const char * sigtarget;
unsigned char buffer[8192];
unsigned char missingKeys[7164];
+ unsigned char untrustedKeys[7164];
char *tempKey;
Header sig;
HeaderIterator sigIter;
sigIter = headerInitIterator(sig);
res2 = 0;
missingKeys[0] = '\0';
+ untrustedKeys[0] = '\0';
if (rpmIsVerbose()) {
sprintf(buffer, "%s:\n", rpm);
} else {
sprintf(buffer, "%s: ", rpm);
}
while (headerNextIterator(sigIter, &tag, &type, &ptr, &count)) {
- if ((tag == RPMSIGTAG_PGP) && !(flags & CHECKSIG_PGP))
+ if ((tag == RPMSIGTAG_PGP || tag == RPMSIGTAG_PGP5)
+ && !(flags & CHECKSIG_PGP))
continue;
if ((tag == RPMSIGTAG_GPG) && !(flags & CHECKSIG_GPG))
continue;
res2 = 1;
break;
case RPMSIGTAG_PGP:
- if (res3 == RPMSIG_NOKEY) {
- /* Do not consider this a failure */
+ case RPMSIGTAG_PGP5:
+ if (res3 == RPMSIG_NOKEY || res3 == RPMSIG_NOTTRUSTED) {
+ /* Do not consider these a failure */
+ int offset = 7;
strcat(buffer, "(PGP) ");
- strcat(missingKeys, " PGP#");
tempKey = strstr(result, "Key ID");
- strncat(missingKeys, tempKey+7, 8);
+ if (!tempKey)
+ {
+ tempKey = strstr(result, "keyid:");
+ offset = 9;
+ }
+ if (res3 == RPMSIG_NOKEY) {
+ strcat(missingKeys, " PGP#");
+ strncat(missingKeys, tempKey + offset, 8);
+ } else {
+ strcat(untrustedKeys, " PGP#");
+ strncat(untrustedKeys, tempKey + offset, 8);
+ }
} else {
strcat(buffer, "PGP ");
res2 = 1;
strcat(buffer, "md5 ");
break;
case RPMSIGTAG_PGP:
+ case RPMSIGTAG_PGP5:
strcat(buffer, "pgp ");
break;
case RPMSIGTAG_GPG:
if (rpmIsVerbose()) {
fprintf(stderr, "%s", (char *)buffer);
} else {
- fprintf(stderr, "%s%s%s%s%s\n", (char *)buffer, _("NOT OK"),
+ fprintf(stderr, "%s%s%s%s%s%s%s%s\n", (char *)buffer,
+ _("NOT OK"),
(missingKeys[0] != '\0') ? _(" (MISSING KEYS:") : "",
(char *)missingKeys,
- (missingKeys[0] != '\0') ? _(")") : "");
+ (missingKeys[0] != '\0') ? _(") ") : "",
+ (untrustedKeys[0] != '\0') ? _(" (UNTRUSTED KEYS:") : "",
+ (char *)untrustedKeys,
+ (untrustedKeys[0] != '\0') ? _(")") : "");
}
} else {
if (rpmIsVerbose()) {
fprintf(stdout, "%s", (char *)buffer);
} else {
- fprintf(stdout, "%s%s%s%s%s\n", (char *)buffer, _("OK"),
+ fprintf(stdout, "%s%s%s%s%s%s%s%s\n", (char *)buffer,
+ _("OK"),
(missingKeys[0] != '\0') ? _(" (MISSING KEYS:") : "",
(char *)missingKeys,
- (missingKeys[0] != '\0') ? _(")") : "");
+ (missingKeys[0] != '\0') ? _(") ") : "",
+ (untrustedKeys[0] != '\0') ? _(" (UNTRUSTED KEYS:") : "",
+ (char *)untrustedKeys,
+ (untrustedKeys[0] != '\0') ? _(")") : "");
}
}
}
typedef int (*md5func)(const char * fn, unsigned char * digest);
static int makePGPSignature(const char *file, void **sig, int_32 *size,
- const char *passPhrase);
+ const char *passPhrase, int sigTag);
static int makeGPGSignature(const char *file, void **sig, int_32 *size,
const char *passPhrase);
static int checkSize(FD_t fd, int size, int sigsize);
static int verifyMD5Signature(const char *datafile, unsigned char *sig,
char *result, md5func fn);
static int verifyPGPSignature(const char *datafile, void *sig,
- int count, char *result);
+ int count, char *result, int sigTag);
static int verifyGPGSignature(const char *datafile, void *sig,
