src/pEpEngine.c
author Edouard Tisserant <edouard@pep-project.org>
Mon, 06 Feb 2017 21:07:12 +0100
changeset 1568 4af26e1915f1
parent 1559 c6506bc6a0df
child 1571 e22a159b12e3
permissions -rw-r--r--
KeySync: pEpEngine.c : surrounded sequence value generation and checking with SQL BEGIN and COMMIT, to ensure atomicity of operations. sync_impl.c : ensure that incomming keysync message sequence value isn't zero, otherwise always accepted
vb@1517
     1
// This file is under GNU General Public License 3.0
vb@1517
     2
// see LICENSE.txt
vb@1517
     3
vb@125
     4
#include "pEp_internal.h"
vb@98
     5
#include "dynamic_api.h"
vb@28
     6
#include "cryptotech.h"
vb@28
     7
#include "transport.h"
vb@515
     8
#include "blacklist.h"
vb@944
     9
#include "sync_fsm.h"
vb@0
    10
vb@221
    11
static int init_count = -1;
vb@62
    12
edouard@1518
    13
// sql manipulation statements
edouard@1518
    14
static const char *sql_log = 
edouard@1518
    15
    "insert into log (title, entity, description, comment)"
edouard@1518
    16
     "values (?1, ?2, ?3, ?4);";
edouard@1518
    17
edouard@1518
    18
static const char *sql_trustword = 
edouard@1518
    19
    "select id, word from wordlist where lang = lower(?1) "
edouard@1518
    20
    "and id = ?2 ;";
edouard@1518
    21
edouard@1518
    22
static const char *sql_get_identity =  
edouard@1518
    23
    "select fpr, username, comm_type, lang,"
edouard@1518
    24
    "   identity.flags | pgp_keypair.flags"
edouard@1518
    25
    "   from identity"
edouard@1518
    26
    "   join person on id = identity.user_id"
edouard@1518
    27
    "   join pgp_keypair on fpr = identity.main_key_id"
edouard@1518
    28
    "   join trust on id = trust.user_id"
edouard@1518
    29
    "       and pgp_keypair_fpr = identity.main_key_id"
edouard@1518
    30
    "   where address = ?1 and identity.user_id = ?2;";
edouard@1518
    31
edouard@1518
    32
// Set person, but if already exist, only update.
edouard@1518
    33
// if main_key_id already set, don't touch.
edouard@1518
    34
static const char *sql_set_person = 
edouard@1518
    35
    "insert or replace into person (id, username, lang, main_key_id, device_group)"
edouard@1518
    36
    "  values (?1, ?2, ?3,"
edouard@1518
    37
    "    (select coalesce((select main_key_id from person "
edouard@1518
    38
    "      where id = ?1), upper(replace(?4,' ','')))),"
edouard@1518
    39
    "    (select device_group from person where id = ?1)) ;";
edouard@1518
    40
edouard@1518
    41
static const char *sql_set_device_group = 
edouard@1518
    42
    "update person set device_group = ?1 "
edouard@1518
    43
    "where id = '" PEP_OWN_USERID "';";
edouard@1518
    44
edouard@1523
    45
// TODO leave group
edouard@1523
    46
edouard@1518
    47
static const char *sql_get_device_group = 
edouard@1518
    48
    "select device_group from person "
edouard@1518
    49
    "where id = '" PEP_OWN_USERID "';";
edouard@1518
    50
edouard@1518
    51
static const char *sql_set_pgp_keypair = 
edouard@1518
    52
    "insert or replace into pgp_keypair (fpr) "
edouard@1518
    53
    "values (upper(replace(?1,' ',''))) ;";
edouard@1518
    54
edouard@1518
    55
static const char *sql_set_identity = 
edouard@1518
    56
    "insert or replace into identity ("
edouard@1518
    57
    " address, main_key_id, "
edouard@1518
    58
    " user_id, flags"
edouard@1518
    59
    ") values ("
edouard@1518
    60
    " ?1,"
edouard@1518
    61
    " upper(replace(?2,' ','')),"
edouard@1518
    62
    " ?3,"
edouard@1518
    63
    // " (select"
edouard@1518
    64
    // "   coalesce("
edouard@1518
    65
    // "    (select flags from identity"
edouard@1518
    66
    // "     where address = ?1 and"
edouard@1518
    67
    // "           user_id = ?3),"
edouard@1518
    68
    // "    0)"
edouard@1518
    69
    // " ) | (?4 & 255)"
edouard@1518
    70
    /* set_identity ignores previous flags, and doesn't filter machine flags */
edouard@1518
    71
    " ?4"
edouard@1518
    72
    ");";
edouard@1518
    73
        
edouard@1518
    74
static const char *sql_set_identity_flags = 
edouard@1518
    75
    "update identity set flags = "
edouard@1518
    76
    "    ((?1 & 255) | (select flags from identity"
edouard@1518
    77
    "                   where address = ?2 and user_id = ?3)) "
edouard@1518
    78
    "where address = ?2 and user_id = ?3 ;";
edouard@1518
    79
edouard@1518
    80
static const char *sql_unset_identity_flags = 
edouard@1518
    81
    "update identity set flags = "
edouard@1518
    82
    "    ( ~(?1 & 255) & (select flags from identity"
edouard@1518
    83
    "                   where address = ?2 and user_id = ?3)) "
edouard@1518
    84
    "where address = ?2 and user_id = ?3 ;";
edouard@1518
    85
edouard@1518
    86
static const char *sql_set_trust =
edouard@1518
    87
    "insert or replace into trust (user_id, pgp_keypair_fpr, comm_type) "
edouard@1518
    88
    "values (?1, upper(replace(?2,' ','')), ?3) ;";
edouard@1518
    89
edouard@1518
    90
static const char *sql_get_trust = 
edouard@1518
    91
    "select comm_type from trust where user_id = ?1 "
edouard@1518
    92
    "and pgp_keypair_fpr = upper(replace(?2,' ','')) ;";
edouard@1518
    93
edouard@1518
    94
static const char *sql_least_trust = 
edouard@1518
    95
    "select min(comm_type) from trust where pgp_keypair_fpr = upper(replace(?1,' ','')) ;";
edouard@1518
    96
edouard@1518
    97
static const char *sql_mark_as_compromized = 
edouard@1518
    98
    "update trust not indexed set comm_type = 15"
edouard@1518
    99
    " where pgp_keypair_fpr = upper(replace(?1,' ','')) ;";
edouard@1518
   100
edouard@1518
   101
static const char *sql_crashdump = 
edouard@1518
   102
    "select timestamp, title, entity, description, comment"
edouard@1518
   103
    " from log order by timestamp desc limit ?1 ;";
edouard@1518
   104
edouard@1518
   105
static const char *sql_languagelist = 
edouard@1518
   106
    "select i18n_language.lang, name, phrase" 
edouard@1518
   107
    " from i18n_language join i18n_token using (lang) where i18n_token.id = 1000;" ;
edouard@1518
   108
edouard@1518
   109
static const char *sql_i18n_token = 
edouard@1518
   110
    "select phrase from i18n_token where lang = lower(?1) and id = ?2 ;";
edouard@1518
   111
edouard@1518
   112
edouard@1518
   113
// blacklist
edouard@1518
   114
static const char *sql_blacklist_add = 
edouard@1518
   115
    "insert or replace into blacklist_keys (fpr) values (upper(replace(?1,' ',''))) ;"
edouard@1518
   116
    "delete from identity where main_key_id = upper(replace(?1,' ','')) ;"
edouard@1518
   117
    "delete from pgp_keypair where fpr = upper(replace(?1,' ','')) ;";
edouard@1518
   118
edouard@1518
   119
static const char *sql_blacklist_delete =
edouard@1518
   120
    "delete from blacklist_keys where fpr = upper(replace(?1,' ','')) ;";
edouard@1518
   121
edouard@1518
   122
static const char *sql_blacklist_is_listed = 
edouard@1518
   123
    "select count(*) from blacklist_keys where fpr = upper(replace(?1,' ','')) ;";
edouard@1518
   124
edouard@1518
   125
static const char *sql_blacklist_retrieve = 
edouard@1518
   126
    "select * from blacklist_keys ;";
edouard@1518
   127
                
edouard@1518
   128
edouard@1518
   129
// Own keys
edouard@1518
   130
static const char *sql_own_key_is_listed = 
edouard@1518
   131
    "select count(*) from ("
edouard@1518
   132
    " select main_key_id from person "
edouard@1518
   133
    "   where main_key_id = upper(replace(?1,' ',''))"
edouard@1518
   134
    "    and id = '" PEP_OWN_USERID "' "
edouard@1518
   135
    " union "
edouard@1518
   136
    "  select main_key_id from identity "
edouard@1518
   137
    "   where main_key_id = upper(replace(?1,' ',''))"
edouard@1518
   138
    "    and user_id = '" PEP_OWN_USERID "' );";
edouard@1518
   139
edouard@1518
   140
static const char *sql_own_identities_retrieve =  
edouard@1518
   141
    "select address, fpr, username, "
edouard@1518
   142
    "   lang, identity.flags | pgp_keypair.flags"
edouard@1518
   143
    "   from identity"
edouard@1518
   144
    "   join person on id = identity.user_id"
edouard@1518
   145
    "   join pgp_keypair on fpr = identity.main_key_id"
edouard@1518
   146
    "   join trust on id = trust.user_id"
edouard@1518
   147
    "       and pgp_keypair_fpr = identity.main_key_id"
edouard@1518
   148
    "   where identity.user_id = '" PEP_OWN_USERID "'"
edouard@1518
   149
    "       and (identity.flags & ?1) = 0;";
edouard@1518
   150
        
edouard@1518
   151
static const char *sql_own_keys_retrieve =  
edouard@1518
   152
    "select fpr from own_keys"
edouard@1518
   153
    "   natural join identity"
edouard@1518
   154
    "   where (identity.flags & ?1) = 0;";
edouard@1518
   155
edouard@1518
   156
static const char *sql_set_own_key = 
edouard@1518
   157
    "insert or replace into own_keys (address, user_id, fpr)"
edouard@1518
   158
    " values (?1, '" PEP_OWN_USERID "', upper(replace(?2,' ','')));";
edouard@1518
   159
edouard@1518
   160
edouard@1518
   161
// Sequence
edouard@1518
   162
static const char *sql_sequence_value1 = 
edouard@1518
   163
    "insert or replace into sequences (name, value, own) "
edouard@1518
   164
    "values (?1, "
edouard@1518
   165
    "(select coalesce((select value + 1 from sequences "
edouard@1518
   166
    "where name = ?1), 1 )), ?2) ; ";
edouard@1518
   167
edouard@1518
   168
static const char *sql_sequence_value2 = 
edouard@1518
   169
    "select value, own from sequences where name = ?1 ;";
edouard@1518
   170
edouard@1518
   171
static const char *sql_sequence_value3 = 
edouard@1518
   172
    "update sequences set value = ?2, own = ?3 where name = ?1 ;";
edouard@1518
   173
        
edouard@1518
   174
// Revocation tracking
edouard@1518
   175
static const char *sql_set_revoked =
edouard@1518
   176
    "insert or replace into revoked_keys ("
edouard@1518
   177
    "    revoked_fpr, replacement_fpr, revocation_date) "
edouard@1518
   178
    "values (upper(replace(?1,' ','')),"
edouard@1518
   179
    "        upper(replace(?2,' ','')),"
edouard@1518
   180
    "        ?3) ;";
edouard@1518
   181
        
edouard@1518
   182
static const char *sql_get_revoked = 
edouard@1518
   183
    "select revoked_fpr, revocation_date from revoked_keys"
edouard@1518
   184
    "    where replacement_fpr = upper(replace(?1,' ','')) ;";
edouard@1518
   185
vb@928
   186
static int user_version(void *_version, int count, char **text, char **name)
vb@928
   187
{
vb@928
   188
    assert(_version);
vb@928
   189
    assert(count == 1);
vb@928
   190
    assert(text && text[0]);
vb@928
   191
    if (!(_version && count == 1 && text && text[0]))
vb@928
   192
        return -1;
vb@928
   193
vb@928
   194
    int *version = (int *) _version;
vb@928
   195
    *version = atoi(text[0]);
vb@928
   196
    return 0;
vb@928
   197
}
vb@928
   198
vb@0
   199
DYNAMIC_API PEP_STATUS init(PEP_SESSION *session)
vb@0
   200
{
vb@65
   201
    PEP_STATUS status = PEP_STATUS_OK;
roker@529
   202
    int int_result;
Edouard@693
   203
    
