pEp.foundation
/
pEpEngine
16
2
Fork 17
Code Issues 23 Pull Requests 2 Releases 48 Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
nkls-mixnet
master
Release_3.2
positron-nkls-mixnet
gitea-150
gitea-148
gitea-149
positron/dvn/ci-refactor2023
gitea-140
gitea-91
gitea-136
pepmime
Release_2.1
unexpire-test-keys
gitea-96
gitea-120--2.x
gitea-116--2.x
gitea-121
gitea-118--3.x
gitea-113
gitea-117
foo
gitea-116
heck/tmpbugfix
gitea-100
gitea-104
gitea-90
echo-rate-limit
gitea-105
Release_2.1--with-sequoia-openpgp/v1.13.0-probably-all-wrong
invalid-upgdade
allow-empty-username
gitea-102
gitea-99
doxygen-3.x
gitea-83-84--v3
gitea-83-84--v2
gitea-83-84--v3--old-and-probably-useless
backup-before-using-REQUIRE
some-RCs-from-3.x--3.2.0-RC8-to-3.2.0-RC10
newsequoia2022--bk-2022-10-12
log-scratch
mscgen
ENGINE-1006-for-engine-v2
sqlite-cleanup
ENGINE-1006-for-engine-v2-rebasing--backup-before-cleaning-2022-08-10
ENGINE-999
ENGINE-1006-for-engine-v3--bk-before-rebasing
ENGINE-1006-for-engine-v3
ENGINE-1001--2.x
ENGINE-1001--3.x
ENGINE-1002--2.x
ENGINE-1002--3.x
positron/tka-scratch
positron/ENGINE-899
2.1-doxygen-docs
ENGINE-995
big-rewrite
migration-debugging
2.1-fix-two-lines-patch-only
ENGINE-996
QA-180
ENGINE-900
positron-temporary-for-heck-2022-01-12-a
ENGINE-989
ENGINE-979-for-engine-v2
ENGINE-979-for-engine-v3
ENGINE-984
ENGINE-930
ENGINE-959
ENGINE-959-new-part-to-be-pushed-to-the-old-branch
ENGINE-975
ENGINE-969
ENGINE-971
ENGINE-969--almost-certainly-wrongly-named-and-useless--to-be-removed
ENGINE-974
ENGINE-972
ENGINE-968
ENGINE-619
lucasaiu/WIP-ENGINE-968
ENGINE-967
lucasaiu/test
ENGINE-964
ENGINE-956
lucasaiu/message-struct-change
ENGINE-961
ENGINE-962
lucasaiu/rating-field
Release_3.1
ENGINE-958
ENGINE-847
ENGINE-558
ENGINE-957
ENGINE-955
ENGINE-848
ENGINE-570
ENGINE-953
ENGINE-954
ENGINE-899
ENGINE-898
2.1_audit_refresh
doxygen_doc
generate_api
neal/sequoia-1.1
ENGINE-878
ENGINE-606
ENGINE-820
MACOSINST-33
MACOSINST-26
ENGINE-868
ENGINE-814
ENGINE-864
mime-integrate
trustsync
test-README.md
sync
pEpMIME_windows
pEpMIME
nuanced_return_codes
key-manipulation-tests
fpr-format-check
extra_keys_add
elevated_attachments
doc_update_sequoia
doxygen-key-id
b0rken_crypto
audit_branch
add_key_notification
Release_2.1.0
ENGINE-871
ENGINE-872
ENGINE-641
v3.2.1
v3.2.0
v3.2.0-RC27
v3.2.0-RC26
v3.2.0-RC25
v3.2.0-RC24
v2.1.72
v3.2.0-RC23
v3.2.0-RC22
v3.2.0-RC21
v2.1.71
v2.1.70
v2.1.69
v3.2.0-RC20
v3.2.0-RC19
v3.2.0-RC18
v3.2.0-RC17
v3.2.0-RC16
v3.2.0-RC15
v3.2.0-RC14
v2.1.68
v3.2.0-RC13
v2.1.67
v3.2.0-RC12
v2.1.66
v2.1.65
v2.1.65-RC1
v3.2.0-RC11
gitea-86
v3.2.0-RC10
Release_3.2.0-RC9
3.2.0-RC8
Release_2.1.64
Release_2.1.63
Release_2.1.62
Release_2.1.61
Release_2.1.60
Release_2.1.59
Release_2.1.58
Release_2.1.57
Release_2.1.56
Release_2.1.55
Release_2.1.54
Release_3.2.0-RC7
Release_2.1.52
Release_2.1.51-RC6
Release_2.1.51-RC5
Release_2.1.51-RC4
Release_2.1.51-RC3
Release_2.1.51-RC2
Release_2.1.51-RC1
undo-the-incompatible-change-in-ENGINE-959
decrypt_message_2
after-incompatible-change-in-ENGINE-959
before-incompatible-change-in-ENGINE-959
Release_3.2.0-RC6
Release_3.2.0-RC5
Release_2.1.50
Release_3.1.10
Release_3.2.0-RC4
Release_3.2.0-RC3
Release_3.2.0-RC2
Release_3.2.0-RC1
Release_2.1.49
Release_2.1.48
Release_3.1.9
Release_3.1.8
Release_3.1.7
Release_3.1.6
Release_2.1.47
Release_2.1.46
Release_3.1.5
Release_2.1.45
Release_3.1.3
Release_2.1.44
Release_2.1.43
Release_3.1.2
Release_3.1.1
Release_2.1.42
Release_3.1.0
Release_2.1.41
Release_2.1.40
archive/ENGINE-633
Release_2.1.39
Release_2.1.38
Release_2.1.37
0.7
0.7.0
0.8.0
0.9.0_release
1.3.0-RC-default
1.3.0-RC-sync
2.0.0-RC
2.0.1_target
2.1.0_target
3.2.0-RC14
ENGINE-323_fixed
ENGINE-864
Last_commit_in_old_default_branch_-_branch_now_moves_to_Release_1_branch_deprecated._Goal_is_to_move_postrelease_to_default_and_continue_with_new_release/branching_rules_
M1.0_current
Patch_release_1.0.442
Release_0.0.1
Release_1.0.441
Release_1.1.0
Release_1.1.1
Release_1.1.2
Release_1.2.0
Release_2.0.0
Release_2.0.1
Release_2.0.2
Release_2.0.3
Release_2.0.4
Release_2.0.5
Release_2.0.6
Release_2.1.0
Release_2.1.0-RC0
Release_2.1.0-RC1
Release_2.1.0-RC10
Release_2.1.0-RC11
Release_2.1.0-RC12
Release_2.1.0-RC13
Release_2.1.0-RC14
Release_2.1.0-RC15
Release_2.1.0-RC16
Release_2.1.0-RC17
Release_2.1.0-RC18
Release_2.1.0-RC19
Release_2.1.0-RC2
Release_2.1.0-RC20
Release_2.1.0-RC21
Release_2.1.0-RC22
Release_2.1.0-RC23
Release_2.1.0-RC24
Release_2.1.0-RC25
Release_2.1.0-RC26
Release_2.1.0-RC27
Release_2.1.0-RC28
Release_2.1.0-RC29
Release_2.1.0-RC3
Release_2.1.0-RC30
Release_2.1.0-RC31
Release_2.1.0-RC32
Release_2.1.0-RC33
Release_2.1.0-RC34
Release_2.1.0-RC35
Release_2.1.0-RC36
Release_2.1.0-RC37
Release_2.1.0-RC38
Release_2.1.0-RC39
Release_2.1.0-RC4
Release_2.1.0-RC5
Release_2.1.0-RC6
Release_2.1.0-RC7
Release_2.1.0-RC8
Release_2.1.0-RC9
Release_2.1.0-final
Release_2.1.1
Release_2.1.10
Release_2.1.11
Release_2.1.12
Release_2.1.13
Release_2.1.14
Release_2.1.15
Release_2.1.16
Release_2.1.17
Release_2.1.18
Release_2.1.19
Release_2.1.2
Release_2.1.20
Release_2.1.21
Release_2.1.22
Release_2.1.23
Release_2.1.24
Release_2.1.25
Release_2.1.26
Release_2.1.27
Release_2.1.28
Release_2.1.29
Release_2.1.3
Release_2.1.30
Release_2.1.31
Release_2.1.32
Release_2.1.33
Release_2.1.34
Release_2.1.35
Release_2.1.36
Release_2.1.4
Release_2.1.5
Release_2.1.6
Release_2.1.7
Release_2.1.8
Release_2.1.9
Release_2.2.0-RC0
Release_3.0.0
Release_3.0.1
Release_3.0.10
Release_3.0.11
Release_3.0.2
Release_3.0.3
Release_3.0.4
Release_3.0.5
Release_3.0.6
Release_3.0.7
Release_3.0.8
Release_3.0.9
Release_3.1.4
Release_zOS_0.1
Restarting_default_from_postrelease
Revived_default_branch._Close_postrelease_and_work_here._sync_is_2.0_branch_
TEST-ENGINE-820
TEST_ENGINE-814_1
add
archive/2.0.5_p4a_log_test
archive/2028_fix
archive/633-up-id-refactor
archive/AllGroupDevicesShowHandshake
archive/ENGINE-1
archive/ENGINE-105
archive/ENGINE-107
archive/ENGINE-109
archive/ENGINE-112
archive/ENGINE-118
archive/ENGINE-128
archive/ENGINE-129
archive/ENGINE-133
archive/ENGINE-135
archive/ENGINE-137
archive/ENGINE-139
archive/ENGINE-140
archive/ENGINE-140-reloaded
archive/ENGINE-140_exclude_identity_from_sync
archive/ENGINE-142
archive/ENGINE-152
archive/ENGINE-155
archive/ENGINE-157
archive/ENGINE-168
archive/ENGINE-171
archive/ENGINE-172
archive/ENGINE-173
archive/ENGINE-174
archive/ENGINE-178
archive/ENGINE-179
archive/ENGINE-180
archive/ENGINE-183
archive/ENGINE-187
archive/ENGINE-188
archive/ENGINE-189
archive/ENGINE-198
archive/ENGINE-199
archive/ENGINE-204
archive/ENGINE-207
archive/ENGINE-207-1
archive/ENGINE-209
archive/ENGINE-214
archive/ENGINE-215
archive/ENGINE-217
archive/ENGINE-226
archive/ENGINE-228
archive/ENGINE-229
archive/ENGINE-233
archive/ENGINE-237
archive/ENGINE-238
archive/ENGINE-247
archive/ENGINE-250
archive/ENGINE-251
archive/ENGINE-254
archive/ENGINE-255
archive/ENGINE-259
archive/ENGINE-261
archive/ENGINE-262
archive/ENGINE-265
archive/ENGINE-27
archive/ENGINE-275
archive/ENGINE-282
archive/ENGINE-286
archive/ENGINE-287
archive/ENGINE-288
archive/ENGINE-289
archive/ENGINE-290
archive/ENGINE-293
archive/ENGINE-294
archive/ENGINE-298
archive/ENGINE-3
archive/ENGINE-305
archive/ENGINE-308
archive/ENGINE-320
archive/ENGINE-320-lr1
archive/ENGINE-321
archive/ENGINE-322
archive/ENGINE-325
archive/ENGINE-329
archive/ENGINE-332
archive/ENGINE-339
archive/ENGINE-352
archive/ENGINE-358
archive/ENGINE-398
archive/ENGINE-40
archive/ENGINE-400
archive/ENGINE-402
archive/ENGINE-407
archive/ENGINE-420
archive/ENGINE-422
archive/ENGINE-423
archive/ENGINE-425
archive/ENGINE-427
archive/ENGINE-430
archive/ENGINE-434
archive/ENGINE-440
archive/ENGINE-442
archive/ENGINE-448
archive/ENGINE-450
archive/ENGINE-450-MARK-II
archive/ENGINE-451
archive/ENGINE-454
archive/ENGINE-455
archive/ENGINE-459
archive/ENGINE-463
archive/ENGINE-466
archive/ENGINE-467
archive/ENGINE-472
archive/ENGINE-473
archive/ENGINE-474
archive/ENGINE-479
archive/ENGINE-479_low_level
archive/ENGINE-487
archive/ENGINE-507
archive/ENGINE-510
archive/ENGINE-514
archive/ENGINE-524
archive/ENGINE-531
archive/ENGINE-536
archive/ENGINE-540
archive/ENGINE-544
archive/ENGINE-550
archive/ENGINE-551
archive/ENGINE-552
archive/ENGINE-553
archive/ENGINE-559
archive/ENGINE-571
archive/ENGINE-581
archive/ENGINE-596
archive/ENGINE-600
archive/ENGINE-602
archive/ENGINE-606
archive/ENGINE-614
archive/ENGINE-630
archive/ENGINE-638
archive/ENGINE-639
archive/ENGINE-647
archive/ENGINE-649
archive/ENGINE-654
archive/ENGINE-655
archive/ENGINE-659-gpg
archive/ENGINE-681
archive/ENGINE-703
archive/ENGINE-720
archive/ENGINE-73
archive/ENGINE-736
archive/ENGINE-74
archive/ENGINE-746
archive/ENGINE-750
archive/ENGINE-751
archive/ENGINE-757
archive/ENGINE-764
archive/ENGINE-767
archive/ENGINE-780
archive/ENGINE-780-take2
archive/ENGINE-781
archive/ENGINE-79
archive/ENGINE-812
archive/ENGINE-822-sql-refactor
archive/ENGINE-835
archive/ENGINE-84
archive/ENGINE-864_old
archive/ENGINE-866
archive/ENGINE-870
archive/ENGINE-877
archive/ENGINE-883
archive/ENGINE-9
archive/ENGINE-9-1
archive/ENGINE-92
archive/ENGINE-95
archive/ENGINE-96
archive/ENGINE-98
archive/ENGINE_314
archive/GroupMerge
archive/IOS-1351
archive/IOS-1482
archive/IOS-1484
archive/IOS-1576
archive/IOS-1784
archive/IOS-1942
archive/IOS-2327
archive/IOS-2414
archive/IOS-506
archive/IOS-BUILD_NDEBUG_FIX
archive/IOSAD-101
archive/IOSAD-103
archive/IOSAD-111
archive/IOSAD-120
archive/IOSAD-161
archive/IOSAD-163
archive/IOSAD-182
