repos/pEpEngine: src/message_api.c@9ed76a79d784 (annotated)

vb@1517	1	// This file is under GNU General Public License 3.0
vb@1517	2	// see LICENSE.txt
vb@1517	3
vb@125	4	#include "pEp_internal.h"
vb@37	5	#include "message_api.h"
vb@37	6
vb@130	7	#include "platform.h"
vb@220	8	#include "mime.h"
krista@2548	9	#include "blacklist.h"
vb@3130	10	#include "baseprotocol.h"
vb@2889	11	#include "KeySync_fsm.h"
krista@3032	12	#include "base64.h"
krista@3277	13	#include "resource_id.h"
vb@85	14
vb@37	15	#include <assert.h>
vb@37	16	#include <string.h>
vb@39	17	#include <stdlib.h>
krista@2176	18	#include <math.h>
vb@39	19
vb@926	20
krista@2467	21	// These are globals used in generating message IDs and should only be
krista@2467	22	// computed once, as they're either really constants or OS-dependent
krista@2467	23
krista@2467	24	int _pEp_rand_max_bits;
krista@2467	25	double _pEp_log2_36;
krista@2467	26
krista@2280	27	static bool is_a_pEpmessage(const message *msg)
krista@2280	28	{
krista@2280	29	for (stringpair_list_t *i = msg->opt_fields; i && i->value ; i=i->next) {
krista@2280	30	if (strcasecmp(i->value->key, "X-pEp-Version") == 0)
krista@2280	31	return true;
krista@2280	32	}
krista@2280	33	return false;
krista@2280	34	}
krista@2280	35
vb@2337	36	static bool is_wrapper(message* src)
vb@2337	37	{
krista@2280	38	bool retval = false;
krista@2280	39
krista@2280	40	if (src) {
vb@2834	41	unsigned char pEpstr[] = PEP_SUBJ_STRING;
krista@2280	42	if (is_a_pEpmessage(src) \|\| (src->shortmsg == NULL \|\| strcmp(src->shortmsg, "pEp") == 0 \|\|
vb@2834	43	_unsigned_signed_strcmp(pEpstr, src->shortmsg, PEP_SUBJ_BYTELEN) == 0) \|\|
krista@2280	44	(strcmp(src->shortmsg, "p=p") == 0)) {
krista@2280	45	char* plaintext = src->longmsg;
krista@2280	46	if (plaintext) {
krista@2280	47	const char *line_end = strchr(plaintext, '\n');
krista@2280	48
krista@2280	49	if (line_end != NULL) {
krista@2280	50	size_t n = line_end - plaintext;
krista@2280	51
krista@2280	52	char* copycat = calloc(n + 1, 1);
krista@2280	53
krista@2280	54	if (copycat) {
krista@2280	55	strlcpy(copycat, plaintext, n+1);
krista@2280	56
krista@2280	57	if (strstr(copycat, PEP_MSG_WRAP_KEY) && strstr(copycat, "OUTER"))
krista@2280	58	retval = true;
krista@2280	59
krista@2280	60	free(copycat);
krista@2280	61	}
krista@2280	62	}
krista@2280	63	}
krista@2280	64	}
krista@2280	65	}
krista@2280	66	return retval;
krista@2280	67	}
krista@2280	68
krista@2280	69
vb@2337	70	/*
vb@2337	71	* static stringpair_t* search_optfields(const message* msg, const char* key) {
vb@2337	72	* if (msg && key) {
vb@2337	73	* stringpair_list_t* opt_fields = msg->opt_fields;
vb@2337	74	*
vb@2337	75	* const stringpair_list_t* curr;
vb@2337	76	*
vb@2337	77	* for (curr = opt_fields; curr && curr->value; curr = curr->next) {
vb@2337	78	* if (curr->value->key) {
vb@2337	79	* if (strcasecmp(curr->value->key, key) == 0)
vb@2337	80	* return curr->value;
vb@2337	81	* }
vb@2337	82	* }
vb@2337	83	* }
vb@2337	84	* return NULL;
vb@2337	85	* }
vb@2337	86	*/
krista@2220	87
krista@2155	88	static char * keylist_to_string(const stringlist_t *keylist)
krista@2155	89	{
krista@2155	90	if (keylist) {
krista@2155	91	size_t size = stringlist_length(keylist);
krista@2155	92
krista@2155	93	const stringlist_t *_kl;
krista@2155	94	for (_kl = keylist; _kl && _kl->value; _kl = _kl->next) {
krista@2155	95	size += strlen(_kl->value);
krista@2155	96	}
krista@2155	97
krista@2176	98	char *result = calloc(size, 1);
krista@2155	99	if (result == NULL)
krista@2155	100	return NULL;
krista@2155	101
krista@2155	102	char *_r = result;
krista@2155	103	for (_kl = keylist; _kl && _kl->value; _kl = _kl->next) {
krista@2155	104	_r = stpcpy(_r, _kl->value);
krista@2155	105	if (_kl->next && _kl->next->value)
krista@2155	106	_r = stpcpy(_r, ",");
krista@2155	107	}
krista@2155	108
krista@2155	109	return result;
krista@2155	110	}
krista@2155	111	else {
krista@2155	112	return NULL;
krista@2155	113	}
krista@2155	114	}
krista@2155	115
krista@2155	116	static const char * rating_to_string(PEP_rating rating)
krista@2155	117	{
krista@2155	118	switch (rating) {
krista@2155	119	case PEP_rating_cannot_decrypt:
krista@2155	120	return "cannot_decrypt";
krista@2155	121	case PEP_rating_have_no_key:
krista@2155	122	return "have_no_key";
krista@2155	123	case PEP_rating_unencrypted:
krista@2155	124	return "unencrypted";
vb@3249	125	case PEP_rating_unencrypted_for_some: // don't use this any more
vb@3249	126	return "undefined";
krista@2155	127	case PEP_rating_unreliable:
krista@2155	128	return "unreliable";
krista@2155	129	case PEP_rating_reliable:
krista@2155	130	return "reliable";
krista@2155	131	case PEP_rating_trusted:
krista@2155	132	return "trusted";
krista@2155	133	case PEP_rating_trusted_and_anonymized:
krista@2155	134	return "trusted_and_anonymized";
krista@2155	135	case PEP_rating_fully_anonymous:
krista@2155	136	return "fully_anonymous";
krista@2155	137	case PEP_rating_mistrust:
krista@2155	138	return "mistrust";
krista@2155	139	case PEP_rating_b0rken:
krista@2155	140	return "b0rken";
krista@2155	141	case PEP_rating_under_attack:
krista@2155	142	return "under_attack";
krista@2155	143	default:
krista@2155	144	return "undefined";
krista@2155	145	}
krista@2155	146	}
krista@2155	147
krista@2757	148	bool _memnmemn(const char* needle,
krista@2757	149	size_t needle_size,
krista@2757	150	const char* haystack,
krista@2757	151	size_t haystack_size)
krista@2757	152	{
krista@2757	153	if (needle_size > haystack_size) {
krista@2757	154	return false;
krista@2757	155	}
krista@2757	156	else if (needle_size == 0) {
krista@2757	157	return true;
krista@2757	158	}
krista@2757	159
krista@2757	160	bool found = true;
krista@2757	161	const char* haystack_ptr = haystack;
krista@2757	162	unsigned int i = 0;
krista@2757	163	size_t remaining_hay = haystack_size;
krista@2757	164	for (i = 0; i < haystack_size && (remaining_hay >= needle_size); i++, haystack_ptr++) {
krista@2757	165	found = false;
krista@2757	166	const char* needle_ptr = needle;
krista@2757	167	if (haystack_ptr == needle) {
krista@2757	168	const char* haystack_tmp = haystack_ptr;
krista@2757	169	unsigned int j;
krista@2757	170	found = true;
krista@2757	171	for (j = 0; j < needle_size; j++) {
krista@2757	172	if (needle_ptr++ != haystack_tmp++) {
krista@2757	173	found = false;
krista@2757	174	break;
krista@2757	175	}
krista@2757	176	}
krista@2757	177	if (found)
krista@2757	178	break;
krista@2757	179	}
krista@2757	180	remaining_hay--;
krista@2757	181	}
krista@2757	182	return found;
krista@2757	183	}
krista@2757	184
krista@2156	185	void add_opt_field(message msg, const char name, const char *value)
krista@2156	186	{
krista@2156	187	assert(msg && name && value);
krista@2156	188
krista@2156	189	if (msg && name && value) {
krista@2156	190	stringpair_t *pair = new_stringpair(name, value);
krista@2156	191	if (pair == NULL)
krista@2156	192	return;
krista@2156	193
krista@2156	194	stringpair_list_t *field = stringpair_list_add(msg->opt_fields, pair);
krista@2156	195	if (field == NULL)
krista@2156	196	{
krista@2156	197	free_stringpair(pair);
krista@2156	198	return;
krista@2156	199	}
krista@2156	200
krista@2156	201	if (msg->opt_fields == NULL)
krista@2156	202	msg->opt_fields = field;
krista@2156	203	}
krista@2156	204	}
krista@2156	205
krista@2769	206	void replace_opt_field(message *msg,
krista@2769	207	const char *name,
krista@2769	208	const char *value,
krista@2769	209	bool clobber)
krista@2156	210	{
krista@2156	211	assert(msg && name && value);
krista@2156	212
krista@2156	213	if (msg && name && value) {
krista@2156	214	stringpair_list_t* opt_fields = msg->opt_fields;
krista@2156	215	stringpair_t* pair = NULL;
krista@2529	216
krista@2156	217	if (opt_fields) {
krista@2156	218	while (opt_fields) {
krista@2156	219	pair = opt_fields->value;
krista@2156	220	if (pair && (strcmp(name, pair->key) == 0))
krista@2156	221	break;
krista@2156	222
krista@2156	223	pair = NULL;
krista@2156	224	opt_fields = opt_fields->next;
krista@2156	225	}
krista@2156	226	}
krista@2156	227
krista@2156	228	if (pair) {
krista@2769	229	if (clobber) {
krista@2769	230	free(pair->value);
krista@2769	231	pair->value = strdup(value);
krista@2769	232	}
krista@2156	233	}
krista@2156	234	else {
krista@2156	235	add_opt_field(msg, name, value);
krista@2156	236	}
krista@2156	237	}
krista@2156	238	}
krista@2156	239
krista@2155	240	static void decorate_message(
krista@2155	241	message *msg,
krista@2155	242	PEP_rating rating,
krista@2284	243	stringlist_t *keylist,
krista@2769	244	bool add_version,
krista@2769	245	bool clobber
krista@2155	246	)
krista@2155	247	{
krista@2155	248	assert(msg);
krista@2155	249
krista@2284	250	if (add_version)
krista@2769	251	replace_opt_field(msg, "X-pEp-Version", PEP_VERSION, clobber);
krista@2155	252
krista@2155	253	if (rating != PEP_rating_undefined)
krista@2769	254	replace_opt_field(msg, "X-EncStatus", rating_to_string(rating), clobber);
krista@2155	255
krista@2155	256	if (keylist) {
krista@2155	257	char *_keylist = keylist_to_string(keylist);
krista@2769	258	replace_opt_field(msg, "X-KeyList", _keylist, clobber);
krista@2155	259	free(_keylist);
krista@2155	260	}
krista@2155	261	}
krista@2155	262
krista@1873	263	static char* _get_resource_ptr_noown(char* uri) {
krista@1873	264	char* uri_delim = strstr(uri, "://");
krista@1873	265	if (!uri_delim)
krista@1873	266	return uri;
krista@1873	267	else
krista@1873	268	return uri + 3;
krista@1873	269	}
krista@1873	270
vb@235	271	static bool string_equality(const char s1, const char s2)
vb@235	272	{
vb@235	273	if (s1 == NULL \|\| s2 == NULL)
vb@235	274	return false;
vb@235	275
vb@235	276	assert(s1 && s2);
vb@235	277
vb@235	278	return strcmp(s1, s2) == 0;
vb@235	279	}
vb@235	280
vb@235	281	static bool is_mime_type(const bloblist_t bl, const char mt)
vb@235	282	{
vb@235	283	assert(mt);
vb@235	284
vb@235	285	return bl && string_equality(bl->mime_type, mt);
vb@235	286	}
vb@235	287
krista@854	288	//
krista@854	289	// This function presumes the file ending is a proper substring of the
krista@854	290	// filename (i.e. if bl->filename is "a.pgp" and fe is ".pgp", it will
krista@854	291	// return true, but if bl->filename is ".pgp" and fe is ".pgp", it will
krista@854	292	// return false. This is desired behaviour.
