aboutsummaryrefslogtreecommitdiffstats
path: root/src/gpgme-json.c
diff options
context:
space:
mode:
authorBen McGinnes <[email protected]>2018-03-24 22:44:51 +0000
committerBen McGinnes <[email protected]>2018-03-24 22:44:51 +0000
commitd0bb4ec4ecdfae4dfd9dd84aef905afb490013d5 (patch)
treee9d1a21501e4d09bd0442e9eee829046b25a922d /src/gpgme-json.c
parentdoc: python bindings howto (diff)
parentcore: Need to increase an array in the gpg engine. (diff)
downloadgpgme-d0bb4ec4ecdfae4dfd9dd84aef905afb490013d5.tar.gz
gpgme-d0bb4ec4ecdfae4dfd9dd84aef905afb490013d5.zip
Merge branch 'master' of ssh+git://playfair.gnupg.org/git/gpgme
Diffstat (limited to 'src/gpgme-json.c')
-rw-r--r--src/gpgme-json.c1332
1 files changed, 1332 insertions, 0 deletions
diff --git a/src/gpgme-json.c b/src/gpgme-json.c
new file mode 100644
index 00000000..e38f9d89
--- /dev/null
+++ b/src/gpgme-json.c
@@ -0,0 +1,1332 @@
+/* gpgme-json.c - JSON based interface to gpgme (server)
+ * Copyright (C) 2018 g10 Code GmbH
+ *
+ * This file is part of GPGME.
+ *
+ * GPGME is free software; you can redistribute it and/or modify it
+ * under the terms of the GNU Lesser General Public License as
+ * published by the Free Software Foundation; either version 2.1 of
+ * the License, or (at your option) any later version.
+ *
+ * GPGME is distributed in the hope that it will be useful, but
+ * WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public
+ * License along with this program; if not, see <http://www.gnu.org/licenses/>.
+ * SPDX-License-Identifier: LGPL-2.1+
+ */
+
+/* This is tool implements the Native Messaging protocol of web
+ * browsers and provides the server part of it. A Javascript based
+ * client can be found in lang/javascript. The used data format is
+ * similar to the API of openpgpjs.
+ */
+
+#include <config.h>
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+#include <stdarg.h>
+#ifdef HAVE_LOCALE_H
+#include <locale.h>
+#endif
+#include <stdint.h>
+
+#define GPGRT_ENABLE_ES_MACROS 1
+#define GPGRT_ENABLE_LOG_MACROS 1
+#define GPGRT_ENABLE_ARGPARSE_MACROS 1
+#include "gpgme.h"
+#include "cJSON.h"
+
+
+/* We don't allow a request with more than 64 MiB. */
+#define MAX_REQUEST_SIZE (64 * 1024 * 1024)
+
+
+static void xoutofcore (const char *type) GPGRT_ATTR_NORETURN;
+static cjson_t error_object_v (cjson_t json, const char *message,
+ va_list arg_ptr) GPGRT_ATTR_PRINTF(2,0);
+static cjson_t error_object (cjson_t json, const char *message,
+ ...) GPGRT_ATTR_PRINTF(2,3);
+static char *error_object_string (const char *message,
+ ...) GPGRT_ATTR_PRINTF(1,2);
+
+
+/* True if interactive mode is active. */
+static int opt_interactive;
+
+
+
+/*
+ * Helper functions and macros
+ */
+
+#define xtrymalloc(a) gpgrt_malloc ((a))
+#define xtrystrdup(a) gpgrt_strdup ((a))
+#define xmalloc(a) ({ \
+ void *_r = gpgrt_malloc ((a)); \
+ if (!_r) \
+ xoutofcore ("malloc"); \
+ _r; })
+#define xcalloc(a,b) ({ \
+ void *_r = gpgrt_calloc ((a), (b)); \
+ if (!_r) \
+ xoutofcore ("calloc"); \
+ _r; })
+#define xstrdup(a) ({ \
+ char *_r = gpgrt_strdup ((a)); \
+ if (!_r) \
+ xoutofcore ("strdup"); \
+ _r; })
+#define xstrconcat(a, ...) ({ \
+ char *_r = gpgrt_strconcat ((a), __VA_ARGS__); \
+ if (!_r) \
+ xoutofcore ("strconcat"); \
+ _r; })
+#define xfree(a) gpgrt_free ((a))
+
+#define spacep(p) (*(p) == ' ' || *(p) == '\t')
+
+
+static void
+xoutofcore (const char *type)
+{
+ gpg_error_t err = gpg_error_from_syserror ();
+ log_error ("%s failed: %s\n", type, gpg_strerror (err));
+ exit (2);
+}
+
+
+/* Call cJSON_CreateObject but terminate in case of an error. */
+static cjson_t
+xjson_CreateObject (void)
+{
+ cjson_t json = cJSON_CreateObject ();
+ if (!json)
+ xoutofcore ("cJSON_CreateObject");
+ return json;
+}
+
+
+/* Wrapper around cJSON_AddStringToObject which returns an gpg-error
+ * code instead of the NULL or the new object. */
+static gpg_error_t