archive/IOSAD-186
archive/JIRA_smart_commit_test_branch
archive/JNI-21
archive/JNI-26
archive/KeySyncWaitForAccept
archive/NETPGP-18
archive/Release_1_branch_deprecated
archive/Release_2.1.0
archive/Release_3.0
archive/Xcode-sync-session
archive/Xcode11
archive/android-stuff
archive/async_key_management
archive/beacon_test
archive/changeset_add
archive/database_change_branch
archive/debian_default_test
archive/default-1
archive/default-2
archive/default-3
archive/delete_key
archive/diphoton_M1
archive/el_presidente
archive/email_comparison
archive/enigmail-color-tests
archive/enigmail_tests_pre_revision_2535
archive/fdik_sync
archive/fixing_revoke
archive/gen_sample
archive/gnupg-2.1
archive/google-ENGINE-325-testing
archive/googletest
archive/gpgme-1.9.0
archive/gpgme_passphrase_cb
archive/grind_and_cleanup
archive/group_key_reset
archive/import_key_2.1
archive/import_own_key
archive/import_priv_keys_fix
archive/install_headers
archive/key_reset_get_revocations
archive/keysync
archive/keysync-windows
archive/krista-local-7-Jan-2020
archive/krista-netpgp-sync
archive/krista-temp
archive/krista_local_windows
archive/krista_temp
archive/krista_tmp_sequoia_upgrade
archive/local_cmocka
archive/local_cpptest
archive/maintain
archive/make-cleanup
archive/merge_ll_sign_only
archive/message-2.0
archive/mistrust_fixes
archive/neal-sequoia-update-staging
archive/neal/tpk-cache
archive/notifyHandshake
archive/null_size_attachment
archive/outlook_mime_support
archive/peg-mime
archive/postrelease
archive/preview_rating
archive/ratings
archive/reduce
archive/remove_gpg
archive/rok-mac
archive/roker-linux
archive/sender-fpr-and-friends
archive/sender-fpr-checks
archive/sequoia
archive/sequoia_windows
archive/short_term_is_own_key_branch
archive/signature_test
archive/spinlock_remove
archive/strl-imp
archive/sync-test-dev
archive/sync_and_key_reset
archive/sync_test_refactor
archive/test-huss-hypothesis-42
archive/test_diphoton
archive/thomas_timing_tests
archive/tracing_for_thomas
archive/tunneling
audit_update_from_sync
decode-encode-API-change
for_Outlook-1.1.10
last-old-mime-api-version
last_usable_message_format_commit
list
no_support_provided_from_message_2.0_on_this_branch._Please_use_branch_diphoton_M1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9f12f958ec'
${ noResults }
pEpEngine/src/pEpEngine.c

3781 lines
113 KiB
C
Raw Blame History

/**
* @file pEpEngine.c
* @brief implementation of the pEp Engine API
* @license GNU General Public License 3.0 - see LICENSE.txt
*/
#include "pEp_internal.h"
#include "dynamic_api.h"
#include "cryptotech.h"
#include "transport.h"
#include "KeySync_fsm.h"
#include "engine_sql.h"
#include <time.h>
#include <stdlib.h>
#ifdef _PEP_SQLITE_DEBUG
#include <sqlite3.h>
#endif
static volatile int init_count = -1;
DYNAMIC_API PEP_STATUS init(
PEP_SESSION *session,
messageToSend_t messageToSend,
inject_sync_event_t inject_sync_event,
ensure_passphrase_t ensure_passphrase
)
{
PEP_STATUS status = PEP_STATUS_OK;
// Initialise the path cache. It is the state of the environment at this
// time that determines path names, unless the path cache is explicitly
// reset later.
status = reset_path_cache ();
if (status != PEP_STATUS_OK)
return status;
bool in_first = false;
assert(sqlite3_threadsafe());
if (!sqlite3_threadsafe())
return PEP_INIT_SQLITE3_WITHOUT_MUTEX;
// a little race condition - but still a race condition
// mitigated by calling caveat (see documentation)
// this increment is made atomic IN THE ADAPTERS by
// guarding the call to init with the appropriate mutex.
int _count = ++init_count;
if (_count == 0)
in_first = true;
// Race condition mitigated by calling caveat starts here :
// If another call to init() preempts right now, then preemptive call
// will have in_first false, will not create SQL tables, and following
// calls relying on those tables will fail.
//
// Therefore, as above, adapters MUST guard init() with a mutex.
//
// Therefore, first session
// is to be created and last session to be deleted alone, and not
// concurently to other sessions creation or deletion.
// We expect adapters to enforce this either by implicitely creating a
// client session, or by using synchronization primitive to protect
// creation/deletion of first/last session from the app.
if (session == NULL)
return PEP_ILLEGAL_VALUE;
*session = NULL;
pEpSession *_session = calloc(1, sizeof(pEpSession));
assert(_session);
if (_session == NULL)
goto enomem;
_session->version = PEP_ENGINE_VERSION;
_session->messageToSend = messageToSend;
_session->inject_sync_event = inject_sync_event;
_session->ensure_passphrase = ensure_passphrase;
status = init_databases(_session);
if (status != PEP_STATUS_OK)
return status;
if (in_first) {
status = pEp_sql_init(_session);
// We need to init a few globals for message id that we'd rather not
// calculate more than once.
_init_globals();
}
status = pEp_prepare_sql_stmts(_session);
if (status != PEP_STATUS_OK)
goto pEp_error;
status = init_cryptotech(_session, in_first);
if (status != PEP_STATUS_OK)
goto pEp_error;
status = init_transport_system(_session, in_first);
if (status != PEP_STATUS_OK)
goto pEp_error;
status = log_event(_session, "init", "pEp " PEP_ENGINE_VERSION, NULL, NULL);
if (status != PEP_STATUS_OK)
goto pEp_error;
// runtime config
// Will now be called by adapter.
// // clean up invalid keys
// status = clean_own_key_defaults(_session);
// if (status != PEP_STATUS_OK)
// goto pEp_error;
*session = _session;
// Note: Following statement is NOT for any cryptographic/secure functionality; it is
// ONLY used for some randomness in generated outer message ID, which are
// required by the RFC to be globally unique!
srand((unsigned int) time(NULL));
return PEP_STATUS_OK;
enomem:
status = PEP_OUT_OF_MEMORY;
pEp_error:
release(_session);
return status;
}
DYNAMIC_API void release(PEP_SESSION session)
{
bool out_last = false;
int _count = --init_count;
if ((_count < -1) || !session)
return;
// a small race condition but still a race condition
// mitigated by calling caveat (see documentation)
// (release() is to be guarded by a mutex by the caller)
if (_count == -1)
out_last = true;
if (session) {
free_Sync_state(session);
// Clear the path cache, releasing a little memory.
clear_path_cache ();
if (session->db) {
pEp_finalize_sql_stmts(session);
if (session->db) {
if (out_last) {
sqlite3_exec(
session->db,
"PRAGMA optimize;\n",
NULL,
NULL,
NULL
);
}
sqlite3_close_v2(session->db);
}
if (session->system_db)
sqlite3_close_v2(session->system_db);
}
if (!EMPTYSTR(session->curr_passphrase)) {
free (session->curr_passphrase);
/* In case the following freeing code still uses the field. */
session->curr_passphrase = NULL;
}
release_transport_system(session, out_last);
release_cryptotech(session, out_last);
free(session);
}
}
DYNAMIC_API void config_passive_mode(PEP_SESSION session, bool enable)
{
assert(session);
if (session)
session->passive_mode = enable;
}
DYNAMIC_API void config_unencrypted_subject(PEP_SESSION session, bool enable)
{
assert(session);
if (session)
session->unencrypted_subject = enable;
}
DYNAMIC_API PEP_STATUS config_passphrase(PEP_SESSION session, const char *passphrase) {
if (!session)
return PEP_ILLEGAL_VALUE;
PEP_STATUS status = PEP_STATUS_OK;
free(session->curr_passphrase);
if (!passphrase)
session->curr_passphrase = NULL;
else {
session->curr_passphrase = strdup(passphrase);
if (!session->curr_passphrase)
status = PEP_OUT_OF_MEMORY;
}
return status;
}
DYNAMIC_API PEP_STATUS config_passphrase_for_new_keys(PEP_SESSION session, bool enable, const char *passphrase) {
if (!session)
return PEP_ILLEGAL_VALUE;
session->new_key_pass_enable = enable;
PEP_STATUS status = PEP_STATUS_OK;
free(session->generation_passphrase);
if (EMPTYSTR(passphrase)) {
session->generation_passphrase = NULL;
} else {
session->generation_passphrase = strdup(passphrase);
if (!session->generation_passphrase)
status = PEP_OUT_OF_MEMORY;
}
return status;
}
DYNAMIC_API void config_service_log(PEP_SESSION session, bool enable)
{
assert(session);
if (session)
session->service_log = enable;
}
DYNAMIC_API PEP_STATUS log_event(
PEP_SESSION session,
const char *title,
const char *entity,
const char *description,
const char *comment
)
{
if (!(session && title && entity))
return PEP_ILLEGAL_VALUE;
#if defined(_WIN32) && !defined(NDEBUG)
log_output_debug(title, entity, description, comment);
#endif
#if defined(ANDROID) && !defined(NDEBUG)
__android_log_print(ANDROID_LOG_DEBUG, "pEpEngine", " %s :: %s :: %s :: %s ",
title, entity, description, comment);
#endif
// N.B. If testing (so NDEBUG not defined) but this message is spam,
// put -D_PEP_SERVICE_LOG_OFF into CFLAGS/CXXFLAGS
#if !defined(NDEBUG) && !defined(_PEP_SERVICE_LOG_OFF)
#ifndef NDEBUG
printf("\x1b[%dm", session->debug_color);
#endif
fprintf(stdout, "\n*** %s %s %s %s\n", title, entity, description, comment);
#ifndef NDEBUG
printf("\x1b[0m");
#endif
session->service_log = true;
int result;
sqlite3_reset(session->log);
sqlite3_bind_text(session->log, 1, title, -1, SQLITE_STATIC);
sqlite3_bind_text(session->log, 2, entity, -1, SQLITE_STATIC);
if (description)
sqlite3_bind_text(session->log, 3, description, -1, SQLITE_STATIC);
else
sqlite3_bind_null(session->log, 3);
if (comment)
sqlite3_bind_text(session->log, 4, comment, -1, SQLITE_STATIC);
else
sqlite3_bind_null(session->log, 4);
result = sqlite3_step(session->log);
sqlite3_reset(session->log);
#endif
return PEP_STATUS_OK; // We ignore errors for this function.
