|
|
|
|
#include "pEp_internal.h"
|
|
|
|
|
#include "dynamic_api.h"
|
|
|
|
|
#include "cryptotech.h"
|
|
|
|
|
#include "transport.h"
|
|
|
|
|
#include "blacklist.h"
|
|
|
|
|
|
|
|
|
|
static int init_count = -1;
|
|
|
|
|
|
|
|
|
|
DYNAMIC_API PEP_STATUS init(PEP_SESSION *session)
|
|
|
|
|
{
|
|
|
|
|
PEP_STATUS status = PEP_STATUS_OK;
|
|
|
|
|
int int_result;
|
|
|
|
|
static const char *sql_log;
|
|
|
|
|
static const char *sql_trustword;
|
|
|
|
|
static const char *sql_get_identity;
|
|
|
|
|
static const char *sql_set_person;
|
|
|
|
|
static const char *sql_set_pgp_keypair;
|
|
|
|
|
static const char *sql_set_identity;
|
|
|
|
|
static const char *sql_set_trust;
|
|
|
|
|
static const char *sql_get_trust;
|
|
|
|
|
static const char *sql_least_trust;
|
|
|
|
|
static const char *sql_mark_as_compromized;
|
|
|
|
|
static const char *sql_crashdump;
|
|
|
|
|
static const char *sql_languagelist;
|
|
|
|
|
static const char *sql_i18n_token;
|
|
|
|
|
|
|
|
|
|
// blacklist
|
|
|
|
|
static const char *sql_blacklist_add;
|
|
|
|
|
static const char *sql_blacklist_delete;
|
|
|
|
|
static const char *sql_blacklist_is_listed;
|
|
|
|
|
static const char *sql_blacklist_retrieve;
|
|
|
|
|
|
|
|
|
|
// Own keys
|
|
|
|
|
static const char *sql_own_key_is_listed;
|
|
|
|
|
static const char *sql_own_key_retrieve;
|
|
|
|
|
|
|
|
|
|
static const char *sql_sequence_value1;
|
|
|
|
|
static const char *sql_sequence_value2;
|
|
|
|
|
|
|
|
|
|
bool in_first = false;
|
|
|
|
|
|
|
|
|
|
assert(sqlite3_threadsafe());
|
|
|
|
|
if (!sqlite3_threadsafe())
|
|
|
|
|
return PEP_INIT_SQLITE3_WITHOUT_MUTEX;
|
|
|
|
|
|
|
|
|
|
// a little race condition - but still a race condition
|
|
|
|
|
// mitigated by calling caveat (see documentation)
|
|
|
|
|
|
|
|
|
|
++init_count;
|
|
|
|
|
if (init_count == 0)
|
|
|
|
|
in_first = true;
|
|
|
|
|
|
|
|
|
|
assert(session);
|
|
|
|
|
if (session == NULL)
|
|
|
|
|
return PEP_ILLEGAL_VALUE;
|
|
|
|
|
|
|
|
|
|
*session = NULL;
|
|
|
|
|
|
|
|
|
|
pEpSession *_session = calloc(1, sizeof(pEpSession));
|
|
|
|
|
assert(_session);
|
|
|
|
|
if (_session == NULL)
|
|
|
|
|
goto enomem;
|
|
|
|
|
|
|
|
|
|
_session->version = PEP_ENGINE_VERSION;
|
|
|
|
|
|
|
|
|
|
assert(LOCAL_DB);
|
|
|
|
|
if (LOCAL_DB == NULL) {
|
|
|
|
|
status = PEP_INIT_CANNOT_OPEN_DB;
|
|
|
|
|
goto pep_error;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_open_v2(
|
|
|
|
|
LOCAL_DB,
|
|
|
|
|
&_session->db,
|
|
|
|
|
SQLITE_OPEN_READWRITE
|
|
|
|
|
| SQLITE_OPEN_CREATE
|
|
|
|
|
| SQLITE_OPEN_FULLMUTEX
|
|
|
|
|
| SQLITE_OPEN_PRIVATECACHE,
|
|
|
|
|
NULL
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
if (int_result != SQLITE_OK) {
|
|
|
|
|
status = PEP_INIT_CANNOT_OPEN_DB;
|
|
|
|
|
goto pep_error;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sqlite3_busy_timeout(_session->db, BUSY_WAIT_TIME);
|
|
|
|
|
|
|
|
|
|
assert(SYSTEM_DB);
|
|
|
|
|
if (SYSTEM_DB == NULL) {
|
|
|
|
|
status = PEP_INIT_CANNOT_OPEN_SYSTEM_DB;
|
|
|
|
|
goto pep_error;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_open_v2(
|
|
|
|
|
