search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Expand a ~ in the ca-cert-file argument.
[gnupg.git] / sm / gpgsm.c
blob042e5d3897382ecc50c6a01949f3eb2fbfdf71aa
1 /* gpgsm.c - GnuPG for S/MIME
2 * Copyright (C) 2001, 2002, 2003, 2004, 2005,
3 * 2006, 2007, 2008 Free Software Foundation, Inc.
4 *
5 * This file is part of GnuPG.
6 *
7 * GnuPG is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License as published by
9 * the Free Software Foundation; either version 3 of the License, or
10 * (at your option) any later version.
11 *
12 * GnuPG is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU General Public License for more details.
16 *
17 * You should have received a copy of the GNU General Public License
18 * along with this program; if not, see <http://www.gnu.org/licenses/>.
19 */
20
21 #include <config.h>
22 #include <errno.h>
23 #include <stdio.h>
24 #include <stdlib.h>
25 #include <string.h>
26 #include <ctype.h>
27 #include <unistd.h>
28 #include <fcntl.h>
29 /*#include <mcheck.h>*/
30
31 #include "gpgsm.h"
32 #include <gcrypt.h>
33 #include <assuan.h> /* malloc hooks */
34
35 #include "../kbx/keybox.h" /* malloc hooks */
36 #include "i18n.h"
37 #include "keydb.h"
38 #include "sysutils.h"
39 #include "gc-opt-flags.h"
40
41
42 #ifndef O_BINARY
43 #define O_BINARY 0
44 #endif
45
46 enum cmd_and_opt_values {
47 aNull = 0,
48 oArmor = 'a',
49 aDetachedSign = 'b',
50 aSym = 'c',
51 aDecrypt = 'd',
52 aEncr = 'e',
53 aListKeys = 'k',
54 aListSecretKeys = 'K',
55 oDryRun = 'n',
56 oOutput = 'o',
57 oQuiet = 'q',
58 oRecipient = 'r',
59 aSign = 's',
60 oUser = 'u',
61 oVerbose = 'v',
62 oBatch = 500,
63 aClearsign,
64 aKeygen,
65 aSignEncr,
66 aDeleteKey,
67 aImport,
68 aVerify,
69 aListExternalKeys,
70 aListChain,
71 aSendKeys,
72 aRecvKeys,
73 aExport,
74 aExportSecretKeyP12,
75 aServer,
76 aLearnCard,
77 aCallDirmngr,
78 aCallProtectTool,
79 aPasswd,
80 aGPGConfList,
81 aGPGConfTest,
82 aDumpKeys,
83 aDumpChain,
84 aDumpSecretKeys,
85 aDumpExternalKeys,
86 aKeydbClearSomeCertFlags,
87 aFingerprint,
88
89 oOptions,
90 oDebug,
91 oDebugLevel,
92 oDebugAll,
93 oDebugNone,
94 oDebugWait,
95 oDebugAllowCoreDump,
96 oDebugNoChainValidation,
97 oDebugIgnoreExpiration,
98 oFixedPassphrase,
99 oLogFile,
100 oNoLogFile,
101 oAuditLog,
102
103 oEnableSpecialFilenames,
104
105 oAgentProgram,
106 oDisplay,
107 oTTYname,
108 oTTYtype,
109 oLCctype,
110 oLCmessages,
111 oXauthority,
112
113 oPreferSystemDirmngr,
114 oDirmngrProgram,
115 oDisableDirmngr,
116 oProtectToolProgram,
117 oFakedSystemTime,
118
119
120 oAssumeArmor,
121 oAssumeBase64,
122 oAssumeBinary,
123
124 oBase64,
125 oNoArmor,
126 oP12Charset,
127
128 oDisableCRLChecks,
129 oEnableCRLChecks,
130 oDisableTrustedCertCRLCheck,
131 oEnableTrustedCertCRLCheck,
132 oForceCRLRefresh,
133
134 oDisableOCSP,
135 oEnableOCSP,
136
137 oIncludeCerts,
138 oPolicyFile,
139 oDisablePolicyChecks,
140 oEnablePolicyChecks,
141 oAutoIssuerKeyRetrieve,
142
143 oWithFingerprint,
144 oWithMD5Fingerprint,
145 oAnswerYes,
146 oAnswerNo,
147 oKeyring,
148 oDefaultKey,
149 oDefRecipient,
150 oDefRecipientSelf,
151 oNoDefRecipient,
152 oStatusFD,
153 oCipherAlgo,
154 oDigestAlgo,
155 oExtraDigestAlgo,
156 oNoVerbose,
157 oNoSecmemWarn,
158 oNoDefKeyring,
159 oNoGreeting,
160 oNoTTY,
161 oNoOptions,
162 oNoBatch,
163 oHomedir,
164 oWithColons,
165 oWithKeyData,
166 oWithValidation,
167 oWithEphemeralKeys,
168 oSkipVerify,
169 oValidationModel,
170 oKeyServer,
171 oEncryptTo,
172 oNoEncryptTo,
173 oLoggerFD,
174 oDisableCipherAlgo,
175 oDisablePubkeyAlgo,
176 oIgnoreTimeConflict,
177 oNoRandomSeedFile,
178 oNoCommonCertsImport
179 };
180
181
182 static ARGPARSE_OPTS opts[] = {
183
184 ARGPARSE_group (300, N_("@Commands:\n ")),
185
186 ARGPARSE_c (aSign, "sign", N_("make a signature")),
187 ARGPARSE_c (aClearsign, "clearsign", N_("make a clear text signature") ),
188 ARGPARSE_c (aDetachedSign, "detach-sign", N_("make a detached signature")),
189 ARGPARSE_c (aEncr, "encrypt", N_("encrypt data")),
190 ARGPARSE_c (aSym, "symmetric", N_("encryption only with symmetric cipher")),
191 ARGPARSE_c (aDecrypt, "decrypt", N_("decrypt data (default)")),
192 ARGPARSE_c (aVerify, "verify", N_("verify a signature")),
193 ARGPARSE_c (aListKeys, "list-keys", N_("list keys")),
194 ARGPARSE_c (aListExternalKeys, "list-external-keys",
195 N_("list external keys")),
196 ARGPARSE_c (aListSecretKeys, "list-secret-keys", N_("list secret keys")),
197 ARGPARSE_c (aListChain, "list-chain", N_("list certificate chain")),
198 ARGPARSE_c (aFingerprint, "fingerprint", N_("list keys and fingerprints")),
199 ARGPARSE_c (aKeygen, "gen-key", N_("generate a new key pair")),
200 ARGPARSE_c (aDeleteKey, "delete-keys",
201 N_("remove keys from the public keyring")),
202 ARGPARSE_c (aSendKeys, "send-keys", N_("export keys to a key server")),
203 ARGPARSE_c (aRecvKeys, "recv-keys", N_("import keys from a key server")),
204 ARGPARSE_c (aImport, "import", N_("import certificates")),
205 ARGPARSE_c (aExport, "export", N_("export certificates")),
206 ARGPARSE_c (aExportSecretKeyP12, "export-secret-key-p12", "@"),
207 ARGPARSE_c (aLearnCard, "learn-card", N_("register a smartcard")),
208 ARGPARSE_c (aServer, "server", N_("run in server mode")),
209 ARGPARSE_c (aCallDirmngr, "call-dirmngr",
210 N_("pass a command to the dirmngr")),
211 ARGPARSE_c (aCallProtectTool, "call-protect-tool",
212 N_("invoke gpg-protect-tool")),
213 ARGPARSE_c (aPasswd, "passwd", N_("change a passphrase")),
214 ARGPARSE_c (aGPGConfList, "gpgconf-list", "@"),
215 ARGPARSE_c (aGPGConfTest, "gpgconf-test", "@"),
216
217 ARGPARSE_c (aDumpKeys, "dump-cert", "@"),
218 ARGPARSE_c (aDumpKeys, "dump-keys", "@"),
219 ARGPARSE_c (aDumpChain, "dump-chain", "@"),
220 ARGPARSE_c (aDumpExternalKeys, "dump-external-keys", "@"),
221 ARGPARSE_c (aDumpSecretKeys, "dump-secret-keys", "@"),
222 ARGPARSE_c (aKeydbClearSomeCertFlags, "keydb-clear-some-cert-flags", "@"),
223
224 ARGPARSE_group (301, N_("@\nOptions:\n ")),
225
226 ARGPARSE_s_n (oArmor, "armor", N_("create ascii armored output")),
227 ARGPARSE_s_n (oArmor, "armour", "@"),
228 ARGPARSE_s_n (oBase64, "base64", N_("create base-64 encoded output")),
229
230 ARGPARSE_s_s (oP12Charset, "p12-charset", "@"),
231
232 ARGPARSE_s_n (oAssumeArmor, "assume-armor",
233 N_("assume input is in PEM format")),
234 ARGPARSE_s_n (oAssumeBase64, "assume-base64",
235 N_("assume input is in base-64 format")),
236 ARGPARSE_s_n (oAssumeBinary, "assume-binary",
237 N_("assume input is in binary format")),
238
239 ARGPARSE_s_s (oRecipient, "recipient", N_("|USER-ID|encrypt for USER-ID")),
240
241 ARGPARSE_s_n (oPreferSystemDirmngr,"prefer-system-dirmngr",
242 N_("use system's dirmngr if available")),
243
244 ARGPARSE_s_n (oDisableCRLChecks, "disable-crl-checks",
245 N_("never consult a CRL")),
246 ARGPARSE_s_n (oEnableCRLChecks, "enable-crl-checks", "@"),
247 ARGPARSE_s_n (oDisableTrustedCertCRLCheck,
248 "disable-trusted-cert-crl-check", "@"),
249 ARGPARSE_s_n (oEnableTrustedCertCRLCheck,
250 "enable-trusted-cert-crl-check", "@"),
251
252 ARGPARSE_s_n (oForceCRLRefresh, "force-crl-refresh", "@"),
253
254 ARGPARSE_s_n (oDisableOCSP, "disable-ocsp", "@"),
255 ARGPARSE_s_n (oEnableOCSP, "enable-ocsp", N_("check validity using OCSP")),
256
257 ARGPARSE_s_s (oValidationModel, "validation-model", "@"),
258
259 ARGPARSE_s_i (oIncludeCerts, "include-certs",
260 N_("|N|number of certificates to include") ),
261
262 ARGPARSE_s_s (oPolicyFile, "policy-file",
263 N_("|FILE|take policy information from FILE")),
264
