
1116 if (passphrase != NULL) {
1117 memset(passphrase, 0, strlen(passphrase));
1118 g_free(passphrase);
1119 }
1120 g_free(name);
1121 return;
1122 }
1123 if (strcmp(passphrase, passphrase_second)) {
1124 if (passphrase != NULL) {
1125 memset(passphrase, 0, strlen(passphrase));
1126 g_free(passphrase);
1127 }
1128 if (passphrase_second != NULL) {
1129 memset(passphrase_second, 0, strlen(passphrase_second));
1130 g_free(passphrase_second);
1131 }
1132 prev_bad = 1;
1133 goto again;
1134 }
1135 }
1136
1137 key_parms = g_strdup_printf("<GnupgKeyParms format=\"internal\">\n"
1138 "Key-Type: RSA\n"
1139 "Key-Length: 2048\n"
1140 "Subkey-Type: RSA\n"
1141 "Subkey-Length: 2048\n"
1142 "Name-Real: %s\n"
1143 "Name-Email: %s\n"
1144 "Expire-Date: 0\n"
1145 "%s%s%s"
1146 "</GnupgKeyParms>\n",
1147 name, email,
1148 passphrase?"Passphrase: ":"",
1149 passphrase?passphrase:"",
1150 passphrase?"\n":"");
1151 #ifndef G_PLATFORM_WIN32
1152 if (passphrase &&
1153 mlock(passphrase, strlen(passphrase)) == -1)
1154 debug_print("couldn't lock passphrase\n");
1155 if (passphrase_second &&
1156 mlock(passphrase_second, strlen(passphrase_second)) == -1)
1157 debug_print("couldn't lock passphrase2\n");
1158 #endif
1159 g_free(tmp);
1160 g_free(email);
1161 g_free(name);
1162 if (passphrase_second != NULL) {
1163 memset(passphrase_second, 0, strlen(passphrase_second));
1164 g_free(passphrase_second);
1165 }
1166 if (passphrase != NULL) {
1167 memset(passphrase, 0, strlen(passphrase));
1168 g_free(passphrase);
1169 }
1170
1171 err = gpgme_new (&ctx);
1172 if (err) {
1173 alertpanel_error(_("Couldn't generate a new key pair: %s"),
1174 gpgme_strerror(err));
1175 if (key_parms != NULL) {
1176 memset(key_parms, 0, strlen(key_parms));
1177 g_free(key_parms);
1178 }
1179 return;
1180 }
1181
1182
1183 window = label_window_create(_("Generating your new key pair... Please move the mouse "
1184 "around to help generate entropy..."));
1185
1186 err = gpgme_op_genkey(ctx, key_parms, NULL, NULL);
1187 if (key_parms != NULL) {
1188 memset(key_parms, 0, strlen(key_parms));
1189 g_free(key_parms);
1190 }
1191
1192 label_window_destroy(window);
1193
1194 if (err) {
1195 alertpanel_error(_("Couldn't generate a new key pair: %s"), gpgme_strerror(err));
1196 gpgme_release(ctx);
1197 return;
1198 }
1199 key = gpgme_op_genkey_result(ctx);
1200 if (key == NULL) {
1201 alertpanel_error(_("Couldn't generate a new key pair: unknown error"));
1202 gpgme_release(ctx);
1203 return;
1204 } else {
1205 gchar *buf = g_strdup_printf(_("Your new key pair has been generated. "
1206 "Its fingerprint is:\n%s\n\nDo you want to export it "
1207 "to a keyserver?"),
1208 key->fpr ? key->fpr:"null");
1209 AlertValue val = alertpanel(_("Key generated"), buf,
1210 NULL, _("_No"), NULL, _("_Yes"), NULL, NULL, ALERTFOCUS_SECOND);
1211 g_free(buf);
1212 if (val == G_ALERTALTERNATE) {
1213 gchar *gpgbin = get_gpg_executable_name();
1214 gchar *cmd = g_strdup_printf("\"%s\" --batch --no-tty --send-keys %s",
1215 (gpgbin ? gpgbin : "gpg"), key->fpr);
1216 debug_print("Executing command: %s\n", cmd);
1217
1218 #ifndef G_OS_WIN32
1219 int res = 0;
1220 pid_t pid = 0;
1221 pid = fork();
1222 if (pid == -1) {
1223 res = -1;
1224 } else if (pid == 0) {
1225 /* son */
1226 res = system(cmd);
1227 res = WEXITSTATUS(res);
1228 _exit(res);
1229 } else {
1230 int status = 0;
1231 time_t start_wait = time(NULL);
1232 res = -1;
1233 do {
1234 if (waitpid(pid, &status, WNOHANG) == 0 || !WIFEXITED(status)) {
1235 usleep(200000);
1236 } else {
1237 res = WEXITSTATUS(status);
1238 break;
1239 }
1240 if (time(NULL) - start_wait > 5) {
