NeoMutt  2025-12-11-949-g4870ee
Teaching an old dog new tricks
 		DOXYGEN
Loading...
Searching...
No Matches
Functions
verify_one()
Crypto API

Check a signed MIME part against a signature. More...

+ Collaboration diagram for verify_one():

Functions

int pgp_gpgme_verify_one (struct Body *b, struct State *state, const char *tempfile)
 Check a signed MIME part against a signature - Implements CryptModuleSpecs::verify_one() -.
 
int smime_gpgme_verify_one (struct Body *b, struct State *state, const char *tempfile)
 Check a signed MIME part against a signature - Implements CryptModuleSpecs::verify_one() -.
 
int pgp_class_verify_one (struct Body *b, struct State *state, const char *tempfile)
 Check a signed MIME part against a signature - Implements CryptModuleSpecs::verify_one() -.
 
int smime_class_verify_one (struct Body *b, struct State *state, const char *tempfile)
 Check a signed MIME part against a signature - Implements CryptModuleSpecs::verify_one() -.
 

Detailed Description

Check a signed MIME part against a signature.

Parameters
bBody of the signed mail
stateState of text being processed
tempfFile containing the key
Return values
0Success
-1Error

Function Documentation

◆ pgp_gpgme_verify_one()

int pgp_gpgme_verify_one ( struct Body * b,
struct State * state,
const char * tempfile )

Check a signed MIME part against a signature - Implements CryptModuleSpecs::verify_one() -.

Definition at line 1715 of file crypt_gpgme.c.

1716{
1717 return verify_one(b, state, tempfile, false);
1718}
verify_one
static int verify_one(struct Body *b, struct State *state, const char *tempfile, bool is_smime)
Do the actual verification step.
Definition crypt_gpgme.c:1589
+ Here is the call graph for this function:

◆ smime_gpgme_verify_one()

int smime_gpgme_verify_one ( struct Body * b,
struct State * state,
const char * tempfile )

Check a signed MIME part against a signature - Implements CryptModuleSpecs::verify_one() -.

Definition at line 1723 of file crypt_gpgme.c.

1724{
1725 return verify_one(b, state, tempfile, true);
1726}
+ Here is the call graph for this function:

◆ pgp_class_verify_one()

int pgp_class_verify_one ( struct Body * b,
struct State * state,
const char * tempfile )

Check a signed MIME part against a signature - Implements CryptModuleSpecs::verify_one() -.

Definition at line 895 of file pgp.c.

