gwenhywfar 5.14.1
verify.c
Go to the documentation of this file.
1/***************************************************************************
2 begin : Sat Jun 25 2011
3 copyright : (C) 2011 by Martin Preuss
4 email : martin@libchipcard.de
5
6 ***************************************************************************
7 * Please see toplevel file COPYING for license details *
8 ***************************************************************************/
9
10#ifdef HAVE_CONFIG_H
11# include <config.h>
12#endif
13
14#include "globals.h"
15
16#include <gwenhywfar/debug.h>
17#include <gwenhywfar/sar.h>
18#include <gwenhywfar/cryptmgrkeys.h>
19#include <gwenhywfar/cryptkeyrsa.h>
20
21
22
23
24int verifyArchive(GWEN_DB_NODE *dbArgs, int argc, char **argv)
25{
26 GWEN_DB_NODE *db;
27 const char *aname;
28 const char *keyFile;
29 const char *signer;
30 GWEN_DB_NODE *dbKey;
31 GWEN_CRYPT_KEY *key;
32 GWEN_SAR *sr;
33 int rv;
34 const GWEN_ARGS args[]= {
35 {
36 GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
37 GWEN_ArgsType_Char, /* type */
38 "archive", /* name */
39 1, /* minnum */
40 1, /* maxnum */
41 "a", /* short option */
42 "archive", /* long option */
43 "Specify the archive file name", /* short description */
44 "Specify the archive file name" /* long description */
45 },
46 {
47 GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
48 GWEN_ArgsType_Char, /* type */
49 "keyfile", /* name */
50 1, /* minnum */
51 1, /* maxnum */
52 "k", /* short option */
53 "keyfile", /* long option */
54 "Specify the keyfile to use", /* short description */
55 "Specify the keyfile to use" /* long description */
56 },
57 {
58 GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
59 GWEN_ArgsType_Char, /* type */
60 "signer", /* name */
61 0, /* minnum */
62 1, /* maxnum */
63 "s", /* short option */
64 "signer", /* long option */
65 "Specify the signer", /* short description */
66 "Specify the signer" /* long description */
67 },
68 {
69 GWEN_ARGS_FLAGS_HELP | GWEN_ARGS_FLAGS_LAST, /* flags */
70 GWEN_ArgsType_Int, /* type */
71 "help", /* name */
72 0, /* minnum */
73 0, /* maxnum */
74 "h", /* short option */
75 "help", /* long option */
76 "Show this help screen", /* short description */
77 "Show this help screen" /* long description */
78 }
79 };
80
81 db=GWEN_DB_GetGroup(dbArgs, GWEN_DB_FLAGS_DEFAULT, "local");
82 rv=GWEN_Args_Check(argc, argv, 1,
83 GWEN_ARGS_MODE_ALLOW_FREEPARAM,
84 args,
85 db);
86 if (rv==GWEN_ARGS_RESULT_ERROR) {
87 fprintf(stderr, "ERROR: Could not parse arguments\n");
88 return 1;
89 }
90 else if (rv==GWEN_ARGS_RESULT_HELP) {
91 GWEN_BUFFER *ubuf;
92
93 ubuf=GWEN_Buffer_new(0, 1024, 0, 1);
94 if (GWEN_Args_Usage(args, ubuf, GWEN_ArgsOutType_Txt)) {
95 fprintf(stderr, "ERROR: Could not create help string\n");
96 return 1;
97 }
98 fprintf(stderr, "%s\n", GWEN_Buffer_GetStart(ubuf));
99 GWEN_Buffer_free(ubuf);
100 return 0;
101 }
102
103 aname=GWEN_DB_GetCharValue(db, "archive", 0, NULL);
104 assert(aname);
105
106 keyFile=GWEN_DB_GetCharValue(db, "keyFile", 0, NULL);
107 assert(keyFile);
108
109 signer=GWEN_DB_GetCharValue(db, "Signer", 0, "Signer");
110
111 dbKey=GWEN_DB_Group_new("keyfile");
