Changeset 573

Timestamp:

08/07/08 13:49:21

Author:

rachel

Message:

Added some extra error detection.
All tests pass.

Files:

• openpgpsdk/trunk/include/openpgpsdk/armour.h (modified) (1 diff)
• openpgpsdk/trunk/include/openpgpsdk/errors.h (modified) (1 diff)
• openpgpsdk/trunk/include/openpgpsdk/signature.h (modified) (2 diffs)
• openpgpsdk/trunk/src/lib/adv_armour.c (modified) (7 diffs)
• openpgpsdk/trunk/src/lib/adv_create.c (modified) (7 diffs)
• openpgpsdk/trunk/src/lib/adv_fingerprint.c (modified) (1 diff)
• openpgpsdk/trunk/src/lib/adv_openssl_crypto.c (modified) (1 diff)
• openpgpsdk/trunk/src/lib/adv_signature.c (modified) (7 diffs)
• openpgpsdk/trunk/src/lib/std_signature.c (modified) (9 diffs)
• openpgpsdk/trunk/tests/test_rsa_decrypt.c (modified) (2 diffs)
• openpgpsdk/trunk/tests/test_rsa_encrypt.c (modified) (1 diff)
• openpgpsdk/trunk/tests/test_rsa_keys.c (modified) (1 diff)
• openpgpsdk/trunk/tests/test_rsa_signature.c (modified) (5 diffs)
• openpgpsdk/trunk/tests/tests.c (modified) (4 diffs)

openpgpsdk/trunk/include/openpgpsdk/armour.h

@@ -29 +29 @@
-
-void ops_reader_pop_dearmour(ops_parse_info_t *parse_info);
-void
+ops_boolean_t
-                                  ops_create_signature_t *sig);
-void ops_writer_push_armoured_message(ops_create_info_t *info);
-void
+ops_boolean_t
-
-typedef enum 

openpgpsdk/trunk/include/openpgpsdk/errors.h

@@ -112 +112 @@
-
-#define OPS_SYSTEM_ERROR_1(err,code,syscall,fmt,arg)    do { ops_push_error(err,OPS_E_SYSTEM_ERROR,errno,__FILE__,__LINE__,syscall); ops_push_error(err,code,0,__FILE__,__LINE__,fmt,arg); } while(0)
+#define OPS_MEMORY_ERROR(err) {fprintf(stderr, "Memory error\n");} // \todo placeholder for better error handling
-#define OPS_ERROR(err,code,fmt) do { ops_push_error(err,code,0,__FILE__,__LINE__,fmt); } while(0)
-#define OPS_ERROR_1(err,code,fmt,arg)   do { ops_push_error(err,code,0,__FILE__,__LINE__,fmt,arg); } while(0)

openpgpsdk/trunk/include/openpgpsdk/signature.h

@@ -78 +78 @@
-                            size_t length);
-ops_hash_t *ops_signature_get_hash(ops_create_signature_t *sig);
-void
-void
+ops_boolean_t
+ops_boolean_t
-                         const ops_secret_key_t *skey, ops_create_info_t *opt);
-void
-void
+ops_boolean_t
+ops_boolean_t
-                                     const unsigned char keyid[OPS_KEY_ID_SIZE]);
-void ops_signature_add_primary_user_id(ops_create_signature_t *sig,
@@ -88 +88 @@
-
-// Standard Interface
-void
-void
+ops_boolean_t
+ops_boolean_t
-void ops_sign_file(const char* input_filename, const char* output_filename, const ops_secret_key_t *skey, const ops_boolean_t use_armour, const ops_boolean_t overwrite);
-ops_memory_t * ops_sign_mem(const void* input, const int input_len, const ops_sig_type_t sig_type,  const ops_secret_key_t *skey, const ops_boolean_t use_armour);

openpgpsdk/trunk/src/lib/adv_armour.c

@@ -29 +29 @@
-#include <openpgpsdk/crypto.h>
-#include <openpgpsdk/create.h>
+#include <openpgpsdk/readerwriter.h>
-#include <openpgpsdk/signature.h>
-#include <openpgpsdk/version.h>
@@ -909 +910 @@
-    }
-
-// XXX: should return errors.
-/**
- * \param info
- * \param sig
- * \todo should return errors
- */
-void
+ops_boolean_t
-                                  ops_create_signature_t *sig)
-    {
@@ -922 +921 @@
-    dash_escaped_arg_t *arg=ops_mallocz(sizeof *arg);
-
-
-
-
+
+
+
+
+
+
+
+
+
+
+
+
-    arg->seen_nl=ops_true;
-    arg->sig=sig;
-    arg->trailing=ops_memory_new();
-    ops_writer_push(info,dash_escaped_writer,NULL,dash_escaped_destroyer,arg);
+    return rtn;
-    }
-
@@ -1062 +1071 @@
-    }
-
-// XXX: should return errors.
-/**
- * \param info
- */
-void
+ops_boolean_t
-    {
-    static char header[]="\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: "
@@ -1073 +1081 @@
-
-    ops_writer_pop(info);
-
+
+
+
+
+
-
-    ops_writer_push(info,linebreak_writer,NULL,ops_writer_generic_destroyer,
@@ -1079 +1091 @@
-
-    base64=ops_mallocz(sizeof *base64);
+    if (!base64)
+        {
+        OPS_MEMORY_ERROR(&info->errors);
+        return ops_false;
+        }
-    base64->checksum=CRC24_INIT;
-    ops_writer_push(info,base64_writer,signature_finaliser,
-                    ops_writer_generic_destroyer,base64);
+    return ops_true;
-    }
-
@@ -1196 +1214 @@
-    }
-
-// XXX: should return errors.
-/**
- * \param info
- * \todo should return errors
- */
-/*
-void ops_writer_push_armoured_public_key(ops_create_info_t *info)
-    {
-    static char header[]="-----BEGIN PGP PUBLIC KEY BLOCK-----\r\nVersion: "
-        OPS_VERSION_STRING "\r\n\r\n";
-    base64_arg_t *arg=ops_mallocz(sizeof *arg);
-
-    ops_write(header,sizeof header-1,info);
-
-    arg->checksum=CRC24_INIT;
-    ops_writer_push(info,base64_writer,armoured_public_key_finaliser,ops_writer_generic_destroyer,arg);
-    }
-*/
-
-// XXX: should return errors.
-/**
- * \param info
- * \todo should return errors
- */
-// \todo use this for other armoured types
-void ops_writer_push_armoured(ops_create_info_t *info, ops_armor_type_t type)

openpgpsdk/trunk/src/lib/adv_create.c

@@ -100 +100 @@
- * \param info
- * \return 1 if OK, otherwise 0
- * \todo This statement about the return value is true based on the assumption
- *      that ops_true=1. Tidy this assumption up.
- */
-
@@ -161 +159 @@
- * \param type
- * \param info
-1 if OK, otherwise 0
+ops_true if OK, otherwise ops_false
- */
-
@@ -197 +195 @@
- * \param id
- * \param info
-
-
+
- */
-ops_boolean_t ops_write_struct_user_id(ops_user_id_t *id,
@@ -669 +666 @@
- * \param info
- * \return Return value from write_public_key_body() unless call to ops_write_ptag() or ops_write_length() failed before it was called, in which case returns 0
-todo tidy up that return value description!
+return ops_true if OK, otherwise ops_false
- */
-ops_boolean_t ops_write_struct_public_key(const ops_public_key_t *key,
@@ -698 +695 @@
- * \param info Writer setup
- *
-
-
-
+
- */
-
@@ -1321 +1316 @@
-                                     ops_create_info_t *info)
-    {
-
-
+
+
+
+
+
-    // \todo do we need to check text data for <cr><lf> line endings ?
-    return ops_write_ptag(OPS_PTAG_CT_LITERAL_DATA, info)
@@ -1362 +1360 @@
-        }
-    close(fd);    
-
+
-    // \todo do we need to check text data for <cr><lf> line endings ?
-    len=ops_memory_get_length(mem);

openpgpsdk/trunk/src/lib/adv_fingerprint.c

@@ -116 +116 @@
- * \param keyid Space for the calculated ID to be stored
- * \param key The key for which the ID is calculated
+ * \todo add error return value
- */
-

openpgpsdk/trunk/src/lib/adv_openssl_crypto.c

@@ -322 +322 @@
-
-    skey->public_key.version=4;
-//\todo    skey->public_key.creation_time=NULL; // \todo
+skey->public_key.creation_time=time(NULL);
-    skey->public_key.days_valid=0;
-    skey->public_key.algorithm= OPS_PKA_RSA;

