5b0903c9af
* lang/qt/src/Makefile.am, lang/qt/tests/Makefile.am (AM_CPPFLAGS): Add builddir instead of srcdir of C++ bindings as include path. * lang/qt/src/changeexpiryjob.cpp, lang/qt/src/changeexpiryjob.h, lang/qt/src/changeownertrustjob.h, lang/qt/src/dataprovider.cpp, lang/qt/src/dataprovider.h, lang/qt/src/debug.cpp, lang/qt/src/decryptverifyarchivejob.cpp, lang/qt/src/decryptverifyarchivejob.h, lang/qt/src/encryptarchivejob.cpp, lang/qt/src/encryptarchivejob.h, lang/qt/src/encryptjob.h, lang/qt/src/encryptjob_p.h, lang/qt/src/filelistdataprovider.cpp, lang/qt/src/filelistdataprovider.h, lang/qt/src/hierarchicalkeylistjob.h, lang/qt/src/importjob.cpp, lang/qt/src/importjob.h, lang/qt/src/importjob_p.h, lang/qt/src/job.h, lang/qt/src/keyformailboxjob.h, lang/qt/src/keylistjob.h, lang/qt/src/listallkeysjob.h, lang/qt/src/multideletejob.cpp, lang/qt/src/qgpgmeaddexistingsubkeyjob.cpp, lang/qt/src/qgpgmeadduseridjob.cpp, lang/qt/src/qgpgmebackend.cpp, lang/qt/src/qgpgmechangeexpiryjob.cpp, lang/qt/src/qgpgmechangeownertrustjob.cpp, lang/qt/src/qgpgmechangepasswdjob.cpp, lang/qt/src/qgpgmedecryptjob.cpp, lang/qt/src/qgpgmedecryptjob.h, lang/qt/src/qgpgmedecryptverifyarchivejob.cpp, lang/qt/src/qgpgmedecryptverifyarchivejob.h, lang/qt/src/qgpgmedecryptverifyjob.cpp, lang/qt/src/qgpgmedecryptverifyjob.h, lang/qt/src/qgpgmedeletejob.cpp, lang/qt/src/qgpgmedownloadjob.cpp, lang/qt/src/qgpgmeencryptarchivejob.cpp, lang/qt/src/qgpgmeencryptarchivejob.h, lang/qt/src/qgpgmeencryptjob.cpp, lang/qt/src/qgpgmeencryptjob.h, lang/qt/src/qgpgmeexportjob.cpp, lang/qt/src/qgpgmeimportfromkeyserverjob.cpp, lang/qt/src/qgpgmeimportfromkeyserverjob.h, lang/qt/src/qgpgmeimportjob.cpp, lang/qt/src/qgpgmeimportjob.h, lang/qt/src/qgpgmekeyformailboxjob.h, lang/qt/src/qgpgmekeygenerationjob.cpp, lang/qt/src/qgpgmekeygenerationjob.h, lang/qt/src/qgpgmekeylistjob.cpp, lang/qt/src/qgpgmekeylistjob.h, lang/qt/src/qgpgmelistallkeysjob.cpp, lang/qt/src/qgpgmelistallkeysjob.h, lang/qt/src/qgpgmenewcryptoconfig.cpp, lang/qt/src/qgpgmenewcryptoconfig.h, lang/qt/src/qgpgmequickjob.cpp, lang/qt/src/qgpgmereceivekeysjob.h, lang/qt/src/qgpgmerefreshsmimekeysjob.cpp, lang/qt/src/qgpgmerefreshsmimekeysjob.h, lang/qt/src/qgpgmerevokekeyjob.cpp, lang/qt/src/qgpgmesetprimaryuseridjob.cpp, lang/qt/src/qgpgmesignarchivejob.cpp, lang/qt/src/qgpgmesignarchivejob.h, lang/qt/src/qgpgmesignencryptarchivejob.cpp, lang/qt/src/qgpgmesignencryptarchivejob.h, lang/qt/src/qgpgmesignencryptjob.cpp, lang/qt/src/qgpgmesignencryptjob.h, lang/qt/src/qgpgmesignjob.cpp, lang/qt/src/qgpgmesignjob.h, lang/qt/src/qgpgmesignkeyjob.cpp, lang/qt/src/qgpgmetofupolicyjob.cpp, lang/qt/src/qgpgmeverifydetachedjob.cpp, lang/qt/src/qgpgmeverifydetachedjob.h, lang/qt/src/qgpgmeverifyopaquejob.cpp, lang/qt/src/qgpgmeverifyopaquejob.h, lang/qt/src/qgpgmewkdlookupjob.cpp, lang/qt/src/qgpgmewkdrefreshjob.cpp, lang/qt/src/qgpgmewkdrefreshjob.h, lang/qt/src/qgpgmewkspublishjob.cpp, lang/qt/src/quickjob.h, lang/qt/src/signarchivejob.cpp, lang/qt/src/signarchivejob.h, lang/qt/src/signencryptarchivejob.cpp, lang/qt/src/signencryptarchivejob.h, lang/qt/src/signencryptjob.h, lang/qt/src/signencryptjob_p.h, lang/qt/src/signjob.h, lang/qt/src/signjob_p.h, lang/qt/src/threadedjobmixin.cpp, lang/qt/src/threadedjobmixin.h, lang/qt/src/tofupolicyjob.h, lang/qt/src/util.cpp, lang/qt/src/wkdlookupresult.cpp, lang/qt/src/wkdlookupresult.h, lang/qt/src/wkdrefreshjob_p.h, lang/qt/tests/run-decryptverifyarchivejob.cpp, lang/qt/tests/run-decryptverifyjob.cpp, lang/qt/tests/run-encryptarchivejob.cpp, lang/qt/tests/run-encryptjob.cpp, lang/qt/tests/run-exportjob.cpp, lang/qt/tests/run-importjob.cpp, lang/qt/tests/run-keyformailboxjob.cpp, lang/qt/tests/run-receivekeysjob.cpp, lang/qt/tests/run-refreshkeysjob.cpp, lang/qt/tests/run-signarchivejob.cpp, lang/qt/tests/run-signjob.cpp, lang/qt/tests/run-verifydetachedjob.cpp, lang/qt/tests/run-verifyopaquejob.cpp, lang/qt/tests/run-wkdrefreshjob.cpp, lang/qt/tests/t-addexistingsubkey.cpp, lang/qt/tests/t-changeexpiryjob.cpp, lang/qt/tests/t-config.cpp, lang/qt/tests/t-decryptverify.cpp, lang/qt/tests/t-encrypt.cpp, lang/qt/tests/t-import.cpp, lang/qt/tests/t-keylist.cpp, lang/qt/tests/t-keylocate.cpp, lang/qt/tests/t-ownertrust.cpp, lang/qt/tests/t-remarks.cpp, lang/qt/tests/t-revokekey.cpp, lang/qt/tests/t-setprimaryuserid.cpp, lang/qt/tests/t-support.cpp, lang/qt/tests/t-support.h, lang/qt/tests/t-tofuinfo.cpp, lang/qt/tests/t-trustsignatures.cpp, lang/qt/tests/t-various.cpp, lang/qt/tests/t-verify.cpp, lang/qt/tests/t-wkdlookup.cpp, lang/qt/tests/t-wkspublish.cpp: Include GpgME++ headers with gpgme++/ prefix. -- This prepares the Qt bindings for building them separately from the C++ bindings. GnuPG-bug-id: 7110
267 lines
10 KiB
C++
267 lines
10 KiB
C++
/*
|
|
qgpgmesignencryptjob.cpp
|
|
|
|
This file is part of qgpgme, the Qt API binding for gpgme
|
|
Copyright (c) 2004, 2007 Klarälvdalens Datakonsult AB
|
|
Copyright (c) 2016 by Bundesamt für Sicherheit in der Informationstechnik
|
|
Software engineering by Intevation GmbH
|
|
Copyright (c) 2022,2023 g10 Code GmbH
|
|
Software engineering by Ingo Klöcker <dev@ingo-kloecker.de>
|
|
|
|
QGpgME is free software; you can redistribute it and/or
|
|
modify it under the terms of the GNU General Public License as
|
|
published by the Free Software Foundation; either version 2 of the
|
|
License, or (at your option) any later version.
