|
|
|
|
@ -67,9 +67,14 @@ static PEP_STATUS _generate_reset_structs(PEP_SESSION session,
|
|
|
|
|
|
|
|
|
|
if (!include_secret) { // This isn't to own recips, so shipping the rev'd key is OK. Own keys are revoked on each device.
|
|
|
|
|
status = export_key(session, old_fpr, &key_material_old, &datasize);
|
|
|
|
|
|
|
|
|
|
// Shouldn't happen, but we can't make presumptions about crypto engine
|
|
|
|
|
if (PASS_ERROR(status))
|
|
|
|
|
goto pEp_error;
|
|
|
|
|
|
|
|
|
|
if (datasize > 0 && key_material_old) {
|
|
|
|
|
if (status != PEP_STATUS_OK)
|
|
|
|
|
return status;
|
|
|
|
|
goto pEp_error;
|
|
|
|
|
|
|
|
|
|
if (!keys)
|
|
|
|
|
keys = new_bloblist(key_material_old, datasize,
|
|
|
|
|
@ -82,10 +87,13 @@ static PEP_STATUS _generate_reset_structs(PEP_SESSION session,
|
|
|
|
|
datasize = 0;
|
|
|
|
|
}
|
|
|
|
|
status = export_key(session, new_fpr, &key_material_new, &datasize);
|
|
|
|
|
// Shouldn't happen, but we can't make presumptions about crypto engine
|
|
|
|
|
if (PASS_ERROR(status))
|
|
|
|
|
goto pEp_error;
|
|
|
|
|
|
|
|
|
|
if (datasize > 0 && key_material_new) {
|
|
|
|
|
if (status != PEP_STATUS_OK)
|
|
|
|
|
return status;
|
|
|
|
|
goto pEp_error;
|
|
|
|
|
|
|
|
|
|
if (!keys)
|
|
|
|
|
keys = new_bloblist(key_material_new, datasize,
|
|
|
|
|
@ -97,8 +105,8 @@ static PEP_STATUS _generate_reset_structs(PEP_SESSION session,
|
|
|
|
|
datasize = 0;
|
|
|
|
|
if (include_secret) {
|
|
|
|
|
status = export_secret_key(session, new_fpr, &key_material_priv, &datasize);
|
|
|
|
|
if (status != PEP_STATUS_OK)
|
|
|
|
|
return status;
|
|
|
|
|
if (status != PEP_STATUS_OK) // includes PASS_ERROR
|
|
|
|
|
goto pEp_error;
|
|
|
|
|
if (datasize > 0 && key_material_priv) {
|
|
|
|
|
bloblist_add(keys, key_material_priv, datasize, "application/pgp-keys",
|
|
|
|
|
"file://pEpkey_priv.asc");
|
|
|
|
|
@ -112,6 +120,13 @@ static PEP_STATUS _generate_reset_structs(PEP_SESSION session,
|
|
|
|
|
*key_attachments = keys;
|
|
|
|
|
}
|
|
|
|
|
return status;
|
|
|
|
|
|
|
|
|
|
pEp_error:
|
|
|
|
|
free(key_material_old);
|
|
|
|
|
free(key_material_new);
|
|
|
|
|
free(key_material_priv);
|
|
|
|
|
free_bloblist(keys);
|
|
|
|
|
return status;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// For multiple idents under a single key
|
|
|
|
|
@ -139,9 +154,11 @@ static PEP_STATUS _generate_own_commandlist_msg(PEP_SESSION session,
|
|
|
|
|
&kr_commands,
|
|
|
|
|
true);
|
|
|
|
|
if (status != PEP_STATUS_OK)
|
|
|
|
|
return status; // FIXME
|
|
|
|
|
if (!key_attachments || !kr_commands)
|
|
|
|
|
return PEP_UNKNOWN_ERROR;
|
|
|
|
|
goto pEp_error;
|
|
|
|
|
if (!key_attachments || !kr_commands) {
|
|
|
|
|
status = PEP_UNKNOWN_ERROR;
|
|
|
|
|
goto pEp_error;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@ -154,7 +171,7 @@ static PEP_STATUS _generate_own_commandlist_msg(PEP_SESSION session,
|
|
|
|
|
size_t size = 0;
|
|
|
|
|
status = key_reset_commands_to_PER(kr_commands, &payload, &size);
|
|
|
|
|
if (status != PEP_STATUS_OK)
|
|
|
|
|
return status;
|
|
|
|
|
goto pEp_error;
|
|
|
|
|
|
|
|
|
|
// From and to our first ident - this only goes to us.