265 ARGPARSE_s_n (oDisablePolicyChecks, "disable-policy-checks",
266 N_("do not check certificate policies")),
267 ARGPARSE_s_n (oEnablePolicyChecks, "enable-policy-checks", "@"),
268
269 ARGPARSE_s_n (oAutoIssuerKeyRetrieve, "auto-issuer-key-retrieve",
270 N_("fetch missing issuer certificates")),
271
272 ARGPARSE_s_s (oEncryptTo, "encrypt-to", "@"),
273 ARGPARSE_s_n (oNoEncryptTo, "no-encrypt-to", "@"),
274
275 ARGPARSE_s_s (oUser, "local-user",
276 N_("|USER-ID|use USER-ID to sign or decrypt")),
277
278 ARGPARSE_s_s (oOutput, "output", N_("|FILE|write output to FILE")),
279 ARGPARSE_s_n (oVerbose, "verbose", N_("verbose")),
280 ARGPARSE_s_n (oQuiet, "quiet", N_("be somewhat more quiet")),
281 ARGPARSE_s_n (oNoTTY, "no-tty", N_("don't use the terminal at all")),
282 ARGPARSE_s_s (oLogFile, "log-file",
283 N_("|FILE|write a server mode log to FILE")),
284 ARGPARSE_s_n (oNoLogFile, "no-log-file", "@"),
285 ARGPARSE_s_i (oLoggerFD, "logger-fd", "@"),
286
287 ARGPARSE_s_s (oAuditLog, "audit-log",
288 N_("|FILE|write an audit log to FILE")),
289 ARGPARSE_s_n (oDryRun, "dry-run", N_("do not make any changes")),
290 ARGPARSE_s_n (oBatch, "batch", N_("batch mode: never ask")),
291 ARGPARSE_s_n (oAnswerYes, "yes", N_("assume yes on most questions")),
292 ARGPARSE_s_n (oAnswerNo, "no", N_("assume no on most questions")),
293
294 ARGPARSE_s_s (oKeyring, "keyring",
295 N_("|FILE|add keyring to the list of keyrings")),
296
297 ARGPARSE_s_s (oDefaultKey, "default-key",
298 N_("|USER-ID|use USER-ID as default secret key")),
299
300 /* Not yet used: */
301 /* ARGPARSE_s_s (oDefRecipient, "default-recipient", */
302 /* N_("|NAME|use NAME as default recipient")), */
303 /* ARGPARSE_s_n (oDefRecipientSelf, "default-recipient-self", */
304 /* N_("use the default key as default recipient")), */
305 /* ARGPARSE_s_n (oNoDefRecipient, "no-default-recipient", "@"), */
306
307 ARGPARSE_s_s (oKeyServer, "keyserver",
308 N_("|SPEC|use this keyserver to lookup keys")),
309 ARGPARSE_s_s (oOptions, "options", N_("|FILE|read options from FILE")),
310
311 ARGPARSE_p_u (oDebug, "debug", "@"),
312 ARGPARSE_s_s (oDebugLevel, "debug-level",
313 N_("|LEVEL|set the debugging level to LEVEL")),
314 ARGPARSE_s_n (oDebugAll, "debug-all", "@"),
315 ARGPARSE_s_n (oDebugNone, "debug-none", "@"),
316 ARGPARSE_s_i (oDebugWait, "debug-wait", "@"),
317 ARGPARSE_s_n (oDebugAllowCoreDump, "debug-allow-core-dump", "@"),
318 ARGPARSE_s_n (oDebugNoChainValidation, "debug-no-chain-validation", "@"),
319 ARGPARSE_s_n (oDebugIgnoreExpiration, "debug-ignore-expiration", "@"),
320 ARGPARSE_s_s (oFixedPassphrase, "fixed-passphrase", "@"),
321
322 ARGPARSE_s_i (oStatusFD, "status-fd",
323 N_("|FD|write status info to this FD")),
324
325 ARGPARSE_s_s (oCipherAlgo, "cipher-algo",
326 N_("|NAME|use cipher algorithm NAME")),
327 ARGPARSE_s_s (oDigestAlgo, "digest-algo",
328 N_("|NAME|use message digest algorithm NAME")),
329 ARGPARSE_s_s (oExtraDigestAlgo, "extra-digest-algo", "@"),
330
331
332 ARGPARSE_group (302, N_(
333 "@\n(See the man page for a complete listing of all commands and options)\n"
334 )),
335
336 ARGPARSE_group (303, N_("@\nExamples:\n\n"
337 " -se -r Bob [file] sign and encrypt for user Bob\n"
338 " --clearsign [file] make a clear text signature\n"
339 " --detach-sign [file] make a detached signature\n"
340 " --list-keys [names] show keys\n"
341 " --fingerprint [names] show fingerprints\n" )),
342
343 /* Hidden options. */
344 ARGPARSE_s_n (oNoVerbose, "no-verbose", "@"),
345 ARGPARSE_s_n (oEnableSpecialFilenames, "enable-special-filenames", "@"),
346 ARGPARSE_s_n (oNoSecmemWarn, "no-secmem-warning", "@"),
347 ARGPARSE_s_n (oNoArmor, "no-armor", "@"),
348 ARGPARSE_s_n (oNoArmor, "no-armour", "@"),
349 ARGPARSE_s_n (oNoDefKeyring, "no-default-keyring", "@"),
350 ARGPARSE_s_n (oNoGreeting, "no-greeting", "@"),
351 ARGPARSE_s_n (oNoOptions, "no-options", "@"),
352 ARGPARSE_s_s (oHomedir, "homedir", "@"),
353 ARGPARSE_s_s (oAgentProgram, "agent-program", "@"),
354 ARGPARSE_s_s (oDisplay, "display", "@"),
355 ARGPARSE_s_s (oTTYname, "ttyname", "@"),
356 ARGPARSE_s_s (oTTYtype, "ttytype", "@"),
357 ARGPARSE_s_s (oLCctype, "lc-ctype", "@"),
358 ARGPARSE_s_s (oLCmessages, "lc-messages", "@"),
359 ARGPARSE_s_s (oXauthority, "xauthority", "@"),
360 ARGPARSE_s_s (oDirmngrProgram, "dirmngr-program", "@"),
361 ARGPARSE_s_n (oDisableDirmngr, "disable-dirmngr", "@"),
362 ARGPARSE_s_s (oProtectToolProgram, "protect-tool-program", "@"),
363 ARGPARSE_s_s (oFakedSystemTime, "faked-system-time", "@"),
364 ARGPARSE_s_n (oNoBatch, "no-batch", "@"),
365 ARGPARSE_s_n (oWithColons, "with-colons", "@"),
366 ARGPARSE_s_n (oWithKeyData,"with-key-data", "@"),
367 ARGPARSE_s_n (oWithValidation, "with-validation", "@"),
368 ARGPARSE_s_n (oWithMD5Fingerprint, "with-md5-fingerprint", "@"),
369 ARGPARSE_s_n (oWithEphemeralKeys, "with-ephemeral-keys", "@"),
370 ARGPARSE_s_n (oSkipVerify, "skip-verify", "@"),
371 ARGPARSE_s_n (oWithFingerprint, "with-fingerprint", "@"),
372 ARGPARSE_s_s (oDisableCipherAlgo, "disable-cipher-algo", "@"),
373 ARGPARSE_s_s (oDisablePubkeyAlgo, "disable-pubkey-algo", "@"),
374 ARGPARSE_s_n (oIgnoreTimeConflict, "ignore-time-conflict", "@"),
375 ARGPARSE_s_n (oNoRandomSeedFile, "no-random-seed-file", "@"),
376 ARGPARSE_s_n (oNoCommonCertsImport, "no-common-certs-import", "@"),
377
378 /* Command aliases. */
379 ARGPARSE_c (aListKeys, "list-key", "@"),
380 ARGPARSE_c (aListChain, "list-sig", "@"),
381 ARGPARSE_c (aListChain, "list-sigs", "@"),
382 ARGPARSE_c (aListChain, "check-sig", "@"),
383 ARGPARSE_c (aListChain, "check-sigs", "@"),
384 ARGPARSE_c (aDeleteKey, "delete-key", "@"),
385
386 ARGPARSE_end ()
387 };
388
389
390
391
392 /* Global variable to keep an error count. */
393 int gpgsm_errors_seen = 0;
394
395 /* It is possible that we are currentlu running under setuid permissions */
396 static int maybe_setuid = 1;
397
398 /* Helper to implement --debug-level and --debug*/
399 static const char *debug_level;
400 static unsigned int debug_value;
401
402 /* Option --enable-special-filenames */
403 static int allow_special_filenames;
404
405 /* Default value for include-certs. */
406 static int default_include_certs = 1; /* Only include the signer's cert. */
407
408 /* Whether the chain mode shall be used for validation. */
409 static int default_validation_model;
410
411
412 static char *build_list (const char *text,
413 const char *(*mapf)(int), int (*chkf)(int));
414 static void set_cmd (enum cmd_and_opt_values *ret_cmd,
415 enum cmd_and_opt_values new_cmd );
416
417 static void emergency_cleanup (void);
418 static int check_special_filename (const char *fname, int for_write);
419 static int open_read (const char *filename);
420 static estream_t open_es_fread (const char *filename);
421 static FILE *open_fwrite (const char *filename);
422 static estream_t open_es_fwrite (const char *filename);
423 static void run_protect_tool (int argc, char **argv);
424
425 static int
426 our_pk_test_algo (int algo)
427 {
428 switch (algo)
429 {
430 case GCRY_PK_RSA:
431 case GCRY_PK_ECDSA:
432 return gcry_pk_test_algo (algo);
433 default:
434 return 1;
435 }
436 }
437
438 static int
439 our_cipher_test_algo (int algo)
440 {
441 switch (algo)
442 {
443 case GCRY_CIPHER_3DES:
444 case GCRY_CIPHER_AES128:
445 case GCRY_CIPHER_AES192:
446 case GCRY_CIPHER_AES256:
447 case GCRY_CIPHER_SERPENT128:
448 case GCRY_CIPHER_SERPENT192:
449 case GCRY_CIPHER_SERPENT256:
450 case GCRY_CIPHER_SEED:
451 case GCRY_CIPHER_CAMELLIA128:
452 case GCRY_CIPHER_CAMELLIA192:
453 case GCRY_CIPHER_CAMELLIA256:
