repos/pEpEngine: src/message_api.c@b0c0d39f643d (annotated)

vb@1517	1	// This file is under GNU General Public License 3.0
vb@1517	2	// see LICENSE.txt
vb@1517	3
vb@125	4	#include "pEp_internal.h"
vb@37	5	#include "message_api.h"
vb@37	6
vb@130	7	#include "platform.h"
vb@220	8	#include "mime.h"
krista@2548	9	#include "blacklist.h"
vb@85	10
vb@37	11	#include <assert.h>
vb@37	12	#include <string.h>
vb@39	13	#include <stdlib.h>
krista@2176	14	#include <math.h>
vb@39	15
vb@926	16
vb@951	17	#ifndef _MIN
vb@951	18	#define _MIN(A, B) ((B) > (A) ? (A) : (B))
vb@190	19	#endif
vb@951	20	#ifndef _MAX
vb@951	21	#define _MAX(A, B) ((B) > (A) ? (B) : (A))
vb@300	22	#endif
vb@190	23
krista@2467	24	// These are globals used in generating message IDs and should only be
krista@2467	25	// computed once, as they're either really constants or OS-dependent
krista@2467	26
krista@2467	27	int _pEp_rand_max_bits;
krista@2467	28	double _pEp_log2_36;
krista@2467	29
krista@2280	30	static bool is_a_pEpmessage(const message *msg)
krista@2280	31	{
krista@2280	32	for (stringpair_list_t *i = msg->opt_fields; i && i->value ; i=i->next) {
krista@2280	33	if (strcasecmp(i->value->key, "X-pEp-Version") == 0)
krista@2280	34	return true;
krista@2280	35	}
krista@2280	36	return false;
krista@2280	37	}
krista@2280	38
vb@2337	39	static bool is_wrapper(message* src)
vb@2337	40	{
krista@2280	41	bool retval = false;
krista@2280	42
krista@2280	43	if (src) {
krista@2280	44	unsigned char pepstr[] = PEP_SUBJ_STRING;
krista@2280	45	if (is_a_pEpmessage(src) \|\| (src->shortmsg == NULL \|\| strcmp(src->shortmsg, "pEp") == 0 \|\|
krista@2280	46	_unsigned_signed_strcmp(pepstr, src->shortmsg, PEP_SUBJ_BYTELEN) == 0) \|\|
krista@2280	47	(strcmp(src->shortmsg, "p=p") == 0)) {
krista@2280	48	char* plaintext = src->longmsg;
krista@2280	49	if (plaintext) {
krista@2280	50	const char *line_end = strchr(plaintext, '\n');
krista@2280	51
krista@2280	52	if (line_end != NULL) {
krista@2280	53	size_t n = line_end - plaintext;
krista@2280	54
krista@2280	55	char* copycat = calloc(n + 1, 1);
krista@2280	56
krista@2280	57	if (copycat) {
krista@2280	58	strlcpy(copycat, plaintext, n+1);
krista@2280	59
krista@2280	60	if (strstr(copycat, PEP_MSG_WRAP_KEY) && strstr(copycat, "OUTER"))
krista@2280	61	retval = true;
krista@2280	62
krista@2280	63	free(copycat);
krista@2280	64	}
krista@2280	65	}
krista@2280	66	}
krista@2280	67	}
krista@2280	68	}
krista@2280	69	return retval;
krista@2280	70	}
krista@2280	71
krista@2280	72
vb@2337	73	/*
vb@2337	74	* static stringpair_t* search_optfields(const message* msg, const char* key) {
vb@2337	75	* if (msg && key) {
vb@2337	76	* stringpair_list_t* opt_fields = msg->opt_fields;
vb@2337	77	*
vb@2337	78	* const stringpair_list_t* curr;
vb@2337	79	*
vb@2337	80	* for (curr = opt_fields; curr && curr->value; curr = curr->next) {
vb@2337	81	* if (curr->value->key) {
vb@2337	82	* if (strcasecmp(curr->value->key, key) == 0)
vb@2337	83	* return curr->value;
vb@2337	84	* }
vb@2337	85	* }
vb@2337	86	* }
vb@2337	87	* return NULL;
vb@2337	88	* }
vb@2337	89	*/
krista@2220	90
krista@2155	91	static char * keylist_to_string(const stringlist_t *keylist)
krista@2155	92	{
krista@2155	93	if (keylist) {
krista@2155	94	size_t size = stringlist_length(keylist);
krista@2155	95
krista@2155	96	const stringlist_t *_kl;
krista@2155	97	for (_kl = keylist; _kl && _kl->value; _kl = _kl->next) {
krista@2155	98	size += strlen(_kl->value);
krista@2155	99	}
krista@2155	100
krista@2176	101	char *result = calloc(size, 1);
krista@2155	102	if (result == NULL)
krista@2155	103	return NULL;
krista@2155	104
krista@2155	105	char *_r = result;
krista@2155	106	for (_kl = keylist; _kl && _kl->value; _kl = _kl->next) {
krista@2155	107	_r = stpcpy(_r, _kl->value);
krista@2155	108	if (_kl->next && _kl->next->value)
krista@2155	109	_r = stpcpy(_r, ",");
krista@2155	110	}
krista@2155	111
krista@2155	112	return result;
krista@2155	113	}
krista@2155	114	else {
krista@2155	115	return NULL;
krista@2155	116	}
krista@2155	117	}
krista@2155	118
krista@2155	119	static const char * rating_to_string(PEP_rating rating)
krista@2155	120	{
krista@2155	121	switch (rating) {
krista@2155	122	case PEP_rating_cannot_decrypt:
krista@2155	123	return "cannot_decrypt";
krista@2155	124	case PEP_rating_have_no_key:
krista@2155	125	return "have_no_key";
krista@2155	126	case PEP_rating_unencrypted:
krista@2155	127	return "unencrypted";
krista@2155	128	case PEP_rating_unencrypted_for_some:
krista@2155	129	return "unencrypted_for_some";
krista@2155	130	case PEP_rating_unreliable:
krista@2155	131	return "unreliable";
krista@2155	132	case PEP_rating_reliable:
krista@2155	133	return "reliable";
krista@2155	134	case PEP_rating_trusted:
krista@2155	135	return "trusted";
krista@2155	136	case PEP_rating_trusted_and_anonymized:
krista@2155	137	return "trusted_and_anonymized";
krista@2155	138	case PEP_rating_fully_anonymous:
krista@2155	139	return "fully_anonymous";
krista@2155	140	case PEP_rating_mistrust:
krista@2155	141	return "mistrust";
krista@2155	142	case PEP_rating_b0rken:
krista@2155	143	return "b0rken";
krista@2155	144	case PEP_rating_under_attack:
krista@2155	145	return "under_attack";
krista@2155	146	default:
krista@2155	147	return "undefined";
krista@2155	148	}
krista@2155	149	}
krista@2155	150
krista@2757	151	bool _memnmemn(const char* needle,
krista@2757	152	size_t needle_size,
krista@2757	153	const char* haystack,
krista@2757	154	size_t haystack_size)
krista@2757	155	{
krista@2757	156	if (needle_size > haystack_size) {
krista@2757	157	return false;
krista@2757	158	}
krista@2757	159	else if (needle_size == 0) {
krista@2757	160	return true;
krista@2757	161	}
krista@2757	162
krista@2757	163	bool found = true;
krista@2757	164	const char* haystack_ptr = haystack;
krista@2757	165	unsigned int i = 0;
krista@2757	166	size_t remaining_hay = haystack_size;
krista@2757	167	for (i = 0; i < haystack_size && (remaining_hay >= needle_size); i++, haystack_ptr++) {
krista@2757	168	found = false;
krista@2757	169	const char* needle_ptr = needle;
krista@2757	170	if (haystack_ptr == needle) {
krista@2757	171	const char* haystack_tmp = haystack_ptr;
krista@2757	172	unsigned int j;
krista@2757	173	found = true;
krista@2757	174	for (j = 0; j < needle_size; j++) {
krista@2757	175	if (needle_ptr++ != haystack_tmp++) {
krista@2757	176	found = false;
krista@2757	177	break;
krista@2757	178	}
krista@2757	179	}
krista@2757	180	if (found)
krista@2757	181	break;
krista@2757	182	}
krista@2757	183	remaining_hay--;
krista@2757	184	}
krista@2757	185	return found;
krista@2757	186	}
krista@2757	187
krista@2156	188	void add_opt_field(message msg, const char name, const char *value)
krista@2156	189	{
krista@2156	190	assert(msg && name && value);
krista@2156	191
krista@2156	192	if (msg && name && value) {
krista@2156	193	stringpair_t *pair = new_stringpair(name, value);
krista@2156	194	if (pair == NULL)
krista@2156	195	return;
krista@2156	196
krista@2156	197	stringpair_list_t *field = stringpair_list_add(msg->opt_fields, pair);
krista@2156	198	if (field == NULL)
krista@2156	199	{
krista@2156	200	free_stringpair(pair);
krista@2156	201	return;
krista@2156	202	}
krista@2156	203
krista@2156	204	if (msg->opt_fields == NULL)
krista@2156	205	msg->opt_fields = field;
krista@2156	206	}
krista@2156	207	}
krista@2156	208
krista@2156	209	void replace_opt_field(message msg, const char name, const char *value)
krista@2156	210	{
krista@2156	211	assert(msg && name && value);
krista@2156	212
krista@2156	213	if (msg && name && value) {
krista@2156	214	stringpair_list_t* opt_fields = msg->opt_fields;
krista@2156	215	stringpair_t* pair = NULL;
krista@2529	216
krista@2156	217	if (opt_fields) {
krista@2156	218	while (opt_fields) {
krista@2156	219	pair = opt_fields->value;
krista@2156	220	if (pair && (strcmp(name, pair->key) == 0))
krista@2156	221	break;
krista@2156	222
krista@2156	223	pair = NULL;
krista@2156	224	opt_fields = opt_fields->next;
krista@2156	225	}
krista@2156	226	}
krista@2156	227
krista@2156	228	if (pair) {
krista@2156	229	free(pair->value);
krista@2156	230	pair->value = strdup(value);
krista@2156	231	}
krista@2156	232	else {
krista@2156	233	add_opt_field(msg, name, value);
krista@2156	234	}
krista@2156	235	}
krista@2156	236	}
krista@2156	237
krista@2156	238
krista@2155	239	static void decorate_message(
krista@2155	240	message *msg,
krista@2155	241	PEP_rating rating,
krista@2284	242	stringlist_t *keylist,
krista@2284	243	bool add_version
krista@2155	244	)
krista@2155	245	{
krista@2155	246	assert(msg);
krista@2155	247
krista@2284	248	if (add_version)
krista@2284	249	replace_opt_field(msg, "X-pEp-Version", PEP_VERSION);
krista@2155	250
krista@2155	251	if (rating != PEP_rating_undefined)
krista@2156	252	replace_opt_field(msg, "X-EncStatus", rating_to_string(rating));
krista@2155	253
krista@2155	254	if (keylist) {
krista@2155	255	char *_keylist = keylist_to_string(keylist);
krista@2156	256	replace_opt_field(msg, "X-KeyList", _keylist);
krista@2155	257	free(_keylist);
krista@2155	258	}
krista@2155	259	}
krista@2155	260
krista@1873	261	static char* _get_resource_ptr_noown(char* uri) {
krista@1873	262	char* uri_delim = strstr(uri, "://");
krista@1873	263	if (!uri_delim)
krista@1873	264	return uri;
krista@1873	265	else
krista@1873	266	return uri + 3;
krista@1873	267	}
krista@1873	268
krista@2168	269	// static bool is_file_uri(char* str) {
krista@2168	270	// return(strncmp(str, "file://", 7) == 0);
krista@2168	271	// }
krista@1873	272
krista@1873	273	static bool is_cid_uri(const char* str) {
krista@1873	274	return(strncmp(str, "cid://", 6) == 0);
krista@1873	275	}
vb@235	276
vb@235	277	static bool string_equality(const char s1, const char s2)
vb@235	278	{
vb@235	279	if (s1 == NULL \|\| s2 == NULL)
vb@235	280	return false;
vb@235	281
vb@235	282	assert(s1 && s2);
vb@235	283
vb@235	284	return strcmp(s1, s2) == 0;
vb@235	285	}
vb@235	286
vb@235	287	static bool is_mime_type(const bloblist_t bl, const char mt)
vb@235	288	{
vb@235	289	assert(mt);
vb@235	290
vb@235	291	return bl && string_equality(bl->mime_type, mt);
vb@235	292	}
vb@235	293
krista@854	294	//
krista@854	295	// This function presumes the file ending is a proper substring of the
krista@854	296	// filename (i.e. if bl->filename is "a.pgp" and fe is ".pgp", it will
krista@854	297	// return true, but if bl->filename is ".pgp" and fe is ".pgp", it will
krista@854	298	// return false. This is desired behaviour.