}
DYNAMIC_API PEP_STATUS log_service(
PEP_SESSION session,
const char *title,
const char *entity,
const char *description,
const char *comment
)
{
if (!session)
return PEP_ILLEGAL_VALUE;
if (session->service_log)
return log_event(session, title, entity, description, comment);
else
return PEP_STATUS_OK;
}
DYNAMIC_API PEP_STATUS trustword(
PEP_SESSION session, uint16_t value, const char *lang,
char **word, size_t *wsize
)
{
PEP_STATUS status = PEP_STATUS_OK;
if (!(session && word && wsize))
return PEP_ILLEGAL_VALUE;
*word = NULL;
*wsize = 0;
if (lang == NULL)
lang = "en";
// FIXME: should this not be an actual check???
assert((lang[0] >= 'A' && lang[0] <= 'Z')
|| (lang[0] >= 'a' && lang[0] <= 'z'));
assert((lang[1] >= 'A' && lang[1] <= 'Z')
|| (lang[1] >= 'a' && lang[1] <= 'z'));
assert(lang[2] == 0);
sqlite3_reset(session->trustword);
sqlite3_bind_text(session->trustword, 1, lang, -1, SQLITE_STATIC);
sqlite3_bind_int(session->trustword, 2, value);
const int result = sqlite3_step(session->trustword);
if (result == SQLITE_ROW) {
*word = strdup((const char *) sqlite3_column_text(session->trustword,
1));
if (*word)
*wsize = sqlite3_column_bytes(session->trustword, 1);
else
status = PEP_OUT_OF_MEMORY;
} else
status = PEP_TRUSTWORD_NOT_FOUND;
sqlite3_reset(session->trustword);
return status;
}
DYNAMIC_API PEP_STATUS trustwords(
PEP_SESSION session, const char *fingerprint, const char *lang,
char **words, size_t *wsize, int max_words
)
{
const char *source = fingerprint;
if (!(session && fingerprint && words && wsize && max_words >= 0))
return PEP_ILLEGAL_VALUE;
*words = NULL;
*wsize = 0;
char *buffer = calloc(1, MAX_TRUSTWORDS_SPACE);
assert(buffer);
if (buffer == NULL)
return PEP_OUT_OF_MEMORY;
char *dest = buffer;
const size_t fsize = strlen(fingerprint);
if (!lang || !lang[0])
lang = "en";
// FIXME: Should this not be an actual check?
assert((lang[0] >= 'A' && lang[0] <= 'Z')
|| (lang[0] >= 'a' && lang[0] <= 'z'));
assert((lang[1] >= 'A' && lang[1] <= 'Z')
|| (lang[1] >= 'a' && lang[1] <= 'z'));
assert(lang[2] == 0);
int n_words = 0;
while (source < fingerprint + fsize) {
PEP_STATUS _status;
uint16_t value;
char *word = NULL;
size_t _wsize = 0;
int j;
for (value=0, j=0; j < 4 && source < fingerprint + fsize; ) {
if (*source >= 'a' && *source <= 'f')
value += (*source - 'a' + 10) << (3 - j++) * 4;
else if (*source >= 'A' && *source <= 'F')
value += (*source - 'A' + 10) << (3 - j++) * 4;
else if (*source >= '0' && *source <= '9')
value += (*source - '0') << (3 - j++) * 4;
source++;
}
_status = trustword(session, value, lang, &word, &_wsize);
if (_status == PEP_OUT_OF_MEMORY) {
free(buffer);
return PEP_OUT_OF_MEMORY;
}
if (word == NULL) {
free(buffer);
return PEP_TRUSTWORD_NOT_FOUND;
}
if (dest + _wsize < buffer + MAX_TRUSTWORDS_SPACE - 1) {
strncpy(dest, word, _wsize);
free(word);
dest += _wsize;
}
else {
free(word);
break; // buffer full
}
++n_words;
if (max_words && n_words >= max_words)
break;
if (source < fingerprint + fsize
&& dest + _wsize < buffer + MAX_TRUSTWORDS_SPACE - 1)
*dest++ = ' ';
}
*words = buffer;
*wsize = dest - buffer;
return PEP_STATUS_OK;
}
pEp_identity *new_identity(
const char *address, const char *fpr, const char *user_id,
const char *username
)
{
pEp_identity *result = calloc(1, sizeof(pEp_identity));
if (result) {
if (address) {
result->address = strdup(address);
assert(result->address);
if (result->address == NULL) {
free(result);
return NULL;
}
}
if (fpr) {
result->fpr = strdup(fpr);
assert(result->fpr);
if (result->fpr == NULL) {
free_identity(result);
return NULL;
}
}
if (user_id) {
result->user_id = strdup(user_id);
assert(result->user_id);
if (result->user_id == NULL) {
free_identity(result);
return NULL;
}
}
if (username) {
result->username = strdup(username);
assert(result->username);
if (result->username == NULL) {
free_identity(result);
return NULL;
}
}
}
return result;
}
pEp_identity *identity_dup(const pEp_identity *src)
{
pEp_identity* dup = NULL;
if (src) {
dup = new_identity(src->address, src->fpr, src->user_id,
src->username);
assert(dup);
if (dup == NULL)
return NULL;
dup->comm_type = src->comm_type;
dup->lang[0] = src->lang[0];
dup->lang[1] = src->lang[1];
dup->lang[2] = 0;
dup->flags = src->flags;
dup->me = src->me;
dup->major_ver = src->major_ver;
dup->minor_ver = src->minor_ver;
dup->enc_format = src->enc_format;
}
return dup;
}
void free_identity(pEp_identity *identity)
{
if (identity) {
free(identity->address);
free(identity->fpr);
free(identity->user_id);
free(identity->username);
free(identity);
}
}
DYNAMIC_API PEP_STATUS get_default_own_userid(
PEP_SESSION session,
char** userid
)
{
if (!session || !userid)
return PEP_ILLEGAL_VALUE;
PEP_STATUS status = PEP_STATUS_OK;
char* retval = NULL;
sqlite3_reset(session->get_default_own_userid);
const int result = sqlite3_step(session->get_default_own_userid);
const char* id;
switch (result) {
case SQLITE_ROW:
id = (const char *) sqlite3_column_text(session->get_default_own_userid, 0);
if (!id) {
// Shouldn't happen.
status = PEP_UNKNOWN_ERROR;
}
else {
retval = strdup(id);
if (!retval)
status = PEP_OUT_OF_MEMORY;
}
break;
default:
// Technically true, given how we find it, but FIXME we need a more descriptive error
status = PEP_CANNOT_FIND_IDENTITY;
}
*userid = retval;
sqlite3_reset(session->get_default_own_userid);
return status;
}
DYNAMIC_API PEP_STATUS get_userid_alias_default(
PEP_SESSION session,
const char* alias_id,
char** default_id) {
if (!(session && alias_id && alias_id[0] && default_id))
return PEP_ILLEGAL_VALUE;
PEP_STATUS status = PEP_STATUS_OK;
char* retval = NULL;
sqlite3_reset(session->get_userid_alias_default);
sqlite3_bind_text(session->get_userid_alias_default, 1, alias_id, -1, SQLITE_STATIC);
const char* tempid;
const int result = sqlite3_step(session->get_userid_alias_default);
switch (result) {
case SQLITE_ROW:
tempid = (const char *) sqlite3_column_text(session->get_userid_alias_default, 0);
if (tempid) {
retval = strdup(tempid);
assert(retval);
if (retval == NULL)
return PEP_OUT_OF_MEMORY;
}
*default_id = retval;
break;
default:
status = PEP_CANNOT_FIND_ALIAS;
*default_id = NULL;
}
sqlite3_reset(session->get_userid_alias_default);
return status;
}
DYNAMIC_API PEP_STATUS set_userid_alias (
PEP_SESSION session,
const char* default_id,
const char* alias_id) {
int result;
if (!(session && default_id && alias_id &&
default_id[0] != '\0' && alias_id[0] != '\0'))
return PEP_ILLEGAL_VALUE;
sqlite3_exec(session->db, "BEGIN TRANSACTION ;", NULL, NULL, NULL);
sqlite3_reset(session->add_userid_alias);
sqlite3_bind_text(session->add_userid_alias, 1, default_id, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->add_userid_alias, 2, alias_id, -1,
SQLITE_STATIC);
result = sqlite3_step(session->add_userid_alias);
sqlite3_reset(session->add_userid_alias);
if (result != SQLITE_DONE) {
sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
return PEP_CANNOT_SET_ALIAS;
}
sqlite3_exec(session->db, "COMMIT ;", NULL, NULL, NULL);
return PEP_STATUS_OK;
}
DYNAMIC_API PEP_STATUS get_identity(
PEP_SESSION session,
const char *address,
const char *user_id,
pEp_identity **identity
)
{
PEP_STATUS status = PEP_STATUS_OK;
pEp_identity *_identity = NULL;
if (!(session && address && address[0] && identity))
return PEP_ILLEGAL_VALUE;
*identity = NULL;
sqlite3_reset(session->get_identity);
sqlite3_bind_text(session->get_identity, 1, address, -1, SQLITE_STATIC);
sqlite3_bind_text(session->get_identity, 2, user_id, -1, SQLITE_STATIC);
const int result = sqlite3_step(session->get_identity);
switch (result) {
case SQLITE_ROW:
_identity = new_identity(
address,
(const char *) sqlite3_column_text(session->get_identity, 0),
user_id,
(const char *) sqlite3_column_text(session->get_identity, 1)
);
assert(_identity);
if (_identity == NULL) {
sqlite3_reset(session->get_identity);
return PEP_OUT_OF_MEMORY;
}
_identity->comm_type = (PEP_comm_type)
sqlite3_column_int(session->get_identity, 2);
const char* const _lang = (const char *)
sqlite3_column_text(session->get_identity, 3);
if (_lang && _lang[0]) {
assert(_lang[0] >= 'a' && _lang[0] <= 'z');
assert(_lang[1] >= 'a' && _lang[1] <= 'z');
assert(_lang[2] == 0);
_identity->lang[0] = _lang[0];
_identity->lang[1] = _lang[1];
_identity->lang[2] = 0;
}
_identity->flags = (unsigned int)
sqlite3_column_int(session->get_identity, 4);
_identity->me = (unsigned int)
sqlite3_column_int(session->get_identity, 5);
_identity->major_ver =
sqlite3_column_int(session->get_identity, 6);
_identity->minor_ver =
sqlite3_column_int(session->get_identity, 7);
_identity->enc_format =
sqlite3_column_int(session->get_identity, 8);
*identity = _identity;
break;
default:
sqlite3_reset(session->get_identity);
status = PEP_CANNOT_FIND_IDENTITY;
*identity = NULL;
}
sqlite3_reset(session->get_identity);
return status;
}
PEP_STATUS get_identities_by_userid(
PEP_SESSION session,
const char *user_id,
identity_list **identities
)
{
if (!session || !identities || EMPTYSTR(user_id))
return PEP_ILLEGAL_VALUE;
PEP_STATUS status = PEP_STATUS_OK;
pEp_identity* ident = NULL;
*identities = new_identity_list(NULL);