vb@62
   204
    bool in_first = false;
vb@8
   205
vb@62
   206
    assert(sqlite3_threadsafe());
vb@62
   207
    if (!sqlite3_threadsafe())
vb@62
   208
        return PEP_INIT_SQLITE3_WITHOUT_MUTEX;
vb@62
   209
vb@62
   210
    // a little race condition - but still a race condition
vb@113
   211
    // mitigated by calling caveat (see documentation)
vb@62
   212
vb@62
   213
    ++init_count;
vb@67
   214
    if (init_count == 0)
vb@62
   215
        in_first = true;
vb@0
   216
roker@529
   217
    assert(session);
vb@191
   218
    if (session == NULL)
vb@191
   219
        return PEP_ILLEGAL_VALUE;
vb@191
   220
roker@529
   221
    *session = NULL;
vb@0
   222
vb@107
   223
    pEpSession *_session = calloc(1, sizeof(pEpSession));
roker@529
   224
    assert(_session);
roker@529
   225
    if (_session == NULL)
roker@529
   226
        goto enomem;
vb@62
   227
roker@529
   228
    _session->version = PEP_ENGINE_VERSION;
vb@0
   229
vb@0
   230
    assert(LOCAL_DB);
vb@0
   231
    if (LOCAL_DB == NULL) {
vb@65
   232
        status = PEP_INIT_CANNOT_OPEN_DB;
vb@65
   233
        goto pep_error;
vb@0
   234
    }
vb@0
   235
roker@529
   236
    int_result = sqlite3_open_v2(
roker@529
   237
            LOCAL_DB,
roker@529
   238
            &_session->db,
roker@529
   239
            SQLITE_OPEN_READWRITE
roker@529
   240
                | SQLITE_OPEN_CREATE
roker@529
   241
                | SQLITE_OPEN_FULLMUTEX
roker@529
   242
                | SQLITE_OPEN_PRIVATECACHE,
roker@529
   243
            NULL 
roker@529
   244
        );
vb@0
   245
roker@529
   246
    if (int_result != SQLITE_OK) {
roker@529
   247
        status = PEP_INIT_CANNOT_OPEN_DB;
vb@65
   248
        goto pep_error;
roker@529
   249
    }
vb@0
   250
roker@529
   251
    sqlite3_busy_timeout(_session->db, BUSY_WAIT_TIME);
vb@0
   252
vb@0
   253
    assert(SYSTEM_DB);
vb@0
   254
    if (SYSTEM_DB == NULL) {
roker@529
   255
        status = PEP_INIT_CANNOT_OPEN_SYSTEM_DB;
vb@65
   256
        goto pep_error;
vb@0
   257
    }
vb@0
   258
roker@529
   259
    int_result = sqlite3_open_v2(
roker@529
   260
            SYSTEM_DB, &_session->system_db,
roker@529
   261
            SQLITE_OPEN_READONLY
roker@529
   262
                | SQLITE_OPEN_FULLMUTEX
roker@529
   263
                | SQLITE_OPEN_SHAREDCACHE,
roker@529
   264
            NULL
roker@529
   265
        );
vb@0
   266
roker@529
   267
    if (int_result != SQLITE_OK) {
roker@529
   268
        status = PEP_INIT_CANNOT_OPEN_SYSTEM_DB;
vb@65
   269
        goto pep_error;
roker@529
   270
    }
vb@0
   271
roker@529
   272
    sqlite3_busy_timeout(_session->system_db, 1000);
vb@0
   273
vb@928
   274
// increment this when patching DDL
vb@1453
   275
#define _DDL_USER_VERSION "5"
vb@928
   276
vb@62
   277
    if (in_first) {
vb@1091
   278
vb@62
   279
        int_result = sqlite3_exec(
vb@62
   280
            _session->db,
vb@1008
   281
                "create table if not exists version_info (\n"
vb@456
   282
                "   id integer primary key,\n"
vb@1085
   283
                "   timestamp integer default (datetime('now')),\n"
vb@456
   284
                "   version text,\n"
vb@456
   285
                "   comment text\n"
vb@928
   286
                ");\n",
vb@928
   287
                NULL,
vb@928
   288
                NULL,
vb@928
   289
                NULL
vb@928
   290
        );
vb@928
   291
        int_result = sqlite3_exec(
vb@928
   292
            _session->db,
vb@948
   293
                "PRAGMA application_id = 0x23423423;\n"
vb@456
   294
                "create table if not exists log (\n"
vb@1085
   295
                "   timestamp integer default (datetime('now')),\n"
vb@456
   296
                "   title text not null,\n"
vb@456
   297
                "   entity text not null,\n"
vb@456
   298
                "   description text,\n"
vb@456
   299
                "   comment text\n"
vb@456
   300
                ");\n"
vb@456
   301
                "create index if not exists log_timestamp on log (\n"
vb@456
   302
                "   timestamp\n"
vb@456
   303
                ");\n"
vb@456
   304
                "create table if not exists pgp_keypair (\n"
vb@456
   305
                "   fpr text primary key,\n"
vb@456
   306
                "   created integer,\n"
vb@456
   307
                "   expires integer,\n"
vb@944
   308
                "   comment text,\n"
vb@1085
   309
                "   flags integer default 0\n"
vb@456
   310
                ");\n"
vb@456
   311
                "create index if not exists pgp_keypair_expires on pgp_keypair (\n"
vb@456
   312
                "   expires\n"
vb@456
   313
                ");\n"
vb@456
   314
                "create table if not exists person (\n"
vb@456
   315
                "   id text primary key,\n"
vb@456
   316
                "   username text not null,\n"
vb@456
   317
                "   main_key_id text\n"
vb@456
   318
                "       references pgp_keypair (fpr)\n"
vb@456
   319
                "       on delete set null,\n"
vb@456
   320
                "   lang text,\n"
vb@951
   321
                "   comment text,\n"
vb@951
   322
                "   device_group text\n"
vb@456
   323
                ");\n"
vb@456
   324
                "create table if not exists identity (\n"
Edouard@559
   325
                "   address text,\n"
vb@456
   326
                "   user_id text\n"
vb@456
   327
                "       references person (id)\n"
vb@456
   328
                "       on delete cascade,\n"
vb@456
   329
                "   main_key_id text\n"
vb@456
   330
                "       references pgp_keypair (fpr)\n"
vb@456
   331
                "       on delete set null,\n"
Edouard@559
   332
                "   comment text,\n"
vb@1085
   333
                "   flags integer default 0,"
Edouard@559
   334
                "   primary key (address, user_id)\n"
vb@456
   335
                ");\n"
vb@456
   336
                "create table if not exists trust (\n"
vb@456
   337
                "   user_id text not null\n"
vb@456
   338
                "       references person (id)\n"
vb@456
   339
                "       on delete cascade,\n"
vb@456
   340
                "   pgp_keypair_fpr text not null\n"
vb@456
   341
                "       references pgp_keypair (fpr)\n"
vb@456
   342
                "       on delete cascade,\n"
vb@456
   343
                "   comm_type integer not null,\n"
Edouard@684
   344
                "   comment text,\n"
Edouard@684
   345
                "   primary key (user_id, pgp_keypair_fpr)\n"
vb@456
   346
                ");\n"
fdik@494
   347
                // blacklist
vb@456
   348
                "create table if not exists blacklist_keys (\n"
vb@456
   349
                "   fpr text primary key\n"
vb@456
   350
                ");\n"
vb@632
   351
                // sequences
vb@632
   352
                "create table if not exists sequences(\n"
vb@632
   353
                "   name text primary key,\n"
vb@1085
   354
                "   value integer default 0,\n"
vb@1085
   355
                "   own integer default 0\n"
vb@632
   356
                ");\n"
Edouard@693
   357
                "create table if not exists revoked_keys (\n"
Edouard@693
   358
                "   revoked_fpr text primary key,\n"
Edouard@693
   359
                "   replacement_fpr text not null\n"
Edouard@693
   360
                "       references pgp_keypair (fpr)\n"
Edouard@693
   361
                "       on delete cascade,\n"
Edouard@693
   362
                "   revocation_date integer\n"
Edouard@693
   363
                ");\n"
edouard@1394
   364
                "create table if not exists own_keys (\n"
edouard@1394
   365
                "   address text,\n"
edouard@1394
   366
                "   user_id text,\n"
edouard@1395
   367
                "   fpr text not null\n"
edouard@1394
   368
                "       references pgp_keypair (fpr)\n"
edouard@1394
   369
                "       on delete cascade,\n"
edouard@1394
   370
                "   foreign key (address, user_id)\n"
edouard@1394
   371
                "       references identity\n"
edouard@1394
   372
                "       on delete cascade,\n"
edouard@1394
   373
                "   check (user_id = '" PEP_OWN_USERID "')\n"
edouard@1401
   374
                "   primary key (address, fpr)\n"
edouard@1394
   375
                ");\n" 
vb@456
   376
                ,
vb@62
   377
            NULL,
vb@62
   378
            NULL,
vb@62
   379
            NULL
vb@62
   380
        );
vb@62
   381
        assert(int_result == SQLITE_OK);
vb@0
   382
vb@928
   383
        int version;
vb@62
   384
        int_result = sqlite3_exec(
vb@62
   385
            _session->db,
vb@928
   386
            "pragma user_version;",
vb@928
   387
            user_version,
vb@928
   388
            &version,
vb@62
   389
            NULL
vb@62
   390
        );
vb@62
   391
        assert(int_result == SQLITE_OK);
vb@0
   392
vb@928
   393
        if (version < 1) {
vb@928
   394
            int_result = sqlite3_exec(
vb@928
   395
                _session->db,
vb@928
   396
                "alter table identity\n"
vb@1085
   397
                "   add column flags integer default 0;\n",
vb@928
   398
                NULL,
vb@928
   399
                NULL,
vb@928
   400
                NULL
vb@928
   401
            );
vb@934
   402
        }
vb@934
   403
vb@944
   404
        if (version < 2) {
vb@944
   405
            int_result = sqlite3_exec(
vb@944
   406
                _session->db,
vb@944
   407
                "alter table pgp_keypair\n"
vb@1085
   408
                "   add column flags integer default 0;\n"
vb@951
   409
                "alter table person\n"
vb@951
   410
                "   add column device_group text;\n",
krista@1032
   411
                NULL,
krista@1032
   412
                NULL,
krista@1032
   413
                NULL
krista@1032
   414
            );
krista@1032
   415
        }
krista@1032
   416
vb@1085
   417
        if (version < 3) {
vb@1085
   418
            int_result = sqlite3_exec(
vb@1085
   419
                _session->db,
vb@1085
   420
                "alter table sequences\n"
vb@1085
   421
                "   add column own integer default 0;\n",
vb@1085
   422
                NULL,
vb@1085
   423
                NULL,
vb@1085
   424
                NULL
vb@1085
   425
            );
vb@928
   426
        }
vb@928
   427
vb@1453
   428
        if (version < 5) {
vb@1453
   429
            int_result = sqlite3_exec(
vb@1453
   430
                _session->db,
vb@1453
   431
                "delete from pgp_keypair where fpr = '';",
vb@1453
   432
                NULL,
vb@1453
   433
                NULL,
vb@1453
   434
                NULL
vb@1453
   435
            );
vb@1453
   436
            int_result = sqlite3_exec(
vb@1453
   437
                _session->db,
vb@1453
   438
                "delete from trust where pgp_keypair_fpr = '';",
vb@1453
   439
                NULL,
vb@1453
   440
                NULL,
vb@1453
   441
                NULL
vb@1453
   442
            );
vb@1453
   443
        }
vb@1453
   444
vb@928
   445
        if (version < atoi(_DDL_USER_VERSION)) {
vb@928
   446
            int_result = sqlite3_exec(
vb@928
   447
                _session->db,
vb@928
   448
                "pragma user_version = "_DDL_USER_VERSION";\n"
vb@928
   449
                "insert or replace into version_info (id, version)"
vb@928
   450
                    "values (1, '" PEP_ENGINE_VERSION "');",
vb@928
   451
                NULL,
vb@928
   452
                NULL,
vb@928
   453
                NULL
vb@928
   454
            );
vb@928
   455
            assert(int_result == SQLITE_OK);
vb@928
   456
        }
vb@928
   457
vb@62
   458
    }
vb@62
   459
vb@951
   460
    int_result = sqlite3_prepare_v2(_session->db, sql_log,
vb@951
   461
            (int)strlen(sql_log), &_session->log, NULL);
roker@529
   462
    assert(int_result == SQLITE_OK);
vb@0
   463
vb@233
   464
    int_result = sqlite3_prepare_v2(_session->system_db, sql_trustword,
Edouard@417
   465
            (int)strlen(sql_trustword), &_session->trustword, NULL);
roker@529
   466
    assert(int_result == SQLITE_OK);
vb@0
   467
vb@0
   468
    int_result = sqlite3_prepare_v2(_session->db, sql_get_identity,
Edouard@417
   469
            (int)strlen(sql_get_identity), &_session->get_identity, NULL);
roker@529
   470
    assert(int_result == SQLITE_OK);
vb@0
   471
vb@0
   472
    int_result = sqlite3_prepare_v2(_session->db, sql_set_person,
Edouard@417
   473
            (int)strlen(sql_set_person), &_session->set_person, NULL);
vb@0
   474
    assert(int_result == SQLITE_OK);
vb@62
   475
edouard@1234
   476
    int_result = sqlite3_prepare_v2(_session->db, sql_set_device_group,
edouard@1234
   477
            (int)strlen(sql_set_device_group), &_session->set_device_group, NULL);
edouard@1234
   478
    assert(int_result == SQLITE_OK);
edouard@1234
   479
edouard@1235
   480
    int_result = sqlite3_prepare_v2(_session->db, sql_get_device_group,
edouard@1235
   481
            (int)strlen(sql_get_device_group), &_session->get_device_group, NULL);
edouard@1235
   482
    assert(int_result == SQLITE_OK);
edouard@1235
   483
vb@0
   484
    int_result = sqlite3_prepare_v2(_session->db, sql_set_pgp_keypair,
vb@951
   485
            (int)strlen(sql_set_pgp_keypair), &_session->set_pgp_keypair,
vb@951
   486
            NULL);
roker@529
   487
    assert(int_result == SQLITE_OK);
vb@62
   488
vb@0
   489
    int_result = sqlite3_prepare_v2(_session->db, sql_set_identity,
Edouard@417
   490
            (int)strlen(sql_set_identity), &_session->set_identity, NULL);
roker@529
   491
    assert(int_result == SQLITE_OK);
vb@62
   492
vb@932
   493
    int_result = sqlite3_prepare_v2(_session->db, sql_set_identity_flags,
vb@951
   494
            (int)strlen(sql_set_identity_flags), &_session->set_identity_flags,
vb@951
   495
            NULL);
vb@932
   496
    assert(int_result == SQLITE_OK);
vb@932
   497
edouard@1394
   498
    int_result = sqlite3_prepare_v2(_session->db, sql_unset_identity_flags,
edouard@1394
   499
            (int)strlen(sql_unset_identity_flags), &_session->unset_identity_flags,
edouard@1394
   500
            NULL);
edouard@1394
   501
    assert(int_result == SQLITE_OK);
edouard@1394
   502
vb@0
   503
    int_result = sqlite3_prepare_v2(_session->db, sql_set_trust,
Edouard@417
   504
            (int)strlen(sql_set_trust), &_session->set_trust, NULL);
roker@529
   505
    assert(int_result == SQLITE_OK);
vb@62
   506
vb@8
   507
    int_result = sqlite3_prepare_v2(_session->db, sql_get_trust,
Edouard@417
   508
            (int)strlen(sql_get_trust), &_session->get_trust, NULL);
vb@8
   509
    assert(int_result == SQLITE_OK);
vb@0
   510
vb@251
   511
    int_result = sqlite3_prepare_v2(_session->db, sql_least_trust,
Edouard@417
   512
            (int)strlen(sql_least_trust), &_session->least_trust, NULL);
vb@251
   513
    assert(int_result == SQLITE_OK);
vb@251
   514
vb@357
   515
    int_result = sqlite3_prepare_v2(_session->db, sql_mark_as_compromized,
vb@951
   516
            (int)strlen(sql_mark_as_compromized), &_session->mark_compromized,
vb@951
   517
            NULL);
vb@357
   518
    assert(int_result == SQLITE_OK);
vb@357
   519
vb@453
   520
    int_result = sqlite3_prepare_v2(_session->db, sql_crashdump,
vb@453
   521
            (int)strlen(sql_crashdump), &_session->crashdump, NULL);
vb@453
   522
    assert(int_result == SQLITE_OK);
vb@453
   523
vb@458
   524
    int_result = sqlite3_prepare_v2(_session->system_db, sql_languagelist,
vb@458
   525
            (int)strlen(sql_languagelist), &_session->languagelist, NULL);
roker@529
   526
    assert(int_result == SQLITE_OK);
vb@458
   527
vb@458
   528
    int_result = sqlite3_prepare_v2(_session->system_db, sql_i18n_token,
vb@458
   529
            (int)strlen(sql_i18n_token), &_session->i18n_token, NULL);
roker@529
   530
    assert(int_result == SQLITE_OK);
vb@458
   531
fdik@494
   532
    // blacklist
fdik@494
   533
fdik@494
   534
    int_result = sqlite3_prepare_v2(_session->db, sql_blacklist_add,
fdik@494
   535
            (int)strlen(sql_blacklist_add), &_session->blacklist_add, NULL);
fdik@494
   536
    assert(int_result == SQLITE_OK);
fdik@494
   537
fdik@494
   538
    int_result = sqlite3_prepare_v2(_session->db, sql_blacklist_delete,
vb@951
   539
            (int)strlen(sql_blacklist_delete), &_session->blacklist_delete,
vb@951
   540
            NULL);
fdik@494
   541
    assert(int_result == SQLITE_OK);
fdik@494
   542
fdik@494
   543
    int_result = sqlite3_prepare_v2(_session->db, sql_blacklist_is_listed,
vb@951
   544
            (int)strlen(sql_blacklist_is_listed),
vb@951
   545
            &_session->blacklist_is_listed, NULL);
fdik@494
   546
    assert(int_result == SQLITE_OK);
fdik@494
   547
fdik@494
   548
    int_result = sqlite3_prepare_v2(_session->db, sql_blacklist_retrieve,
vb@951
   549
            (int)strlen(sql_blacklist_retrieve), &_session->blacklist_retrieve,
vb@951
   550
            NULL);
vb@482
   551
    assert(int_result == SQLITE_OK);
krista@1275
   552
    