openpgpsdk/trunk/src/lib/adv_signature.c

@@ -24 +24 @@
-
-#include <openpgpsdk/signature.h>
+#include <openpgpsdk/readerwriter.h>
-#include <openpgpsdk/crypto.h>
-#include <openpgpsdk/create.h>
@@ -635 +636 @@
- */
-
-void
+ops_boolean_t
-    {
-    sig->hashed_data_length=ops_memory_get_length(sig->mem)
@@ -643 +644 @@
-    // dummy unhashed subpacket count
-    sig->unhashed_count_offset=ops_memory_get_length(sig->mem);
-
+return 
-    }
-
@@ -659 +660 @@
- */
-
-void
+ops_boolean_t
-                         const ops_secret_key_t *skey, ops_create_info_t *info)
-    {
+    ops_boolean_t rtn=ops_false;
-    size_t l=ops_memory_get_length(sig->mem);
-
@@ -693 +695 @@
-    rsa_sign(&sig->hash,&key->key.rsa,&skey->key.rsa,sig->info);
-
-
-
-
-
+
+
+
+
+
+
+
-
-    ops_memory_free(sig->mem);
+
+    if (rtn==ops_false)
+        {
+        OPS_ERROR(&info->errors,OPS_E_W,"Cannot write signature");
+        }
+    return rtn;
-    }
-
@@ -709 +720 @@
- * \param when
- */
-void
-
-ops_write_ss_header(5,OPS_PTAG_SS_CREATION_TIME,sig->info);
-
+ops_boolean_t
+
+return ops_write_ss_header(5,OPS_PTAG_SS_CREATION_TIME,sig->info)
+    && 
-    }
-
@@ -724 +735 @@
- */
-
-void
+ops_boolean_t
-                                     const unsigned char keyid[OPS_KEY_ID_SIZE])
-    {
-ops_write_ss_header(OPS_KEY_ID_SIZE+1,OPS_PTAG_SS_ISSUER_KEY_ID,sig->info);
-
+return ops_write_ss_header(OPS_KEY_ID_SIZE+1,OPS_PTAG_SS_ISSUER_KEY_ID,sig->info)
+    && 
-    }
-

openpgpsdk/trunk/src/lib/std_signature.c

@@ -40 +40 @@
-#define MAXBUF 1024
-
-void
+ops_boolean_t
-    {
-    // \todo allow choice of hash algorithams
@@ -55 +55 @@
-    unsigned char buf[MAXBUF];
-    //int flags=0;
+    ops_boolean_t rtn=ops_false;
-
-    // open file to sign
@@ -64 +65 @@
-    if(fd_in < 0)
-        {
-
-
+
-        }
-    
@@ -71 +71 @@
-    snprintf(signed_file,sizeof signed_file,"%s.%s",filename,suffix);
-    fd_out=ops_setup_file_write(&cinfo, signed_file, overwrite);
+    if (fd_out < 0)
+        { 
+        close (fd_in);
+        return ops_false; 
+        }
-
-    // set up signature
-    sig=ops_create_signature_new();
+    if (!sig)
+        {
+        close (fd_in);
+        ops_teardown_file_write(cinfo,fd_out);
+        return ops_false;
+        }
+
+    // \todo could add more error detection here
-    ops_signature_start_cleartext_signature(sig,skey,OPS_HASH_SHA1,OPS_SIG_BINARY);
-
+
+
-
-    // Do the signing
@@ -94 +108 @@
-    // - creation time
-    // - key id
-
-
-
-
+
+
+
+
+
+
+
+
-    ops_keyid(keyid,&skey->public_key);
-
-ops_signature_hashed_subpackets_end(sig);
-
-
+
+rtn = ops_signature_add_issuer_key_id(sig,keyid)
+
+    && 
-
-    ops_teardown_file_write(cinfo,fd_out);
+
+    if (rtn==ops_false)
+        {
+        OPS_ERROR(&cinfo->errors,OPS_E_W,"Cannot sign file as cleartext");
+        }
+    return rtn;
-    }
-
@@ -110 +134 @@
-/* It is the calling function's responsibility to free signed_cleartext */
-/* signed_cleartext should be a NULL pointer when passed in */
-void
+ops_boolean_t
-    {
+    ops_boolean_t rtn=ops_false;
+
-    // \todo allow choice of hash algorithams
-    // enforce use of SHA1 for now
@@ -124 +150 @@
-    // set up signature
-    sig=ops_create_signature_new();
+    if (!sig)
+        { 
+        return ops_false;
+        }
+
+    // \todo could add more error detection here
-    ops_signature_start_cleartext_signature(sig,skey,OPS_HASH_SHA1,OPS_SIG_BINARY);
-
@@ -129 +161 @@
-    ops_setup_memory_write(&cinfo, signed_cleartext, len);
-
-    ops_writer_push_clearsigned(cinfo,sig);
-
-    // Do the signing
-
-    ops_write(cleartext,len,cinfo);
-
-    // add signature with subpackets:
-    // - creation time
-    // - key id
-
-
-
+
+
+
+
+
+
+
+
+
+
-    ops_keyid(keyid,&skey->public_key);
-
-ops_signature_hashed_subpackets_end(sig);
-
-ops_write_signature(sig,&skey->public_key,skey,cinfo);
-
-
-ops_writer_close(cinfo);
+
+rtn = ops_signature_add_issuer_key_id(sig,keyid)
+
+    && ops_write_signature(sig,&skey->public_key,skey,cinfo)
+
+
+// Note: the calling function must free signed_cleartext
-    ops_create_info_delete(cinfo);
+
+    return rtn;
-    }
-
@@ -296 +332 @@
-    // - key id
-
-    // \todo add creation time
-    ops_signature_add_creation_time(sig,time(NULL));
-

