int
queue_message_fd_r(uint32_t msgid)
{
int fdin, fdout = -1, fd = -1;
FILE *ifp = NULL;
FILE *ofp = NULL;
profile_enter("queue_message_fd_r");
fdin = handler_message_fd_r(msgid);
profile_leave();
log_trace(TRACE_QUEUE,
"queue-backend: queue_message_fd_r(%08"PRIx32") -> %d", msgid, fdin);
if (fdin == -1)
return (-1);
if (env->sc_queue_flags & QUEUE_ENCRYPTION) {
if ((fdout = mktmpfile()) == -1)
goto err;
if ((fd = dup(fdout)) == -1)
goto err;
if ((ifp = fdopen(fdin, "r")) == NULL)
goto err;
fdin = fd;
fd = -1;
if ((ofp = fdopen(fdout, "w+")) == NULL)
goto err;
if (! crypto_decrypt_file(ifp, ofp))
goto err;
fclose(ifp);
ifp = NULL;
fclose(ofp);
ofp = NULL;
lseek(fdin, SEEK_SET, 0);
}
if (env->sc_queue_flags & QUEUE_COMPRESSION) {
if ((fdout = mktmpfile()) == -1)
goto err;
if ((fd = dup(fdout)) == -1)
goto err;
if ((ifp = fdopen(fdin, "r")) == NULL)
goto err;
fdin = fd;
fd = -1;
if ((ofp = fdopen(fdout, "w+")) == NULL)
goto err;
if (! uncompress_file(ifp, ofp))
goto err;
fclose(ifp);
ifp = NULL;
fclose(ofp);
ofp = NULL;
lseek(fdin, SEEK_SET, 0);
}
return (fdin);
err:
if (fd != -1)
close(fd);
if (fdin != -1)
close(fdin);
if (fdout != -1)
close(fdout);
if (ifp)
fclose(ifp);
if (ofp)
fclose(ofp);
return -1;
}
int
main(int argc, char *argv[])
{
if (argc != 3) {
printf("usage: crypto <key> <buffer>\n");
return 1;
}
if (!crypto_setup(argv[1], strlen(argv[1]))) {
printf("crypto_setup failed\n");
return 1;
}
{
char encbuffer[4096];
size_t enclen;
char decbuffer[4096];
size_t declen;
printf("encrypt/decrypt buffer: ");
enclen = crypto_encrypt_buffer(argv[2], strlen(argv[2]),
encbuffer, sizeof encbuffer);
/* uncomment below to provoke integrity check failure */
/*
* encbuffer[13] = 0x42;
* encbuffer[14] = 0x42;
* encbuffer[15] = 0x42;
* encbuffer[16] = 0x42;
*/
declen = crypto_decrypt_buffer(encbuffer, enclen,
decbuffer, sizeof decbuffer);
if (declen != 0 && !strncmp(argv[2], decbuffer, declen))
printf("ok\n");
else
printf("nope\n");
}
{
FILE *fpin;
FILE *fpout;
printf("encrypt/decrypt file: ");
fpin = fopen("/etc/passwd", "r");
fpout = fopen("/tmp/passwd.enc", "w");
if (!crypto_encrypt_file(fpin, fpout)) {
printf("encryption failed\n");
return 1;
}
fclose(fpin);
fclose(fpout);
/* uncomment below to provoke integrity check failure */
/*
* fpin = fopen("/tmp/passwd.enc", "a");
* fprintf(fpin, "borken");
* fclose(fpin);
*/
fpin = fopen("/tmp/passwd.enc", "r");
fpout = fopen("/tmp/passwd.dec", "w");
if (!crypto_decrypt_file(fpin, fpout))
printf("nope\n");
else
printf("ok\n");
fclose(fpin);
fclose(fpout);
}
return 0;
}