krista@854	299	//
vb@235	300	static bool is_fileending(const bloblist_t bl, const char fe)
vb@235	301	{
vb@235	302	assert(fe);
krista@1427	303
krista@1873	304	if (bl == NULL \|\| bl->filename == NULL \|\| fe == NULL \|\| is_cid_uri(bl->filename))
vb@235	305	return false;
vb@235	306
vb@235	307	assert(bl && bl->filename);
vb@235	308
vb@235	309	size_t fe_len = strlen(fe);
vb@235	310	size_t fn_len = strlen(bl->filename);
vb@235	311
vb@235	312	if (fn_len <= fe_len)
vb@235	313	return false;
vb@235	314
vb@235	315	assert(fn_len > fe_len);
vb@235	316
vb@235	317	return strcmp(bl->filename + (fn_len - fe_len), fe) == 0;
vb@235	318	}
vb@235	319
krista@2617	320	char * encapsulate_message_wrap_info(const char msg_wrap_info, const char longmsg)
krista@2078	321	{
krista@2120	322	assert(msg_wrap_info);
krista@2078	323
krista@2120	324	if (!msg_wrap_info) {
krista@2078	325	if (!longmsg)
krista@2078	326	return NULL;
krista@2078	327	else {
krista@2078	328	char *result = strdup(longmsg);
krista@2078	329	assert(result);
krista@2078	330	return result;
krista@2078	331	}
krista@2078	332	}
krista@2078	333
krista@2078	334	if (longmsg == NULL)
krista@2078	335	longmsg = "";
krista@2078	336
krista@2078	337	const char * const newlines = "\n\n";
krista@2078	338	const size_t NL_LEN = 2;
krista@2078	339
krista@2120	340	const size_t bufsize = PEP_MSG_WRAP_KEY_LEN + strlen(msg_wrap_info) + NL_LEN + strlen(longmsg) + 1;
krista@2176	341	char * ptext = calloc(bufsize, 1);
krista@2078	342	assert(ptext);
krista@2078	343	if (ptext == NULL)
krista@2078	344	return NULL;
krista@2078	345
krista@2120	346	strlcpy(ptext, PEP_MSG_WRAP_KEY, bufsize);
krista@2120	347	strlcat(ptext, msg_wrap_info, bufsize);
krista@2078	348	strlcat(ptext, newlines, bufsize);
krista@2078	349	strlcat(ptext, longmsg, bufsize);
krista@2078	350
krista@2078	351	return ptext;
krista@2078	352	}
krista@2078	353
vb@83	354	static char * combine_short_and_long(const char shortmsg, const char longmsg)
vb@62	355	{
vb@83	356	assert(shortmsg);
krista@2045	357
krista@2045	358	unsigned char pepstr[] = PEP_SUBJ_STRING;
krista@2045	359	assert(strcmp(shortmsg, "pEp") != 0 && _unsigned_signed_strcmp(pepstr, shortmsg, PEP_SUBJ_BYTELEN) != 0);
krista@2045	360
krista@2045	361	if (!shortmsg \|\| strcmp(shortmsg, "pEp") == 0 \|\|
krista@2045	362	_unsigned_signed_strcmp(pepstr, shortmsg, PEP_SUBJ_BYTELEN) == 0) {
vb@857	363	if (!longmsg) {
vb@857	364	return NULL;
vb@857	365	}
vb@857	366	else {
vb@857	367	char *result = strdup(longmsg);
vb@857	368	assert(result);
vb@857	369	return result;
vb@857	370	}
vb@857	371	}
krista@1427	372
vb@83	373	if (longmsg == NULL)
vb@63	374	longmsg = "";
vb@63	375
krista@935	376	const char * const newlines = "\n\n";
krista@935	377	const size_t NL_LEN = 2;
krista@935	378
krista@2078	379	const size_t bufsize = PEP_SUBJ_KEY_LEN + strlen(shortmsg) + NL_LEN + strlen(longmsg) + 1;
krista@2176	380	char * ptext = calloc(bufsize, 1);
vb@109	381	assert(ptext);
vb@62	382	if (ptext == NULL)
vb@62	383	return NULL;
vb@62	384
krista@2078	385	strlcpy(ptext, PEP_SUBJ_KEY, bufsize);
krista@918	386	strlcat(ptext, shortmsg, bufsize);
krista@935	387	strlcat(ptext, newlines, bufsize);
krista@918	388	strlcat(ptext, longmsg, bufsize);
vb@62	389
vb@62	390	return ptext;
vb@62	391	}
vb@44	392
krista@2157	393	static PEP_STATUS replace_subject(message* msg) {
krista@2157	394	unsigned char pepstr[] = PEP_SUBJ_STRING;
krista@2157	395	if (msg->shortmsg && *(msg->shortmsg) != '\0') {
krista@2157	396	char* longmsg = combine_short_and_long(msg->shortmsg, msg->longmsg);
krista@2157	397	if (!longmsg)
krista@2157	398	return PEP_OUT_OF_MEMORY;
krista@2157	399	else {
krista@2157	400	free(msg->longmsg);
krista@2157	401	msg->longmsg = longmsg;
krista@2157	402	}
krista@2157	403	}
krista@2157	404	free(msg->shortmsg);
krista@2275	405	#ifdef WIN32
krista@2275	406	msg->shortmsg = strdup("pEp");
krista@2275	407	#else
krista@2157	408	msg->shortmsg = strdup((char*)pepstr);
krista@2275	409	#endif
krista@2157	410
krista@2157	411	if (!msg->shortmsg)
krista@2157	412	return PEP_OUT_OF_MEMORY;
krista@2157	413
krista@2157	414	return PEP_STATUS_OK;
krista@2157	415	}
krista@2157	416
krista@2176	417	unsigned long long get_bitmask(int num_bits) {
krista@2176	418	if (num_bits <= 0)
krista@2176	419	return 0;
krista@2176	420
krista@2176	421	unsigned long long bitmask = 0;
krista@2176	422	int i;
krista@2176	423	for (i = 1; i < num_bits; i++) {
krista@2176	424	bitmask = bitmask << 1;
krista@2176	425	bitmask \|= 1;
krista@2176	426	}
krista@2176	427	return bitmask;
krista@2176	428	}
krista@2176	429
krista@2176	430	static char* get_base_36_rep(unsigned long long value, int num_sig_bits) {
krista@2176	431
vb@2571	432	int bufsize = ((int) ceil((double) num_sig_bits / _pEp_log2_36)) + 1;
krista@2176	433
krista@2176	434	// based on
krista@2176	435	// https://en.wikipedia.org/wiki/Base36#C_implementation
krista@2176	436	// ok, we supposedly have a 64-bit kinda sorta random blob
krista@2176	437	const char base_36_symbols[36] = "0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ";
krista@2176	438
krista@2176	439	char* retbuf = calloc(bufsize, 1);
krista@2176	440
krista@2176	441	int i = bufsize - 1; // (end index)
krista@2176	442
krista@2176	443	while (i > 0) {
krista@2176	444	retbuf[--i] = base_36_symbols[value % 36];
krista@2176	445	value /= 36;
krista@2176	446	}
krista@2176	447
krista@2176	448	return retbuf;
krista@2176	449	}
krista@2176	450
krista@2176	451
krista@2176	452	static char* message_id_prand_part(void) {
krista@2176	453	// RAND modulus
krista@2176	454	int num_bits = _pEp_rand_max_bits;
krista@2176	455
krista@2176	456	if (num_bits < 0)
krista@2176	457	return NULL;
krista@2176	458
krista@2176	459	const int DESIRED_BITS = 64;
krista@2176	460
krista@2176	461	num_bits = _MIN(num_bits, DESIRED_BITS);
krista@2176	462
krista@2176	463	int i;
krista@2176	464
krista@2176	465	// at least 64 bits
krista@2176	466	unsigned long long bitmask = get_bitmask(num_bits);
krista@2176	467
krista@2176	468	unsigned long long output_value = 0;
krista@2176	469
krista@2176	470	i = DESIRED_BITS;
krista@2176	471
krista@2176	472	int bitshift = 0;
krista@2176	473
krista@2176	474	while (i > 0) {
krista@2176	475	int randval = rand();
krista@2176	476	unsigned long long temp_val = randval & bitmask;
krista@2176	477
krista@2176	478	output_value \|= temp_val;
krista@2176	479
krista@2551	480	i -= _MIN(num_bits, i);
krista@2176	481
krista@2176	482	bitshift = _MIN(num_bits, i);
krista@2176	483	output_value <<= bitshift;
krista@2176	484	bitmask = get_bitmask(bitshift);
krista@2176	485	}
krista@2176	486
krista@2176	487	return get_base_36_rep(output_value, DESIRED_BITS);
krista@2176	488	}
krista@2176	489
krista@2176	490	static PEP_STATUS generate_message_id(message* msg) {
krista@2176	491
krista@2176	492	if (!msg \|\| !msg->from \|\| !msg->from->address)
krista@2176	493	return PEP_ILLEGAL_VALUE;
krista@2176	494
krista@2176	495	char* time_prefix = NULL;
krista@2176	496	char* random_id = NULL;
krista@2176	497	char* retval = NULL;
krista@2176	498
krista@2176	499	size_t buf_len = 2; // NUL + @
krista@2176	500
krista@2176	501	char* from_addr = msg->from->address;
krista@2176	502	char* domain_ptr = strstr(from_addr, "@");
krista@2176	503	if (!domain_ptr \|\| *(domain_ptr + 1) == '\0')
krista@2176	504	domain_ptr = "localhost";
krista@2176	505	else
krista@2176	506	domain_ptr++;
krista@2176	507
krista@2176	508	buf_len += strlen(domain_ptr);
krista@2176	509
krista@2176	510	if (msg->id)
krista@2176	511	free(msg->id);
krista@2176	512
krista@2176	513	msg->id = NULL;
krista@2176	514
krista@2176	515	time_t curr_time = time(NULL);
krista@2176	516
vb@2571	517	time_prefix = get_base_36_rep(curr_time, (int) ceil(log2((double) curr_time)));
krista@2176	518
krista@2176	519	if (!time_prefix)
krista@2176	520	goto enomem;
krista@2176	521
krista@2176	522	buf_len += strlen(time_prefix);
krista@2176	523
krista@2176	524	random_id = message_id_prand_part();
krista@2176	525
krista@2176	526	if (!random_id)
krista@2176	527	goto enomem;
krista@2176	528
krista@2176	529
krista@2176	530	buf_len += strlen(random_id);
krista@2176	531
krista@2176	532	// make a new uuid - depending on rand() impl, time precision, etc,
krista@2176	533	// we may still not be unique. We'd better make sure. So.
krista@2176	534	char new_uuid[37];
krista@2176	535	pEpUUID uuid;
krista@2176	536	uuid_generate_random(uuid);
krista@2176	537	uuid_unparse_upper(uuid, new_uuid);
krista@2176	538
krista@2176	539	buf_len += strlen(new_uuid);
krista@2176	540
krista@2176	541	buf_len += 6; // "pEp" and 3 '.' chars
krista@2176	542
krista@2176	543	retval = calloc(buf_len, 1);
krista@2176	544
krista@2176	545	if (!retval)
krista@2176	546	goto enomem;
krista@2176	547
krista@2176	548	strlcpy(retval, "pEp.", buf_len);
krista@2176	549	strlcat(retval, time_prefix, buf_len);
krista@2176	550	strlcat(retval, ".", buf_len);
krista@2176	551	strlcat(retval, random_id, buf_len);
krista@2176	552	strlcat(retval, ".", buf_len);
krista@2176	553	strlcat(retval, new_uuid, buf_len);
krista@2176	554	strlcat(retval, "@", buf_len);
krista@2176	555	strlcat(retval, domain_ptr, buf_len);
krista@2176	556
krista@2176	557	msg->id = retval;
krista@2176	558
krista@2176	559	free(time_prefix);
krista@2176	560	free(random_id);
krista@2176	561
krista@2176	562	return PEP_STATUS_OK;
krista@2176	563
krista@2176	564	enomem:
krista@2176	565	free(time_prefix);
krista@2176	566	free(random_id);
krista@2176	567	return PEP_OUT_OF_MEMORY;
krista@2176	568	}
krista@2176	569
krista@2078	570	/*
krista@2078	571	WARNING: For the moment, this only works for the first line of decrypted
krista@2078	572	plaintext because we don't need more. IF WE DO, THIS MUST BE EXPANDED, or
krista@2078	573	we need a delineated section to parse separately
krista@2078	574
krista@2078	575	Does case-insensitive compare of keys, so sending in a lower-cased
krista@2078	576	string constant saves a bit of computation
krista@2078	577	*/
krista@2078	578	static PEP_STATUS get_data_from_encapsulated_line(const char* plaintext, const char* key,
krista@2078	579	const size_t keylen, char** data,
krista@2078	580	char** modified_msg) {
krista@2078	581	char* _data = NULL;
krista@2078	582	char* _modified = NULL;
krista@2078	583
krista@2078	584	if (strncasecmp(plaintext, key, keylen) == 0) {
krista@2078	585	const char *line_end = strchr(plaintext, '\n');
krista@2078	586
krista@2078	587	if (line_end == NULL) {
krista@2078	588	_data = strdup(plaintext + keylen);
krista@2078	589	assert(_data);
krista@2078	590	if (_data == NULL)
krista@2078	591	return PEP_OUT_OF_MEMORY;
krista@2078	592	}
krista@2078	593	else {
krista@2078	594	size_t n = line_end - plaintext;
krista@2078	595
krista@2078	596	if (*(line_end - 1) == '\r')
krista@2078	597	_data = strndup(plaintext + keylen, n - (keylen + 1));
krista@2078	598	else
krista@2078	599	_data = strndup(plaintext + keylen, n - keylen);
krista@2078	600	assert(_data);
krista@2078	601	if (_data == NULL)
krista@2078	602	return PEP_OUT_OF_MEMORY;
krista@2078	603
krista@2078	604	while ((plaintext + n) && ((plaintext + n) == '\n' \|\| *(plaintext + n) == '\r'))
krista@2078	605	++n;
krista@2078	606
krista@2078	607	if (*(plaintext + n)) {
krista@2078	608	_modified = strdup(plaintext + n);
krista@2078	609	assert(_modified);
krista@2078	610	if (_modified == NULL)
krista@2078	611	return PEP_OUT_OF_MEMORY;
krista@2078	612	}
krista@2078	613	}
krista@2078	614	}
krista@2078	615	*data = _data;
krista@2078	616	*modified_msg = _modified;
krista@2078	617	return PEP_STATUS_OK;
krista@2078	618	}
krista@2078	619
krista@2078	620
krista@2120	621	static int separate_short_and_long(const char src, char shortmsg, char* msg_wrap_info, char **longmsg)
vb@82	622	{
vb@82	623	char *_shortmsg = NULL;
krista@2120	624	char *_msg_wrap_info = NULL;
vb@82	625	char *_longmsg = NULL;
vb@82	626
vb@82	627	assert(src);
vb@82	628	assert(shortmsg);
krista@2120	629	assert(msg_wrap_info);
vb@82	630	assert(longmsg);
krista@1427	631
krista@2120	632	if (src == NULL \|\| shortmsg == NULL \|\| msg_wrap_info == NULL \|\| longmsg == NULL)
krista@853	633	return -1;
vb@82	634
vb@82	635	*shortmsg = NULL;
vb@82	636	*longmsg = NULL;
krista@2120	637	*msg_wrap_info = NULL;
krista@2078	638
krista@2078	639	// We generated the input here. If we ever need more than one header value to be
krista@2078	640	// encapsulated and hidden in the encrypted text, we will have to modify this.
krista@2078	641	// As is, we're either doing this with a version 1.0 client, in which case
krista@2078	642	// the only encapsulated header value is subject, or 2.0+, in which the
krista@2120	643	// message wrap info is the only encapsulated header value. If we need this
krista@2078	644	// to be more complex, we're going to have to do something more elegant
krista@2078	645	// and efficient.