+cjson_AddStringToObject (cjson_t object, const char *name, const char *string)
+{
+ if (!cJSON_AddStringToObject (object, name, string))
+ return gpg_error_from_syserror ();
+ return 0;
+}
+
+
+/* Same as cjson_AddStringToObject but prints an error message and
+ * terminates the process. */
+static void
+xjson_AddStringToObject (cjson_t object, const char *name, const char *string)
+{
+ if (!cJSON_AddStringToObject (object, name, string))
+ xoutofcore ("cJSON_AddStringToObject");
+}
+
+
+/* Wrapper around cJSON_AddBoolToObject which terminates the process
+ * in case of an error. */
+static void
+xjson_AddBoolToObject (cjson_t object, const char *name, int abool)
+{
+ if (!cJSON_AddBoolToObject (object, name, abool))
+ xoutofcore ("cJSON_AddStringToObject");
+ return ;
+}
+
+/* This is similar to cJSON_AddStringToObject but takes a gpgme DATA
+ * object and adds it under NAME as a base 64 encoded string to
+ * OBJECT. Ownership of DATA is transferred to this function. */
+static gpg_error_t
+add_base64_to_object (cjson_t object, const char *name, gpgme_data_t data)
+{
+#if GPGRT_VERSION_NUMBER < 0x011d00 /* 1.29 */
+ return gpg_error (GPG_ERR_NOT_SUPPORTED);
+#else
+ gpg_err_code_t err;
+ estream_t fp = NULL;
+ gpgrt_b64state_t state = NULL;
+ cjson_t j_str = NULL;
+ void *buffer = NULL;
+ size_t buflen;
+
+ fp = es_fopenmem (0, "rwb");
+ if (!fp)
+ {
+ err = gpg_err_code_from_syserror ();
+ goto leave;
+ }
+ state = gpgrt_b64enc_start (fp, "");
+ if (!state)
+ {
+ err = gpg_err_code_from_syserror ();
+ goto leave;
+ }
+
+ gpgme_data_write (data, "", 1); /* Make sure we have a string. */
+ buffer = gpgme_data_release_and_get_mem (data, &buflen);
+ data = NULL;
+ if (!buffer)
+ {
+ err = gpg_error_from_syserror ();
+ goto leave;
+ }
+
+ err = gpgrt_b64enc_write (state, buffer, buflen);
+ if (err)
+ goto leave;
+ xfree (buffer);
+ buffer = NULL;
+
+ err = gpgrt_b64enc_finish (state);
+ state = NULL;
+ if (err)
+ return err;
+
+ es_fputc (0, fp);
+ if (es_fclose_snatch (fp, &buffer, NULL))
+ {
+ fp = NULL;
+ err = gpg_error_from_syserror ();
+ goto leave;
+ }
+ fp = NULL;
+
+ j_str = cJSON_CreateStringConvey (buffer);
+ if (!j_str)
+ {
+ err = gpg_error_from_syserror ();
+ goto leave;
+ }
+ buffer = NULL;
+
+ if (!cJSON_AddItemToObject (object, name, j_str))
+ {
+ err = gpg_error_from_syserror ();
+ cJSON_Delete (j_str);
+ j_str = NULL;
+ goto leave;
+ }
+ j_str = NULL;
+
+ leave:
+ xfree (buffer);
+ cJSON_Delete (j_str);
+ gpgrt_b64enc_finish (state);
+ es_fclose (fp);
+ gpgme_data_release (data);
+ return err;
+#endif
+}
+
+
+/* Create a JSON error object. If JSON is not NULL the error message
+ * is appended to that object. An existing "type" item will be replaced. */
+static cjson_t
+error_object_v (cjson_t json, const char *message, va_list arg_ptr)
+{
+ cjson_t response, j_tmp;
+ char *msg;
+
+ msg = gpgrt_vbsprintf (message, arg_ptr);
+ if (!msg)
+ xoutofcore ("error_object");
+
+ response = json? json : xjson_CreateObject ();
+
+ if (!(j_tmp = cJSON_GetObjectItem (response, "type")))
+ xjson_AddStringToObject (response, "type", "error");
+ else /* Replace existing "type". */
+ {
+ j_tmp = cJSON_CreateString ("error");
+ if (!j_tmp)
+ xoutofcore ("cJSON_CreateString");
+ cJSON_ReplaceItemInObject (response, "type", j_tmp);
+ }
+ xjson_AddStringToObject (response, "msg", msg);
+
+ xfree (msg);
+ return response;
+}
+
+
+/* Call cJSON_Print but terminate in case of an error. */
+static char *
+xjson_Print (cjson_t object)
+{
+ char *buf;
+ buf = cJSON_Print (object);
+ if (!buf)
+ xoutofcore ("cJSON_Print");
+ return buf;
+}
+
+
+static cjson_t
+error_object (cjson_t json, const char *message, ...)
+{
+ cjson_t response;
+ va_list arg_ptr;
+
+ va_start (arg_ptr, message);
+ response = error_object_v (json, message, arg_ptr);
+ va_end (arg_ptr);
+ return response;
+}
+
+
+static char *
+error_object_string (const char *message, ...)
