2001-05-14 Jeffrey Stedfast <fejj@ximian.com>
+ * camel-smime-context.c: Lots of fixes to get this to almost
+ compile. Still struggling with the fact that CERTCertDBHandle is
+ an "incomplete type". *sigh*.
+
+ * camel-smime.c (camel_smime_part_verify): Updated to pass in a
+ hash argument to camel_smime_verify().
+
+ * camel-pgp-mime.c (camel_pgp_mime_part_verify): Update according
+ to the changes in the context API.
+
+ * camel-pgp-context.c (pgp_verify): Updated to take a
+ CamelCipherHash argument.
+
+ * camel-cipher-context.c (camel_cipher_verify): Now takes a hash
+ argument since the S/MIME code needs this.
+
* Makefile.am: Add camel-smime-context.[c,h] and camel-smime.[c,h]
to the build.
static int cipher_sign (CamelCipherContext *ctx, const char *userid, CamelCipherHash hash,
CamelStream *istream, CamelStream *ostream, CamelException *ex);
-static int cipher_clearsign (CamelCipherContext *context, const char *userid, CamelCipherHash hash,
- CamelStream *istream, CamelStream *ostream, CamelException *ex);
-static CamelCipherValidity *cipher_verify (CamelCipherContext *context, CamelStream *istream,
- CamelStream *sigstream, CamelException *ex);
+static int cipher_clearsign (CamelCipherContext *context, const char *userid,
+ CamelCipherHash hash, CamelStream *istream,
+ CamelStream *ostream, CamelException *ex);
+static CamelCipherValidity *cipher_verify (CamelCipherContext *context, CamelCipherHash hash,
+ CamelStream *istream, CamelStream *sigstream,
+ CamelException *ex);
static int cipher_encrypt (CamelCipherContext *context, gboolean sign, const char *userid,
- GPtrArray *recipients, CamelStream *istream, CamelStream *ostream,
- CamelException *ex);
-static int cipher_decrypt (CamelCipherContext *context, CamelStream *istream, CamelStream *ostream,
- CamelException *ex);
+ GPtrArray *recipients, CamelStream *istream,
+ CamelStream *ostream, CamelException *ex);
+static int cipher_decrypt (CamelCipherContext *context, CamelStream *istream,
+ CamelStream *ostream, CamelException *ex);
static CamelObjectClass *parent_class;
static CamelCipherValidity *
-cipher_verify (CamelCipherContext *context, CamelStream *istream,
+cipher_verify (CamelCipherContext *context, CamelCipherHash hash, CamelStream *istream,
CamelStream *sigstream, CamelException *ex)
{
camel_exception_set (ex, CAMEL_EXCEPTION_SYSTEM,
* execute at all.
**/
CamelCipherValidity *
-camel_cipher_verify (CamelCipherContext *context, CamelStream *istream,
+camel_cipher_verify (CamelCipherContext *context, CamelCipherHash hash, CamelStream *istream,
CamelStream *sigstream, CamelException *ex)
{
CamelCipherValidity *valid;
CIPHER_LOCK(context);
- valid = CCC_CLASS (context)->verify (context, istream, sigstream, ex);
+ valid = CCC_CLASS (context)->verify (context, hash, istream, sigstream, ex);
CIPHER_UNLOCK(context);
int (*clearsign) (CamelCipherContext *context, const char *userid, CamelCipherHash hash,
CamelStream *istream, CamelStream *ostream, CamelException *ex);
- CamelCipherValidity * (*verify) (CamelCipherContext *context, CamelStream *istream,
- CamelStream *sigstream, CamelException *ex);
+ CamelCipherValidity * (*verify) (CamelCipherContext *context, CamelCipherHash hash,
+ CamelStream *istream, CamelStream *sigstream,
+ CamelException *ex);
int (*encrypt) (CamelCipherContext *context, gboolean sign, const char *userid,
GPtrArray *recipients, CamelStream *istream, CamelStream *ostream,
int camel_cipher_clearsign (CamelCipherContext *context, const char *userid, CamelCipherHash hash,
CamelStream *istream, CamelStream *ostream, CamelException *ex);
-CamelCipherValidity *camel_cipher_verify (CamelCipherContext *context, CamelStream *istream, CamelStream *sigstream,
+CamelCipherValidity *camel_cipher_verify (CamelCipherContext *context, CamelCipherHash hash,
+ CamelStream *istream, CamelStream *sigstream,