|
|
|
|
QGpgME is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License along
|
|
with this program; if not, write to the Free Software Foundation, Inc.,
|
|
51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
|
|
|
|
In addition, as a special exception, the copyright holders give
|
|
permission to link the code of this program with any edition of
|
|
the Qt library by Trolltech AS, Norway (or with modified versions
|
|
of Qt that use the same license as Qt), and distribute linked
|
|
combinations including the two. You must obey the GNU General
|
|
Public License in all respects for all of the code used other than
|
|
Qt. If you modify this file, you may extend this exception to
|
|
your version of the file, but you are not obligated to do so. If
|
|
you do not wish to do so, delete this exception statement from
|
|
your version.
|
|
*/
|
|
|
|
#ifdef HAVE_CONFIG_H
|
|
#include "config.h"
|
|
#endif
|
|
|
|
#include "qgpgmesignencryptjob.h"
|
|
|
|
#include "dataprovider.h"
|
|
#include "signencryptjob_p.h"
|
|
#include "util.h"
|
|
|
|
#include <gpgme++/context.h>
|
|
#include <gpgme++/data.h>
|
|
#include <gpgme++/exception.h>
|
|
#include <gpgme++/key.h>
|
|
|
|
#include <QBuffer>
|
|
#include <QFileInfo>
|
|
|
|
#include <cassert>
|
|
|
|
using namespace QGpgME;
|
|
using namespace GpgME;
|
|
|
|
namespace
|
|
{
|
|
|
|
class QGpgMESignEncryptJobPrivate : public SignEncryptJobPrivate
|
|
{
|
|
QGpgMESignEncryptJob *q = nullptr;
|
|
|
|
public:
|
|
QGpgMESignEncryptJobPrivate(QGpgMESignEncryptJob *qq)
|
|
: q{qq}
|
|
{
|
|
}
|
|
|
|
~QGpgMESignEncryptJobPrivate() override = default;
|
|
|
|
private:
|
|
GpgME::Error startIt() override;
|
|
|
|
void startNow() override
|
|
{
|
|
q->run();
|
|
}
|
|
};
|
|
|
|
}
|
|
|
|
QGpgMESignEncryptJob::QGpgMESignEncryptJob(Context *context)
|
|
: mixin_type(context),
|
|
mOutputIsBase64Encoded(false)
|
|
{
|
|
setJobPrivate(this, std::unique_ptr<QGpgMESignEncryptJobPrivate>{new QGpgMESignEncryptJobPrivate{this}});
|
|
lateInitialization();
|
|
}
|
|
|
|
QGpgMESignEncryptJob::~QGpgMESignEncryptJob() {}
|
|
|
|
void QGpgMESignEncryptJob::setOutputIsBase64Encoded(bool on)
|
|
{
|
|
mOutputIsBase64Encoded = on;
|
|
}
|
|
|
|
static QGpgMESignEncryptJob::result_type sign_encrypt(Context *ctx, QThread *thread, const std::vector<Key> &signers,
|
|
const std::vector<Key> &recipients, const std::weak_ptr<QIODevice> &plainText_,
|
|
const std::weak_ptr<QIODevice> &cipherText_, const Context::EncryptionFlags eflags, bool outputIsBsse64Encoded, const QString &fileName)
|
|
{
|
|
const std::shared_ptr<QIODevice> &plainText = plainText_.lock();
|
|
const std::shared_ptr<QIODevice> &cipherText = cipherText_.lock();
|
|
|
|
const _detail::ToThreadMover ctMover(cipherText, thread);
|
|
const _detail::ToThreadMover ptMover(plainText, thread);
|
|
|
|
QGpgME::QIODeviceDataProvider in(plainText);
|
|
Data indata(&in);
|
|
if (!plainText->isSequential()) {
|
|
indata.setSizeHint(plainText->size());
|
|
}
|
|
|
|
const auto pureFileName = QFileInfo{fileName}.fileName().toStdString();
|
|
if (!pureFileName.empty()) {