+{
+ cjson_t response;
+ va_list arg_ptr;
+ char *msg;
+
+ va_start (arg_ptr, message);
+ response = error_object_v (NULL, message, arg_ptr);
+ va_end (arg_ptr);
+
+ msg = xjson_Print (response);
+ cJSON_Delete (response);
+ return msg;
+}
+
+
+/* Get the boolean property NAME from the JSON object and store true
+ * or valse at R_VALUE. If the name is unknown the value of DEF_VALUE
+ * is returned. If the type of the value is not boolean,
+ * GPG_ERR_INV_VALUE is returned and R_VALUE set to DEF_VALUE. */
+static gpg_error_t
+get_boolean_flag (cjson_t json, const char *name, int def_value, int *r_value)
+{
+ cjson_t j_item;
+
+ j_item = cJSON_GetObjectItem (json, name);
+ if (!j_item)
+ *r_value = def_value;
+ else if (cjson_is_true (j_item))
+ *r_value = 1;
+ else if (cjson_is_false (j_item))
+ *r_value = 0;
+ else
+ {
+ *r_value = def_value;
+ return gpg_error (GPG_ERR_INV_VALUE);
+ }
+
+ return 0;
+}
+
+
+/* Get the boolean property PROTOCOL from the JSON object and store
+ * its value at R_PROTOCOL. The default is OpenPGP. */
+static gpg_error_t
+get_protocol (cjson_t json, gpgme_protocol_t *r_protocol)
+{
+ cjson_t j_item;
+
+ *r_protocol = GPGME_PROTOCOL_OpenPGP;
+ j_item = cJSON_GetObjectItem (json, "protocol");
+ if (!j_item)
+ ;
+ else if (!cjson_is_string (j_item))
+ return gpg_error (GPG_ERR_INV_VALUE);
+ else if (!strcmp(j_item->valuestring, "openpgp"))
+ ;
+ else if (!strcmp(j_item->valuestring, "cms"))
+ *r_protocol = GPGME_PROTOCOL_CMS;
+ else
+ return gpg_error (GPG_ERR_UNSUPPORTED_PROTOCOL);
+
+ return 0;
+}
+
+
+/* Extract the keys from the KEYS array in the JSON object. CTX is a
+ * GPGME context object. On success an array with the keys is stored
+ * at R_KEYS. In failure an error code is returned. */
+static gpg_error_t
+get_keys (gpgme_ctx_t ctx, cjson_t json, gpgme_key_t **r_keys)
+{
+ gpg_error_t err;
+ cjson_t j_keys, j_item;
+ int i, nkeys;
+ gpgme_key_t *keys;
+
+ *r_keys = NULL;
+
+ j_keys = cJSON_GetObjectItem (json, "keys");
+ if (!j_keys)
+ return gpg_error (GPG_ERR_NO_KEY);
+ if (!cjson_is_array (j_keys) && !cjson_is_string (j_keys))
+ return gpg_error (GPG_ERR_INV_VALUE);
+
+ if (cjson_is_string (j_keys))
+ nkeys = 1;
+ else
+ {
+ nkeys = cJSON_GetArraySize (j_keys);
+ if (!nkeys)
+ return gpg_error (GPG_ERR_NO_KEY);
+ for (i=0; i < nkeys; i++)
+ {
+ j_item = cJSON_GetArrayItem (j_keys, i);
+ if (!j_item || !cjson_is_string (j_item))
+ return gpg_error (GPG_ERR_INV_VALUE);
+ }
+ }
+
+ /* Now allocate an array to store the gpgme key objects. */
+ keys = xcalloc (nkeys + 1, sizeof *keys);
+
+ if (cjson_is_string (j_keys))
+ {
+ err = gpgme_get_key (ctx, j_keys->valuestring, &keys[0], 0);
+ if (err)
+ goto leave;
+ }
+ else
+ {
+ for (i=0; i < nkeys; i++)
+ {
+ j_item = cJSON_GetArrayItem (j_keys, i);
+ err = gpgme_get_key (ctx, j_item->valuestring, &keys[i], 0);
+ if (err)
+ goto leave;
+ }
+ }
+ err = 0;
+ *r_keys = keys;
+ keys = NULL;
+
+ leave:
+ if (keys)
+ {
+ for (i=0; keys[i]; i++)
+ gpgme_key_unref (keys[i]);
+ xfree (keys);
+ }
+ return err;
+}
+
+
+
+/*
+ * GPGME support functions.