Edouard@584
   553
    // Own keys
Edouard@584
   554
    
Edouard@584
   555
    int_result = sqlite3_prepare_v2(_session->db, sql_own_key_is_listed,
vb@951
   556
            (int)strlen(sql_own_key_is_listed), &_session->own_key_is_listed,
vb@951
   557
            NULL);
Edouard@584
   558
    assert(int_result == SQLITE_OK);
Edouard@584
   559
    
vb@955
   560
    int_result = sqlite3_prepare_v2(_session->db, sql_own_identities_retrieve,
vb@955
   561
            (int)strlen(sql_own_identities_retrieve),
vb@955
   562
            &_session->own_identities_retrieve, NULL);
Edouard@584
   563
    assert(int_result == SQLITE_OK);
vb@633
   564
 
edouard@1394
   565
    int_result = sqlite3_prepare_v2(_session->db, sql_own_keys_retrieve,
edouard@1394
   566
            (int)strlen(sql_own_keys_retrieve),
edouard@1394
   567
            &_session->own_keys_retrieve, NULL);
edouard@1394
   568
    assert(int_result == SQLITE_OK);
edouard@1394
   569
 
edouard@1394
   570
    int_result = sqlite3_prepare_v2(_session->db, sql_set_own_key,
edouard@1394
   571
            (int)strlen(sql_set_own_key),
edouard@1394
   572
            &_session->set_own_key, NULL);
edouard@1370
   573
    assert(int_result == SQLITE_OK);
edouard@1370
   574
 
vb@633
   575
    // Sequence
vb@633
   576
vb@633
   577
    int_result = sqlite3_prepare_v2(_session->db, sql_sequence_value1,
vb@951
   578
            (int)strlen(sql_sequence_value1), &_session->sequence_value1,
vb@951
   579
            NULL);
vb@633
   580
    assert(int_result == SQLITE_OK);
vb@633
   581
vb@633
   582
    int_result = sqlite3_prepare_v2(_session->db, sql_sequence_value2,
vb@951
   583
            (int)strlen(sql_sequence_value2), &_session->sequence_value2,
vb@951
   584
            NULL);
krista@1032
   585
    assert(int_result == SQLITE_OK);
krista@1032
   586
vb@1085
   587
    int_result = sqlite3_prepare_v2(_session->db, sql_sequence_value3,
vb@1085
   588
            (int)strlen(sql_sequence_value3), &_session->sequence_value3,
vb@1085
   589
            NULL);
vb@633
   590
    assert(int_result == SQLITE_OK);
vb@633
   591
Edouard@693
   592
    // Revocation tracking
Edouard@693
   593
    
Edouard@693
   594
    int_result = sqlite3_prepare_v2(_session->db, sql_set_revoked,
vb@951
   595
            (int)strlen(sql_set_revoked), &_session->set_revoked, NULL);
Edouard@693
   596
    assert(int_result == SQLITE_OK);
Edouard@693
   597
    
Edouard@693
   598
    int_result = sqlite3_prepare_v2(_session->db, sql_get_revoked,
vb@951
   599
            (int)strlen(sql_get_revoked), &_session->get_revoked, NULL);
Edouard@693
   600
    assert(int_result == SQLITE_OK);
Edouard@693
   601
    
vb@65
   602
    status = init_cryptotech(_session, in_first);
vb@65
   603
    if (status != PEP_STATUS_OK)
vb@65
   604
        goto pep_error;
vb@0
   605
vb@65
   606
    status = init_transport_system(_session, in_first);
vb@65
   607
    if (status != PEP_STATUS_OK)
vb@65
   608
        goto pep_error;
vb@62
   609
vb@65
   610
    status = log_event(_session, "init", "pEp " PEP_ENGINE_VERSION, NULL, NULL);
vb@65
   611
    if (status != PEP_STATUS_OK)
vb@65
   612
        goto pep_error;
vb@65
   613
vb@464
   614
    // runtime config
vb@464
   615
Edouard@720
   616
#ifdef ANDROID
Edouard@720
   617
    _session->use_only_own_private_keys = true;
Edouard@720
   618
#elif TARGET_OS_IPHONE
Edouard@720
   619
    _session->use_only_own_private_keys = true;
Edouard@720
   620
#else
Edouard@720
   621
    _session->use_only_own_private_keys = false;
Edouard@720
   622
#endif
vb@464
   623
roker@529
   624
    *session = _session;
roker@529
   625
    return PEP_STATUS_OK;
vb@65
   626
vb@65
   627
enomem:
vb@65
   628
    status = PEP_OUT_OF_MEMORY;
vb@65
   629
vb@65
   630
pep_error:
vb@65
   631
    release(_session);
vb@65
   632
    return status;
vb@0
   633
}
vb@0
   634
vb@0
   635
DYNAMIC_API void release(PEP_SESSION session)
vb@0
   636
{
vb@62
   637
    bool out_last = false;
vb@62
   638
vb@62
   639
    assert(init_count >= 0);
roker@529
   640
    assert(session);
vb@0
   641
Edouard@385
   642
    if (!((init_count >= 0) && session))
vb@191
   643
        return;
vb@191
   644
vb@62
   645
    // a small race condition but still a race condition
vb@113
   646
    // mitigated by calling caveat (see documentation)
vb@62
   647
vb@62
   648
    if (init_count == 0)
vb@62
   649
        out_last = true;
vb@62
   650
    --init_count;
vb@62
   651
roker@529
   652
    if (session) {
vb@986
   653
        if (session->sync_state != DeviceState_state_NONE)
vb@986
   654
            unregister_sync_callbacks(session);
vb@986
   655
roker@529
   656
        if (session->db) {
vb@517
   657
            if (session->log)
vb@517
   658
                sqlite3_finalize(session->log);
vb@233
   659
            if (session->trustword)
vb@233
   660
                sqlite3_finalize(session->trustword);
vb@65
   661
            if (session->get_identity)
vb@65
   662
                sqlite3_finalize(session->get_identity);
vb@65
   663
            if (session->set_person)
vb@65
   664
                sqlite3_finalize(session->set_person);
edouard@1234
   665
            if (session->set_device_group)
edouard@1234
   666
                sqlite3_finalize(session->set_device_group);
edouard@1235
   667
            if (session->get_device_group)
edouard@1235
   668
                sqlite3_finalize(session->get_device_group);
vb@65
   669
            if (session->set_pgp_keypair)
vb@65
   670
                sqlite3_finalize(session->set_pgp_keypair);
vb@517
   671
            if (session->set_identity)
vb@517
   672
                sqlite3_finalize(session->set_identity);
vb@932
   673
            if (session->set_identity_flags)
vb@932
   674
                sqlite3_finalize(session->set_identity_flags);
edouard@1394
   675
            if (session->unset_identity_flags)
edouard@1394
   676
                sqlite3_finalize(session->unset_identity_flags);
vb@65
   677
            if (session->set_trust)
vb@65
   678
                sqlite3_finalize(session->set_trust);
vb@65
   679
            if (session->get_trust)
vb@65
   680
                sqlite3_finalize(session->get_trust);
vb@251
   681
            if (session->least_trust)
vb@251
   682
                sqlite3_finalize(session->least_trust);
vb@517
   683
            if (session->mark_compromized)
vb@517
   684
                sqlite3_finalize(session->mark_compromized);
vb@517
   685
            if (session->crashdump)
vb@517
   686
                sqlite3_finalize(session->crashdump);
vb@517
   687
            if (session->languagelist)
vb@517
   688
                sqlite3_finalize(session->languagelist);
vb@517
   689
            if (session->i18n_token)
vb@517
   690
                sqlite3_finalize(session->i18n_token);
vb@517
   691
            if (session->blacklist_add)
vb@517
   692
                sqlite3_finalize(session->blacklist_add);
vb@517
   693
            if (session->blacklist_delete)
vb@517
   694
                sqlite3_finalize(session->blacklist_delete);
vb@517
   695
            if (session->blacklist_is_listed)
vb@517
   696
                sqlite3_finalize(session->blacklist_is_listed);
vb@517
   697
            if (session->blacklist_retrieve)
vb@517
   698
                sqlite3_finalize(session->blacklist_retrieve);
krista@957
   699
            if (session->own_key_is_listed)
krista@957
   700
                sqlite3_finalize(session->own_key_is_listed);
roker@1002
   701
            if (session->own_identities_retrieve)
roker@1002
   702
                sqlite3_finalize(session->own_identities_retrieve);
edouard@1394
   703
            if (session->own_keys_retrieve)
edouard@1394
   704
                sqlite3_finalize(session->own_keys_retrieve);
edouard@1394
   705
            if (session->set_own_key)
edouard@1394
   706
                sqlite3_finalize(session->set_own_key);
krista@957
   707
            if (session->sequence_value1)
krista@957
   708
                sqlite3_finalize(session->sequence_value1);
krista@957
   709
            if (session->sequence_value2)
krista@960
   710
                sqlite3_finalize(session->sequence_value2);
vb@1085
   711
            if (session->sequence_value3)
vb@1085
   712
                sqlite3_finalize(session->sequence_value3);
krista@957
   713
            if (session->set_revoked)
krista@957
   714
                sqlite3_finalize(session->set_revoked);
krista@957
   715
            if (session->get_revoked)
krista@957
   716
                sqlite3_finalize(session->get_revoked);
vb@26
   717
vb@65
   718
            if (session->db)
vb@65
   719
                sqlite3_close_v2(session->db);
vb@65
   720
            if (session->system_db)
vb@65
   721
                sqlite3_close_v2(session->system_db);
roker@529
   722
        }
vb@65
   723
vb@65
   724
        release_transport_system(session, out_last);
vb@65
   725
        release_cryptotech(session, out_last);
vb@65
   726
vb@65
   727
        free(session);
vb@62
   728
    }
vb@0
   729
}
vb@0
   730
vb@467
   731
DYNAMIC_API void config_passive_mode(PEP_SESSION session, bool enable)
vb@464
   732
{
vb@464
   733
    assert(session);
vb@467
   734
    session->passive_mode = enable;
vb@464
   735
}
vb@464
   736
vb@467
   737
DYNAMIC_API void config_unencrypted_subject(PEP_SESSION session, bool enable)
vb@464
   738
{
vb@464
   739
    assert(session);
vb@467
   740
    session->unencrypted_subject = enable;
vb@464
   741
}
vb@464
   742
vb@951
   743
DYNAMIC_API void config_use_only_own_private_keys(PEP_SESSION session,
vb@951
   744
        bool enable)
Edouard@720
   745
{
Edouard@720
   746
    assert(session);
Edouard@720
   747
    session->use_only_own_private_keys = enable;
Edouard@720
   748
}
Edouard@720
   749
vb@1110
   750
DYNAMIC_API void config_keep_sync_msg(PEP_SESSION session, bool enable)
vb@1109
   751
{
vb@1109
   752
    assert(session);
vb@1110
   753
    session->keep_sync_msg = enable;
vb@1109
   754
}
vb@1109
   755
vb@0
   756
DYNAMIC_API PEP_STATUS log_event(
vb@450
   757
        PEP_SESSION session,
vb@451
   758
        const char *title,
vb@451
   759
        const char *entity,
vb@451
   760
        const char *description,
vb@451
   761
        const char *comment
vb@0
   762
    )
vb@0
   763
{
roker@529
   764
    PEP_STATUS status = PEP_STATUS_OK;
roker@529
   765
    int result;
vb@0
   766
roker@529
   767
    assert(session);
roker@529
   768
    assert(title);
roker@529
   769
    assert(entity);
vb@0
   770
vb@191
   771
    if (!(session && title && entity))
vb@191
   772
        return PEP_ILLEGAL_VALUE;
vb@191
   773
roker@529
   774
    sqlite3_reset(session->log);
roker@529
   775
    sqlite3_bind_text(session->log, 1, title, -1, SQLITE_STATIC);
roker@529
   776
    sqlite3_bind_text(session->log, 2, entity, -1, SQLITE_STATIC);
roker@529
   777
    if (description)
vb@46
   778
        sqlite3_bind_text(session->log, 3, description, -1, SQLITE_STATIC);
roker@529
   779
    else
roker@529
   780
        sqlite3_bind_null(session->log, 3);
roker@529
   781
    if (comment)
roker@529
   782
        sqlite3_bind_text(session->log, 4, comment, -1, SQLITE_STATIC);
roker@529
   783
    else
roker@529
   784
        sqlite3_bind_null(session->log, 4);
roker@529
   785
    do {
roker@529
   786
        result = sqlite3_step(session->log);
roker@529
   787
        assert(result == SQLITE_DONE || result == SQLITE_BUSY);
roker@529
   788
        if (result != SQLITE_DONE && result != SQLITE_BUSY)
roker@529
   789
            status = PEP_UNKNOWN_ERROR;
roker@529
   790
    } while (result == SQLITE_BUSY);
roker@529
   791
    sqlite3_reset(session->log);
vb@0
   792
roker@529
   793
    return status;
vb@0
   794
}
vb@0
   795
vb@233
   796
DYNAMIC_API PEP_STATUS trustword(
vb@0
   797
            PEP_SESSION session, uint16_t value, const char *lang,
vb@0
   798
            char **word, size_t *wsize
vb@0
   799
        )
vb@0
   800
{
roker@529
   801
    PEP_STATUS status = PEP_STATUS_OK;
vb@0
   802
roker@529
   803
    assert(session);
roker@529
   804
    assert(word);
roker@529
   805
    assert(wsize);
vb@0
   806
vb@191
   807
    if (!(session && word && wsize))
vb@191
   808
        return PEP_ILLEGAL_VALUE;
vb@191
   809
roker@529
   810
    *word = NULL;
roker@529
   811
    *wsize = 0;
vb@0
   812
roker@529
   813
    if (lang == NULL)
roker@529
   814
        lang = "en";
vb@0
   815
roker@529
   816
    assert((lang[0] >= 'A' && lang[0] <= 'Z')
vb@0
   817
            || (lang[0] >= 'a' && lang[0] <= 'z'));
roker@529
   818
    assert((lang[1] >= 'A' && lang[1] <= 'Z')
vb@0
   819
            || (lang[1] >= 'a' && lang[1] <= 'z'));
roker@529
   820
    assert(lang[2] == 0);
vb@0
   821
roker@529
   822
    sqlite3_reset(session->trustword);
vb@233
   823
    sqlite3_bind_text(session->trustword, 1, lang, -1, SQLITE_STATIC);
roker@529
   824
    sqlite3_bind_int(session->trustword, 2, value);
vb@0
   825
roker@877
   826
    const int result = sqlite3_step(session->trustword);
roker@529
   827
    if (result == SQLITE_ROW) {
vb@233
   828
        *word = strdup((const char *) sqlite3_column_text(session->trustword,
vb@0
   829
                    1));
roker@529
   830
        if (*word)
vb@233
   831
            *wsize = sqlite3_column_bytes(session->trustword, 1);
roker@529
   832
        else
Edouard@693
   833
            status = PEP_OUT_OF_MEMORY;
roker@529
   834
    } else
roker@529
   835
        status = PEP_TRUSTWORD_NOT_FOUND;
vb@0
   836
roker@529
   837
    sqlite3_reset(session->trustword);
roker@529
   838
    return status;
vb@0
   839
}
vb@0
   840
vb@233
   841
DYNAMIC_API PEP_STATUS trustwords(
vb@0
   842
        PEP_SESSION session, const char *fingerprint, const char *lang,
vb@0
   843
        char **words, size_t *wsize, int max_words
vb@0
   844
    )
vb@0
   845
{
roker@529
   846
    const char *source = fingerprint;
vb@0
   847
roker@529
   848
    assert(session);
roker@529
   849
    assert(fingerprint);
roker@529
   850
    assert(words);
roker@529
   851
    assert(wsize);
roker@529
   852
    assert(max_words >= 0);
vb@0
   853
vb@191
   854
    if (!(session && fingerprint && words && wsize && max_words >= 0))
vb@191
   855
        return PEP_ILLEGAL_VALUE;
vb@191
   856
roker@529
   857
    *words = NULL;
roker@529
   858
    *wsize = 0;
vb@0
   859
roker@1559
   860
    char *buffer = calloc(1, MAX_TRUSTWORDS_SPACE);
vb@0
   861
    assert(buffer);
vb@0
   862
    if (buffer == NULL)
vb@0
   863
        return PEP_OUT_OF_MEMORY;
roker@1559
   864
    char *dest = buffer;
vb@0
   865
roker@1559
   866
    const size_t fsize = strlen(fingerprint);
vb@0
   867
roker@529
   868
    if (!lang || !lang[0])
roker@529
   869
        lang = "en";
vb@0
   870
roker@529
   871
    assert((lang[0] >= 'A' && lang[0] <= 'Z')
vb@0
   872
            || (lang[0] >= 'a' && lang[0] <= 'z'));
roker@529
   873
    assert((lang[1] >= 'A' && lang[1] <= 'Z')
vb@0
   874
            || (lang[1] >= 'a' && lang[1] <= 'z'));
roker@529
   875
    assert(lang[2] == 0);
vb@0
   876
roker@529
   877
    int n_words = 0;
roker@529
   878
    while (source < fingerprint + fsize) {
vb@939
   879
        PEP_STATUS _status;
roker@529
   880
        uint16_t value;
roker@1559
   881
        char *word = NULL;
roker@1559
   882
        size_t _wsize = 0;
roker@529
   883
        int j;
vb@0
   884
vb@0
   885
        for (value=0, j=0; j < 4 && source < fingerprint + fsize; ) {
roker@529
   886
            if (*source >= 'a' && *source <= 'f')
roker@529
   887
                value += (*source - 'a' + 10) << (3 - j++) * 4;
roker@529
   888
            else if (*source >= 'A' && *source <= 'F')
roker@529
   889
                value += (*source - 'A' + 10) << (3 - j++) * 4;
roker@529
   890
            else if (*source >= '0' && *source <= '9')
roker@529
   891
                value += (*source - '0') << (3 - j++) * 4;
roker@529
   892
            