krista@2078	646	PEP_STATUS status = get_data_from_encapsulated_line(src, PEP_SUBJ_KEY_LC,
krista@2078	647	PEP_SUBJ_KEY_LEN,
krista@2078	648	&_shortmsg, &_longmsg);
krista@2078	649
krista@2078	650	if (_shortmsg) {
krista@2078	651	if (status == PEP_STATUS_OK)
krista@2078	652	*shortmsg = _shortmsg;
krista@2078	653	else
krista@2078	654	goto enomem;
vb@82	655	}
vb@82	656	else {
krista@2120	657	status = get_data_from_encapsulated_line(src, PEP_MSG_WRAP_KEY_LC,
krista@2120	658	PEP_MSG_WRAP_KEY_LEN,
krista@2120	659	&_msg_wrap_info, &_longmsg);
krista@2120	660	if (_msg_wrap_info) {
krista@2078	661	if (status == PEP_STATUS_OK)
krista@2120	662	*msg_wrap_info = _msg_wrap_info;
krista@2078	663	else
krista@2078	664	goto enomem;
krista@2078	665	}
krista@2078	666	}
krista@2078	667
krista@2078	668	// If there was no secret data hiding in the first line...
krista@2120	669	if (!_shortmsg && !_msg_wrap_info) {
vb@82	670	_longmsg = strdup(src);
vb@469	671	assert(_longmsg);
vb@82	672	if (_longmsg == NULL)
vb@82	673	goto enomem;
vb@82	674	}
krista@1852	675
vb@82	676	*longmsg = _longmsg;
vb@82	677
vb@82	678	return 0;
vb@82	679
vb@82	680	enomem:
vb@82	681	free(_shortmsg);
krista@2120	682	free(_msg_wrap_info);
vb@82	683	free(_longmsg);
vb@82	684
vb@82	685	return -1;
vb@82	686	}
vb@82	687
vb@113	688	static PEP_STATUS copy_fields(message dst, const message src)
vb@113	689	{
vb@164	690	assert(dst);
vb@164	691	assert(src);
vb@164	692
Edouard@840	693	if(!(dst && src))
Edouard@840	694	return PEP_ILLEGAL_VALUE;
Edouard@840	695
vb@113	696	free_timestamp(dst->sent);
vb@113	697	dst->sent = NULL;
vb@113	698	if (src->sent) {
vb@113	699	dst->sent = timestamp_dup(src->sent);
vb@113	700	if (dst->sent == NULL)
vb@113	701	return PEP_OUT_OF_MEMORY;
vb@113	702	}
vb@113	703
vb@113	704	free_timestamp(dst->recv);
vb@113	705	dst->recv = NULL;
vb@113	706	if (src->recv) {
vb@113	707	dst->recv = timestamp_dup(src->recv);
vb@113	708	if (dst->recv == NULL)
vb@113	709	return PEP_OUT_OF_MEMORY;
vb@113	710	}
vb@113	711
vb@113	712	free_identity(dst->from);
vb@113	713	dst->from = NULL;
vb@113	714	if (src->from) {
vb@113	715	dst->from = identity_dup(src->from);
vb@113	716	if (dst->from == NULL)
vb@113	717	return PEP_OUT_OF_MEMORY;
vb@113	718	}
vb@113	719
vb@113	720	free_identity_list(dst->to);
vb@113	721	dst->to = NULL;
vb@274	722	if (src->to && src->to->ident) {
vb@113	723	dst->to = identity_list_dup(src->to);
vb@113	724	if (dst->to == NULL)
vb@113	725	return PEP_OUT_OF_MEMORY;
vb@113	726	}
vb@113	727
vb@113	728	free_identity(dst->recv_by);
vb@113	729	dst->recv_by = NULL;
vb@113	730	if (src->recv_by) {
vb@113	731	dst->recv_by = identity_dup(src->recv_by);
vb@113	732	if (dst->recv_by == NULL)
vb@113	733	return PEP_OUT_OF_MEMORY;
vb@113	734	}
vb@113	735
vb@113	736	free_identity_list(dst->cc);
vb@113	737	dst->cc = NULL;
vb@274	738	if (src->cc && src->cc->ident) {
vb@113	739	dst->cc = identity_list_dup(src->cc);
vb@113	740	if (dst->cc == NULL)
vb@113	741	return PEP_OUT_OF_MEMORY;
vb@113	742	}
vb@113	743
vb@113	744	free_identity_list(dst->bcc);
vb@113	745	dst->bcc = NULL;
vb@274	746	if (src->bcc && src->bcc->ident) {
vb@113	747	dst->bcc = identity_list_dup(src->bcc);
vb@113	748	if (dst->bcc == NULL)
vb@113	749	return PEP_OUT_OF_MEMORY;
vb@113	750	}
vb@113	751
vb@113	752	free_identity_list(dst->reply_to);
vb@113	753	dst->reply_to = NULL;
vb@274	754	if (src->reply_to && src->reply_to->ident) {
vb@113	755	dst->reply_to = identity_list_dup(src->reply_to);
vb@113	756	if (dst->reply_to == NULL)
vb@113	757	return PEP_OUT_OF_MEMORY;
vb@113	758	}
vb@113	759
vb@113	760	free_stringlist(dst->in_reply_to);
vb@113	761	dst->in_reply_to = NULL;
vb@274	762	if (src->in_reply_to && src->in_reply_to->value) {
vb@113	763	dst->in_reply_to = stringlist_dup(src->in_reply_to);
vb@113	764	if (dst->in_reply_to == NULL)
vb@113	765	return PEP_OUT_OF_MEMORY;
vb@113	766	}
vb@113	767
vb@113	768	free_stringlist(dst->references);
vb@113	769	dst->references = NULL;
vb@113	770	if (src->references) {
vb@113	771	dst->references = stringlist_dup(src->references);
vb@113	772	if (dst->references == NULL)
vb@113	773	return PEP_OUT_OF_MEMORY;
vb@113	774	}
vb@113	775
vb@113	776	free_stringlist(dst->keywords);
vb@113	777	dst->keywords = NULL;
vb@274	778	if (src->keywords && src->keywords->value) {
vb@113	779	dst->keywords = stringlist_dup(src->keywords);
vb@113	780	if (dst->keywords == NULL)
vb@113	781	return PEP_OUT_OF_MEMORY;
vb@113	782	}
vb@113	783
vb@113	784	free(dst->comments);
vb@113	785	dst->comments = NULL;
vb@113	786	if (src->comments) {
vb@113	787	dst->comments = strdup(src->comments);
vb@113	788	assert(dst->comments);
vb@113	789	if (dst->comments == NULL)
vb@113	790	return PEP_OUT_OF_MEMORY;
vb@113	791	}
vb@113	792
vb@1092	793	free_stringpair_list(dst->opt_fields);
vb@1092	794	dst->opt_fields = NULL;
vb@1092	795	if (src->opt_fields) {
vb@1092	796	dst->opt_fields = stringpair_list_dup(src->opt_fields);
vb@1092	797	if (dst->opt_fields == NULL)
vb@1092	798	return PEP_OUT_OF_MEMORY;
vb@1092	799	}
vb@1092	800
vb@113	801	return PEP_STATUS_OK;
vb@113	802	}
vb@113	803
krista@2281	804	// FIXME: error mem leakage
krista@2121	805	static message* extract_minimal_envelope(const message* src,
krista@2121	806	PEP_msg_direction direct) {
krista@2152	807
krista@2121	808	message* envelope = new_message(direct);
krista@2121	809	if (!envelope)
krista@2121	810	return NULL;
krista@2121	811
krista@2121	812	envelope->shortmsg = _pep_subj_copy();
krista@2121	813	if (!envelope->shortmsg)
krista@2281	814	goto enomem;
krista@2121	815
krista@2121	816	if (src->from) {
krista@2121	817	envelope->from = identity_dup(src->from);
krista@2121	818	if (!envelope->from)
krista@2281	819	goto enomem;
krista@2121	820	}
krista@2121	821
krista@2121	822	if (src->to) {
krista@2121	823	envelope->to = identity_list_dup(src->to);
krista@2121	824	if (!envelope->to)
krista@2281	825	goto enomem;
krista@2121	826	}
krista@2121	827
krista@2121	828	if (src->cc) {
krista@2121	829	envelope->cc = identity_list_dup(src->cc);
krista@2121	830	if (!envelope->cc)
krista@2281	831	goto enomem;
krista@2121	832	}
krista@2121	833
krista@2121	834	if (src->bcc) {
krista@2121	835	envelope->bcc = identity_list_dup(src->bcc);
krista@2121	836	if (!envelope->bcc)
krista@2281	837	goto enomem;
krista@2121	838	}
krista@2121	839
krista@2281	840	// For Outlook Force-Encryption
krista@2283	841	// const char* pull_keys[] = {"pEp-auto-consume",
krista@2283	842	// "pEp-force-protection",
krista@2283	843	// "X-pEp-Never-Unsecure"};
krista@2283	844	// int pull_keys_len = 3; // UPDATE WHEN MORE ADDED ABOVE
krista@2283	845	//
krista@2283	846	// int i = 0;
krista@2283	847	// stringpair_t* opt_add = NULL;
krista@2283	848	// for( ; i < pull_keys_len; i++) {
krista@2283	849	// opt_add = search_optfields(src, pull_keys[i]);
krista@2283	850	// stringpair_list_t* add_ptr = NULL;
krista@2283	851	// if (opt_add) {
krista@2283	852	// add_ptr = stringpair_list_add(src->opt_fields, stringpair_dup(opt_add));
krista@2283	853	// if (!add_ptr)
krista@2283	854	// goto enomem;
krista@2283	855	// }
krista@2283	856	// opt_add = NULL;
krista@2283	857	// add_ptr = NULL;
krista@2283	858	// }
krista@2281	859
krista@2121	860	envelope->enc_format = src->enc_format;
krista@2121	861
krista@2121	862	return envelope;
krista@2281	863
krista@2281	864	enomem:
krista@2281	865	free(envelope);
krista@2281	866	return NULL;
krista@2121	867	}
krista@2121	868
vb@81	869	static message * clone_to_empty_message(const message * src)
vb@80	870	{
vb@113	871	PEP_STATUS status;
vb@80	872	message * msg = NULL;
vb@80	873
vb@81	874	assert(src);
krista@853	875	if (src == NULL)
krista@853	876	return NULL;
vb@81	877
vb@113	878	msg = calloc(1, sizeof(message));
vb@113	879	assert(msg);
vb@80	880	if (msg == NULL)
vb@80	881	goto enomem;
vb@80	882
vb@82	883	msg->dir = src->dir;
vb@82	884
vb@113	885	status = copy_fields(msg, src);
vb@113	886	if (status != PEP_STATUS_OK)
vb@113	887	goto enomem;
vb@81	888
vb@80	889	return msg;
vb@80	890
vb@80	891	enomem:
vb@113	892	free_message(msg);
vb@80	893	return NULL;
vb@80	894	}
vb@80	895
krista@2121	896	static message* wrap_message_as_attachment(message* envelope,
krista@2168	897	message* attachment, bool keep_orig_subject) {
krista@2121	898
krista@2176	899	if (!attachment)
krista@2176	900	return NULL;
krista@2176	901
krista@2152	902	message* _envelope = envelope;
krista@2155	903
krista@2176	904	PEP_STATUS status = PEP_STATUS_OK;
krista@2176	905
krista@2156	906	replace_opt_field(attachment, "X-pEp-Version", PEP_VERSION);
krista@2188	907
krista@2152	908	if (!_envelope) {
krista@2121	909	_envelope = extract_minimal_envelope(attachment, PEP_dir_outgoing);
krista@2176	910	status = generate_message_id(_envelope);
krista@2176	911
krista@2204	912	if (status != PEP_STATUS_OK)
krista@2204	913	goto enomem;
krista@2176	914
krista@2152	915	attachment->longmsg = encapsulate_message_wrap_info("INNER", attachment->longmsg);
krista@2152	916	_envelope->longmsg = encapsulate_message_wrap_info("OUTER", _envelope->longmsg);
krista@2121	917	}
krista@2152	918	else {
krista@2152	919	_envelope->longmsg = encapsulate_message_wrap_info("TRANSPORT", _envelope->longmsg);
krista@2152	920	}
krista@2204	921
krista@2207	922	if (!attachment->id \|\| attachment->id[0] == '\0') {
krista@2204	923	free(attachment->id);
krista@2204	924	if (!_envelope->id) {
krista@2204	925	status = generate_message_id(_envelope);
krista@2204	926
krista@2204	927	if (status != PEP_STATUS_OK)
krista@2204	928	goto enomem;
krista@2204	929	}
krista@2204	930
krista@2204	931	attachment->id = strdup(_envelope->id);
krista@2204	932	}
krista@2204	933
krista@2121	934	char* message_text = NULL;
krista@2190	935
krista@2190	936	/* prevent introduction of pEp in inner message */
krista@2190	937
krista@2188	938	if (!attachment->shortmsg) {
krista@2188	939	attachment->shortmsg = strdup("");
krista@2188	940	if (!attachment->shortmsg)
krista@2188	941	goto enomem;
krista@2188	942	}
krista@2190	943
krista@2121	944	/* Turn message into a MIME-blob */
krista@2277	945	status = _mime_encode_message_internal(attachment, false, &message_text, true);
krista@2188	946
krista@2188	947	if (status != PEP_STATUS_OK)
krista@2188	948	goto enomem;
krista@2121	949
krista@2121	950	size_t message_len = strlen(message_text);
krista@2121	951
krista@2121	952	bloblist_t* message_blob = new_bloblist(message_text, message_len,
krista@2121	953	"message/rfc822", NULL);
krista@2121	954
krista@2152	955	_envelope->attachments = message_blob;
krista@2168	956	if (keep_orig_subject && attachment->shortmsg)
krista@2168	957	_envelope->shortmsg = strdup(attachment->shortmsg);
krista@2152	958	return _envelope;
krista@2188	959