1241 debug_print("SIGTERM'ing gpg\n");
1242 kill(pid, SIGTERM);
1243 }
1244 if (time(NULL) - start_wait > 6) {
1245 debug_print("SIGKILL'ing gpg\n");
1246 kill(pid, SIGKILL);
1247 break;
1248 }
1249 } while(1);
1250 }
1251
1252 if (res == 0)
1253 exported = TRUE;
1254 #else
1255 /* We need to call gpg in a separate thread, so that waiting for
1256 * it to finish does not block the UI. */
1257 pthread_t pt;
1258 struct _ExportCtx *ectx = malloc(sizeof(struct _ExportCtx));
1259
1260 ectx->done = FALSE;
1261 ectx->exitcode = STILL_ACTIVE;
1262 ectx->cmd = cmd;
1263
1264 if (pthread_create(&pt, NULL,
1265 _export_threaded, (void *)ectx) != 0) {
1266 debug_print("Couldn't create thread, continuing unthreaded.\n");
1267 _export_threaded(ctx);
1268 } else {
1269 debug_print("Thread created, waiting for it to finish...\n");
1270 while (!ectx->done)
1271 claws_do_idle();
1272 }
1273
1274 debug_print("Thread finished.\n");
1275 pthread_join(pt, NULL);
1276
1277 if (ectx->exitcode == 0)
1278 exported = TRUE;
1279
1280 g_free(ectx);
1281 #endif
1282 g_free(cmd);
1283
1284 if (exported) {
1285 alertpanel_notice(_("Key exported."));
1286 } else {
1287 alertpanel_error(_("Couldn't export key."));
1288 }
1289 }
1290 }
1291 gpgme_release(ctx);
1292 }
1293
1294 gboolean sgpgme_has_secret_key(void)
1295 {
1296 gpgme_error_t err = 0;
1297 gpgme_ctx_t ctx;
1298 gpgme_key_t key;
1299
1300 err = gpgme_new (&ctx);
1301 if (err) {
1302 debug_print("err : %s\n", gpgme_strerror(err));
1303 return TRUE;
1304 }
1305 check_again:
1306 err = gpgme_op_keylist_start(ctx, NULL, TRUE);
1307 if (!err) {
1308 err = gpgme_op_keylist_next(ctx, &key);
1309 gpgme_key_unref(key); /* We're not interested in the key itself. */
1310 }
1311 gpgme_op_keylist_end(ctx);
1312 if (gpg_err_code(err) == GPG_ERR_EOF) {
1313 if (gpgme_get_protocol(ctx) != GPGME_PROTOCOL_CMS) {
1314 gpgme_set_protocol(ctx, GPGME_PROTOCOL_CMS);
1315 goto check_again;
1316 }
1317 gpgme_release(ctx);
1318 return FALSE;
1319 } else {
1320 gpgme_release(ctx);
1321 return TRUE;
1322 }
1323 }
1324
1325 void sgpgme_check_create_key(void)
1326 {
1327 if (prefs_gpg_get_config()->gpg_ask_create_key &&
1328 !sgpgme_has_secret_key()) {
1329 sgpgme_create_secret_key(NULL, TRUE);
1330 }
1331
1332 prefs_gpg_get_config()->gpg_ask_create_key = FALSE;
1333 prefs_gpg_save_config();
1334 }
1335
1336 void *sgpgme_data_release_and_get_mem(gpgme_data_t data, size_t *len)
1337 {
1338 char buf[BUFSIZ];
1339 void *result = NULL;
1340 ssize_t r = 0;
1341 size_t w = 0;
1342
1343 cm_return_val_if_fail(data != NULL, NULL);
1344 cm_return_val_if_fail(len != NULL, NULL);
1345
1346 /* I know it's deprecated, but we don't compile with _LARGEFILE */
1347 cm_gpgme_data_rewind(data);
1348 while ((r = gpgme_data_read(data, buf, BUFSIZ)) > 0) {
1349 void *rresult = realloc(result, r + w);
1350 if (rresult == NULL) {
1351 g_warning("can't allocate memory");
1352 if (result != NULL)
1353 free(result);
1354 return NULL;
1355 }
1356 result = rresult;
1357 memcpy(result+w, buf, r);
1358 w += r;
1359 }
1360
1361 *len = w;
1362
1363 gpgme_data_release(data);
1364 if (r < 0) {
1365 g_warning("gpgme_data_read() returned an error: %d", (int)r);
1366 free(result);
1367 *len = 0;
1368 return NULL;
1369 }
1370 return result;
1371 }
1372
1373 gpgme_error_t cm_gpgme_data_rewind(gpgme_data_t dh)
1374 {
1375 #if defined(_FILE_OFFSET_BITS) && _FILE_OFFSET_BITS == 64
1376 if (gpgme_data_seek(dh, (off_t)0, SEEK_SET) == -1)
1377 return gpg_error_from_errno(errno);
1378 else
1379 return 0;
1380 #else
1381 return gpgme_data_rewind(dh);
1382 #endif
1383 }
1384
1385 #endif /* USE_GPGME */