sqlite3_reset(session->get_identities_by_userid);
sqlite3_bind_text(session->get_identities_by_userid, 1, user_id, -1, SQLITE_STATIC);
int result = -1;
while ((result = sqlite3_step(session->get_identities_by_userid)) == SQLITE_ROW) {
// "select address, identity.main_key_id, username, comm_type, lang,"
// " identity.flags | pgp_keypair.flags,"
// " is_own"
// " from identity"
// " join person on id = identity.user_id"
// " join pgp_keypair on fpr = identity.main_key_id"
// " join trust on id = trust.user_id"
// " and pgp_keypair_fpr = identity.main_key_id"
// " where identity.user_id = ?1"
// " order by is_own desc, "
// " timestamp desc; ";
ident = new_identity(
(const char *) sqlite3_column_text(session->get_identities_by_userid, 0),
(const char *) sqlite3_column_text(session->get_identities_by_userid, 1),
user_id,
(const char *) sqlite3_column_text(session->get_identities_by_userid, 2)
);
assert(ident);
if (ident == NULL) {
sqlite3_reset(session->get_identities_by_userid);
return PEP_OUT_OF_MEMORY;
}
ident->comm_type = (PEP_comm_type)
sqlite3_column_int(session->get_identities_by_userid, 3);
const char* const _lang = (const char *)
sqlite3_column_text(session->get_identities_by_userid, 4);
if (_lang && _lang[0]) {
assert(_lang[0] >= 'a' && _lang[0] <= 'z');
assert(_lang[1] >= 'a' && _lang[1] <= 'z');
assert(_lang[2] == 0);
ident->lang[0] = _lang[0];
ident->lang[1] = _lang[1];
ident->lang[2] = 0;
}
ident->flags = (unsigned int)
sqlite3_column_int(session->get_identities_by_userid, 5);
ident->me = (unsigned int)
sqlite3_column_int(session->get_identities_by_userid, 6);
ident->major_ver =
sqlite3_column_int(session->get_identities_by_userid, 7);
ident->minor_ver =
sqlite3_column_int(session->get_identities_by_userid, 8);
ident->enc_format =
sqlite3_column_int(session->get_identities_by_userid, 9);
identity_list_add(*identities, ident);
ident = NULL;
}
if ((*identities)->ident == NULL) {
free_identity_list(*identities);
*identities = NULL;
status = PEP_CANNOT_FIND_IDENTITY;
}
sqlite3_reset(session->get_identities_by_userid);
return status;
}
PEP_STATUS get_identities_by_main_key_id(
PEP_SESSION session,
const char *fpr,
identity_list **identities
)
{
if (!session || !identities || EMPTYSTR(fpr))
return PEP_ILLEGAL_VALUE;
PEP_STATUS status = PEP_STATUS_OK;
pEp_identity* ident = NULL;
*identities = new_identity_list(NULL);
sqlite3_reset(session->get_identities_by_main_key_id);
sqlite3_bind_text(session->get_identities_by_main_key_id, 1, fpr, -1, SQLITE_STATIC);
int result = -1;
while ((result = sqlite3_step(session->get_identities_by_main_key_id)) == SQLITE_ROW) {
ident = new_identity(
(const char *) sqlite3_column_text(session->get_identities_by_main_key_id, 0),
fpr,
(const char *) sqlite3_column_text(session->get_identities_by_main_key_id, 1),
(const char *) sqlite3_column_text(session->get_identities_by_main_key_id, 2)
);
assert(ident);
if (ident == NULL) {
sqlite3_reset(session->get_identities_by_main_key_id);
return PEP_OUT_OF_MEMORY;
}
ident->comm_type = (PEP_comm_type)
sqlite3_column_int(session->get_identities_by_main_key_id, 3);
const char* const _lang = (const char *)
sqlite3_column_text(session->get_identities_by_main_key_id, 4);
if (_lang && _lang[0]) {
assert(_lang[0] >= 'a' && _lang[0] <= 'z');
assert(_lang[1] >= 'a' && _lang[1] <= 'z');
assert(_lang[2] == 0);
ident->lang[0] = _lang[0];
ident->lang[1] = _lang[1];
ident->lang[2] = 0;
}
ident->flags = (unsigned int)
sqlite3_column_int(session->get_identities_by_main_key_id, 5);
ident->me = (unsigned int)
sqlite3_column_int(session->get_identities_by_main_key_id, 6);
ident->major_ver =
sqlite3_column_int(session->get_identities_by_main_key_id, 7);
ident->minor_ver =
sqlite3_column_int(session->get_identities_by_main_key_id, 8);
ident->enc_format =
sqlite3_column_int(session->get_identities_by_main_key_id, 9);
identity_list_add(*identities, ident);
ident = NULL;
}
if ((*identities)->ident == NULL) {
free_identity_list(*identities);
*identities = NULL;
status = PEP_CANNOT_FIND_IDENTITY;
}
sqlite3_reset(session->get_identities_by_main_key_id);
return status;
}
PEP_STATUS get_identity_without_trust_check(
PEP_SESSION session,
const char *address,
const char *user_id,
pEp_identity **identity
)
{
PEP_STATUS status = PEP_STATUS_OK;
pEp_identity *_identity = NULL;
if (!(session && address && address[0] && identity))
return PEP_ILLEGAL_VALUE;
*identity = NULL;
sqlite3_reset(session->get_identity_without_trust_check);
sqlite3_bind_text(session->get_identity_without_trust_check, 1, address, -1, SQLITE_STATIC);
sqlite3_bind_text(session->get_identity_without_trust_check, 2, user_id, -1, SQLITE_STATIC);
const int result = sqlite3_step(session->get_identity_without_trust_check);
switch (result) {
case SQLITE_ROW:
_identity = new_identity(
address,
(const char *) sqlite3_column_text(session->get_identity_without_trust_check, 0),
user_id,
(const char *) sqlite3_column_text(session->get_identity_without_trust_check, 1)
);
assert(_identity);
if (_identity == NULL) {
sqlite3_reset(session->get_identity_without_trust_check);
return PEP_OUT_OF_MEMORY;
}
_identity->comm_type = PEP_ct_unknown;
const char* const _lang = (const char *)
sqlite3_column_text(session->get_identity_without_trust_check, 2);
if (_lang && _lang[0]) {
assert(_lang[0] >= 'a' && _lang[0] <= 'z');
assert(_lang[1] >= 'a' && _lang[1] <= 'z');
assert(_lang[2] == 0);
_identity->lang[0] = _lang[0];
_identity->lang[1] = _lang[1];
_identity->lang[2] = 0;
}
_identity->flags = (unsigned int)
sqlite3_column_int(session->get_identity_without_trust_check, 3);
_identity->me = (unsigned int)
sqlite3_column_int(session->get_identity_without_trust_check, 4);
_identity->major_ver =
sqlite3_column_int(session->get_identity_without_trust_check, 5);
_identity->minor_ver =
sqlite3_column_int(session->get_identity_without_trust_check, 6);
_identity->enc_format =
sqlite3_column_int(session->get_identity_without_trust_check, 7);
*identity = _identity;
break;
default:
status = PEP_CANNOT_FIND_IDENTITY;
*identity = NULL;
}
sqlite3_reset(session->get_identity_without_trust_check);
return status;
}
PEP_STATUS get_identities_by_address(
PEP_SESSION session,
const char *address,
identity_list** id_list
)
{
if (!(session && address && address[0] && id_list))
return PEP_ILLEGAL_VALUE;
*id_list = NULL;
identity_list* ident_list = NULL;
sqlite3_reset(session->get_identities_by_address);
sqlite3_bind_text(session->get_identities_by_address, 1, address, -1, SQLITE_STATIC);
int result;
while ((result = sqlite3_step(session->get_identities_by_address)) == SQLITE_ROW) {
//"select user_id, main_key_id, username, comm_type, lang,"
//" identity.flags, is_own"
pEp_identity *ident = new_identity(
address,
(const char *) sqlite3_column_text(session->get_identities_by_address, 1),
(const char *) sqlite3_column_text(session->get_identities_by_address, 0),
(const char *) sqlite3_column_text(session->get_identities_by_address, 2)
);
assert(ident);
if (ident == NULL) {
sqlite3_reset(session->get_identities_by_address);
return PEP_OUT_OF_MEMORY;
}
ident->comm_type = PEP_ct_unknown;
const char* const _lang = (const char *)
sqlite3_column_text(session->get_identities_by_address, 3);
if (_lang && _lang[0]) {
assert(_lang[0] >= 'a' && _lang[0] <= 'z');
assert(_lang[1] >= 'a' && _lang[1] <= 'z');
assert(_lang[2] == 0);
ident->lang[0] = _lang[0];
ident->lang[1] = _lang[1];
ident->lang[2] = 0;
}
ident->flags = (unsigned int)
sqlite3_column_int(session->get_identities_by_address, 4);
ident->me = (unsigned int)
sqlite3_column_int(session->get_identities_by_address, 5);
ident->major_ver =
sqlite3_column_int(session->get_identities_by_address, 6);
ident->minor_ver =
sqlite3_column_int(session->get_identities_by_address, 7);
ident->enc_format =
sqlite3_column_int(session->get_identities_by_address, 8);
if (ident_list)
identity_list_add(ident_list, ident);
else
ident_list = new_identity_list(ident);
}
sqlite3_reset(session->get_identities_by_address);
*id_list = ident_list;
if (!ident_list)
return PEP_CANNOT_FIND_IDENTITY;
return PEP_STATUS_OK;
}
/**
* @internal
*
* <!-- exists_identity_entry() -->
*
* @brief checks if an identity entry already exists in the DB
*
* @param[in] session session handle
* @param[in] *identity pEp_identity
* @param[out] *exists bool
*
* @retval PEP_STATUS_OK
* @retval PEP_ILLEGAL_VALUE illegal parameter value
* @retval PEP_UNKNOWN_DB_ERROR
*
*/
PEP_STATUS exists_identity_entry(PEP_SESSION session, pEp_identity* identity,
bool* exists) {
if (!session || !exists || !identity || EMPTYSTR(identity->user_id) || EMPTYSTR(identity->address))
return PEP_ILLEGAL_VALUE;
*exists = false;
PEP_STATUS status = PEP_STATUS_OK;
sqlite3_reset(session->exists_identity_entry);
sqlite3_bind_text(session->exists_identity_entry, 1, identity->address, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->exists_identity_entry, 2, identity->user_id, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->exists_identity_entry);
switch (result) {
case SQLITE_ROW: {
// yeah yeah, I know, we could be lazy here, but it looks bad.