krista@2188	960	enomem:
krista@2188	961	if (!envelope) {
krista@2204	962	free_message(_envelope);
krista@2188	963	}
krista@2192	964	return NULL;
krista@2121	965	}
krista@2121	966
krista@2461	967	static PEP_STATUS update_identity_recip_list(PEP_SESSION session,
krista@2461	968	identity_list* list) {
krista@2461	969
krista@2461	970	PEP_STATUS status = PEP_STATUS_OK;
krista@2461	971
krista@2461	972	if (!session)
krista@2461	973	return PEP_UNKNOWN_ERROR;
krista@2461	974
krista@2461	975	identity_list* id_list_ptr = NULL;
krista@2461	976
krista@2461	977	for (id_list_ptr = list; id_list_ptr; id_list_ptr = id_list_ptr->next) {
krista@2461	978	pEp_identity* curr_identity = id_list_ptr->ident;
krista@2461	979	if (curr_identity) {
krista@2533	980	if (!is_me(session, curr_identity)) {
krista@2533	981	char* name_bak = curr_identity->username;
krista@2533	982	curr_identity->username = NULL;
krista@2461	983	status = update_identity(session, curr_identity);
krista@2533	984	if (name_bak &&
krista@2533	985	(EMPTYSTR(curr_identity->username) \|\| strcmp(name_bak, curr_identity->username) != 0)) {
krista@2533	986	free(curr_identity->username);
krista@2533	987	curr_identity->username = name_bak;
krista@2533	988	}
krista@2533	989	}
krista@2461	990	else
krista@2461	991	status = myself(session, curr_identity);
krista@2461	992	if (status == PEP_ILLEGAL_VALUE \|\| status == PEP_OUT_OF_MEMORY)
krista@2461	993	return status;
krista@2461	994	}
krista@2461	995	}
krista@2461	996
krista@2461	997	return PEP_STATUS_OK;
krista@2461	998	}
krista@2461	999
vb@260	1000	static PEP_STATUS encrypt_PGP_MIME(
vb@311	1001	PEP_SESSION session,
vb@311	1002	const message *src,
vb@311	1003	stringlist_t *keys,
krista@1639	1004	message *dst,
krista@1639	1005	PEP_encrypt_flags_t flags
vb@260	1006	)
vb@260	1007	{
vb@260	1008	PEP_STATUS status = PEP_STATUS_OK;
krista@1987	1009	bool free_ptext = false;
vb@468	1010	char *ptext = NULL;
Edouard@882	1011	char *ctext = NULL;
vb@260	1012	char *mimetext = NULL;
vb@260	1013	size_t csize;
vb@260	1014	assert(dst->longmsg == NULL);
vb@260	1015	dst->enc_format = PEP_enc_PGP_MIME;
krista@2045	1016
krista@2120	1017	if (src->shortmsg)
krista@2120	1018	dst->shortmsg = strdup(src->shortmsg);
krista@2120	1019
vb@260	1020	message *_src = calloc(1, sizeof(message));
vb@260	1021	assert(_src);
vb@260	1022	if (_src == NULL)
vb@260	1023	goto enomem;
krista@2155	1024	// _src->longmsg = ptext;
krista@2155	1025	_src->longmsg = src->longmsg;
vb@260	1026	_src->longmsg_formatted = src->longmsg_formatted;
vb@260	1027	_src->attachments = src->attachments;
vb@260	1028	_src->enc_format = PEP_enc_none;
krista@2280	1029	bool mime_encode = !is_wrapper(_src);
krista@2280	1030	status = _mime_encode_message_internal(_src, true, &mimetext, mime_encode);
vb@260	1031	assert(status == PEP_STATUS_OK);
krista@853	1032	if (status != PEP_STATUS_OK)
krista@853	1033	goto pep_error;
krista@1427	1034
krista@1987	1035	if (free_ptext){
krista@1987	1036	free(ptext);
krista@1987	1037	free_ptext=0;
krista@1987	1038	}
vb@260	1039	free(_src);
krista@2231	1040	_src = NULL;
vb@260	1041	assert(mimetext);
vb@260	1042	if (mimetext == NULL)
vb@260	1043	goto pep_error;
vb@260	1044
krista@1639	1045	if (flags & PEP_encrypt_flag_force_unsigned)
krista@1639	1046	status = encrypt_only(session, keys, mimetext, strlen(mimetext),
krista@1639	1047	&ctext, &csize);
krista@1639	1048	else
krista@1639	1049	status = encrypt_and_sign(session, keys, mimetext, strlen(mimetext),
krista@1639	1050	&ctext, &csize);
vb@260	1051	free(mimetext);
vb@260	1052	if (ctext == NULL)
vb@260	1053	goto pep_error;
vb@260	1054
vb@260	1055	dst->longmsg = strdup("this message was encrypted with p≡p "
lix@487	1056	"https://pEp-project.org");
vb@469	1057	assert(dst->longmsg);
vb@260	1058	if (dst->longmsg == NULL)
vb@260	1059	goto enomem;
vb@260	1060
vb@260	1061	char *v = strdup("Version: 1");
vb@469	1062	assert(v);
vb@260	1063	if (v == NULL)
vb@260	1064	goto enomem;
vb@260	1065
roker@802	1066	bloblist_t *_a = new_bloblist(v, strlen(v), "application/pgp-encrypted", NULL);
vb@260	1067	if (_a == NULL)
vb@260	1068	goto enomem;
vb@260	1069	dst->attachments = _a;
vb@288	1070
Edouard@882	1071	_a = bloblist_add(_a, ctext, csize, "application/octet-stream",
krista@1873	1072	"file://msg.asc");
vb@260	1073	if (_a == NULL)
vb@260	1074	goto enomem;
vb@260	1075
vb@260	1076	return PEP_STATUS_OK;
vb@260	1077
vb@260	1078	enomem:
vb@260	1079	status = PEP_OUT_OF_MEMORY;
vb@260	1080
vb@260	1081	pep_error:
vb@260	1082	if (free_ptext)
vb@260	1083	free(ptext);
krista@2231	1084	free(_src);
Edouard@882	1085	free(ctext);
vb@260	1086	return status;
vb@260	1087	}
vb@260	1088
vb@311	1089
vb@1004	1090	static PEP_rating _rating(PEP_comm_type ct, PEP_rating rating)
vb@311	1091	{
vb@311	1092	if (ct == PEP_ct_unknown)
vb@311	1093	return PEP_rating_undefined;
krista@1427	1094
krista@1243	1095	else if (ct == PEP_ct_key_not_found)
krista@1243	1096	return PEP_rating_have_no_key;
krista@1427	1097
krista@2593	1098	else if (ct == PEP_ct_compromised)
vb@311	1099	return PEP_rating_under_attack;
vb@311	1100
Edouard@442	1101	else if (ct == PEP_ct_mistrusted)
Edouard@442	1102	return PEP_rating_mistrust;
krista@1427	1103
vb@1004	1104	if (rating == PEP_rating_unencrypted_for_some)
vb@486	1105	return PEP_rating_unencrypted_for_some;
vb@486	1106
vb@486	1107	if (ct == PEP_ct_no_encryption \|\| ct == PEP_ct_no_encrypted_channel \|\|
vb@486	1108	ct == PEP_ct_my_key_not_included) {
vb@1004	1109	if (rating > PEP_rating_unencrypted_for_some)
vb@486	1110	return PEP_rating_unencrypted_for_some;
vb@486	1111	else
vb@486	1112	return PEP_rating_unencrypted;
vb@486	1113	}
vb@486	1114
vb@1004	1115	if (rating == PEP_rating_unencrypted)
vb@486	1116	return PEP_rating_unencrypted_for_some;
vb@486	1117
vb@486	1118	if (ct >= PEP_ct_confirmed_enc_anon)
vb@311	1119	return PEP_rating_trusted_and_anonymized;
vb@311	1120
vb@311	1121	else if (ct >= PEP_ct_strong_encryption)
vb@311	1122	return PEP_rating_trusted;
vb@311	1123
vb@311	1124	else if (ct >= PEP_ct_strong_but_unconfirmed && ct < PEP_ct_confirmed)
vb@311	1125	return PEP_rating_reliable;
vb@311	1126
vb@311	1127	else
vb@311	1128	return PEP_rating_unreliable;
vb@311	1129	}
vb@311	1130
vb@311	1131	static bool is_encrypted_attachment(const bloblist_t *blob)
vb@311	1132	{
vb@311	1133	assert(blob);
vb@311	1134
krista@1873	1135	if (blob == NULL \|\| blob->filename == NULL \|\| is_cid_uri(blob->filename))
vb@311	1136	return false;
krista@1427	1137
roker@1559	1138	char *ext = strrchr(blob->filename, '.');
vb@311	1139	if (ext == NULL)
vb@311	1140	return false;
vb@311	1141
vb@320	1142	if (strcmp(blob->mime_type, "application/octet-stream") == 0) {
krista@2757	1143	if (strcmp(ext, ".pgp") == 0 \|\| strcmp(ext, ".gpg") == 0)
vb@311	1144	return true;
vb@311	1145	}
krista@2757	1146	if (strcmp(ext, ".asc") == 0 && blob->size > 0) {
krista@2757	1147	const char* pubk_needle = "BEGIN PGP PUBLIC KEY";
krista@2757	1148	size_t pubk_needle_size = strlen(pubk_needle);
krista@2757	1149	const char* privk_needle = "BEGIN PGP PRIVATE KEY";
krista@2757	1150	size_t privk_needle_size = strlen(privk_needle);
krista@2757	1151
krista@2757	1152	if (!(_memnmemn(pubk_needle, pubk_needle_size, blob->value, blob->size)) &&
krista@2757	1153	!(_memnmemn(privk_needle, privk_needle_size, blob->value, blob->size)))
krista@2757	1154	return true;
vb@311	1155	}
vb@311	1156
vb@311	1157	return false;
vb@311	1158	}
vb@311	1159
vb@311	1160	static bool is_encrypted_html_attachment(const bloblist_t *blob)
vb@311	1161	{
vb@311	1162	assert(blob);
vb@311	1163	assert(blob->filename);
krista@1873	1164	if (blob == NULL \|\| blob->filename == NULL \|\| is_cid_uri(blob->filename))
krista@853	1165	return false;
vb@311	1166
krista@1873	1167	const char* bare_filename_ptr = _get_resource_ptr_noown(blob->filename);
krista@1873	1168	if (strncmp(bare_filename_ptr, "PGPexch.htm.", 12) == 0) {
krista@1873	1169	if (strcmp(bare_filename_ptr + 11, ".pgp") == 0 \|\|
krista@1873	1170	strcmp(bare_filename_ptr + 11, ".asc") == 0)
vb@311	1171	return true;
vb@311	1172	}
vb@311	1173
vb@311	1174	return false;
vb@311	1175	}
vb@311	1176
vb@311	1177	static char * without_double_ending(const char *filename)
vb@311	1178	{
vb@311	1179	assert(filename);
krista@1873	1180	if (filename == NULL \|\| is_cid_uri(filename))
krista@853	1181	return NULL;
krista@1427	1182
roker@862	1183	char *ext = strrchr(filename, '.');
vb@311	1184	if (ext == NULL)
vb@311	1185	return NULL;
vb@311	1186
vb@469	1187	char *result = strndup(filename, ext - filename);
vb@469	1188	assert(result);
vb@469	1189	return result;
vb@311	1190	}
vb@311	1191
vb@1004	1192	static PEP_rating decrypt_rating(PEP_STATUS status)
vb@311	1193	{
vb@311	1194	switch (status) {
vb@311	1195	case PEP_UNENCRYPTED:
vb@311	1196	case PEP_VERIFIED:
vb@311	1197	case PEP_VERIFY_NO_KEY:
vb@311	1198	case PEP_VERIFIED_AND_TRUSTED:
vb@311	1199	return PEP_rating_unencrypted;
vb@311	1200
vb@311	1201	case PEP_DECRYPTED:
krista@1748	1202	case PEP_DECRYPT_SIGNATURE_DOES_NOT_MATCH:
vb@311	1203	return PEP_rating_unreliable;
vb@311	1204
vb@311	1205	case PEP_DECRYPTED_AND_VERIFIED:
vb@311	1206	return PEP_rating_reliable;
vb@311	1207
vb@311	1208	case PEP_DECRYPT_NO_KEY:
vb@311	1209	return PEP_rating_have_no_key;
vb@311	1210
vb@311	1211	case PEP_DECRYPT_WRONG_FORMAT:
vb@311	1212	case PEP_CANNOT_DECRYPT_UNKNOWN:
vb@311	1213	return PEP_rating_cannot_decrypt;
vb@311	1214
vb@311	1215	default:
vb@311	1216	return PEP_rating_undefined;
vb@311	1217	}
vb@311	1218	}
vb@311	1219
vb@1004	1220	static PEP_rating key_rating(PEP_SESSION session, const char *fpr)
vb@311	1221	{
vb@311	1222
vb@311	1223	assert(session);
vb@311	1224	assert(fpr);
krista@1427	1225
krista@853	1226	if (session == NULL \|\| fpr == NULL)
krista@853	1227	return PEP_rating_undefined;
vb@311	1228
edouard@1632	1229
edouard@1632	1230	PEP_comm_type bare_comm_type = PEP_ct_unknown;
edouard@1876	1231	PEP_comm_type resulting_comm_type = PEP_ct_unknown;
krista@1615	1232	PEP_STATUS status = get_key_rating(session, fpr, &bare_comm_type);
vb@311	1233	if (status != PEP_STATUS_OK)
vb@311	1234	return PEP_rating_undefined;
vb@311	1235
edouard@1876	1236	PEP_comm_type least_comm_type = PEP_ct_unknown;
edouard@1876	1237	least_trust(session, fpr, &least_comm_type);
edouard@1876	1238
edouard@1876	1239	if (least_comm_type == PEP_ct_unknown) {
edouard@1876	1240	resulting_comm_type = bare_comm_type;
edouard@1876	1241	} else if (least_comm_type < PEP_ct_strong_but_unconfirmed \|\|
edouard@1876	1242	bare_comm_type < PEP_ct_strong_but_unconfirmed) {
edouard@1876	1243	// take minimum if anything bad
edouard@1876	1244	resulting_comm_type = least_comm_type < bare_comm_type ?