454 return gcry_cipher_test_algo (algo);
455 default:
456 return 1;
457 }
458 }
459
460
461 static int
462 our_md_test_algo (int algo)
463 {
464 switch (algo)
465 {
466 case GCRY_MD_MD5:
467 case GCRY_MD_SHA1:
468 case GCRY_MD_RMD160:
469 case GCRY_MD_SHA224:
470 case GCRY_MD_SHA256:
471 case GCRY_MD_SHA384:
472 case GCRY_MD_SHA512:
473 case GCRY_MD_WHIRLPOOL:
474 return gcry_md_test_algo (algo);
475 default:
476 return 1;
477 }
478 }
479
480
481 static char *
482 make_libversion (const char *libname, const char *(*getfnc)(const char*))
483 {
484 const char *s;
485 char *result;
486
487 if (maybe_setuid)
488 {
489 gcry_control (GCRYCTL_INIT_SECMEM, 0, 0); /* Drop setuid. */
490 maybe_setuid = 0;
491 }
492 s = getfnc (NULL);
493 result = xmalloc (strlen (libname) + 1 + strlen (s) + 1);
494 strcpy (stpcpy (stpcpy (result, libname), " "), s);
495 return result;
496 }
497
498
499 static const char *
500 my_strusage( int level )
501 {
502 static char *digests, *pubkeys, *ciphers;
503 static char *ver_gcry, *ver_ksba;
504 const char *p;
505
506 switch (level)
507 {
508 case 11: p = "gpgsm (GnuPG)";
509 break;
510 case 13: p = VERSION; break;
511 case 17: p = PRINTABLE_OS_NAME; break;
512 case 19: p = _("Please report bugs to <@EMAIL@>.\n"); break;
513
514 case 1:
515 case 40: p = _("Usage: gpgsm [options] [files] (-h for help)");
516 break;
517 case 41:
518 p = _("Syntax: gpgsm [options] [files]\n"
519 "sign, check, encrypt or decrypt using the S/MIME protocol\n"
520 "default operation depends on the input data\n");
521 break;
522
523 case 20:
524 if (!ver_gcry)
525 ver_gcry = make_libversion ("libgcrypt", gcry_check_version);
526 p = ver_gcry;
527 break;
528 case 21:
529 if (!ver_ksba)
530 ver_ksba = make_libversion ("libksba", ksba_check_version);
531 p = ver_ksba;
532 break;
533
534 case 31: p = "\nHome: "; break;
535 case 32: p = opt.homedir; break;
536 case 33: p = _("\nSupported algorithms:\n"); break;
537 case 34:
538 if (!ciphers)
539 ciphers = build_list ("Cipher: ", gcry_cipher_algo_name,
540 our_cipher_test_algo );
541 p = ciphers;
542 break;
543 case 35:
544 if (!pubkeys)
545 pubkeys = build_list ("Pubkey: ", gcry_pk_algo_name,
546 our_pk_test_algo );
547 p = pubkeys;
548 break;
549 case 36:
550 if (!digests)
551 digests = build_list("Hash: ", gcry_md_algo_name, our_md_test_algo );
552 p = digests;
553 break;
554
555 default: p = NULL; break;
556 }
557 return p;
558 }
559
560
561 static char *
562 build_list (const char *text, const char * (*mapf)(int), int (*chkf)(int))
563 {
564 int i;
565 size_t n=strlen(text)+2;
566 char *list, *p;
567
568 if (maybe_setuid) {
569 gcry_control (GCRYCTL_DROP_PRIVS); /* drop setuid */
570 }
571
572 for (i=1; i < 400; i++ )
573 if (!chkf(i))
574 n += strlen(mapf(i)) + 2;
575 list = xmalloc (21 + n);
576 *list = 0;
577 for (p=NULL, i=1; i < 400; i++)
578 {
579 if (!chkf(i))
580 {
581 if( !p )
582 p = stpcpy (list, text );
583 else
584 p = stpcpy (p, ", ");
585 p = stpcpy (p, mapf(i) );
586 }
587 }
588 if (p)
589 p = stpcpy(p, "\n" );
590 return list;
591 }
592
593
594 /* Set the file pointer into binary mode if required. */
595 static void
596 set_binary (FILE *fp)
597 {
598 #ifdef HAVE_DOSISH_SYSTEM
599 setmode (fileno (fp), O_BINARY);
600 #else
601 (void)fp;
602 #endif
603 }
604
605
606
607 static void
608 wrong_args (const char *text)
609 {
610 fputs (_("usage: gpgsm [options] "), stderr);
611 fputs (text, stderr);
612 putc ('\n', stderr);
613 gpgsm_exit (2);
614 }
615
616
617 static void
618 set_opt_session_env (const char *name, const char *value)
619 {
620 gpg_error_t err;
621
622 err = session_env_setenv (opt.session_env, name, value);
623 if (err)
624 log_fatal ("error setting session environment: %s\n",
625 gpg_strerror (err));
626 }
627
628
629 /* Setup the debugging. With a DEBUG_LEVEL of NULL only the active
630 debug flags are propagated to the subsystems. With DEBUG_LEVEL
631 set, a specific set of debug flags is set; and individual debugging
632 flags will be added on top. */
633 static void
634 set_debug (void)
635 {
636 if (!debug_level)
637 ;
638 else if (!strcmp (debug_level, "none"))
639 opt.debug = 0;
640 else if (!strcmp (debug_level, "basic"))
641 opt.debug = DBG_ASSUAN_VALUE;
642 else if (!strcmp (debug_level, "advanced"))
643 opt.debug = DBG_ASSUAN_VALUE|DBG_X509_VALUE;
644 else if (!strcmp (debug_level, "expert"))
645 opt.debug = (DBG_ASSUAN_VALUE|DBG_X509_VALUE
646 |DBG_CACHE_VALUE|DBG_CRYPTO_VALUE);
647 else if (!strcmp (debug_level, "guru"))
648 opt.debug = ~0;
649 else
650 {
651 log_error (_("invalid debug-level `%s' given\n"), debug_level);
652 gpgsm_exit(2);
653 }
654
655 opt.debug |= debug_value;
656
657 if (opt.debug && !opt.verbose)
658 opt.verbose = 1;
659 if (opt.debug)
660 opt.quiet = 0;
661
662 if (opt.debug & DBG_MPI_VALUE)
663 gcry_control (GCRYCTL_SET_DEBUG_FLAGS, 2);
664 if (opt.debug & DBG_CRYPTO_VALUE )
665 gcry_control (GCRYCTL_SET_DEBUG_FLAGS, 1);
666 gcry_control (GCRYCTL_SET_VERBOSITY, (int)opt.verbose);
667 }
668
669
670
671 static void
672 set_cmd (enum cmd_and_opt_values *ret_cmd, enum cmd_and_opt_values new_cmd)
673 {
674 enum cmd_and_opt_values cmd = *ret_cmd;
675
676 if (!cmd || cmd == new_cmd)
677 cmd = new_cmd;
678 else if ( cmd == aSign && new_cmd == aEncr )
679 cmd = aSignEncr;
680 else if ( cmd == aEncr && new_cmd == aSign )
681 cmd = aSignEncr;
682 else if ( (cmd == aSign && new_cmd == aClearsign)
683 || (cmd == aClearsign && new_cmd == aSign) )
684 cmd = aClearsign;
685 else
686 {
687 log_error(_("conflicting commands\n"));
688 gpgsm_exit(2);
689 }
690
691 *ret_cmd = cmd;
692 }
693
694
695 /* Helper to add recipients to a list. */
696 static void
697 do_add_recipient (ctrl_t ctrl, const char *name,
698 certlist_t *recplist, int is_encrypt_to, int recp_required)
699 {
700 int rc = gpgsm_add_to_certlist (ctrl, name, 0, recplist, is_encrypt_to);
701 if (rc)
702 {
703 if (recp_required)
704 {
705 log_error ("can't encrypt to `%s': %s\n", name, gpg_strerror (rc));
706 gpgsm_status2 (ctrl, STATUS_INV_RECP,
707 get_inv_recpsgnr_code (rc), name, NULL);
708 }
709 else
710 log_info (_("NOTE: won't be able to encrypt to `%s': %s\n"),
711 name, gpg_strerror (rc));
712 }
713 }
714
715
716 static void
717 parse_validation_model (const char *model)
718 {
719 int i = gpgsm_parse_validation_model (model);
720 if (i == -1)
721 log_error (_("unknown validation model `%s'\n"), model);
722 else
723 default_validation_model = i;
724 }
725
726
727 /* Release the list of SERVERS. As usual it is okay to call this
728 function with SERVERS passed as NULL. */
729 void
730 keyserver_list_free (struct keyserver_spec *servers)
731 {
732 while (servers)
733 {
734 struct keyserver_spec *tmp = servers->next;
735 xfree (servers->host);
736 xfree (servers->user);
737 if (servers->pass)
738 memset (servers->pass, 0, strlen (servers->pass));
739 xfree (servers->pass);
740 xfree (servers->base);
741 xfree (servers);
742 servers = tmp;
743 }
744 }
745
746 /* See also dirmngr ldapserver_parse_one(). */
747 struct keyserver_spec *
748 parse_keyserver_line (char *line,
749 const char *filename, unsigned int lineno)
750 {
751 char *p;
752 char *endp;
753 struct keyserver_spec *server;
754 int fieldno;
755 int fail = 0;
756
757 /* Parse the colon separated fields. */
758 server = xcalloc (1, sizeof *server);
759 for (fieldno = 1, p = line; p; p = endp, fieldno++ )
760 {
761 endp = strchr (p, ':');
762 if (endp)
763 *endp++ = '\0';
764 trim_spaces (p);
765 switch (fieldno)
766 {
767 case 1:
768 if (*p)
769 server->host = xstrdup (p);
770 else
771 {
772 log_error (_("%s:%u: no hostname given\n"),