112 rv=GWEN_DB_ReadFile(dbKey, keyFile, GWEN_DB_FLAGS_DEFAULT);
113 if (rv<0) {
114 fprintf(stderr, "ERROR: Error reading keyfile [%s] (%d)\n", keyFile, rv);
115 return 2;
116 }
117 key=GWEN_Crypt_KeyRsa_fromDb(dbKey);
118 if (key==NULL) {
119 fprintf(stderr, "ERROR: Error decoding keyfile [%s] (%d)\n", keyFile, rv);
120 return 2;
121 }
122 GWEN_Crypt_KeyRsa_AddFlags(key, GWEN_CRYPT_KEYRSA_FLAGS_DIRECTSIGN);
123
124 sr=GWEN_Sar_new();
125 rv=GWEN_Sar_OpenArchive(sr, aname,
126 GWEN_SyncIo_File_CreationMode_OpenExisting,
127 GWEN_SYNCIO_FILE_FLAGS_READ);
128 if (rv<0) {
129 fprintf(stderr, "ERROR: Error opening archive (%d)\n", rv);
130 return 2;
131 }
132 else {
133 GWEN_CRYPTMGR *cm;
134
135 cm=GWEN_CryptMgrKeys_new(NULL, NULL, signer, key, 1);
136
137 /* verify */
138 rv=GWEN_Sar_Verify(sr, cm);
139 if (rv<0) {
140 fprintf(stderr, "ERROR: Error verifying archive (%d)\n", rv);
141 GWEN_CryptMgr_free(cm);
142 GWEN_Sar_CloseArchive(sr, 1);
143 GWEN_Sar_free(sr);
144 return 2;
145 }
146 GWEN_CryptMgr_free(cm);
147
148 /* close archive */
149 rv=GWEN_Sar_CloseArchive(sr, 0);
150 if (rv<0) {
151 fprintf(stderr, "ERROR: Error closing archive (%d)\n", rv);
152 GWEN_Sar_CloseArchive(sr, 1);
153 GWEN_Sar_free(sr);
154 return 2;
155 }
156
157 fprintf(stdout, "Signature is valid.\n");
158 return 0;
159 }
160}
161
162
163
NULL
#define NULL
Definition binreloc.c:300
GWEN_Buffer_new
GWEN_BUFFER * GWEN_Buffer_new(char *buffer, uint32_t size, uint32_t used, int take)
Definition buffer.c:42
GWEN_Buffer_free
void GWEN_Buffer_free(GWEN_BUFFER *bf)
Definition buffer.c:89
GWEN_Buffer_GetStart
char * GWEN_Buffer_GetStart(const GWEN_BUFFER *bf)
Definition buffer.c:235
GWEN_CRYPT_KEY
struct GWEN_CRYPT_KEY GWEN_CRYPT_KEY
Definition cryptkey.h:26
GWEN_Crypt_KeyRsa_fromDb
GWEN_CRYPT_KEY * GWEN_Crypt_KeyRsa_fromDb(GWEN_DB_NODE *db)
Definition cryptkeyrsa.c:648
GWEN_Crypt_KeyRsa_AddFlags
void GWEN_Crypt_KeyRsa_AddFlags(GWEN_CRYPT_KEY *k, uint32_t fl)
Definition cryptkeyrsa.c:1018
GWEN_CRYPT_KEYRSA_FLAGS_DIRECTSIGN
#define GWEN_CRYPT_KEYRSA_FLAGS_DIRECTSIGN
Definition cryptkeyrsa.h:22
GWEN_CryptMgr_free
void GWEN_CryptMgr_free(GWEN_CRYPTMGR *cm)
Definition cryptmgr.c:49
GWEN_CRYPTMGR
struct GWEN_CRYPTMGR GWEN_CRYPTMGR
Definition cryptmgr.h:64
GWEN_CryptMgrKeys_new
GWEN_CRYPTMGR * GWEN_CryptMgrKeys_new(const char *localName, GWEN_CRYPT_KEY *localKey, const char *peerName, GWEN_CRYPT_KEY *peerKey, int ownKeys)
Definition cryptmgrkeys.c:33
GWEN_DB_GetCharValue
const char * GWEN_DB_GetCharValue(GWEN_DB_NODE *n, const char *path, int idx, const char *defVal)
Definition db.c:971
GWEN_DB_Group_new
GWEN_DB_NODE * GWEN_DB_Group_new(const char *name)
Definition db.c:173
GWEN_DB_GetGroup
GWEN_DB_NODE * GWEN_DB_GetGroup(GWEN_DB_NODE *n, uint32_t flags, const char *path)
Definition db.c:1381
GWEN_DB_ReadFile
GWENHYWFAR_API int GWEN_DB_ReadFile(GWEN_DB_NODE *n, const char *fname, uint32_t dbflags)
Definition dbrw.c:1003
GWEN_DB_FLAGS_DEFAULT
#define GWEN_DB_FLAGS_DEFAULT
Definition db.h:168
GWEN_DB_NODE
struct GWEN_DB_NODE GWEN_DB_NODE
Definition db.h:228
GWEN_BUFFER
struct GWEN_BUFFER GWEN_BUFFER
A dynamically resizeable text buffer.