+ */
+
+/* Helper for get_context. */
+static gpgme_ctx_t
+_create_new_context (gpgme_protocol_t proto)
+{
+ gpg_error_t err;
+ gpgme_ctx_t ctx;
+
+ err = gpgme_new (&ctx);
+ if (err)
+ log_fatal ("error creating GPGME context: %s\n", gpg_strerror (err));
+ gpgme_set_protocol (ctx, proto);
+ gpgme_set_ctx_flag (ctx, "request-origin", "browser");
+ return ctx;
+}
+
+
+/* Return a context object for protocol PROTO. This is currently a
+ * statuically allocated context initialized for PROTO. Termnates
+ * process on failure. */
+static gpgme_ctx_t
+get_context (gpgme_protocol_t proto)
+{
+ static gpgme_ctx_t ctx_openpgp, ctx_cms;
+
+ if (proto == GPGME_PROTOCOL_OpenPGP)
+ {
+ if (!ctx_openpgp)
+ ctx_openpgp = _create_new_context (proto);
+ return ctx_openpgp;
+ }
+ else if (proto == GPGME_PROTOCOL_CMS)
+ {
+ if (!ctx_cms)
+ ctx_cms = _create_new_context (proto);
+ return ctx_cms;
+ }
+ else
+ log_bug ("invalid protocol %d requested\n", proto);
+}
+
+
+
+/* Free context object retrieved by get_context. */
+static void
+release_context (gpgme_ctx_t ctx)
+{
+ /* Nothing to do right now. */
+ (void)ctx;
+}
+
+
+
+/* Given a Base-64 encoded string object in JSON return a gpgme data
+ * object at R_DATA. */
+static gpg_error_t
+data_from_base64_string (gpgme_data_t *r_data, cjson_t json)
+{
+#if GPGRT_VERSION_NUMBER < 0x011d00 /* 1.29 */
+ *r_data = NULL;
+ return gpg_error (GPG_ERR_NOT_SUPPORTED);
+#else
+ gpg_error_t err;
+ size_t len;
+ char *buf = NULL;
+ gpgrt_b64state_t state = NULL;
+ gpgme_data_t data = NULL;
+
+ *r_data = NULL;
+
+ /* A quick check on the JSON. */
+ if (!cjson_is_string (json))
+ {
+ err = gpg_error (GPG_ERR_INV_VALUE);
+ goto leave;
+ }
+
+ state = gpgrt_b64dec_start (NULL);
+ if (!state)
+ {
+ err = gpg_err_code_from_syserror ();
+ goto leave;
+ }
+
+ /* Fixme: Data duplication - we should see how to snatch the memory
+ * from the json object. */
+ len = strlen (json->valuestring);
+ buf = xtrystrdup (json->valuestring);
+ if (!buf)
+ {
+ err = gpg_error_from_syserror ();
+ goto leave;
+ }
+
+ err = gpgrt_b64dec_proc (state, buf, len, &len);
+ if (err)
+ goto leave;
+
+ err = gpgrt_b64dec_finish (state);
+ state = NULL;
+ if (err)
+ goto leave;
+
+ err = gpgme_data_new_from_mem (&data, buf, len, 1);
+ if (err)
+ goto leave;
+ *r_data = data;
+ data = NULL;
+
+ leave:
+ xfree (data);
+ xfree (buf);
+ gpgrt_b64dec_finish (state);
+ return err;
+#endif
+}
+
+
+
+/*
+ * Implementaion of the commands.
+ */
+
+
+static const char hlp_encrypt[] =
+ "op: \"encrypt\"\n"
+ "keys: Array of strings with the fingerprints or user-ids\n"
+ " of the keys to encrypt the data. For a single key\n"
+ " a String may be used instead of an array.\n"
+ "data: Input data. \n"
+ "\n"
+ "Optional parameters:\n"
+ "protocol: Either \"openpgp\" (default) or \"cms\".\n"
+ "\n"
+ "Optional boolean flags (default is false):\n"
+ "base64: Input data is base64 encoded.\n"
+ "armor: Request output in armored format.\n"
+ "always-trust: Request --always-trust option.\n"
+ "no-encrypt-to: Do not use a default recipient.\n"
+ "no-compress: Do not compress the plaintext first.\n"
+ "throw-keyids: Request the --throw-keyids option.\n"
+ "wrap: Assume the input is an OpenPGP message.\n"
+ "\n"
+ "Response on success:\n"
+ "type: \"ciphertext\"\n"
+ "data: Unless armor mode is used a Base64 encoded binary\n"
+ " ciphertext. In armor mode a string with an armored\n"
+ " OpenPGP or a PEM message.\n"
+ "base64: Boolean indicating whether data is base64 encoded.";
+static gpg_error_t
+op_encrypt (cjson_t request, cjson_t result)
+{
+ gpg_error_t err;
+ gpgme_ctx_t ctx = NULL;
+ gpgme_protocol_t protocol;
+ int opt_base64;
+ gpgme_key_t *keys = NULL;
+ cjson_t j_input;
+ gpgme_data_t input = NULL;
+ gpgme_data_t output = NULL;
+ int abool, i;
+ gpgme_encrypt_flags_t encrypt_flags = 0;
+
+ if ((err = get_protocol (request, &protocol)))
+ goto leave;
+ ctx = get_context (protocol);
+
+ if ((err = get_boolean_flag (request, "base64", 0, &opt_base64)))
+ goto leave;
+
+ if ((err = get_boolean_flag (request, "armor", 0, &abool)))
+ goto leave;
+ gpgme_set_armor (ctx, abool);
+ if ((err = get_boolean_flag (request, "always-trust", 0, &abool)))
+ goto leave;
+ if (abool)
+ encrypt_flags |= GPGME_ENCRYPT_ALWAYS_TRUST;
+ if ((err = get_boolean_flag (request, "no-encrypt-to", 0,&abool)))
+ goto leave;
+ if (abool)
+ encrypt_flags |= GPGME_ENCRYPT_NO_ENCRYPT_TO;
+ if ((err = get_boolean_flag (request, "no-compress", 0, &abool)))
+ goto leave;
+ if (abool)
+ encrypt_flags |= GPGME_ENCRYPT_NO_COMPRESS;
+ if ((err = get_boolean_flag (request, "throw-keyids", 0, &abool)))
+ goto leave;
+ if (abool)
+ encrypt_flags |= GPGME_ENCRYPT_THROW_KEYIDS;
+ if ((err = get_boolean_flag (request, "wrap", 0, &abool)))
+ goto leave;
+ if (abool)
+ encrypt_flags |= GPGME_ENCRYPT_WRAP;
+
+
+ /* Get the keys. */
+ err = get_keys (ctx, request, &keys);
+ if (err)
+ {
+ /* Provide a custom error response. */
+ error_object (result, "Error getting keys: %s", gpg_strerror (err));
+ goto leave;
+ }
+
+ /* Get the data. Note that INPUT is a shallow data object with the
+ * storage hold in REQUEST. */
+ j_input = cJSON_GetObjectItem (request, "data");
+ if (!j_input)
+ {
+ err = gpg_error (GPG_ERR_NO_DATA);
+ goto leave;
+ }
+ if (!cjson_is_string (j_input))
+ {
+ err = gpg_error (GPG_ERR_INV_VALUE);
+ goto leave;
+ }
+ if (opt_base64)
+ {
+ err = data_from_base64_string (&input, j_input);
+ if (err)
+ {
+ error_object (result, "Error decoding Base-64 encoded 'data': %s",
+ gpg_strerror (err));
+ goto leave;
+ }
+ }
+ else
+ {
+ err = gpgme_data_new_from_mem (&input, j_input->valuestring,
+ strlen (j_input->valuestring), 0);
+ if (err)
+ {
+ error_object (result, "Error getting 'data': %s", gpg_strerror (err));
+ goto leave;
+ }
+ }
+
+ /* Create an output data object. */
+ err = gpgme_data_new (&output);
+ if (err)
+ {
+ error_object (result, "Error creating output data object: %s",
+ gpg_strerror (err));
+ goto leave;
+ }
+
+ /* Encrypt. */
+ err = gpgme_op_encrypt (ctx, keys, encrypt_flags, input, output);
+ /* encrypt_result = gpgme_op_encrypt_result (ctx); */
+ if (err)
+ {
+ error_object (result, "Encryption failed: %s", gpg_strerror (err));
+ goto leave;
+ }
+ gpgme_data_release (input);
+ input = NULL;
+
+ xjson_AddStringToObject (result, "type", "ciphertext");
+ /* If armoring is used we do not need to base64 the output. */
+ xjson_AddBoolToObject (result, "base64", !gpgme_get_armor (ctx));
+ if (gpgme_get_armor (ctx))
+ {
+ char *buffer;
+
+ /* Make sure that we really have a string. */
+ gpgme_data_write (output, "", 1);
+ buffer = gpgme_data_release_and_get_mem (output, NULL);
+ if (!buffer)
+ {
+ err = gpg_error_from_syserror ();
+ goto leave;
+ }
+ err = cjson_AddStringToObject (result, "data", buffer);
+ gpgme_free (buffer);
+ if (err)
+ goto leave;
+ }
+ else
+ {
+ err = add_base64_to_object (result, "data", output);
+ output = NULL;
+ if (err)
+ goto leave;
+ }
+
+ leave:
+ if (keys)
+ {
+ for (i=0; keys[i]; i++)
+ gpgme_key_unref (keys[i]);
+ xfree (keys);
+ }
+ release_context (ctx);
+ gpgme_data_release (input);
+ return err;
+}
+
+
+
+static const char hlp_help[] =
+ "The tool expects a JSON object with the request and responds with\n"
+ "another JSON object. Even on error a JSON object is returned. The\n"
+ "property \"op\" is mandatory and its string value selects the\n"
+ "operation; if the property \"help\" with the value \"true\" exists, the\n"
+ "operation is not performned but a string with the documentation\n"
+ "returned. To list all operations it is allowed to leave out \"op\" in\n"
+ "help mode. Supported values for \"op\" are:\n\n"
+ " encrypt Encrypt data.\n"
+ " help Help overview.";
+static gpg_error_t
+op_help (cjson_t request, cjson_t result)
+{
+ cjson_t j_tmp;
+ char *buffer = NULL;