*exists = (sqlite3_column_int(session->exists_identity_entry, 0) != 0);
break;
}
default:
status = PEP_UNKNOWN_DB_ERROR;
}
sqlite3_reset(session->exists_identity_entry);
return status;
}
PEP_STATUS exists_trust_entry(PEP_SESSION session, pEp_identity* identity,
bool* exists) {
if (!session || !exists || !identity || EMPTYSTR(identity->user_id) || EMPTYSTR(identity->fpr))
return PEP_ILLEGAL_VALUE;
*exists = false;
PEP_STATUS status = PEP_STATUS_OK;
sqlite3_reset(session->exists_trust_entry);
sqlite3_bind_text(session->exists_trust_entry, 1, identity->user_id, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->exists_trust_entry, 2, identity->fpr, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->exists_trust_entry);
switch (result) {
case SQLITE_ROW: {
// yeah yeah, I know, we could be lazy here, but it looks bad.
*exists = (sqlite3_column_int(session->exists_trust_entry, 0) != 0);
break;
}
default:
status = PEP_UNKNOWN_DB_ERROR;
}
sqlite3_reset(session->exists_trust_entry);
return status;
}
PEP_STATUS set_pgp_keypair(PEP_SESSION session, const char* fpr) {
if (!session || EMPTYSTR(fpr))
return PEP_ILLEGAL_VALUE;
int result;
sqlite3_reset(session->set_pgp_keypair);
sqlite3_bind_text(session->set_pgp_keypair, 1, fpr, -1,
SQLITE_STATIC);
result = sqlite3_step(session->set_pgp_keypair);
sqlite3_reset(session->set_pgp_keypair);
if (result != SQLITE_DONE) {
return PEP_CANNOT_SET_PGP_KEYPAIR;
}
return PEP_STATUS_OK;
}
PEP_STATUS clear_trust_info(PEP_SESSION session,
const char* user_id,
const char* fpr) {
if (!session || EMPTYSTR(fpr) || EMPTYSTR(user_id))
return PEP_ILLEGAL_VALUE;
int result;
sqlite3_reset(session->clear_trust_info);
sqlite3_bind_text(session->clear_trust_info, 1, user_id, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->clear_trust_info, 2, fpr, -1,
SQLITE_STATIC);
result = sqlite3_step(session->clear_trust_info);
sqlite3_reset(session->clear_trust_info);
if (result != SQLITE_DONE) {
return PEP_UNKNOWN_ERROR;
}
return PEP_STATUS_OK;
}
/**
* @internal
*
* <!-- _set_or_update_trust() -->
*
* @brief TODO
*
* @param[in] session session handle
* @param[in] *identity pEp_identity
* @param[in] *set_or_update sqlite3_stmt
*
* @retval PEP_STATUS_OK
* @retval PEP_CANNOT_SET_TRUST
* @retval PEP_ILLEGAL_VALUE illegal parameter value
*
*/
static PEP_STATUS _set_or_update_trust(PEP_SESSION session,
pEp_identity* identity,
sqlite3_stmt* set_or_update) {
if (!session || !identity || EMPTYSTR(identity->user_id) || EMPTYSTR(identity->fpr))
return PEP_ILLEGAL_VALUE;
PEP_STATUS status = set_pgp_keypair(session, identity->fpr);
if (status != PEP_STATUS_OK)
return status;
int result;
sqlite3_reset(set_or_update);
sqlite3_bind_text(set_or_update, 1, identity->user_id, -1,
SQLITE_STATIC);
sqlite3_bind_text(set_or_update, 2, identity->fpr, -1,
SQLITE_STATIC);
sqlite3_bind_int(set_or_update, 3, identity->comm_type);
result = sqlite3_step(set_or_update);
assert(result == SQLITE_DONE);
sqlite3_reset(set_or_update);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_TRUST;
return PEP_STATUS_OK;
}
/**
* @internal
*
* <!-- _set_or_update_identity_entry() -->
*
* @brief TODO
*
* @param[in] session session handle
* @param[in] *identity pEp_identity
* @param[in] *set_or_update sqlite3_stmt
*
* @retval PEP_STATUS_OK
* @retval PEP_CANNOT_SET_IDENTITY
* @retval PEP_ILLEGAL_VALUE illegal parameter value
*
*/
static PEP_STATUS _set_or_update_identity_entry(PEP_SESSION session,
pEp_identity* identity,
sqlite3_stmt* set_or_update) {
if (!session || !identity || !identity->user_id || !identity->address)
return PEP_ILLEGAL_VALUE;
sqlite3_reset(set_or_update);
sqlite3_bind_text(set_or_update, 1, identity->address, -1,
SQLITE_STATIC);
sqlite3_bind_text(set_or_update, 2, EMPTYSTR(identity->fpr) ? NULL : identity->fpr, -1,
SQLITE_STATIC);
sqlite3_bind_text(set_or_update, 3, identity->user_id, -1,
SQLITE_STATIC);
sqlite3_bind_text(set_or_update, 4, identity->username, -1,
SQLITE_STATIC);
sqlite3_bind_int(set_or_update, 5, identity->flags);
sqlite3_bind_int(set_or_update, 6, identity->me);
sqlite3_bind_int(set_or_update, 7, identity->major_ver);
sqlite3_bind_int(set_or_update, 8, identity->minor_ver);
int result = sqlite3_step(set_or_update);
sqlite3_reset(set_or_update);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_IDENTITY;
return PEP_STATUS_OK;
}
/**
* @internal
*
* <!-- _set_or_update_person() -->
*
* @brief TODO
*
* @param[in] session session handle
* @param[in] *identity pEp_identity
* @param[in] *set_or_update sqlite3_stmt
*
* @retval PEP_STATUS_OK
* @retval PEP_CANNOT_SET_IDENTITY
* @retval PEP_CANNOT_SET_PERSON
*
*/
static PEP_STATUS _set_or_update_person(PEP_SESSION session,
pEp_identity* identity,
sqlite3_stmt* set_or_update) {
if (!session || !identity || !identity->user_id || !identity->username)
return PEP_ILLEGAL_VALUE;
sqlite3_reset(set_or_update);
sqlite3_bind_text(set_or_update, 1, identity->user_id, -1,
SQLITE_STATIC);
sqlite3_bind_text(set_or_update, 2, identity->username, -1,
SQLITE_STATIC);
if (identity->lang[0])
sqlite3_bind_text(set_or_update, 3, identity->lang, 2,
SQLITE_STATIC);
else
sqlite3_bind_null(set_or_update, 3);
sqlite3_bind_text(set_or_update, 4, EMPTYSTR(identity->fpr) ? NULL : identity->fpr, -1,
SQLITE_STATIC);
int result = sqlite3_step(set_or_update);
sqlite3_reset(set_or_update);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_PERSON;
return PEP_STATUS_OK;
}
PEP_STATUS set_or_update_with_identity(PEP_SESSION session,
pEp_identity* identity,
PEP_STATUS (* set_function)(PEP_SESSION, pEp_identity*, sqlite3_stmt*),
PEP_STATUS (* exists_function)(PEP_SESSION, pEp_identity*, bool*),
sqlite3_stmt* update_query,
sqlite3_stmt* set_query,
bool guard_transaction) {
if (guard_transaction) {
sqlite3_exec(session->db, "BEGIN TRANSACTION ;", NULL, NULL, NULL);
}
bool exists = false;
PEP_STATUS status = exists_function(session, identity, &exists);
if (status == PEP_STATUS_OK) {
if (exists) {
status = set_function(session, identity, update_query);
}
else {
status = set_function(session, identity, set_query);
}
}
if (guard_transaction) {
if (status != PEP_STATUS_OK)
sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
else
sqlite3_exec(session->db, "COMMIT ;", NULL, NULL, NULL);
}
return status;
}
/**
* @internal
*
* <!-- _set_trust_internal() -->
*
* @brief TODO
*
* @param[in] session session handle
* @param[in] *identity pEp_identity
* @param[in] guard_transaction bool
*
*/
PEP_STATUS _set_trust_internal(PEP_SESSION session, pEp_identity* identity,
bool guard_transaction) {
return set_or_update_with_identity(session, identity,
_set_or_update_trust,
exists_trust_entry,
session->update_trust,
session->set_trust,
guard_transaction);
}
// This is the TOP-LEVEL function. If you're calling from set_identity,
// you can't use this one.
PEP_STATUS set_trust(PEP_SESSION session, pEp_identity* identity) {
PEP_STATUS status = PEP_STATUS_OK;
status = _set_trust_internal(session, identity, true);
if (status == PEP_STATUS_OK) {
if ((identity->comm_type | PEP_ct_confirmed) == PEP_ct_pEp)
status = set_as_pEp_user(session, identity);
}
return status;
}
PEP_STATUS set_person(PEP_SESSION session, pEp_identity* identity,
bool guard_transaction) {
return set_or_update_with_identity(session, identity,
_set_or_update_person,
exists_person,
session->update_person,
session->set_person,
guard_transaction);
}
/**
* @internal
*
* <!-- set_identity_entry() -->
*
* @brief TODO
*
* @param[in] session session handle
* @param[in] *identity pEp_identity
* @param[in] guard_transaction bool
*
*/
PEP_STATUS set_identity_entry(PEP_SESSION session, pEp_identity* identity,
bool guard_transaction) {
return set_or_update_with_identity(session, identity,
_set_or_update_identity_entry,
exists_identity_entry,
session->update_identity_entry,
session->set_identity_entry,
guard_transaction);
}
// This will NOT call set_as_pEp_user, nor set_pEp_version; you have to do that separately.