SYSTEM_DB, &_session->system_db,
|
|
|
|
|
SQLITE_OPEN_READONLY
|
|
|
|
|
| SQLITE_OPEN_FULLMUTEX
|
|
|
|
|
| SQLITE_OPEN_SHAREDCACHE,
|
|
|
|
|
NULL
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
if (int_result != SQLITE_OK) {
|
|
|
|
|
status = PEP_INIT_CANNOT_OPEN_SYSTEM_DB;
|
|
|
|
|
goto pep_error;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sqlite3_busy_timeout(_session->system_db, 1000);
|
|
|
|
|
|
|
|
|
|
if (in_first) {
|
|
|
|
|
int_result = sqlite3_exec(
|
|
|
|
|
_session->db,
|
|
|
|
|
"create table if not exists version_info (\n"
|
|
|
|
|
" id integer primary key,\n"
|
|
|
|
|
" timestamp integer default (datetime('now')) ,\n"
|
|
|
|
|
" version text,\n"
|
|
|
|
|
" comment text\n"
|
|
|
|
|
");\n"
|
|
|
|
|
"create table if not exists log (\n"
|
|
|
|
|
" timestamp integer default (datetime('now')) ,\n"
|
|
|
|
|
" title text not null,\n"
|
|
|
|
|
" entity text not null,\n"
|
|
|
|
|
" description text,\n"
|
|
|
|
|
" comment text\n"
|
|
|
|
|
");\n"
|
|
|
|
|
"create index if not exists log_timestamp on log (\n"
|
|
|
|
|
" timestamp\n"
|
|
|
|
|
");\n"
|
|
|
|
|
"create table if not exists pgp_keypair (\n"
|
|
|
|
|
" fpr text primary key,\n"
|
|
|
|
|
" public_id text unique,\n"
|
|
|
|
|
" private_id text,\n"
|
|
|
|
|
" created integer,\n"
|
|
|
|
|
" expires integer,\n"
|
|
|
|
|
" comment text\n"
|
|
|
|
|
");\n"
|
|
|
|
|
"create index if not exists pgp_keypair_expires on pgp_keypair (\n"
|
|
|
|
|
" expires\n"
|
|
|
|
|
");\n"
|
|
|
|
|
"create table if not exists person (\n"
|
|
|
|
|
" id text primary key,\n"
|
|
|
|
|
" username text not null,\n"
|
|
|
|
|
" main_key_id text\n"
|
|
|
|
|
" references pgp_keypair (fpr)\n"
|
|
|
|
|
" on delete set null,\n"
|
|
|
|
|
" lang text,\n"
|
|
|
|
|
" comment text\n"
|
|
|
|
|
");\n"
|
|
|
|
|
"create table if not exists identity (\n"
|
|
|
|
|
" address text,\n"
|
|
|
|
|
" user_id text\n"
|
|
|
|
|
" references person (id)\n"
|
|
|
|
|
" on delete cascade,\n"
|
|
|
|
|
" main_key_id text\n"
|
|
|
|
|
" references pgp_keypair (fpr)\n"
|
|
|
|
|
" on delete set null,\n"
|
|
|
|
|
" comment text,\n"
|
|
|
|
|
" primary key (address, user_id)\n"
|
|
|
|
|
");\n"
|
|
|
|
|
"create table if not exists trust (\n"
|
|
|
|
|
" user_id text not null\n"
|
|
|
|
|
" references person (id)\n"
|
|
|
|
|
" on delete cascade,\n"
|
|
|
|
|
" pgp_keypair_fpr text not null\n"
|
|
|
|
|
" references pgp_keypair (fpr)\n"
|
|
|
|
|
" on delete cascade,\n"
|
|
|
|
|
" comm_type integer not null,\n"
|
|
|
|
|
" comment text,\n"
|
|
|
|
|
" primary key (user_id, pgp_keypair_fpr)\n"
|
|
|
|
|
");\n"
|
|
|
|
|
// blacklist
|
|
|
|
|
"create table if not exists blacklist_keys (\n"
|
|
|
|
|
" fpr text primary key\n"
|
|
|
|
|
");\n"
|
|
|
|
|
// sequences
|
|
|
|
|
"create table if not exists sequences(\n"
|
|
|
|
|
" name text primary key,\n"
|
|
|
|
|
" value integer default 0\n"
|
|
|
|
|
");\n"
|
|
|
|
|
,
|
|
|
|
|
NULL,
|
|
|
|
|
NULL,
|
|
|
|
|
NULL
|
|
|
|
|
);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_exec(
|
|
|
|
|
_session->db,
|
|
|
|
|
"insert or replace into version_info (id, version) values (1, '1.1');",
|
|
|
|
|
NULL,
|
|
|
|
|
NULL,
|
|
|
|
|
NULL
|
|
|
|
|
);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
sql_log = "insert into log (title, entity, description, comment)"
|
|
|
|
|
"values (?1, ?2, ?3, ?4);";
|
|
|
|
|
|
|
|
|
|
sql_get_identity = "select fpr, username, comm_type, lang"
|
|
|
|
|
" from identity"
|
|
|
|
|
" join person on id = identity.user_id"
|
|
|
|
|
" join pgp_keypair on fpr = identity.main_key_id"
|
|
|
|
|
" join trust on id = trust.user_id"
|
|
|
|
|
" and pgp_keypair_fpr = identity.main_key_id"
|
|
|
|
|
" where address = ?1 and identity.user_id = ?2;";
|
|
|
|
|
|
|
|
|
|
sql_trustword = "select id, word from wordlist where lang = lower(?1) "
|
|
|
|
|
"and id = ?2 ;";
|
|
|
|
|
|
|
|
|
|
// Set person, but if already exist, only update.
|
|
|
|
|
// if main_key_id already set, don't touch.
|
|
|
|
|
sql_set_person = "insert or replace into person (id, username, lang, main_key_id)"
|
|
|
|
|
" values (?1, ?2, ?3,"
|
|
|
|
|
" (select coalesce((select main_key_id from person "
|
|
|
|
|
" where id = ?1), upper(replace(?4,' ',''))))) ;";
|
|
|
|
|
|
|
|
|
|
sql_set_pgp_keypair = "insert or replace into pgp_keypair (fpr) "
|
|
|
|
|
"values (upper(replace(?1,' ',''))) ;";
|
|
|
|
|
|
|
|
|
|
sql_set_identity = "insert or replace into identity (address, main_key_id, "
|
|
|
|
|
"user_id) values (?1, upper(replace(?2,' ','')), ?3) ;";
|
|
|
|
|
|
|
|
|
|
sql_set_trust = "insert or replace into trust (user_id, pgp_keypair_fpr, comm_type) "
|
|
|
|
|
"values (?1, upper(replace(?2,' ','')), ?3) ;";
|
|
|
|
|
|
|
|
|
|
sql_get_trust = "select comm_type from trust where user_id = ?1 "
|
|
|
|
|
"and pgp_keypair_fpr = upper(replace(?2,' ','')) ;";
|
|
|
|
|
|
|
|
|
|
sql_least_trust = "select min(comm_type) from trust where pgp_keypair_fpr = upper(replace(?1,' ','')) ;";
|
|
|
|
|
|
|
|
|
|
sql_mark_as_compromized = "update trust not indexed set comm_type = 15"
|
|
|
|
|
" where pgp_keypair_fpr = upper(replace(?1,' ','')) ;";
|
|
|
|
|
|
|
|
|
|
sql_crashdump = "select timestamp, title, entity, description, comment"
|
|
|
|
|
" from log order by timestamp desc limit ?1 ;";
|
|
|
|
|
|
|
|
|
|
sql_languagelist = "select i18n_language.lang, name, phrase from i18n_language join i18n_token using (lang) where i18n_token.id = 1000;" ;
|
|
|
|
|
|
|
|
|
|
sql_i18n_token = "select phrase from i18n_token where lang = lower(?1) and id = ?2 ;";
|
|
|
|
|
|
|
|
|
|
// blacklist
|
|
|
|
|
|
|
|
|
|
sql_blacklist_add = "insert or replace into blacklist_keys (fpr) values (upper(replace(?1,' ',''))) ;"
|
|
|
|
|
"delete from identity where main_key_id = upper(replace(?1,' ','')) ;"
|
|
|
|
|
"delete from pgp_keypair where fpr = upper(replace(?1,' ','')) ;";
|
|
|
|
|
|
|
|
|
|
sql_blacklist_delete = "delete from blacklist_keys where fpr = upper(replace(?1,' ','')) ;";
|
|
|
|
|
|
|
|
|
|
sql_blacklist_is_listed = "select count(*) from blacklist_keys where fpr = upper(replace(?1,' ','')) ;";
|
|
|
|
|
|
|
|
|
|
sql_blacklist_retrieve = "select * from blacklist_keys ;";
|
|
|
|
|
|
|
|
|
|
// Own keys
|
|