int count, char *result);
static int checkPassPhrase(const char *passPhrase, const int sigType);
rc = 0;
else if (!strcasecmp(name, "pgp"))
rc = RPMSIGTAG_PGP;
+ else if (!strcasecmp(name, "pgp5"))
+ rc = RPMSIGTAG_PGP5;
else if (!strcasecmp(name, "gpg"))
rc = RPMSIGTAG_GPG;
else
return rc;
}
+/* rpmDetectPGPVersion() returns the absolute path to the "pgp" */
+/* executable of the requested version, or NULL when none found. */
+
+const char * rpmDetectPGPVersion(int sigType)
+{
+ /* Actually this should support having more then one pgp version. */
+ /* At the moment only one version is possible since we only */
+ /* have one %__pgp and one pgp_path. */
+
+ static int pgp_version;
+ const char *pgpbin = rpmGetPath("%{_pgpbin}", NULL);
+
+ if (!pgp_version)
+ {
+ char *pgpvbin;
+ struct stat statbuf;
+
+ if (!pgpbin || ! (pgpvbin = (char *)malloc(strlen(pgpbin) + 2)))
+ {
+ pgp_version = -1;
+ return NULL;
+ }
+ sprintf(pgpvbin, "%sv", pgpbin);
+
+ if (stat(pgpvbin, &statbuf) == 0)
+ pgp_version = 50;
+ else if (stat(pgpbin, &statbuf) == 0)
+ pgp_version = 26;
+ else
+ pgp_version = -1;
+
+ free(pgpvbin);
+ }
+
+ switch (sigType)
+ {
+ case RPMSIGTAG_PGP:
+ if (pgp_version == 26)
+ return pgpbin;
+ break;
+ case RPMSIGTAG_PGP5:
+ if (pgp_version == 50)
+ return pgpbin;
+ break;
+ default:
+ break;
+ }
+ return NULL;
+}
+
/* rpmReadSignature() emulates the new style signatures if it finds an */
/* old-style one. It also immediately verifies the header+archive */
/* size and returns an error if it doesn't match. */
headerAddEntry(header, sigTag, RPM_BIN_TYPE, buf, 16);
break;
case RPMSIGTAG_PGP:
- makePGPSignature(file, &sig, &size, passPhrase);
+ case RPMSIGTAG_PGP5:
+ makePGPSignature(file, &sig, &size, passPhrase, sigTag);
headerAddEntry(header, sigTag, RPM_BIN_TYPE, sig, size);
break;
case RPMSIGTAG_GPG:
}
static int makePGPSignature(const char *file, void **sig, int_32 *size,
- const char *passPhrase)
+ const char *passPhrase, int sigTag)
{
char sigfile[1024];
int pid, status;
int inpipe[2];
- FILE *fpipe;
struct stat statbuf;
sprintf(sigfile, "%s.sig", file);
if (!(pid = fork())) {
const char *pgp_path = rpmExpand("%{_pgp_path}", NULL);
const char *name = rpmExpand("+myname=\"%{_pgp_name}\"", NULL);
+ const char *path;
close(STDIN_FILENO);
dup2(inpipe[0], 3);
dosetenv("PGPPATH", pgp_path, 1);
/* dosetenv("PGPPASS", passPhrase, 1); */
- execlp("pgp", "pgp",
- "+batchmode=on", "+verbose=0", "+armor=off",
- name, "-sb", file, sigfile,
- NULL);
+
+ if ((path = rpmDetectPGPVersion(sigTag)) != NULL {
+ switch(sigTag) {
+ case RPMSIGTAG_PGP:
+ execlp(path, "pgp", "+batchmode=on", "+verbose=0", "+armor=off",
+ name, "-sb", file, sigfile, NULL);
+ break;
+ case RPMSIGTAG_PGP5:
+ execlp(path,"pgps", "+batchmode=on", "+verbose=0", "+armor=off",
+ name, "-b", file, "-o", sigfile, NULL);
+ break;
+ }
+ }
rpmError(RPMERR_EXEC, _("Couldn't exec pgp"));
_exit(RPMERR_EXEC);
}
- fpipe = fdopen(inpipe[1], "w");
close(inpipe[0]);
- fprintf(fpipe, "%s\n", passPhrase);
- fclose(fpipe);
+ write(inpipe[1], passPhrase, strlen(passPhrase));
+ write(inpipe[1], "\n", 1);
+ close(inpipe[1]);
(void)waitpid(pid, &status, 0);