krista@854	293	//
vb@235	294	static bool is_fileending(const bloblist_t bl, const char fe)
vb@235	295	{
vb@235	296	assert(fe);
krista@1427	297
krista@1873	298	if (bl == NULL \|\| bl->filename == NULL \|\| fe == NULL \|\| is_cid_uri(bl->filename))
vb@235	299	return false;
vb@235	300
vb@235	301	assert(bl && bl->filename);
vb@235	302
vb@235	303	size_t fe_len = strlen(fe);
vb@235	304	size_t fn_len = strlen(bl->filename);
vb@235	305
vb@235	306	if (fn_len <= fe_len)
vb@235	307	return false;
vb@235	308
vb@235	309	assert(fn_len > fe_len);
vb@235	310
vb@235	311	return strcmp(bl->filename + (fn_len - fe_len), fe) == 0;
vb@235	312	}
vb@235	313
krista@2617	314	char * encapsulate_message_wrap_info(const char msg_wrap_info, const char longmsg)
krista@2078	315	{
krista@2120	316	assert(msg_wrap_info);
krista@2078	317
krista@2120	318	if (!msg_wrap_info) {
krista@2078	319	if (!longmsg)
krista@2078	320	return NULL;
krista@2078	321	else {
krista@2078	322	char *result = strdup(longmsg);
krista@2078	323	assert(result);
krista@2078	324	return result;
krista@2078	325	}
krista@2078	326	}
krista@2078	327
krista@2078	328	if (longmsg == NULL)
krista@2078	329	longmsg = "";
krista@2078	330
krista@2078	331	const char * const newlines = "\n\n";
krista@2078	332	const size_t NL_LEN = 2;
krista@2078	333
krista@2120	334	const size_t bufsize = PEP_MSG_WRAP_KEY_LEN + strlen(msg_wrap_info) + NL_LEN + strlen(longmsg) + 1;
krista@2176	335	char * ptext = calloc(bufsize, 1);
krista@2078	336	assert(ptext);
krista@2078	337	if (ptext == NULL)
krista@2078	338	return NULL;
krista@2078	339
krista@2120	340	strlcpy(ptext, PEP_MSG_WRAP_KEY, bufsize);
krista@2120	341	strlcat(ptext, msg_wrap_info, bufsize);
krista@2078	342	strlcat(ptext, newlines, bufsize);
krista@2078	343	strlcat(ptext, longmsg, bufsize);
krista@2078	344
krista@2078	345	return ptext;
krista@2078	346	}
krista@2078	347
vb@83	348	static char * combine_short_and_long(const char shortmsg, const char longmsg)
vb@62	349	{
vb@83	350	assert(shortmsg);
krista@2045	351
vb@2834	352	unsigned char pEpstr[] = PEP_SUBJ_STRING;
vb@2834	353	assert(strcmp(shortmsg, "pEp") != 0 && _unsigned_signed_strcmp(pEpstr, shortmsg, PEP_SUBJ_BYTELEN) != 0);
krista@2045	354
krista@2045	355	if (!shortmsg \|\| strcmp(shortmsg, "pEp") == 0 \|\|
vb@2834	356	_unsigned_signed_strcmp(pEpstr, shortmsg, PEP_SUBJ_BYTELEN) == 0) {
vb@857	357	if (!longmsg) {
vb@857	358	return NULL;
vb@857	359	}
vb@857	360	else {
vb@857	361	char *result = strdup(longmsg);
vb@857	362	assert(result);
vb@857	363	return result;
vb@857	364	}
vb@857	365	}
krista@1427	366
vb@83	367	if (longmsg == NULL)
vb@63	368	longmsg = "";
vb@63	369
krista@935	370	const char * const newlines = "\n\n";
krista@935	371	const size_t NL_LEN = 2;
krista@935	372
krista@2078	373	const size_t bufsize = PEP_SUBJ_KEY_LEN + strlen(shortmsg) + NL_LEN + strlen(longmsg) + 1;
krista@2176	374	char * ptext = calloc(bufsize, 1);
vb@109	375	assert(ptext);
vb@62	376	if (ptext == NULL)
vb@62	377	return NULL;
vb@62	378
krista@2078	379	strlcpy(ptext, PEP_SUBJ_KEY, bufsize);
krista@918	380	strlcat(ptext, shortmsg, bufsize);
krista@935	381	strlcat(ptext, newlines, bufsize);
krista@918	382	strlcat(ptext, longmsg, bufsize);
vb@62	383
vb@62	384	return ptext;
vb@62	385	}
vb@44	386
krista@2157	387	static PEP_STATUS replace_subject(message* msg) {
vb@2834	388	unsigned char pEpstr[] = PEP_SUBJ_STRING;
krista@2157	389	if (msg->shortmsg && *(msg->shortmsg) != '\0') {
krista@2157	390	char* longmsg = combine_short_and_long(msg->shortmsg, msg->longmsg);
krista@2157	391	if (!longmsg)
krista@2157	392	return PEP_OUT_OF_MEMORY;
krista@2157	393	else {
krista@2157	394	free(msg->longmsg);
krista@2157	395	msg->longmsg = longmsg;
krista@2157	396	}
krista@2157	397	}
krista@2157	398	free(msg->shortmsg);
krista@2275	399	#ifdef WIN32
krista@2275	400	msg->shortmsg = strdup("pEp");
krista@2275	401	#else
vb@2834	402	msg->shortmsg = strdup((char*)pEpstr);
krista@2275	403	#endif
krista@2157	404
krista@2157	405	if (!msg->shortmsg)
krista@2157	406	return PEP_OUT_OF_MEMORY;
krista@2157	407
krista@2157	408	return PEP_STATUS_OK;
krista@2157	409	}
krista@2157	410
krista@2176	411	unsigned long long get_bitmask(int num_bits) {
krista@2176	412	if (num_bits <= 0)
krista@2176	413	return 0;
krista@2176	414
krista@2176	415	unsigned long long bitmask = 0;
krista@2176	416	int i;
krista@2176	417	for (i = 1; i < num_bits; i++) {
krista@2176	418	bitmask = bitmask << 1;
krista@2176	419	bitmask \|= 1;
krista@2176	420	}
krista@2176	421	return bitmask;
krista@2176	422	}
krista@2176	423
krista@2176	424	static char* get_base_36_rep(unsigned long long value, int num_sig_bits) {
krista@2176	425
vb@2571	426	int bufsize = ((int) ceil((double) num_sig_bits / _pEp_log2_36)) + 1;
krista@2176	427
krista@2176	428	// based on
krista@2176	429	// https://en.wikipedia.org/wiki/Base36#C_implementation
krista@2176	430	// ok, we supposedly have a 64-bit kinda sorta random blob
vb@3074	431	const char base_36_symbols[37] = "0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ";
krista@2176	432
krista@2176	433	char* retbuf = calloc(bufsize, 1);
vb@3077	434	assert(retbuf);
vb@3077	435	if (!retbuf)
vb@3077	436	return NULL;
krista@2176	437
krista@2176	438	int i = bufsize - 1; // (end index)
krista@2176	439
krista@2176	440	while (i > 0) {
krista@2176	441	retbuf[--i] = base_36_symbols[value % 36];
krista@2176	442	value /= 36;
krista@2176	443	}
krista@2176	444
krista@2176	445	return retbuf;
krista@2176	446	}
krista@2176	447
krista@2176	448
krista@2176	449	static char* message_id_prand_part(void) {
krista@2176	450	// RAND modulus
krista@2176	451	int num_bits = _pEp_rand_max_bits;
krista@2176	452
krista@2176	453	if (num_bits < 0)
krista@2176	454	return NULL;
krista@2176	455
krista@2176	456	const int DESIRED_BITS = 64;
krista@2176	457
vb@2830	458	num_bits = MIN(num_bits, DESIRED_BITS);
krista@2176	459
krista@2176	460	int i;
krista@2176	461
krista@2176	462	// at least 64 bits
krista@2176	463	unsigned long long bitmask = get_bitmask(num_bits);
krista@2176	464
krista@2176	465	unsigned long long output_value = 0;
krista@2176	466
krista@2176	467	i = DESIRED_BITS;
krista@2176	468
krista@2176	469	while (i > 0) {
vb@3089	470	int bitshift = 0;
krista@2176	471	int randval = rand();
krista@2176	472	unsigned long long temp_val = randval & bitmask;
krista@2176	473
krista@2176	474	output_value \|= temp_val;
krista@2176	475
vb@2830	476	i -= MIN(num_bits, i);
krista@2176	477
vb@2830	478	bitshift = MIN(num_bits, i);
krista@2176	479	output_value <<= bitshift;
krista@2176	480	bitmask = get_bitmask(bitshift);
krista@2176	481	}
krista@2176	482
krista@2176	483	return get_base_36_rep(output_value, DESIRED_BITS);
krista@2176	484	}
krista@2176	485
krista@2176	486	static PEP_STATUS generate_message_id(message* msg) {
krista@2176	487
krista@2176	488	if (!msg \|\| !msg->from \|\| !msg->from->address)
krista@2176	489	return PEP_ILLEGAL_VALUE;
krista@2176	490
krista@2176	491	char* time_prefix = NULL;
krista@2176	492	char* random_id = NULL;
krista@2176	493	char* retval = NULL;
krista@2176	494
krista@2176	495	size_t buf_len = 2; // NUL + @
krista@2176	496
krista@2176	497	char* from_addr = msg->from->address;
krista@2176	498	char* domain_ptr = strstr(from_addr, "@");
krista@2176	499	if (!domain_ptr \|\| *(domain_ptr + 1) == '\0')
krista@2176	500	domain_ptr = "localhost";
krista@2176	501	else
krista@2176	502	domain_ptr++;
krista@2176	503
krista@2176	504	buf_len += strlen(domain_ptr);
krista@2176	505
krista@2176	506	if (msg->id)
krista@2176	507	free(msg->id);
krista@2176	508
krista@2176	509	msg->id = NULL;
krista@2176	510
krista@2176	511	time_t curr_time = time(NULL);
krista@2176	512
vb@2571	513	time_prefix = get_base_36_rep(curr_time, (int) ceil(log2((double) curr_time)));
krista@2176	514
krista@2176	515	if (!time_prefix)
krista@2176	516	goto enomem;
krista@2176	517
krista@2176	518	buf_len += strlen(time_prefix);
krista@2176	519
krista@2176	520	random_id = message_id_prand_part();
krista@2176	521
krista@2176	522	if (!random_id)
krista@2176	523	goto enomem;
krista@2176	524
krista@2176	525
krista@2176	526	buf_len += strlen(random_id);
krista@2176	527
krista@2176	528	// make a new uuid - depending on rand() impl, time precision, etc,
krista@2176	529	// we may still not be unique. We'd better make sure. So.
krista@2176	530	char new_uuid[37];
krista@2176	531	pEpUUID uuid;
krista@2176	532	uuid_generate_random(uuid);
krista@2176	533	uuid_unparse_upper(uuid, new_uuid);
krista@2176	534
krista@2176	535	buf_len += strlen(new_uuid);
krista@2176	536
krista@2176	537	buf_len += 6; // "pEp" and 3 '.' chars
krista@2176	538
krista@2176	539	retval = calloc(buf_len, 1);
krista@2176	540
krista@2176	541	if (!retval)
krista@2176	542	goto enomem;
krista@2176	543
krista@2176	544	strlcpy(retval, "pEp.", buf_len);
krista@2176	545	strlcat(retval, time_prefix, buf_len);
krista@2176	546	strlcat(retval, ".", buf_len);
krista@2176	547	strlcat(retval, random_id, buf_len);
krista@2176	548	strlcat(retval, ".", buf_len);
krista@2176	549	strlcat(retval, new_uuid, buf_len);
krista@2176	550	strlcat(retval, "@", buf_len);
krista@2176	551	strlcat(retval, domain_ptr, buf_len);
krista@2176	552
krista@2176	553	msg->id = retval;
krista@2176	554
krista@2176	555	free(time_prefix);
krista@2176	556	free(random_id);
krista@2176	557
krista@2176	558	return PEP_STATUS_OK;
krista@2176	559
krista@2176	560	enomem:
krista@2176	561	free(time_prefix);
krista@2176	562	free(random_id);
krista@2176	563	return PEP_OUT_OF_MEMORY;
krista@2176	564	}
krista@2176	565
krista@2078	566	/*
krista@2078	567	WARNING: For the moment, this only works for the first line of decrypted
krista@2078	568	plaintext because we don't need more. IF WE DO, THIS MUST BE EXPANDED, or
krista@2078	569	we need a delineated section to parse separately
krista@2078	570
krista@2078	571	Does case-insensitive compare of keys, so sending in a lower-cased
krista@2078	572	string constant saves a bit of computation
krista@2078	573	*/
krista@2078	574	static PEP_STATUS get_data_from_encapsulated_line(const char* plaintext, const char* key,
krista@2078	575	const size_t keylen, char** data,
krista@2078	576	char** modified_msg) {
krista@2078	577	char* _data = NULL;
krista@2078	578	char* _modified = NULL;
krista@2078	579
krista@2078	580	if (strncasecmp(plaintext, key, keylen) == 0) {
krista@2078	581	const char *line_end = strchr(plaintext, '\n');
krista@2078	582
krista@2078	583	if (line_end == NULL) {
krista@2078	584	_data = strdup(plaintext + keylen);
krista@2078	585	assert(_data);
krista@2078	586	if (_data == NULL)
krista@2078	587	return PEP_OUT_OF_MEMORY;
krista@2078	588	}
krista@2078	589	else {
krista@2078	590	size_t n = line_end - plaintext;
krista@2078	591
krista@2078	592	if (*(line_end - 1) == '\r')
krista@2078	593	_data = strndup(plaintext + keylen, n - (keylen + 1));
krista@2078	594	else
krista@2078	595	_data = strndup(plaintext + keylen, n - keylen);
krista@2078	596	assert(_data);
krista@2078	597	if (_data == NULL)
krista@2078	598	return PEP_OUT_OF_MEMORY;
krista@2078	599
krista@2078	600	while ((plaintext + n) && ((plaintext + n) == '\n' \|\| *(plaintext + n) == '\r'))
krista@2078	601	++n;
krista@2078	602
krista@2078	603	if (*(plaintext + n)) {
krista@2078	604	_modified = strdup(plaintext + n);
krista@2078	605	assert(_modified);
krista@2078	606	if (_modified == NULL)
krista@2078	607	return PEP_OUT_OF_MEMORY;
krista@2078	608	}
krista@2078	609	}
krista@2078	610	}
krista@2078	611	*data = _data;
krista@2078	612	*modified_msg = _modified;
krista@2078	613	return PEP_STATUS_OK;
krista@2078	614	}
krista@2078	615
krista@2078	616
krista@2120	617	static int separate_short_and_long(const char src, char shortmsg, char* msg_wrap_info, char **longmsg)
vb@82	618	{
vb@82	619	char *_shortmsg = NULL;
krista@2120	620	char *_msg_wrap_info = NULL;
vb@82	621	char *_longmsg = NULL;
vb@82	622
vb@82	623	assert(src);
vb@82	624	assert(shortmsg);
krista@2120	625	assert(msg_wrap_info);
vb@82	626	assert(longmsg);
krista@1427	627
krista@2120	628	if (src == NULL \|\| shortmsg == NULL \|\| msg_wrap_info == NULL \|\| longmsg == NULL)
krista@853	629	return -1;
vb@82	630
vb@82	631	*shortmsg = NULL;
vb@82	632	*longmsg = NULL;
krista@2120	633	*msg_wrap_info = NULL;
krista@2078	634
krista@2078	635	// We generated the input here. If we ever need more than one header value to be
krista@2078	636	// encapsulated and hidden in the encrypted text, we will have to modify this.
krista@2078	637	// As is, we're either doing this with a version 1.0 client, in which case
krista@2078	638	// the only encapsulated header value is subject, or 2.0+, in which the
krista@2120	639	// message wrap info is the only encapsulated header value. If we need this
krista@2078	640	// to be more complex, we're going to have to do something more elegant
krista@2078	641	// and efficient.