773 filename, lineno);
774 fail = 1;
775 }
776 break;
777
778 case 2:
779 if (*p)
780 server->port = atoi (p);
781 break;
782
783 case 3:
784 if (*p)
785 server->user = xstrdup (p);
786 break;
787
788 case 4:
789 if (*p && !server->user)
790 {
791 log_error (_("%s:%u: password given without user\n"),
792 filename, lineno);
793 fail = 1;
794 }
795 else if (*p)
796 server->pass = xstrdup (p);
797 break;
798
799 case 5:
800 if (*p)
801 server->base = xstrdup (p);
802 break;
803
804 default:
805 /* (We silently ignore extra fields.) */
806 break;
807 }
808 }
809
810 if (fail)
811 {
812 log_info (_("%s:%u: skipping this line\n"), filename, lineno);
813 keyserver_list_free (server);
814 }
815
816 return server;
817 }
818
819
820 int
821 main ( int argc, char **argv)
822 {
823 ARGPARSE_ARGS pargs;
824 int orig_argc;
825 char **orig_argv;
826 const char *fname;
827 /* char *username;*/
828 int may_coredump;
829 strlist_t sl, remusr= NULL, locusr=NULL;
830 strlist_t nrings=NULL;
831 int detached_sig = 0;
832 FILE *configfp = NULL;
833 char *configname = NULL;
834 unsigned configlineno;
835 int parse_debug = 0;
836 int no_more_options = 0;
837 int default_config =1;
838 int default_keyring = 1;
839 char *logfile = NULL;
840 char *auditlog = NULL;
841 int greeting = 0;
842 int nogreeting = 0;
843 int debug_wait = 0;
844 int use_random_seed = 1;
845 int no_common_certs_import = 0;
846 int with_fpr = 0;
847 const char *forced_digest_algo = NULL;
848 const char *extra_digest_algo = NULL;
849 enum cmd_and_opt_values cmd = 0;
850 struct server_control_s ctrl;
851 certlist_t recplist = NULL;
852 certlist_t signerlist = NULL;
853 int do_not_setup_keys = 0;
854 int recp_required = 0;
855 estream_t auditfp = NULL;
856
857 /*mtrace();*/
858
859 gnupg_reopen_std ("gpgsm");
860 /* trap_unaligned ();*/
861 gnupg_rl_initialize ();
862 set_strusage (my_strusage);
863 gcry_control (GCRYCTL_SUSPEND_SECMEM_WARN);
864 /* We don't need any locking in libgcrypt unless we use any kind of
865 threading. */
866 gcry_control (GCRYCTL_DISABLE_INTERNAL_LOCKING);
867
868 /* Please note that we may running SUID(ROOT), so be very CAREFUL
869 when adding any stuff between here and the call to secmem_init()
870 somewhere after the option parsing */
871 log_set_prefix ("gpgsm", 1);
872
873 /* Make sure that our subsystems are ready. */
874 i18n_init();
875 init_common_subsystems ();
876
877 /* Check that the libraries are suitable. Do it here because the
878 option parse may need services of the library */
879 if (!gcry_check_version (NEED_LIBGCRYPT_VERSION) )
880 log_fatal (_("%s is too old (need %s, have %s)\n"), "libgcrypt",
881 NEED_LIBGCRYPT_VERSION, gcry_check_version (NULL) );
882 if (!ksba_check_version (NEED_KSBA_VERSION) )
883 log_fatal (_("%s is too old (need %s, have %s)\n"), "libksba",
884 NEED_KSBA_VERSION, ksba_check_version (NULL) );
885
886
887 gcry_control (GCRYCTL_USE_SECURE_RNDPOOL);
888
889 may_coredump = disable_core_dumps ();
890
891 gnupg_init_signals (0, emergency_cleanup);
892
893 create_dotlock (NULL); /* register locking cleanup */
894
895 opt.session_env = session_env_new ();
896 if (!opt.session_env)
897 log_fatal ("error allocating session environment block: %s\n",
898 strerror (errno));
899
900 /* Note: If you change this default cipher algorithm , please
901 remember to update the Gpgconflist entry as well. */
902 opt.def_cipher_algoid = "3DES"; /*des-EDE3-CBC*/
903
904 opt.homedir = default_homedir ();
905
906 /* First check whether we have a config file on the commandline */
907 orig_argc = argc;
908 orig_argv = argv;
909 pargs.argc = &argc;
910 pargs.argv = &argv;
911 pargs.flags= 1|(1<<6); /* do not remove the args, ignore version */
912 while (arg_parse( &pargs, opts))
913 {
914 if (pargs.r_opt == oDebug || pargs.r_opt == oDebugAll)
915 parse_debug++;
916 else if (pargs.r_opt == oOptions)
917 { /* yes there is one, so we do not try the default one but
918 read the config file when it is encountered at the
919 commandline */
920 default_config = 0;
921 }
922 else if (pargs.r_opt == oNoOptions)
923 default_config = 0; /* --no-options */
924 else if (pargs.r_opt == oHomedir)
925 opt.homedir = pargs.r.ret_str;
926 else if (pargs.r_opt == aCallProtectTool)
927 break; /* This break makes sure that --version and --help are
928 passed to the protect-tool. */
929 }
930
931
932 /* Initialize the secure memory. */
933 gcry_control (GCRYCTL_INIT_SECMEM, 16384, 0);
934 maybe_setuid = 0;
935
936 /*
937 Now we are now working under our real uid
938 */
939
940 ksba_set_malloc_hooks (gcry_malloc, gcry_realloc, gcry_free );
941
942 assuan_set_malloc_hooks (gcry_malloc, gcry_realloc, gcry_free);
943 assuan_set_assuan_log_stream (log_get_stream ());
944 assuan_set_assuan_log_prefix (log_get_prefix (NULL));
945 assuan_set_assuan_err_source (GPG_ERR_SOURCE_DEFAULT);
946
947 keybox_set_malloc_hooks (gcry_malloc, gcry_realloc, gcry_free);
948
949 /* Setup a default control structure for command line mode */
950 memset (&ctrl, 0, sizeof ctrl);
951 gpgsm_init_default_ctrl (&ctrl);
952 ctrl.no_server = 1;
953 ctrl.status_fd = -1; /* No status output. */
954 ctrl.autodetect_encoding = 1;
955
956 /* Set the default option file */
957 if (default_config )
958 configname = make_filename (opt.homedir, "gpgsm.conf", NULL);
959 /* Set the default policy file */
960 opt.policy_file = make_filename (opt.homedir, "policies.txt", NULL);
961
962 argc = orig_argc;
963 argv = orig_argv;
964 pargs.argc = &argc;
965 pargs.argv = &argv;
966 pargs.flags = 1; /* do not remove the args */
967
968 next_pass:
969 if (configname) {
970 configlineno = 0;
971 configfp = fopen (configname, "r");
972 if (!configfp)
973 {
974 if (default_config)
975 {
976 if (parse_debug)
977 log_info (_("NOTE: no default option file `%s'\n"), configname);
978 }
979 else
980 {
981 log_error (_("option file `%s': %s\n"), configname, strerror(errno));
982 gpgsm_exit(2);
983 }
984 xfree(configname);
985 configname = NULL;
986 }
987 if (parse_debug && configname)
988 log_info (_("reading options from `%s'\n"), configname);
989 default_config = 0;
990 }
991
992 while (!no_more_options
993 && optfile_parse (configfp, configname, &configlineno, &pargs, opts))
994 {
995 switch (pargs.r_opt)
996 {
997 case aGPGConfList:
998 case aGPGConfTest:
999 set_cmd (&cmd, pargs.r_opt);
1000 do_not_setup_keys = 1;
1001 nogreeting = 1;
1002 break;
1003
1004 case aServer:
1005 opt.batch = 1;
1006 set_cmd (&cmd, aServer);
1007 break;
1008
1009 case aCallDirmngr:
1010 opt.batch = 1;
1011 set_cmd (&cmd, aCallDirmngr);
1012 do_not_setup_keys = 1;
1013 break;
1014
1015 case aCallProtectTool:
1016 opt.batch = 1;
1017 set_cmd (&cmd, aCallProtectTool);
1018 no_more_options = 1; /* Stop parsing. */
1019 do_not_setup_keys = 1;
1020 break;
1021
1022 case aDeleteKey:
1023 set_cmd (&cmd, aDeleteKey);
1024 /*greeting=1;*/
1025 do_not_setup_keys = 1;
1026 break;
1027
1028 case aDetachedSign:
1029 detached_sig = 1;
1030 set_cmd (&cmd, aSign );
1031 break;
1032
1033 case aKeygen:
1034 set_cmd (&cmd, aKeygen);
1035 greeting=1;
1036 do_not_setup_keys = 1;
1037 break;
1038
1039 case aImport:
1040 case aSendKeys:
1041 case aRecvKeys:
1042 case aExport:
1043 case aExportSecretKeyP12:
1044 case aDumpKeys:
1045 case aDumpChain:
1046 case aDumpExternalKeys:
1047 case aDumpSecretKeys:
1048 case aListKeys:
1049 case aListExternalKeys:
1050 case aListSecretKeys:
1051 case aListChain:
1052 case aLearnCard:
1053 case aPasswd:
1054 case aKeydbClearSomeCertFlags:
1055 do_not_setup_keys = 1;
1056 set_cmd (&cmd, pargs.r_opt);
1057 break;