DYNAMIC_API PEP_STATUS set_identity(
PEP_SESSION session, const pEp_identity *identity
)
{
int result;
if (!(session && identity && identity->address &&
identity->user_id && identity->username))
return PEP_ILLEGAL_VALUE;
PEP_STATUS status = PEP_STATUS_OK;
bool has_fpr = (!EMPTYSTR(identity->fpr));
sqlite3_exec(session->db, "BEGIN TRANSACTION ;", NULL, NULL, NULL);
if (identity->lang[0]) {
assert(identity->lang[0] >= 'a' && identity->lang[0] <= 'z');
assert(identity->lang[1] >= 'a' && identity->lang[1] <= 'z');
assert(identity->lang[2] == 0);
}
if (has_fpr) {
sqlite3_reset(session->set_pgp_keypair);
sqlite3_bind_text(session->set_pgp_keypair, 1, identity->fpr, -1,
SQLITE_STATIC);
result = sqlite3_step(session->set_pgp_keypair);
sqlite3_reset(session->set_pgp_keypair);
if (result != SQLITE_DONE) {
sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
return PEP_CANNOT_SET_PGP_KEYPAIR;
}
}
// We do this because there are checks in set_person for
// aliases, which modify the identity object on return.
pEp_identity* ident_copy = identity_dup(identity);
if (!ident_copy)
return PEP_OUT_OF_MEMORY;
// For now, we ALWAYS set the person.username.
status = set_person(session, ident_copy, false);
if (status != PEP_STATUS_OK) {
sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
goto pEp_free;
}
status = set_identity_entry(session, ident_copy, false);
if (status != PEP_STATUS_OK) {
sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
goto pEp_free;
}
if (has_fpr) {
status = _set_trust_internal(session, ident_copy, false);
if (status != PEP_STATUS_OK) {
sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
goto pEp_free;
}
}
status = set_pEp_version(session, ident_copy, ident_copy->major_ver, ident_copy->minor_ver);
if (status != PEP_STATUS_OK) {
sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
goto pEp_free;
}
result = sqlite3_exec(session->db, "COMMIT ;", NULL, NULL, NULL);
if (result == SQLITE_OK)
status = PEP_STATUS_OK;
else
status = PEP_COMMIT_FAILED;
pEp_free:
free_identity(ident_copy);
return status;
}
//static const char* sql_force_set_identity_username =
// "update identity "
// " set username = coalesce(username, ?3) "
// " where (case when (address = ?1) then (1)"
// " when (lower(address) = lower(?1)) then (1)"
// " when (replace(lower(address),'.','') = replace(lower(?1),'.','')) then (1) "
// " else 0 "
// " end) = 1 "
// " and user_id = ?2 ;";
PEP_STATUS force_set_identity_username(PEP_SESSION session, pEp_identity* ident, const char* username) {
if (!ident || EMPTYSTR(ident->user_id) || EMPTYSTR(ident->address))
return PEP_ILLEGAL_VALUE;
// If username is NULL, it's fine. This defaults to sqlite3_bind_null() and clears the username, which
// might be intended. The caller should decide that before calling this. This is really the force-bludgeon.
sqlite3_reset(session->force_set_identity_username);
sqlite3_bind_text(session->force_set_identity_username, 1, ident->address, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->force_set_identity_username, 2, ident->user_id, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->force_set_identity_username, 3, username, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->force_set_identity_username);
sqlite3_reset(session->force_set_identity_username);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_IDENTITY;
return PEP_STATUS_OK;
}
/**
* @internal
*
* <!-- update_pEp_user_trust_vals() -->
*
* @brief TODO
*
* @param[in] session session handle
* @param[in] *user pEp_identity
*
* @retval PEP_ILLEGAL_VALUE illegal parameter value
* @retval PEP_CANNOT_SET_TRUST
*
*/
PEP_STATUS update_pEp_user_trust_vals(PEP_SESSION session,
pEp_identity* user) {
if (!session || !user || EMPTYSTR(user->user_id))
return PEP_ILLEGAL_VALUE;
sqlite3_reset(session->update_trust_to_pEp);
sqlite3_bind_text(session->update_trust_to_pEp, 1, user->user_id, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->update_trust_to_pEp);
sqlite3_reset(session->update_trust_to_pEp);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_TRUST;
PEP_STATUS status = upgrade_pEp_version_by_user_id(session, user, 2, 1);
return status;
}
// This ONLY sets the user flag. Must be called outside of a transaction.
DYNAMIC_API PEP_STATUS set_as_pEp_user(PEP_SESSION session, pEp_identity* user) {
if (!session || !user || EMPTYSTR(user->user_id))
return PEP_ILLEGAL_VALUE;
PEP_STATUS status = PEP_STATUS_OK;
bool person_exists = false;
status = exists_person(session, user, &person_exists);
if (status != PEP_STATUS_OK)
return status;
if (!person_exists)
status = set_person(session, user, true);
// Ok, let's set it.
sqlite3_reset(session->set_as_pEp_user);
sqlite3_bind_text(session->set_as_pEp_user, 1, user->user_id, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->set_as_pEp_user);
sqlite3_reset(session->set_as_pEp_user);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_PERSON;
status = update_pEp_user_trust_vals(session, user);
return status;
}
// This ONLY sets the version flag. Must be called outside of a transaction.
PEP_STATUS set_pEp_version(PEP_SESSION session, pEp_identity* ident, unsigned int new_ver_major, unsigned int new_ver_minor) {
if (!session || !ident || EMPTYSTR(ident->user_id) || EMPTYSTR(ident->address))
return PEP_ILLEGAL_VALUE;
sqlite3_reset(session->set_pEp_version);
sqlite3_bind_double(session->set_pEp_version, 1, new_ver_major);
sqlite3_bind_double(session->set_pEp_version, 2, new_ver_minor);
sqlite3_bind_text(session->set_pEp_version, 3, ident->address, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->set_pEp_version, 4, ident->user_id, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->set_pEp_version);
sqlite3_reset(session->set_pEp_version);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_PEP_VERSION;
return PEP_STATUS_OK;
}
// Generally ONLY called by set_as_pEp_user, and ONLY from < 2.0 to 2.0.
PEP_STATUS upgrade_pEp_version_by_user_id(PEP_SESSION session,
pEp_identity* ident,
unsigned int new_ver_major,
unsigned int new_ver_minor
)
{
if (!session || !ident || EMPTYSTR(ident->user_id))
return PEP_ILLEGAL_VALUE;
sqlite3_reset(session->upgrade_pEp_version_by_user_id);
sqlite3_bind_int(session->upgrade_pEp_version_by_user_id, 1, new_ver_major);
sqlite3_bind_int(session->upgrade_pEp_version_by_user_id, 2, new_ver_minor);
sqlite3_bind_text(session->upgrade_pEp_version_by_user_id, 3, ident->user_id, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->upgrade_pEp_version_by_user_id);
sqlite3_reset(session->upgrade_pEp_version_by_user_id);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_PEP_VERSION;
return PEP_STATUS_OK;
}
PEP_STATUS exists_person(PEP_SESSION session, pEp_identity* identity,
bool* exists) {
if (!session || !exists || !identity || EMPTYSTR(identity->user_id))
return PEP_ILLEGAL_VALUE;
*exists = false;
const char* user_id = identity->user_id;
char* alias_default = NULL;
PEP_STATUS status = get_userid_alias_default(session, user_id, &alias_default);
if (status == PEP_CANNOT_FIND_ALIAS || EMPTYSTR(alias_default)) {
sqlite3_reset(session->exists_person);
sqlite3_bind_text(session->exists_person, 1, user_id, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->exists_person);
switch (result) {
case SQLITE_ROW: {
// yeah yeah, I know, we could be lazy here, but it looks bad.
*exists = (sqlite3_column_int(session->exists_person, 0) != 0);
status = PEP_STATUS_OK;
break;
}
default:
sqlite3_reset(session->exists_person);
return PEP_UNKNOWN_DB_ERROR;
}
sqlite3_reset(session->exists_person);
}
else if (status == PEP_STATUS_OK) {
*exists = true; // thank you, delete on cascade!
// FIXME: Should we correct the userid default here? I think we should.
free(identity->user_id);
identity->user_id = alias_default; // ownership transfer
}
else
free(alias_default);
return status;
}
/**
* @internal
*
* <!-- delete_person() -->
*
* @brief TODO
*
* @param[in] session session handle
* @param[in] *user_id constchar
*
* @retval PEP_STATUS_OK
* @retval PEP_ILLEGAL_VALUE illegal parameter value
* @retval PEP_UNKNOWN_ERROR
*
*/
PEP_STATUS delete_person(PEP_SESSION session, const char* user_id) {
if (!session || EMPTYSTR(user_id))
return PEP_ILLEGAL_VALUE;
PEP_STATUS status = PEP_STATUS_OK;
sqlite3_reset(session->delete_person);
sqlite3_bind_text(session->delete_person, 1, user_id, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->delete_person);
if (result != SQLITE_DONE)
status = PEP_UNKNOWN_ERROR;
sqlite3_reset(session->delete_person);
return status;
}
DYNAMIC_API PEP_STATUS is_pEp_user(PEP_SESSION session, pEp_identity *identity, bool* is_pEp)
{
if (!session || !is_pEp || !identity || EMPTYSTR(identity->user_id))
return PEP_ILLEGAL_VALUE;
*is_pEp = false;
const char* user_id = identity->user_id;
char* alias_default = NULL;
PEP_STATUS status = get_userid_alias_default(session, user_id, &alias_default);
if (status == PEP_CANNOT_FIND_ALIAS || EMPTYSTR(alias_default)) {
free(alias_default);
alias_default = strdup(user_id);
}
sqlite3_reset(session->is_pEp_user);
sqlite3_bind_text(session->is_pEp_user, 1, user_id, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->is_pEp_user);
switch (result) {
case SQLITE_ROW: {
// yeah yeah, I know, we could be lazy here, but it looks bad.
*is_pEp = (sqlite3_column_int(session->is_pEp_user, 0) != 0);
break;
}
default:
sqlite3_reset(session->is_pEp_user);
free(alias_default);
return PEP_CANNOT_FIND_PERSON;
}
sqlite3_reset(session->is_pEp_user);
free(alias_default);
return PEP_STATUS_OK;
}
PEP_STATUS is_own_address(PEP_SESSION session, const char* address, bool* is_own_addr)
{
if (!session || !is_own_addr || EMPTYSTR(address))
return PEP_ILLEGAL_VALUE;
*is_own_addr = false;
sqlite3_reset(session->is_own_address);
sqlite3_bind_text(session->is_own_address, 1, address, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->is_own_address);
switch (result) {
case SQLITE_ROW: {
// yeah yeah, I know, we could be lazy here, but it looks bad.
*is_own_addr = (sqlite3_column_int(session->is_own_address, 0) != 0);
break;
}
default:
sqlite3_reset(session->is_own_address);
return PEP_RECORD_NOT_FOUND;
}
sqlite3_reset(session->is_own_address);
return PEP_STATUS_OK;
}
PEP_STATUS bind_own_ident_with_contact_ident(PEP_SESSION session,
pEp_identity* own_ident,
pEp_identity* contact_ident) {
if (!own_ident || !contact_ident ||
!own_ident->address || !own_ident->user_id || !contact_ident->user_id)
return PEP_ILLEGAL_VALUE;
sqlite3_reset(session->add_into_social_graph);
sqlite3_bind_text(session->add_into_social_graph, 1, own_ident->user_id, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->add_into_social_graph, 2, own_ident->address, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->add_into_social_graph, 3, contact_ident->user_id, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->add_into_social_graph);
sqlite3_reset(session->add_into_social_graph);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_PERSON;
return PEP_STATUS_OK;
}
// FIXME: should be more like is there a communications relationship,
// since this could be either way
PEP_STATUS has_partner_contacted_address(PEP_SESSION session, const char* partner_id,
const char* own_address, bool* was_contacted) {
if (!session || !was_contacted || EMPTYSTR(partner_id) || EMPTYSTR(own_address))
return PEP_ILLEGAL_VALUE;
*was_contacted = false;
PEP_STATUS status = PEP_STATUS_OK;
sqlite3_reset(session->has_id_contacted_address);
sqlite3_bind_text(session->has_id_contacted_address, 1, own_address, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->has_id_contacted_address, 2, partner_id, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->has_id_contacted_address);
switch (result) {
case SQLITE_ROW: {
// yeah yeah, I know, we could be lazy here, but it looks bad.