openpgpsdk/trunk/tests/test_rsa_decrypt.c

@@ -265 +265 @@
-//
-
+/*
-static void test_todo(void)
-    {
-
-
-
-
+
+
+
+
+
-
-static int add_tests(CU_pSuite suite)
@@ -288 +290 @@
-            return 0;
-
+    /*
-    if (NULL == CU_add_test(suite, "Tests to be implemented", test_todo))
-            return 0;
-
+*/
-    return 1;
-    }

openpgpsdk/trunk/tests/test_rsa_encrypt.c

@@ -257 +257 @@
-    CU_FAIL("Test TODO: Encrypt to multiple keys where my keys is (a) first key in list; (b) last key in list; (c) in the middle of the list");
-    CU_FAIL("Test TODO: Encrypt to users with different preferences");
-    CU_FAIL("Test TODO: Test large files");
-    */
-    }

openpgpsdk/trunk/tests/test_rsa_keys.c

@@ -331 +331 @@
-static void test_rsa_keys_todo(void)
-    {
+    /*
+     * Key expiry and revocation checking can be done at the 
+     * application level by checking the set of valid keys returned.
+     */
+
-    // expired
-
+//
-
-    // revoked
-
+//
-    }
-

openpgpsdk/trunk/tests/test_rsa_signature.c

@@ -40 +40 @@
-static int debug=0;
-
+static char *filename_rsa_large_noarmour_nopassphrase="ops_rsa_signed_large_noarmour_nopassphrase.txt";
+static char *filename_rsa_large_armour_nopassphrase="ops_rsa_signed_large_armour_nopassphrase.txt";
-static char *filename_rsa_noarmour_nopassphrase="ops_rsa_signed_noarmour_nopassphrase.txt";
-static char *filename_rsa_noarmour_passphrase="ops_rsa_signed_noarmour_passphrase.txt";
@@ -67 +69 @@
-    create_small_testfile(filename_rsa_clearsign_buf_passphrase);
-
+    create_large_testfile(filename_rsa_large_noarmour_nopassphrase);
+    create_large_testfile(filename_rsa_large_armour_nopassphrase);
+
-    // Return success
-    return 0;
@@ -415 +420 @@
-    }
-
+static void test_rsa_signature_large_noarmour_nopassphrase(void)
+    {
+    int armour=0;
+    assert(pub_keyring.nkeys);
+    test_rsa_signature_sign(armour,filename_rsa_large_noarmour_nopassphrase, alpha_skey);
+    }
+
+static void test_rsa_signature_large_armour_nopassphrase(void)
+    {
+    int armour=1;
+    assert(pub_keyring.nkeys);
+    test_rsa_signature_sign(armour,filename_rsa_large_armour_nopassphrase, alpha_skey);
+    }
+
-static void test_rsa_signature_noarmour_nopassphrase(void)
-    {
@@ -483 +502 @@
-    }
-
+/*
-static void test_todo(void)
-    {
-
-
-
-
-
-
+
+
+
+
+
+
+
-
-static int add_tests(CU_pSuite suite)
@@ -520 +541 @@
-            return 0;
-    
+    if (NULL == CU_add_test(suite, "Large, no armour, no passphrase", test_rsa_signature_large_noarmour_nopassphrase))
+            return 0;
+    
+    if (NULL == CU_add_test(suite, "Large, armour, no passphrase", test_rsa_signature_large_armour_nopassphrase))
+            return 0;
+    
+    /*
-    if (NULL == CU_add_test(suite, "Tests to be implemented", test_todo))
-            return 0;
-
+*/
-    return 1;
-}

openpgpsdk/trunk/tests/tests.c

@@ -46 +46 @@
-        }
-
+    //#ifdef XXX
-    if (NULL == suite_crypto())
-        {
@@ -72 +73 @@
-        return CU_get_error();
-        }
+    //#endif
-
-    if (NULL == suite_rsa_signature()) 
@@ -79 +81 @@
-        return CU_get_error();
-        }
-
+
-    if (NULL == suite_rsa_verify()) 
-        {
@@ -100 +102 @@
-        return CU_get_error();
-        }
+    //#endif
-
-    // Run tests