roker@529
   893
            source++;
roker@529
   894
        }
vb@0
   895
roker@529
   896
        _status = trustword(session, value, lang, &word, &_wsize);
vb@0
   897
        if (_status == PEP_OUT_OF_MEMORY) {
vb@0
   898
            free(buffer);
vb@0
   899
            return PEP_OUT_OF_MEMORY;
vb@0
   900
        }
roker@529
   901
        if (word == NULL) {
vb@0
   902
            free(buffer);
roker@529
   903
            return PEP_TRUSTWORD_NOT_FOUND;
vb@0
   904
        }
vb@0
   905
roker@529
   906
        if (dest + _wsize < buffer + MAX_TRUSTWORDS_SPACE - 1) {
roker@529
   907
            strncpy(dest, word, _wsize);
vb@0
   908
            free(word);
roker@529
   909
            dest += _wsize;
roker@529
   910
        }
roker@529
   911
        else {
vb@0
   912
            free(word);
roker@529
   913
            break; // buffer full
vb@0
   914
        }
vb@0
   915
roker@529
   916
        if (source < fingerprint + fsize
vb@251
   917
                && dest + _wsize < buffer + MAX_TRUSTWORDS_SPACE - 1)
roker@529
   918
            *dest++ = ' ';
vb@0
   919
roker@529
   920
        ++n_words;
roker@529
   921
        if (max_words && n_words >= max_words)
roker@529
   922
            break;
roker@529
   923
    }
vb@0
   924
roker@529
   925
    *words = buffer;
roker@529
   926
    *wsize = dest - buffer;
roker@529
   927
    return PEP_STATUS_OK;
vb@0
   928
}
vb@0
   929
vb@0
   930
pEp_identity *new_identity(
vb@0
   931
        const char *address, const char *fpr, const char *user_id,
vb@0
   932
        const char *username
vb@0
   933
    )
vb@0
   934
{
vb@0
   935
    pEp_identity *result = calloc(1, sizeof(pEp_identity));
vb@0
   936
    assert(result);
vb@0
   937
    if (result) {
vb@0
   938
        if (address) {
vb@0
   939
            result->address = strdup(address);
vb@0
   940
            assert(result->address);
vb@0
   941
            if (result->address == NULL) {
vb@0
   942
                free(result);
vb@0
   943
                return NULL;
vb@0
   944
            }
vb@0
   945
        }
vb@0
   946
        if (fpr) {
vb@0
   947
            result->fpr = strdup(fpr);
vb@0
   948
            assert(result->fpr);
vb@0
   949
            if (result->fpr == NULL) {
vb@0
   950
                free_identity(result);
vb@0
   951
                return NULL;
vb@0
   952
            }
vb@0
   953
        }
vb@0
   954
        if (user_id) {
vb@0
   955
            result->user_id = strdup(user_id);
vb@0
   956
            assert(result->user_id);
vb@0
   957
            if (result->user_id == NULL) {
vb@0
   958
                free_identity(result);
vb@0
   959
                return NULL;
vb@0
   960
            }
vb@0
   961
        }
vb@0
   962
        if (username) {
vb@0
   963
            result->username = strdup(username);
vb@0
   964
            assert(result->username);
vb@0
   965
            if (result->username == NULL) {
vb@0
   966
                free_identity(result);
vb@0
   967
                return NULL;
vb@0
   968
            }
vb@0
   969
        }
vb@0
   970
    }
vb@0
   971
    return result;
vb@0
   972
}
vb@0
   973
vb@37
   974
pEp_identity *identity_dup(const pEp_identity *src)
vb@37
   975
{
vb@37
   976
    assert(src);
vb@37
   977
vb@951
   978
    pEp_identity *dup = new_identity(src->address, src->fpr, src->user_id,
vb@951
   979
            src->username);
vb@37
   980
    assert(dup);
vb@37
   981
    if (dup == NULL)
vb@37
   982
        return NULL;
vb@37
   983
    
vb@37
   984
    dup->comm_type = src->comm_type;
vb@37
   985
    dup->lang[0] = src->lang[0];
vb@37
   986
    dup->lang[1] = src->lang[1];
vb@37
   987
    dup->lang[2] = 0;
vb@37
   988
    dup->me = src->me;
vb@930
   989
    dup->flags = src->flags;
vb@37
   990
vb@37
   991
    return dup;
vb@37
   992
}
vb@37
   993
vb@0
   994
void free_identity(pEp_identity *identity)
vb@0
   995
{
vb@0
   996
    if (identity) {
vb@0
   997
        free(identity->address);
vb@0
   998
        free(identity->fpr);
vb@0
   999
        free(identity->user_id);
vb@0
  1000
        free(identity->username);
vb@0
  1001
        free(identity);
vb@0
  1002
    }
vb@0
  1003
}
vb@0
  1004
vb@0
  1005
DYNAMIC_API PEP_STATUS get_identity(
Edouard@559
  1006
        PEP_SESSION session,
Edouard@559
  1007
        const char *address,
Edouard@559
  1008
        const char *user_id,
vb@0
  1009
        pEp_identity **identity
vb@0
  1010
    )
vb@0
  1011
{
roker@529
  1012
    PEP_STATUS status = PEP_STATUS_OK;
roker@529
  1013
    static pEp_identity *_identity;
vb@0
  1014
roker@529
  1015
    assert(session);
roker@529
  1016
    assert(address);
vb@8
  1017
    assert(address[0]);
vb@632
  1018
    assert(identity);
vb@0
  1019
vb@632
  1020
    if (!(session && address && address[0] && identity))
vb@191
  1021
        return PEP_ILLEGAL_VALUE;
vb@191
  1022
vb@632
  1023
    *identity = NULL;
vb@632
  1024
vb@46
  1025
    sqlite3_reset(session->get_identity);
vb@46
  1026
    sqlite3_bind_text(session->get_identity, 1, address, -1, SQLITE_STATIC);
Edouard@559
  1027
    sqlite3_bind_text(session->get_identity, 2, user_id, -1, SQLITE_STATIC);
vb@0
  1028
roker@876
  1029
    const int result = sqlite3_step(session->get_identity);
roker@529
  1030
    switch (result) {
roker@529
  1031
    case SQLITE_ROW:
vb@0
  1032
        _identity = new_identity(
vb@0
  1033
                address,
vb@46
  1034
                (const char *) sqlite3_column_text(session->get_identity, 0),
Edouard@559
  1035
                user_id,
Edouard@559
  1036
                (const char *) sqlite3_column_text(session->get_identity, 1)
vb@0
  1037
                );
vb@0
  1038
        assert(_identity);
vb@0
  1039
        if (_identity == NULL)
vb@0
  1040
            return PEP_OUT_OF_MEMORY;
vb@0
  1041
vb@951
  1042
        _identity->comm_type = (PEP_comm_type)
vb@951
  1043
            sqlite3_column_int(session->get_identity, 2);
vb@951
  1044
        const char* const _lang = (const char *)
vb@951
  1045
            sqlite3_column_text(session->get_identity, 3);
vb@0
  1046
        if (_lang && _lang[0]) {
roker@529
  1047
            assert(_lang[0] >= 'a' && _lang[0] <= 'z');
roker@529
  1048
            assert(_lang[1] >= 'a' && _lang[1] <= 'z');
roker@529
  1049
            assert(_lang[2] == 0);
roker@529
  1050
            _identity->lang[0] = _lang[0];
roker@529
  1051
            _identity->lang[1] = _lang[1];
vb@0
  1052
            _identity->lang[2] = 0;
roker@529
  1053
        }
vb@951
  1054
        _identity->flags = (unsigned int)
vb@951
  1055
            sqlite3_column_int(session->get_identity, 4);
roker@529
  1056
        *identity = _identity;
roker@529
  1057
        break;
roker@529
  1058
    default:
vb@0
  1059
        status = PEP_CANNOT_FIND_IDENTITY;
roker@529
  1060
        *identity = NULL;
roker@529
  1061
    }
vb@0
  1062
vb@46
  1063
    sqlite3_reset(session->get_identity);
roker@529
  1064
    return status;
vb@0
  1065
}
vb@0
  1066
vb@0
  1067
DYNAMIC_API PEP_STATUS set_identity(
vb@0
  1068
        PEP_SESSION session, const pEp_identity *identity
vb@0
  1069
    )
vb@0
  1070
{
roker@529
  1071
    int result;
vb@0
  1072
roker@529
  1073
    assert(session);
roker@529
  1074
    assert(identity);
roker@529
  1075
    assert(identity->address);
roker@529
  1076
    assert(identity->user_id);
roker@529
  1077
    assert(identity->username);
vb@0
  1078
krista@1223
  1079
    if (!(session && identity && identity->address &&
vb@191
  1080
                identity->user_id && identity->username))
vb@191
  1081
        return PEP_ILLEGAL_VALUE;
vb@191
  1082
vb@515
  1083
    bool listed;
krista@1449
  1084
krista@1449
  1085
    bool has_fpr = (identity->fpr && identity->fpr[0] != '\0');
krista@1222
  1086
    