*was_contacted = (sqlite3_column_int(session->has_id_contacted_address, 0) != 0);
status = PEP_STATUS_OK;
break;
}
default:
status = PEP_UNKNOWN_DB_ERROR;
}
sqlite3_reset(session->has_id_contacted_address);
return status;
}
// FIXME: problematic - can be multiple and this now matters
PEP_STATUS get_own_ident_for_contact_id(PEP_SESSION session,
const pEp_identity* contact,
pEp_identity** own_ident) {
if (!contact || !contact->user_id || !own_ident)
return PEP_ILLEGAL_VALUE;
char* own_user_id = NULL;
*own_ident = NULL;
PEP_STATUS status = get_default_own_userid(session, &own_user_id);
if (status != PEP_STATUS_OK)
return status;
sqlite3_reset(session->get_own_address_binding_from_contact);
sqlite3_bind_text(session->get_own_address_binding_from_contact, 1, own_user_id, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->get_own_address_binding_from_contact, 2, contact->user_id, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->get_own_address_binding_from_contact);
const char* own_address = NULL;
switch (result) {
case SQLITE_ROW:
own_address = (const char *)
sqlite3_column_text(session->get_own_address_binding_from_contact, 0);
if (own_address) {
status = get_identity(session, own_address, own_user_id, own_ident);
if (status == PEP_STATUS_OK) {
if (!own_ident)
status = PEP_CANNOT_FIND_IDENTITY;
}
}
break;
default:
status = PEP_CANNOT_FIND_IDENTITY;
}
free(own_user_id);
return status;
}
PEP_STATUS remove_fpr_as_default(PEP_SESSION session,
const char* fpr)
{
if (!session || !fpr)
return PEP_ILLEGAL_VALUE;
sqlite3_reset(session->remove_fpr_as_identity_default);
sqlite3_bind_text(session->remove_fpr_as_identity_default, 1, fpr, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->remove_fpr_as_identity_default);
sqlite3_reset(session->remove_fpr_as_identity_default);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_IDENTITY;
sqlite3_reset(session->remove_fpr_as_user_default);
sqlite3_bind_text(session->remove_fpr_as_user_default, 1, fpr, -1,
SQLITE_STATIC);
result = sqlite3_step(session->remove_fpr_as_user_default);
sqlite3_reset(session->remove_fpr_as_user_default);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_PERSON;
return PEP_STATUS_OK;
}
PEP_STATUS replace_identities_fpr(PEP_SESSION session,
const char* old_fpr,
const char* new_fpr)
{
if (!old_fpr || !new_fpr)
return PEP_ILLEGAL_VALUE;
sqlite3_reset(session->replace_identities_fpr);
sqlite3_bind_text(session->replace_identities_fpr, 1, new_fpr, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->replace_identities_fpr, 2, old_fpr, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->replace_identities_fpr);
sqlite3_reset(session->replace_identities_fpr);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_IDENTITY;
return PEP_STATUS_OK;
}
PEP_STATUS update_trust_for_fpr(PEP_SESSION session,
const char* fpr,
PEP_comm_type comm_type)
{
if (!fpr)
return PEP_ILLEGAL_VALUE;
sqlite3_reset(session->update_trust_for_fpr);
sqlite3_bind_int(session->update_trust_for_fpr, 1, comm_type);
sqlite3_bind_text(session->update_trust_for_fpr, 2, fpr, -1,
SQLITE_STATIC);
int result = sqlite3_step(session->update_trust_for_fpr);
sqlite3_reset(session->update_trust_for_fpr);
if (result != SQLITE_DONE) {
return PEP_CANNOT_SET_TRUST;
}
return PEP_STATUS_OK;
}
DYNAMIC_API PEP_STATUS set_identity_flags(
PEP_SESSION session,
pEp_identity *identity,
unsigned int flags
)
{
int result;
if (!(session && identity && identity->address && identity->user_id))
return PEP_ILLEGAL_VALUE;
sqlite3_reset(session->set_identity_flags);
sqlite3_bind_int(session->set_identity_flags, 1, flags);
sqlite3_bind_text(session->set_identity_flags, 2, identity->address, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->set_identity_flags, 3, identity->user_id, -1,
SQLITE_STATIC);
result = sqlite3_step(session->set_identity_flags);
sqlite3_reset(session->set_identity_flags);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_IDENTITY;
identity->flags |= flags;
return PEP_STATUS_OK;
}
DYNAMIC_API PEP_STATUS unset_identity_flags(
PEP_SESSION session,
pEp_identity *identity,
unsigned int flags
)
{
int result;
if (!(session && identity && identity->address && identity->user_id))
return PEP_ILLEGAL_VALUE;
sqlite3_reset(session->unset_identity_flags);
sqlite3_bind_int(session->unset_identity_flags, 1, flags);
sqlite3_bind_text(session->unset_identity_flags, 2, identity->address, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->unset_identity_flags, 3, identity->user_id, -1,
SQLITE_STATIC);
result = sqlite3_step(session->unset_identity_flags);
sqlite3_reset(session->unset_identity_flags);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_IDENTITY;
identity->flags &= ~flags;
return PEP_STATUS_OK;
}
DYNAMIC_API PEP_STATUS set_ident_enc_format(
PEP_SESSION session,
pEp_identity *identity,
PEP_enc_format format
)
{
int result;
if (!(session && identity && identity->address && identity->user_id))
return PEP_ILLEGAL_VALUE;
sqlite3_reset(session->set_ident_enc_format);
sqlite3_bind_int(session->set_ident_enc_format, 1, format);
sqlite3_bind_text(session->set_ident_enc_format, 2, identity->address, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->set_ident_enc_format, 3, identity->user_id, -1,
SQLITE_STATIC);
result = sqlite3_step(session->set_ident_enc_format);
sqlite3_reset(session->set_ident_enc_format);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_IDENTITY;
return PEP_STATUS_OK;
}
/**
* @internal
*
* <!-- get_trust_by_userid() -->
*
* @brief TODO
*
* @param[in] session session handle
* @param[in] *user_id constchar
* @param[in] **trust_list labeled_int_list_t
*
* @retval PEP_ILLEGAL_VALUE illegal parameter value
* @retval PEP_STATUS_OK
*
*/
PEP_STATUS get_trust_by_userid(PEP_SESSION session, const char* user_id,
labeled_int_list_t** trust_list)
{
int result;
if (!(session && user_id && user_id[0]))
return PEP_ILLEGAL_VALUE;
*trust_list = NULL;
labeled_int_list_t* t_list = NULL;
sqlite3_reset(session->get_trust_by_userid);
sqlite3_bind_text(session->get_trust_by_userid, 1, user_id, -1, SQLITE_STATIC);
while ((result = sqlite3_step(session->get_trust_by_userid)) == SQLITE_ROW) {
if (!t_list)
t_list = new_labeled_int_list(sqlite3_column_int(session->get_trust_by_userid, 1),
(const char *) sqlite3_column_text(session->get_trust_by_userid, 0));
else
labeled_int_list_add(t_list, sqlite3_column_int(session->get_trust_by_userid, 1),
(const char *) sqlite3_column_text(session->get_trust_by_userid, 0));
}
sqlite3_reset(session->get_trust_by_userid);
*trust_list = t_list;
return PEP_STATUS_OK;
}
/**
* @internal
*
* <!-- reconcile_trust() -->
*
* @brief TODO
*
* @param[in] t_old PEP_comm_type
* @param[in] t_new PEP_comm_type
*
* @retval PEP_comm_type result
*/
PEP_comm_type reconcile_trust(PEP_comm_type t_old, PEP_comm_type t_new) {
switch (t_new) {
case PEP_ct_mistrusted:
case PEP_ct_key_revoked:
case PEP_ct_compromised:
case PEP_ct_key_b0rken:
return t_new;
default:
break;
}
switch (t_old) {
case PEP_ct_mistrusted:
case PEP_ct_key_revoked:
case PEP_ct_compromised:
case PEP_ct_key_b0rken:
return t_old;
default:
break;
}
if (t_old < PEP_ct_strong_but_unconfirmed && t_new >= PEP_ct_strong_but_unconfirmed)
return t_new;
bool confirmed = (t_old & PEP_ct_confirmed) || (t_new & PEP_ct_confirmed);
PEP_comm_type result = _MAX(t_old, t_new);
if (confirmed)
result |= PEP_ct_confirmed;
return result;
}
/**
* @internal
*
* <!-- reconcile_pEp_status() -->
*
* @brief TODO
*
* @param[in] session session handle
* @param[in] *old_uid constchar
* @param[in] *new_uid constchar
*
* @retval PEP_STATUS_OK
* @retval PEP_OUT_OF_MEMORY out of memory
*
*/
PEP_STATUS reconcile_pEp_status(PEP_SESSION session, const char* old_uid,
const char* new_uid) {
PEP_STATUS status = PEP_STATUS_OK;
// We'll make this easy - if the old one has a pEp status, we set no matter
// what.
pEp_identity* ident = new_identity(NULL, NULL, old_uid, NULL);
bool is_pEp_peep = false;
status = is_pEp_user(session, ident, &is_pEp_peep);
if (is_pEp_peep) {
free(ident->user_id);
ident->user_id = strdup(new_uid);
if (!ident->user_id) {
status = PEP_OUT_OF_MEMORY;
goto pEp_free;
}
status = set_as_pEp_user(session, ident);
}
pEp_free:
free_identity(ident);
return status;
}
/**
* @internal
*
* <!-- reconcile_usernames() -->
*
* @brief TODO
*
* @param[in] *old_name constchar
* @param[in] *new_name constchar
* @param[in] *address constchar
*
*
*/
const char* reconcile_usernames(const char* old_name, const char* new_name,
const char* address) {
if (EMPTYSTR(old_name)) {
if (EMPTYSTR(new_name))
return address;
else
return new_name;
}
if (EMPTYSTR(new_name))
return old_name;
if (strcmp(new_name, address) == 0)
return old_name;
return new_name;
}
/**
* @internal
*
* <!-- reconcile_default_keys() -->
*
* @brief TODO
*
* @param[in] session session handle
* @param[in] *old_ident pEp_identity
* @param[in] *new_ident pEp_identity
*
* @retval PEP_STATUS_OK
* @retval PEP_OUT_OF_MEMORY out of memory
*
*/
PEP_STATUS reconcile_default_keys(PEP_SESSION session, pEp_identity* old_ident,
pEp_identity* new_ident) {
PEP_STATUS status = PEP_STATUS_OK;
const char* old_fpr = old_ident->fpr;
const char* new_fpr = new_ident->fpr;
if (!old_fpr)
return status;
PEP_comm_type old_ct = old_ident->comm_type;
PEP_comm_type new_ct = new_ident->comm_type;
if (!new_fpr) {
new_ident->fpr = strdup(old_fpr);
if (!new_ident->fpr)
status = PEP_OUT_OF_MEMORY;
else
new_ident->comm_type = old_ct;
return status;
}
if (strcmp(old_fpr, new_fpr) == 0) {
new_ident->comm_type = reconcile_trust(old_ct, new_ct);
return status;
}
bool old_confirmed = old_ct & PEP_ct_confirmed;
bool new_confirmed = new_ct & PEP_ct_confirmed;
if (new_confirmed)
return status;
else if (old_confirmed) {
free(new_ident->fpr);
new_ident->fpr = strdup(old_fpr);
if (!new_ident->fpr)
status = PEP_OUT_OF_MEMORY;
else
new_ident->comm_type = old_ct;
return status;
}
if (old_ct > new_ct) {
free(new_ident->fpr);
new_ident->fpr = strdup(old_fpr);
if (!new_ident->fpr)
status = PEP_OUT_OF_MEMORY;
else
new_ident->comm_type = old_ct;
}
return status;
}
/**
* @internal
*
* <!-- reconcile_language() -->
*
* @brief TODO
*
* @param[in] *old_ident pEp_identity
* @param[in] *new_ident pEp_identity
*
*/
void reconcile_language(pEp_identity* old_ident,
pEp_identity* new_ident) {
if (new_ident->lang[0] == 0) {
if (old_ident->lang[0] != 0) {
new_ident->lang[0] = old_ident->lang[0];
new_ident->lang[1] = old_ident->lang[1];
new_ident->lang[2] = old_ident->lang[2];
}
}
}
// ONLY CALL THIS IF BOTH IDs ARE IN THE PERSON DB, FOOL! </Mr_T>
/**
* @internal
*
* <!-- merge_records() -->
*
* @brief TODO
*
* @param[in] session session handle
* @param[in] *old_uid constchar
* @param[in] *new_uid constchar
*
* @retval PEP_STATUS_OK
* @retval PEP_OUT_OF_MEMORY out of memory
* @retval PEP_CANNOT_FIND_IDENTITY
*
*/
PEP_STATUS merge_records(PEP_SESSION session, const char* old_uid,
const char* new_uid) {
PEP_STATUS status = PEP_STATUS_OK;
pEp_identity* new_ident = NULL;
identity_list* old_identities = NULL;
labeled_int_list_t* trust_list = NULL;
stringlist_t* touched_keys = new_stringlist(NULL);
char* main_user_fpr = NULL;
status = reconcile_pEp_status(session, old_uid, new_uid);
if (status != PEP_STATUS_OK)
goto pEp_free;
bool new_is_pEp = false;
new_ident = new_identity(NULL, NULL, new_uid, NULL);
status = is_pEp_user(session, new_ident, &new_is_pEp);
if (status != PEP_STATUS_OK)
goto pEp_free;
free(new_ident);
new_ident = NULL;
status = get_identities_by_userid(session, old_uid, &old_identities);
if (status == PEP_STATUS_OK && old_identities) {
identity_list* curr_old = old_identities;
for (; curr_old && curr_old->ident; curr_old = curr_old->next) {
pEp_identity* old_ident = curr_old->ident;
const char* address = old_ident->address;
status = get_identity(session, address, new_uid, &new_ident);
if (status == PEP_CANNOT_FIND_IDENTITY) {
// No new identity matching the old one, so we just set one w. new user_id
free(old_ident->user_id);
old_ident->user_id = strdup(new_uid);
if (!old_ident->user_id) {
status = PEP_OUT_OF_MEMORY;
goto pEp_free;
}
if (new_is_pEp) {
PEP_comm_type confirmed_bit = old_ident->comm_type & PEP_ct_confirmed;
if ((old_ident->comm_type | PEP_ct_confirmed) == PEP_ct_OpenPGP)
old_ident->comm_type = PEP_ct_pEp_unconfirmed | confirmed_bit;
}
status = set_identity(session, old_ident);
if (status != PEP_STATUS_OK)
goto pEp_free;
}
else if (status != PEP_STATUS_OK)
goto pEp_free;
else {
// Ok, so we have two idents which might be in conflict. Have to merge them.