896{
897 FILE *fp_pgp_out = NULL;
898 pid_t pid;
899 int badsig = -1;
900 struct Buffer *sigfile = buf_pool_get();
901
902 buf_printf(sigfile, "%s.asc", tempfile);
903
904 FILE *fp_sig = mutt_file_fopen(buf_string(sigfile), "w");
905 if (!fp_sig)
906 {
907 mutt_perror("%s", buf_string(sigfile));
908 goto cleanup;
909 }
910
911 if (!mutt_file_seek(state->fp_in, b->offset, SEEK_SET))
912 {
913 mutt_file_fclose(&fp_sig);
914 goto cleanup;
915 }
916 mutt_file_copy_bytes(state->fp_in, fp_sig, b->length);
917 mutt_file_fclose(&fp_sig);
918
919 FILE *fp_pgp_err = mutt_file_mkstemp();
920 if (!fp_pgp_err)
921 {
922 mutt_perror(_("Can't create temporary file"));
923 unlink(buf_string(sigfile));
924 goto cleanup;
925 }
926
927 crypt_current_time(state, "PGP");
928
929 pid = pgp_invoke_verify(NULL, &fp_pgp_out, NULL, -1, -1, fileno(fp_pgp_err),
930 tempfile, buf_string(sigfile));
931 if (pid != -1)
932 {
933 if (pgp_copy_checksig(fp_pgp_out, state->fp_out) >= 0)
934 badsig = 0;
935
936 mutt_file_fclose(&fp_pgp_out);
937 fflush(fp_pgp_err);
938 rewind(fp_pgp_err);
939
940 if (pgp_copy_checksig(fp_pgp_err, state->fp_out) >= 0)
941 badsig = 0;
942
943 const int rv = filter_wait(pid);
944 if (rv)
945 badsig = -1;
946
947 mutt_debug(LL_DEBUG1, "filter_wait returned %d\n", rv);
948 }
949
950 mutt_file_fclose(&fp_pgp_err);
951
952 state_attach_puts(state, _("[-- End of PGP output --]\n\n"));
953
954 mutt_file_unlink(buf_string(sigfile));
955
956cleanup:
957 buf_pool_release(&sigfile);
958
959 mutt_debug(LL_DEBUG1, "returning %d\n", badsig);
960 return badsig;
961}
buf_printf
int buf_printf(struct Buffer *buf, const char *fmt,...)
Format a string overwriting a Buffer.
Definition buffer.c:168
buf_string
static const char * buf_string(const struct Buffer *buf)
Convert a buffer to a const char * "string".
Definition buffer.h:96
crypt_current_time
void crypt_current_time(struct State *state, const char *app_name)
Print the current time.
Definition crypt.c:64
mutt_file_copy_bytes
int mutt_file_copy_bytes(FILE *fp_in, FILE *fp_out, size_t size)
Copy some content from one file to another.
Definition file.c:192
mutt_file_seek
bool mutt_file_seek(FILE *fp, LOFF_T offset, int whence)
Wrapper for fseeko with error handling.
Definition file.c:648
mutt_file_unlink
void mutt_file_unlink(const char *s)
Delete a file, carefully.
Definition file.c:156
mutt_file_fclose
#define mutt_file_fclose(FP)
Definition file.h:144
mutt_file_fopen
#define mutt_file_fopen(PATH, MODE)
Definition file.h:143
mutt_debug
#define mutt_debug(LEVEL,...)
Definition logging2.h:91
mutt_perror
#define mutt_perror(...)
Definition logging2.h:95
LL_DEBUG1
@ LL_DEBUG1
Log at debug level 1.
Definition logging2.h:45
filter_wait
int filter_wait(pid_t pid)
Wait for the exit of a process and return its status.
Definition filter.c:228
_
#define _(a)
Definition message.h:28
state_attach_puts
void state_attach_puts(struct State *state, const char *t)
Write a string to the state.
Definition state.c:104
pgp_copy_checksig
static int pgp_copy_checksig(FILE *fp_in, FILE *fp_out)
Copy PGP output and look for signs of a good signature.
Definition pgp.c:248
pgp_invoke_verify
pid_t pgp_invoke_verify(FILE **fp_pgp_in, FILE **fp_pgp_out, FILE **fp_pgp_err, int fd_pgp_in, int fd_pgp_out, int fd_pgp_err, const char *fname, const char *sig_fname)
Use PGP to verify a message.
Definition pgpinvoke.c:157
buf_pool_get
struct Buffer * buf_pool_get(void)
Get a Buffer from the pool.
Definition pool.c:91
buf_pool_release
void buf_pool_release(struct Buffer **ptr)
Return a Buffer to the pool.
Definition pool.c:111
Body::offset
LOFF_T offset
offset where the actual data begins
Definition body.h:52
Body::length
LOFF_T length
length (in bytes) of attachment
Definition body.h:53
Buffer
String manipulation buffer.
Definition buffer.h:36
State::fp_out
FILE * fp_out
File to write to.
Definition state.h:56
State::fp_in
FILE * fp_in
File to read from.
Definition state.h:55
mutt_file_mkstemp
#define mutt_file_mkstemp()
Definition tmp.h:36
+ Here is the call graph for this function:

◆ smime_class_verify_one()

int smime_class_verify_one ( struct Body * b,
struct State * state,
const char * tempfile )

Check a signed MIME part against a signature - Implements CryptModuleSpecs::verify_one() -.

Definition at line 1567 of file smime.c.

