GpgFrontend/gpgme
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

cpp: Add interactor to generate keys on smartcard

Browse Source 
* lang/cpp/src/editinteractor.cpp (EditInteractor::needsNoResponse):
Handle new states.
* lang/cpp/src/gpggencardkeyinteractor.cpp,
lang/cpp/src/gpggencardkeyinteractor.h: New.
* lang/cpp/src/Makefile.am: Update accordingly.
This commit is contained in:
Andre Heinecke 2017-03-01 11:17:27 +01:00
parent fbafb5474d
commit d63258066d
No known key found for this signature in database
GPG Key ID: 2978E9D40CBABA5C
5 changed files with 411 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
NEWS
View File

@ -3,6 +3,8 @@ Noteworthy changes in version 1.8.1 (unreleased)
* cpp: Support for adduid and revuid operations.
* cpp: Support for smartcard key generation.
* Interface changes relative to the 1.8.0 release:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
gpgme_strerror_r CHANGED: Use gpgme_error_t (compatible type).
@ -16,6 +18,7 @@ Noteworthy changes in version 1.8.1 (unreleased)
cpp: Context::startAddUid(const Key&, const char*) NEW.
cpp: Key::UserID::revoke() NEW.
cpp: Key::addUid() NEW.
cpp: GpgGenCardKeyInteractor NEW.
qt: CryptoConfig::stringValueList() NEW.
gpgme_data_rewind UN-DEPRECATE.
py: Context.__init__ EXTENDED: New keyword arg home_dir.

4
lang/cpp/src/Makefile.am
View File

@ -31,7 +31,8 @@ main_sources = \
signingresult.cpp encryptionresult.cpp \
engineinfo.cpp gpgsetexpirytimeeditinteractor.cpp \
gpgsetownertrusteditinteractor.cpp gpgsignkeyeditinteractor.cpp \
gpgadduserideditinteractor.cpp defaultassuantransaction.cpp \
gpgadduserideditinteractor.cpp gpggencardkeyinteractor.cpp \
defaultassuantransaction.cpp \
scdgetinfoassuantransaction.cpp gpgagentgetinfoassuantransaction.cpp \
vfsmountresult.cpp configuration.cpp tofuinfo.cpp swdbresult.cpp
@ -42,6 +43,7 @@ gpgmepp_headers = \
gpgadduserideditinteractor.h gpgagentgetinfoassuantransaction.h \
gpgmefw.h gpgsetexpirytimeeditinteractor.h \
gpgsetownertrusteditinteractor.h gpgsignkeyeditinteractor.h \
gpggencardkeyinteractor.h \
importresult.h keygenerationresult.h key.h keylistresult.h \
notation.h result.h scdgetinfoassuantransaction.h signingresult.h \
trustitem.h verificationresult.h vfsmountresult.h gpgmepp_export.h \

2
lang/cpp/src/editinteractor.cpp
View File

@ -212,6 +212,8 @@ bool EditInteractor::needsNoResponse(unsigned int status) const
case GPGME_STATUS_KEY_CREATED:
case GPGME_STATUS_NEED_PASSPHRASE_SYM:
case GPGME_STATUS_SC_OP_FAILURE:
case GPGME_STATUS_CARDCTRL:
case GPGME_STATUS_BACKUP_KEY_CREATED:
return false;
default:
return true;