edouard@1876	1245	least_comm_type :
edouard@1876	1246	bare_comm_type;
edouard@1632	1247	} else {
edouard@1876	1248	resulting_comm_type = least_comm_type;
edouard@1632	1249	}
edouard@1876	1250	return _rating(resulting_comm_type, PEP_rating_undefined);
vb@311	1251	}
vb@311	1252
krista@1579	1253	static PEP_rating worst_rating(PEP_rating rating1, PEP_rating rating2) {
krista@1579	1254	return ((rating1 < rating2) ? rating1 : rating2);
krista@1579	1255	}
krista@1579	1256
edouard@1876	1257	static PEP_rating keylist_rating(PEP_SESSION session, stringlist_t keylist, char sender_fpr, PEP_rating sender_rating)
vb@311	1258	{
edouard@1876	1259	PEP_rating rating = sender_rating;
vb@311	1260
vb@311	1261	assert(keylist && keylist->value);
vb@311	1262	if (keylist == NULL \|\| keylist->value == NULL)
vb@486	1263	return PEP_rating_undefined;
vb@311	1264
vb@311	1265	stringlist_t *_kl;
vb@311	1266	for (_kl = keylist; _kl && _kl->value; _kl = _kl->next) {
edouard@1876	1267
edouard@1876	1268	// Ignore own fpr
edouard@1876	1269	if(_same_fpr(sender_fpr, strlen(sender_fpr), _kl->value, strlen(_kl->value)))
edouard@1876	1270	continue;
vb@311	1271
vb@1004	1272	PEP_rating _rating_ = key_rating(session, _kl->value);
krista@1579	1273
vb@1004	1274	if (_rating_ <= PEP_rating_mistrust)
vb@1004	1275	return _rating_;
krista@1610	1276
edouard@1876	1277	if (_rating_ == PEP_rating_unencrypted)
edouard@1876	1278	{
vb@1004	1279	if (rating > PEP_rating_unencrypted_for_some)
krista@1579	1280	rating = worst_rating(rating, PEP_rating_unencrypted_for_some);
vb@311	1281	}
edouard@1876	1282	else
edouard@1876	1283	{
edouard@1876	1284	rating = worst_rating(rating, _rating_);
edouard@1876	1285	}
vb@311	1286	}
vb@311	1287
vb@1004	1288	return rating;
vb@311	1289	}
vb@311	1290
krista@2461	1291	// Internal function WARNING:
krista@2461	1292	// Only call this on an ident that might have its FPR set from retrieval!
krista@2461	1293	// (or on one without an fpr)
krista@2461	1294	// We do not want myself() setting the fpr here.
vb@311	1295	static PEP_comm_type _get_comm_type(
vb@311	1296	PEP_SESSION session,
vb@311	1297	PEP_comm_type max_comm_type,
vb@311	1298	pEp_identity *ident
vb@311	1299	)
vb@311	1300	{
krista@2461	1301	PEP_STATUS status = PEP_STATUS_OK;
vb@311	1302
krista@2593	1303	if (max_comm_type == PEP_ct_compromised)
krista@2593	1304	return PEP_ct_compromised;
krista@1427	1305
Edouard@510	1306	if (max_comm_type == PEP_ct_mistrusted)
Edouard@510	1307	return PEP_ct_mistrusted;
vb@311	1308
krista@2461	1309	if (!is_me(session, ident))
krista@2461	1310	status = update_identity(session, ident);
krista@2461	1311	else
krista@2461	1312	status = myself(session, ident);
krista@2461	1313
vb@311	1314	if (status == PEP_STATUS_OK) {
krista@2593	1315	if (ident->comm_type == PEP_ct_compromised)
krista@2593	1316	return PEP_ct_compromised;
Edouard@510	1317	else if (ident->comm_type == PEP_ct_mistrusted)
Edouard@510	1318	return PEP_ct_mistrusted;
vb@311	1319	else
vb@951	1320	return _MIN(max_comm_type, ident->comm_type);
vb@311	1321	}
vb@311	1322	else {
vb@311	1323	return PEP_ct_unknown;
vb@311	1324	}
vb@311	1325	}
vb@311	1326
vb@731	1327	static void free_bl_entry(bloblist_t *bl)
vb@731	1328	{
vb@731	1329	if (bl) {
vb@731	1330	free(bl->value);
vb@731	1331	free(bl->mime_type);
vb@731	1332	free(bl->filename);
vb@731	1333	free(bl);
vb@731	1334	}
vb@731	1335	}
vb@731	1336
vb@731	1337	static bool is_key(const bloblist_t *bl)
vb@731	1338	{
Edouard@728	1339	return (// workaround for Apple Mail bugs
Edouard@728	1340	(is_mime_type(bl, "application/x-apple-msg-attachment") &&
Edouard@728	1341	is_fileending(bl, ".asc")) \|\|
Edouard@728	1342	// as binary, by file name
Edouard@728	1343	((bl->mime_type == NULL \|\|
Edouard@728	1344	is_mime_type(bl, "application/octet-stream")) &&
Edouard@728	1345	(is_fileending(bl, ".pgp") \|\| is_fileending(bl, ".gpg") \|\|
Edouard@728	1346	is_fileending(bl, ".key") \|\| is_fileending(bl, ".asc"))) \|\|
krista@1427	1347	// explicit mime type
Edouard@728	1348	is_mime_type(bl, "application/pgp-keys") \|\|
Edouard@728	1349	// as text, by file name
Edouard@728	1350	(is_mime_type(bl, "text/plain") &&
Edouard@728	1351	(is_fileending(bl, ".pgp") \|\| is_fileending(bl, ".gpg") \|\|
Edouard@728	1352	is_fileending(bl, ".key") \|\| is_fileending(bl, ".asc")))
Edouard@728	1353	);
vb@731	1354	}
vb@731	1355
vb@731	1356	static void remove_attached_keys(message *msg)
vb@731	1357	{
vb@731	1358	if (msg) {
vb@731	1359	bloblist_t *last = NULL;
vb@731	1360	for (bloblist_t *bl = msg->attachments; bl && bl->value; ) {
vb@731	1361	bloblist_t *next = bl->next;
vb@731	1362
vb@731	1363	if (is_key(bl)) {
vb@731	1364	if (last) {
vb@731	1365	last->next = next;
vb@731	1366	}
vb@731	1367	else {
vb@731	1368	msg->attachments = next;
vb@731	1369	}
vb@731	1370	free_bl_entry(bl);
vb@731	1371	}
vb@731	1372	else {
vb@731	1373	last = bl;
vb@731	1374	}
vb@731	1375	bl = next;
vb@731	1376	}
vb@731	1377	}
vb@731	1378	}
vb@731	1379
Edouard@734	1380	bool import_attached_keys(
krista@1427	1381	PEP_SESSION session,
Edouard@728	1382	const message *msg,
Edouard@728	1383	identity_list **private_idents
Edouard@728	1384	)
vb@311	1385	{
vb@311	1386	assert(session);
vb@311	1387	assert(msg);
krista@1427	1388
krista@853	1389	if (session == NULL \|\| msg == NULL)
krista@853	1390	return false;
vb@311	1391
vb@731	1392	bool remove = false;
vb@731	1393
vb@908	1394	int i = 0;
roker@1559	1395	for (bloblist_t *bl = msg->attachments; i < MAX_KEYS_TO_IMPORT && bl && bl->value;
krista@1427	1396	bl = bl->next, i++)
Edouard@747	1397	{
vb@908	1398	if (bl && bl->value && bl->size && bl->size < MAX_KEY_SIZE
krista@1427	1399	&& is_key(bl))
Edouard@728	1400	{
krista@2587	1401	char* blob_value = bl->value;
krista@2587	1402	size_t blob_size = bl->size;
krista@2587	1403	bool free_blobval = false;
krista@2587	1404
krista@2757	1405	if (is_encrypted_attachment(bl)) {
krista@2753	1406
krista@2587	1407	char* bl_ptext = NULL;
krista@2587	1408	size_t bl_psize = 0;
krista@2587	1409	stringlist_t* bl_keylist = NULL;
krista@2587	1410	PEP_STATUS _status = decrypt_and_verify(session,
krista@2587	1411	blob_value, blob_size,
krista@2587	1412	NULL, 0,
krista@2587	1413	&bl_ptext, &bl_psize,
krista@2587	1414	&bl_keylist);
krista@2587	1415	free_stringlist(bl_keylist); // we don't care about key encryption as long as we decrypt
krista@2587	1416	if (_status == PEP_DECRYPTED \|\| _status == PEP_DECRYPTED_AND_VERIFIED) {
krista@2587	1417	free_blobval = true;
krista@2587	1418	blob_value = bl_ptext;
krista@2587	1419	blob_size = bl_psize;
krista@2587	1420	}
krista@2587	1421	else {
krista@2587	1422	// This is an encrypted attachment we can do nothing with.
krista@2587	1423	// We shouldn't delete it or import it, because we can't
krista@2587	1424	// do the latter.
krista@2587	1425	free(bl_ptext);
krista@2587	1426	continue;
krista@2587	1427	}
krista@2587	1428	}
edouard@1745	1429	identity_list *local_private_idents = NULL;
krista@2587	1430	import_key(session, blob_value, blob_size, &local_private_idents);
vb@731	1431	remove = true;
edouard@1863	1432	if (private_idents && *private_idents == NULL && local_private_idents != NULL)
edouard@1745	1433	*private_idents = local_private_idents;
edouard@1745	1434	else
edouard@1745	1435	free_identity_list(local_private_idents);
krista@2587	1436	if (free_blobval)
krista@2587	1437	free(blob_value);
vb@311	1438	}
vb@311	1439	}
vb@731	1440	return remove;
vb@311	1441	}
vb@311	1442
Edouard@694	1443
Edouard@694	1444	PEP_STATUS _attach_key(PEP_SESSION session, const char* fpr, message *msg)
vb@311	1445	{
roker@1559	1446	char *keydata = NULL;
vb@311	1447	size_t size;
vb@311	1448
Edouard@694	1449	PEP_STATUS status = export_key(session, fpr, &keydata, &size);
Edouard@694	1450	assert(status == PEP_STATUS_OK);
Edouard@694	1451	if (status != PEP_STATUS_OK)
Edouard@694	1452	return status;
Edouard@694	1453	assert(size);
krista@1427	1454
roker@1559	1455	bloblist_t *bl = bloblist_add(msg->attachments, keydata, size, "application/pgp-keys",
krista@1873	1456	"file://pEpkey.asc");
krista@1427	1457
Edouard@694	1458	if (msg->attachments == NULL && bl)
Edouard@694	1459	msg->attachments = bl;
Edouard@694	1460
Edouard@694	1461	return PEP_STATUS_OK;
Edouard@694	1462	}
Edouard@694	1463
Edouard@694	1464	#define ONE_WEEK (7243600)
Edouard@694	1465
Edouard@694	1466	void attach_own_key(PEP_SESSION session, message *msg)
Edouard@694	1467	{
vb@311	1468	assert(session);
vb@311	1469	assert(msg);
krista@1427	1470
Edouard@558	1471	if (msg->dir == PEP_dir_incoming)
Edouard@558	1472	return;
Edouard@558	1473
vb@311	1474	assert(msg->from && msg->from->fpr);
vb@311	1475	if (msg->from == NULL \|\| msg->from->fpr == NULL)
vb@311	1476	return;
vb@311	1477
Edouard@694	1478	if(_attach_key(session, msg->from->fpr, msg) != PEP_STATUS_OK)
vb@311	1479	return;
krista@1427	1480
Edouard@694	1481	char *revoked_fpr = NULL;
Edouard@694	1482	uint64_t revocation_date = 0;
krista@1427	1483
Edouard@694	1484	if(get_revoked(session, msg->from->fpr,
Edouard@694	1485	&revoked_fpr, &revocation_date) == PEP_STATUS_OK &&
Edouard@694	1486	revoked_fpr != NULL)
Edouard@694	1487	{
Edouard@694	1488	time_t now = time(NULL);
krista@1427	1489
Edouard@694	1490	if (now < (time_t)revocation_date + ONE_WEEK)
Edouard@694	1491	{
Edouard@694	1492	_attach_key(session, revoked_fpr, msg);
Edouard@694	1493	}
Edouard@694	1494	}
Edouard@694	1495	free(revoked_fpr);
vb@311	1496	}
vb@311	1497
vb@311	1498	PEP_cryptotech determine_encryption_format(message *msg)
vb@311	1499	{
vb@311	1500	assert(msg);
krista@1427	1501
vb@311	1502	if (is_PGP_message_text(msg->longmsg)) {
vb@311	1503	msg->enc_format = PEP_enc_pieces;
vb@311	1504	return PEP_crypt_OpenPGP;
vb@311	1505	}
vb@311	1506	else if (msg->attachments && msg->attachments->next &&
vb@311	1507	is_mime_type(msg->attachments, "application/pgp-encrypted") &&
vb@311	1508	is_PGP_message_text(msg->attachments->next->value)
vb@311	1509	) {
vb@311	1510	msg->enc_format = PEP_enc_PGP_MIME;
vb@311	1511	return PEP_crypt_OpenPGP;
vb@311	1512	}
edouard@1557	1513	else if (msg->attachments && msg->attachments->next &&
edouard@1557	1514	is_mime_type(msg->attachments->next, "application/pgp-encrypted") &&
edouard@1557	1515	is_PGP_message_text(msg->attachments->value)
edouard@1557	1516	) {
edouard@1557	1517	msg->enc_format = PEP_enc_PGP_MIME_Outlook1;
edouard@1557	1518	return PEP_crypt_OpenPGP;
edouard@1557	1519	}
vb@311	1520	else {
vb@311	1521	msg->enc_format = PEP_enc_none;
vb@311	1522	return PEP_crypt_none;
vb@311	1523	}
vb@311	1524	}
vb@311	1525
krista@2617	1526	static void _cleanup_src(message* src, bool remove_attached_key) {
krista@2617	1527	assert(src);
krista@2617	1528
krista@2617	1529	if (!src)
krista@2617	1530	return;
krista@2617	1531
krista@2617	1532	char* longmsg = NULL;
krista@2617	1533	char* shortmsg = NULL;
krista@2617	1534	char* msg_wrap_info = NULL;
krista@2617	1535	separate_short_and_long(src->longmsg, &shortmsg, &msg_wrap_info,
krista@2617	1536	&longmsg);
krista@2617	1537	if (longmsg) {
krista@2617	1538	free(src->longmsg);
krista@2617	1539	free(shortmsg);
krista@2617	1540	free(msg_wrap_info);
krista@2617	1541	src->longmsg = longmsg;
krista@2617	1542	}
krista@2617	1543	if (remove_attached_key) {
krista@2617	1544	// End of the attachment list
krista@2617	1545	if (src->attachments) {
krista@2617	1546	bloblist_t* tmp = src->attachments;
krista@2617	1547	while (tmp->next && tmp->next->next) {
krista@2617	1548	tmp = tmp->next;
krista@2617	1549	}
krista@2617	1550	free_bloblist(tmp->next);
krista@2617	1551	tmp->next = NULL;
krista@2617	1552	}
krista@2617	1553	}
krista@2617	1554	}
krista@2617	1555
vb@48	1556	DYNAMIC_API PEP_STATUS encrypt_message(
vb@37	1557	PEP_SESSION session,
vb@113	1558	message *src,
vb@37	1559	stringlist_t * extra,
vb@38	1560	message **dst,
vb@939	1561	PEP_enc_format enc_format,
vb@939	1562	PEP_encrypt_flags_t flags
vb@37	1563	)
vb@37	1564	{
vb@37	1565	PEP_STATUS status = PEP_STATUS_OK;
vb@63	1566	message * msg = NULL;
vb@63	1567	stringlist_t * keys = NULL;
krista@2121	1568	message* _src = src;
krista@2626	1569
krista@2626	1570	bool added_key_to_real_src = false;
krista@2121	1571
vb@37	1572	assert(session);
vb@37	1573	assert(src);
vb@37	1574	assert(dst);
vb@81	1575
vb@2338	1576	if (!(session && src && dst))
krista@2501	1577	return PEP_ILLEGAL_VALUE;
vb@191	1578
Edouard@550	1579	if (src->dir == PEP_dir_incoming)
krista@2501	1580	return PEP_ILLEGAL_VALUE;
krista@1427	1581
vb@250	1582	determine_encryption_format(src);
vb@2338	1583	// TODO: change this for multi-encryption in message format 2.0
vb@260	1584	if (src->enc_format != PEP_enc_none)
krista@2501	1585	return PEP_ILLEGAL_VALUE;
vb@235	1586
krista@2770	1587	bool force_v_1 = flags & PEP_encrypt_flag_force_version_1;
krista@2770	1588
vb@259	1589	*dst = NULL;
vb@37	1590
krista@2461	1591	if (src->from && (!src->from->user_id \|\| src->from->user_id[0] == '\0')) {
krista@2461	1592	char* own_id = NULL;
krista@2461	1593	status = get_default_own_userid(session, &own_id);
krista@2461	1594	if (own_id) {
krista@2461	1595	free(src->from->user_id);
krista@2461	1596	src->from->user_id = own_id; // ownership transfer
krista@2461	1597	}
krista@2461	1598	}
krista@2461	1599
vb@236	1600	status = myself(session, src->from);
vb@236	1601	if (status != PEP_STATUS_OK)
krista@2501	1602	goto pep_error;
Edouard@558	1603
vb@80	1604	keys = new_stringlist(src->from->fpr);
vb@63	1605	if (keys == NULL)
vb@63	1606	goto enomem;
vb@37	1607
vb@39	1608	stringlist_t *_k = keys;
vb@39	1609
vb@39	1610	if (extra) {
vb@39	1611	_k = stringlist_append(_k, extra);
vb@63	1612	if (_k == NULL)
vb@63	1613	goto enomem;
vb@37	1614	}
vb@39	1615
vb@299	1616	bool dest_keys_found = true;
krista@2470	1617	bool has_pep_user = false;
krista@2470	1618
Edouard@510	1619	PEP_comm_type max_comm_type = PEP_ct_pEp;
vb@299	1620
vb@37	1621	identity_list * _il;
krista@1427	1622
krista@2617	1623
vb@2341	1624	if (enc_format != PEP_enc_none && (_il = src->bcc) && _il->ident)
Edouard@545	1625	{
Edouard@545	1626	// BCC limited support:
Edouard@545	1627	// - App splits mails with BCC in multiple mails.