|
|
|
|
|
|
|
|
sql_own_key_is_listed =
|
|
|
|
|
"select count(*) from ("
|
|
|
|
|
" select main_key_id from person "
|
|
|
|
|
" where main_key_id = upper(replace(?1,' ',''))"
|
|
|
|
|
" and id = '" PEP_OWN_USERID "' "
|
|
|
|
|
" union "
|
|
|
|
|
" select main_key_id from identity "
|
|
|
|
|
" where main_key_id = upper(replace(?1,' ',''))"
|
|
|
|
|
" and user_id = '" PEP_OWN_USERID "' );";
|
|
|
|
|
|
|
|
|
|
sql_own_key_retrieve = "select main_key_id from person "
|
|
|
|
|
" where main_key_id is not null"
|
|
|
|
|
" and id = '" PEP_OWN_USERID "' "
|
|
|
|
|
"union "
|
|
|
|
|
" select main_key_id from identity "
|
|
|
|
|
" where main_key_id is not null"
|
|
|
|
|
" and user_id = '" PEP_OWN_USERID "' ;";
|
|
|
|
|
|
|
|
|
|
sql_sequence_value1 = "insert or replace into sequences (name, value) "
|
|
|
|
|
"values (?1, "
|
|
|
|
|
"(select coalesce((select value + 1 from sequences "
|
|
|
|
|
"where name = ?1), 1 ))) ; ";
|
|
|
|
|
sql_sequence_value2 = "select value from sequences where name = ?1 ;";
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_log, (int)strlen(sql_log),
|
|
|
|
|
&_session->log, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->system_db, sql_trustword,
|
|
|
|
|
(int)strlen(sql_trustword), &_session->trustword, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_get_identity,
|
|
|
|
|
(int)strlen(sql_get_identity), &_session->get_identity, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_set_person,
|
|
|
|
|
(int)strlen(sql_set_person), &_session->set_person, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_set_pgp_keypair,
|
|
|
|
|
(int)strlen(sql_set_pgp_keypair), &_session->set_pgp_keypair, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_set_identity,
|
|
|
|
|
(int)strlen(sql_set_identity), &_session->set_identity, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_set_trust,
|
|
|
|
|
(int)strlen(sql_set_trust), &_session->set_trust, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_get_trust,
|
|
|
|
|
(int)strlen(sql_get_trust), &_session->get_trust, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_least_trust,
|
|
|
|
|
(int)strlen(sql_least_trust), &_session->least_trust, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_mark_as_compromized,
|
|
|
|
|
(int)strlen(sql_mark_as_compromized), &_session->mark_compromized, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_crashdump,
|
|
|
|
|
(int)strlen(sql_crashdump), &_session->crashdump, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->system_db, sql_languagelist,
|
|
|
|
|
(int)strlen(sql_languagelist), &_session->languagelist, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->system_db, sql_i18n_token,
|
|
|
|
|
(int)strlen(sql_i18n_token), &_session->i18n_token, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
// blacklist
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_blacklist_add,
|
|
|
|
|
(int)strlen(sql_blacklist_add), &_session->blacklist_add, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_blacklist_delete,
|
|
|
|
|