|
|
indata.setFileName(pureFileName.c_str());
|
|
}
|
|
|
|
ctx->clearSigningKeys();
|
|
for (const Key &signer : signers) {
|
|
if (!signer.isNull()) {
|
|
if (const Error err = ctx->addSigningKey(signer)) {
|
|
return std::make_tuple(SigningResult(err), EncryptionResult(), QByteArray(), QString(), Error());
|
|
}
|
|
}
|
|
}
|
|
|
|
if (!cipherText) {
|
|
QGpgME::QByteArrayDataProvider out;
|
|
Data outdata(&out);
|
|
|
|
if (outputIsBsse64Encoded) {
|
|
outdata.setEncoding(Data::Base64Encoding);
|
|
}
|
|
|
|
const std::pair<SigningResult, EncryptionResult> res = ctx->signAndEncrypt(recipients, indata, outdata, eflags);
|
|
Error ae;
|
|
const QString log = _detail::audit_log_as_html(ctx, ae);
|
|
return std::make_tuple(res.first, res.second, out.data(), log, ae);
|
|
} else {
|
|
QGpgME::QIODeviceDataProvider out(cipherText);
|
|
Data outdata(&out);
|
|
|
|
if (outputIsBsse64Encoded) {
|
|
outdata.setEncoding(Data::Base64Encoding);
|
|
}
|
|
|
|
const std::pair<SigningResult, EncryptionResult> res = ctx->signAndEncrypt(recipients, indata, outdata, eflags);
|
|
Error ae;
|
|
const QString log = _detail::audit_log_as_html(ctx, ae);
|
|
return std::make_tuple(res.first, res.second, QByteArray(), log, ae);
|
|
}
|
|
|
|
}
|
|
|
|
static QGpgMESignEncryptJob::result_type sign_encrypt_qba(Context *ctx, const std::vector<Key> &signers,
|
|
const std::vector<Key> &recipients, const QByteArray &plainText, const Context::EncryptionFlags eflags, bool outputIsBsse64Encoded, const QString &fileName)
|
|
{
|
|
const std::shared_ptr<QBuffer> buffer(new QBuffer);
|
|
buffer->setData(plainText);
|
|
if (!buffer->open(QIODevice::ReadOnly)) {
|
|
assert(!"This should never happen: QBuffer::open() failed");
|
|
}
|
|
return sign_encrypt(ctx, nullptr, signers, recipients, buffer, std::shared_ptr<QIODevice>(), eflags, outputIsBsse64Encoded, fileName);
|
|
}
|
|
|
|
static QGpgMESignEncryptJob::result_type sign_encrypt_to_filename(Context *ctx,
|
|
const std::vector<Key> &signers,
|
|
const std::vector<Key> &recipients,
|
|
const QString &inputFilePath,
|
|
const QString &outputFilePath,
|
|
Context::EncryptionFlags flags)
|
|
{
|
|
Data indata;
|
|
#ifdef Q_OS_WIN
|
|
indata.setFileName(inputFilePath.toUtf8().constData());
|
|
#else
|
|
indata.setFileName(QFile::encodeName(inputFilePath).constData());
|
|
#endif
|
|
|
|
PartialFileGuard partFileGuard{outputFilePath};
|
|
if (partFileGuard.tempFileName().isEmpty()) {
|
|
return std::make_tuple(SigningResult{Error::fromCode(GPG_ERR_EEXIST)},
|
|
EncryptionResult{Error::fromCode(GPG_ERR_EEXIST)},
|
|
QByteArray{},
|
|
QString{},
|
|
Error{});
|
|
}
|
|
|
|
Data outdata;
|
|
#ifdef Q_OS_WIN
|
|
outdata.setFileName(partFileGuard.tempFileName().toUtf8().constData());
|
|
#else
|
|
outdata.setFileName(QFile::encodeName(partFileGuard.tempFileName()).constData());
|
|
#endif
|
|
|
|
ctx->clearSigningKeys();
|
|
for (const Key &signer : signers) {
|
|
if (!signer.isNull()) {
|
|
if (const Error err = ctx->addSigningKey(signer)) {
|
|
return std::make_tuple(SigningResult{err}, EncryptionResult{}, QByteArray{}, QString{}, Error{});
|
|
}
|
|
}
|
|
}
|
|
|
|
flags = static_cast<Context::EncryptionFlags>(flags | Context::EncryptFile);
|
|
const auto results = ctx->signAndEncrypt(recipients, indata, outdata, flags);
|
|
const auto &signingResult = results.first;
|
|
const auto &encryptionResult = results.second;
|
|
|
|
if (!signingResult.error().code() && !encryptionResult.error().code()) {
|
|
// the operation succeeded -> save the result under the requested file name
|
|
partFileGuard.commit();
|
|
}
|
|
|
|
Error ae;
|
|
const QString log = _detail::audit_log_as_html(ctx, ae);
|
|
return std::make_tuple(signingResult, encryptionResult, QByteArray{}, log, ae);
|
|
}
|
|
|
|
Error QGpgMESignEncryptJob::start(const std::vector<Key> &signers, const std::vector<Key> &recipients, const QByteArray &plainText, bool alwaysTrust)
|
|
{
|
|
run(std::bind(&sign_encrypt_qba, std::placeholders::_1, signers, recipients, plainText, alwaysTrust ? Context::AlwaysTrust : Context::None, mOutputIsBase64Encoded, fileName()));
|
|
return Error();
|
|
}
|
|
|
|
void QGpgMESignEncryptJob::start(const std::vector<Key> &signers, const std::vector<Key> &recipients,
|
|
const std::shared_ptr<QIODevice> &plainText, const std::shared_ptr<QIODevice> &cipherText, const Context::EncryptionFlags eflags)
|
|
{
|
|
run(std::bind(&sign_encrypt, std::placeholders::_1, std::placeholders::_2, signers, recipients, std::placeholders::_3, std::placeholders::_4, eflags, mOutputIsBase64Encoded, fileName()), plainText, cipherText);
|
|
}
|
|
|
|
void QGpgMESignEncryptJob::start(const std::vector<Key> &signers, const std::vector<Key> &recipients, const std::shared_ptr<QIODevice> &plainText, const std::shared_ptr<QIODevice> &cipherText, bool alwaysTrust)
|
|
{
|
|
return start(signers, recipients, plainText, cipherText, alwaysTrust ? Context::AlwaysTrust : Context::None);
|
|
}
|
|
|
|
std::pair<SigningResult, EncryptionResult> QGpgMESignEncryptJob::exec(const std::vector<Key> &signers, const std::vector<Key> &recipients, const QByteArray &plainText, const Context::EncryptionFlags eflags, QByteArray &cipherText)
|
|
{
|
|
const result_type r = sign_encrypt_qba(context(), signers, recipients, plainText, eflags, mOutputIsBase64Encoded, fileName());
|
|
cipherText = std::get<2>(r);
|
|
return std::make_pair(std::get<0>(r), std::get<1>(r));
|
|
}
|
|
|
|
std::pair<SigningResult, EncryptionResult> QGpgMESignEncryptJob::exec(const std::vector<Key> &signers, const std::vector<Key> &recipients, const QByteArray &plainText, bool alwaysTrust, QByteArray &cipherText)
|
|
{
|
|
return exec(signers, recipients, plainText, alwaysTrust ? Context::AlwaysTrust : Context::None, cipherText);
|
|
}
|
|
|
|
GpgME::Error QGpgMESignEncryptJobPrivate::startIt()
|
|
{
|
|
if (m_inputFilePath.isEmpty() || m_outputFilePath.isEmpty()) {
|
|
return Error::fromCode(GPG_ERR_INV_VALUE);
|
|
}
|
|
|
|
q->run([=](Context *ctx) {
|
|
return sign_encrypt_to_filename(ctx, m_signers, m_recipients, m_inputFilePath, m_outputFilePath, m_encryptionFlags);
|
|
});
|
|
|
|
return {};
|
|
}
|
|
|
|
#include "qgpgmesignencryptjob.moc"
|