1568{
1569 FILE *fp = NULL, *fp_smime_out = NULL, *fp_smime_err = NULL;
1570 pid_t pid;
1571 int badsig = -1;
1572
1573 LOFF_T tmpoffset = 0;
1574 size_t tmplength = 0;
1575 int orig_type = b->type;
1576
1577 struct Buffer *signedfile = buf_pool_get();
1578
1579 buf_printf(signedfile, "%s.sig", tempfile);
1580
1581 /* decode to a tempfile, saving the original destination */
1582 fp = state->fp_out;
1583 state->fp_out = mutt_file_fopen(buf_string(signedfile), "w");
1584 if (!state->fp_out)
1585 {
1586 mutt_perror("%s", buf_string(signedfile));
1587 goto cleanup;
1588 }
1589 /* decoding the attachment changes the size and offset, so save a copy
1590 * of the "real" values now, and restore them after processing */
1591 tmplength = b->length;
1592 tmpoffset = b->offset;
1593
1594 /* if we are decoding binary bodies, we don't want to prefix each
1595 * line with the prefix or else the data will get corrupted. */
1596 const char *save_prefix = state->prefix;
1597 state->prefix = NULL;
1598
1599 mutt_decode_attachment(b, state);
1600
1601 b->length = ftello(state->fp_out);
1602 b->offset = 0;
1603 mutt_file_fclose(&state->fp_out);
1604
1605 /* restore final destination and substitute the tempfile for input */
1606 state->fp_out = fp;
1607 fp = state->fp_in;
1608 state->fp_in = mutt_file_fopen(buf_string(signedfile), "r");
1609
1610 /* restore the prefix */
1611 state->prefix = save_prefix;
1612
1613 b->type = orig_type;
1614
1615 fp_smime_err = mutt_file_mkstemp();
1616 if (!fp_smime_err)
1617 {
1618 mutt_perror(_("Can't create temporary file"));
1619 goto cleanup;
1620 }
1621
1622 crypt_current_time(state, "OpenSSL");
1623
1624 pid = smime_invoke_verify(NULL, &fp_smime_out, NULL, -1, -1, fileno(fp_smime_err),
1625 tempfile, buf_string(signedfile), 0);
1626 if (pid != -1)
1627 {
1628 fflush(fp_smime_out);
1629 mutt_file_fclose(&fp_smime_out);
1630
1631 if (filter_wait(pid))
1632 {
1633 badsig = -1;
1634 }
1635 else
1636 {
1637 char *line = NULL;
1638 size_t linelen;
1639
1640 fflush(fp_smime_err);
1641 rewind(fp_smime_err);
1642
1643 line = mutt_file_read_line(line, &linelen, fp_smime_err, NULL, MUTT_RL_NONE);
1644 if (linelen && mutt_istr_equal(line, "verification successful"))
1645 badsig = 0;
1646
1647 FREE(&line);
1648 }
1649 }
1650
1651 fflush(fp_smime_err);
1652 rewind(fp_smime_err);
1653 mutt_file_copy_stream(fp_smime_err, state->fp_out);
1654 mutt_file_fclose(&fp_smime_err);
1655
1656 state_attach_puts(state, _("[-- End of OpenSSL output --]\n\n"));
1657
1658 mutt_file_unlink(buf_string(signedfile));
1659
1660 b->length = tmplength;
1661 b->offset = tmpoffset;
1662
1663 /* restore the original source stream */
1664 mutt_file_fclose(&state->fp_in);
1665 state->fp_in = fp;
1666
1667cleanup:
1668 buf_pool_release(&signedfile);
1669 return badsig;
1670}
mutt_file_copy_stream
int mutt_file_copy_stream(FILE *fp_in, FILE *fp_out)
Copy the contents of one file into another.
Definition file.c:224
mutt_file_read_line
char * mutt_file_read_line(char *line, size_t *size, FILE *fp, int *line_num, ReadLineFlags flags)
Read a line from a file.
Definition file.c:678
MUTT_RL_NONE
@ MUTT_RL_NONE
No flags are set.
Definition file.h:43
mutt_decode_attachment
void mutt_decode_attachment(const struct Body *b, struct State *state)
Decode an email's attachment.
Definition handler.c:1939
FREE
#define FREE(x)
Free memory and set the pointer to NULL.
Definition memory.h:68
mutt_istr_equal
bool mutt_istr_equal(const char *a, const char *b)
Compare two strings, ignoring case.
Definition string.c:677
smime_invoke_verify
static pid_t smime_invoke_verify(FILE **fp_smime_in, FILE **fp_smime_out, FILE **fp_smime_err, int fp_smime_infd, int fp_smime_outfd, int fp_smime_errfd, const char *fname, const char *sig_fname, int opaque)
Use SMIME to verify a file.
Definition smime.c:1523
Body::type
unsigned int type
content-type primary type, ContentType
Definition body.h:40
State::prefix
const char * prefix
String to add to the beginning of each output line.
Definition state.h:57
+ Here is the call graph for this function: