2 * wrapper functions around the usign executable
3 * Copyright (C) 2018 Daniel Golle <daniel@makrotopia.org>
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License version 3
7 * as published by the Free Software Foundation
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
23 #define USIGN_EXEC "/usr/bin/usign"
26 * check for revoker deadlink in pubkeydir
27 * return true if a revoker exists, false otherwise
29 int _usign_key_is_revoked(const char *fingerprint, const char *pubkeydir) {
31 char rfname[256] = {0};
33 snprintf(rfname, sizeof(rfname)-1, "%s/%s", pubkeydir, fingerprint);
34 if (readlink(rfname, tml, sizeof(tml)) > 0 &&
35 !strcmp(tml, ".revoked.")) {
45 * return WEXITSTATUS or -1 if fork or execv fails
47 int usign_s(const char *msgfile, const char *seckeyfile, const char *sigfile, bool quiet) {
50 const char *usign_argv[16] = {0};
51 unsigned int usign_argc = 0;
53 usign_argv[usign_argc++] = USIGN_EXEC;
54 usign_argv[usign_argc++] = "-S";
55 usign_argv[usign_argc++] = "-m";
56 usign_argv[usign_argc++] = msgfile;
57 usign_argv[usign_argc++] = "-s";
58 usign_argv[usign_argc++] = seckeyfile;
59 usign_argv[usign_argc++] = "-x";
60 usign_argv[usign_argc++] = sigfile;
63 usign_argv[usign_argc++] = "-q";
71 if (execv(usign_argv[0], usign_argv))
77 waitpid(pid, &status, 0);
78 return WEXITSTATUS(status);
84 int usign_s(const char *msgfile, const char *seckeyfile, const char *sigfile, bool quiet) {
90 * call usign -F ... and set fingerprint returned
91 * return WEXITSTATUS or -1 if fork or execv fails
93 static int usign_f(char *fingerprint, const char *pubkeyfile, const char *seckeyfile, const char *sigfile) {
97 const char *usign_argv[16] = {0};
98 unsigned int usign_argc = 0;
103 usign_argv[usign_argc++] = USIGN_EXEC;
104 usign_argv[usign_argc++] = "-F";
107 usign_argv[usign_argc++] = "-p";
108 usign_argv[usign_argc++] = pubkeyfile;
112 usign_argv[usign_argc++] = "-s";
113 usign_argv[usign_argc++] = seckeyfile;
117 usign_argv[usign_argc++] = "-x";
118 usign_argv[usign_argc++] = sigfile;
134 if (execv(usign_argv[0], usign_argv))
140 waitpid(pid, &status, 0);
141 status = WEXITSTATUS(status);
142 if (fingerprint && !WEXITSTATUS(status)) {
143 memset(fingerprint, 0, 17);
144 read(fds[0], fingerprint, 17);
145 if (fingerprint[16] != '\n')
148 fingerprint[16] = '\0';
160 * call usign -F -p ...
162 int usign_f_pubkey(char *fingerprint, const char *pubkeyfile) {
163 return usign_f(fingerprint, pubkeyfile, NULL, NULL);
167 * call usign -F -s ...
169 int usign_f_seckey(char *fingerprint, const char *seckeyfile) {
170 return usign_f(fingerprint, NULL, seckeyfile, NULL);
174 * call usign -F -x ...
176 int usign_f_sig(char *fingerprint, const char *sigfile) {
177 return usign_f(fingerprint, NULL, NULL, sigfile);
183 * return WEXITSTATUS or -1 if fork or execv fails
185 int usign_v(const char *msgfile, const char *pubkeyfile,
186 const char *pubkeydir, const char *sigfile, bool quiet) {
189 const char *usign_argv[16] = {0};
190 unsigned int usign_argc = 0;
191 char fingerprint[17];
193 if (usign_f_sig(fingerprint, sigfile)) {
195 fprintf(stdout, "cannot get signing key fingerprint\n");
199 if (pubkeydir && _usign_key_is_revoked(fingerprint, pubkeydir)) {
201 fprintf(stdout, "key %s has been revoked!\n", fingerprint);
204 usign_argv[usign_argc++] = USIGN_EXEC;
205 usign_argv[usign_argc++] = "-V";
206 usign_argv[usign_argc++] = "-m";
207 usign_argv[usign_argc++] = msgfile;
210 usign_argv[usign_argc++] = "-q";
213 usign_argv[usign_argc++] = "-p";
214 usign_argv[usign_argc++] = pubkeyfile;
218 usign_argv[usign_argc++] = "-P";
219 usign_argv[usign_argc++] = pubkeydir;
223 usign_argv[usign_argc++] = "-x";
224 usign_argv[usign_argc++] = sigfile;
233 if (execv(usign_argv[0], usign_argv))
239 waitpid(pid, &status, 0);
240 return WEXITSTATUS(status);