332
lang/cpp/src/gpggencardkeyinteractor.cpp Normal file
View File

@ -0,0 +1,332 @@
/*
gpggencardkeyinteractor.cpp - Edit Interactor to generate a key on a card
Copyright (C) 2017 Intevation GmbH
This file is part of GPGME++.
GPGME++ is free software; you can redistribute it and/or
modify it under the terms of the GNU Library General Public
License as published by the Free Software Foundation; either
version 2 of the License, or (at your option) any later version.
GPGME++ is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU Library General Public License for more details.
You should have received a copy of the GNU Library General Public License
along with GPGME++; see the file COPYING.LIB. If not, write to the
Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
Boston, MA 02110-1301, USA.
*/
#ifdef HAVE_CONFIG_H
#include "config.h"
#endif
#include "gpggencardkeyinteractor.h"
#include "error.h"
#include <gpgme.h>
using namespace GpgME;
class GpgGenCardKeyInteractor::Private
{
public:
Private() : keysize(2048), backup(false)
{
}
std::string name, email, backupFileName, expiry, serial;
int keysize;
bool backup;
};
GpgGenCardKeyInteractor::~GpgGenCardKeyInteractor() {}
GpgGenCardKeyInteractor::GpgGenCardKeyInteractor(const std::string &serial):
d(new Private)
{
d->serial = serial;
}
void GpgGenCardKeyInteractor::setNameUtf8(const std::string &name)
{
d->name = name;
}
void GpgGenCardKeyInteractor::setEmailUtf8(const std::string &email)
{
d->email = email;
}
void GpgGenCardKeyInteractor::setDoBackup(bool value)
{
d->backup = value;
}
void GpgGenCardKeyInteractor::setKeySize(int value)
{
d->keysize = value;
}
void GpgGenCardKeyInteractor::setExpiry(const std::string &timeStr)
{
d->expiry = timeStr;
}
std::string GpgGenCardKeyInteractor::backupFileName() const
{
return d->backupFileName;
}
namespace GpgGenCardKeyInteractor_Private
{
enum {
START = EditInteractor::StartState,
DO_ADMIN,
EXPIRE,
GOT_SERIAL,
COMMAND,
NAME,
EMAIL,
COMMENT,
BACKUP,
REPLACE,
SIZE,
SIZE2,
SIZE3,
BACKUP_KEY_CREATED,
KEY_CREATED,
QUIT,
SAVE,
ERROR = EditInteractor::ErrorState
};
}
const char *GpgGenCardKeyInteractor::action(Error &err) const
{
using namespace GpgGenCardKeyInteractor_Private;
switch (state()) {
case DO_ADMIN:
return "admin";
case COMMAND:
return "generate";
case NAME:
return d->name.c_str();
case EMAIL:
return d->email.c_str();
case EXPIRE:
return d->expiry.c_str();
case BACKUP:
return d->backup ? "Y" : "N";
case REPLACE:
return "Y";
case SIZE:
case SIZE2:
case SIZE3:
return std::to_string(d->keysize).c_str();
case COMMENT:
return "";
case SAVE:
return "Y";
case QUIT:
return "quit";
case KEY_CREATED:
case START:
case GOT_SERIAL:
case BACKUP_KEY_CREATED:
case ERROR:
return 0;
default:
err = Error::fromCode(GPG_ERR_GENERAL);
return 0;
}
}
unsigned int GpgGenCardKeyInteractor::nextState(unsigned int status, const char *args, Error &err) const
{
static const Error GENERAL_ERROR = Error::fromCode(GPG_ERR_GENERAL);
static const Error INV_NAME_ERROR = Error::fromCode(GPG_ERR_INV_NAME);
static const Error INV_EMAIL_ERROR = Error::fromCode(GPG_ERR_INV_USER_ID);
static const Error INV_COMMENT_ERROR = Error::fromCode(GPG_ERR_INV_USER_ID);
if (needsNoResponse(status)) {
return state();
}
using namespace GpgGenCardKeyInteractor_Private;
switch (state()) {
case START:
if (status == GPGME_STATUS_CARDCTRL &&
!d->serial.empty()) {
const std::string sArgs = args;
if (sArgs.find(d->serial) == std::string::npos) {
// Wrong smartcard
err = Error::fromCode(GPG_ERR_WRONG_CARD);
return ERROR;
} else {
printf("EditInteractor: Confirmed S/N: %s %s\n",
d->serial.c_str(), sArgs.c_str());
}
return GOT_SERIAL;
} else if (d->serial.empty()) {
return GOT_SERIAL;
}
err = GENERAL_ERROR;
return ERROR;
case GOT_SERIAL:
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "cardedit.prompt") == 0) {
return DO_ADMIN;
}
err = GENERAL_ERROR;
return ERROR;
case DO_ADMIN:
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "cardedit.prompt") == 0) {
return COMMAND;
}
err = GENERAL_ERROR;
return ERROR;
case COMMAND:
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "cardedit.genkeys.backup_enc") == 0) {
return BACKUP;
}
err = GENERAL_ERROR;
return ERROR;
case BACKUP:
if (status == GPGME_STATUS_GET_BOOL &&
strcmp(args, "cardedit.genkeys.replace_keys") == 0) {
return REPLACE;
}
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "cardedit.genkeys.size") == 0) {
return SIZE;
}
err = GENERAL_ERROR;
return ERROR;
case REPLACE:
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "cardedit.genkeys.size") == 0) {
printf("Moving to SIZE\n");
return SIZE;
}
err = GENERAL_ERROR;
return ERROR;
case SIZE:
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "cardedit.genkeys.size") == 0) {
return SIZE2;
}
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "keygen.valid") == 0) {
return EXPIRE;
}
err = GENERAL_ERROR;
return ERROR;
case SIZE2:
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "cardedit.genkeys.size") == 0) {
return SIZE3;
}
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "keygen.valid") == 0) {
return EXPIRE;
}
err = GENERAL_ERROR;
return ERROR;
case SIZE3:
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "keygen.valid") == 0) {
return EXPIRE;
}
err = GENERAL_ERROR;
return ERROR;
case EXPIRE:
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "keygen.name") == 0) {
return NAME;
}
err = GENERAL_ERROR;
return ERROR;
case NAME:
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "keygen.email") == 0) {
return EMAIL;
}
err = GENERAL_ERROR;
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "keygen.name") == 0) {
err = INV_NAME_ERROR;
}
return ERROR;
case EMAIL:
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "keygen.comment") == 0) {
return COMMENT;
}
err = GENERAL_ERROR;
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "keygen.email") == 0) {
err = INV_EMAIL_ERROR;
}
return ERROR;
case COMMENT:
if (status == GPGME_STATUS_BACKUP_KEY_CREATED) {
std::string sArgs = args;
const auto pos = sArgs.rfind(" ");
if (pos != std::string::npos) {
d->backupFileName = sArgs.substr(pos + 1);
return BACKUP_KEY_CREATED;
}
}
if (status == GPGME_STATUS_KEY_CREATED) {
return KEY_CREATED;
}
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "keyedit.prompt") == 0) {
return QUIT;
}
err = GENERAL_ERROR;
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "keygen.comment") == 0) {
err = INV_COMMENT_ERROR;
}
return ERROR;
case BACKUP_KEY_CREATED:
if (status == GPGME_STATUS_KEY_CREATED) {
return KEY_CREATED;
}
err = GENERAL_ERROR;
return ERROR;
case KEY_CREATED:
return QUIT;
case QUIT:
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "cardedit.prompt") == 0) {
return QUIT;
}
err = GENERAL_ERROR;
return ERROR;
case ERROR:
if (status == GPGME_STATUS_GET_LINE &&
strcmp(args, "keyedit.prompt") == 0) {
return QUIT;
}
err = lastError();
return ERROR;
default:
err = GENERAL_ERROR;
return ERROR;
}
}

71
lang/cpp/src/gpggencardkeyinteractor.h Normal file
View File

@ -0,0 +1,71 @@
/*
gpggencardkeyinteractor.h - Edit Interactor to generate a key on a card
Copyright (C) 2017 Intevation GmbH
This file is part of GPGME++.
GPGME++ is free software; you can redistribute it and/or
modify it under the terms of the GNU Library General Public
License as published by the Free Software Foundation; either
version 2 of the License, or (at your option) any later version.
GPGME++ is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU Library General Public License for more details.
You should have received a copy of the GNU Library General Public License
along with GPGME++; see the file COPYING.LIB. If not, write to the
Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
Boston, MA 02110-1301, USA.
*/
#ifndef __GPGMEPP_GPGGENCARDKEYEDITINTERACTOR_H__
#define __GPGMEPP_GPGGENCARDKEYEDITINTERACTOR_H__
#include <editinteractor.h>
#include <string>
#include <memory>
namespace GpgME
{
class GPGMEPP_EXPORT GpgGenCardKeyInteractor: public EditInteractor
{
public:
/** Edit interactor to generate a key on a smartcard.
*
* The \a serialnumber argument is intended to safeguard
* against accidentally working on the wrong smartcard.
*
* The edit interactor will fail if the card did not match.
*
* @param serialnumber: Serialnumber of the intended card.
**/
explicit GpgGenCardKeyInteractor(const std::string &serialnumber);
~GpgGenCardKeyInteractor();
/** Set the key sizes for the subkeys (default 2048) */
void setKeySize(int size);
void setNameUtf8(const std::string &name);
void setEmailUtf8(const std::string &email);
void setDoBackup(bool value);
void setExpiry(const std::string &timeString);
std::string backupFileName() const;
private:
/* reimp */ const char *action(Error &err) const;
/* reimp */ unsigned int nextState(unsigned int statusCode, const char *args, Error &err) const;
private:
class Private;
std::shared_ptr<Private> d;
};
} // namespace GpgME
#endif // __GPGMEPP_GPGGENCARDKEYEDITINTERACTOR_H__