(int)strlen(sql_blacklist_delete), &_session->blacklist_delete, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_blacklist_is_listed,
|
|
|
|
|
(int)strlen(sql_blacklist_is_listed), &_session->blacklist_is_listed, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_blacklist_retrieve,
|
|
|
|
|
(int)strlen(sql_blacklist_retrieve), &_session->blacklist_retrieve, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
// Own keys
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_own_key_is_listed,
|
|
|
|
|
(int)strlen(sql_own_key_is_listed), &_session->own_key_is_listed, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_own_key_retrieve,
|
|
|
|
|
(int)strlen(sql_own_key_retrieve), &_session->own_key_retrieve, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
// Sequence
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_sequence_value1,
|
|
|
|
|
(int)strlen(sql_sequence_value1), &_session->sequence_value1, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
int_result = sqlite3_prepare_v2(_session->db, sql_sequence_value2,
|
|
|
|
|
(int)strlen(sql_sequence_value2), &_session->sequence_value2, NULL);
|
|
|
|
|
assert(int_result == SQLITE_OK);
|
|
|
|
|
|
|
|
|
|
status = init_cryptotech(_session, in_first);
|
|
|
|
|
if (status != PEP_STATUS_OK)
|
|
|
|
|
goto pep_error;
|
|
|
|
|
|
|
|
|
|
status = init_transport_system(_session, in_first);
|
|
|
|
|
if (status != PEP_STATUS_OK)
|
|
|
|
|
goto pep_error;
|
|
|
|
|
|
|
|
|
|
status = log_event(_session, "init", "pEp " PEP_ENGINE_VERSION, NULL, NULL);
|
|
|
|
|
if (status != PEP_STATUS_OK)
|
|
|
|
|
goto pep_error;
|
|
|
|
|
|
|
|
|
|
// runtime config
|
|
|
|
|
|
|
|
|
|
_session->passive_mode = false;
|
|
|
|
|
_session->unencrypted_subject = false;
|
|
|
|
|
|
|
|
|
|
*session = _session;
|
|
|
|
|
return PEP_STATUS_OK;
|
|
|
|
|
|
|
|
|
|
enomem:
|
|
|
|
|
status = PEP_OUT_OF_MEMORY;
|
|
|
|
|
|
|
|
|
|
pep_error:
|
|
|
|
|
release(_session);
|
|
|
|
|
return status;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
DYNAMIC_API void release(PEP_SESSION session)
|
|
|
|
|
{
|
|
|
|
|
bool out_last = false;
|
|
|
|
|
|
|
|
|
|
assert(init_count >= 0);
|
|
|
|
|
assert(session);
|
|
|
|
|
|
|
|
|
|
if (!((init_count >= 0) && session))
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
// a small race condition but still a race condition
|
|
|
|
|
// mitigated by calling caveat (see documentation)
|
|
|
|
|
|
|
|
|
|
if (init_count == 0)
|
|
|
|
|
out_last = true;
|
|
|
|
|
--init_count;
|
|
|
|
|
|
|
|
|
|
if (session) {
|
|
|
|
|
if (session->db) {
|
|
|
|
|
if (session->log)
|
|
|
|
|
sqlite3_finalize(session->log);
|
|
|
|
|
if (session->trustword)
|
|
|
|
|
sqlite3_finalize(session->trustword);
|
|
|
|
|
if (session->get_identity)
|
|
|
|
|
sqlite3_finalize(session->get_identity);
|
|
|
|
|
if (session->set_person)
|
|
|
|
|
sqlite3_finalize(session->set_person);
|
|
|
|
|
if (session->set_pgp_keypair)
|
|
|
|
|
sqlite3_finalize(session->set_pgp_keypair);
|
|
|
|
|
if (session->set_identity)
|
|
|
|
|
sqlite3_finalize(session->set_identity);
|
|
|
|
|
if (session->set_trust)
|
|
|
|
|
sqlite3_finalize(session->set_trust);
|
|
|
|
|