+ const char *msg;
+
+ j_tmp = cJSON_GetObjectItem (request, "interactive_help");
+ if (opt_interactive && j_tmp && cjson_is_string (j_tmp))
+ msg = buffer = xstrconcat (hlp_help, "\n", j_tmp->valuestring, NULL);
+ else
+ msg = hlp_help;
+
+ xjson_AddStringToObject (result, "type", "help");
+ xjson_AddStringToObject (result, "msg", msg);
+
+ xfree (buffer);
+ return 0;
+}
+
+
+
+/* Process a request and return the response. The response is a newly
+ * allocated staring or NULL in case of an error. */
+static char *
+process_request (const char *request)
+{
+ static struct {
+ const char *op;
+ gpg_error_t (*handler)(cjson_t request, cjson_t result);
+ const char * const helpstr;
+ } optbl[] = {
+ { "encrypt", op_encrypt, hlp_encrypt },
+
+
+ { "help", op_help, hlp_help },
+ { NULL }
+ };
+ size_t erroff;
+ cjson_t json;
+ cjson_t j_tmp, j_op;
+ cjson_t response;
+ int helpmode;
+ const char *op;
+ char *res;
+ int idx;
+
+ response = xjson_CreateObject ();
+
+ json = cJSON_Parse (request, &erroff);
+ if (!json)
+ {
+ log_string (GPGRT_LOGLVL_INFO, request);
+ log_info ("invalid JSON object at offset %zu\n", erroff);
+ error_object (response, "invalid JSON object at offset %zu\n", erroff);
+ goto leave;
+ }
+
+ j_tmp = cJSON_GetObjectItem (json, "help");
+ helpmode = (j_tmp && cjson_is_true (j_tmp));
+
+ j_op = cJSON_GetObjectItem (json, "op");
+ if (!j_op || !cjson_is_string (j_op))
+ {
+ if (!helpmode)
+ {
+ error_object (response, "Property \"op\" missing");
+ goto leave;
+ }
+ op = "help"; /* Help summary. */
+ }
+ else
+ op = j_op->valuestring;
+
+ for (idx=0; optbl[idx].op; idx++)
+ if (!strcmp (op, optbl[idx].op))
+ break;
+ if (optbl[idx].op)
+ {
+ if (helpmode && strcmp (op, "help"))
+ {
+ xjson_AddStringToObject (response, "type", "help");
+ xjson_AddStringToObject (response, "op", op);
+ xjson_AddStringToObject (response, "msg", optbl[idx].helpstr);
+ }
+ else
+ {
+ gpg_error_t err;
+
+ err = optbl[idx].handler (json, response);
+ if (err)
+ {
+ if (!(j_tmp = cJSON_GetObjectItem (response, "type"))
+ || !cjson_is_string (j_tmp)
+ || strcmp (j_tmp->valuestring, "error"))
+ {
+ /* No error type response - provide a generic one. */
+ error_object (response, "Operation failed: %s",
+ gpg_strerror (err));
+ }
+
+ xjson_AddStringToObject (response, "op", op);
+ }
+
+ }
+ }
+ else /* Operation not supported. */
+ {
+ error_object (response, "Unknown operation '%s'", op);
+ xjson_AddStringToObject (response, "op", op);
+ }
+
+ leave:
+ cJSON_Delete (json);
+ json = NULL;
+ if (opt_interactive)
+ res = cJSON_Print (response);
+ else
+ res = cJSON_PrintUnformatted (response);
+ if (!res)
+ log_error ("Printing JSON data failed\n");
+ cJSON_Delete (response);
+ return res;
+}
+
+
+
+/*
+ * Driver code
+ */
+
+/* Return a malloced line or NULL on EOF. Terminate on read
+ * error. */
+static char *
+get_line (void)
+{
+ char *line = NULL;
+ size_t linesize = 0;
+ gpg_error_t err;
+ size_t maxlength = 2048;
+ int n;
+ const char *s;
+ char *p;
+
+ again:
+ n = es_read_line (es_stdin, &line, &linesize, &maxlength);
+ if (n < 0)
+ {
+ err = gpg_error_from_syserror ();
+ log_error ("error reading line: %s\n", gpg_strerror (err));
+ exit (1);
+ }
+ if (!n)
+ {
+ xfree (line);
+ line = NULL;
+ return NULL; /* EOF */
+ }
+ if (!maxlength)
+ {
+ log_info ("line too long - skipped\n");
+ goto again;
+ }
+ if (memchr (line, 0, n))
+ log_info ("warning: line shortened due to embedded Nul character\n");
+
+ if (line[n-1] == '\n')
+ line[n-1] = 0;
+
+ /* Trim leading spaces. */
+ for (s=line; spacep (s); s++)
+ ;
+ if (s != line)
+ {
+ for (p=line; *s;)
+ *p++ = *s++;
+ *p = 0;
+ n = p - line;
+ }
+
+ return line;
+}
+
+
+/* Process meta commands used with the standard REPL. */
+static char *
+process_meta_commands (const char *request)
+{
+ char *result = NULL;
+
+ while (spacep (request))
+ request++;
+
+ if (!strncmp (request, "help", 4) && (spacep (request+4) || !request[4]))
+ result = process_request ("{ \"op\": \"help\","
+ " \"interactive_help\": "
+ "\"\\nMeta commands:\\n"
+ " ,help This help\\n"
+ " ,quit Terminate process\""
+ "}");
+ else if (!strncmp (request, "quit", 4) && (spacep (request+4) || !request[4]))
+ exit (0);
+ else
+ log_info ("invalid meta command\n");
+
+ return result;
+}
+
+
+/* If STRING has a help response, return the MSG property in a human
+ * readable format. */
+static char *
+get_help_msg (const char *string)
+{
+ cjson_t json, j_type, j_msg;
+ const char *msg;
+ char *buffer = NULL;
+ char *p;
+
+ json = cJSON_Parse (string, NULL);
+ if (json)
+ {
+ j_type = cJSON_GetObjectItem (json, "type");
+ if (j_type && cjson_is_string (j_type)
+ && !strcmp (j_type->valuestring, "help"))
+ {
+ j_msg = cJSON_GetObjectItem (json, "msg");
+ if (j_msg || cjson_is_string (j_msg))
+ {
+ msg = j_msg->valuestring;
+ buffer = malloc (strlen (msg)+1);
+ if (buffer)
+ {
+ for (p=buffer; *msg; msg++)
+ {
+ if (*msg == '\\' && msg[1] == '\n')
+ *p++ = '\n';
+ else
+ *p++ = *msg;
+ }
+ *p = 0;
+ }
+ }
+ }
+ cJSON_Delete (json);
+ }
+ return buffer;
+}
+
+
+/* An interactive standard REPL. */
+static void
+interactive_repl (void)
+{
+ char *line = NULL;
+ char *request = NULL;
+ char *response = NULL;
+ char *p;
+ int first;
+
+ es_setvbuf (es_stdin, NULL, _IONBF, 0);
+#if GPGRT_VERSION_NUMBER >= 0x011d00 /* 1.29 */
+ es_fprintf (es_stderr, "%s %s ready (enter \",help\" for help)\n",
+ gpgrt_strusage (11), gpgrt_strusage (13));
+#endif
+ do
+ {
+ es_fputs ("> ", es_stderr);
+ es_fflush (es_stderr);
+ es_fflush (es_stdout);
+ xfree (line);
+ line = get_line ();
+ es_fflush (es_stderr);
+ es_fflush (es_stdout);
+
+ first = !request;
+ if (line && *line)
+ {
+ if (!request)
+ request = xstrdup (line);
+ else
+ request = xstrconcat (request, "\n", line, NULL);
+ }
+
+ if (!line)
+ es_fputs ("\n", es_stderr);
+
+ if (!line || !*line || (first && *request == ','))
+ {
+ /* Process the input. */
+ xfree (response);
+ response = NULL;
+ if (request && *request == ',')
+ {
+ response = process_meta_commands (request+1);
+ }
+ else if (request)
+ {
+ response = process_request (request);
+ }
+ xfree (request);
+ request = NULL;
+
+ if (response)
+ {
+ if (opt_interactive)
+ {
+ char *msg = get_help_msg (response);
+ if (msg)
+ {
+ xfree (response);
+ response = msg;
+ }
+ }
+
+ es_fputs ("===> ", es_stderr);
+ es_fflush (es_stderr);
+ for (p=response; *p; p++)
+ {
+ if (*p == '\n')
+ {
+ es_fflush (es_stdout);
+ es_fputs ("\n===> ", es_stderr);
+ es_fflush (es_stderr);
+ }
+ else
+ es_putc (*p, es_stdout);
+ }
+ es_fflush (es_stdout);
+ es_fputs ("\n", es_stderr);
+ }
+ }
+ }
+ while (line);
+
+ xfree (request);
+ xfree (response);
+ xfree (line);
+}
+
+
+/* Read and process asingle request. */
+static void
+read_and_process_single_request (void)
+{
+ char *line = NULL;
+ char *request = NULL;
+ char *response = NULL;
+ size_t n;
+
+ for (;;)
+ {
+ xfree (line);
+ line = get_line ();
+ if (line && *line)
+ request = (request? xstrconcat (request, "\n", line, NULL)
+ /**/ : xstrdup (line));
+ if (!line)
+ {
+ if (request)
+ {
+ xfree (response);
+ response = process_request (request);
+ if (response)
+ {
+ es_fputs (response, es_stdout);
+ if ((n = strlen (response)) && response[n-1] != '\n')
+ es_fputc ('\n', es_stdout);
+ }
+ es_fflush (es_stdout);
+ }
+ break;
+ }
+ }
+
+ xfree (response);
+ xfree (request);
+ xfree (line);
+}
+
+
+/* The Native Messaging processing loop. */
+static void
+native_messaging_repl (void)
+{
+ gpg_error_t err;
+ uint32_t nrequest, nresponse;
+ char *request = NULL;
+ char *response = NULL;
+ size_t n;
+
+ /* Due to the length octets we need to switch the I/O stream into
+ * binary mode. */
+ es_set_binary (es_stdin);
+ es_set_binary (es_stdout);
+
+ for (;;)
+ {
+ /* Read length. Note that the protocol uses native endianess.