CamelException *ex);
int camel_cipher_encrypt (CamelCipherContext *context, gboolean sign, const char *userid,
static int pgp_sign (CamelCipherContext *ctx, const char *userid, CamelCipherHash hash,
CamelStream *istream, CamelStream *ostream, CamelException *ex);
-static int pgp_clearsign (CamelCipherContext *context, const char *userid, CamelCipherHash hash,
- CamelStream *istream, CamelStream *ostream, CamelException *ex);
-static CamelCipherValidity *pgp_verify (CamelCipherContext *context, CamelStream *istream,
- CamelStream *sigstream, CamelException *ex);
+static int pgp_clearsign (CamelCipherContext *context, const char *userid,
+ CamelCipherHash hash, CamelStream *istream,
+ CamelStream *ostream, CamelException *ex);
+static CamelCipherValidity *pgp_verify (CamelCipherContext *context, CamelCipherHash hash,
+ CamelStream *istream, CamelStream *sigstream,
+ CamelException *ex);
static int pgp_encrypt (CamelCipherContext *context, gboolean sign, const char *userid,
GPtrArray *recipients, CamelStream *istream, CamelStream *ostream,
CamelException *ex);
-static int pgp_decrypt (CamelCipherContext *context, CamelStream *istream, CamelStream *ostream,
- CamelException *ex);
+static int pgp_decrypt (CamelCipherContext *context, CamelStream *istream,
+ CamelStream *ostream, CamelException *ex);
static CamelCipherContextClass *parent_class;
static CamelCipherValidity *
-pgp_verify (CamelCipherContext *ctx, CamelStream *istream,
+pgp_verify (CamelCipherContext *ctx, CamelCipherHash hash, CamelStream *istream,
CamelStream *sigstream, CamelException *ex)
{
CamelPgpContext *context = CAMEL_PGP_CONTEXT (ctx);
#define camel_pgp_clearsign(c, u, h, i, o, e) camel_cipher_clearsign (CAMEL_CIPHER_CONTEXT (c), u, h, i, o, e)
-#define camel_pgp_verify(c, i, s, e) camel_cipher_verify (CAMEL_CIPHER_CONTEXT (c), i, s, e)
+#define camel_pgp_verify(c, h, i, s, e) camel_cipher_verify (CAMEL_CIPHER_CONTEXT (c), h, i, s, e)
#define camel_pgp_encrypt(c, s, u, r, i, o, e) camel_cipher_encrypt (CAMEL_CIPHER_CONTEXT (c), s, u, r, i, o, e)
camel_stream_reset (sigstream);
/* verify */
- valid = camel_pgp_verify (context, stream, sigstream, ex);
+ valid = camel_pgp_verify (context, CAMEL_CIPHER_HASH_DEFAULT, stream, sigstream, ex);
camel_object_unref (CAMEL_OBJECT (sigstream));
camel_object_unref (CAMEL_OBJECT (stream));
#include "nss.h"
#include <cert.h>
+#include <certt.h>
+#include <certdb.h>
+#include <keylow.h>
#include <secpkcs7.h>
#include <secmime.h>
+#include <smime.h>
#include <gtk/gtk.h> /* for _() macro */
static int smime_clearsign (CamelCipherContext *context, const char *userid,
CamelCipherHash hash, CamelStream *istream,
CamelStream *ostream, CamelException *ex);
-static CamelCipherValidity *smime_verify (CamelCipherContext *context, CamelStream *istream,
- CamelStream *sigstream, CamelException *ex);
+static CamelCipherValidity *smime_verify (CamelCipherContext *context, CamelCipherHash hash,
+ CamelStream *istream, CamelStream *sigstream,
+ CamelException *ex);
static int smime_encrypt (CamelCipherContext *context, gboolean sign, const char *userid,
GPtrArray *recipients, CamelStream *istream, CamelStream *ostream,
CamelException *ex);
context = CAMEL_SMIME_CONTEXT (camel_object_new (CAMEL_SMIME_CONTEXT_TYPE));
- camel_cipher_construct (CAMEL_CIPHER_CONTEXT (context), session);
+ camel_cipher_context_construct (CAMEL_CIPHER_CONTEXT (context), session);
handle = g_new0 (CERTCertDBHandle, 1);
if (certdb) {
- if (!CERT_OpenCertDBFilename (handle, certdb, FALSE)) {
+ if (!CERT_OpenCertDBFilename (handle, (char *) certdb, FALSE)) {
g_free (handle);
return NULL;
}
return SEC_OID_MD2;
case HASH_AlgMD5:
return SEC_OID_MD5;
- case Hash_AlgSHA1:
+ case HASH_AlgSHA1:
return SEC_OID_SHA1;
default:
g_assert_not_reached ();
static int
smime_digest (SECItem *data, char *digestdata, unsigned int *len, unsigned int maxlen, HASH_HashType hash)