krista@2078	642	PEP_STATUS status = get_data_from_encapsulated_line(src, PEP_SUBJ_KEY_LC,
krista@2078	643	PEP_SUBJ_KEY_LEN,
krista@2078	644	&_shortmsg, &_longmsg);
krista@2078	645
krista@2078	646	if (_shortmsg) {
krista@2078	647	if (status == PEP_STATUS_OK)
krista@2078	648	*shortmsg = _shortmsg;
krista@2078	649	else
krista@2078	650	goto enomem;
vb@82	651	}
vb@82	652	else {
krista@2120	653	status = get_data_from_encapsulated_line(src, PEP_MSG_WRAP_KEY_LC,
krista@2120	654	PEP_MSG_WRAP_KEY_LEN,
krista@2120	655	&_msg_wrap_info, &_longmsg);
krista@2120	656	if (_msg_wrap_info) {
krista@2078	657	if (status == PEP_STATUS_OK)
krista@2120	658	*msg_wrap_info = _msg_wrap_info;
krista@2078	659	else
krista@2078	660	goto enomem;
krista@2078	661	}
krista@2078	662	}
krista@2078	663
krista@2078	664	// If there was no secret data hiding in the first line...
krista@2120	665	if (!_shortmsg && !_msg_wrap_info) {
vb@82	666	_longmsg = strdup(src);
vb@469	667	assert(_longmsg);
vb@82	668	if (_longmsg == NULL)
vb@82	669	goto enomem;
vb@82	670	}
krista@1852	671
vb@82	672	*longmsg = _longmsg;
vb@82	673
vb@82	674	return 0;
vb@82	675
vb@82	676	enomem:
vb@82	677	free(_shortmsg);
krista@2120	678	free(_msg_wrap_info);
vb@82	679	free(_longmsg);
vb@82	680
vb@82	681	return -1;
vb@82	682	}
vb@82	683
vb@113	684	static PEP_STATUS copy_fields(message dst, const message src)
vb@113	685	{
vb@164	686	assert(dst);
vb@164	687	assert(src);
vb@164	688
Edouard@840	689	if(!(dst && src))
Edouard@840	690	return PEP_ILLEGAL_VALUE;
Edouard@840	691
vb@113	692	free_timestamp(dst->sent);
vb@113	693	dst->sent = NULL;
vb@113	694	if (src->sent) {
vb@113	695	dst->sent = timestamp_dup(src->sent);
vb@113	696	if (dst->sent == NULL)
vb@113	697	return PEP_OUT_OF_MEMORY;
vb@113	698	}
vb@113	699
vb@113	700	free_timestamp(dst->recv);
vb@113	701	dst->recv = NULL;
vb@113	702	if (src->recv) {
vb@113	703	dst->recv = timestamp_dup(src->recv);
vb@113	704	if (dst->recv == NULL)
vb@113	705	return PEP_OUT_OF_MEMORY;
vb@113	706	}
vb@113	707
vb@113	708	free_identity(dst->from);
vb@113	709	dst->from = NULL;
vb@113	710	if (src->from) {
vb@113	711	dst->from = identity_dup(src->from);
vb@113	712	if (dst->from == NULL)
vb@113	713	return PEP_OUT_OF_MEMORY;
vb@113	714	}
vb@113	715
vb@113	716	free_identity_list(dst->to);
vb@113	717	dst->to = NULL;
vb@274	718	if (src->to && src->to->ident) {
vb@113	719	dst->to = identity_list_dup(src->to);
vb@113	720	if (dst->to == NULL)
vb@113	721	return PEP_OUT_OF_MEMORY;
vb@113	722	}
vb@113	723
vb@113	724	free_identity(dst->recv_by);
vb@113	725	dst->recv_by = NULL;
vb@113	726	if (src->recv_by) {
vb@113	727	dst->recv_by = identity_dup(src->recv_by);
vb@113	728	if (dst->recv_by == NULL)
vb@113	729	return PEP_OUT_OF_MEMORY;
vb@113	730	}
vb@113	731
vb@113	732	free_identity_list(dst->cc);
vb@113	733	dst->cc = NULL;
vb@274	734	if (src->cc && src->cc->ident) {
vb@113	735	dst->cc = identity_list_dup(src->cc);
vb@113	736	if (dst->cc == NULL)
vb@113	737	return PEP_OUT_OF_MEMORY;
vb@113	738	}
vb@113	739
vb@113	740	free_identity_list(dst->bcc);
vb@113	741	dst->bcc = NULL;
vb@274	742	if (src->bcc && src->bcc->ident) {
vb@113	743	dst->bcc = identity_list_dup(src->bcc);
vb@113	744	if (dst->bcc == NULL)
vb@113	745	return PEP_OUT_OF_MEMORY;
vb@113	746	}
vb@113	747
vb@113	748	free_identity_list(dst->reply_to);
vb@113	749	dst->reply_to = NULL;
vb@274	750	if (src->reply_to && src->reply_to->ident) {
vb@113	751	dst->reply_to = identity_list_dup(src->reply_to);
vb@113	752	if (dst->reply_to == NULL)
vb@113	753	return PEP_OUT_OF_MEMORY;
vb@113	754	}
vb@113	755
vb@113	756	free_stringlist(dst->in_reply_to);
vb@113	757	dst->in_reply_to = NULL;
vb@274	758	if (src->in_reply_to && src->in_reply_to->value) {
vb@113	759	dst->in_reply_to = stringlist_dup(src->in_reply_to);
vb@113	760	if (dst->in_reply_to == NULL)
vb@113	761	return PEP_OUT_OF_MEMORY;
vb@113	762	}
vb@113	763
vb@113	764	free_stringlist(dst->references);
vb@113	765	dst->references = NULL;
vb@113	766	if (src->references) {
vb@113	767	dst->references = stringlist_dup(src->references);
vb@113	768	if (dst->references == NULL)
vb@113	769	return PEP_OUT_OF_MEMORY;
vb@113	770	}
vb@113	771
vb@113	772	free_stringlist(dst->keywords);
vb@113	773	dst->keywords = NULL;
vb@274	774	if (src->keywords && src->keywords->value) {
vb@113	775	dst->keywords = stringlist_dup(src->keywords);
vb@113	776	if (dst->keywords == NULL)
vb@113	777	return PEP_OUT_OF_MEMORY;
vb@113	778	}
vb@113	779
vb@113	780	free(dst->comments);
vb@113	781	dst->comments = NULL;
vb@113	782	if (src->comments) {
vb@113	783	dst->comments = strdup(src->comments);
vb@113	784	assert(dst->comments);
vb@113	785	if (dst->comments == NULL)
vb@113	786	return PEP_OUT_OF_MEMORY;
vb@113	787	}
vb@113	788
vb@1092	789	free_stringpair_list(dst->opt_fields);
vb@1092	790	dst->opt_fields = NULL;
vb@1092	791	if (src->opt_fields) {
vb@1092	792	dst->opt_fields = stringpair_list_dup(src->opt_fields);
vb@1092	793	if (dst->opt_fields == NULL)
vb@1092	794	return PEP_OUT_OF_MEMORY;
vb@1092	795	}
vb@1092	796
vb@113	797	return PEP_STATUS_OK;
vb@113	798	}
vb@113	799
krista@2281	800	// FIXME: error mem leakage
krista@2121	801	static message* extract_minimal_envelope(const message* src,
krista@2121	802	PEP_msg_direction direct) {
krista@2152	803
krista@2121	804	message* envelope = new_message(direct);
krista@2121	805	if (!envelope)
krista@2121	806	return NULL;
krista@2121	807
vb@2834	808	envelope->shortmsg = _pEp_subj_copy();
krista@2121	809	if (!envelope->shortmsg)
krista@2281	810	goto enomem;
krista@2121	811
krista@2121	812	if (src->from) {
krista@2121	813	envelope->from = identity_dup(src->from);
krista@2121	814	if (!envelope->from)
krista@2281	815	goto enomem;
krista@2121	816	}
krista@2121	817
krista@2121	818	if (src->to) {
krista@2121	819	envelope->to = identity_list_dup(src->to);
krista@2121	820	if (!envelope->to)
krista@2281	821	goto enomem;
krista@2121	822	}
krista@2121	823
krista@2121	824	if (src->cc) {
krista@2121	825	envelope->cc = identity_list_dup(src->cc);
krista@2121	826	if (!envelope->cc)
krista@2281	827	goto enomem;
krista@2121	828	}
krista@2121	829
krista@2121	830	if (src->bcc) {
krista@2121	831	envelope->bcc = identity_list_dup(src->bcc);
krista@2121	832	if (!envelope->bcc)
krista@2281	833	goto enomem;
krista@2121	834	}
krista@2121	835
krista@2281	836	// For Outlook Force-Encryption
krista@2283	837	// const char* pull_keys[] = {"pEp-auto-consume",
krista@2283	838	// "pEp-force-protection",
krista@2283	839	// "X-pEp-Never-Unsecure"};
krista@2283	840	// int pull_keys_len = 3; // UPDATE WHEN MORE ADDED ABOVE
krista@2283	841	//
krista@2283	842	// int i = 0;
krista@2283	843	// stringpair_t* opt_add = NULL;
krista@2283	844	// for( ; i < pull_keys_len; i++) {
krista@2283	845	// opt_add = search_optfields(src, pull_keys[i]);
krista@2283	846	// stringpair_list_t* add_ptr = NULL;
krista@2283	847	// if (opt_add) {
krista@2283	848	// add_ptr = stringpair_list_add(src->opt_fields, stringpair_dup(opt_add));
krista@2283	849	// if (!add_ptr)
krista@2283	850	// goto enomem;
krista@2283	851	// }
krista@2283	852	// opt_add = NULL;
krista@2283	853	// add_ptr = NULL;
krista@2283	854	// }
krista@2281	855
krista@2121	856	envelope->enc_format = src->enc_format;
krista@2121	857
krista@2121	858	return envelope;
krista@2281	859
krista@2281	860	enomem:
krista@2281	861	free(envelope);
krista@2281	862	return NULL;
krista@2121	863	}
krista@2121	864
vb@81	865	static message * clone_to_empty_message(const message * src)
vb@80	866	{
vb@113	867	PEP_STATUS status;
vb@80	868	message * msg = NULL;
vb@80	869
vb@81	870	assert(src);
krista@853	871	if (src == NULL)
krista@853	872	return NULL;
vb@81	873
vb@113	874	msg = calloc(1, sizeof(message));
vb@113	875	assert(msg);
vb@80	876	if (msg == NULL)
vb@80	877	goto enomem;
vb@80	878
vb@82	879	msg->dir = src->dir;
vb@82	880
vb@113	881	status = copy_fields(msg, src);
vb@113	882	if (status != PEP_STATUS_OK)
vb@113	883	goto enomem;
vb@81	884
vb@80	885	return msg;
vb@80	886
vb@80	887	enomem:
vb@113	888	free_message(msg);
vb@80	889	return NULL;
vb@80	890	}
vb@80	891
krista@2121	892	static message* wrap_message_as_attachment(message* envelope,
krista@2800	893	message* attachment, message_wrap_type wrap_type, bool keep_orig_subject) {
krista@2121	894
krista@2176	895	if (!attachment)
krista@2176	896	return NULL;
krista@2176	897
krista@2152	898	message* _envelope = envelope;
krista@2155	899
krista@2176	900	PEP_STATUS status = PEP_STATUS_OK;
krista@2176	901
krista@2769	902	replace_opt_field(attachment, "X-pEp-Version", PEP_VERSION, true);
krista@2188	903
vb@3105	904	if (!_envelope && (wrap_type != PEP_message_transport)) {
krista@2121	905	_envelope = extract_minimal_envelope(attachment, PEP_dir_outgoing);
krista@2176	906	status = generate_message_id(_envelope);
krista@2176	907
krista@2204	908	if (status != PEP_STATUS_OK)
krista@2204	909	goto enomem;
krista@2176	910
krista@2800	911	const char* inner_type_string = "";
krista@2800	912	switch (wrap_type) {
krista@2800	913	case PEP_message_key_reset:
krista@2800	914	inner_type_string = "KEY_RESET";
krista@2800	915	break;
krista@2800	916	default:
krista@2800	917	inner_type_string = "INNER";
krista@2800	918	}
krista@2800	919	attachment->longmsg = encapsulate_message_wrap_info(inner_type_string, attachment->longmsg);
krista@2152	920	_envelope->longmsg = encapsulate_message_wrap_info("OUTER", _envelope->longmsg);
krista@2121	921	}
vb@3105	922	else if (_envelope) {
vb@3105	923	_envelope->longmsg = encapsulate_message_wrap_info("TRANSPORT", _envelope->longmsg);
vb@3105	924	}
krista@2152	925	else {
vb@3105	926	return NULL;
krista@2152	927	}
krista@2204	928
krista@2207	929	if (!attachment->id \|\| attachment->id[0] == '\0') {
krista@2204	930	free(attachment->id);
krista@2204	931	if (!_envelope->id) {
krista@2204	932	status = generate_message_id(_envelope);
krista@2204	933
krista@2204	934	if (status != PEP_STATUS_OK)
krista@2204	935	goto enomem;
krista@2204	936	}
krista@2204	937
krista@2204	938	attachment->id = strdup(_envelope->id);
krista@2204	939	}
krista@2204	940
krista@2121	941	char* message_text = NULL;
krista@2190	942
krista@2190	943	/* prevent introduction of pEp in inner message */
krista@2190	944
krista@2188	945	if (!attachment->shortmsg) {
krista@2188	946	attachment->shortmsg = strdup("");
krista@2188	947	if (!attachment->shortmsg)
krista@2188	948	goto enomem;
krista@2188	949	}
krista@2190	950
krista@2121	951	/* Turn message into a MIME-blob */
krista@2277	952	status = _mime_encode_message_internal(attachment, false, &message_text, true);
krista@2188	953
krista@2188	954	if (status != PEP_STATUS_OK)
krista@2188	955	goto enomem;
krista@2121	956
krista@2121	957	size_t message_len = strlen(message_text);
krista@2121	958
krista@2121	959	bloblist_t* message_blob = new_bloblist(message_text, message_len,
krista@2121	960	"message/rfc822", NULL);
krista@2121	961
krista@2152	962	_envelope->attachments = message_blob;
krista@2168	963	if (keep_orig_subject && attachment->shortmsg)
krista@2168	964	_envelope->shortmsg = strdup(attachment->shortmsg);
krista@2152	965	return _envelope;
krista@2188	966
krista@2188	967	enomem:
krista@2188	968	if (!envelope) {
krista@2204	969	free_message(_envelope);