1058
1059 case aEncr:
1060 recp_required = 1;
1061 set_cmd (&cmd, pargs.r_opt);
1062 break;
1063
1064 case aSym:
1065 case aDecrypt:
1066 case aSign:
1067 case aClearsign:
1068 case aVerify:
1069 set_cmd (&cmd, pargs.r_opt);
1070 break;
1071
1072 /* Output encoding selection. */
1073 case oArmor:
1074 ctrl.create_pem = 1;
1075 break;
1076 case oBase64:
1077 ctrl.create_pem = 0;
1078 ctrl.create_base64 = 1;
1079 break;
1080 case oNoArmor:
1081 ctrl.create_pem = 0;
1082 ctrl.create_base64 = 0;
1083 break;
1084
1085 case oP12Charset:
1086 opt.p12_charset = pargs.r.ret_str;
1087 break;
1088
1089 /* Input encoding selection. */
1090 case oAssumeArmor:
1091 ctrl.autodetect_encoding = 0;
1092 ctrl.is_pem = 1;
1093 ctrl.is_base64 = 0;
1094 break;
1095 case oAssumeBase64:
1096 ctrl.autodetect_encoding = 0;
1097 ctrl.is_pem = 0;
1098 ctrl.is_base64 = 1;
1099 break;
1100 case oAssumeBinary:
1101 ctrl.autodetect_encoding = 0;
1102 ctrl.is_pem = 0;
1103 ctrl.is_base64 = 0;
1104 break;
1105
1106 case oDisableCRLChecks:
1107 opt.no_crl_check = 1;
1108 break;
1109 case oEnableCRLChecks:
1110 opt.no_crl_check = 0;
1111 break;
1112 case oDisableTrustedCertCRLCheck:
1113 opt.no_trusted_cert_crl_check = 1;
1114 break;
1115 case oEnableTrustedCertCRLCheck:
1116 opt.no_trusted_cert_crl_check = 0;
1117 break;
1118 case oForceCRLRefresh:
1119 opt.force_crl_refresh = 1;
1120 break;
1121
1122 case oDisableOCSP:
1123 ctrl.use_ocsp = opt.enable_ocsp = 0;
1124 break;
1125 case oEnableOCSP:
1126 ctrl.use_ocsp = opt.enable_ocsp = 1;
1127 break;
1128
1129 case oIncludeCerts:
1130 ctrl.include_certs = default_include_certs = pargs.r.ret_int;
1131 break;
1132
1133 case oPolicyFile:
1134 xfree (opt.policy_file);
1135 if (*pargs.r.ret_str)
1136 opt.policy_file = xstrdup (pargs.r.ret_str);
1137 else
1138 opt.policy_file = NULL;
1139 break;
1140
1141 case oDisablePolicyChecks:
1142 opt.no_policy_check = 1;
1143 break;
1144 case oEnablePolicyChecks:
1145 opt.no_policy_check = 0;
1146 break;
1147
1148 case oAutoIssuerKeyRetrieve:
1149 opt.auto_issuer_key_retrieve = 1;
1150 break;
1151
1152 case oOutput: opt.outfile = pargs.r.ret_str; break;
1153
1154
1155 case oQuiet: opt.quiet = 1; break;
1156 case oNoTTY: /* fixme:tty_no_terminal(1);*/ break;
1157 case oDryRun: opt.dry_run = 1; break;
1158
1159 case oVerbose:
1160 opt.verbose++;
1161 gcry_control (GCRYCTL_SET_VERBOSITY, (int)opt.verbose);
1162 break;
1163 case oNoVerbose:
1164 opt.verbose = 0;
1165 gcry_control (GCRYCTL_SET_VERBOSITY, (int)opt.verbose);
1166 break;
1167
1168 case oLogFile: logfile = pargs.r.ret_str; break;
1169 case oNoLogFile: logfile = NULL; break;
1170
1171 case oAuditLog: auditlog = pargs.r.ret_str; break;
1172
1173 case oBatch:
1174 opt.batch = 1;
1175 greeting = 0;
1176 break;
1177 case oNoBatch: opt.batch = 0; break;
1178
1179 case oAnswerYes: opt.answer_yes = 1; break;
1180 case oAnswerNo: opt.answer_no = 1; break;
1181
1182 case oKeyring: append_to_strlist (&nrings, pargs.r.ret_str); break;
1183
1184 case oDebug: debug_value |= pargs.r.ret_ulong; break;
1185 case oDebugAll: debug_value = ~0; break;
1186 case oDebugNone: debug_value = 0; break;
1187 case oDebugLevel: debug_level = pargs.r.ret_str; break;
1188 case oDebugWait: debug_wait = pargs.r.ret_int; break;
1189 case oDebugAllowCoreDump:
1190 may_coredump = enable_core_dumps ();
1191 break;
1192 case oDebugNoChainValidation: opt.no_chain_validation = 1; break;
1193 case oDebugIgnoreExpiration: opt.ignore_expiration = 1; break;
1194 case oFixedPassphrase: opt.fixed_passphrase = pargs.r.ret_str; break;
1195
1196 case oStatusFD: ctrl.status_fd = pargs.r.ret_int; break;
1197 case oLoggerFD: log_set_fd (pargs.r.ret_int ); break;
1198 case oWithMD5Fingerprint:
1199 opt.with_md5_fingerprint=1; /*fall thru*/
1200 case oWithFingerprint:
1201 with_fpr=1; /*fall thru*/
1202 case aFingerprint:
1203 opt.fingerprint++;
1204 break;
1205
1206 case oOptions:
1207 /* config files may not be nested (silently ignore them) */
1208 if (!configfp)
1209 {
1210 xfree(configname);
1211 configname = xstrdup (pargs.r.ret_str);
1212 goto next_pass;
1213 }
1214 break;
1215 case oNoOptions: break; /* no-options */
1216 case oHomedir: opt.homedir = pargs.r.ret_str; break;
1217 case oAgentProgram: opt.agent_program = pargs.r.ret_str; break;
1218
1219 case oDisplay:
1220 set_opt_session_env ("DISPLAY", pargs.r.ret_str);
1221 break;
1222 case oTTYname:
1223 set_opt_session_env ("GPG_TTY", pargs.r.ret_str);
1224 break;
1225 case oTTYtype:
1226 set_opt_session_env ("TERM", pargs.r.ret_str);
1227 break;
1228 case oXauthority:
1229 set_opt_session_env ("XAUTHORITY", pargs.r.ret_str);
1230 break;
1231
1232 case oLCctype: opt.lc_ctype = xstrdup (pargs.r.ret_str); break;
1233 case oLCmessages: opt.lc_messages = xstrdup (pargs.r.ret_str); break;
1234
1235 case oDirmngrProgram: opt.dirmngr_program = pargs.r.ret_str; break;
1236 case oDisableDirmngr: opt.disable_dirmngr = 1; break;
1237 case oPreferSystemDirmngr: opt.prefer_system_dirmngr = 1; break;
1238 case oProtectToolProgram:
1239 opt.protect_tool_program = pargs.r.ret_str;
1240 break;
1241
1242 case oFakedSystemTime:
1243 {
1244 time_t faked_time = isotime2epoch (pargs.r.ret_str);
1245 if (faked_time == (time_t)(-1))
1246 faked_time = (time_t)strtoul (pargs.r.ret_str, NULL, 10);
1247 gnupg_set_time (faked_time, 0);
1248 }
1249 break;
1250
1251 case oNoDefKeyring: default_keyring = 0; break;
1252 case oNoGreeting: nogreeting = 1; break;
1253
1254 case oDefaultKey:
1255 if (*pargs.r.ret_str)
1256 {
1257 xfree (opt.local_user);
1258 opt.local_user = xstrdup (pargs.r.ret_str);
1259 }
1260 break;
1261 case oDefRecipient:
1262 if (*pargs.r.ret_str)
1263 opt.def_recipient = xstrdup (pargs.r.ret_str);
1264 break;
1265 case oDefRecipientSelf:
1266 xfree (opt.def_recipient);
1267 opt.def_recipient = NULL;
1268 opt.def_recipient_self = 1;
1269 break;
1270 case oNoDefRecipient:
1271 xfree (opt.def_recipient);
1272 opt.def_recipient = NULL;
1273 opt.def_recipient_self = 0;
1274 break;
1275
1276 case oWithKeyData: opt.with_key_data=1; /* fall thru */
1277 case oWithColons: ctrl.with_colons = 1; break;
1278 case oWithValidation: ctrl.with_validation=1; break;
1279 case oWithEphemeralKeys: ctrl.with_ephemeral_keys=1; break;
1280
1281 case oSkipVerify: opt.skip_verify=1; break;
1282
1283 case oNoEncryptTo: opt.no_encrypt_to = 1; break;
1284 case oEncryptTo: /* Store the recipient in the second list */
1285 sl = add_to_strlist (&remusr, pargs.r.ret_str);
1286 sl->flags = 1;
1287 break;
1288
1289 case oRecipient: /* store the recipient */
1290 add_to_strlist ( &remusr, pargs.r.ret_str);
1291 break;
1292
1293 case oUser: /* Store the local users, the first one is the default */
1294 if (!opt.local_user)
1295 opt.local_user = xstrdup (pargs.r.ret_str);
1296 add_to_strlist (&locusr, pargs.r.ret_str);
1297 break;
1298
1299 case oNoSecmemWarn:
1300 gcry_control (GCRYCTL_DISABLE_SECMEM_WARN);
1301 break;
1302
1303 case oCipherAlgo:
1304 opt.def_cipher_algoid = pargs.r.ret_str;
1305 break;
1306
1307 case oDisableCipherAlgo:
1308 {
1309 int algo = gcry_cipher_map_name (pargs.r.ret_str);
1310 gcry_cipher_ctl (NULL, GCRYCTL_DISABLE_ALGO, &algo, sizeof algo);
1311 }
1312 break;
1313 case oDisablePubkeyAlgo:
1314 {
1315 int algo = gcry_pk_map_name (pargs.r.ret_str);
1316 gcry_pk_ctl (GCRYCTL_DISABLE_ALGO,&algo, sizeof algo );
1317 }
1318 break;
1319
1320 case oDigestAlgo:
1321 forced_digest_algo = pargs.r.ret_str;
1322 break;
1323
1324 case oExtraDigestAlgo:
1325 extra_digest_algo = pargs.r.ret_str;
1326 break;
1327