Edouard@545	1628	// - Each email is encrypted separately
krista@1427	1629
Edouard@789	1630	if(_il->next \|\| (src->to && src->to->ident) \|\| (src->cc && src->cc->ident))
Edouard@545	1631	{
Edouard@545	1632	// Only one Bcc with no other recipient allowed for now
Edouard@545	1633	return PEP_ILLEGAL_VALUE;
Edouard@545	1634	}
krista@1427	1635
krista@2461	1636	PEP_STATUS _status = PEP_STATUS_OK;
krista@2461	1637	if (!is_me(session, _il->ident)) {
krista@2461	1638	_status = update_identity(session, _il->ident);
krista@2461	1639	if (_status == PEP_CANNOT_FIND_IDENTITY) {
krista@2461	1640	_il->ident->comm_type = PEP_ct_key_not_found;
krista@2461	1641	_status = PEP_STATUS_OK;
krista@2461	1642	}
krista@2548	1643	bool is_blacklisted = false;
krista@2549	1644	if (_il->ident->fpr && IS_PGP_CT(_il->ident->comm_type)) {
krista@2548	1645	_status = blacklist_is_listed(session, _il->ident->fpr, &is_blacklisted);
krista@2548	1646	if (_status != PEP_STATUS_OK) {
krista@2548	1647	// DB error
krista@2548	1648	status = PEP_UNENCRYPTED;
krista@2548	1649	goto pep_error;
krista@2548	1650	}
krista@2548	1651	if (is_blacklisted) {
krista@2548	1652	bool user_default, ident_default, address_default;
krista@2548	1653	_status = get_valid_pubkey(session, _il->ident,
krista@2548	1654	&ident_default, &user_default,
krista@2548	1655	&address_default,
krista@2548	1656	true);
krista@2548	1657	if (_status != PEP_STATUS_OK \|\| _il->ident->fpr == NULL) {
krista@2548	1658	_il->ident->comm_type = PEP_ct_key_not_found;
krista@2548	1659	_status = PEP_STATUS_OK;
krista@2548	1660	}
krista@2548	1661	}
krista@2548	1662	}
krista@2496	1663	if (!has_pep_user && !EMPTYSTR(_il->ident->user_id))
krista@2470	1664	is_pep_user(session, _il->ident, &has_pep_user);
krista@2461	1665	}
krista@2461	1666	else
krista@2461	1667	_status = myself(session, _il->ident);
vb@299	1668	if (_status != PEP_STATUS_OK) {
krista@2477	1669	status = PEP_UNENCRYPTED;
krista@2501	1670	goto pep_error;
vb@299	1671	}
krista@1427	1672
vb@299	1673	if (_il->ident->fpr && _il->ident->fpr[0]) {
vb@39	1674	_k = stringlist_add(_k, _il->ident->fpr);
vb@63	1675	if (_k == NULL)
vb@63	1676	goto enomem;
Edouard@510	1677	max_comm_type = _get_comm_type(session, max_comm_type,
Edouard@510	1678	_il->ident);
vb@37	1679	}
vb@299	1680	else {
vb@299	1681	dest_keys_found = false;
vb@37	1682	status = PEP_KEY_NOT_FOUND;
krista@1427	1683	}
vb@299	1684	}
Edouard@545	1685	else
Edouard@545	1686	{
Edouard@545	1687	for (_il = src->to; _il && _il->ident; _il = _il->next) {
krista@2461	1688	PEP_STATUS _status = PEP_STATUS_OK;
krista@2461	1689	if (!is_me(session, _il->ident)) {
krista@2461	1690	_status = update_identity(session, _il->ident);
krista@2461	1691	if (_status == PEP_CANNOT_FIND_IDENTITY) {
krista@2461	1692	_il->ident->comm_type = PEP_ct_key_not_found;
krista@2461	1693	_status = PEP_STATUS_OK;
krista@2461	1694	}
krista@2548	1695	bool is_blacklisted = false;
krista@2549	1696	if (_il->ident->fpr && IS_PGP_CT(_il->ident->comm_type)) {
krista@2548	1697	_status = blacklist_is_listed(session, _il->ident->fpr, &is_blacklisted);
krista@2548	1698	if (_status != PEP_STATUS_OK) {
krista@2548	1699	// DB error
krista@2548	1700	status = PEP_UNENCRYPTED;
krista@2548	1701	goto pep_error;
krista@2548	1702	}
krista@2548	1703	if (is_blacklisted) {
krista@2548	1704	bool user_default, ident_default, address_default;
krista@2548	1705	_status = get_valid_pubkey(session, _il->ident,
krista@2548	1706	&ident_default, &user_default,
krista@2548	1707	&address_default,
krista@2548	1708	true);
krista@2548	1709	if (_status != PEP_STATUS_OK \|\| _il->ident->fpr == NULL) {
krista@2548	1710	_il->ident->comm_type = PEP_ct_key_not_found;
krista@2548	1711	_status = PEP_STATUS_OK;
krista@2548	1712	}
krista@2548	1713	}
krista@2548	1714	}
krista@2496	1715	if (!has_pep_user && !EMPTYSTR(_il->ident->user_id))
krista@2470	1716	is_pep_user(session, _il->ident, &has_pep_user);
krista@2461	1717	}
krista@2461	1718	else
krista@2461	1719	_status = myself(session, _il->ident);
Edouard@545	1720	if (_status != PEP_STATUS_OK) {
krista@2477	1721	status = PEP_UNENCRYPTED;
krista@2501	1722	goto pep_error;
Edouard@545	1723	}
vb@299	1724
Edouard@545	1725	if (_il->ident->fpr && _il->ident->fpr[0]) {
Edouard@545	1726	_k = stringlist_add(_k, _il->ident->fpr);
Edouard@545	1727	if (_k == NULL)
Edouard@545	1728	goto enomem;
Edouard@545	1729	max_comm_type = _get_comm_type(session, max_comm_type,
Edouard@545	1730	_il->ident);
Edouard@545	1731	}
Edouard@545	1732	else {
Edouard@545	1733	dest_keys_found = false;
Edouard@545	1734	status = PEP_KEY_NOT_FOUND;
Edouard@545	1735	}
vb@299	1736	}
vb@299	1737
Edouard@545	1738	for (_il = src->cc; _il && _il->ident; _il = _il->next) {
krista@2461	1739	PEP_STATUS _status = PEP_STATUS_OK;
krista@2461	1740	if (!is_me(session, _il->ident)) {
krista@2461	1741	_status = update_identity(session, _il->ident);
krista@2461	1742	if (_status == PEP_CANNOT_FIND_IDENTITY) {
krista@2461	1743	_il->ident->comm_type = PEP_ct_key_not_found;
krista@2461	1744	_status = PEP_STATUS_OK;
krista@2461	1745	}
krista@2548	1746	bool is_blacklisted = false;
krista@2549	1747	if (_il->ident->fpr && IS_PGP_CT(_il->ident->comm_type)) {
krista@2548	1748	_status = blacklist_is_listed(session, _il->ident->fpr, &is_blacklisted);
krista@2548	1749	if (_status != PEP_STATUS_OK) {
krista@2548	1750	// DB error
krista@2548	1751	status = PEP_UNENCRYPTED;
krista@2548	1752	goto pep_error;
krista@2548	1753	}
krista@2548	1754	if (is_blacklisted) {
krista@2548	1755	bool user_default, ident_default, address_default;
krista@2548	1756	_status = get_valid_pubkey(session, _il->ident,
krista@2548	1757	&ident_default, &user_default,
krista@2548	1758	&address_default,
krista@2548	1759	true);
krista@2548	1760	if (_status != PEP_STATUS_OK \|\| _il->ident->fpr == NULL) {
krista@2548	1761	_il->ident->comm_type = PEP_ct_key_not_found;
krista@2548	1762	_status = PEP_STATUS_OK;
krista@2548	1763	}
krista@2548	1764	}
krista@2548	1765	}
krista@2496	1766	if (!has_pep_user && !EMPTYSTR(_il->ident->user_id))
krista@2470	1767	is_pep_user(session, _il->ident, &has_pep_user);
krista@2461	1768	}
krista@2461	1769	else
krista@2461	1770	_status = myself(session, _il->ident);
Edouard@545	1771	if (_status != PEP_STATUS_OK)
Edouard@545	1772	{
krista@2477	1773	status = PEP_UNENCRYPTED;
krista@2501	1774	goto pep_error;
Edouard@545	1775	}
Edouard@545	1776
Edouard@545	1777	if (_il->ident->fpr && _il->ident->fpr[0]) {
Edouard@545	1778	_k = stringlist_add(_k, _il->ident->fpr);
Edouard@545	1779	if (_k == NULL)
Edouard@545	1780	goto enomem;
Edouard@545	1781	max_comm_type = _get_comm_type(session, max_comm_type,
Edouard@545	1782	_il->ident);
Edouard@545	1783	}
Edouard@545	1784	else {
Edouard@545	1785	dest_keys_found = false;
Edouard@545	1786	}
vb@299	1787	}
vb@37	1788	}
krista@2617	1789
vb@2340	1790	if (enc_format == PEP_enc_none \|\| !dest_keys_found \|\|
krista@1640	1791	stringlist_length(keys) == 0 \|\|
Edouard@510	1792	_rating(max_comm_type,
Edouard@510	1793	PEP_rating_undefined) < PEP_rating_reliable)
Edouard@510	1794	{
vb@301	1795	free_stringlist(keys);
krista@2470	1796	if ((has_pep_user \|\| !session->passive_mode) &&
edouard@1899	1797	!(flags & PEP_encrypt_flag_force_no_attached_key)) {
vb@465	1798	attach_own_key(session, src);
krista@2617	1799	added_key_to_real_src = true;
edouard@1899	1800	}
krista@2527	1801	decorate_message(src, PEP_rating_undefined, NULL, true);
krista@2501	1802	return PEP_UNENCRYPTED;
vb@301	1803	}
vb@301	1804	else {
krista@2152	1805	// FIXME - we need to deal with transport types (via flag)
krista@2770	1806	if ((!PEP_encrypt_flag_force_version_1) && ((max_comm_type \| PEP_ct_confirmed) == PEP_ct_pEp)) {
krista@2629	1807	_src = wrap_message_as_attachment(NULL, src, false);
krista@2176	1808	if (!_src)
krista@2176	1809	goto pep_error;
krista@2121	1810	}
krista@2157	1811	else {
krista@2157	1812	// hide subject
krista@2168	1813	if (!session->unencrypted_subject) {
krista@2168	1814	status = replace_subject(_src);
krista@2168	1815	if (status == PEP_OUT_OF_MEMORY)
krista@2168	1816	goto enomem;
krista@2168	1817	}
krista@2617	1818	if (!(flags & PEP_encrypt_flag_force_no_attached_key))
krista@2617	1819	added_key_to_real_src = true;
krista@2157	1820	}
krista@2152	1821	if (!(flags & PEP_encrypt_flag_force_no_attached_key))
krista@2152	1822	attach_own_key(session, _src);
krista@2152	1823
krista@2121	1824	msg = clone_to_empty_message(_src);
vb@299	1825	if (msg == NULL)
vb@299	1826	goto enomem;
vb@299	1827
vb@81	1828	switch (enc_format) {
krista@2121	1829	case PEP_enc_PGP_MIME:
krista@2121	1830	case PEP_enc_PEP: // BUG: should be implemented extra
krista@2121	1831	status = encrypt_PGP_MIME(session, _src, keys, msg, flags);
krista@2121	1832	break;
krista@2121	1833
krista@2121	1834	/* case PEP_enc_PEP:
krista@2121	1835	// TODO: implement
krista@2121	1836	NOT_IMPLEMENTED */
krista@2121	1837
krista@2121	1838	default:
krista@2121	1839	assert(0);
krista@2121	1840	status = PEP_ILLEGAL_VALUE;
krista@2501	1841	goto pep_error;
vb@37	1842	}
krista@1427	1843
Edouard@392	1844	if (status == PEP_OUT_OF_MEMORY)
Edouard@392	1845	goto enomem;
krista@1427	1846
vb@480	1847	if (status != PEP_STATUS_OK)
krista@2501	1848	goto pep_error;
vb@37	1849	}
vb@37	1850
vb@37	1851	free_stringlist(keys);
vb@63	1852
vb@469	1853	if (msg && msg->shortmsg == NULL) {
krista@2121	1854	msg->shortmsg = strdup("");
vb@469	1855	assert(msg->shortmsg);
krista@853	1856	if (msg->shortmsg == NULL)
krista@853	1857	goto enomem;
vb@469	1858	}
vb@64	1859
edouard@1542	1860	if (msg) {
krista@2284	1861	decorate_message(msg, PEP_rating_undefined, NULL, true);
krista@2176	1862	if (_src->id) {
krista@2176	1863	msg->id = strdup(_src->id);
edouard@1542	1864	assert(msg->id);
edouard@1542	1865	if (msg->id == NULL)
edouard@1542	1866	goto enomem;
edouard@1542	1867	}
edouard@1542	1868	}
vb@311	1869
vb@63	1870	*dst = msg;
krista@2121	1871
krista@2121	1872	// ??? FIXME: Check to be sure we don't have references btw _src and msg.