|
|
|
|
|
pEp_identity* from = identity_dup(from_idents->ident);
|
|
|
|
|
@ -163,17 +180,22 @@ static PEP_STATUS _generate_own_commandlist_msg(PEP_SESSION session,
|
|
|
|
|
BASE_KEYRESET, payload, size, NULL,
|
|
|
|
|
&msg);
|
|
|
|
|
|
|
|
|
|
if (status != PEP_STATUS_OK) {
|
|
|
|
|
free(msg);
|
|
|
|
|
return status;
|
|
|
|
|
if (status != PEP_STATUS_OK)
|
|
|
|
|
goto pEp_error;
|
|
|
|
|
|
|
|
|
|
if (!msg) {
|
|
|
|
|
status = PEP_OUT_OF_MEMORY;
|
|
|
|
|
goto pEp_error;
|
|
|
|
|
}
|
|
|
|
|
if (!msg->attachments) {
|
|
|
|
|
status = PEP_UNKNOWN_ERROR;
|
|
|
|
|
goto pEp_error;
|
|
|
|
|
}
|
|
|
|
|
if (!msg)
|
|
|
|
|
return PEP_OUT_OF_MEMORY;
|
|
|
|
|
if (!msg->attachments)
|
|
|
|
|
return PEP_UNKNOWN_ERROR;
|
|
|
|
|
|
|
|
|
|
if (!bloblist_join(msg->attachments, key_attachments))
|
|
|
|
|
return PEP_UNKNOWN_ERROR;
|
|
|
|
|
if (!bloblist_join(msg->attachments, key_attachments)) {
|
|
|
|
|
status = PEP_UNKNOWN_ERROR;
|
|
|
|
|
goto pEp_error;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (msg)
|
|
|
|
|
*dst = msg;
|
|
|
|
|
@ -181,7 +203,16 @@ static PEP_STATUS _generate_own_commandlist_msg(PEP_SESSION session,
|
|
|
|
|
free_keyreset_command_list(kr_commands);
|
|
|
|
|
|
|
|
|
|
return status;
|
|
|
|
|
|
|
|
|
|
pEp_error:
|
|
|
|
|
if (!msg)
|
|
|
|
|
free_bloblist(key_attachments);
|
|
|
|
|
else
|
|
|
|
|
free(msg);
|
|
|
|
|
|
|
|
|
|
free_keyreset_command_list(kr_commands);
|
|
|
|
|
|
|
|
|
|
return status;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static PEP_STATUS _generate_keyreset_command_message(PEP_SESSION session,
|
|
|
|
|
@ -195,8 +226,7 @@ static PEP_STATUS _generate_keyreset_command_message(PEP_SESSION session,
|
|
|
|
|
if (!session || !from_ident || !old_fpr || !new_fpr || !dst)
|
|
|
|
|
return PEP_ILLEGAL_VALUE;
|
|
|
|
|
|
|
|
|
|
// safe cast
|
|
|
|
|
if (!is_me(session, (pEp_identity*)from_ident))
|
|
|
|
|
if (!is_me(session, from_ident))
|
|
|
|
|
return PEP_ILLEGAL_VALUE;
|
|
|
|
|
|
|
|
|
|
PEP_STATUS status = PEP_STATUS_OK;
|
|
|
|
|
@ -225,29 +255,41 @@ static PEP_STATUS _generate_keyreset_command_message(PEP_SESSION session,
|
|
|
|
|
&key_attachments,
|
|
|
|
|
&kr_list,
|
|
|
|
|
is_private);
|
|
|
|
|
|
|
|
|
|
// N.B. command list and key attachments are freed by
|
|
|
|
|
// _generate_reset_structs when status is not OK
|
|
|
|
|
if (status != PEP_STATUS_OK)
|
|
|
|
|
return status; // FIXME
|
|
|
|
|
return status;
|
|
|
|
|
|
|
|
|
|
if (!key_attachments || !kr_list)
|
|
|
|
|
return PEP_UNKNOWN_ERROR;
|
|
|
|
|
|
|
|
|
|
char* payload = NULL;
|
|
|
|
|
size_t size = 0;
|
|
|
|
|
status = key_reset_commands_to_PER(kr_list, &payload, &size);
|
|
|
|
|
if (status != PEP_STATUS_OK)
|
|
|
|
|
return status;
|
|
|
|
|
|
|
|
|
|
status = base_prepare_message(session, outgoing_ident, to_ident,
|
|
|
|
|
BASE_KEYRESET, payload, size, NULL,
|
|
|
|
|
&msg);
|
|
|
|
|
if (status) {
|
|
|
|
|
|
|
|
|
|
if (status != PEP_STATUS_OK) {
|
|
|
|
|
free(msg);
|
|
|
|
|
return status;
|
|
|
|
|
}
|
|
|
|
|
if (!msg)
|
|
|
|
|
return PEP_OUT_OF_MEMORY;
|
|
|
|
|
if (!msg->attachments)
|
|
|
|
|
|
|
|
|
|
if (!msg->attachments) {
|
|
|
|
|
free(msg);
|
|
|
|
|
return PEP_UNKNOWN_ERROR;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (msg)
|
|
|
|
|
*dst = msg;
|
|
|
|
|
return status;
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
PEP_STATUS has_key_reset_been_sent(
|
|
|
|
|
@ -398,6 +440,8 @@ PEP_STATUS receive_key_reset(PEP_SESSION session,
|
|
|
|
|
if (!sender_id->user_id)
|
|
|
|
|
return PEP_UNKNOWN_ERROR;
|
|
|
|
|
}
|
|
|
|
|
if (status != PEP_STATUS_OK) // Do we need to be more specific??
|
|
|
|
|
return status;
|
|
|
|
|
|
|
|
|
|
bool sender_own_key = false;
|
|
|
|
|
bool from_me = is_me(session, sender_id);
|
|
|
|
|
@ -503,7 +547,9 @@ PEP_STATUS receive_key_reset(PEP_SESSION session,
|
|
|
|
|
free(curr_ident->user_id);
|
|
|
|
|
curr_ident->user_id = NULL;
|
|
|
|
|
status = update_identity(session, curr_ident);
|
|
|
|
|
|
|
|
|
|
if (status != PEP_STATUS_OK)
|
|
|
|
|
return status;
|
|
|
|
|
|
|
|
|
|
// Ok, now check the old fpr to see if we have an entry for it
|
|
|
|
|
// temp fpr set for function call
|
|
|
|
|
curr_ident->fpr = old_fpr;
|
|
|
|
|
|