if (!WIFEXITED(status) || WEXITSTATUS(status)) {
}
break;
case RPMSIGTAG_PGP:
- return verifyPGPSignature(file, sig, count, result);
+ case RPMSIGTAG_PGP%:
+ return verifyPGPSignature(file, sig, count, result, sigTag);
break;
case RPMSIGTAG_GPG:
return verifyGPGSignature(file, sig, count, result);
}
static int verifyPGPSignature(const char *datafile, void *sig,
- int count, char *result)
+ int count, char *result, int sigTag)
{
int pid, status, outpipe[2];
FD_t sfd;
unsigned char buf[8192];
FILE *file;
int res = RPMSIG_OK;
-
+ int usingPGP5 = 0;
+ const char *path;
+
+ /* What version do we have? */
+ if ((path = rpmDetectPGPVersion(RPMSIGTAG_PGP5))/* Use pgp5 if we have it */
+ || sigTag == RPMSIGTAG_PGP5) /* ... or request it. */
+ {
+ usingPGP5 = 1;
+ /* Its sad but true: pgp-5.0 returns also an exit value of 0 */
+ /* when it finds a BAD signature. So instead we have to use */
+ /* the text output. */
+ res = RPMSIG_BAD;
+ }
+ else if (! (path = rpmDetectPGPVersion(RPMSIGTAG_PGP))
+ || sigTag != RPMSIGTAG_PGP)
+ path = NULL; /* Fail */
+ if (path == NULL)
+ {
+ errno = ENOENT;
+ rpmError(RPMERR_EXEC,
+ _("Could not run pgp. Use --nopgp to skip PGP checks."));
+ _exit(RPMERR_EXEC);
+ }
/* Write out the signature */
{ const char *tmppath = rpmGetPath("%{_tmppath}", NULL);
sigfile = tempnam(tmppath, "rpmsig");
if (pgp_path && *pgp_path != '%')
dosetenv("PGPPATH", pgp_path, 1);
- execlp("pgp", "pgp",
- "+batchmode=on", "+verbose=0",
- sigfile, datafile,
- NULL);
+
+ if (usingPGP5) {
+ /* Some output (in particular "This signature applies to */
+ /* another message") is _always_ written to stderr; we */
+ /* want to catch that output, so dup stdout to stderr: */
+ int save_stderr = dup(2);
+ dup2(1, 2);
+ execlp(path, "pgpv", "+batchmode=on", "+verbose=0",
+ /* Write "Good signature..." to stdout: */
+ "+OutputInformationFD=1",
+ /* Write "WARNING: ... is not trusted to... to stdout: */
+ "+OutputWarningFD=1",
+ sigfile, "-o", datafile, NULL);
+ /* Restore stderr so we can print the error message below. */
+ dup2(save_stderr, 2);
+ close(save_stderr);
+ } else {
+ execlp(path, "pgp", "+batchmode=on", "+verbose=0",
+ sigfile, datafile, NULL);
+ }
+
fprintf(stderr, _("exec failed!\n"));
rpmError(RPMERR_EXEC,
_("Could not run pgp. Use --nopgp to skip PGP checks."));
while (fgets(buf, 1024, file)) {
if (strncmp("File '", buf, 6) &&
strncmp("Text is assu", buf, 12) &&
+ strncmp("This signature applies to another message", buf, 41) &&
buf[0] != '\n') {
strcat(result, buf);
}
- if (!strncmp("WARNING: Can't find the right public key", buf, 40)) {
+ if (!strncmp("WARNING: Can't find the right public key", buf, 40))
res = RPMSIG_NOKEY;
- }
+ else if (!strncmp("Signature by unknown keyid:", buf, 27))
+ res = RPMSIG_NOKEY;
+ else if (!strncmp("WARNING: The signing key is not trusted", buf, 39))
+ res = RPMSIG_NOTTRUSTED;
+ else if (!strncmp("Good signature", buf, 14))
+ res = RPMSIG_OK;
}
fclose(file);
close(outpipe[0]);
/* gpg version 0.9 sends its output to stderr. */
- close(STDERR_FILENO); /* XXX unnecessary */
dup2(outpipe[1], STDERR_FILENO);
if (gpg_path && *gpg_path != '%')