const char* username = reconcile_usernames(old_ident->username,
new_ident->username,
address);
if (!new_ident->username || strcmp(username, new_ident->username) != 0) {
free(new_ident->username);
new_ident->username = strdup(username);
if (!new_ident->username) {
status = PEP_OUT_OF_MEMORY;
goto pEp_free;
}
}
// Reconcile default keys if they differ, trust if they don't
status = reconcile_default_keys(session, old_ident, new_ident);
if (status != PEP_STATUS_OK)
goto pEp_free;
// reconcile languages
reconcile_language(old_ident, new_ident);
// reconcile flags - FIXME - is this right?
new_ident->flags |= old_ident->flags;
// NOTE: In principle, this is only called from update_identity,
// which would never have me flags set. So I am ignoring them here.
// if this function is ever USED for that, though, you'll have
// to go through making sure that the user ids are appropriately
// aliased, etc. So be careful.
// Set the reconciled record
status = set_identity(session, new_ident);
if (status != PEP_STATUS_OK)
goto pEp_free;
if (new_ident->fpr)
stringlist_add(touched_keys, new_ident->fpr);
free_identity(new_ident);
new_ident = NULL;
}
}
}
// otherwise, no need to reconcile identity records. But maybe trust...
new_ident = new_identity(NULL, NULL, new_uid, NULL);
if (!new_ident) {
status = PEP_OUT_OF_MEMORY;
goto pEp_free;
}
status = get_trust_by_userid(session, old_uid, &trust_list);
labeled_int_list_t* trust_curr = trust_list;
for (; trust_curr && trust_curr->label; trust_curr = trust_curr->next) {
const char* curr_fpr = trust_curr->label;
new_ident->fpr = strdup(curr_fpr);
status = get_trust(session, new_ident);
switch (status) {
case PEP_STATUS_OK:
new_ident->comm_type = reconcile_trust(trust_curr->value,
new_ident->comm_type);
break;
case PEP_CANNOT_FIND_IDENTITY:
new_ident->comm_type = trust_curr->value;
break;
default:
goto pEp_free;
}
new_ident->comm_type = reconcile_trust(trust_curr->value,
new_ident->comm_type);
if (new_is_pEp) {
PEP_comm_type confirmed_bit = new_ident->comm_type & PEP_ct_confirmed;
if ((new_ident->comm_type | PEP_ct_confirmed) == PEP_ct_OpenPGP)
new_ident->comm_type = PEP_ct_pEp_unconfirmed | confirmed_bit;
}
status = set_trust(session, new_ident);
if (status != PEP_STATUS_OK) {
goto pEp_free;
}
free(new_ident->fpr);
new_ident->fpr = NULL;
new_ident->comm_type = 0;
}
// reconcile the default keys if the new id doesn't have one?
status = get_main_user_fpr(session, new_uid, &main_user_fpr);
if (status == PEP_KEY_NOT_FOUND || (status == PEP_STATUS_OK && !main_user_fpr)) {
status = get_main_user_fpr(session, old_uid, &main_user_fpr);
if (status == PEP_STATUS_OK && main_user_fpr)
status = replace_main_user_fpr(session, new_uid, main_user_fpr);
if (status != PEP_STATUS_OK)
goto pEp_free;
}
// delete the old user
status = delete_person(session, old_uid);
pEp_free:
free_identity(new_ident);
free_identity_list(old_identities);
free_labeled_int_list(trust_list);
free_stringlist(touched_keys);
free(main_user_fpr);
return status;
}
PEP_STATUS replace_userid(PEP_SESSION session, const char* old_uid,
const char* new_uid) {
if (!session || !old_uid || !new_uid)
return PEP_ILLEGAL_VALUE;
pEp_identity* temp_ident = new_identity(NULL, NULL, new_uid, NULL);
bool new_exists = false;
PEP_STATUS status = exists_person(session, temp_ident, &new_exists);
free_identity(temp_ident);
if (status != PEP_STATUS_OK) // DB error
return status;
if (new_exists)
return merge_records(session, old_uid, new_uid);
int result;
sqlite3_reset(session->replace_userid);
sqlite3_bind_text(session->replace_userid, 1, new_uid, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->replace_userid, 2, old_uid, -1,
SQLITE_STATIC);
result = sqlite3_step(session->replace_userid);
#ifndef NDEBUG
if (result != SQLITE_DONE) {
const char *errmsg = sqlite3_errmsg(session->db);
log_event(session, "SQLite3 error", "replace_userid", errmsg, NULL);
}
#endif // !NDEBUG
sqlite3_reset(session->replace_userid);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_PERSON; // May need clearer retval
return PEP_STATUS_OK;
}
PEP_STATUS remove_key(PEP_SESSION session, const char* fpr) {
if (!session || EMPTYSTR(fpr))
return PEP_ILLEGAL_VALUE;
int result;
sqlite3_reset(session->delete_key);
sqlite3_bind_text(session->delete_key, 1, fpr, -1,
SQLITE_STATIC);
result = sqlite3_step(session->delete_key);
sqlite3_reset(session->delete_key);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_PGP_KEYPAIR;
return PEP_STATUS_OK;
}
PEP_STATUS refresh_userid_default_key(PEP_SESSION session, const char* user_id) {
if (!session || !user_id)
return PEP_ILLEGAL_VALUE;
int result;
sqlite3_reset(session->refresh_userid_default_key);
sqlite3_bind_text(session->refresh_userid_default_key, 1, user_id, -1,
SQLITE_STATIC);
result = sqlite3_step(session->refresh_userid_default_key);
sqlite3_reset(session->refresh_userid_default_key);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_PERSON;
return PEP_STATUS_OK;
}
PEP_STATUS replace_main_user_fpr(PEP_SESSION session, const char* user_id,
const char* new_fpr) {
if (!session || !user_id || !new_fpr)
return PEP_ILLEGAL_VALUE;
int result;
sqlite3_reset(session->replace_main_user_fpr);
sqlite3_bind_text(session->replace_main_user_fpr, 1, new_fpr, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->replace_main_user_fpr, 2, user_id, -1,
SQLITE_STATIC);
result = sqlite3_step(session->replace_main_user_fpr);
sqlite3_reset(session->replace_main_user_fpr);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_PERSON;
return PEP_STATUS_OK;
}
PEP_STATUS replace_main_user_fpr_if_equal(PEP_SESSION session, const char* user_id,
const char* new_fpr, const char* compare_fpr) {
if (!session || !user_id || !compare_fpr)
return PEP_ILLEGAL_VALUE;
// N.B. new_fpr can be NULL - if there's no key to replace it, this is fine.
// See sqlite3 documentation on sqlite3_bind_text() and sqlite3_bind_null()
int result;
sqlite3_reset(session->replace_main_user_fpr_if_equal);
sqlite3_bind_text(session->replace_main_user_fpr, 1, new_fpr, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->replace_main_user_fpr_if_equal, 2, user_id, -1,
SQLITE_STATIC);
sqlite3_bind_text(session->replace_main_user_fpr_if_equal, 3, compare_fpr, -1,
SQLITE_STATIC);
result = sqlite3_step(session->replace_main_user_fpr_if_equal);
sqlite3_reset(session->replace_main_user_fpr_if_equal);
if (result != SQLITE_DONE)
return PEP_CANNOT_SET_PERSON;
return PEP_STATUS_OK;
}
PEP_STATUS get_main_user_fpr(PEP_SESSION session,
const char* user_id,
char** main_fpr)
{
PEP_STATUS status = PEP_STATUS_OK;
int result;
if (!(session && user_id && user_id[0] && main_fpr))
return PEP_ILLEGAL_VALUE;
*main_fpr = NULL;
sqlite3_reset(session->get_main_user_fpr);
sqlite3_bind_text(session->get_main_user_fpr, 1, user_id, -1,
SQLITE_STATIC);
result = sqlite3_step(session->get_main_user_fpr);
switch (result) {
case SQLITE_ROW: {
const char* _fpr =
(const char *) sqlite3_column_text(session->get_main_user_fpr, 0);
if (_fpr) {
*main_fpr = strdup(_fpr);
if (!(*main_fpr))
status = PEP_OUT_OF_MEMORY;
}
else {
status = PEP_KEY_NOT_FOUND;
}
break;
}
default:
status = PEP_CANNOT_FIND_PERSON;
}
sqlite3_reset(session->get_main_user_fpr);
return status;
}
PEP_STATUS set_default_identity_fpr(PEP_SESSION session,
const char* user_id,
const char* address,
const char* fpr) {
if (!session || EMPTYSTR(user_id) || EMPTYSTR(address) || EMPTYSTR(fpr))
return PEP_ILLEGAL_VALUE;
// Make sure fpr is in the management DB
PEP_STATUS status = set_pgp_keypair(session, fpr);
if (status != PEP_STATUS_OK)
return status;
int result;
sqlite3_reset(session->set_default_identity_fpr);
sqlite3_bind_text(session->set_default_identity_fpr, 1, user_id, -1,
SQLITE_STATIC);