if (session->get_trust)
|
|
|
|
|
sqlite3_finalize(session->get_trust);
|
|
|
|
|
if (session->least_trust)
|
|
|
|
|
sqlite3_finalize(session->least_trust);
|
|
|
|
|
if (session->mark_compromized)
|
|
|
|
|
sqlite3_finalize(session->mark_compromized);
|
|
|
|
|
if (session->crashdump)
|
|
|
|
|
sqlite3_finalize(session->crashdump);
|
|
|
|
|
if (session->languagelist)
|
|
|
|
|
sqlite3_finalize(session->languagelist);
|
|
|
|
|
if (session->i18n_token)
|
|
|
|
|
sqlite3_finalize(session->i18n_token);
|
|
|
|
|
if (session->blacklist_add)
|
|
|
|
|
sqlite3_finalize(session->blacklist_add);
|
|
|
|
|
if (session->blacklist_delete)
|
|
|
|
|
sqlite3_finalize(session->blacklist_delete);
|
|
|
|
|
if (session->blacklist_is_listed)
|
|
|
|
|
sqlite3_finalize(session->blacklist_is_listed);
|
|
|
|
|
if (session->blacklist_retrieve)
|
|
|
|
|
sqlite3_finalize(session->blacklist_retrieve);
|
|
|
|
|
|
|
|
|
|
if (session->db)
|
|
|
|
|
sqlite3_close_v2(session->db);
|
|
|
|
|
if (session->system_db)
|
|
|
|
|
sqlite3_close_v2(session->system_db);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
release_transport_system(session, out_last);
|
|
|
|
|
release_cryptotech(session, out_last);
|
|
|
|
|
|
|
|
|
|
free(session);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
DYNAMIC_API void config_passive_mode(PEP_SESSION session, bool enable)
|
|
|
|
|
{
|
|
|
|
|
assert(session);
|
|
|
|
|
session->passive_mode = enable;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
DYNAMIC_API void config_unencrypted_subject(PEP_SESSION session, bool enable)
|
|
|
|
|
{
|
|
|
|
|
assert(session);
|
|
|
|
|
session->unencrypted_subject = enable;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
DYNAMIC_API PEP_STATUS log_event(
|
|
|
|
|
PEP_SESSION session,
|
|
|
|
|
const char *title,
|
|
|
|
|
const char *entity,
|
|
|
|
|
const char *description,
|
|
|
|
|
const char *comment
|
|
|
|
|
)
|
|
|
|
|
{
|
|
|
|
|
PEP_STATUS status = PEP_STATUS_OK;
|
|
|
|
|
int result;
|
|
|
|
|
|
|
|
|
|
assert(session);
|
|
|
|
|
assert(title);
|
|
|
|
|
assert(entity);
|
|
|
|
|
|
|
|
|
|
if (!(session && title && entity))
|
|
|
|
|
return PEP_ILLEGAL_VALUE;
|
|
|
|
|
|
|
|
|
|
sqlite3_reset(session->log);
|
|
|
|
|
sqlite3_bind_text(session->log, 1, title, -1, SQLITE_STATIC);
|
|
|
|
|
sqlite3_bind_text(session->log, 2, entity, -1, SQLITE_STATIC);
|
|
|
|
|
if (description)
|
|
|
|
|
sqlite3_bind_text(session->log, 3, description, -1, SQLITE_STATIC);
|
|
|
|
|
else
|
|
|
|
|
sqlite3_bind_null(session->log, 3);
|
|
|
|
|
if (comment)
|
|
|
|
|
sqlite3_bind_text(session->log, 4, comment, -1, SQLITE_STATIC);
|
|
|
|
|
else
|
|
|
|
|
sqlite3_bind_null(session->log, 4);
|
|
|
|
|
do {
|
|
|
|
|
result = sqlite3_step(session->log);
|
|
|
|
|
assert(result == SQLITE_DONE || result == SQLITE_BUSY);
|
|
|
|
|
if (result != SQLITE_DONE && result != SQLITE_BUSY)
|
|
|
|
|
status = PEP_UNKNOWN_ERROR;
|
|
|
|
|
} while (result == SQLITE_BUSY);
|
|
|
|
|
sqlite3_reset(session->log);
|
|
|
|
|
|
|
|
|
|
return status;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
DYNAMIC_API PEP_STATUS trustword(