krista@1449
  1087
    if (has_fpr) {    
krista@1275
  1088
        // blacklist check
krista@1223
  1089
        PEP_STATUS status = blacklist_is_listed(session, identity->fpr, &listed);
krista@1223
  1090
        assert(status == PEP_STATUS_OK);
krista@1223
  1091
        if (status != PEP_STATUS_OK)
krista@1223
  1092
            return status;
vb@515
  1093
krista@1223
  1094
        if (listed)
krista@1223
  1095
            return PEP_KEY_BLACKLISTED;
krista@1223
  1096
    }
vb@515
  1097
roker@529
  1098
    sqlite3_exec(session->db, "BEGIN ;", NULL, NULL, NULL);
vb@0
  1099
vb@1079
  1100
    if (identity->lang[0]) {
vb@1079
  1101
        assert(identity->lang[0] >= 'a' && identity->lang[0] <= 'z');
vb@1079
  1102
        assert(identity->lang[1] >= 'a' && identity->lang[1] <= 'z');
vb@1079
  1103
        assert(identity->lang[2] == 0);
vb@1079
  1104
    }
vb@1079
  1105
roker@529
  1106
    sqlite3_reset(session->set_person);
vb@46
  1107
    sqlite3_bind_text(session->set_person, 1, identity->user_id, -1,
vb@0
  1108
            SQLITE_STATIC);
vb@46
  1109
    sqlite3_bind_text(session->set_person, 2, identity->username, -1,
vb@0
  1110
            SQLITE_STATIC);
roker@529
  1111
    if (identity->lang[0])
vb@1081
  1112
        sqlite3_bind_text(session->set_person, 3, identity->lang, 2,
vb@0
  1113
                SQLITE_STATIC);
roker@529
  1114
    else
roker@529
  1115
        sqlite3_bind_null(session->set_person, 3);
Edouard@641
  1116
    sqlite3_bind_text(session->set_person, 4, identity->fpr, -1,
Edouard@641
  1117
                      SQLITE_STATIC);
roker@529
  1118
    result = sqlite3_step(session->set_person);
roker@529
  1119
    sqlite3_reset(session->set_person);
roker@529
  1120
    if (result != SQLITE_DONE) {
roker@529
  1121
        sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
roker@529
  1122
        return PEP_CANNOT_SET_PERSON;
roker@529
  1123
    }
vb@0
  1124
krista@1449
  1125
    if (has_fpr) {
krista@1449
  1126
        sqlite3_reset(session->set_pgp_keypair);
krista@1449
  1127
        sqlite3_bind_text(session->set_pgp_keypair, 1, identity->fpr, -1,
krista@1449
  1128
                SQLITE_STATIC);
krista@1449
  1129
        result = sqlite3_step(session->set_pgp_keypair);
krista@1449
  1130
        sqlite3_reset(session->set_pgp_keypair);
krista@1449
  1131
        if (result != SQLITE_DONE) {
krista@1449
  1132
            sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
krista@1449
  1133
            return PEP_CANNOT_SET_PGP_KEYPAIR;
krista@1449
  1134
        }
roker@529
  1135
    }
vb@0
  1136
edouard@1394
  1137
    sqlite3_reset(session->set_identity);
edouard@1394
  1138
    sqlite3_bind_text(session->set_identity, 1, identity->address, -1,
vb@0
  1139
            SQLITE_STATIC);
edouard@1394
  1140
    sqlite3_bind_text(session->set_identity, 2, identity->fpr, -1,
vb@0
  1141
            SQLITE_STATIC);
edouard@1394
  1142
    sqlite3_bind_text(session->set_identity, 3, identity->user_id, -1,
vb@0
  1143
            SQLITE_STATIC);
edouard@1394
  1144
    sqlite3_bind_int(session->set_identity, 4, identity->flags);
edouard@1394
  1145
    result = sqlite3_step(session->set_identity);
edouard@1394
  1146
    sqlite3_reset(session->set_identity);
roker@529
  1147
    if (result != SQLITE_DONE) {
roker@529
  1148
        sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
roker@529
  1149
        return PEP_CANNOT_SET_IDENTITY;
roker@529
  1150
    }
vb@0
  1151
krista@1449
  1152
    if (has_fpr) {
krista@1449
  1153
        if(strcmp(identity->user_id, PEP_OWN_USERID) == 0) {
krista@1449
  1154
            sqlite3_reset(session->set_own_key);
krista@1449
  1155
            sqlite3_bind_text(session->set_own_key, 1, identity->address, -1,
krista@1449
  1156
                SQLITE_STATIC);
krista@1449
  1157
            sqlite3_bind_text(session->set_own_key, 2, identity->fpr, -1,
krista@1449
  1158
                SQLITE_STATIC);
krista@1449
  1159
            result = sqlite3_step(session->set_own_key);
krista@1449
  1160
            sqlite3_reset(session->set_own_key);
krista@1449
  1161
            if (result != SQLITE_DONE) {
krista@1449
  1162
                sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
krista@1449
  1163
                return PEP_CANNOT_SET_PGP_KEYPAIR;
krista@1449
  1164
            }
krista@1449
  1165
        }
krista@1449
  1166
krista@1449
  1167
        sqlite3_reset(session->set_trust);
krista@1449
  1168
        sqlite3_bind_text(session->set_trust, 1, identity->user_id, -1,
krista@1449
  1169
                SQLITE_STATIC);
krista@1449
  1170
        sqlite3_bind_text(session->set_trust, 2, identity->fpr, -1,
krista@1449
  1171
                SQLITE_STATIC);
krista@1449
  1172
        sqlite3_bind_int(session->set_trust, 3, identity->comm_type);
krista@1449
  1173
        result = sqlite3_step(session->set_trust);
krista@1449
  1174
        sqlite3_reset(session->set_trust);
edouard@1394
  1175
        if (result != SQLITE_DONE) {
edouard@1394
  1176
            sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
krista@1449
  1177
            return PEP_CANNOT_SET_TRUST;
edouard@1394
  1178
        }
edouard@1394
  1179
    }
krista@1449
  1180
    
vb@46
  1181
    result = sqlite3_exec(session->db, "COMMIT ;", NULL, NULL, NULL);
roker@529
  1182
    if (result == SQLITE_OK)
roker@529
  1183
        return PEP_STATUS_OK;
roker@529
  1184
    else
roker@529
  1185
        return PEP_COMMIT_FAILED;
vb@0
  1186
}
vb@0
  1187
edouard@1234
  1188
DYNAMIC_API PEP_STATUS set_device_group(
edouard@1234
  1189
        PEP_SESSION session,
edouard@1234
  1190
        const char *group_name
edouard@1234
  1191
    )
edouard@1234
  1192
{
edouard@1234
  1193
    int result;
edouard@1234
  1194
edouard@1234
  1195
    assert(session);
edouard@1234
  1196
    assert(group_name);
edouard@1234
  1197
edouard@1234
  1198
    if (!(session && group_name))
edouard@1234
  1199
        return PEP_ILLEGAL_VALUE;
edouard@1234
  1200
edouard@1234
  1201
    sqlite3_reset(session->set_device_group);
edouard@1234
  1202
    sqlite3_bind_text(session->set_device_group, 1, group_name, -1,
edouard@1234
  1203
            SQLITE_STATIC);
edouard@1234
  1204
    result = sqlite3_step(session->set_device_group);
edouard@1234
  1205
    sqlite3_reset(session->set_device_group);
edouard@1234
  1206
    if (result != SQLITE_DONE)
edouard@1234
  1207
        return PEP_CANNOT_SET_PERSON;
edouard@1234
  1208
edouard@1234
  1209
    return PEP_STATUS_OK;
edouard@1234
  1210
}
edouard@1234
  1211
edouard@1235
  1212
DYNAMIC_API PEP_STATUS get_device_group(PEP_SESSION session, char **group_name)
edouard@1235
  1213
{
edouard@1235
  1214
    PEP_STATUS status = PEP_STATUS_OK;
edouard@1235
  1215
    int result;
edouard@1235
  1216
edouard@1235
  1217
    assert(session);
edouard@1235
  1218
    assert(group_name);
edouard@1235
  1219
edouard@1235
  1220
    if (!(session && group_name))
edouard@1235
  1221
        return PEP_ILLEGAL_VALUE;
edouard@1235
  1222
edouard@1235
  1223
    sqlite3_reset(session->get_device_group);
edouard@1235
  1224
edouard@1235
  1225
    result = sqlite3_step(session->get_device_group);
edouard@1235
  1226
    switch (result) {
edouard@1235
  1227
    case SQLITE_ROW: {
edouard@1235
  1228
        *group_name = strdup(
edouard@1235
  1229
            (const char *) sqlite3_column_text(session->get_device_group, 0));
edouard@1235
  1230
            if(*group_name == NULL)
edouard@1235
  1231
                status = PEP_OUT_OF_MEMORY;
edouard@1235
  1232
        break;
edouard@1235
  1233
    }
edouard@1235
  1234
 
edouard@1235
  1235
    default:
edouard@1235
  1236
        status = PEP_RECORD_NOT_FOUND;
edouard@1235
  1237
    }
edouard@1235
  1238
edouard@1235
  1239
    sqlite3_reset(session->get_device_group);
edouard@1235
  1240
    return status;
edouard@1235
  1241
}
edouard@1235
  1242
vb@932
  1243
DYNAMIC_API PEP_STATUS set_identity_flags(
vb@934
  1244
        PEP_SESSION session,
vb@934
  1245
        pEp_identity *identity,
vb@934
  1246
        unsigned int flags
vb@932
  1247
    )
vb@932
  1248
{
vb@932
  1249
    int result;
vb@932
  1250
vb@932
  1251
    assert(session);
vb@932
  1252
    assert(identity);
vb@932
  1253
    assert(identity->address);
vb@932
  1254
    assert(identity->user_id);
vb@932
  1255
vb@932
  1256
    if (!(session && identity && identity->address && identity->user_id))
vb@932
  1257
        return PEP_ILLEGAL_VALUE;
vb@932
  1258
vb@932
  1259
    sqlite3_reset(session->set_identity_flags);
vb@934
  1260
    sqlite3_bind_int(session->set_identity_flags, 1, flags);
vb@932
  1261
    sqlite3_bind_text(session->set_identity_flags, 2, identity->address, -1,
vb@932
  1262
            SQLITE_STATIC);
vb@932
  1263
    sqlite3_bind_text(session->set_identity_flags, 3, identity->user_id, -1,
vb@932
  1264
            SQLITE_STATIC);
vb@932
  1265
    result = sqlite3_step(session->set_identity_flags);
vb@932
  1266
    sqlite3_reset(session->set_identity_flags);
vb@932
  1267
    if (result != SQLITE_DONE)
vb@932
  1268
        return PEP_CANNOT_SET_IDENTITY;
vb@932
  1269
edouard@1406
  1270
    identity->flags |= flags;
vb@932
  1271
    return PEP_STATUS_OK;
vb@932
  1272
}
vb@932
  1273
edouard@1394
  1274
DYNAMIC_API PEP_STATUS unset_identity_flags(
edouard@1394
  1275
        PEP_SESSION session,
edouard@1394
  1276
        pEp_identity *identity,
edouard@1394
  1277
        unsigned int flags
edouard@1394
  1278
    )
edouard@1394
  1279
{
edouard@1394
  1280
    int result;
edouard@1394
  1281
edouard@1394
  1282
    assert(session);
edouard@1394
  1283
    assert(identity);
edouard@1394
  1284
    assert(identity->address);
edouard@1394
  1285
    assert(identity->user_id);
edouard@1394
  1286
edouard@1394
  1287
    if (!(session && identity && identity->address && identity->user_id))
edouard@1394
  1288
        return PEP_ILLEGAL_VALUE;
edouard@1394
  1289
edouard@1394
  1290
    sqlite3_reset(session->unset_identity_flags);
edouard@1394
  1291
    sqlite3_bind_int(session->unset_identity_flags, 1, flags);
edouard@1394
  1292
    sqlite3_bind_text(session->unset_identity_flags, 2, identity->address, -1,
edouard@1394
  1293
            SQLITE_STATIC);
edouard@1394
  1294
    sqlite3_bind_text(session->unset_identity_flags, 3, identity->user_id, -1,
edouard@1394
  1295
            SQLITE_STATIC);
edouard@1394
  1296
    result = sqlite3_step(session->unset_identity_flags);
edouard@1394
  1297
    sqlite3_reset(session->unset_identity_flags);
edouard@1394
  1298
    if (result != SQLITE_DONE)
edouard@1394
  1299
        return PEP_CANNOT_SET_IDENTITY;
edouard@1394
  1300
edouard@1406
  1301
    identity->flags &= ~flags;
edouard@1394
  1302
    return PEP_STATUS_OK;
edouard@1394
  1303
}
edouard@1394
  1304
vb@357
  1305
DYNAMIC_API PEP_STATUS mark_as_compromized(
vb@357
  1306
        PEP_SESSION session,
vb@357
  1307
        const char *fpr
vb@357
  1308
    )
vb@357
  1309
{
roker@529
  1310
    int result;
vb@357
  1311
roker@529
  1312
    assert(session);
vb@357
  1313
    assert(fpr && fpr[0]);
vb@357
  1314
vb@357
  1315
    if (!(session && fpr && fpr[0]))
vb@357
  1316
        return PEP_ILLEGAL_VALUE;
vb@357
  1317
roker@529
  1318
    sqlite3_reset(session->mark_compromized);
vb@357
  1319
    sqlite3_bind_text(session->mark_compromized, 1, fpr, -1,
vb@357
  1320
            SQLITE_STATIC);
vb@357
  1321
    result = sqlite3_step(session->mark_compromized);
roker@529
  1322
    sqlite3_reset(session->mark_compromized);
vb@357
  1323
vb@357
  1324
    if (result != SQLITE_DONE)
Edouard@584
  1325
        return PEP_CANNOT_SET_TRUST;
vb@357
  1326
vb@357
  1327
    return PEP_STATUS_OK;
vb@357
  1328
}
vb@357
  1329
vb@0
  1330
void pEp_free(void *p)
vb@0
  1331
{
vb@0
  1332
    free(p);
vb@0
  1333
}
vb@0
  1334
vb@8
  1335
DYNAMIC_API PEP_STATUS get_trust(PEP_SESSION session, pEp_identity *identity)
vb@8
  1336
{
vb@8
  1337
    PEP_STATUS status = PEP_STATUS_OK;
vb@8
  1338
    int result;
vb@8
  1339
vb@8
  1340
    assert(session);
vb@8
  1341
    assert(identity);
vb@8
  1342
    assert(identity->user_id);
vb@8
  1343
    assert(identity->user_id[0]);
vb@8
  1344
    assert(identity->fpr);
vb@8
  1345
    assert(identity->fpr[0]);
vb@8
  1346
vb@191
  1347
    if (!(session && identity && identity->user_id && identity->user_id[0] &&
vb@191
  1348
                identity->fpr && identity->fpr[0]))
vb@191
  1349
        return PEP_ILLEGAL_VALUE;
vb@191
  1350
vb@8
  1351
    identity->comm_type = PEP_ct_unknown;
vb@8
  1352
vb@46
  1353
    sqlite3_reset(session->get_trust);
vb@951
  1354
    sqlite3_bind_text(session->get_trust, 1, identity->user_id, -1,
vb@951
  1355
            SQLITE_STATIC);
vb@46
  1356
    sqlite3_bind_text(session->get_trust, 2, identity->fpr, -1, SQLITE_STATIC);
vb@8
  1357
vb@46
  1358
    result = sqlite3_step(session->get_trust);
vb@8
  1359
    switch (result) {
vb@8
  1360
    case SQLITE_ROW: {
vb@951
  1361
        int comm_type = (PEP_comm_type) sqlite3_column_int(session->get_trust,
vb@951
  1362
                0);
vb@8
  1363
        identity->comm_type = comm_type;
vb@8
  1364
        break;
vb@8
  1365
    }
vb@8
  1366
 
