pEp.foundation
/
pEpEngine
16
1
Fork 13
Code Issues Pull Requests 2 Releases 452 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4892 Commits
87 Branches
150 MiB
Tree: f5d6017792
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f5d6017792'
${ noResults }
pEpEngine/src/key_reset.h

129 lines
4.7 KiB
Raw Normal View History

doxygen: added a whole lot of automated doc. Needs tweaking and more.
2 years ago
ENGINE-398: Moved key_reset into its own files
4 years ago
replace #pragma once with include guards
2 years ago
ENGINE-398: Moved key_reset into its own files
4 years ago
p≡p style struct and list functions
3 years ago
ENGINE-398: Moved key_reset into its own files
4 years ago
doxygen: added a whole lot of automated doc. Needs tweaking and more.
2 years ago
Doc cleanup (some)
2 years ago
doxygen: added a whole lot of automated doc. Needs tweaking and more.
2 years ago
Doc cleanup (some)
2 years ago
doxygen: added a whole lot of automated doc. Needs tweaking and more.
2 years ago
more comments
1 year ago
doxygen: added a whole lot of automated doc. Needs tweaking and more.
2 years ago
ENGINE-536: newly refactored key_reset with new functions in. Passes current tests, but need to check new functions.
3 years ago
ENGINE-536: updated API functions and docs.
3 years ago
ENGINE-536: newly refactored key_reset with new functions in. Passes current tests, but need to check new functions.
3 years ago
doxygen: added a whole lot of automated doc. Needs tweaking and more.
2 years ago
Doc cleanup (some)
2 years ago
doxygen: added a whole lot of automated doc. Needs tweaking and more.
2 years ago
Doc cleanup (some)
2 years ago
doxygen: added a whole lot of automated doc. Needs tweaking and more.
2 years ago
more comments
1 year ago
doxygen: added a whole lot of automated doc. Needs tweaking and more.
2 years ago
ENGINE-536: updated API functions and docs.
3 years ago
ENGINE-536: newly refactored key_reset with new functions in. Passes current tests, but need to check new functions.
3 years ago
ENGINE-536: updated API functions and docs.
3 years ago
ENGINE-536: newly refactored key_reset with new functions in. Passes current tests, but need to check new functions.
3 years ago
doxygen: added a whole lot of automated doc. Needs tweaking and more.
2 years ago
Doc cleanup (some)
2 years ago
doxygen: added a whole lot of automated doc. Needs tweaking and more.
2 years ago
ENGINE-536: updated API functions and docs.
3 years ago
grouped key reset stubs
2 years ago
ENGINE-775: key_reset functions should now all return appropriately and EARLY with passphrase errors. One thing to note is that ANY key_reset function which can cause the decryption of multiple keys with different passwords should now fail very shortly after being called, and will ALWAYS fail. (differing new password phrases and key-to-be-reset passphrases is still accepted for a single key)
2 years ago
More doc blocks added by script.
2 years ago
Doc cleanup (some)
2 years ago
More doc blocks added by script.
2 years ago
more comments
1 year ago
More doc blocks added by script.
2 years ago
grouped key reset stubs
2 years ago
ENGINE-536: updated API functions and docs.
3 years ago
ENGINE-606 squash commit
1 year ago
ENGINE-398: Moved key_reset into its own files
4 years ago
replace #pragma once with include guards
2 years ago
 
  1. /**

  2.  * @file    key_reset.h
  3.  * @brief   Functions for resetting partner key defaults and trust and mistrusting and revoking own keys, 
  4.  *          as well as functions to inform partners of own revoked keys and their replacements
  5.  * @license GNU General Public License 3.0 - see LICENSE.txt
  6.  */
  7. 

  8. #ifndef KEY_RESET_H

  9. #define KEY_RESET_H

  10. 

  11. #include "pEpEngine.h"

  12. #include "keymanagement.h"

  13. #include "message.h"

  14. #include "message_api.h"

  15. #include "cryptotech.h"

  16. #include "keyreset_command.h"

  17. 

  18. #ifdef __cplusplus

  19. extern "C" {
  20. #endif

  21. 