|
|
|
|
|
PEP_SESSION session, uint16_t value, const char *lang,
|
|
|
|
|
char **word, size_t *wsize
|
|
|
|
|
)
|
|
|
|
|
{
|
|
|
|
|
PEP_STATUS status = PEP_STATUS_OK;
|
|
|
|
|
int result;
|
|
|
|
|
|
|
|
|
|
assert(session);
|
|
|
|
|
assert(word);
|
|
|
|
|
assert(wsize);
|
|
|
|
|
|
|
|
|
|
if (!(session && word && wsize))
|
|
|
|
|
return PEP_ILLEGAL_VALUE;
|
|
|
|
|
|
|
|
|
|
*word = NULL;
|
|
|
|
|
*wsize = 0;
|
|
|
|
|
|
|
|
|
|
if (lang == NULL)
|
|
|
|
|
lang = "en";
|
|
|
|
|
|
|
|
|
|
assert((lang[0] >= 'A' && lang[0] <= 'Z')
|
|
|
|
|
|| (lang[0] >= 'a' && lang[0] <= 'z'));
|
|
|
|
|
assert((lang[1] >= 'A' && lang[1] <= 'Z')
|
|
|
|
|
|| (lang[1] >= 'a' && lang[1] <= 'z'));
|
|
|
|
|
assert(lang[2] == 0);
|
|
|
|
|
|
|
|
|
|
sqlite3_reset(session->trustword);
|
|
|
|
|
sqlite3_bind_text(session->trustword, 1, lang, -1, SQLITE_STATIC);
|
|
|
|
|
sqlite3_bind_int(session->trustword, 2, value);
|
|
|
|
|
|
|
|
|
|
result = sqlite3_step(session->trustword);
|
|
|
|
|
if (result == SQLITE_ROW) {
|
|
|
|
|
*word = strdup((const char *) sqlite3_column_text(session->trustword,
|
|
|
|
|
1));
|
|
|
|
|
if (*word)
|
|
|
|
|
*wsize = sqlite3_column_bytes(session->trustword, 1);
|
|
|
|
|
else
|
|
|
|
|
status = PEP_TRUSTWORD_NOT_FOUND;
|
|
|
|
|
} else
|
|
|
|
|
status = PEP_TRUSTWORD_NOT_FOUND;
|
|
|
|
|
|
|
|
|
|
sqlite3_reset(session->trustword);
|
|
|
|
|
return status;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
DYNAMIC_API PEP_STATUS trustwords(
|
|
|
|
|
PEP_SESSION session, const char *fingerprint, const char *lang,
|
|
|
|
|
char **words, size_t *wsize, int max_words
|
|
|
|
|
)
|
|
|
|
|
{
|
|
|
|
|
const char *source = fingerprint;
|
|
|
|
|
char *buffer;
|
|
|
|
|
char *dest;
|
|
|
|
|
size_t fsize;
|
|
|
|
|
PEP_STATUS _status;
|
|
|
|
|
|
|
|
|
|
assert(session);
|
|
|
|
|
assert(fingerprint);
|
|
|
|
|
assert(words);
|
|
|
|
|
assert(wsize);
|
|
|
|
|
assert(max_words >= 0);
|
|
|
|
|
|
|
|
|
|
if (!(session && fingerprint && words && wsize && max_words >= 0))
|
|
|
|
|
return PEP_ILLEGAL_VALUE;
|
|
|
|
|
|
|
|
|
|
*words = NULL;
|
|
|
|
|
*wsize = 0;
|
|
|
|
|
|
|
|
|
|
buffer = calloc(1, MAX_TRUSTWORDS_SPACE);
|
|
|
|
|
assert(buffer);
|
|
|
|
|
if (buffer == NULL)
|
|
|
|
|
return PEP_OUT_OF_MEMORY;
|
|
|
|
|
dest = buffer;
|
|
|
|
|
|
|
|
|
|
fsize = strlen(fingerprint);
|
|
|
|
|
|
|
|
|
|
if (!lang || !lang[0])
|
|
|
|
|
lang = "en";
|
|
|
|
|
|
|
|
|
|
assert((lang[0] >= 'A' && lang[0] <= 'Z')
|
|
|
|
|
|| (lang[0] >= 'a' && lang[0] <= 'z'));
|
|
|
|
|
assert((lang[1] >= 'A' && lang[1] <= 'Z')
|
|
|
|
|
|| (lang[1] >= 'a' && lang[1] <= 'z'));
|
|
|
|
|
assert(lang[2] == 0);
|
|
|
|
|
|
|
|
|
|
int n_words = 0;
|
|
|
|
|
while (source < fingerprint + fsize) {
|
|
|
|
|
uint16_t value;
|
|
|
|
|
char *word;
|
|
|
|
|
size_t _wsize;
|
|
|
|
|
int j;
|
|
|
|
|
|
|
|
|
|
for (value=0, j=0; j < 4 && source < fingerprint + fsize; ) {
|
|
|
|
|
if (*source >= 'a' && *source <= 'f')
|
|
|
|
|
value += (*source - 'a' + 10) << (3 - j++) * 4;
|
|
|
|
|
else if (*source >= 'A' && *source <= 'F')
|
|
|
|
|