1328 case oIgnoreTimeConflict: opt.ignore_time_conflict = 1; break;
1329 case oNoRandomSeedFile: use_random_seed = 0; break;
1330 case oNoCommonCertsImport: no_common_certs_import = 1; break;
1331
1332 case oEnableSpecialFilenames: allow_special_filenames =1; break;
1333
1334 case oValidationModel: parse_validation_model (pargs.r.ret_str); break;
1335
1336 case oKeyServer:
1337 {
1338 struct keyserver_spec *keyserver;
1339 keyserver = parse_keyserver_line (pargs.r.ret_str,
1340 configname, configlineno);
1341 if (! keyserver)
1342 log_error (_("could not parse keyserver\n"));
1343 else
1344 {
1345 /* FIXME: Keep last next pointer. */
1346 struct keyserver_spec **next_p = &opt.keyserver;
1347 while (*next_p)
1348 next_p = &(*next_p)->next;
1349 *next_p = keyserver;
1350 }
1351 }
1352 break;
1353
1354 default:
1355 pargs.err = configfp? ARGPARSE_PRINT_WARNING:ARGPARSE_PRINT_ERROR;
1356 break;
1357 }
1358 }
1359
1360 if (configfp)
1361 {
1362 fclose (configfp);
1363 configfp = NULL;
1364 /* Keep a copy of the config filename. */
1365 opt.config_filename = configname;
1366 configname = NULL;
1367 goto next_pass;
1368 }
1369 xfree (configname);
1370 configname = NULL;
1371
1372 if (!opt.config_filename)
1373 opt.config_filename = make_filename (opt.homedir, "gpgsm.conf", NULL);
1374
1375 if (log_get_errorcount(0))
1376 gpgsm_exit(2);
1377
1378 /* Now that we have the options parsed we need to update the default
1379 control structure. */
1380 gpgsm_init_default_ctrl (&ctrl);
1381
1382 if (nogreeting)
1383 greeting = 0;
1384
1385 if (greeting)
1386 {
1387 fprintf(stderr, "%s %s; %s\n",
1388 strusage(11), strusage(13), strusage(14) );
1389 fprintf(stderr, "%s\n", strusage(15) );
1390 }
1391 # ifdef IS_DEVELOPMENT_VERSION
1392 if (!opt.batch)
1393 {
1394 log_info ("NOTE: THIS IS A DEVELOPMENT VERSION!\n");
1395 log_info ("It is only intended for test purposes and should NOT be\n");
1396 log_info ("used in a production environment or with production keys!\n");
1397 }
1398 # endif
1399
1400 if (auditlog)
1401 log_info ("NOTE: The audit log feature (--audit-log) is "
1402 "WORK IN PRORESS and not ready for use!\n");
1403
1404
1405 if (may_coredump && !opt.quiet)
1406 log_info (_("WARNING: program may create a core file!\n"));
1407
1408 /* if (opt.qualsig_approval && !opt.quiet) */
1409 /* log_info (_("This software has offically been approved to " */
1410 /* "create and verify\n" */
1411 /* "qualified signatures according to German law.\n")); */
1412
1413 if (logfile && cmd == aServer)
1414 {
1415 log_set_file (logfile);
1416 log_set_prefix (NULL, 1|2|4);
1417 }
1418
1419 if (gnupg_faked_time_p ())
1420 {
1421 gnupg_isotime_t tbuf;
1422
1423 log_info (_("WARNING: running with faked system time: "));
1424 gnupg_get_isotime (tbuf);
1425 dump_isotime (tbuf);
1426 log_printf ("\n");
1427 }
1428
1429 /*FIXME if (opt.batch) */
1430 /* tty_batchmode (1); */
1431
1432 gcry_control (GCRYCTL_RESUME_SECMEM_WARN);
1433
1434 set_debug ();
1435
1436 /* Although we alwasy use gpgsm_exit, we better install a regualr
1437 exit handler so that at least the secure memory gets wiped
1438 out. */
1439 if (atexit (emergency_cleanup))
1440 {
1441 log_error ("atexit failed\n");
1442 gpgsm_exit (2);
1443 }
1444
1445 /* Must do this after dropping setuid, because the mapping functions
1446 may try to load an module and we may have disabled an algorithm.
1447 We remap the commonly used algorithms to the OIDs for
1448 convenience. We need to work with the OIDs because they are used
1449 to check whether the encryption mode is actually available. */
1450 if (!strcmp (opt.def_cipher_algoid, "3DES") )
1451 opt.def_cipher_algoid = "1.2.840.113549.3.7";
1452 else if (!strcmp (opt.def_cipher_algoid, "AES")
1453 || !strcmp (opt.def_cipher_algoid, "AES128"))
1454 opt.def_cipher_algoid = "2.16.840.1.101.3.4.1.2";
1455 else if (!strcmp (opt.def_cipher_algoid, "AES256") )
1456 opt.def_cipher_algoid = "2.16.840.1.101.3.4.1.42";
1457 else if (!strcmp (opt.def_cipher_algoid, "SERPENT")
1458 || !strcmp (opt.def_cipher_algoid, "SERPENT128") )
1459 opt.def_cipher_algoid = "1.3.6.1.4.1.11591.13.2.2";
1460 else if (!strcmp (opt.def_cipher_algoid, "SERPENT192") )
1461 opt.def_cipher_algoid = "1.3.6.1.4.1.11591.13.2.22";
1462 else if (!strcmp (opt.def_cipher_algoid, "SERPENT192") )
1463 opt.def_cipher_algoid = "1.3.6.1.4.1.11591.13.2.42";
1464 else if (!strcmp (opt.def_cipher_algoid, "SEED") )
1465 opt.def_cipher_algoid = "1.2.410.200004.1.4";
1466 else if (!strcmp (opt.def_cipher_algoid, "CAMELLIA")
1467 || !strcmp (opt.def_cipher_algoid, "CAMELLIA128") )
1468 opt.def_cipher_algoid = "1.2.392.200011.61.1.1.1.2";
1469 else if (!strcmp (opt.def_cipher_algoid, "CAMELLIA192") )
1470 opt.def_cipher_algoid = "1.2.392.200011.61.1.1.1.3";
1471 else if (!strcmp (opt.def_cipher_algoid, "CAMELLIA256") )
1472 opt.def_cipher_algoid = "1.2.392.200011.61.1.1.1.4";
1473
1474 if (cmd != aGPGConfList)
1475 {
1476 if ( !gcry_cipher_map_name (opt.def_cipher_algoid)
1477 || !gcry_cipher_mode_from_oid (opt.def_cipher_algoid))
1478 log_error (_("selected cipher algorithm is invalid\n"));
1479
1480 if (forced_digest_algo)
1481 {
1482 opt.forced_digest_algo = gcry_md_map_name (forced_digest_algo);
1483 if (our_md_test_algo(opt.forced_digest_algo) )
1484 log_error (_("selected digest algorithm is invalid\n"));
1485 }
1486 if (extra_digest_algo)
1487 {
1488 opt.extra_digest_algo = gcry_md_map_name (extra_digest_algo);
1489 if (our_md_test_algo (opt.extra_digest_algo) )
1490 log_error (_("selected digest algorithm is invalid\n"));
1491 }
1492 }
1493
1494 if (log_get_errorcount(0))
1495 gpgsm_exit(2);
1496
1497 /* Set the random seed file. */
1498 if (use_random_seed)
1499 {
1500 char *p = make_filename (opt.homedir, "random_seed", NULL);
1501 gcry_control (GCRYCTL_SET_RANDOM_SEED_FILE, p);
1502 xfree(p);
1503 }
1504
1505 if (!cmd && opt.fingerprint && !with_fpr)
1506 set_cmd (&cmd, aListKeys);
1507
1508 /* Add default keybox. */
1509 if (!nrings && default_keyring)
1510 {
1511 int created;
1512
1513 keydb_add_resource ("pubring.kbx", 0, 0, &created);
1514 if (created && !no_common_certs_import)
1515 {
1516 /* Import the standard certificates for a new default keybox. */
1517 char *filelist[2];
1518
1519 filelist[0] = make_filename (gnupg_datadir (),"com-certs.pem", NULL);
1520 filelist[1] = NULL;
1521 if (!access (filelist[0], F_OK))
1522 {
1523 log_info (_("importing common certificates `%s'\n"),
1524 filelist[0]);
1525 gpgsm_import_files (&ctrl, 1, filelist, open_read);
1526 }
1527 xfree (filelist[0]);
1528 }
1529 }
1530 for (sl = nrings; sl; sl = sl->next)
1531 keydb_add_resource (sl->d, 0, 0, NULL);
1532 FREE_STRLIST(nrings);
1533
1534
1535 /* Prepare the audit log feature for certain commands. */
1536 if (auditlog)
1537 {
1538 switch (cmd)
1539 {
1540 case aEncr:
1541 case aSign:
1542 case aDecrypt:
1543 case aVerify:
1544 audit_release (ctrl.audit);
1545 ctrl.audit = audit_new ();
1546 auditfp = open_es_fwrite (auditlog);
1547 break;
1548 default:
1549 break;
1550 }
1551 }
1552
1553
1554 if (!do_not_setup_keys)
1555 {
1556 for (sl = locusr; sl ; sl = sl->next)
1557 {
1558 int rc = gpgsm_add_to_certlist (&ctrl, sl->d, 1, &signerlist, 0);
1559 if (rc)
1560 {
1561 log_error (_("can't sign using `%s': %s\n"),
1562 sl->d, gpg_strerror (rc));
1563 gpgsm_status2 (&ctrl, STATUS_INV_SGNR,
1564 get_inv_recpsgnr_code (rc), sl->d, NULL);
1565 gpgsm_status2 (&ctrl, STATUS_INV_RECP,
1566 get_inv_recpsgnr_code (rc), sl->d, NULL);
1567 }
1568 }
1569
1570 /* Build the recipient list. We first add the regular ones and then