  22. /**

  23.  *  <!--       key_reset_identity()       -->
  24.  *  
  25.  *  @brief Reset the default database status for the identity / keypair
  26.  *         provided. If this corresponds to an own identity and a private key,
  27.  *         also revoke the key, generate a new one, and communicate the 
  28.  *         reset to recently contacted pEp partners for this identity.
  29.  *  
  30.  *  If it does not, remove the key from the keyring; the key's 
  31.  *  status is completely fresh on next contact from the partner.
  32.  *  If no key is provided, reset the identity default.
  33.  *  Note that reset keys will be removed as defaults for all users and identities.
  34.  *  
  35.  *  @param[in]   session    session handle
  36.  *  @param[in]   fpr        fingerprint of key to reset. If NULL, we reset the default key
  37.  *                            this identity if there is one, and the user default if not.
  38.  *  @param[in]   ident      identity for which the key reset should occur. Must contain
  39.  *                          user_id and address. Must not be NULL.
  40.  *                          Note: ident->fpr field will be ignored.
  41.  *  
  42.  *  
  43.  *  @retval PEP_STATUS_OK
  44.  *  @retval PEP_ILLEGAL_VALUE   illegal parameter values
  45.  *  @retval PEP_OUT_OF_MEMORY   out of memory
  46.  *  @retval any other value on error
  47.  */
  48. DYNAMIC_API PEP_STATUS key_reset_identity(
  49.         PEP_SESSION session,
  50.         pEp_identity* ident,
  51.         const char* fpr
  52.     );
  53. 

  54. /**

  55.  *  <!--       key_reset_user()       -->
  56.  *  
  57.  *  @brief Reset the default database status for the user / keypair
  58.  *         provided. This will effectively perform key_reset_identity()
  59.  *         each identity associated with the key and user_id, if a key is
  60.  *         provided, and for each key (and all of their identities) if an fpr 
  61.  *         is not.
  62.  *  
  63.  *  If the user_id is the own user_id, an fpr MUST be provided.
  64.  *  For a reset of all own user keys, call key_reset_all_own_keys() instead.
  65.  *  Note that reset keys will be removed as defaults for all users and identities.
  66.  *  
  67.  *  @param[in]   session    session handle
  68.  *  @param[in]   user_id    user_id for which the key reset should occur. If this
  69.  *                            is the own user_id, fpr MUST NOT be NULL.
  70.  *  @param[in]   fpr        fingerprint of key to reset.
  71.  *                          If NULL, we reset all default
  72.  *                          keys for this user and all of its identities.
  73.  *                          *** However, it is forbidden to use the own user_id
  74.  *                          here when the fpr is NULL. For this functionality,
  75.  *                          call key_reset_all_own_keys ***
  76.  *  
  77.  *  
  78.  *  @retval PEP_STATUS_OK
  79.  *  @retval PEP_ILLEGAL_VALUE   illegal parameter values
  80.  *  @retval PEP_OUT_OF_MEMORY   out of memory
  81.  *  @retval any other value on error
  82.  */
  83. 

  84. //

  85. DYNAMIC_API PEP_STATUS key_reset_user(
  86.         PEP_SESSION session,
  87.         const char* user_id,
  88.         const char* fpr
  89.     );
  90. 

  91. /**

  92.  *  <!--       key_reset_all_own_keys()       -->
  93.  *  
  94.  *  @brief Revoke and mistrust all own keys, generate new keys for all 
  95.  *         own identities, and opportunistically communicate
  96.  *         key reset information to people we have recently 
  97.  *         contacted. 
  98.  *  
  99.  *  @param[in]   session    session handle
  100.  *  
  101.  *  @warning HOWEVER, apps and adapters must decide if this is a reasonable state;
  102.  *           since the period where no own user exists will necessarily be very short
  103.  *           in most implementations, PEP_CANNOT_FIND_IDENTITY may be returned when 
  104.  *           there is some sort of DB corruption and we expect there to be an own user.
  105.  *           Apps are responsible for deciding whether or not this is an error condition;
  106.  *           one would expect that it generally is (rather than the uninitialised DB case)
  107.  *  
  108.  */
  109. DYNAMIC_API PEP_STATUS key_reset_all_own_keys(PEP_SESSION session);
  110. 

  111. // FIXME: Doc

  112. // This is simply NOT SAFE for multiple passwords on the extant 

  113. // keys. Cannot be called with multiple passwords for that purpose.

  114. /**

  115.  *  <!--       key_reset_own_grouped_keys()       -->
  116.  *  
  117.  *  @brief            TODO
  118.  *  
  119.  *  @param[in]  session     session handle 
  120.  *  
  121.  */
  122. DYNAMIC_API PEP_STATUS key_reset_own_grouped_keys(PEP_SESSION session);
  123. 

  124. 

  125. #ifdef __cplusplus

  126. }
  127. #endif

  128. 

  129. #endif