vb@8
  1367
    default:
vb@8
  1368
        status = PEP_CANNOT_FIND_IDENTITY;
vb@8
  1369
    }
vb@8
  1370
vb@46
  1371
    sqlite3_reset(session->get_trust);
vb@8
  1372
    return status;
vb@9
  1373
}
vb@9
  1374
vb@251
  1375
DYNAMIC_API PEP_STATUS least_trust(
vb@251
  1376
        PEP_SESSION session,
vb@251
  1377
        const char *fpr,
vb@251
  1378
        PEP_comm_type *comm_type
vb@251
  1379
    )
vb@251
  1380
{
vb@251
  1381
    PEP_STATUS status = PEP_STATUS_OK;
vb@251
  1382
    int result;
vb@251
  1383
vb@251
  1384
    assert(session);
vb@251
  1385
    assert(fpr);
vb@251
  1386
    assert(comm_type);
vb@251
  1387
vb@251
  1388
    if (!(session && fpr && comm_type))
vb@251
  1389
        return PEP_ILLEGAL_VALUE;
vb@251
  1390
vb@632
  1391
    *comm_type = PEP_ct_unknown;
vb@632
  1392
vb@251
  1393
    sqlite3_reset(session->least_trust);
vb@251
  1394
    sqlite3_bind_text(session->least_trust, 1, fpr, -1, SQLITE_STATIC);
vb@251
  1395
vb@251
  1396
    result = sqlite3_step(session->least_trust);
vb@251
  1397
    switch (result) {
vb@251
  1398
        case SQLITE_ROW: {
vb@259
  1399
            int _comm_type = sqlite3_column_int(session->least_trust, 0);
vb@259
  1400
            *comm_type = (PEP_comm_type) _comm_type;
vb@251
  1401
            break;
vb@251
  1402
        }
vb@251
  1403
        default:
vb@251
  1404
            status = PEP_CANNOT_FIND_IDENTITY;
vb@251
  1405
    }
vb@251
  1406
vb@251
  1407
    sqlite3_reset(session->least_trust);
vb@251
  1408
    return status;
vb@251
  1409
}
vb@251
  1410
vb@24
  1411
DYNAMIC_API PEP_STATUS decrypt_and_verify(
vb@24
  1412
    PEP_SESSION session, const char *ctext, size_t csize,
krista@1397
  1413
    const char *dsigtext, size_t dsigsize,
vb@24
  1414
    char **ptext, size_t *psize, stringlist_t **keylist
vb@24
  1415
    )
vb@24
  1416
{
vb@191
  1417
    assert(session);
vb@191
  1418
    assert(ctext);
vb@191
  1419
    assert(csize);
vb@191
  1420
    assert(ptext);
vb@191
  1421
    assert(psize);
vb@191
  1422
    assert(keylist);
vb@191
  1423
vb@939
  1424
    if (!(session && ctext && csize && ptext && psize && keylist))
vb@191
  1425
        return PEP_ILLEGAL_VALUE;
vb@191
  1426
vb@939
  1427
    return session->cryptotech[PEP_crypt_OpenPGP].decrypt_and_verify(
krista@1397
  1428
            session, ctext, csize, dsigtext, dsigsize, ptext, psize, keylist);
vb@24
  1429
}
vb@24
  1430
vb@24
  1431
DYNAMIC_API PEP_STATUS encrypt_and_sign(
vb@24
  1432
    PEP_SESSION session, const stringlist_t *keylist, const char *ptext,
vb@24
  1433
    size_t psize, char **ctext, size_t *csize
vb@24
  1434
    )
vb@24
  1435
{
vb@191
  1436
    assert(session);
vb@191
  1437
    assert(keylist);
vb@191
  1438
    assert(ptext);
vb@191
  1439
    assert(psize);
vb@191
  1440
    assert(ctext);
vb@191
  1441
    assert(csize);
vb@191
  1442
vb@191
  1443
    if (!(session && keylist && ptext && psize && ctext && csize))
vb@191
  1444
        return PEP_ILLEGAL_VALUE;
vb@191
  1445
vb@951
  1446
    return session->cryptotech[PEP_crypt_OpenPGP].encrypt_and_sign(session,
vb@951
  1447
            keylist, ptext, psize, ctext, csize);
vb@24
  1448
}
vb@24
  1449
vb@24
  1450
DYNAMIC_API PEP_STATUS verify_text(
vb@24
  1451
    PEP_SESSION session, const char *text, size_t size,
vb@24
  1452
    const char *signature, size_t sig_size, stringlist_t **keylist
vb@24
  1453
    )
vb@24
  1454
{
vb@191
  1455
    assert(session);
vb@191
  1456
    assert(text);
vb@191
  1457
    assert(size);
vb@191
  1458
    assert(signature);
vb@191
  1459
    assert(sig_size);
vb@191
  1460
    assert(keylist);
vb@191
  1461
vb@191
  1462
    if (!(session && text && size && signature && sig_size && keylist))
vb@191
  1463
        return PEP_ILLEGAL_VALUE;
vb@191
  1464
vb@951
  1465
    return session->cryptotech[PEP_crypt_OpenPGP].verify_text(session, text,
vb@951
  1466
            size, signature, sig_size, keylist);
vb@24
  1467
}
vb@24
  1468
vb@24
  1469
DYNAMIC_API PEP_STATUS delete_keypair(PEP_SESSION session, const char *fpr)
vb@24
  1470
{
vb@191
  1471
    assert(session);
vb@191
  1472
    assert(fpr);
vb@191
  1473
vb@191
  1474
    if (!(session && fpr))
vb@191
  1475
        return PEP_ILLEGAL_VALUE;
vb@191
  1476
vb@46
  1477
    return session->cryptotech[PEP_crypt_OpenPGP].delete_keypair(session, fpr);
vb@24
  1478
}
vb@24
  1479
vb@24
  1480
DYNAMIC_API PEP_STATUS export_key(
vb@46
  1481
        PEP_SESSION session, const char *fpr, char **key_data, size_t *size
vb@24
  1482
    )
vb@24
  1483
{
vb@191
  1484
    assert(session);
vb@191
  1485
    assert(fpr);
vb@191
  1486
    assert(key_data);
vb@191
  1487
    assert(size);
vb@191
  1488
vb@191
  1489
    if (!(session && fpr && key_data && size))
vb@191
  1490
        return PEP_ILLEGAL_VALUE;
vb@191
  1491
vb@951
  1492
    return session->cryptotech[PEP_crypt_OpenPGP].export_key(session, fpr,
vb@1103
  1493
            key_data, size, false);
vb@1103
  1494
}
vb@1103
  1495
vb@1133
  1496
DYNAMIC_API PEP_STATUS export_secrect_key(
vb@1103
  1497
        PEP_SESSION session, const char *fpr, char **key_data, size_t *size
vb@1103
  1498
    )
vb@1103
  1499
{
vb@1103
  1500
    assert(session);
vb@1103
  1501
    assert(fpr);
vb@1103
  1502
    assert(key_data);
vb@1103
  1503
    assert(size);
vb@1103
  1504
vb@1103
  1505
    if (!(session && fpr && key_data && size))
vb@1103
  1506
        return PEP_ILLEGAL_VALUE;
vb@1103
  1507
vb@1103
  1508
    // don't accept key IDs but full fingerprints only
vb@1103
  1509
    if (strlen(fpr) < 16)
vb@1103
  1510
        return PEP_ILLEGAL_VALUE;
vb@1103
  1511
vb@1103
  1512
    return session->cryptotech[PEP_crypt_OpenPGP].export_key(session, fpr,
vb@1103
  1513
            key_data, size, true);
vb@24
  1514
}
vb@24
  1515
vb@24
  1516
DYNAMIC_API PEP_STATUS find_keys(
vb@46
  1517
        PEP_SESSION session, const char *pattern, stringlist_t **keylist
vb@24
  1518
    )
vb@24
  1519
{
vb@191
  1520
    assert(session);
vb@191
  1521
    assert(pattern);
vb@191
  1522
    assert(keylist);
vb@191
  1523
vb@191
  1524
    if (!(session && pattern && keylist))
vb@191
  1525
        return PEP_ILLEGAL_VALUE;
vb@191
  1526
vb@951
  1527
    return session->cryptotech[PEP_crypt_OpenPGP].find_keys(session, pattern,
vb@951
  1528
            keylist);
vb@24
  1529
}
vb@24
  1530
krista@1005
  1531
vb@24
  1532
DYNAMIC_API PEP_STATUS generate_keypair(
vb@46
  1533
        PEP_SESSION session, pEp_identity *identity
vb@24
  1534
    )
vb@24
  1535
{
vb@191
  1536
    assert(session);
vb@191
  1537
    assert(identity);
vb@191
  1538
    assert(identity->address);
vb@298
  1539
    assert(identity->fpr == NULL || identity->fpr[0] == 0);
vb@191
  1540
    assert(identity->username);
vb@191
  1541
vb@298
  1542
    if (!(session && identity && identity->address &&
vb@951
  1543
            (identity->fpr == NULL || identity->fpr[0] == 0) &&
vb@951
  1544
            identity->username))
vb@191
  1545
        return PEP_ILLEGAL_VALUE;
vb@191
  1546
vb@944
  1547
    PEP_STATUS status =
vb@944
  1548
        session->cryptotech[PEP_crypt_OpenPGP].generate_keypair(session,
vb@944
  1549
                identity);
vb@944
  1550
    if (status != PEP_STATUS_OK)
vb@944
  1551
        return status;
vb@944
  1552
vb@944
  1553
    return status;
vb@24
  1554
}
vb@24
  1555
vb@9
  1556
DYNAMIC_API PEP_STATUS get_key_rating(
vb@46
  1557
        PEP_SESSION session,
vb@46
  1558
        const char *fpr,
vb@46
  1559
        PEP_comm_type *comm_type
vb@9
  1560
    )
vb@9
  1561
{
vb@191
  1562
    assert(session);
vb@191
  1563
    assert(fpr);
vb@191
  1564
    assert(comm_type);
vb@191
  1565
vb@191
  1566
    if (!(session && fpr && comm_type))
vb@191
  1567
        return PEP_ILLEGAL_VALUE;
vb@191
  1568
vb@951
  1569
    return session->cryptotech[PEP_crypt_OpenPGP].get_key_rating(session, fpr,
vb@951
  1570
            comm_type);
vb@24
  1571
}
vb@9
  1572
Edouard@728
  1573
DYNAMIC_API PEP_STATUS import_key(
Edouard@728
  1574
        PEP_SESSION session,
Edouard@728
  1575
        const char *key_data,
Edouard@728
  1576
        size_t size,
Edouard@728
  1577
        identity_list **private_keys
Edouard@728
  1578
    )
vb@24
  1579
{
vb@191
  1580
    assert(session);
vb@191
  1581
    assert(key_data);
vb@191
  1582
vb@191
  1583
    if (!(session && key_data))
vb@191
  1584
        return PEP_ILLEGAL_VALUE;
vb@191
  1585
vb@951
  1586
    return session->cryptotech[PEP_crypt_OpenPGP].import_key(session, key_data,
vb@951
  1587
            size, private_keys);
vb@24
  1588
}
vb@9
  1589
vb@24
  1590
DYNAMIC_API PEP_STATUS recv_key(PEP_SESSION session, const char *pattern)
vb@24
  1591
{
vb@191
  1592
    assert(session);
vb@191
  1593
    assert(pattern);
vb@191
  1594
vb@191
  1595
    if (!(session && pattern))
vb@191
  1596
        return PEP_ILLEGAL_VALUE;
vb@191
  1597
vb@46
  1598
    return session->cryptotech[PEP_crypt_OpenPGP].recv_key(session, pattern);
vb@24
  1599
}
vb@9
  1600
vb@24
  1601
DYNAMIC_API PEP_STATUS send_key(PEP_SESSION session, const char *pattern)
vb@24
  1602
{
vb@191
  1603
    assert(session);
vb@191
  1604
    assert(pattern);
vb@191
  1605
vb@191
  1606
    if (!(session && pattern))
vb@191
  1607
        return PEP_ILLEGAL_VALUE;
vb@191
  1608
vb@46
  1609
    return session->cryptotech[PEP_crypt_OpenPGP].send_key(session, pattern);
vb@14
  1610
}
vb@196
  1611
vb@201
  1612
DYNAMIC_API PEP_STATUS renew_key(
vb@201
  1613
        PEP_SESSION session,
vb@201
  1614
        const char *fpr,
vb@201
  1615
        const timestamp *ts
vb@201
  1616
    )
vb@196
  1617
{
vb@196
  1618
    assert(session);
vb@200
  1619
    assert(fpr);
vb@196
  1620
vb@200
  1621
    if (!(session && fpr))
vb@196
  1622
        return PEP_ILLEGAL_VALUE;
vb@196
  1623
vb@201
  1624
    return session->cryptotech[PEP_crypt_OpenPGP].renew_key(session, fpr, ts);
vb@196
  1625
}
vb@196
  1626
vb@211
  1627
DYNAMIC_API PEP_STATUS revoke_key(
vb@211
  1628
        PEP_SESSION session,
vb@211
  1629
        const char *fpr,
vb@211
  1630
        const char *reason
vb@211
  1631
    )
vb@197
  1632
{
vb@197
  1633
    assert(session);
vb@200
  1634
    assert(fpr);
vb@197
  1635
vb@200
  1636
    if (!(session && fpr))
vb@197
  1637
        return PEP_ILLEGAL_VALUE;
vb@197
  1638
vb@214
  1639
    return session->cryptotech[PEP_crypt_OpenPGP].revoke_key(session, fpr,
vb@214
  1640
            reason);
vb@197
  1641
}
vb@197
  1642
vb@214
  1643
DYNAMIC_API PEP_STATUS key_expired(
vb@214
  1644
        PEP_SESSION session,
vb@214
  1645
        const char *fpr,
Edouard@701
  1646
        const time_t when,
vb@214
  1647
        bool *expired
vb@214
  1648
    )
vb@214
  1649
{
vb@214
  1650
    assert(session);
vb@214
  1651
    assert(fpr);
vb@214
  1652
    assert(expired);
vb@214
  1653
vb@214
  1654
    if (!(session && fpr && expired))
vb@214
  1655
        return PEP_ILLEGAL_VALUE;
vb@214
  1656
vb@214
  1657
    return session->cryptotech[PEP_crypt_OpenPGP].key_expired(session, fpr,
Edouard@701
  1658
            when, expired);
vb@214
  1659
}
vb@214
  1660
Edouard@694
  1661
DYNAMIC_API PEP_STATUS key_revoked(
vb@951
  1662
       PEP_SESSION session,
vb@951
  1663
       const char *fpr,
vb@951
  1664
       bool *revoked
vb@951
  1665
   )
Edouard@694
  1666
{
Edouard@694
  1667
    assert(session);
Edouard@694
  1668
    assert(fpr);
Edouard@694
  1669
    assert(revoked);
Edouard@694
  1670
    
