Changeset 608

Timestamp:

08/29/08 12:40:55

Author:

rachel

Message:

Finish V3 signature verification.
Add tests to detect successfull and failed V3 sig verification.

Files:

• openpgpsdk/trunk/src/lib/packet-parse.c (modified) (1 diff)
• openpgpsdk/trunk/src/lib/validate.c (modified) (6 diffs)
• openpgpsdk/trunk/tests/test_rsa_verify.c (modified) (5 diffs)

openpgpsdk/trunk/src/lib/packet-parse.c

@@ -1239 +1239 @@
-    unsigned char c[1];
-    ops_parser_content_t content;
+
+    // clear signature
+    memset(&C.signature,'\0',sizeof C.signature);
-
-    C.signature.info.version=OPS_V3;

openpgpsdk/trunk/src/lib/validate.c

@@ -55 +55 @@
-    hash.init(&hash);
-    hash.add(&hash,data,len);
-
-
-
-
-
-
-
-
-
-
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
-
-    n=hash.finish(&hash,hashout);
@@ -221 +240 @@
-        return OPS_KEEP_MEMORY;
-
-
+
+
-        /*
-        printf("  type=%02x signer_id=",content->signature.type);
@@ -305 +325 @@
-    case OPS_PARSER_PTAG:
-    case OPS_PTAG_CT_SIGNATURE_HEADER:
-
-
+
-        break;
-
@@ -366 +385 @@
-
-    case OPS_PTAG_CT_SIGNATURE: // V3 sigs
-        // this gives us a signature struct with all info about hash alg, etc from the packet
-        break;
-
-    case OPS_PTAG_CT_SIGNATURE_FOOTER: // V4 sigs
-        
@@ -436 +452 @@
-            {
-        add_sig_to_valid_list(arg->result, &content->signature.info);
-        //          ++arg->result->valid_count;
-            }
-        else
-            {
-        OPS_ERROR(errors,OPS_E_V_BAD_SIGNATURE,"Bad Signature");
-        //          printf(" BAD SIGNATURE\n");
-        //          ++arg->result->invalid_count;
-        add_sig_to_invalid_list(arg->result, &content->signature.info);
-            }
@@ -454 +467 @@
- case OPS_PTAG_CT_ONE_PASS_SIGNATURE:
- case OPS_PARSER_PACKET_END:
-        //    case OPS_PTAG_CT_SIGNATURE:
-        break;
-

openpgpsdk/trunk/tests/test_rsa_verify.c

@@ -54 +54 @@
-
-static char *filename_rsa_v3sig="gpg_rsa_sign_v3sig.txt";
+static char *filename_rsa_v3sig_fail_bad_sig="gpg_rsa_sign_v3sig_fail_bad_sig.txt";
-
-static char *filename_rsa_hash_md5="gpg_rsa_hash_md5.txt";
@@ -111 +112 @@
-
-    create_small_testfile(filename_rsa_v3sig);
+    create_small_testfile(filename_rsa_v3sig_fail_bad_sig);
-    create_small_testfile(filename_rsa_hash_md5);
-
@@ -155 +157 @@
-             dir, filename_rsa_v3sig,
-             gpgcmd, alpha_name, dir, filename_rsa_v3sig);
+    if (system(cmd))
+        { return 1; }
+
+    // V3 signature to fail
+    snprintf(cmd,sizeof cmd,"cat %s/%s | %s --compress-level 0 --sign --force-v3-sigs --local-user %s > %s/%s.gpg",
+             dir, filename_rsa_v3sig_fail_bad_sig,
+             gpgcmd, alpha_name, dir, filename_rsa_v3sig_fail_bad_sig);
-    if (system(cmd))
-        { return 1; }
@@ -474 +483 @@
-    }
-
+static void test_rsa_verify_v3sig_fail_bad_sig(void)
+    {
+    int armour=0;
+    assert(pub_keyring.nkeys);
+
+    test_rsa_verify_fail(armour,filename_rsa_v3sig_fail_bad_sig, callback_bad_sig, OPS_E_V_BAD_SIGNATURE);
+    }
+
-static void test_rsa_verify_clearsign_fail_bad_sig(void)
-    {
@@ -527 +544 @@
-            return NULL;
-
+    if (NULL == CU_add_test(suite, "V3 signature: should fail on bad sig", test_rsa_verify_v3sig_fail_bad_sig))
+            return NULL;
+
-    if (NULL == CU_add_test(suite, "MD5 Hash", test_rsa_verify_hash_md5))
-            return NULL;