file = fdopen(outpipe[0], "r");
result[0] = '\0';
while (fgets(buf, 1024, file)) {
- strcat(result, buf);
+ strcat(result, buf);
if (!strncmp("gpg: Can't check signature: Public key not found", buf, 48)) {
res = RPMSIG_NOKEY;
}
aok = (name && *name != '%');
xfree(name);
}
- if (!aok) {
- rpmError(RPMERR_SIGGEN,
- _("You must set \"%%_gpg_name\" in your macro file"));
- return NULL;
- }
- break;
+ if (!aok) {
+ rpmError(RPMERR_SIGGEN,
+ _("You must set \"%%_gpg_name\" in your macro file"));
+ return NULL;
+ }
+ break;
case RPMSIGTAG_PGP:
+ case RPMSIGTAG_PGP5:
{ const char *name = rpmExpand("%{_pgp_name}", NULL);
aok = (name && *name != '%');
xfree(name);
}
- if (!aok) {
- rpmError(RPMERR_SIGGEN,
- _("You must set \"%%_pgp_name\" in your macro file"));
+ if (!aok) {
+ rpmError(RPMERR_SIGGEN,
+ _("You must set \"%%_pgp_name\" in your macro file"));
return NULL;
- }
- break;
+ }
+ break;
default:
- /* Currently the calling function (rpm.c:main) is checking this and
- * doing a better job. This section should never be accessed.
- */
- rpmError(RPMERR_SIGGEN,
- _("Invalid signature spec in rc file"));
- return NULL;
+ /* Currently the calling function (rpm.c:main) is checking this and
+ * doing a better job. This section should never be accessed.
+ */
+ rpmError(RPMERR_SIGGEN, _("Invalid signature spec in rc file"));
+ return NULL;
}
if (prompt) {
- pass = getpass(prompt);
+ pass = getpass(prompt);
} else {
- pass = getpass("");
+ pass = getpass("");
}
if (checkPassPhrase(pass, sigTag)) {
static int checkPassPhrase(const char *passPhrase, const int sigType)
{
int passPhrasePipe[2];
- FILE *fpipe;
int pid, status;
int fd;
if (!(pid = fork())) {
close(STDIN_FILENO);
close(STDOUT_FILENO);
+ close(passPhrasePipe[1]);
if (! rpmIsVerbose()) {
close(STDERR_FILENO);
}
if ((fd = open("/dev/null", O_RDONLY)) != STDIN_FILENO) {
dup2(fd, STDIN_FILENO);
+ close(fd);
}
if ((fd = open("/dev/null", O_WRONLY)) != STDOUT_FILENO) {
dup2(fd, STDOUT_FILENO);
+ close(fd);
}
dup2(passPhrasePipe[0], 3);
_exit(RPMERR_EXEC);
} break;
case RPMSIGTAG_PGP:
+ case RPMSIGTAG_PGP5:
{ const char *pgp_path = rpmExpand("%{_pgp_path}", NULL);
const char *name = rpmExpand("+myname=\"%{_pgp_name}\"", NULL);
+ const char *path;
+
dosetenv("PGPPASSFD", "3", 1);
if (pgp_path && *pgp_path != '%')
dosetenv("PGPPATH", pgp_path, 1);
- execlp("pgp", "pgp",
- "+batchmode=on", "+verbose=0",
- name, "-sf",
- NULL);
+
+ if ((path = rpmDetectPGPVersion(sigTag)) != NULL {
+ switch(sigTag) {
+ case RPMSIGTAG_PGP:
+ execlp(path, "pgp", "+batchmode=on", "+verbose=0",
+ name, "-sf", NULL);
+ break;
+ case RPMSIGTAG_PGP5:
+ execlp(path,"pgps", "+batchmode=on", "+verbose=0",
+ name, "-f", file, NULL);
+ break;
+ }
+ }
rpmError(RPMERR_EXEC, _("Couldn't exec pgp"));
_exit(RPMERR_EXEC);
} break;
}
}
- fpipe = fdopen(passPhrasePipe[1], "w");
close(passPhrasePipe[0]);
- fprintf(fpipe, "%s\n", passPhrase);
- fclose(fpipe);
+ write(passPhrasePipe[1], passPhrase, strlen(passPhrase));
+ write(passPhrasePipe[1], "\n", 1);
+ close(passPhrasePipe[1]);
(void)waitpid(pid, &status, 0);
if (!WIFEXITED(status) || WEXITSTATUS(status)) {