krista@2121	1873	// I don't think we do.
krista@2121	1874	if (_src && _src != src)
krista@2121	1875	free_message(_src);
krista@2617	1876
krista@2617	1877	_cleanup_src(src, added_key_to_real_src);
krista@2121	1878
krista@2501	1879	return status;
vb@63	1880
vb@63	1881	enomem:
vb@63	1882	status = PEP_OUT_OF_MEMORY;
vb@63	1883
vb@63	1884	pep_error:
vb@63	1885	free_stringlist(keys);
vb@63	1886	free_message(msg);
krista@2121	1887	if (_src && _src != src)
krista@2121	1888	free_message(_src);
krista@2035	1889
krista@2617	1890	_cleanup_src(src, added_key_to_real_src);
krista@2617	1891
krista@2501	1892	return status;
vb@37	1893	}
vb@37	1894
krista@2590	1895	DYNAMIC_API PEP_STATUS encrypt_message_and_add_priv_key(
krista@2590	1896	PEP_SESSION session,
krista@2590	1897	message *src,
krista@2590	1898	message **dst,
krista@2590	1899	const char* to_fpr,
krista@2594	1900	PEP_enc_format enc_format,
krista@2594	1901	PEP_encrypt_flags_t flags
krista@2590	1902	)
krista@2590	1903	{
krista@2590	1904	assert(session);
krista@2590	1905	assert(src);
krista@2590	1906	assert(dst);
krista@2590	1907	assert(to_fpr);
krista@2595	1908
krista@2590	1909	if (!session \|\| !src \|\| !dst \|\| !to_fpr)
krista@2590	1910	return PEP_ILLEGAL_VALUE;
krista@2590	1911
krista@2590	1912	if (enc_format == PEP_enc_none)
krista@2590	1913	return PEP_ILLEGAL_VALUE;
krista@2590	1914
krista@2590	1915	if (src->cc \|\| src->bcc)
krista@2590	1916	return PEP_ILLEGAL_VALUE;
krista@2590	1917
krista@2590	1918	if (!src->to \|\| src->to->next)
krista@2590	1919	return PEP_ILLEGAL_VALUE;
krista@2590	1920
krista@2590	1921	if (!src->from->address \|\| !src->to->ident \|\| !src->to->ident->address)
krista@2590	1922	return PEP_ILLEGAL_VALUE;
krista@2590	1923
krista@2618	1924	if (strcasecmp(src->from->address, src->to->ident->address) != 0)
krista@2590	1925	return PEP_ILLEGAL_VALUE;
krista@2590	1926
krista@2595	1927	stringlist_t* keys = NULL;
krista@2595	1928
krista@2590	1929	char* own_id = NULL;
krista@2590	1930	char* default_id = NULL;
krista@2590	1931
krista@2608	1932	pEp_identity* own_identity = NULL;
krista@2608	1933	char* own_private_fpr = NULL;
krista@2608	1934
krista@2608	1935	char* priv_key_data = NULL;
krista@2608	1936
krista@2590	1937	PEP_STATUS status = get_default_own_userid(session, &own_id);
krista@2590	1938
krista@2590	1939	if (!own_id)
krista@2590	1940	return PEP_UNKNOWN_ERROR; // Probably a DB error at this point
krista@2590	1941
krista@2590	1942	if (src->from->user_id) {
krista@2590	1943	if (strcmp(src->from->user_id, own_id) != 0) {
krista@2590	1944	status = get_userid_alias_default(session, src->from->user_id, &default_id);
krista@2590	1945	if (status != PEP_STATUS_OK \|\| !default_id \|\| strcmp(default_id, own_id) != 0) {
krista@2590	1946	status = PEP_ILLEGAL_VALUE;
krista@2590	1947	goto pep_free;
krista@2590	1948	}
krista@2590	1949	}
krista@2590	1950	}
krista@2590	1951
krista@2590	1952	// Ok, we are at least marginally sure the initial stuff is ok.
krista@2590	1953
krista@2590	1954	// Let's get our own, normal identity
krista@2608	1955	own_identity = identity_dup(src->from);
krista@2595	1956	status = myself(session, own_identity);
krista@2590	1957
krista@2590	1958	if (status != PEP_STATUS_OK)
krista@2590	1959	goto pep_free;
krista@2590	1960
krista@2590	1961	// Ok, now we know the address is an own address. All good. Then...
krista@2608	1962	own_private_fpr = own_identity->fpr;
krista@2590	1963	own_identity->fpr = strdup(to_fpr);
krista@2590	1964
krista@2590	1965	status = get_trust(session, own_identity);
krista@2590	1966
krista@2595	1967	if (status != PEP_STATUS_OK) {
krista@2595	1968	if (status == PEP_CANNOT_FIND_IDENTITY)
krista@2595	1969	status = PEP_ILLEGAL_VALUE;
krista@2590	1970	goto pep_free;
krista@2595	1971	}
krista@2590	1972
krista@2590	1973	if ((own_identity->comm_type & PEP_ct_confirmed) != PEP_ct_confirmed) {
krista@2590	1974	status = PEP_ILLEGAL_VALUE;
krista@2590	1975	goto pep_free;
krista@2590	1976	}
krista@2590	1977
krista@2590	1978	// Ok, so all the things are now allowed.
krista@2590	1979	// So let's get our own private key and roll with it.
krista@2591	1980	size_t priv_key_size = 0;
krista@2591	1981
krista@2593	1982	status = export_secret_key(session, own_private_fpr, &priv_key_data,
krista@2592	1983	&priv_key_size);
krista@2591	1984
krista@2591	1985	if (status != PEP_STATUS_OK)
krista@2591	1986	goto pep_free;
krista@2591	1987
krista@2591	1988	if (!priv_key_data) {
krista@2591	1989	status = PEP_CANNOT_EXPORT_KEY;
krista@2591	1990	goto pep_free;
krista@2591	1991	}
krista@2591	1992
krista@2592	1993	// Ok, fine... let's encrypt yon blob
krista@2595	1994	keys = new_stringlist(own_private_fpr);
krista@2592	1995	if (!keys) {
krista@2592	1996	status = PEP_OUT_OF_MEMORY;
krista@2592	1997	goto pep_free;
krista@2592	1998	}
krista@2592	1999
krista@2595	2000	stringlist_add(keys, to_fpr);
krista@2595	2001
krista@2592	2002	char* encrypted_key_text = NULL;
krista@2592	2003	size_t encrypted_key_size = 0;
krista@2594	2004
krista@2594	2005	if (flags & PEP_encrypt_flag_force_unsigned)
krista@2594	2006	status = encrypt_only(session, keys, priv_key_data, priv_key_size,
krista@2592	2007	&encrypted_key_text, &encrypted_key_size);
krista@2594	2008	else
krista@2594	2009	status = encrypt_and_sign(session, keys, priv_key_data, priv_key_size,
krista@2594	2010	&encrypted_key_text, &encrypted_key_size);
krista@2592	2011
krista@2592	2012	if (!encrypted_key_text) {
krista@2592	2013	status = PEP_UNKNOWN_ERROR;
krista@2592	2014	goto pep_free;
krista@2592	2015	}
krista@2592	2016
krista@2592	2017	// We will have to delete this before returning, as we allocated it.
krista@2592	2018	bloblist_t* created_bl = NULL;
krista@2592	2019	bloblist_t* created_predecessor = NULL;
krista@2595	2020
krista@2595	2021	bloblist_t* old_head = NULL;
krista@2595	2022
krista@2595	2023	if (!src->attachments \|\| src->attachments->value == NULL) {
krista@2636	2024	if (src->attachments && src->attachments->value == NULL) {
krista@2595	2025	old_head = src->attachments;
krista@2595	2026	src->attachments = NULL;
krista@2595	2027	}
krista@2592	2028	src->attachments = new_bloblist(encrypted_key_text, encrypted_key_size,
krista@2592	2029	"application/octet-stream",
krista@2592	2030	"file://pEpkey.asc.pgp");
krista@2592	2031	created_bl = src->attachments;
krista@2592	2032	}
krista@2592	2033	else {
krista@2592	2034	bloblist_t* tmp = src->attachments;
krista@2595	2035	while (tmp && tmp->next) {
krista@2595	2036	tmp = tmp->next;
krista@2592	2037	}
krista@2595	2038	created_predecessor = tmp;
krista@2595	2039	created_bl = bloblist_add(tmp,
krista@2592	2040	encrypted_key_text, encrypted_key_size,
krista@2592	2041	"application/octet-stream",
krista@2592	2042	"file://pEpkey.asc.pgp");
krista@2592	2043	}
krista@2592	2044
krista@2592	2045	if (!created_bl) {
krista@2592	2046	status = PEP_OUT_OF_MEMORY;
krista@2592	2047	goto pep_free;
krista@2592	2048	}
krista@2592	2049
krista@2592	2050	// Ok, it's in there. Let's do this.