Edouard@694
  1671
    if (!(session && fpr && revoked))
Edouard@694
  1672
        return PEP_ILLEGAL_VALUE;
Edouard@694
  1673
    
Edouard@694
  1674
    return session->cryptotech[PEP_crypt_OpenPGP].key_revoked(session, fpr,
vb@951
  1675
            revoked);
Edouard@694
  1676
}
Edouard@694
  1677
vb@451
  1678
static void _clean_log_value(char *text)
vb@451
  1679
{
vb@451
  1680
    if (text) {
vb@451
  1681
        for (char *c = text; *c; c++) {
vb@722
  1682
            if (*c < 32 && *c != '\n')
vb@451
  1683
                *c = 32;
vb@451
  1684
            else if (*c == '"')
vb@451
  1685
                *c = '\'';
vb@451
  1686
        }
vb@451
  1687
    }
vb@451
  1688
}
vb@451
  1689
vb@450
  1690
static char *_concat_string(char *str1, const char *str2, char delim)
vb@450
  1691
{
vb@454
  1692
    str2 = str2 ? str2 : "";
vb@450
  1693
    size_t len1 = str1 ? strlen(str1) : 0;
vb@450
  1694
    size_t len2 = strlen(str2);
vb@450
  1695
    size_t len = len1 + len2 + 3;
vb@450
  1696
    char * result = realloc(str1, len + 1);
vb@450
  1697
vb@450
  1698
    if (result) {
vb@450
  1699
        result[len1] = '"';
vb@450
  1700
        strcpy(result + len1 + 1, str2);
vb@450
  1701
        result[len - 2] = '"';
vb@450
  1702
        result[len - 1] = delim;
vb@450
  1703
        result[len] = 0;
vb@450
  1704
    }
vb@450
  1705
    else {
vb@450
  1706
        free(str1);
vb@450
  1707
    }
vb@450
  1708
vb@450
  1709
    return result;
vb@450
  1710
}
vb@450
  1711
vb@450
  1712
DYNAMIC_API PEP_STATUS get_crashdump_log(
vb@450
  1713
        PEP_SESSION session,
vb@450
  1714
        int maxlines,
vb@450
  1715
        char **logdata
vb@450
  1716
    )
vb@450
  1717
{
vb@450
  1718
    PEP_STATUS status = PEP_STATUS_OK;
vb@450
  1719
    char *_logdata= NULL;
vb@450
  1720
vb@450
  1721
    assert(session);
vb@450
  1722
    assert(maxlines >= 0 && maxlines <= CRASHDUMP_MAX_LINES);
vb@450
  1723
    assert(logdata);
vb@450
  1724
vb@450
  1725
    if (!(session && logdata && maxlines >= 0 && maxlines <=
vb@450
  1726
            CRASHDUMP_MAX_LINES))
vb@450
  1727
        return PEP_ILLEGAL_VALUE;
vb@450
  1728
vb@632
  1729
    *logdata = NULL;
vb@632
  1730
vb@450
  1731
    int limit = maxlines ? maxlines : CRASHDUMP_DEFAULT_LINES;
vb@458
  1732
    const char *timestamp = NULL;
vb@458
  1733
    const char *title = NULL;
vb@458
  1734
    const char *entity = NULL;
vb@458
  1735
    const char *desc = NULL;
vb@458
  1736
    const char *comment = NULL;
vb@450
  1737
vb@450
  1738
    sqlite3_reset(session->crashdump);
vb@452
  1739
    sqlite3_bind_int(session->crashdump, 1, limit);
vb@450
  1740
vb@450
  1741
    int result;
vb@450
  1742
vb@450
  1743
    do {
vb@450
  1744
        result = sqlite3_step(session->crashdump);
vb@450
  1745
        switch (result) {
vb@450
  1746
        case SQLITE_ROW:
vb@951
  1747
            timestamp = (const char *) sqlite3_column_text(session->crashdump,
vb@951
  1748
                    0);
vb@951
  1749
            title   = (const char *) sqlite3_column_text(session->crashdump,
vb@951
  1750
                    1);
vb@951
  1751
            entity  = (const char *) sqlite3_column_text(session->crashdump,
vb@951
  1752
                    2);
vb@951
  1753
            desc    = (const char *) sqlite3_column_text(session->crashdump,
vb@951
  1754
                    3);
vb@951
  1755
            comment = (const char *) sqlite3_column_text(session->crashdump,
vb@951
  1756
                    4);
vb@452
  1757
vb@452
  1758
            _logdata = _concat_string(_logdata, timestamp, ',');
vb@452
  1759
            if (_logdata == NULL)
vb@452
  1760
                goto enomem;
vb@450
  1761
vb@450
  1762
            _logdata = _concat_string(_logdata, title, ',');
vb@450
  1763
            if (_logdata == NULL)
vb@450
  1764
                goto enomem;
vb@450
  1765
vb@450
  1766
            _logdata = _concat_string(_logdata, entity, ',');
vb@450
  1767
            if (_logdata == NULL)
vb@450
  1768
                goto enomem;
vb@450
  1769
vb@450
  1770
            _logdata = _concat_string(_logdata, desc, ',');
vb@450
  1771
            if (_logdata == NULL)
vb@450
  1772
                goto enomem;
vb@450
  1773
vb@450
  1774
            _logdata = _concat_string(_logdata, comment, '\n');
vb@450
  1775
            if (_logdata == NULL)
vb@450
  1776
                goto enomem;
vb@450
  1777
vb@687
  1778
            _clean_log_value(_logdata);
vb@450
  1779
            break;
vb@450
  1780
vb@450
  1781
        case SQLITE_DONE:
vb@450
  1782
            break;
vb@450
  1783
vb@450
  1784
        default:
vb@450
  1785
            status = PEP_UNKNOWN_ERROR;
vb@450
  1786
            result = SQLITE_DONE;
vb@450
  1787
        }
vb@450
  1788
    } while (result != SQLITE_DONE);
vb@450
  1789
vb@450
  1790
    sqlite3_reset(session->crashdump);
vb@450
  1791
    if (status == PEP_STATUS_OK)
vb@450
  1792
        *logdata = _logdata;
vb@450
  1793
vb@450
  1794
    goto the_end;
vb@450
  1795
vb@450
  1796
enomem:
vb@450
  1797
    status = PEP_OUT_OF_MEMORY;
vb@450
  1798
vb@450
  1799
the_end:
vb@450
  1800
    return status;
vb@450
  1801
}
vb@450
  1802
vb@458
  1803
DYNAMIC_API PEP_STATUS get_languagelist(
vb@458
  1804
        PEP_SESSION session,
vb@458
  1805
        char **languages
vb@458
  1806
    )
vb@458
  1807
{
vb@458
  1808
    PEP_STATUS status = PEP_STATUS_OK;
vb@458
  1809
    char *_languages= NULL;
vb@458
  1810
vb@458
  1811
    assert(session);
vb@458
  1812
    assert(languages);
vb@458
  1813
vb@458
  1814
    if (!(session && languages))
vb@458
  1815
        return PEP_ILLEGAL_VALUE;
vb@458
  1816
vb@632
  1817
    *languages = NULL;
vb@632
  1818
vb@458
  1819
    const char *lang = NULL;
vb@458
  1820
    const char *name = NULL;
vb@617
  1821
    const char *phrase = NULL;
vb@458
  1822
vb@458
  1823
    sqlite3_reset(session->languagelist);
vb@458
  1824
vb@458
  1825
    int result;
vb@458
  1826
vb@458
  1827
    do {
vb@458
  1828
        result = sqlite3_step(session->languagelist);
vb@458
  1829
        switch (result) {
vb@458
  1830
        case SQLITE_ROW:
vb@951
  1831
            lang = (const char *) sqlite3_column_text(session->languagelist,
vb@951
  1832
                    0);
vb@951
  1833
            name = (const char *) sqlite3_column_text(session->languagelist,
vb@951
  1834
                    1);
vb@951
  1835
            phrase = (const char *) sqlite3_column_text(session->languagelist,
vb@951
  1836
                    2);
vb@458
  1837
vb@458
  1838
            _languages = _concat_string(_languages, lang, ',');
vb@458
  1839
            if (_languages == NULL)
vb@458
  1840
                goto enomem;
vb@458
  1841
vb@617
  1842
            _languages = _concat_string(_languages, name, ',');
vb@617
  1843
            if (_languages == NULL)
vb@617
  1844
                goto enomem;
vb@617
  1845
vb@617
  1846
            _languages = _concat_string(_languages, phrase, '\n');
vb@458
  1847
            if (_languages == NULL)
vb@458
  1848
                goto enomem;
vb@458
  1849
vb@458
  1850
            break;
vb@458
  1851
vb@458
  1852
        case SQLITE_DONE:
vb@458
  1853
            break;
vb@458
  1854
vb@458
  1855
        default:
vb@458
  1856
            status = PEP_UNKNOWN_ERROR;
vb@458
  1857
            result = SQLITE_DONE;
vb@458
  1858
        }
vb@458
  1859
    } while (result != SQLITE_DONE);
vb@458
  1860
vb@458
  1861
    sqlite3_reset(session->languagelist);
vb@458
  1862
    if (status == PEP_STATUS_OK)
vb@458
  1863
        *languages = _languages;
vb@458
  1864
vb@458
  1865
    goto the_end;
vb@458
  1866
vb@458
  1867
enomem:
vb@458
  1868
    status = PEP_OUT_OF_MEMORY;
vb@458
  1869
vb@458
  1870
the_end:
vb@458
  1871
    return status;
vb@458
  1872
}
vb@458
  1873
vb@458
  1874
DYNAMIC_API PEP_STATUS get_phrase(
vb@458
  1875
        PEP_SESSION session,
vb@458
  1876
        const char *lang,
vb@458
  1877
        int phrase_id,
vb@458
  1878
        char **phrase
vb@458
  1879
    )
vb@458
  1880
{
vb@458
  1881
    PEP_STATUS status = PEP_STATUS_OK;
vb@458
  1882
vb@479
  1883
    assert(session && lang && lang[0] && lang[1] && lang[2] == 0 && phrase);
vb@479
  1884
    if (!(session && lang && lang[0] && lang[1] && lang[2] == 0 && phrase))
vb@458
  1885
        return PEP_ILLEGAL_VALUE;
vb@458
  1886
vb@632
  1887
    *phrase = NULL;
vb@632
  1888
vb@458
  1889
    sqlite3_reset(session->i18n_token);
roker@529
  1890
    sqlite3_bind_text(session->i18n_token, 1, lang, -1, SQLITE_STATIC);
roker@529
  1891
    sqlite3_bind_int(session->i18n_token, 2, phrase_id);
vb@458
  1892
vb@458
  1893
    const char *_phrase = NULL;
vb@458
  1894
    int result;
vb@458
  1895
vb@458
  1896
    result = sqlite3_step(session->i18n_token);
vb@458
  1897
    switch (result) {
vb@458
  1898
    case SQLITE_ROW:
vb@458
  1899
        _phrase = (const char *) sqlite3_column_text(session->i18n_token, 0);
vb@458
  1900
        break;
vb@458
  1901
vb@458
  1902
    case SQLITE_DONE:
vb@458
  1903
        status = PEP_PHRASE_NOT_FOUND;
vb@458
  1904
        break;
vb@458
  1905
vb@458
  1906
    default:
vb@458
  1907
        status = PEP_UNKNOWN_ERROR;
vb@458
  1908
    }
vb@458
  1909
vb@458
  1910
    if (status == PEP_STATUS_OK) {
vb@458
  1911
        *phrase = strdup(_phrase);
vb@458
  1912
        if (*phrase == NULL)
vb@458
  1913
            goto enomem;
vb@458
  1914
    }
vb@459
  1915
vb@459
  1916
    sqlite3_reset(session->i18n_token);
vb@458
  1917
    goto the_end;
vb@458
  1918
vb@458
  1919
enomem:
vb@458
  1920
    status = PEP_OUT_OF_MEMORY;
vb@458
  1921
vb@458
  1922
the_end:
vb@458
  1923
    return status;
vb@458
  1924
}
vb@458
  1925
vb@1085
  1926
static PEP_STATUS _get_sequence_value(PEP_SESSION session, const char *name,
vb@1085
  1927
        int32_t *value)
vb@1085
  1928
{
vb@1086
  1929
    assert(session && name && value);
vb@1086
  1930
    if (!(session && name && value))
vb@1086
  1931
        return PEP_ILLEGAL_VALUE;
vb@1086
  1932
vb@1085
  1933
    PEP_STATUS status = PEP_STATUS_OK;
vb@1085
  1934
vb@1085
  1935
    sqlite3_reset(session->sequence_value2);
vb@1085
  1936
    sqlite3_bind_text(session->sequence_value2, 1, name, -1,
vb@1085
  1937
            SQLITE_STATIC);
vb@1085
  1938
    int result = sqlite3_step(session->sequence_value2);
vb@1085
  1939
    switch (result) {
vb@1085
  1940
        case SQLITE_ROW: {
vb@1085
  1941
            int32_t _value = (int32_t)
vb@1086
  1942
                    sqlite3_column_int(session->sequence_value2, 0);
vb@1086
  1943
            int _own = (int)
vb@1086
  1944
                    sqlite3_column_int(session->sequence_value2, 1);
vb@1085
  1945
            *value = _value;
vb@1086
  1946
            if (_own)
vb@1086
  1947
                status = PEP_OWN_SEQUENCE;
vb@1085
  1948
            break;
vb@1085
  1949
        }
vb@1091
  1950
        case SQLITE_DONE:
vb@1091
  1951
            status = PEP_RECORD_NOT_FOUND;
vb@1091
  1952
            break;
vb@1085
  1953
        default:
vb@1085
  1954
            status = PEP_UNKNOWN_ERROR;
vb@1085
  1955
    }
vb@1085
  1956
    sqlite3_reset(session->sequence_value2);
vb@1085
  1957
vb@1085
  1958
    return status;
vb@1085
  1959
}
vb@1085
  1960
vb@1086
  1961
static PEP_STATUS _increment_sequence_value(PEP_SESSION session,
vb@1086
  1962
        const char *name, int own)
vb@1085
  1963
{
vb@1086
  1964
    assert(session && name);
vb@1086
  1965
    if (!(session && name))
vb@1086
  1966
        return PEP_ILLEGAL_VALUE;
vb@1086
  1967
vb@1085
  1968
    sqlite3_reset(session->sequence_value1);
vb@1085
  1969
    sqlite3_bind_text(session->sequence_value1, 1, name, -1, SQLITE_STATIC);
vb@1086
  1970
    sqlite3_bind_int(session->sequence_value1, 2, own);
vb@1085
  1971
    int result = sqlite3_step(session->sequence_value1);
vb@1085
  1972
    assert(result == SQLITE_DONE);
vb@1085
  1973
    sqlite3_reset(session->sequence_value1);
vb@1085
  1974
    if (result == SQLITE_DONE)
vb@1085
  1975
        return PEP_STATUS_OK;
vb@1085
  1976
    else
vb@1085
  1977
        return PEP_CANNOT_INCREASE_SEQUENCE;
vb@1085
  1978
}
vb@1085
  1979
vb@1087
  1980
static PEP_STATUS _set_sequence_value(PEP_SESSION session,
vb@1091
  1981
        const char *name, int32_t value, int own)
vb@1087
  1982
{
vb@1087
  1983
    assert(session && name && value > 0);
vb@1087
  1984
    if (!(session && name && value > 0))
vb@1087
  1985
        return PEP_ILLEGAL_VALUE;
vb@1087
  1986
vb@1087
  1987
    sqlite3_reset(session->sequence_value3);
vb@1087
  1988
    sqlite3_bind_text(session->sequence_value3, 1, name, -1, SQLITE_STATIC);
vb@1087
  1989
    sqlite3_bind_int(session->sequence_value3, 2, value);
vb@1091
  1990
    sqlite3_bind_int(session->sequence_value3, 3, own);
vb@1087
  1991
    int result = sqlite3_step(session->sequence_value3);
vb@1087
  1992
    assert(result == SQLITE_DONE);
vb@1087
  1993
    sqlite3_reset(session->sequence_value3);
vb@1087
  1994
    if (result == SQLITE_DONE)
vb@1087
  1995
        return PEP_STATUS_OK;
vb@1087
  1996
    else
vb@1087
  1997
        return PEP_CANNOT_SET_SEQUENCE_VALUE;
vb@1087
  1998
}
vb@1087
  1999
vb@632
  2000
DYNAMIC_API PEP_STATUS sequence_value(
vb@632
  2001
        PEP_SESSION session,
vb@1085
  2002
        char *name,
vb@652
  2003
        int32_t *value
vb@632
  2004
    )
vb@632
  2005
{
vb@632
  2006
    PEP_STATUS status = PEP_STATUS_OK;
edouard@1568
  2007
    int result;
vb@632
  2008
vb@632
  2009
    assert(session);
vb@1085
  2010
    assert(name && value && *value >= 0);
vb@632
  2011
vb@1085
  2012
    if (!(session && name && value && *value >= 0))
vb@632
  2013
        return PEP_ILLEGAL_VALUE;
vb@632
  2014
vb@1086
  2015
    int own = 0;
vb@1085
  2016
    if (!name[0]) {
markus@1259
  2017
        pEpUUID uuid;
vb@1085
  2018
        uuid_generate_random(uuid);
vb@1085
  2019
        uuid_unparse_upper(uuid, name);
vb@1086
  2020
        own = 1;
vb@633
  2021
    }
vb@633
  2022
    else {
edouard@1236
  2023
        if (name == session->sync_uuid || strcmp(name, session->sync_uuid) == 0)
vb@1091
  2024
            own = 1;
vb@1091
  2025
    }
krista@1032
  2026
vb@1085
  2027
    if (*value) {
edouard@1568
  2028
        sqlite3_exec(session->db, "BEGIN ;", NULL, NULL, NULL);
vb@1085
  2029
        int32_t old_value = 0;
vb@1085
  2030
        status = _get_sequence_value(session, name, &old_value);
vb@1091
  2031
        if (status != PEP_STATUS_OK && status != PEP_RECORD_NOT_FOUND)
edouard@1568
  2032
        {
edouard@1568
  2033
            sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
vb@1085
  2034
            return status;
edouard@1568
  2035
        }
vb@1085
  2036
vb@1087
  2037
        if (old_value >= *value) {
edouard@1568
  2038
            sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
vb@1085
  2039
            return PEP_SEQUENCE_VIOLATED;
vb@632
  2040
        }
vb@1087
  2041
        else {
vb@1091
  2042
            status = _set_sequence_value(session, name, *value, own);
edouard@1568
  2043
            if (status == PEP_STATUS_OK) {
edouard@1568
  2044
                result = sqlite3_exec(session->db, "COMMIT ;", NULL, NULL, NULL);
edouard@1568
  2045
                if (result == SQLITE_OK)
edouard@1568
  2046
                    return PEP_STATUS_OK;
edouard@1568
  2047
                else
edouard@1568
  2048
                    return PEP_COMMIT_FAILED;
edouard@1568
  2049
            } else {
edouard@1568
  2050
                sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
edouard@1568
  2051
                return status;
edouard@1568
  2052
            }
vb@1087
  2053
        }
krista@1032
  2054
    }
vb@1085
  2055
vb@1085
  2056
    assert(*value == 0);
edouard@1568
  2057
    sqlite3_exec(session->db, "BEGIN ;", NULL, NULL, NULL);
vb@1086
  2058
    status = _increment_sequence_value(session, name, own);
vb@1086
  2059
    if (status == PEP_STATUS_OK) {
vb@1085
  2060
        status = _get_sequence_value(session, name, value);
edouard@1568
  2061
        result = sqlite3_exec(session->db, "COMMIT ;", NULL, NULL, NULL);
edouard@1568
  2062
        if (result == SQLITE_OK){
edouard@1568
  2063
            assert(*value < INT32_MAX);
edouard@1568
  2064
            if (*value == INT32_MAX){
edouard@1568
  2065
                return PEP_CANNOT_INCREASE_SEQUENCE;
edouard@1568
  2066
            }
edouard@1568
  2067
            return PEP_STATUS_OK;
edouard@1568
  2068
        } else {
edouard@1568
  2069
            return PEP_COMMIT_FAILED;
edouard@1568
  2070
        }
edouard@1568
  2071
    } else {
edouard@1568
  2072
        sqlite3_exec(session->db, "ROLLBACK ;", NULL, NULL, NULL);
edouard@1568
  2073
        return status;
vb@632
  2074
    }
vb@632
  2075
    return status;
vb@632
  2076
}
vb@632
  2077
Edouard@693
  2078
DYNAMIC_API PEP_STATUS set_revoked(
Edouard@693
  2079
       PEP_SESSION session,
Edouard@693
  2080
       const char *revoked_fpr,
Edouard@693
  2081
       const char *replacement_fpr,
Edouard@693
  2082
       const uint64_t revocation_date
Edouard@693
  2083
    )
Edouard@693
  2084
{
Edouard@693
  2085
    PEP_STATUS status = PEP_STATUS_OK;
Edouard@693
  2086
    