1571 the encrypt-to ones because the underlying function will silently
1572 ignore duplicates and we can't allow to keep a duplicate which is
1573 flagged as encrypt-to as the actually encrypt function would then
1574 complain about no (regular) recipients. */
1575 for (sl = remusr; sl; sl = sl->next)
1576 if (!(sl->flags & 1))
1577 do_add_recipient (&ctrl, sl->d, &recplist, 0, recp_required);
1578 if (!opt.no_encrypt_to)
1579 {
1580 for (sl = remusr; sl; sl = sl->next)
1581 if ((sl->flags & 1))
1582 do_add_recipient (&ctrl, sl->d, &recplist, 1, recp_required);
1583 }
1584 }
1585
1586 if (log_get_errorcount(0))
1587 gpgsm_exit(1); /* Must stop for invalid recipients. */
1588
1589 fname = argc? *argv : NULL;
1590
1591 /* Dispatch command. */
1592 switch (cmd)
1593 {
1594 case aGPGConfList:
1595 { /* List options and default values in the GPG Conf format. */
1596 char *config_filename_esc = percent_escape (opt.config_filename, NULL);
1597
1598 printf ("gpgconf-gpgsm.conf:%lu:\"%s\n",
1599 GC_OPT_FLAG_DEFAULT, config_filename_esc);
1600 xfree (config_filename_esc);
1601
1602 printf ("verbose:%lu:\n", GC_OPT_FLAG_NONE);
1603 printf ("quiet:%lu:\n", GC_OPT_FLAG_NONE);
1604 printf ("debug-level:%lu:\"none:\n", GC_OPT_FLAG_DEFAULT);
1605 printf ("log-file:%lu:\n", GC_OPT_FLAG_NONE);
1606 printf ("disable-crl-checks:%lu:\n", GC_OPT_FLAG_NONE);
1607 printf ("disable-trusted-cert-crl-check:%lu:\n", GC_OPT_FLAG_NONE);
1608 printf ("enable-ocsp:%lu:\n", GC_OPT_FLAG_NONE);
1609 printf ("include-certs:%lu:1:\n", GC_OPT_FLAG_DEFAULT);
1610 printf ("disable-policy-checks:%lu:\n", GC_OPT_FLAG_NONE);
1611 printf ("auto-issuer-key-retrieve:%lu:\n", GC_OPT_FLAG_NONE);
1612 printf ("disable-dirmngr:%lu:\n", GC_OPT_FLAG_NONE);
1613 #ifndef HAVE_W32_SYSTEM
1614 printf ("prefer-system-dirmngr:%lu:\n", GC_OPT_FLAG_NONE);
1615 #endif
1616 printf ("cipher-algo:%lu:\"3DES:\n", GC_OPT_FLAG_DEFAULT);
1617 printf ("p12-charset:%lu:\n", GC_OPT_FLAG_DEFAULT);
1618 printf ("default-key:%lu:\n", GC_OPT_FLAG_DEFAULT);
1619 printf ("encrypt-to:%lu:\n", GC_OPT_FLAG_DEFAULT);
1620 printf ("keyserver:%lu:\n", GC_OPT_FLAG_NONE);
1621
1622 }
1623 break;
1624 case aGPGConfTest:
1625 /* This is merely a dummy command to test whether the
1626 configuration file is valid. */
1627 break;
1628
1629 case aServer:
1630 if (debug_wait)
1631 {
1632 log_debug ("waiting for debugger - my pid is %u .....\n",
1633 (unsigned int)getpid());
1634 gnupg_sleep (debug_wait);
1635 log_debug ("... okay\n");
1636 }
1637 gpgsm_server (recplist);
1638 break;
1639
1640 case aCallDirmngr:
1641 if (!argc)
1642 wrong_args ("--call-dirmngr <command> {args}");
1643 else
1644 if (gpgsm_dirmngr_run_command (&ctrl, *argv, argc-1, argv+1))
1645 gpgsm_exit (1);
1646 break;
1647
1648 case aCallProtectTool:
1649 run_protect_tool (argc, argv);
1650 break;
1651
1652 case aEncr: /* Encrypt the given file. */
1653 {
1654 FILE *fp = open_fwrite (opt.outfile?opt.outfile:"-");
1655
1656 set_binary (stdin);
1657
1658 if (!argc) /* Source is stdin. */
1659 gpgsm_encrypt (&ctrl, recplist, 0, fp);
1660 else if (argc == 1) /* Source is the given file. */
1661 gpgsm_encrypt (&ctrl, recplist, open_read (*argv), fp);
1662 else
1663 wrong_args ("--encrypt [datafile]");
1664
1665 if (fp != stdout)
1666 fclose (fp);
1667 }
1668 break;
1669
1670 case aSign: /* Sign the given file. */
1671 {
1672 FILE *fp = open_fwrite (opt.outfile?opt.outfile:"-");
1673
1674 /* Fixme: We should also allow to concatenate multiple files for
1675 signing because that is what gpg does.*/
1676 set_binary (stdin);
1677 if (!argc) /* Create from stdin. */
1678 gpgsm_sign (&ctrl, signerlist, 0, detached_sig, fp);
1679 else if (argc == 1) /* From file. */
1680 gpgsm_sign (&ctrl, signerlist,
1681 open_read (*argv), detached_sig, fp);
1682 else
1683 wrong_args ("--sign [datafile]");
1684
1685 if (fp != stdout)
1686 fclose (fp);
1687 }
1688 break;
1689
1690 case aSignEncr: /* sign and encrypt the given file */
1691 log_error ("this command has not yet been implemented\n");
1692 break;
1693
1694 case aClearsign: /* make a clearsig */
1695 log_error ("this command has not yet been implemented\n");
1696 break;
1697
1698 case aVerify:
1699 {
1700 FILE *fp = NULL;
1701
1702 set_binary (stdin);
1703 if (argc == 2 && opt.outfile)
1704 log_info ("option --output ignored for a detached signature\n");
1705 else if (opt.outfile)
1706 fp = open_fwrite (opt.outfile);
1707
1708 if (!argc)
1709 gpgsm_verify (&ctrl, 0, -1, fp); /* normal signature from stdin */
1710 else if (argc == 1)
1711 gpgsm_verify (&ctrl, open_read (*argv), -1, fp); /* std signature */
1712 else if (argc == 2) /* detached signature (sig, detached) */
1713 gpgsm_verify (&ctrl, open_read (*argv), open_read (argv[1]), NULL);
1714 else
1715 wrong_args ("--verify [signature [detached_data]]");
1716
1717 if (fp && fp != stdout)
1718 fclose (fp);
1719 }
1720 break;
1721
1722 case aDecrypt:
1723 {
1724 FILE *fp = open_fwrite (opt.outfile?opt.outfile:"-");
1725
1726 set_binary (stdin);
1727 if (!argc)
1728 gpgsm_decrypt (&ctrl, 0, fp); /* from stdin */
1729 else if (argc == 1)
1730 gpgsm_decrypt (&ctrl, open_read (*argv), fp); /* from file */
1731 else
1732 wrong_args ("--decrypt [filename]");
1733 if (fp != stdout)
1734 fclose (fp);
1735 }
1736 break;
1737
1738 case aDeleteKey:
1739 for (sl=NULL; argc; argc--, argv++)
1740 add_to_strlist (&sl, *argv);
1741 gpgsm_delete (&ctrl, sl);
1742 free_strlist(sl);
1743 break;
1744
1745 case aListChain:
1746 case aDumpChain:
1747 ctrl.with_chain = 1;
1748 case aListKeys:
1749 case aDumpKeys:
1750 case aListExternalKeys:
1751 case aDumpExternalKeys:
1752 case aListSecretKeys:
1753 case aDumpSecretKeys:
1754 {
1755 unsigned int mode;
1756 estream_t fp;
1757
1758 switch (cmd)
1759 {
1760 case aListChain:
1761 case aListKeys: mode = (0 | 0 | (1<<6)); break;
1762 case aDumpChain:
1763 case aDumpKeys: mode = (256 | 0 | (1<<6)); break;
1764 case aListExternalKeys: mode = (0 | 0 | (1<<7)); break;
1765 case aDumpExternalKeys: mode = (256 | 0 | (1<<7)); break;
1766 case aListSecretKeys: mode = (0 | 2 | (1<<6)); break;
1767 case aDumpSecretKeys: mode = (256 | 2 | (1<<6)); break;
1768 default: BUG();
1769 }
1770
1771 fp = open_es_fwrite (opt.outfile?opt.outfile:"-");
1772 for (sl=NULL; argc; argc--, argv++)
1773 add_to_strlist (&sl, *argv);
1774 gpgsm_list_keys (&ctrl, sl, fp, mode);
1775 free_strlist(sl);
1776 es_fclose (fp);
1777 }
1778 break;
1779
1780
1781 case aKeygen: /* Generate a key; well kind of. */
1782 {
1783 estream_t fpin = NULL;
1784 FILE *fpout;
1785
1786 if (opt.batch)
1787 {
1788 if (!argc) /* Create from stdin. */
1789 fpin = open_es_fread ("-");
1790 else if (argc == 1) /* From file. */
1791 fpin = open_es_fread (*argv);
1792 else
1793 wrong_args ("--gen-key --batch [parmfile]");
1794 }
1795
1796 fpout = open_fwrite (opt.outfile?opt.outfile:"-");
1797
1798 if (fpin)
1799 gpgsm_genkey (&ctrl, fpin, fpout);
1800 else
1801 gpgsm_gencertreq_tty (&ctrl, fpout);
1802
1803 if (fpout != stdout)
1804 fclose (fpout);
1805 }
1806 break;
1807
1808
1809 case aImport:
1810 gpgsm_import_files (&ctrl, argc, argv, open_read);
1811 break;
1812
1813 case aExport:
1814 {
1815 FILE *fp = open_fwrite (opt.outfile?opt.outfile:"-");
1816
1817 for (sl=NULL; argc; argc--, argv++)
1818 add_to_strlist (&sl, *argv);
1819 gpgsm_export (&ctrl, sl, fp, NULL);
1820 free_strlist(sl);
1821 if (fp != stdout)
1822 fclose (fp);
1823 }
1824 break;
1825
1826 case aExportSecretKeyP12:
1827 {
1828 FILE *fp = open_fwrite (opt.outfile?opt.outfile:"-");
1829
1830 if (argc == 1)
1831 gpgsm_p12_export (&ctrl, *argv, fp);