krista@2770	2051	status = encrypt_message(session, src, keys, dst, enc_format, flags);
krista@2592	2052
krista@2592	2053	// Delete what we added to src
krista@2592	2054	free_bloblist(created_bl);
krista@2592	2055	if (created_predecessor)
krista@2592	2056	created_predecessor->next = NULL;
krista@2595	2057	else {
krista@2595	2058	if (old_head)
krista@2595	2059	src->attachments = old_head;
krista@2595	2060	else
krista@2595	2061	src->attachments = NULL;
krista@2595	2062	}
krista@2592	2063
krista@2590	2064	pep_free:
krista@2590	2065	free(own_id);
krista@2590	2066	free(default_id);
krista@2591	2067	free(own_private_fpr);
krista@2608	2068	free(priv_key_data);
krista@2591	2069	free_identity(own_identity);
krista@2592	2070	free_stringlist(keys);
krista@2590	2071	return status;
krista@2590	2072	}
krista@2590	2073
krista@2590	2074
krista@995	2075	DYNAMIC_API PEP_STATUS encrypt_message_for_self(
krista@992	2076	PEP_SESSION session,
krista@992	2077	pEp_identity* target_id,
krista@992	2078	message *src,
krista@2588	2079	stringlist_t* extra,
krista@992	2080	message **dst,
markus@1633	2081	PEP_enc_format enc_format,
markus@1633	2082	PEP_encrypt_flags_t flags
krista@992	2083	)
krista@992	2084	{
krista@992	2085	PEP_STATUS status = PEP_STATUS_OK;
krista@992	2086	message * msg = NULL;
krista@992	2087	stringlist_t * keys = NULL;
krista@2185	2088	message* _src = src;
krista@992	2089
krista@992	2090	assert(session);
krista@992	2091	assert(src);
krista@992	2092	assert(dst);
krista@992	2093	assert(enc_format != PEP_enc_none);
krista@992	2094
krista@992	2095	if (!(session && src && dst && enc_format != PEP_enc_none))
krista@2501	2096	return PEP_ILLEGAL_VALUE;
krista@992	2097
krista@2610	2098	// if (src->dir == PEP_dir_incoming)
krista@2610	2099	// return PEP_ILLEGAL_VALUE;
krista@1427	2100
krista@992	2101	determine_encryption_format(src);
krista@992	2102	if (src->enc_format != PEP_enc_none)
krista@2501	2103	return PEP_ILLEGAL_VALUE;
krista@992	2104
krista@2461	2105	if (target_id && (!target_id->user_id \|\| target_id->user_id[0] == '\0')) {
krista@2461	2106	char* own_id = NULL;
krista@2461	2107	status = get_default_own_userid(session, &own_id);
krista@2461	2108	if (own_id) {
krista@2461	2109	free(target_id->user_id);
krista@2461	2110	target_id->user_id = own_id; // ownership transfer
krista@2461	2111	}
krista@2461	2112	}
krista@2612	2113
krista@2612	2114	if (target_id->address) {
krista@2612	2115	status = myself(session, target_id);
krista@2612	2116	if (status != PEP_STATUS_OK)
krista@2612	2117	goto pep_error;
krista@2612	2118	}
krista@2615	2119	else if (!target_id->fpr)
krista@2612	2120	return PEP_ILLEGAL_VALUE;
krista@2612	2121
krista@992	2122	*dst = NULL;
krista@992	2123
krista@2461	2124	// PEP_STATUS _status = update_identity(session, target_id);
krista@2461	2125	// if (_status != PEP_STATUS_OK) {
krista@2461	2126	// status = _status;
krista@2461	2127	// goto pep_error;
krista@2461	2128	// }
krista@992	2129
krista@994	2130	char* target_fpr = target_id->fpr;
krista@994	2131	if (!target_fpr)
krista@994	2132	return PEP_KEY_NOT_FOUND; // FIXME: Error condition
krista@1685	2133
krista@994	2134	keys = new_stringlist(target_fpr);
krista@1685	2135
krista@2588	2136	stringlist_t *_k = keys;
krista@2588	2137
krista@2588	2138	if (extra) {
krista@2588	2139	_k = stringlist_append(_k, extra);
krista@2588	2140	if (_k == NULL)
krista@2588	2141	goto enomem;
krista@2588	2142	}
krista@2588	2143
krista@1640	2144	/* KG: did we ever do this??? */
krista@2617	2145	// if (!(flags & PEP_encrypt_flag_force_no_attached_key))
krista@2617	2146	// _attach_key(session, target_fpr, src);
krista@1427	2147
krista@2629	2148	_src = wrap_message_as_attachment(NULL, src, false);
krista@2185	2149	if (!_src)
krista@2185	2150	goto pep_error;
krista@2185	2151
krista@2185	2152	msg = clone_to_empty_message(_src);
krista@992	2153	if (msg == NULL)
krista@992	2154	goto enomem;
krista@992	2155
krista@992	2156	switch (enc_format) {
krista@992	2157	case PEP_enc_PGP_MIME:
krista@992	2158	case PEP_enc_PEP: // BUG: should be implemented extra
krista@2185	2159	status = encrypt_PGP_MIME(session, _src, keys, msg, flags);
krista@2617	2160	if (status == PEP_STATUS_OK \|\| (src->longmsg && strstr(src->longmsg, "INNER")))
krista@2617	2161	_cleanup_src(src, false);
krista@992	2162	break;
krista@992	2163
krista@992	2164	default:
krista@992	2165	assert(0);
krista@992	2166	status = PEP_ILLEGAL_VALUE;
krista@992	2167	goto pep_error;
krista@992	2168	}
krista@1427	2169
krista@992	2170	if (status == PEP_OUT_OF_MEMORY)
krista@992	2171	goto enomem;
krista@1427	2172
krista@992	2173	if (status != PEP_STATUS_OK)
krista@992	2174	goto pep_error;
krista@992	2175
krista@994	2176	if (msg && msg->shortmsg == NULL) {
krista@2045	2177	msg->shortmsg = _pep_subj_copy();
krista@994	2178	assert(msg->shortmsg);
krista@994	2179	if (msg->shortmsg == NULL)
krista@994	2180	goto enomem;
krista@994	2181	}
krista@992	2182
edouard@1542	2183	if (msg) {
krista@2185	2184	if (_src->id) {
krista@2185	2185	msg->id = strdup(_src->id);
edouard@1542	2186	assert(msg->id);
edouard@1542	2187	if (msg->id == NULL)
edouard@1542	2188	goto enomem;
edouard@1542	2189	}
krista@2530	2190	decorate_message(msg, PEP_rating_undefined, NULL, true);
edouard@1542	2191	}
edouard@1542	2192
krista@992	2193	*dst = msg;
krista@2185	2194
krista@2185	2195	if (src != _src)
krista@2185	2196	free_message(_src);
krista@2185	2197
krista@992	2198	return status;
krista@992	2199
krista@992	2200	enomem:
krista@992	2201	status = PEP_OUT_OF_MEMORY;
krista@992	2202
krista@992	2203	pep_error:
krista@992	2204	free_stringlist(keys);
krista@992	2205	free_message(msg);
krista@2185	2206	if (src != _src)
krista@2185	2207	free_message(_src);
krista@992	2208
krista@2501	2209	return status;
krista@992	2210	}
krista@992	2211
krista@2469	2212	// static PEP_STATUS _update_identity_for_incoming_message(
krista@2469	2213	// PEP_SESSION session,
krista@2469	2214	// const message *src
krista@2469	2215	// )
krista@2469	2216	// {
krista@2469	2217	// PEP_STATUS status;
krista@2469	2218	//
krista@2469	2219	// if (src->from && src->from->address) {
krista@2469	2220	// if (!is_me(session, src->from))
krista@2469	2221	// status = update_identity(session, src->from);
krista@2469	2222	// else
krista@2469	2223	// status = myself(session, src->from);
krista@2469	2224	// if (status == PEP_STATUS_OK
krista@2469	2225	// && is_a_pEpmessage(src)
krista@2469	2226	// && src->from->comm_type >= PEP_ct_OpenPGP_unconfirmed
krista@2469	2227	// && src->from->comm_type != PEP_ct_pEp_unconfirmed
krista@2469	2228	// && src->from->comm_type != PEP_ct_pEp)
krista@2469	2229	// {
krista@2469	2230	// src->from->comm_type \|= PEP_ct_pEp_unconfirmed;
krista@2469	2231	// status = set_identity(session, src->from);
krista@2469	2232	// }
krista@2469	2233	// return status;
krista@2469	2234	// }
krista@2469	2235	// return PEP_ILLEGAL_VALUE;
krista@2469	2236	// }
vb@781	2237
krista@1397	2238
krista@2106	2239	static PEP_STATUS _get_detached_signature(message* msg,
krista@2106	2240	bloblist_t** signature_blob) {
krista@1397	2241	bloblist_t* attach_curr = msg->attachments;
krista@1427	2242
krista@1427	2243	*signature_blob = NULL;
krista@1427	2244
krista@1397	2245	while (attach_curr) {
krista@1427	2246	if (strcasecmp(attach_curr->mime_type, "application/pgp-signature") == 0) {
krista@1397	2247	*signature_blob = attach_curr;
krista@1397	2248	break;
krista@1397	2249	}
krista@1397	2250	attach_curr = attach_curr->next;
krista@1397	2251	}
krista@1427	2252
krista@1427	2253	return PEP_STATUS_OK;
krista@1427	2254	}
krista@1427	2255
krista@2106	2256	static PEP_STATUS _get_signed_text(const char* ptext, const size_t psize,
krista@2106	2257	char** stext, size_t* ssize) {
krista@1427	2258
krista@1427	2259	char* signed_boundary = NULL;
krista@1427	2260	char* signpost = strstr(ptext, "Content-Type: multipart/signed");
krista@1427	2261
krista@1427	2262	*ssize = 0;
krista@1427	2263	*stext = NULL;
krista@1427	2264
krista@1427	2265	if (!signpost)
krista@1427	2266	return PEP_UNKNOWN_ERROR;
krista@1427	2267
krista@1427	2268	char* curr_line = signpost;
krista@1427	2269	// const char* end_text = ptext + psize;
krista@1755	2270	const char* boundary_key = "boundary=";
krista@1755	2271	const size_t BOUNDARY_KEY_SIZE = 9;
krista@1427	2272
krista@1427	2273	char* start_boundary = strstr(curr_line, boundary_key);
krista@1427	2274	if (!start_boundary)
krista@1427	2275	return PEP_UNKNOWN_ERROR;
krista@1427	2276
krista@1427	2277	start_boundary += BOUNDARY_KEY_SIZE;
krista@1427	2278
krista@1755	2279	bool quoted = (*start_boundary == '"');
krista@1755	2280
krista@1755	2281	if (quoted)
krista@1755	2282	start_boundary++;
krista@1755	2283
krista@1755	2284	char* end_boundary = (quoted ? strstr(start_boundary, "\"") : strstr(start_boundary, ";")); // FIXME: third possiblity is CRLF, or?
krista@1427	2285
krista@1427	2286	if (!end_boundary)
krista@1427	2287	return PEP_UNKNOWN_ERROR;
krista@1427	2288
krista@1755	2289	// Add space for the "--"
krista@1427	2290	size_t boundary_strlen = (end_boundary - start_boundary) + 2;
krista@1427	2291
krista@2176	2292	signed_boundary = calloc(boundary_strlen + 1, 1);
krista@1427	2293	strlcpy(signed_boundary, "--", boundary_strlen + 1);
krista@1427	2294	strlcat(signed_boundary, start_boundary, boundary_strlen + 1);
krista@1427	2295
krista@1427	2296	start_boundary = strstr(end_boundary, signed_boundary);
krista@1427	2297
krista@1427	2298	if (!start_boundary)
krista@1427	2299	return PEP_UNKNOWN_ERROR;
krista@1427	2300
krista@1427	2301	start_boundary += boundary_strlen;
krista@1427	2302
krista@1756	2303	if (*start_boundary == '\r') {
krista@1756	2304	if (*(start_boundary + 1) == '\n')
krista@1756	2305	start_boundary += 2;
krista@1756	2306	}
krista@1756	2307	else if (*start_boundary == '\n')
krista@1427	2308	start_boundary++;
krista@1427	2309
krista@1427	2310	end_boundary = strstr(start_boundary + boundary_strlen, signed_boundary);
krista@1427	2311
krista@1427	2312	if (!end_boundary)
krista@1427	2313	return PEP_UNKNOWN_ERROR;
krista@1427	2314
edouard@1809	2315	// See RFC3156 section 5...
edouard@1809	2316	end_boundary--;
edouard@1809	2317	if (*(end_boundary - 1) == '\r')
edouard@1809	2318	end_boundary--;
krista@1427	2319
krista@1427	2320	*ssize = end_boundary - start_boundary;
krista@1427	2321	*stext = start_boundary;
krista@1427	2322	free(signed_boundary);
krista@1427	2323
krista@1397	2324	return PEP_STATUS_OK;
krista@1397	2325	}
krista@1397	2326
krista@2106	2327	static PEP_STATUS combine_keylists(PEP_SESSION session, stringlist_t** verify_in,
krista@2106	2328	stringlist_t** keylist_in_out,
krista@2106	2329	pEp_identity* from) {
krista@1484	2330
krista@1484	2331	if (!verify_in \|\| !(*verify_in)) // this isn't really a problem.
krista@1484	2332	return PEP_STATUS_OK;
krista@1484	2333
krista@1484	2334	stringlist_t* orig_verify = *verify_in;
krista@1484	2335
roker@1559	2336	stringlist_t* verify_curr = NULL;
roker@1559	2337	stringlist_t* from_keys = NULL;
krista@1484	2338
krista@1484	2339	/* FIXME: what to do if head needs to be null */
krista@1484	2340	PEP_STATUS status = find_keys(session, from->address, &from_keys);
krista@1484	2341
krista@1484	2342	stringlist_t* from_fpr_node = NULL;
krista@1484	2343	stringlist_t* from_curr;
krista@1484	2344
krista@1484	2345	for (from_curr = from_keys; from_curr; from_curr = from_curr->next) {
krista@1484	2346	for (verify_curr = orig_verify; verify_curr; verify_curr = verify_curr->next) {
krista@1484	2347	if (from_curr->value && verify_curr->value &&
edouard@1573	2348	_same_fpr(from_curr->value, strlen(from_curr->value),
edouard@1573	2349	verify_curr->value, strlen(verify_curr->value))) {
krista@1484	2350	from_fpr_node = from_curr;
krista@1484	2351	break;
krista@1484	2352	}
krista@1484	2353	}
krista@1484	2354	}
krista@1484	2355
krista@1484	2356	if (!from_fpr_node) {
krista@1484	2357	status = PEP_KEY_NOT_FOUND;
krista@1484	2358	goto free;
krista@1484	2359	}
krista@1484	2360
krista@1484	2361	verify_curr = orig_verify;
krista@1484	2362
krista@1484	2363	/* put "from" signer at the beginning of the list */
edouard@1573	2364	if (!_same_fpr(orig_verify->value, strlen(orig_verify->value),
edouard@1573	2365	from_fpr_node->value, strlen(from_fpr_node->value))) {
krista@1484	2366	orig_verify = stringlist_delete(orig_verify, from_fpr_node->value);
krista@1484	2367	verify_curr = new_stringlist(from_fpr_node->value);
krista@1484	2368	verify_curr->next = orig_verify;
krista@1484	2369	}
krista@1484	2370
krista@1484	2371	/* append keylist to signers */
krista@1484	2372	if (keylist_in_out && keylist_in_out && (keylist_in_out)->value) {
krista@1484	2373	stringlist_t** tail_pp = &verify_curr->next;
krista@1484	2374
krista@1484	2375	while (*tail_pp) {
krista@1484	2376	tail_pp = &((*tail_pp)->next);
krista@1484	2377	}
krista@1615	2378	stringlist_t* second_list = *keylist_in_out;
krista@1615	2379	if (second_list) {
krista@1615	2380	char* listhead_val = second_list->value;
krista@1615	2381	if (!listhead_val \|\| listhead_val[0] == '\0') {
krista@1615	2382	/* remove head, basically. This can happen when,
krista@1615	2383	for example, the signature is detached and
krista@1615	2384	verification is not seen directly after
krista@1615	2385	decryption, so no signer is presumed in
krista@1615	2386	the first construction of the keylist */
krista@1615	2387	keylist_in_out = (keylist_in_out)->next;
krista@1615	2388	second_list->next = NULL;
krista@1615	2389	free_stringlist(second_list);
krista@1615	2390	}
krista@1615	2391	}
krista@1484	2392	tail_pp = keylist_in_out;
krista@1484	2393	}
krista@1484	2394
krista@1484	2395	*keylist_in_out = verify_curr;
krista@1484	2396
krista@1484	2397	status = PEP_STATUS_OK;
krista@1484	2398
krista@1484	2399	free:
krista@1484	2400	free_stringlist(from_keys);
roker@1559	2401	return status;
krista@1484	2402	}
krista@1484	2403
krista@2106	2404	sta

author	Hernâni Marques <hernani@pep.foundation>
	Wed, 27 Jun 2018 00:52:09 +0200
changeset 2771	b0c0d39f643d
parent 2770	08d7cf271f57
child 2774	d012b3cbfa60
permissions	-rw-r--r--