value += (*source - 'A' + 10) << (3 - j++) * 4;
|
|
|
|
|
else if (*source >= '0' && *source <= '9')
|
|
|
|
|
value += (*source - '0') << (3 - j++) * 4;
|
|
|
|
|
|
|
|
|
|
source++;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_status = trustword(session, value, lang, &word, &_wsize);
|
|
|
|
|
if (_status == PEP_OUT_OF_MEMORY) {
|
|
|
|
|
free(buffer);
|
|
|
|
|
return PEP_OUT_OF_MEMORY;
|
|
|
|
|
}
|
|
|
|
|
if (word == NULL) {
|
|
|
|
|
free(buffer);
|
|
|
|
|
return PEP_TRUSTWORD_NOT_FOUND;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (dest + _wsize < buffer + MAX_TRUSTWORDS_SPACE - 1) {
|
|
|
|
|
strncpy(dest, word, _wsize);
|
|
|
|
|
free(word);
|
|
|
|
|
dest += _wsize;
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
free(word);
|
|
|
|
|
break; // buffer full
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (source < fingerprint + fsize
|
|
|
|
|
&& dest + _wsize < buffer + MAX_TRUSTWORDS_SPACE - 1)
|
|
|
|
|
*dest++ = ' ';
|
|
|
|
|
|
|
|
|
|
++n_words;
|
|
|
|
|
if (max_words && n_words >= max_words)
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
*words = buffer;
|
|
|
|
|
*wsize = dest - buffer;
|
|
|
|
|
return PEP_STATUS_OK;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pEp_identity *new_identity(
|
|
|
|
|
const char *address, const char *fpr, const char *user_id,
|
|
|
|
|
const char *username
|
|
|
|
|
)
|
|
|
|
|
{
|
|
|
|
|
pEp_identity *result = calloc(1, sizeof(pEp_identity));
|
|
|
|
|
assert(result);
|
|
|
|
|
if (result) {
|
|
|
|
|
if (address) {
|
|
|
|
|
result->address = strdup(address);
|
|
|
|
|
assert(result->address);
|
|
|
|
|
if (result->address == NULL) {
|
|
|
|
|
free(result);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (fpr) {
|
|
|
|
|
result->fpr = strdup(fpr);
|
|
|
|
|
assert(result->fpr);
|
|
|
|
|
if (result->fpr == NULL) {
|
|
|
|
|
free_identity(result);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (user_id) {
|
|
|
|
|
result->user_id = strdup(user_id);
|
|
|
|
|
assert(result->user_id);
|
|
|
|
|
if (result->user_id == NULL) {
|
|
|
|
|
free_identity(result);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (username) {
|
|
|
|
|
result->username = strdup(username);
|
|
|
|
|
assert(result->username);
|
|
|
|
|
if (result->username == NULL) {
|
|
|
|
|
free_identity(result);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pEp_identity *identity_dup(const pEp_identity *src)
|
|
|
|
|
{
|
|
|
|
|
assert(src);
|
|
|
|
|
|
|
|
|
|
pEp_identity *dup = new_identity(src->address, src->fpr, src->user_id, src->username);
|
|
|
|
|
assert(dup);
|
|
|
|
|
if (dup == NULL)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
|
|
dup->comm_type = src->comm_type;
|
|
|
|
|
dup->lang[0] = src->lang[0];
|
|
|
|
|
dup->lang[1] = src->lang[1];
|
|
|
|
|
dup->lang[2] = 0;
|
|
|
|
|
dup->me = src->me;
|
|
|
|
|
|
|
|
|
|
return dup;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void free_identity(pEp_identity *identity)
|
|
|
|
|
{
|
|
|
|
|
if (identity) {
|
|
|
|
|
free(identity->address);
|
|
|
|
|
free(identity->fpr);
|
|
|
|
|
free(identity->user_id);
|
|
< |