+ * Is it allowed to call such a thing a well thought out
+ * protocol? */
+ if (es_read (es_stdin, &nrequest, sizeof nrequest, &n))
+ {
+ err = gpg_error_from_syserror ();
+ log_error ("error reading request header: %s\n", gpg_strerror (err));
+ break;
+ }
+ if (!n)
+ break; /* EOF */
+ if (n != sizeof nrequest)
+ {
+ log_error ("error reading request header: short read\n");
+ break;
+ }
+ if (nrequest > MAX_REQUEST_SIZE)
+ {
+ log_error ("error reading request: request too long (%zu MiB)\n",
+ (size_t)nrequest / (1024*1024));
+ /* Fixme: Shall we read the request t the bit bucket and
+ * return an error reponse or just return an error reponse
+ * and terminate? Needs some testing. */
+ break;
+ }
+
+ /* Read request. */
+ request = xtrymalloc (nrequest);
+ if (!request)
+ {
+ err = gpg_error_from_syserror ();
+ log_error ("error reading request: Not enough memory for %zu MiB)\n",
+ (size_t)nrequest / (1024*1024));
+ /* FIXME: See comment above. */
+ break;
+ }
+ if (es_read (es_stdin, request, nrequest, &n))
+ {
+ err = gpg_error_from_syserror ();
+ log_error ("error reading request: %s\n", gpg_strerror (err));
+ break;
+ }
+ if (n != nrequest)
+ {
+ /* That is a protocol violation. */
+ xfree (response);
+ response = error_object_string ("Invalid request:"
+ " short read (%zu of %zu bytes)\n",
+ n, (size_t)nrequest);
+ }
+ else /* Process request */
+ {
+ xfree (response);
+ response = process_request (request);
+ }
+ nresponse = strlen (response);
+
+ /* Write response */
+ if (es_write (es_stdout, &nresponse, sizeof nresponse, &n))
+ {
+ err = gpg_error_from_syserror ();
+ log_error ("error writing request header: %s\n", gpg_strerror (err));
+ break;
+ }
+ if (n != sizeof nrequest)
+ {
+ log_error ("error writing request header: short write\n");
+ break;
+ }
+ if (es_write (es_stdout, response, nresponse, &n))
+ {
+ err = gpg_error_from_syserror ();
+ log_error ("error writing request: %s\n", gpg_strerror (err));
+ break;
+ }
+ if (n != nresponse)
+ {
+ log_error ("error writing request: short write\n");
+ break;
+ }
+ if (es_fflush (es_stdout) || es_ferror (es_stdout))
+ {
+ err = gpg_error_from_syserror ();
+ log_error ("error writing request: %s\n", gpg_strerror (err));
+ break;
+ }
+ }
+
+ xfree (response);
+ xfree (request);
+}
+
+
+
+static const char *
+my_strusage( int level )
+{
+ const char *p;
+
+ switch (level)
+ {
+ case 9: p = "LGPL-2.1-or-later"; break;
+ case 11: p = "gpgme-json"; break;
+ case 13: p = PACKAGE_VERSION; break;
+ case 14: p = "Copyright (C) 2018 g10 Code GmbH"; break;
+ case 19: p = "Please report bugs to <" PACKAGE_BUGREPORT ">.\n"; break;
+ case 1:
+ case 40:
+ p = "Usage: gpgme-json [OPTIONS]";
+ break;
+ case 41:
+ p = "Native messaging based GPGME operations.\n";
+ break;
+ case 42:
+ p = "1"; /* Flag print 40 as part of 41. */
+ break;
+ default: p = NULL; break;
+ }
+ return p;
+}
+
+int
+main (int argc, char *argv[])
+{
+#if GPGRT_VERSION_NUMBER < 0x011d00 /* 1.29 */
+
+ fprintf (stderr, "WARNING: Old libgpg-error - using limited mode\n");
+ native_messaging_repl ();
+
+#else /* This is a modern libgp-error. */
+
+ enum { CMD_DEFAULT = 0,
+ CMD_INTERACTIVE = 'i',
+ CMD_SINGLE = 's',
+ CMD_LIBVERSION = 501
+ } cmd = CMD_DEFAULT;
+ static gpgrt_opt_t opts[] = {
+ ARGPARSE_c (CMD_INTERACTIVE, "interactive", "Interactive REPL"),
+ ARGPARSE_c (CMD_SINGLE, "single", "Single request mode"),
+ ARGPARSE_c (CMD_LIBVERSION, "lib-version", "Show library version"),
+ ARGPARSE_end()
+ };
+ gpgrt_argparse_t pargs = { &argc, &argv};
+
+ gpgrt_set_strusage (my_strusage);
+
+#ifdef HAVE_SETLOCALE
+ setlocale (LC_ALL, "");
+#endif
+ gpgme_check_version (NULL);
+#ifdef LC_CTYPE
+ gpgme_set_locale (NULL, LC_CTYPE, setlocale (LC_CTYPE, NULL));
+#endif
+#ifdef LC_MESSAGES
+ gpgme_set_locale (NULL, LC_MESSAGES, setlocale (LC_MESSAGES, NULL));
+#endif
+
+ while (gpgrt_argparse (NULL, &pargs, opts))
+ {
+ switch (pargs.r_opt)
+ {
+ case CMD_INTERACTIVE:
+ opt_interactive = 1;
+ /* Fall trough. */
+ case CMD_SINGLE:
+ case CMD_LIBVERSION:
+ cmd = pargs.r_opt;
+ break;
+
+ default:
+ pargs.err = ARGPARSE_PRINT_WARNING;
+ break;
+ }
+ }
+ gpgrt_argparse (NULL, &pargs, NULL);
+
+ switch (cmd)
+ {
+ case CMD_DEFAULT:
+ native_messaging_repl ();
+ break;
+
+ case CMD_SINGLE:
+ read_and_process_single_request ();
+ break;
+
+ case CMD_INTERACTIVE:
+ interactive_repl ();
+ break;
+
+ case CMD_LIBVERSION:
+ printf ("Version from header: %s (0x%06x)\n",
+ GPGME_VERSION, GPGME_VERSION_NUMBER);
+ printf ("Version from binary: %s\n", gpgme_check_version (NULL));
+ printf ("Copyright blurb ...:%s\n", gpgme_check_version ("\x01\x01"));
+ break;
+ }
+
+#endif /* This is a modern libgp-error. */
+ return 0;
+}
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-31 05:14:34 +0000