1832 else
1833 wrong_args ("--export-secret-key-p12 KEY-ID");
1834 if (fp != stdout)
1835 fclose (fp);
1836 }
1837 break;
1838
1839 case aSendKeys:
1840 case aRecvKeys:
1841 log_error ("this command has not yet been implemented\n");
1842 break;
1843
1844
1845 case aLearnCard:
1846 if (argc)
1847 wrong_args ("--learn-card");
1848 else
1849 {
1850 int rc = gpgsm_agent_learn (&ctrl);
1851 if (rc)
1852 log_error ("error learning card: %s\n", gpg_strerror (rc));
1853 }
1854 break;
1855
1856 case aPasswd:
1857 if (argc != 1)
1858 wrong_args ("--passwd <key-Id>");
1859 else
1860 {
1861 int rc;
1862 ksba_cert_t cert = NULL;
1863 char *grip = NULL;
1864
1865 rc = gpgsm_find_cert (*argv, NULL, &cert);
1866 if (rc)
1867 ;
1868 else if (!(grip = gpgsm_get_keygrip_hexstring (cert)))
1869 rc = gpg_error (GPG_ERR_BUG);
1870 else
1871 {
1872 char *desc = gpgsm_format_keydesc (cert);
1873 rc = gpgsm_agent_passwd (&ctrl, grip, desc);
1874 xfree (desc);
1875 }
1876 if (rc)
1877 log_error ("error changing passphrase: %s\n", gpg_strerror (rc));
1878 xfree (grip);
1879 ksba_cert_release (cert);
1880 }
1881 break;
1882
1883 case aKeydbClearSomeCertFlags:
1884 for (sl=NULL; argc; argc--, argv++)
1885 add_to_strlist (&sl, *argv);
1886 keydb_clear_some_cert_flags (&ctrl, sl);
1887 free_strlist(sl);
1888 break;
1889
1890
1891 default:
1892 log_error (_("invalid command (there is no implicit command)\n"));
1893 break;
1894 }
1895
1896 /* Print the audit result if needed. */
1897 if (auditlog && auditfp)
1898 {
1899 audit_print_result (ctrl.audit, auditfp, 0);
1900 audit_release (ctrl.audit);
1901 ctrl.audit = NULL;
1902 es_fclose (auditfp);
1903 }
1904
1905 /* cleanup */
1906 keyserver_list_free (opt.keyserver);
1907 opt.keyserver = NULL;
1908 gpgsm_release_certlist (recplist);
1909 gpgsm_release_certlist (signerlist);
1910 FREE_STRLIST (remusr);
1911 FREE_STRLIST (locusr);
1912 gpgsm_exit(0);
1913 return 8; /*NOTREACHED*/
1914 }
1915
1916 /* Note: This function is used by signal handlers!. */
1917 static void
1918 emergency_cleanup (void)
1919 {
1920 gcry_control (GCRYCTL_TERM_SECMEM );
1921 }
1922
1923
1924 void
1925 gpgsm_exit (int rc)
1926 {
1927 gcry_control (GCRYCTL_UPDATE_RANDOM_SEED_FILE);
1928 if (opt.debug & DBG_MEMSTAT_VALUE)
1929 {
1930 gcry_control( GCRYCTL_DUMP_MEMORY_STATS );
1931 gcry_control( GCRYCTL_DUMP_RANDOM_STATS );
1932 }
1933 if (opt.debug)
1934 gcry_control (GCRYCTL_DUMP_SECMEM_STATS );
1935 emergency_cleanup ();
1936 rc = rc? rc : log_get_errorcount(0)? 2 : gpgsm_errors_seen? 1 : 0;
1937 exit (rc);
1938 }
1939
1940
1941 void
1942 gpgsm_init_default_ctrl (struct server_control_s *ctrl)
1943 {
1944 ctrl->include_certs = default_include_certs;
1945 ctrl->use_ocsp = opt.enable_ocsp;
1946 ctrl->validation_model = default_validation_model;
1947 }
1948
1949
1950 int
1951 gpgsm_parse_validation_model (const char *model)
1952 {
1953 if (!ascii_strcasecmp (model, "shell") )
1954 return 0;
1955 else if ( !ascii_strcasecmp (model, "chain") )
1956 return 1;
1957 else
1958 return -1;
1959 }
1960
1961
1962 /* Check whether the filename has the form "-&nnnn", where n is a
1963 non-zero number. Returns this number or -1 if it is not the case. */
1964 static int
1965 check_special_filename (const char *fname, int for_write)
1966 {
1967 if (allow_special_filenames
1968 && fname && *fname == '-' && fname[1] == '&' ) {
1969 int i;
1970
1971 fname += 2;
1972 for (i=0; isdigit (fname[i]); i++ )
1973 ;
1974 if ( !fname[i] )
1975 return translate_sys2libc_fd_int (atoi (fname), for_write);
1976 }
1977 return -1;
1978 }
1979
1980
1981
1982 /* Open the FILENAME for read and return the filedescriptor. Stop
1983 with an error message in case of problems. "-" denotes stdin and
1984 if special filenames are allowed the given fd is opened instead. */
1985 static int
1986 open_read (const char *filename)
1987 {
1988 int fd;
1989
1990 if (filename[0] == '-' && !filename[1])
1991 {
1992 set_binary (stdin);
1993 return 0; /* stdin */
1994 }
1995 fd = check_special_filename (filename, 0);
1996 if (fd != -1)
1997 return fd;
1998 fd = open (filename, O_RDONLY | O_BINARY);
1999 if (fd == -1)
2000 {
2001 log_error (_("can't open `%s': %s\n"), filename, strerror (errno));
2002 gpgsm_exit (2);
2003 }
2004 return fd;
2005 }
2006
2007 /* Same as open_read but return an estream_t. */
2008 static estream_t
2009 open_es_fread (const char *filename)
2010 {
2011 int fd;
2012 estream_t fp;
2013
2014 if (filename[0] == '-' && !filename[1])
2015 fd = fileno (stdin);
2016 else
2017 fd = check_special_filename (filename, 0);
2018 if (fd != -1)
2019 {
2020 fp = es_fdopen_nc (fd, "rb");
2021 if (!fp)
2022 {
2023 log_error ("es_fdopen(%d) failed: %s\n", fd, strerror (errno));
2024 gpgsm_exit (2);
2025 }
2026 return fp;
2027 }
2028 fp = es_fopen (filename, "rb");
2029 if (!fp)
2030 {
2031 log_error (_("can't open `%s': %s\n"), filename, strerror (errno));
2032 gpgsm_exit (2);
2033 }
2034 return fp;
2035 }
2036
2037
2038 /* Open FILENAME for fwrite and return the stream. Stop with an error
2039 message in case of problems. "-" denotes stdout and if special
2040 filenames are allowed the given fd is opened instead. Caller must
2041 close the returned stream unless it is stdout. */
2042 static FILE *
2043 open_fwrite (const char *filename)
2044 {
2045 int fd;
2046 FILE *fp;
2047
2048 if (filename[0] == '-' && !filename[1])
2049 {
2050 set_binary (stdout);
2051 return stdout;
2052 }
2053
2054 fd = check_special_filename (filename, 1);
2055 if (fd != -1)
2056 {
2057 fp = fdopen (dup (fd), "wb");
2058 if (!fp)
2059 {
2060 log_error ("fdopen(%d) failed: %s\n", fd, strerror (errno));
2061 gpgsm_exit (2);
2062 }
2063 set_binary (fp);
2064 return fp;
2065 }
2066 fp = fopen (filename, "wb");
2067 if (!fp)
2068 {
2069 log_error (_("can't open `%s': %s\n"), filename, strerror (errno));
2070 gpgsm_exit (2);
2071 }
2072 return fp;
2073 }
2074
2075
2076 /* Open FILENAME for fwrite and return an extended stream. Stop with
2077 an error message in case of problems. "-" denotes stdout and if
2078 special filenames are allowed the given fd is opened instead.
2079 Caller must close the returned stream. */
2080 static estream_t
2081 open_es_fwrite (const char *filename)
2082 {
2083 int fd;
2084 estream_t fp;
2085
2086 if (filename[0] == '-' && !filename[1])
2087 {
2088 fflush (stdout);
2089 fp = es_fdopen_nc (fileno(stdout), "wb");
2090 return fp;
2091 }
2092
2093 fd = check_special_filename (filename, 1);
2094 if (fd != -1)
2095 {
2096 fp = es_fdopen_nc (fd, "wb");
2097 if (!fp)
2098 {
2099 log_error ("es_fdopen(%d) failed: %s\n", fd, strerror (errno));
2100 gpgsm_exit (2);
2101 }
2102 return fp;
2103 }
2104 fp = es_fopen (filename, "wb");
2105 if (!fp)
2106 {
2107 log_error (_("can't open `%s': %s\n"), filename, strerror (errno));
2108 gpgsm_exit (2);
2109 }
2110 return fp;
2111 }
2112
2113
2114 static void
2115 run_protect_tool (int argc, char **argv)
2116 {
2117 #ifndef HAVE_W32_SYSTEM
2118 const char *pgm;
2119 char **av;
2120 int i;
2121
2122 if (!opt.protect_tool_program || !*opt.protect_tool_program)
2123 pgm = gnupg_module_name (GNUPG_MODULE_NAME_PROTECT_TOOL);
2124 else
2125 pgm = opt.protect_tool_program;
2126
2127 av = xcalloc (argc+2, sizeof *av);
2128 av[0] = strrchr (pgm, '/');
2129 if (!av[0])
2130 av[0] = xstrdup (pgm);
2131 for (i=1; argc; i++, argc--, argv++)
2132 av[i] = *argv;
2133 av[i] = NULL;
2134 execv (pgm, av);
2135 log_error ("error executing `%s': %s\n", pgm, strerror (errno));
2136 #endif /*HAVE_W32_SYSTEM*/
2137 gpgsm_exit (2);
2138 }
gnupg svn clone