Definition buffer.h:38
GWEN_Sar_Verify
int GWEN_Sar_Verify(GWEN_SAR *sr, GWEN_CRYPTMGR *cm)
Definition sar.c:2128
GWEN_Sar_OpenArchive
int GWEN_Sar_OpenArchive(GWEN_SAR *sr, const char *aname, GWEN_SYNCIO_FILE_CREATIONMODE cm, uint32_t acc)
Definition sar.c:134
GWEN_Sar_CloseArchive
int GWEN_Sar_CloseArchive(GWEN_SAR *sr, int abandon)
Definition sar.c:181
GWEN_Sar_free
void GWEN_Sar_free(GWEN_SAR *sr)
Definition sar.c:73
GWEN_Sar_new
GWEN_SAR * GWEN_Sar_new(void)
Definition sar.c:50
GWEN_SAR
struct GWEN_SAR GWEN_SAR
Definition sar.h:37
GWEN_Args_Check
int GWEN_Args_Check(int argc, char **argv, int startAt, uint32_t mode, const GWEN_ARGS *args, GWEN_DB_NODE *db)
Definition src/base/args.c:45
GWEN_Args_Usage
int GWEN_Args_Usage(const GWEN_ARGS *args, GWEN_BUFFER *ubuf, GWEN_ARGS_OUTTYPE ot)
Definition src/base/args.c:441
GWEN_ARGS_FLAGS_HAS_ARGUMENT
#define GWEN_ARGS_FLAGS_HAS_ARGUMENT
Definition src/base/args.h:50
GWEN_ARGS_RESULT_ERROR
#define GWEN_ARGS_RESULT_ERROR
Definition src/base/args.h:57
GWEN_ARGS_MODE_ALLOW_FREEPARAM
#define GWEN_ARGS_MODE_ALLOW_FREEPARAM
Definition src/base/args.h:54
GWEN_ARGS_FLAGS_HELP
#define GWEN_ARGS_FLAGS_HELP
Definition src/base/args.h:52
GWEN_ARGS_FLAGS_LAST
#define GWEN_ARGS_FLAGS_LAST
Definition src/base/args.h:51
GWEN_ArgsOutType_Txt
@ GWEN_ArgsOutType_Txt
Definition src/base/args.h:68
GWEN_ArgsType_Int
@ GWEN_ArgsType_Int
Definition src/base/args.h:63
GWEN_ArgsType_Char
@ GWEN_ArgsType_Char
Definition src/base/args.h:62
GWEN_ARGS_RESULT_HELP
#define GWEN_ARGS_RESULT_HELP
Definition src/base/args.h:58
GWEN_ARGS
Definition src/base/args.h:79
GWEN_SyncIo_File_CreationMode_OpenExisting
@ GWEN_SyncIo_File_CreationMode_OpenExisting
Definition syncio_file.h:38
GWEN_SYNCIO_FILE_FLAGS_READ
#define GWEN_SYNCIO_FILE_FLAGS_READ
Definition syncio_file.h:53
verifyArchive
int verifyArchive(GWEN_DB_NODE *dbArgs, int argc, char **argv)
Definition verify.c:24
Generated by doxygen 1.15.0