krista@2188	970	}
krista@2192	971	return NULL;
krista@2121	972	}
krista@2121	973
vb@3678	974	static PEP_STATUS encrypt_PGP_inline(
vb@3678	975	PEP_SESSION session,
vb@3678	976	const message *src,
vb@3678	977	stringlist_t *keys,
vb@3693	978	message *dst,
vb@3693	979	PEP_encrypt_flags_t flags
vb@3678	980	)
vb@3678	981	{
vb@3678	982	char *ctext = NULL;
vb@3678	983	size_t csize = 0;
vb@3678	984
vb@3678	985	PEP_STATUS status = encrypt_and_sign(session, keys, src->longmsg,
vb@3678	986	strlen(src->longmsg), &ctext, &csize);
vb@3678	987	if (status)
vb@3678	988	return status;
vb@3678	989
vb@3694	990	dst->enc_format = PEP_enc_inline;
vb@3694	991
vb@3695	992	// shortmsg is being copied
vb@3678	993	if (src->shortmsg) {
vb@3678	994	dst->shortmsg = strdup(src->shortmsg);
vb@3678	995	assert(dst->shortmsg);
vb@3678	996	if (!dst->shortmsg)
vb@3678	997	return PEP_OUT_OF_MEMORY;
vb@3678	998	}
vb@3678	999
vb@3695	1000	// id is staying the same
vb@3695	1001	if (src->id) {
vb@3695	1002	dst->id = strdup(src->id);
vb@3695	1003	assert(dst->id);
vb@3695	1004	if (!dst->id)
vb@3695	1005	return PEP_OUT_OF_MEMORY;
vb@3695	1006	}
vb@3695	1007
vb@3685	1008	char *_ctext = realloc(ctext, csize + 1);
vb@3685	1009	assert(_ctext);
vb@3685	1010	if (!_ctext)
vb@3685	1011	return PEP_OUT_OF_MEMORY;
vb@3685	1012	_ctext[csize] = 0;
vb@3685	1013
vb@3685	1014	dst->longmsg = _ctext;
vb@3693	1015
vb@3694	1016	// longmsg_formatted is unsupported
vb@3694	1017
vb@3693	1018	// attachments are going unencrypted
vb@3693	1019	bloblist_t *bl = bloblist_dup(src->attachments);
vb@3693	1020	if (!bl)
vb@3693	1021	return PEP_OUT_OF_MEMORY;
vb@3693	1022	dst->attachments = bl;
vb@3693	1023
vb@3678	1024	return PEP_STATUS_OK;
vb@3678	1025	}
vb@3678	1026
vb@260	1027	static PEP_STATUS encrypt_PGP_MIME(
vb@311	1028	PEP_SESSION session,
vb@311	1029	const message *src,
vb@311	1030	stringlist_t *keys,
krista@1639	1031	message *dst,
krista@1639	1032	PEP_encrypt_flags_t flags
vb@260	1033	)
vb@260	1034	{
vb@260	1035	PEP_STATUS status = PEP_STATUS_OK;
krista@1987	1036	bool free_ptext = false;
vb@468	1037	char *ptext = NULL;
Edouard@882	1038	char *ctext = NULL;
vb@260	1039	char *mimetext = NULL;
vb@260	1040	size_t csize;
vb@260	1041	assert(dst->longmsg == NULL);
vb@260	1042	dst->enc_format = PEP_enc_PGP_MIME;
krista@2045	1043
krista@2120	1044	if (src->shortmsg)
krista@2120	1045	dst->shortmsg = strdup(src->shortmsg);
krista@2120	1046
vb@260	1047	message *_src = calloc(1, sizeof(message));
vb@260	1048	assert(_src);
vb@260	1049	if (_src == NULL)
vb@260	1050	goto enomem;
krista@2155	1051	// _src->longmsg = ptext;
krista@2155	1052	_src->longmsg = src->longmsg;
vb@260	1053	_src->longmsg_formatted = src->longmsg_formatted;
vb@260	1054	_src->attachments = src->attachments;
vb@260	1055	_src->enc_format = PEP_enc_none;
krista@2280	1056	bool mime_encode = !is_wrapper(_src);
krista@2280	1057	status = _mime_encode_message_internal(_src, true, &mimetext, mime_encode);
vb@260	1058	assert(status == PEP_STATUS_OK);
krista@853	1059	if (status != PEP_STATUS_OK)
vb@2834	1060	goto pEp_error;
krista@1427	1061
krista@1987	1062	if (free_ptext){
krista@1987	1063	free(ptext);
krista@1987	1064	free_ptext=0;
krista@1987	1065	}
vb@260	1066	free(_src);
krista@2231	1067	_src = NULL;
vb@260	1068	assert(mimetext);
vb@260	1069	if (mimetext == NULL)
vb@2834	1070	goto pEp_error;
vb@260	1071
krista@1639	1072	if (flags & PEP_encrypt_flag_force_unsigned)
krista@1639	1073	status = encrypt_only(session, keys, mimetext, strlen(mimetext),
krista@1639	1074	&ctext, &csize);
krista@1639	1075	else
krista@1639	1076	status = encrypt_and_sign(session, keys, mimetext, strlen(mimetext),
krista@1639	1077	&ctext, &csize);
vb@260	1078	free(mimetext);
vb@260	1079	if (ctext == NULL)
vb@2834	1080	goto pEp_error;
vb@260	1081
vb@260	1082	dst->longmsg = strdup("this message was encrypted with p≡p "
lix@487	1083	"https://pEp-project.org");
vb@469	1084	assert(dst->longmsg);
vb@260	1085	if (dst->longmsg == NULL)
vb@260	1086	goto enomem;
vb@260	1087
vb@260	1088	char *v = strdup("Version: 1");
vb@469	1089	assert(v);
vb@260	1090	if (v == NULL)
vb@260	1091	goto enomem;
vb@260	1092
roker@802	1093	bloblist_t *_a = new_bloblist(v, strlen(v), "application/pgp-encrypted", NULL);
vb@260	1094	if (_a == NULL)
vb@260	1095	goto enomem;
vb@260	1096	dst->attachments = _a;
vb@288	1097
Edouard@882	1098	_a = bloblist_add(_a, ctext, csize, "application/octet-stream",
krista@1873	1099	"file://msg.asc");
vb@260	1100	if (_a == NULL)
vb@260	1101	goto enomem;
vb@260	1102
vb@260	1103	return PEP_STATUS_OK;
vb@260	1104
vb@260	1105	enomem:
vb@260	1106	status = PEP_OUT_OF_MEMORY;
vb@260	1107
vb@2834	1108	pEp_error:
vb@260	1109	if (free_ptext)
vb@260	1110	free(ptext);
krista@2231	1111	free(_src);
Edouard@882	1112	free(ctext);
vb@260	1113	return status;
vb@260	1114	}
vb@260	1115
krista@3254	1116	static bool _has_PGP_MIME_format(message* msg) {
krista@3254	1117	if (!msg \|\| !msg->attachments \|\| !msg->attachments->next)
krista@3254	1118	return false;
krista@3254	1119	if (msg->attachments->next->next)
krista@3254	1120	return false;
krista@3254	1121	if (!msg->attachments->mime_type \|\|
krista@3254	1122	strcmp(msg->attachments->mime_type, "application/pgp-encrypted") != 0)
krista@3254	1123	return false;
krista@3254	1124	if (!msg->attachments->next->mime_type \|\|
krista@3254	1125	strcmp(msg->attachments->next->mime_type, "application/octet-stream") != 0)
krista@3254	1126	return false;
krista@3254	1127	return true;
krista@3254	1128	}
vb@311	1129
vb@3243	1130	static PEP_rating _rating(PEP_comm_type ct)
vb@311	1131	{
vb@311	1132	if (ct == PEP_ct_unknown)
vb@311	1133	return PEP_rating_undefined;
krista@1427	1134
krista@1243	1135	else if (ct == PEP_ct_key_not_found)
krista@1243	1136	return PEP_rating_have_no_key;
krista@1427	1137
krista@2593	1138	else if (ct == PEP_ct_compromised)
vb@311	1139	return PEP_rating_under_attack;
vb@311	1140
Edouard@442	1141	else if (ct == PEP_ct_mistrusted)
Edouard@442	1142	return PEP_rating_mistrust;
krista@1427	1143
vb@486	1144	if (ct == PEP_ct_no_encryption \|\| ct == PEP_ct_no_encrypted_channel \|\|
vb@3243	1145	ct == PEP_ct_my_key_not_included)
vb@486	1146	return PEP_rating_unencrypted;
vb@486	1147
vb@486	1148	if (ct >= PEP_ct_confirmed_enc_anon)
vb@311	1149	return PEP_rating_trusted_and_anonymized;
vb@311	1150
vb@311	1151	else if (ct >= PEP_ct_strong_encryption)
vb@311	1152	return PEP_rating_trusted;
vb@311	1153
vb@311	1154	else if (ct >= PEP_ct_strong_but_unconfirmed && ct < PEP_ct_confirmed)
vb@311	1155	return PEP_rating_reliable;
vb@311	1156
vb@311	1157	else
vb@311	1158	return PEP_rating_unreliable;
vb@311	1159	}
vb@311	1160
vb@311	1161	static bool is_encrypted_attachment(const bloblist_t *blob)
vb@311	1162	{
vb@311	1163	assert(blob);
vb@311	1164
krista@1873	1165	if (blob == NULL \|\| blob->filename == NULL \|\| is_cid_uri(blob->filename))
vb@311	1166	return false;
krista@1427	1167
roker@1559	1168	char *ext = strrchr(blob->filename, '.');
vb@311	1169	if (ext == NULL)
vb@311	1170	return false;
vb@311	1171
vb@320	1172	if (strcmp(blob->mime_type, "application/octet-stream") == 0) {
krista@2757	1173	if (strcmp(ext, ".pgp") == 0 \|\| strcmp(ext, ".gpg") == 0)
vb@311	1174	return true;
vb@311	1175	}
krista@2757	1176	if (strcmp(ext, ".asc") == 0 && blob->size > 0) {
krista@2757	1177	const char* pubk_needle = "BEGIN PGP PUBLIC KEY";
krista@2757	1178	size_t pubk_needle_size = strlen(pubk_needle);
krista@2757	1179	const char* privk_needle = "BEGIN PGP PRIVATE KEY";
krista@2757	1180	size_t privk_needle_size = strlen(privk_needle);
krista@2757	1181
krista@2757	1182	if (!(_memnmemn(pubk_needle, pubk_needle_size, blob->value, blob->size)) &&
krista@2757	1183	!(_memnmemn(privk_needle, privk_needle_size, blob->value, blob->size)))
krista@2757	1184	return true;
vb@311	1185	}
vb@311	1186
vb@311	1187	return false;
vb@311	1188	}
vb@311	1189
vb@311	1190	static bool is_encrypted_html_attachment(const bloblist_t *blob)
vb@311	1191	{
vb@311	1192	assert(blob);
vb@311	1193	assert(blob->filename);
krista@1873	1194	if (blob == NULL \|\| blob->filename == NULL \|\| is_cid_uri(blob->filename))
krista@853	1195	return false;
vb@311	1196
krista@1873	1197	const char* bare_filename_ptr = _get_resource_ptr_noown(blob->filename);
vb@2974	1198	bare_filename_ptr += strlen(bare_filename_ptr) - 15;
krista@1873	1199	if (strncmp(bare_filename_ptr, "PGPexch.htm.", 12) == 0) {
krista@1873	1200	if (strcmp(bare_filename_ptr + 11, ".pgp") == 0 \|\|
krista@1873	1201	strcmp(bare_filename_ptr + 11, ".asc") == 0)
vb@311	1202	return true;
vb@311	1203	}
vb@311	1204
vb@311	1205	return false;
vb@311	1206	}
vb@311	1207
vb@311	1208	static char * without_double_ending(const char *filename)
vb@311	1209	{
vb@311	1210	assert(filename);
krista@1873	1211	if (filename == NULL \|\| is_cid_uri(filename))
krista@853	1212	return NULL;
krista@1427	1213
roker@862	1214	char *ext = strrchr(filename, '.');
vb@311	1215	if (ext == NULL)
vb@311	1216	return NULL;
vb@311	1217
vb@469	1218	char *result = strndup(filename, ext - filename);
vb@469	1219	assert(result);
vb@469	1220	return result;
vb@311	1221	}
vb@311	1222
vb@1004	1223	static PEP_rating decrypt_rating(PEP_STATUS status)
vb@311	1224	{
vb@311	1225	switch (status) {
vb@311	1226	case PEP_UNENCRYPTED:
vb@311	1227	case PEP_VERIFIED:
vb@311	1228	case PEP_VERIFY_NO_KEY:
vb@311	1229	case PEP_VERIFIED_AND_TRUSTED:
vb@311	1230	return PEP_rating_unencrypted;
vb@311	1231
vb@311	1232	case PEP_DECRYPTED:
krista@1748	1233	case PEP_DECRYPT_SIGNATURE_DOES_NOT_MATCH:
vb@311	1234	return PEP_rating_unreliable;
vb@311	1235
vb@311	1236	case PEP_DECRYPTED_AND_VERIFIED:
vb@311	1237	return PEP_rating_reliable;
vb@311	1238
vb@311	1239	case PEP_DECRYPT_NO_KEY:
vb@311	1240	return PEP_rating_have_no_key;
vb@311	1241
vb@311	1242	case PEP_DECRYPT_WRONG_FORMAT:
vb@311	1243	case PEP_CANNOT_DECRYPT_UNKNOWN:
vb@311	1244	return PEP_rating_cannot_decrypt;
vb@311	1245
vb@311	1246	default:
vb@311	1247	return PEP_rating_undefined;
vb@311	1248	}
vb@311	1249	}
vb@311	1250
vb@1004	1251	static PEP_rating key_rating(PEP_SESSION session, const char *fpr)
vb@311	1252	{
vb@311	1253
vb@311	1254	assert(session);
vb@311	1255	assert(fpr);
krista@1427	1256
krista@853	1257	if (session == NULL \|\| fpr == NULL)
krista@853	1258	return PEP_rating_undefined;
vb@311	1259
edouard@1632	1260
edouard@1632	1261	PEP_comm_type bare_comm_type = PEP_ct_unknown;
edouard@1876	1262	PEP_comm_type resulting_comm_type = PEP_ct_unknown;
krista@1615	1263	PEP_STATUS status = get_key_rating(session, fpr, &bare_comm_type);
vb@311	1264	if (status != PEP_STATUS_OK)
vb@311	1265	return PEP_rating_undefined;
vb@311	1266
edouard@1876	1267	PEP_comm_type least_comm_type = PEP_ct_unknown;
edouard@1876	1268	least_trust(session, fpr, &least_comm_type);
edouard@1876	1269
edouard@1876	1270	if (least_comm_type == PEP_ct_unknown) {
edouard@1876	1271	resulting_comm_type = bare_comm_type;
edouard@1876	1272	} else if (least_comm_type < PEP_ct_strong_but_unconfirmed \|\|
edouard@1876	1273	bare_comm_type < PEP_ct_strong_but_unconfirmed) {
edouard@1876	1274	// take minimum if anything bad
edouard@1876	1275	resulting_comm_type = least_comm_type < bare_comm_type ?
edouard@1876	1276	least_comm_type :
edouard@1876	1277	bare_comm_type;
edouard@1632	1278	} else {
edouard@1876	1279	resulting_comm_type = least_comm_type;
edouard@1632	1280	}
vb@3243	1281	return _rating(resulting_comm_type);
vb@311	1282	}
vb@311	1283
krista@1579	1284	static PEP_rating worst_rating(PEP_rating rating1, PEP_rating rating2) {
krista@1579	1285	return ((rating1 < rating2) ? rating1 : rating2);
krista@1579	1286	}
krista@1579	1287
edouard@1876	1288	static PEP_rating keylist_rating(PEP_SESSION session, stringlist_t keylist, char sender_fpr, PEP_rating sender_rating)
vb@311	1289	{
edouard@1876	1290	PEP_rating rating = sender_rating;
vb@311	1291
vb@311	1292	assert(keylist && keylist->value);
vb@311	1293	if (keylist == NULL \|\| keylist->value == NULL)
vb@486	1294	return PEP_rating_undefined;
vb@311	1295
vb@311	1296	stringlist_t *_kl;
vb@311	1297	for (_kl = keylist; _kl && _kl->value; _kl = _kl->next) {
edouard@1876	1298
edouard@1876	1299	// Ignore own fpr
edouard@1876	1300	if(_same_fpr(sender_fpr, strlen(sender_fpr), _kl->value, strlen(_kl->value)))
edouard@1876	1301	continue;
vb@311	1302
vb@1004	1303	PEP_rating _rating_ = key_rating(session, _kl->value);
krista@1579	1304
vb@1004	1305	if (_rating_ <= PEP_rating_mistrust)
vb@1004	1306	return _rating_;
krista@1610	1307
vb@3249	1308	rating = worst_rating(rating, _rating_);
vb@311	1309	}
vb@311	1310
vb@1004	1311	return rating;
vb@311	1312	}
vb@311	1313
krista@2461	1314	// Internal function WARNING:
krista@2461	1315	// Only call this on an ident that might have its FPR set from retrieval!
krista@2461	1316	// (or on one without an fpr)
krista@2461	1317	// We do not want myself() setting the fpr here.
vb@311	1318	static PEP_comm_type _get_comm_type(
vb@311	1319	PEP_SESSION session,
vb@311	1320	PEP_comm_type max_comm_type,
vb@311	1321	pEp_identity *ident
vb@311	1322	)
vb@311	1323	{
krista@2461	1324	PEP_STATUS status = PEP_STATUS_OK;
vb@311	1325
krista@2593	1326	if (max_comm_type == PEP_ct_compromised)
krista@2593	1327	return PEP_ct_compromised;
krista@1427	1328
Edouard@510	1329	if (max_comm_type == PEP_ct_mistrusted)
Edouard@510	1330	return PEP_ct_mistrusted;
vb@311	1331
krista@2461	1332	if (!is_me(session, ident))
krista@2461	1333	status = update_identity(session, ident);
krista@2461	1334	else
krista@3346	1335	// ???
krista@3346	1336	status = _myself(session, ident, false, false, true);
krista@2461	1337
vb@311	1338	if (status == PEP_STATUS_OK) {
krista@2593	1339	if (ident->comm_type == PEP_ct_compromised)
krista@2593	1340	return PEP_ct_compromised;
Edouard@510	1341	else if (ident->comm_type == PEP_ct_mistrusted)
Edouard@510	1342	return PEP_ct_mistrusted;
vb@311	1343	else
vb@2830	1344	return MIN(max_comm_type, ident->comm_type);
vb@311	1345	}
vb@311	1346	else {
vb@311	1347	return PEP_ct_unknown;
vb@311	1348	}
vb@311	1349	}
vb@311	1350
vb@2929	1351	static PEP_comm_type _get_comm_type_preview(
vb@2929	1352	PEP_SESSION session,
vb@2929	1353	PEP_comm_type max_comm_type,
vb@2929	1354	pEp_identity *ident
vb@2929	1355	)
vb@2929	1356	{
vb@2929	1357	assert(session);
vb@2929	1358	assert(ident);
vb@2929	1359
vb@2929	1360	PEP_STATUS status = PEP_STATUS_OK;
vb@2929	1361
vb@2929	1362	if (max_comm_type == PEP_ct_compromised)
vb@2929	1363	return PEP_ct_compromised;
vb@2929	1364
vb@2929	1365	if (max_comm_type == PEP_ct_mistrusted)
vb@2929	1366	return PEP_ct_mistrusted;
vb@2929	1367
vb@2929	1368	PEP_comm_type comm_type = PEP_ct_unknown;
vb@2929	1369	if (ident && !EMPTYSTR(ident->address) && !EMPTYSTR(ident->user_id)) {
vb@2929	1370	pEp_identity *ident2;
vb@2929	1371	status = get_identity(session, ident->address, ident->user_id, &ident2);
vb@2929	1372	comm_type = ident2 ? ident2->comm_type : PEP_ct_unknown;
vb@2929	1373	free_identity(ident2);
vb@2929	1374
vb@2929	1375	if (status == PEP_STATUS_OK) {
vb@2929	1376	if (comm_type == PEP_ct_compromised)
vb@2929	1377	comm_type = PEP_ct_compromised;
vb@2929	1378	else if (comm_type == PEP_ct_mistrusted)
vb@2929	1379	comm_type = PEP_ct_mistrusted;
vb@2929	1380	else
vb@2929	1381	comm_type = _MIN(max_comm_type, comm_type);
vb@2929	1382	}
vb@2929	1383	else {
vb@2929	1384	comm_type = PEP_ct_unknown;
vb@2929	1385	}
vb@2929	1386	}
vb@2929	1387	return comm_type;
vb@2929	1388	}
vb@2929	1389
vb@3345	1390	// static void free_bl_entry(bloblist_t *bl)
vb@3345	1391	// {
vb@3345	1392	// if (bl) {
vb@3345	1393	// free(bl->value);
vb@3345	1394	// free(bl->mime_type);
vb@3345	1395	// free(bl->filename);
vb@3345	1396	// free(bl);
vb@3345	1397	// }
vb@3345	1398	// }
vb@731	1399
vb@731	1400	static bool is_key(const bloblist_t *bl)
vb@731	1401	{
Edouard@728	1402	return (// workaround for Apple Mail bugs
Edouard@728	1403	(is_mime_type(bl, "application/x-apple-msg-attachment") &&
Edouard@728	1404	is_fileending(bl, ".asc")) \|\|
Edouard@728	1405	// as binary, by file name
Edouard@728	1406	((bl->mime_type == NULL \|\|
Edouard@728	1407	is_mime_type(bl, "application/octet-stream")) &&
Edouard@728	1408	(is_fileending(bl, ".pgp") \|\| is_fileending(bl, ".gpg") \|\|
Edouard@728	1409	is_fileending(bl, ".key") \|\| is_fileending(bl, ".asc"))) \|\|
krista@1427	1410	// explicit mime type
Edouard@728	1411	is_mime_type(bl, "application/pgp-keys") \|\|
Edouard@728	1412	// as text, by file name
Edouard@728	1413	(is_mime_type(bl, "text/plain") &&
Edouard@728	1414	(is_fileending(bl, ".pgp") \|\| is_fileending(bl, ".gpg") \|\|
Edouard@728	1415	is_fileending(bl, ".key") \|\| is_fileending(bl, ".asc")))
Edouard@728	1416	);
vb@731	1417	}
vb@731	1418
vb@3345	1419	// static void remove_attached_keys(message *msg)
vb@3345	1420	// {
vb@3345	1421	// if (msg) {
vb@3345	1422	// bloblist_t *last = NULL;
vb@3345	1423	// for (bloblist_t *bl = msg->attachments; bl && bl->value; ) {
vb@3345	1424	// bloblist_t *next = bl->next;
vb@3345	1425	//
vb@3345	1426	// if (is_key(bl)) {
vb@3345	1427	// if (last) {
vb@3345	1428	// last->next = next;
vb@3345	1429	// }
vb@3345	1430	// else {
vb@3345	1431	// msg->attachments = next;
vb@3345	1432	// }
vb@3345	1433	// free_bl_entry(bl);
vb@3345	1434	// }
vb@3345	1435	// else {
vb@3345	1436	// last = bl;
vb@3345	1437	// }
vb@3345	1438	// bl = next;
vb@3345	1439	// }
vb@3345	1440	// }
vb@3345	1441	// }
vb@731	1442
krista@3254	1443	static bool compare_first_n_bytes(const char* first, const char* second, size_t n) {
krista@3254	1444	int i;
krista@3254	1445	for (i = 0; i < n; i++) {
krista@3254	1446	char num1 = *first;
krista@3254	1447	char num2 = *second;
krista@3254	1448
krista@3254	1449	if (num1 != num2)
krista@3254	1450	return false;
krista@3254	1451
krista@3254	1452	if (num1 == '\0') {
krista@3254	1453	if (num2 == '\0')
krista@3254	1454	return true;
krista@3254	1455	}
krista@3254	1456	first++;
krista@3254	1457	second++;
krista@3254	1458	}
krista@3254	1459	return true;
krista@3254	1460	}
krista@3254	1461
Edouard@734	1462	bool import_attached_keys(
krista@1427	1463	PEP_SESSION session,
krista@3254	1464	message *msg,
Edouard@728	1465	identity_list **private_idents
Edouard@728	1466	)
vb@311	1467	{
vb@311	1468	assert(session);
vb@311	1469	assert(msg);
krista@1427	1470
krista@853	1471	if (session == NULL \|\| msg == NULL)
krista@853	1472	return false;
vb@311	1473
vb@731	1474	bool remove = false;
vb@731	1475
vb@908	1476	int i = 0;
krista@3254	1477
krista@3254	1478	bloblist_t* prev = NULL;
krista@3254	1479
krista@3254	1480	bool do_not_advance = false;
krista@3254	1481	const char* pubkey_header = "-----BEGIN PGP PUBLIC KEY BLOCK-----";
krista@3254	1482	const char* privkey_header = "-----BEGIN PGP PRIVATE KEY BLOCK-----";
krista@3254	1483	// Hate my magic numbers at your peril, but I don't want a strlen each time
krista@3254	1484	const size_t PUBKEY_HSIZE = 36;
krista@3254	1485	const size_t PRIVKEY_HSIZE = 37;
krista@3254	1486
roker@1559	1487	for (bloblist_t *bl = msg->attachments; i < MAX_KEYS_TO_IMPORT && bl && bl->value;
krista@3254	1488	i++)
Edouard@747	1489	{
krista@3263	1490	do_not_advance = false;
vb@908	1491	if (bl && bl->value && bl->size && bl->size < MAX_KEY_SIZE
krista@1427	1492	&& is_key(bl))
Edouard@728	1493	{
krista@2587	1494	char* blob_value = bl->value;
krista@2587	1495	size_t blob_size = bl->size;
krista@2587	1496	bool free_blobval = false;
krista@2587	1497
krista@2757	1498	if (is_encrypted_attachment(bl)) {
krista@2753	1499
krista@2587	1500	char* bl_ptext = NULL;
krista@2587	1501	size_t bl_psize = 0;
krista@2587	1502	stringlist_t* bl_keylist = NULL;
krista@2587	1503	PEP_STATUS _status = decrypt_and_verify(session,
krista@2587	1504	blob_value, blob_size,
krista@2587	1505	NULL, 0,
krista@2587	1506	&bl_ptext, &bl_psize,
krista@2978	1507	&bl_keylist,
krista@2978	1508	NULL);
krista@2587	1509	free_stringlist(bl_keylist); // we don't care about key encryption as long as we decrypt
krista@2587	1510	if (_status == PEP_DECRYPTED \|\| _status == PEP_DECRYPTED_AND_VERIFIED) {
krista@2587	1511	free_blobval = true;
krista@2587	1512	blob_value = bl_ptext;
krista@2587	1513	blob_size = bl_psize;
krista@2587	1514	}
krista@2587	1515	else {
krista@2587	1516	// This is an encrypted attachment we can do nothing with.
krista@2587	1517	// We shouldn't delete it or import it, because we can't
krista@2587	1518	// do the latter.
krista@2587	1519	free(bl_ptext);
krista@3254	1520	prev = bl;
krista@3256	1521	bl = bl->next;
krista@2587	1522	continue;
krista@2587	1523	}
krista@2587	1524	}
edouard@1745	1525	identity_list *local_private_idents = NULL;
krista@3254	1526	PEP_STATUS import_status = import_key(session, blob_value, blob_size, &local_private_idents);
krista@3254	1527	bloblist_t* to_delete = NULL;
krista@3254	1528	switch (import_status) {
krista@3254	1529	case PEP_NO_KEY_IMPORTED:
krista@3254	1530	break;
krista@3254	1531	case PEP_KEY_IMPORT_STATUS_UNKNOWN:
krista@3254	1532	// We'll delete armoured stuff, at least
krista@3254	1533	if (blob_size <= PUBKEY_HSIZE)
krista@3254	1534	break;
krista@3254	1535	if ((!compare_first_n_bytes(pubkey_header, (const char*)blob_value, PUBKEY_HSIZE)) &&
krista@3254	1536	(!compare_first_n_bytes(privkey_header, (const char*)blob_value, PRIVKEY_HSIZE)))
krista@3254	1537	break;
krista@3254	1538	// else fall through and delete
krista@3254	1539	case PEP_KEY_IMPORTED:
vb@3655	1540	case PEP_STATUS_OK:
krista@3254	1541	to_delete = bl;
krista@3254	1542	if (prev)
krista@3254	1543	prev->next = bl->next;
krista@3254	1544	else
krista@3254	1545	msg->attachments = bl->next;
krista@3254	1546	bl = bl->next;
krista@3254	1547	to_delete->next = NULL;
krista@3254	1548	free_bloblist(to_delete);
krista@3254	1549	do_not_advance = true;
krista@3254	1550	remove = true;
krista@3254	1551	break;
krista@3254	1552	default:
krista@3254	1553	// bad stuff, but ok.
krista@3254	1554	break;
krista@3254	1555	}
edouard@1863	1556	if (private_idents && *private_idents == NULL && local_private_idents != NULL)
edouard@1745	1557	*private_idents = local_private_idents;
edouard@1745	1558	else
edouard@1745	1559	free_identity_list(local_private_idents);
krista@2587	1560	if (free_blobval)
krista@2587	1561	free(blob_value);
vb@311	1562	}
krista@3254	1563	if (!do_not_advance) {
krista@3254	1564	prev = bl;
krista@3254	1565	bl = bl->next;
krista@3254	1566	}
vb@311	1567	}
vb@731	1568	return remove;
vb@311	1569	}
vb@311	1570
Edouard@694	1571
Edouard@694	1572	PEP_STATUS _attach_key(PEP_SESSION session, const char* fpr, message *msg)
vb@311	1573	{
roker@1559	1574	char *keydata = NULL;
vb@311	1575	size_t size;
vb@311	1576
Edouard@694	1577	PEP_STATUS status = export_key(session, fpr, &keydata, &size);
Edouard@694	1578	assert(status == PEP_STATUS_OK);
Edouard@694	1579	if (status != PEP_STATUS_OK)
Edouard@694	1580	return status;
Edouard@694	1581	assert(size);
krista@1427	1582
roker@1559	1583	bloblist_t *bl = bloblist_add(msg->attachments, keydata, size, "application/pgp-keys",
krista@1873	1584	"file://pEpkey.asc");
krista@1427	1585
Edouard@694	1586	if (msg->attachments == NULL && bl)
Edouard@694	1587	msg->attachments = bl;
Edouard@694	1588
Edouard@694	1589	return PEP_STATUS_OK;
Edouard@694	1590	}
Edouard@694	1591
Edouard@694	1592	#define ONE_WEEK (7243600)
Edouard@694	1593
Edouard@694	1594	void attach_own_key(PEP_SESSION session, message *msg)
Edouard@694	1595	{
vb@311	1596	assert(session);
vb@311	1597	assert(msg);
krista@1427	1598
Edouard@558	1599	if (msg->dir == PEP_dir_incoming)
Edouard@558	1600	return;
Edouard@558	1601
vb@311	1602	assert(msg->from && msg->from->fpr);
vb@311	1603	if (msg->from == NULL \|\| msg->from->fpr == NULL)
vb@311	1604	return;
vb@311	1605
Edouard@694	1606	if(_attach_key(session, msg->from->fpr, msg) != PEP_STATUS_OK)
vb@311	1607	return;
krista@1427	1608
Edouard@694	1609	char *revoked_fpr = NULL;
Edouard@694	1610	uint64_t revocation_date = 0;
krista@1427	1611
Edouard@694	1612	if(get_revoked(session, msg->from->fpr,
Edouard@694	1613	&revoked_fpr, &revocation_date) == PEP_STATUS_OK &&
Edouard@694	1614	revoked_fpr != NULL)
Edouard@694	1615	{
Edouard@694	1616	time_t now = time(NULL);
krista@1427	1617
Edouard@694	1618	if (now < (time_t)revocation_date + ONE_WEEK)
Edouard@694	1619	{
Edouard@694	1620	_attach_key(session, revoked_fpr, msg);
Edouard@694	1621	}
Edouard@694	1622	}
Edouard@694	1623	free(revoked_fpr);
vb@311	1624	}
vb@311	1625
vb@311	1626	PEP_cryptotech determine_encryption_format(message *msg)
vb@311	1627	{
vb@311	1628	assert(msg);
krista@1427	1629
vb@311	1630	if (is_PGP_message_text(msg->longmsg)) {
vb@3678	1631	msg->enc_format = PEP_enc_inline;
vb@311	1632	return PEP_crypt_OpenPGP;
vb@311	1633	}
vb@311	1634	else if (msg->attachments && msg->attachments->next &&
vb@311	1635	is_mime_type(msg->attachments, "application/pgp-encrypted") &&
vb@311	1636	is_PGP_message_text(msg->attachments->next->value)
vb@311	1637	) {
vb@311	1638	msg->enc_format = PEP_enc_PGP_MIME;
vb@311	1639	return PEP_crypt_OpenPGP;
vb@311	1640	}
edouard@1557	1641	else if (msg->attachments && msg->attachments->next &&
edouard@1557	1642	is_mime_type(msg->attachments->next, "application/pgp-encrypted") &&
edouard@1557	1643	is_PGP_message_text(msg->attachments->value)
edouard@1557	1644	) {
edouard@1557	1645	msg->enc_format = PEP_enc_PGP_MIME_Outlook1;
edouard@1557	1646	return PEP_crypt_OpenPGP;
edouard@1557	1647	}
vb@311	1648	else {
vb@311	1649	msg->enc_format = PEP_enc_none;
vb@311	1650	return PEP_crypt_none;
vb@311	1651	}
vb@311	1652	}
vb@311	1653
krista@2617	1654	static void _cleanup_src(message* src, bool remove_attached_key) {
krista@2617	1655	assert(src);
krista@2617	1656
krista@2617	1657	if (!src)
krista@2617	1658	return;
krista@2617	1659
krista@2617	1660	char* longmsg = NULL;
krista@2617	1661	char* shortmsg = NULL;
krista@2617	1662	char* msg_wrap_info = NULL;
krista@3318	1663	if (src->longmsg)
krista@3318	1664	separate_short_and_long(src->longmsg, &shortmsg, &msg_wrap_info,
krista@3318	1665	&longmsg);
krista@2617	1666	if (longmsg) {
krista@2617	1667	free(src->longmsg);
krista@2617	1668	free(shortmsg);
krista@2617	1669	free(msg_wrap_info);
krista@2617	1670	src->longmsg = longmsg;
krista@2617	1671	}
krista@2617	1672	if (remove_attached_key) {
krista@2617	1673	// End of the attachment list
krista@2617	1674	if (src->attachments) {
krista@2617	1675	bloblist_t* tmp = src->attachments;
krista@2617	1676	while (tmp->next && tmp->next->next) {
krista@2617	1677	tmp = tmp->next;
krista@2617	1678	}
krista@2617	1679	free_bloblist(tmp->next);
krista@2617	1680	tmp->next = NULL;
krista@2617	1681	}
krista@2617	1682	}
krista@2617	1683	}
krista@2617	1684
vb@48	1685	DYNAMIC_API PEP_STATUS encrypt_message(
vb@37	1686	PEP_SESSION session,
vb@113	1687	message *src,
vb@37	1688	stringlist_t * extra,
vb@38	1689	message **dst,
vb@939	1690	PEP_enc_format enc_format,
vb@939	1691	PEP_encrypt_flags_t flags
vb@37	1692	)
vb@37	1693	{
vb@37	1694	PEP_STATUS status = PEP_STATUS_OK;
vb@63	1695	message * msg = NULL;
vb@63	1696	stringlist_t * keys = NULL;
krista@2121	1697	message* _src = src;
krista@2626	1698
krista@2626	1699	bool added_key_to_real_src = false;
krista@2121	1700
vb@37	1701	assert(session);
vb@3079	1702	assert(src && src->from);
vb@37	1703	assert(dst);
vb@81	1704
vb@3079	1705	if (!(session && src && src->from && dst))
krista@2501	1706	return PEP_ILLEGAL_VALUE;
vb@191	1707
Edouard@550	1708	if (src->dir == PEP_dir_incoming)
krista@2501	1709	return PEP_ILLEGAL_VALUE;
krista@1427	1710
vb@250	1711	determine_encryption_format(src);
vb@2338	1712	// TODO: change this for multi-encryption in message format 2.0
vb@260	1713	if (src->enc_format != PEP_enc_none)
krista@2501	1714	return PEP_ILLEGAL_VALUE;
vb@235	1715
krista@2770	1716	bool force_v_1 = flags & PEP_encrypt_flag_force_version_1;
krista@2770	1717
vb@259	1718	*dst = NULL;
vb@37	1719
vb@3079	1720	if (!src->from->user_id \|\| src->from->user_id[0] == '\0') {
krista@2461	1721	char* own_id = NULL;
krista@2461	1722	status = get_default_own_userid(session, &own_id);
krista@2461	1723	if (own_id) {
krista@2461	1724	free(src->from->user_id);
krista@2461	1725	src->from->user_id = own_id; // ownership transfer
krista@2461	1726	}
krista@2461	1727	}
krista@2461	1728
vb@236	1729	status = myself(session, src->from);
vb@236	1730	if (status != PEP_STATUS_OK)
vb@2834	1731	goto pEp_error;
Edouard@558	1732
vb@80	1733	keys = new_stringlist(src->from->fpr);
vb@63	1734	if (keys == NULL)
vb@63	1735	goto enomem;
vb@37	1736
vb@39	1737	stringlist_t *_k = keys;
vb@39	1738
vb@39	1739	if (extra) {
vb@39	1740	_k = stringlist_append(_k, extra);
vb@63	1741	if (_k == NULL)
vb@63	1742	goto enomem;
vb@37	1743	}
vb@39	1744
vb@299	1745	bool dest_keys_found = true;
vb@2833	1746	bool has_pEp_user = false;
krista@2470	1747
Edouard@510	1748	PEP_comm_type max_comm_type = PEP_ct_pEp;
vb@299	1749
krista@2942	1750	identity_list * _il = NULL;
krista@2617	1751
vb@2341	1752	if (enc_format != PEP_enc_none && (_il = src->bcc) && _il->ident)
krista@2940	1753	// BCC limited support:
Edouard@545	1754	{
Edouard@545	1755	// - App splits mails with BCC in multiple mails.
Edouard@545	1756	// - Each email is encrypted separately
krista@1427	1757
Edouard@789	1758	if(_il->next \|\| (src->to && src->to->ident) \|\| (src->cc && src->cc->ident))
Edouard@545	1759	{
Edouard@545	1760	// Only one Bcc with no other recipient allowed for now
Edouard@545	1761	return PEP_ILLEGAL_VALUE;
Edouard@545	1762	}
krista@1427	1763
krista@2461	1764	PEP_STATUS _status = PEP_STATUS_OK;
krista@2461	1765	if (!is_me(session, _il->ident)) {
krista@2461	1766	_status = update_identity(session, _il->ident);
krista@2461	1767	if (_status == PEP_CANNOT_FIND_IDENTITY) {
krista@2461	1768	_il->ident->comm_type = PEP_ct_key_not_found;
krista@2461	1769	_status = PEP_STATUS_OK;
krista@2461	1770	}
krista@2548	1771	bool is_blacklisted = false;
krista@2549	1772	if (_il->ident->fpr && IS_PGP_CT(_il->ident->comm_type)) {
krista@2548	1773	_status = blacklist_is_listed(session, _il->ident->fpr, &is_blacklisted);
krista@2548	1774	if (_status != PEP_STATUS_OK) {
krista@2548	1775	// DB error
krista@2548	1776	status = PEP_UNENCRYPTED;
vb@2834	1777	goto pEp_error;
krista@2548	1778	}
krista@2548	1779	if (is_blacklisted) {
krista@2548	1780	bool user_default, ident_default, address_default;
krista@2548	1781	_status = get_valid_pubkey(session, _il->ident,
krista@2548	1782	&ident_default, &user_default,
krista@2548	1783	&address_default,
krista@2548	1784	true);
krista@2548	1785	if (_status != PEP_STATUS_OK \|\| _il->ident->fpr == NULL) {
krista@2548	1786	_il->ident->comm_type = PEP_ct_key_not_found;
krista@2548	1787	_status = PEP_STATUS_OK;
krista@2548	1788	}
krista@2548	1789	}
krista@2548	1790	}
vb@2833	1791	if (!has_pEp_user && !EMPTYSTR(_il->ident->user_id))
vb@2833	1792	is_pEp_user(session, _il->ident, &has_pEp_user);
krista@2461	1793	}
krista@2461	1794	else
krista@2461	1795	_status = myself(session, _il->ident);
vb@299	1796	if (_status != PEP_STATUS_OK) {
krista@2477	1797	status = PEP_UNENCRYPTED;
vb@2834	1798	goto pEp_error;
vb@299	1799	}
krista@1427	1800
vb@299	1801	if (_il->ident->fpr && _il->ident->fpr[0]) {
vb@39	1802	_k = stringlist_add(_k, _il->ident->fpr);
vb@63	1803	if (_k == NULL)
vb@63	1804	goto enomem;
Edouard@510	1805	max_comm_type = _get_comm_type(session, max_comm_type,
Edouard@510	1806	_il->ident);
vb@37	1807	}
vb@299	1808	else {
vb@299	1809	dest_keys_found = false;
vb@37	1810	status = PEP_KEY_NOT_FOUND;
krista@1427	1811	}
vb@299	1812	}
krista@2942	1813	else // Non BCC
Edouard@545	1814	{
Edouard@545	1815	for (_il = src->to; _il && _il->ident; _il = _il->next) {
krista@2461	1816	PEP_STATUS _status = PEP_STATUS_OK;
krista@2461	1817	if (!is_me(session, _il->ident)) {
krista@2461	1818	_status = update_identity(session, _il->ident);
krista@2461	1819	if (_status == PEP_CANNOT_FIND_IDENTITY) {
krista@2461	1820	_il->ident->comm_type = PEP_ct_key_not_found;
krista@2461	1821	_status = PEP_STATUS_OK;
krista@2461	1822	}
krista@2548	1823	bool is_blacklisted = false;
krista@2549	1824	if (_il->ident->fpr && IS_PGP_CT(_il->ident->comm_type)) {
krista@2548	1825	_status = blacklist_is_listed(session, _il->ident->fpr, &is_blacklisted);
krista@2548	1826	if (_status != PEP_STATUS_OK) {
krista@2548	1827	// DB error
krista@2548	1828	status = PEP_UNENCRYPTED;
vb@2834	1829	goto pEp_error;
krista@2548	1830	}
krista@2548	1831	if (is_blacklisted) {
krista@2548	1832	bool user_default, ident_default, address_default;
krista@2548	1833	_status = get_valid_pubkey(session, _il->ident,
krista@2548	1834	&ident_default, &user_default,
krista@2548	1835	&address_default,
krista@2548	1836	true);
krista@2548	1837	if (_status != PEP_STATUS_OK \|\| _il->ident->fpr == NULL) {
krista@2548	1838	_il->ident->comm_type = PEP_ct_key_not_found;
krista@2548	1839	_status = PEP_STATUS_OK;
krista@2548	1840	}
krista@2548	1841	}
krista@2548	1842	}
vb@2833	1843	if (!has_pEp_user && !EMPTYSTR(_il->ident->user_id))
vb@2833	1844	is_pEp_user(session, _il->ident, &has_pEp_user);
krista@2919	1845
krista@2919	1846	_status = bind_own_ident_with_contact_ident(session, src->from, _il->ident);
krista@2919	1847	if (_status != PEP_STATUS_OK) {
krista@2919	1848	status = PEP_UNKNOWN_DB_ERROR;
krista@2956	1849	goto pEp_error;
krista@2919	1850	}
krista@2919	1851
krista@2461	1852	}
krista@2461	1853	else
krista@2461	1854	_status = myself(session, _il->ident);
krista@2942	1855
Edouard@545	1856	if (_status != PEP_STATUS_OK) {
krista@2477	1857	status = PEP_UNENCRYPTED;
vb@2834	1858	goto pEp_error;
Edouard@545	1859	}
vb@299	1860
Edouard@545	1861	if (_il->ident->fpr && _il->ident->fpr[0]) {
Edouard@545	1862	_k = stringlist_add(_k, _il->ident->fpr);
Edouard@545	1863	if (_k == NULL)
Edouard@545	1864	goto enomem;
Edouard@545	1865	max_comm_type = _get_comm_type(session, max_comm_type,
Edouard@545	1866	_il->ident);
Edouard@545	1867	}
Edouard@545	1868	else {
Edouard@545	1869	dest_keys_found = false;
Edouard@545	1870	status = PEP_KEY_NOT_FOUND;
Edouard@545	1871	}
vb@299	1872	}
vb@299	1873
Edouard@545	1874	for (_il = src->cc; _il && _il->ident; _il = _il->next) {
krista@2461	1875	PEP_STATUS _status = PEP_STATUS_OK;
krista@2461	1876	if (!is_me(session, _il->ident)) {
krista@2461	1877	_status = update_identity(session, _il->ident);
krista@2461	1878	if (_status == PEP_CANNOT_FIND_IDENTITY) {
krista@2461	1879	_il->ident->comm_type = PEP_ct_key_not_found;
krista@2461	1880	_status = PEP_STATUS_OK;
krista@2461	1881	}
krista@2548	1882	bool is_blacklisted = false;
krista@2549	1883	if (_il->ident->fpr && IS_PGP_CT(_il->ident->comm_type)) {
krista@2548	1884	_status = blacklist_is_listed(session, _il->ident->fpr, &is_blacklisted);
krista@2548	1885	if (_status != PEP_STATUS_OK) {
krista@2548	1886	// DB error
krista@2548	1887	status = PEP_UNENCRYPTED;
vb@2834	1888	goto pEp_error;
krista@2548	1889	}
krista@2548	1890	if (is_blacklisted) {
krista@2548	1891	bool user_default, ident_default, address_default;
krista@2548	1892	_status = get_valid_pubkey(session, _il->ident,
krista@2548	1893	&ident_default, &user_default,
krista@2548	1894	&address_default,
krista@2548	1895	true);
krista@2548	1896	if (_status != PEP_STATUS_OK \|\| _il->ident->fpr == NULL) {
krista@2548	1897	_il->ident->comm_type = PEP_ct_key_not_found;
krista@2548	1898	_status = PEP_STATUS_OK;
krista@2548	1899	}
krista@2548	1900	}
krista@2548	1901	}
vb@2833	1902	if (!has_pEp_user && !EMPTYSTR(_il->ident->user_id))
vb@2833	1903	is_pEp_user(session, _il->ident, &has_pEp_user);
krista@2461	1904	}
krista@2461	1905	else
krista@2461	1906	_status = myself(session, _il->ident);
Edouard@545	1907	if (_status != PEP_STATUS_OK)
Edouard@545	1908	{
krista@2477	1909	status = PEP_UNENCRYPTED;
vb@2834	1910	goto pEp_error;
Edouard@545	1911	}
Edouard@545	1912
Edouard@545	1913	if (_il->ident->fpr && _il->ident->fpr[0]) {
Edouard@545	1914	_k = stringlist_add(_k, _il->ident->fpr);
Edouard@545	1915	if (_k == NULL)
Edouard@545	1916	goto enomem;
Edouard@545	1917	max_comm_type = _get_comm_type(session, max_comm_type,
Edouard@545	1918	_il->ident);
Edouard@545	1919	}
Edouard@545	1920	else {
Edouard@545	1921	dest_keys_found = false;
Edouard@545	1922	}
vb@299	1923	}
vb@37	1924	}
krista@2617	1925
vb@2340	1926	if (enc_format == PEP_enc_none \|\| !dest_keys_found \|\|
krista@1640	1927	stringlist_length(keys) == 0 \|\|
vb@3243	1928	_rating(max_comm_type) < PEP_rating_reliable)
Edouard@510	1929	{
vb@301	1930	free_stringlist(keys);
vb@2833	1931	if ((has_pEp_user \|\| !session->passive_mode) &&
edouard@1899	1932	!(flags & PEP_encrypt_flag_force_no_attached_key)) {
vb@465	1933	attach_own_key(session, src);
krista@2617	1934	added_key_to_real_src = true;
edouard@1899	1935	}
krista@2769	1936	decorate_message(src, PEP_rating_undefined, NULL, true, true);
krista@2501	1937	return PEP_UNENCRYPTED;
vb@301	1938	}
vb@301	1939	else {
krista@2152	1940	// FIXME - we need to deal with transport types (via flag)
vb@3696	1941	if ((enc_format != PEP_enc_inline) && (!force_v_1) && ((max_comm_type \| PEP_ct_confirmed) == PEP_ct_pEp)) {
krista@2817	1942	message_wrap_type wrap_type = ((flags & PEP_encrypt_flag_key_reset_only) ? PEP_message_key_reset : PEP_message_default);
krista@2817	1943	_src = wrap_message_as_attachment(NULL, src, wrap_type, false);
krista@2176	1944	if (!_src)
vb@2834	1945	goto pEp_error;
krista@2121	1946	}
krista@2157	1947	else {
krista@2157	1948	// hide subject
vb@3698	1949	if (enc_format != PEP_enc_inline && !session->unencrypted_subject) {
krista@2168	1950	status = replace_subject(_src);
krista@2168	1951	if (status == PEP_OUT_OF_MEMORY)
krista@2168	1952	goto enomem;
krista@2168	1953	}
krista@2617	1954	if (!(flags & PEP_encrypt_flag_force_no_attached_key))
krista@2617	1955	added_key_to_real_src = true;
krista@2157	1956	}
krista@2152	1957	if (!(flags & PEP_encrypt_flag_force_no_attached_key))
krista@2152	1958	attach_own_key(session, _src);
krista@2152	1959
krista@2121	1960	msg = clone_to_empty_message(_src);
vb@299	1961	if (msg == NULL)
vb@299	1962	goto enomem;
vb@299	1963
vb@81	1964	switch (enc_format) {
krista@2121	1965	case PEP_enc_PGP_MIME:
krista@2121	1966	case PEP_enc_PEP: // BUG: should be implemented extra
krista@2121	1967	status = encrypt_PGP_MIME(session, _src, keys, msg, flags);
krista@2121	1968	break;
krista@2121	1969
vb@3678	1970	case PEP_enc_inline:
vb@3693	1971	status = encrypt_PGP_inline(session, _src, keys, msg, flags);
vb@3678	1972	break;
krista@2121	1973
krista@2121	1974	default:
krista@2121	1975	assert(0);
krista@2121	1976	status = PEP_ILLEGAL_VALUE;
vb@2834	1977	goto pEp_error;
vb@37	1978	}
krista@1427	1979
Edouard@392	1980	if (status == PEP_OUT_OF_MEMORY)
Edouard@392	1981	goto enomem;
krista@1427	1982
vb@480	1983	if (status != PEP_STATUS_OK)
vb@2834	1984	goto pEp_error;
vb@37	1985	}
vb@37	1986
vb@37	1987	free_stringlist(keys);
vb@63	1988
vb@469	1989	if (msg && msg->shortmsg == NULL) {
krista@2121	1990	msg->shortmsg = strdup("");
vb@469	1991	assert(msg->shortmsg);
krista@853	1992	if (msg->shortmsg == NULL)
krista@853	1993	goto enomem;
vb@469	1994	}
vb@64	1995
edouard@1542	1996	if (msg) {
krista@2769	1997	decorate_message(msg, PEP_rating_undefined, NULL, true, true);
krista@2176	1998	if (_src->id) {
krista@2176	1999	msg->id = strdup(_src->id);
edouard@1542	2000	assert(msg->id);
edouard@1542	2001	if (msg->id == NULL)
edouard@1542	2002	goto enomem;
edouard@1542	2003	}
edouard@1542	2004	}
vb@311	2005
vb@63	2006	*dst = msg;
krista@2121	2007
krista@2121	2008	// ??? FIXME: Check to be sure we don't have references btw _src and msg.
krista@2121	2009	// I don't think we do.
krista@2121	2010	if (_src && _src != src)
krista@2121	2011	free_message(_src);
krista@2617	2012
krista@2617	2013	_cleanup_src(src, added_key_to_real_src);
krista@2121	2014
krista@2501	2015	return status;
vb@63	2016
vb@63	2017	enomem:
vb@63	2018	status = PEP_OUT_OF_MEMORY;
vb@63	2019
vb@2834	2020	pEp_error:
vb@63	2021	free_stringlist(keys);
vb@63	2022	free_message(msg);
krista@2121	2023	if (_src && _src != src)
krista@2121	2024	free_message(_src);
krista@2035	2025
krista@2617	2026	_cleanup_src(src, added_key_to_real_src);
krista@2617	2027
krista@2501	2028	return status;
vb@37	2029	}
vb@37	2030
krista@2590	2031	DYNAMIC_API PEP_STATUS encrypt_message_and_add_priv_key(
krista@2590	2032	PEP_SESSION session,
krista@2590	2033	message *src,
krista@2590	2034	message **dst,
krista@2590	2035	const char* to_fpr,
krista@2594	2036	PEP_enc_format enc_format,
krista@2594	2037	PEP_encrypt_flags_t flags
krista@2590	2038	)
krista@2590	2039	{
krista@2590	2040	assert(session);
krista@2590	2041	assert(src);
krista@2590	2042	assert(dst);
krista@2590	2043	assert(to_fpr);
krista@2595	2044
krista@2590	2045	if (!session \|\| !src \|\| !dst \|\| !to_fpr)
krista@2590	2046	return PEP_ILLEGAL_VALUE;
krista@2590	2047
krista@2590	2048	if (enc_format == PEP_enc_none)
krista@2590	2049	return PEP_ILLEGAL_VALUE;
krista@2590	2050
krista@2590	2051	if (src->cc \|\| src->bcc)
krista@2590	2052	return PEP_ILLEGAL_VALUE;
krista@2590	2053
krista@2590	2054	if (!src->to \|\| src->to->next)
krista@2590	2055	return PEP_ILLEGAL_VALUE;
krista@2590	2056
krista@2590	2057	if (!src->from->address \|\| !src->to->ident \|\| !src->to->ident->address)
krista@2590	2058	return PEP_ILLEGAL_VALUE;
krista@2590	2059
krista@2618	2060	if (strcasecmp(src->from->address, src->to->ident->address) != 0)
krista@2590	2061	return PEP_ILLEGAL_VALUE;
krista@2590	2062
krista@2595	2063	stringlist_t* keys = NULL;
krista@2595	2064
krista@2590	2065	char* own_id = NULL;
krista@2590	2066	char* default_id = NULL;
krista@2590	2067
krista@2608	2068	pEp_identity* own_identity = NULL;
krista@2608	2069	char* own_private_fpr = NULL;
krista@2608	2070
krista@2608	2071	char* priv_key_data = NULL;
krista@2608	2072
krista@2590	2073	PEP_STATUS status = get_default_own_userid(session, &own_id);
krista@2590	2074
krista@2590	2075	if (!own_id)
krista@2590	2076	return PEP_UNKNOWN_ERROR; // Probably a DB error at this point
krista@2590	2077
krista@2590	2078	if (src->from->user_id) {
krista@2590	2079	if (strcmp(src->from->user_id, own_id) != 0) {
krista@2590	2080	status = get_userid_alias_default(session, src->from->user_id, &default_id);
krista@2590	2081	if (status != PEP_STATUS_OK \|\| !default_id \|\| strcmp(default_id, own_id) != 0) {
krista@2590	2082	status = PEP_ILLEGAL_VALUE;
vb@2834	2083	goto pEp_free;
krista@2590	2084	}
krista@2590	2085	}
krista@2590	2086	}
krista@2590	2087
krista@2590	2088	// Ok, we are at least marginally sure the initial stuff is ok.
krista@2590	2089
krista@2590	2090	// Let's get our own, normal identity
krista@2608	2091	own_identity = identity_dup(src->from);
krista@2595	2092	status = myself(session, own_identity);
krista@2590	2093
krista@2590	2094	if (status != PEP_STATUS_OK)
vb@2834	2095	goto pEp_free;
krista@2590	2096
krista@2590	2097	// Ok, now we know the address is an own address. All good. Then...
krista@2608	2098	own_private_fpr = own_identity->fpr;
krista@2590	2099	own_identity->fpr = strdup(to_fpr);
krista@2590	2100
krista@2590	2101	status = get_trust(session, own_identity);
krista@2590	2102
krista@2595	2103	if (status != PEP_STATUS_OK) {
krista@2595	2104	if (status == PEP_CANNOT_FIND_IDENTITY)
krista@2595	2105	status = PEP_ILLEGAL_VALUE;
vb@2834	2106	goto pEp_free;
krista@2595	2107	}
krista@2590	2108
krista@2590	2109	if ((own_identity->comm_type & PEP_ct_confirmed) != PEP_ct_confirmed) {
krista@2590	2110	status = PEP_ILLEGAL_VALUE;
vb@2834	2111	goto pEp_free;
krista@2590	2112	}
krista@2590	2113
krista@2590	2114	// Ok, so all the things are now allowed.
krista@2590	2115	// So let's get our own private key and roll with it.
krista@2591	2116	size_t priv_key_size = 0;
krista@2591	2117
krista@2593	2118	status = export_secret_key(session, own_private_fpr, &priv_key_data,
krista@2592	2119	&priv_key_size);
krista@2591	2120
krista@2591	2121	if (status != PEP_STATUS_OK)
vb@2834	2122	goto pEp_free;
krista@2591	2123
krista@2591	2124	if (!priv_key_data) {
krista@2591	2125	status = PEP_CANNOT_EXPORT_KEY;
vb@2834	2126	goto pEp_free;
krista@2591	2127	}
krista@2591	2128
krista@2592	2129	// Ok, fine... let's encrypt yon blob
krista@2595	2130	keys = new_stringlist(own_private_fpr);
krista@2592	2131	if (!keys) {
krista@2592	2132	status = PEP_OUT_OF_MEMORY;
vb@2834	2133	goto pEp_free;
krista@2592	2134	}
krista@2592	2135
krista@2595	2136	stringlist_add(keys, to_fpr);
krista@2595	2137
krista@2592	2138	char* encrypted_key_text = NULL;
krista@2592	2139	size_t encrypted_key_size = 0;
krista@2594	2140
krista@2594	2141	if (flags & PEP_encrypt_flag_force_unsigned)
krista@2594	2142	status = encrypt_only(session, keys, priv_key_data, priv_key_size,
krista@2592	2143	&encrypted_key_text, &encrypted_key_size);
krista@2594	2144	else
krista@2594	2145	status = encrypt_and_sign(session, keys, priv_key_data, priv_key_size,
krista@2594	2146	&encrypted_key_text, &encrypted_key_size);
krista@2592	2147
krista@2592	2148	if (!encrypted_key_text) {
krista@2592	2149	status = PEP_UNKNOWN_ERROR;
vb@2834	2150	goto pEp_free;
krista@2592	2151	}
krista@2592	2152
krista@2592	2153	// We will have to delete this before returning, as we allocated it.
krista@2592	2154	bloblist_t* created_bl = NULL;
krista@2592	2155	bloblist_t* created_predecessor = NULL;
krista@2595	2156
krista@2595	2157	bloblist_t* old_head = NULL;
krista@2595	2158
krista@2595	2159	if (!src->attachments \|\| src->attachments->value == NULL) {
krista@2636	2160	if (src->attachments && src->attachments->value == NULL) {
krista@2595	2161	old_head = src->attachments;
krista@2595	2162	src->attachments = NULL;
krista@2595	2163	}
krista@2592	2164	src->attachments = new_bloblist(encrypted_key_text, encrypted_key_size,
krista@2592	2165	"application/octet-stream",
krista@2592	2166	"file://pEpkey.asc.pgp");
krista@2592	2167	created_bl = src->attachments;
krista@2592	2168	}
krista@2592	2169	else {
krista@2592	2170	bloblist_t* tmp = src->attachments;
krista@2595	2171	while (tmp && tmp->next) {
krista@2595	2172	tmp = tmp->next;
krista@2592	2173	}
krista@2595	2174	created_predecessor = tmp;
krista@2595	2175	created_bl = bloblist_add(tmp,
krista@2592	2176	encrypted_key_text, encrypted_key_size,
krista@2592	2177	"application/octet-stream",
krista@2592	2178	"file://pEpkey.asc.pgp");
krista@2592	2179	}
krista@2592	2180
krista@2592	2181	if (!created_bl) {
krista@2592	2182	status = PEP_OUT_OF_MEMORY;
vb@2834	2183	goto pEp_free;
krista@2592	2184	}
krista@2592	2185
krista@2592	2186	// Ok, it's in there. Let's do this.
krista@2770	2187	status = encrypt_message(session, src, keys, dst, enc_format, flags);
krista@2592	2188
krista@2592	2189	// Delete what we added to src
krista@2592	2190	free_bloblist(created_bl);
krista@2592	2191	if (created_predecessor)
krista@2592	2192	created_predecessor->next = NULL;
krista@2595	2193	else {
krista@2595	2194	if (old_head)
krista@2595	2195	src->attachments = old_head;
krista@2595	2196	else
krista@2595	2197	src->attachments = NULL;
krista@2595	2198	}
krista@2592	2199
vb@2834	2200	pEp_free:
krista@2590	2201	free(own_id);
krista@2590	2202	free(default_id);
krista@2591	2203	free(own_private_fpr);
krista@2608	2204	free(priv_key_data);
krista@2591	2205	free_identity(own_identity);
krista@2592	2206	free_stringlist(keys);
krista@2590	2207	return status;
krista@2590	2208	}
krista@2590	2209
krista@2590	2210
krista@995	2211	DYNAMIC_API PEP_STATUS encrypt_message_for_self(
krista@992	2212	PEP_SESSION session,
krista@992	2213	pEp_identity* target_id,
krista@992	2214	message *src,
krista@2588	2215	stringlist_t* extra,
krista@992	2216	message **dst,
markus@1633	2217	PEP_enc_format enc_format,
markus@1633	2218	PEP_encrypt_flags_t flags
krista@992	2219	)
krista@992	2220	{
krista@992	2221	PEP_STATUS status = PEP_STATUS_OK;
krista@992	2222	message * msg = NULL;
krista@992	2223	stringlist_t * keys = NULL;
krista@2185	2224	message* _src = src;
krista@992	2225
krista@992	2226	assert(session);
vb@3080	2227	assert(target_id);
krista@992	2228	assert(src);
krista@992	2229	assert(dst);
krista@992	2230	assert(enc_format != PEP_enc_none);
krista@992	2231
vb@3080	2232	if (!(session && target_id && src && dst && enc_format != PEP_enc_none))
krista@2501	2233	return PEP_ILLEGAL_VALUE;
krista@992	2234
krista@2610	2235	// if (src->dir == PEP_dir_incoming)
krista@2610	2236	// return PEP_ILLEGAL_VALUE;
krista@1427	2237
krista@992	2238	determine_encryption_format(src);
krista@992	2239	if (src->enc_format != PEP_enc_none)
krista@2501	2240	return PEP_ILLEGAL_VALUE;
krista@992	2241
vb@3080	2242	if (!target_id->user_id \|\| target_id->user_id[0] == '\0') {
krista@2461	2243	char* own_id = NULL;
krista@2461	2244	status = get_default_own_userid(session, &own_id);
krista@2461	2245	if (own_id) {
krista@2461	2246	free(target_id->user_id);
krista@2461	2247	target_id->user_id = own_id; // ownership transfer
krista@2461	2248	}
krista@2461	2249	}
vb@3080	2250
vb@3080	2251	if (!target_id->user_id \|\| target_id->user_id[0] == '\0')
vb@3080	2252	return PEP_CANNOT_FIND_IDENTITY;
vb@3080	2253
krista@2612	2254	if (target_id->address) {
krista@2612	2255	status = myself(session, target_id);
krista@2612	2256	if (status != PEP_STATUS_OK)
vb@2834	2257	goto pEp_error;
krista@2612	2258	}
vb@3080	2259	else if (!target_id->fpr) {
krista@2612	2260	return PEP_ILLEGAL_VALUE;
vb@3080	2261	}
krista@2612	2262
krista@992	2263	*dst = NULL;
krista@992	2264
krista@2461	2265	// PEP_STATUS _status = update_identity(session, target_id);
krista@2461	2266	// if (_status != PEP_STATUS_OK) {
krista@2461	2267	// status = _status;
vb@2834	2268	// goto pEp_error;
krista@2461	2269	// }
krista@992	2270
krista@994	2271	char* target_fpr = target_id->fpr;
krista@994	2272	if (!target_fpr)
krista@994	2273	return PEP_KEY_NOT_FOUND; // FIXME: Error condition
krista@1685	2274
krista@994	2275	keys = new_stringlist(target_fpr);
krista@1685	2276
krista@2588	2277	stringlist_t *_k = keys;
krista@2588	2278
krista@2588	2279	if (extra) {
krista@2588	2280	_k = stringlist_append(_k, extra);
krista@2588	2281	if (_k == NULL)
krista@2588	2282	goto enomem;
krista@2588	2283	}
krista@2588	2284
krista@1640	2285	/* KG: did we ever do this??? */
krista@2617	2286	// if (!(flags & PEP_encrypt_flag_force_no_attached_key))
krista@2617	2287	// _attach_key(session, target_fpr, src);
krista@1427	2288
krista@2800	2289	_src = wrap_message_as_attachment(NULL, src, PEP_message_default, false);
krista@2185	2290	if (!_src)
vb@2834	2291	goto pEp_error;
krista@2185	2292
krista@2185	2293	msg = clone_to_empty_message(_src);
krista@992	2294	if (msg == NULL)
krista@992	2295	goto enomem;
krista@992	2296
krista@992	2297	switch (enc_format) {
krista@992	2298	case PEP_enc_PGP_MIME:
krista@992	2299	case PEP_enc_PEP: // BUG: should be implemented extra
krista@2185	2300	status = encrypt_PGP_MIME(session, _src, keys, msg, flags);
krista@2617	2301	if (status == PEP_STATUS_OK \|\| (src->longmsg && strstr(src->longmsg, "INNER")))
krista@2617	2302	_cleanup_src(src, false);
krista@992	2303	break;
krista@992	2304
vb@3678	2305	case PEP_enc_inline:
vb@3693	2306	status = encrypt_PGP_inline(session, _src, keys, msg, flags);
vb@3678	2307	break;
vb@3678	2308
krista@992	2309	default:
krista@992	2310	assert(0);
krista@992	2311	status = PEP_ILLEGAL_VALUE;
vb@2834	2312	goto pEp_error;
krista@992	2313	}
krista@1427	2314
krista@992	2315	if (status == PEP_OUT_OF_MEMORY)
krista@992	2316	goto enomem;
krista@1427	2317
krista@992	2318	if (status != PEP_STATUS_OK)
vb@2834	2319	goto pEp_error;
krista@992	2320
krista@994	2321	if (msg && msg->shortmsg == NULL) {
vb@2834	2322	msg->shortmsg = _pEp_subj_copy();
krista@994	2323	assert(msg->shortmsg);
krista@994	2324	if (msg->shortmsg == NULL)
krista@994	2325	goto enomem;
krista@994	2326	}
krista@992	2327
edouard@1542	2328	if (msg) {
krista@2185	2329	if (_src->id) {
krista@2185	2330	msg->id = strdup(_src->id);
edouard@1542	2331	assert(msg->id);
edouard@1542	2332	if (msg->id == NULL)
edouard@1542	2333	goto enomem;
edouard@1542	2334	}
krista@2769	2335	decorate_message(msg, PEP_rating_undefined, NULL, true, true);
edouard@1542	2336	}
edouard@1542	2337
krista@992	2338	*dst = msg;
krista@2185	2339
krista@2185	2340	if (src != _src)
krista@2185	2341	free_message(_src);
krista@2185	2342
krista@992	2343	return status;
krista@992	2344
krista@992	2345	enomem:
krista@992	2346	status = PEP_OUT_OF_MEMORY;
krista@992	2347
vb@2834	2348	pEp_error:
krista@992	2349	free_stringlist(keys);
krista@992	2350	free_message(msg);
krista@2185	2351	if (src != _src)
krista@2185	2352	free_message(_src);
krista@992	2353
krista@2501	2354	return status;
krista@992	2355	}
krista@992	2356
krista@2469	2357	// static PEP_STATUS _update_identity_for_incoming_message(
krista@2469	2358	// PEP_SESSION session,
krista@2469	2359	// const message *src
krista@2469	2360	// )
krista@2469	2361	// {
krista@2469	2362	// PEP_STATUS status;
krista@2469	2363	//
krista@2469	2364	// if (src->from && src->from->address) {
krista@2469	2365	// if (!is_me(session, src->from))
krista@2469	2366	// status = update_identity(session, src->from);
krista@2469	2367	// else
krista@2469	2368	// status = myself(session, src->from);
krista@2469	2369	// if (status == PEP_STATUS_OK
krista@2469	2370	// && is_a_pEpmessage(src)
krista@2469	2371	// && src->from->comm_type >= PEP_ct_OpenPGP_unconfirmed
krista@2469	2372	// && src->from->comm_type != PEP_ct_pEp_unconfirmed
krista@2469	2373	// && src->from->comm_type != PEP_ct_pEp)
krista@2469	2374	// {
krista@2469	2375	// src->from->comm_type \|= PEP_ct_pEp_unconfirmed;
krista@2469	2376	// status = set_identity(session, src->from);
krista@2469	2377	// }
krista@2469	2378	// return status;
krista@2469	2379	// }
krista@2469	2380	// return PEP_ILLEGAL_VALUE;
krista@2469	2381	// }
vb@781	2382
krista@1397	2383
krista@2106	2384	static PEP_STATUS _get_detached_signature(message* msg,
krista@2106	2385	bloblist_t** signature_blob) {
krista@1397	2386	bloblist_t* attach_curr = msg->attachments;
krista@1427	2387
krista@1427	2388	*signature_blob = NULL;
krista@1427	2389
krista@1397	2390	while (attach_curr) {
krista@3183	2391	if (attach_curr->mime_type &&
krista@3183	2392	(strcasecmp(attach_curr->mime_type, "application/pgp-signature") == 0)) {
krista@1397	2393	*signature_blob = attach_curr;
krista@1397	2394	break;
krista@1397	2395	}
krista@1397	2396	attach_curr = attach_curr->next;
krista@1397	2397	}
krista@1427	2398
krista@1427	2399	return PEP_STATUS_OK;
krista@1427	2400	}
krista@1427	2401
krista@2106	2402	static PEP_STATUS _get_signed_text(const char* ptext, const size_t psize,
krista@2106	2403	char** stext, size_t* ssize) {
krista@1427	2404
krista@1427	2405	char* signed_boundary = NULL;
krista@1427	2406	char* signpost = strstr(ptext, "Content-Type: multipart/signed");
krista@1427	2407
krista@1427	2408	*ssize = 0;
krista@1427	2409	*stext = NULL;
krista@1427	2410
krista@1427	2411	if (!signpost)
krista@1427	2412	return PEP_UNKNOWN_ERROR;
krista@1427	2413
krista@1427	2414	char* curr_line = signpost;
krista@1427	2415	// const char* end_text = ptext + psize;
krista@1755	2416	const char* boundary_key = "boundary=";
krista@1755	2417	const size_t BOUNDARY_KEY_SIZE = 9;

author	Volker Birk <vb@pep-project.org>
	Fri, 17 May 2019 17:59:06 +0200
branch	sync
changeset 3720	9ed76a79d784
parent 3698	4bc3ed727f1a
child 3713	cb1ecf67cb7b
child 3714	c47bc77a81ce
child 3743	a66f640552a4
permissions	-rw-r--r--