{
- SECHashObject *hashObj;
+ const SECHashObject *hashObj;
void *hashcx;
hashObj = &SECHashObjects[hash];
camel_object_unref (CAMEL_OBJECT (stream));
- cert = CERT_FindCertByNickname (context->priv->certdb, userid);
+ cert = CERT_FindCertByNickname (context->priv->certdb, (char *) userid);
if (!cert) {
camel_exception_setv (ex, CAMEL_EXCEPTION_SYSTEM,
_("Could not sign: certificate not found for \"%s\"."),
SECCertUsage usage;
GByteArray *plaintext;
CamelStream *stream;
+ gboolean isvalid;
/* create our ContentInfo object */
stream = camel_stream_mem_new ();
break;
}
- valid->valid = SEC_PKCS7VerifyDetachedSignature (cinfo, usage, &digest,
- digest_type, PR_FALSE);
+ isvalid = SEC_PKCS7VerifyDetachedSignature (cinfo, usage, &digest,
+ digest_type, PR_FALSE);
camel_object_unref (CAMEL_OBJECT (stream));
} else {
- valid->valid = SEC_PKCS7VerifySignature (cinfo, usage, PR_FALSE);
+ isvalid = SEC_PKCS7VerifySignature (cinfo, usage, PR_FALSE);
}
+ camel_cipher_validity_set_valid (valid, isvalid);
+
SEC_PKCS7DestroyContentInfo (cinfo);
/* FIXME: set a meaningful description...in UTF8 */
struct _GetPasswdData *data;
CamelStream *stream = NULL;
CERTCertificate *scert;
- SECItem secdata;
GByteArray *buf;
int i = 0;
g_return_val_if_fail (istream != NULL, -1);
g_return_val_if_fail (ostream != NULL, -1);
- scert = CERT_FindCertByNickname (context->priv->certdb, userid);
+ scert = CERT_FindCertByNickname (context->priv->certdb, (char *) userid);
if (!scert) {
invalid_userkey = recipients->pdata[i];
goto exception;
g_ptr_array_add (certificates, NULL);
data = g_new (struct _GetPasswdData, 1);
- data->session = session;
+ data->session = ctx->session;
data->userid = userid;
data->ex = ex;
smime_decrypt (CamelCipherContext *ctx, CamelStream *istream,
CamelStream *ostream, CamelException *ex)
{
- CamelSMimeContext *context = CAMEL_SMIME_CONTEXT (ctx);
struct _GetPasswdData *data;
SEC_PKCS7DecoderContext *dcx;
SEC_PKCS7ContentInfo *cinfo;
#define camel_smime_clearsign(c, u, h, i, o, e) camel_cipher_clearsign (CAMEL_CIPHER_CONTEXT (c), u, h, i, o, e)
-#define camel_smime_verify(c, i, s, e) camel_cipher_verify (CAMEL_CIPHER_CONTEXT (c), i, s, e)
+#define camel_smime_verify(c, h, i, s, e) camel_cipher_verify (CAMEL_CIPHER_CONTEXT (c), h, i, s, e)
#define camel_smime_encrypt(c, s, u, r, i, o, e) camel_cipher_encrypt (CAMEL_CIPHER_CONTEXT (c), s, u, r, i, o, e)
camel_object_unref (CAMEL_OBJECT (multipart));
}
+struct {
+ char *name;
+ CamelCipherHash hash;
+} known_hash_types[] = {
+ { "md5", CAMEL_CIPHER_HASH_MD5 },
+ { "rsa-md5", CAMEL_CIPHER_HASH_MD5 },
+ { "sha1", CAMEL_CIPHER_HASH_SHA1 },
+ { "rsa-sha1", CAMEL_CIPHER_HASH_SHA1 },
+ { NULL, CAMEL_CIPHER_HASH_DEFAULT }
+};
+
+static CamelCipherHash
+get_hash_type (const char *string)
+{
+ int i;
+
+ for (i = 0; known_hash_types[i].name; i++)
+ if (!g_strcasecmp (known_hash_types[i].name, string))
+ return known_hash_types[i].hash;
+
+ return CAMEL_CIPHER_HASH_DEFAULT;
+}
/**
* camel_smime_part_verify:
CamelStreamFilter *filtered_stream;
CamelMimeFilter *crlf_filter, *from_filter;
CamelStream *stream, *sigstream;
+ CamelContentType *type;
CamelCipherValidity *valid;
+ CamelCipherHash hash;
+ const char *hash_str;
g_return_val_if_fail (mime_part != NULL, NULL);
g_return_val_if_fail (CAMEL_IS_MIME_PART (mime_part), NULL);
camel_stream_reset (sigstream);
/* verify */
- valid = camel_smime_verify (context, stream, sigstream, ex);
+ type = camel_mime_part_get_content_type (sigpart);
+ hash_str = header_content_type_param (type, "micalg");
+ hash = get_hash_type (hash_str);
+ valid = camel_smime_verify (context, hash, stream, sigstream, ex);
camel_object_unref (CAMEL_OBJECT (sigstream));
camel_object_unref (CAMEL_OBJECT (stream));
projects / platform / upstream / evolution-data-server.git / commitdiff