Edouard@693
  2087
    assert(session &&
Edouard@693
  2088
           revoked_fpr && revoked_fpr[0] &&
Edouard@693
  2089
           replacement_fpr && replacement_fpr[0]
Edouard@693
  2090
          );
Edouard@693
  2091
    
Edouard@693
  2092
    if (!(session &&
Edouard@693
  2093
          revoked_fpr && revoked_fpr[0] &&
Edouard@693
  2094
          replacement_fpr && replacement_fpr[0]
Edouard@693
  2095
         ))
Edouard@693
  2096
        return PEP_ILLEGAL_VALUE;
Edouard@693
  2097
    
Edouard@693
  2098
    sqlite3_reset(session->set_revoked);
Edouard@693
  2099
    sqlite3_bind_text(session->set_revoked, 1, revoked_fpr, -1, SQLITE_STATIC);
vb@951
  2100
    sqlite3_bind_text(session->set_revoked, 2, replacement_fpr, -1,
vb@951
  2101
            SQLITE_STATIC);
Edouard@693
  2102
    sqlite3_bind_int64(session->set_revoked, 3, revocation_date);
Edouard@693
  2103
Edouard@693
  2104
    int result;
Edouard@693
  2105
    
Edouard@693
  2106
    result = sqlite3_step(session->set_revoked);
Edouard@693
  2107
    switch (result) {
Edouard@693
  2108
        case SQLITE_DONE:
Edouard@693
  2109
            status = PEP_STATUS_OK;
Edouard@693
  2110
            break;
Edouard@693
  2111
            
Edouard@693
  2112
        default:
Edouard@693
  2113
            status = PEP_UNKNOWN_ERROR;
Edouard@693
  2114
    }
Edouard@693
  2115
    
Edouard@693
  2116
    sqlite3_reset(session->set_revoked);
Edouard@693
  2117
    return status;
Edouard@693
  2118
}
Edouard@693
  2119
Edouard@693
  2120
DYNAMIC_API PEP_STATUS get_revoked(
Edouard@693
  2121
        PEP_SESSION session,
Edouard@693
  2122
        const char *fpr,
Edouard@693
  2123
        char **revoked_fpr,
Edouard@693
  2124
        uint64_t *revocation_date
Edouard@693
  2125
    )
Edouard@693
  2126
{
Edouard@693
  2127
    PEP_STATUS status = PEP_STATUS_OK;
Edouard@693
  2128
Edouard@693
  2129
    assert(session &&
Edouard@693
  2130
           revoked_fpr &&
Edouard@693
  2131
           fpr && fpr[0]
Edouard@693
  2132
          );
Edouard@693
  2133
    
Edouard@693
  2134
    if (!(session &&
Edouard@693
  2135
           revoked_fpr &&
Edouard@693
  2136
           fpr && fpr[0]
Edouard@693
  2137
          ))
Edouard@693
  2138
        return PEP_ILLEGAL_VALUE;
Edouard@693
  2139
Edouard@693
  2140
    *revoked_fpr = NULL;
Edouard@693
  2141
    *revocation_date = 0;
Edouard@693
  2142
Edouard@693
  2143
    sqlite3_reset(session->get_revoked);
Edouard@693
  2144
    sqlite3_bind_text(session->get_revoked, 1, fpr, -1, SQLITE_STATIC);
Edouard@693
  2145
Edouard@693
  2146
    int result;
Edouard@693
  2147
    
Edouard@693
  2148
    result = sqlite3_step(session->get_revoked);
Edouard@693
  2149
    switch (result) {
Edouard@693
  2150
        case SQLITE_ROW: {
vb@951
  2151
            *revoked_fpr = strdup((const char *)
vb@951
  2152
                    sqlite3_column_text(session->get_revoked, 0));
Edouard@693
  2153
            if(*revoked_fpr)
vb@951
  2154
                *revocation_date = sqlite3_column_int64(session->get_revoked,
vb@951
  2155
                        1);
Edouard@693
  2156
            else
Edouard@693
  2157
                status = PEP_OUT_OF_MEMORY;
Edouard@693
  2158
Edouard@693
  2159
            break;
Edouard@693
  2160
        }
Edouard@693
  2161
        default:
Edouard@693
  2162
            status = PEP_CANNOT_FIND_IDENTITY;
Edouard@693
  2163
    }
Edouard@693
  2164
Edouard@693
  2165
    sqlite3_reset(session->get_revoked);
Edouard@693
  2166
Edouard@693
  2167
    return status;
Edouard@693
  2168
}
Edouard@693
  2169
vb@958
  2170
PEP_STATUS key_created(
vb@958
  2171
        PEP_SESSION session,
vb@958
  2172
        const char *fpr,
vb@958
  2173
        time_t *created
vb@958
  2174
    )
vb@958
  2175
{
vb@958
  2176
    assert(session && fpr && created);
vb@958
  2177
    if (!(session && fpr && created))
vb@958
  2178
        return PEP_ILLEGAL_VALUE;
vb@958
  2179
vb@958
  2180
    return session->cryptotech[PEP_crypt_OpenPGP].key_created(session, fpr,
vb@958
  2181
            created);
vb@958
  2182
}
vb@958
  2183
krista@1357
  2184
PEP_STATUS find_private_keys(PEP_SESSION session, const char* pattern,
krista@1357
  2185
                             stringlist_t **keylist) {
krista@1357
  2186
    assert(session && pattern && keylist);
krista@1357
  2187
    if (!(session && pattern && keylist))
krista@1357
  2188
        return PEP_ILLEGAL_VALUE;
krista@1357
  2189
    
krista@1357
  2190
    return session->cryptotech[PEP_crypt_OpenPGP].find_private_keys(session, pattern,
krista@1357
  2191
                                                                    keylist);
krista@1357
  2192
}
krista@1357
  2193
krista@1011
  2194
DYNAMIC_API const char* get_engine_version() {
krista@1011
  2195
    return PEP_ENGINE_VERSION;
krista@1011
  2196
}
krista@1011
  2197
krista@1011
  2198
vb@482
  2199
DYNAMIC_API PEP_STATUS reset_peptest_hack(PEP_SESSION session)
vb@482
  2200
{
vb@482
  2201
    assert(session);
vb@482
  2202
vb@482
  2203
    if (!session)
vb@482
  2204
        return PEP_ILLEGAL_VALUE;
vb@482
  2205
fdik@494
  2206
    int int_result = sqlite3_exec(
fdik@494
  2207
        session->db,
fdik@494
  2208
        "delete from identity where address like '%@peptest.ch' ;",
fdik@494
  2209
        NULL,
fdik@494
  2210
        NULL,
fdik@494
  2211
        NULL
fdik@494
  2212
    );
fdik@494
  2213
    assert(int_result == SQLITE_OK);
vb@482
  2214
fdik@494
  2215
    return PEP_STATUS_OK;
vb@482
  2216
}