void doit(void)
{
gnutls_certificate_credentials_t x509_cred;
gnutls_certificate_credentials_t clicred;
int ret;
unsigned idx;
#if !defined(HAVE_LIBIDN2)
exit(77);
#endif
/* this must be called once in the program
*/
global_init();
gnutls_global_set_time_function(mytime);
gnutls_global_set_log_function(tls_log_func);
if (debug)
gnutls_global_set_log_level(6);
assert(gnutls_certificate_allocate_credentials(&clicred) >= 0);
assert(gnutls_certificate_allocate_credentials(&x509_cred)>=0);
gnutls_certificate_set_flags(x509_cred, GNUTLS_CERTIFICATE_API_V2);
ret = gnutls_certificate_set_x509_trust_mem(clicred, &ca3_cert, GNUTLS_X509_FMT_PEM);
if (ret < 0)
fail("set_x509_trust_file failed: %s\n", gnutls_strerror(ret));
idx = import_key(x509_cred, &server_ca3_key, &server_ca3_localhost_cert_chain);
assert(idx == 0);
idx = import_key(x509_cred, &server_ca3_key, &server_ca3_localhost_utf8_cert);
assert(idx == 1);
test_cli_serv(x509_cred, clicred, "NORMAL", "localhost", NULL, NULL, NULL);
test_cli_serv(x509_cred, clicred, "NORMAL", "www.xn--kxawhku.com", NULL, NULL, NULL); /* the previous name in IDNA format */
test_cli_serv(x509_cred, clicred, "NORMAL", "简体中文.εξτρα.com", NULL, NULL, NULL); /* the second DNS name of cert */
test_cli_serv(x509_cred, clicred, "NORMAL", "xn--fiqu1az03c18t.xn--mxah1amo.com", NULL, NULL, NULL); /* its IDNA equivalent */
test_cli_serv_expect(x509_cred, clicred, "NORMAL", "NORMAL", "raw:简体中文.εξτρα.com", GNUTLS_E_RECEIVED_DISALLOWED_NAME, GNUTLS_E_AGAIN);
gnutls_certificate_free_credentials(x509_cred);
gnutls_certificate_free_credentials(clicred);
gnutls_global_deinit();
if (debug)
success("success");
}
bts::address wallet::get_new_address()
{
my->_data.last_used_key++;
auto new_key = my->_data.base_key.child( my->_data.last_used_key );
import_key(new_key);
//bts::address addr = new_key.get_public_key();
return new_key.get_public_key();
}
/* ------------------
* called on received message
* ------------------ */
static gboolean
jabber_message_received(PurpleConnection *pc, const char *type, const char *id,
const char *from, const char *to, xmlnode *message)
{
const xmlnode* parent_node = message;
xmlnode* x_node = NULL;
xmlnode* body_node = NULL;
if (parent_node == NULL)
return FALSE;
// check if message is a key
body_node = xmlnode_get_child(parent_node,"body");
if (body_node != NULL)
{
char* data = xmlnode_get_data(body_node);
if (data != NULL)
{
char* header = "-----BEGIN PGP PUBLIC KEY BLOCK-----";
if (strncmp(data,header,strlen(header)) == 0)
{
// if we received a ascii armored key
// try to import it
//purple_conversation_write(conv,"","received key",PURPLE_MESSAGE_SYSTEM | PURPLE_MESSAGE_NO_LOG,time(NULL));
if (import_key(data) == TRUE)
{
xmlnode_clear_data(body_node);
xmlnode_insert_data(body_node,"key import ok",-1);
}
else
{
xmlnode_clear_data(body_node);
xmlnode_insert_data(body_node,"key import failed",-1);
}
}
}
}
// check if the user with the jid=from has signed his presence
char* bare_jid = get_bare_jid(from);
// get stored info about user
struct list_item* item = g_hash_table_lookup(list_fingerprints,bare_jid);
if (item == NULL)
{
//TODO: maybe create item in list?
}else
{
// set default value to "not encrypted mode"
item->mode_sec = FALSE;
}
free(bare_jid);
// check if message has special "x" child node => encrypted message
x_node = xmlnode_get_child_with_namespace(parent_node,"x",NS_ENC);
if (x_node != NULL)
{
purple_debug_info(PLUGIN_ID, "user %s sent us an encrypted message\n",from);
// get data of "x" node
char* cipher_str = xmlnode_get_data(x_node);
if (cipher_str != NULL)
{
// try to decrypt
char* plain_str = decrypt(cipher_str);
if (plain_str != NULL)
{
purple_debug_info(PLUGIN_ID, "decrypted message: %s\n",plain_str);
// find body node
xmlnode *body_node = xmlnode_get_child(parent_node,"body");
if (body_node != NULL)
{
// clear body node data if it is found
xmlnode_clear_data(body_node);
}else
{
// add body node if it is not found
body_node = xmlnode_new_child(message,"body");
}
// set "body" content node to decrypted string
//xmlnode_insert_data(body_node,"Encrypted message: ",-1);
xmlnode_insert_data(body_node,plain_str,-1);
// only set to encrypted mode, if we know other users key fingerprint
if (item != NULL)
{
// all went well, we received an encrypted message
item->mode_sec = TRUE;
}
}else
{
purple_debug_error(PLUGIN_ID, "could not decrypt message!\n");
}
}else
{
purple_debug_error(PLUGIN_ID, "xml token had no data!\n");
}
}
/* We don't want the plugin to stop processing */
return FALSE;
}
int main (int argc, char **argv)
{
#ifdef ENABLE_CRYPTO
const char *datadir = "data/pgp";
GMimeStream *istream, *ostream;
GMimeFilterOpenPGP *filter;
GMimeCryptoContext *ctx;
const char *what;
char *gpg, *key;
struct stat st;
int i;
g_mime_init ();
testsuite_init (argc, argv);
if (!(gpg = g_find_program_in_path ("gpg2")))
if (!(gpg = g_find_program_in_path ("gpg")))
return EXIT_FAILURE;
if (testsuite_setup_gpghome (gpg) != 0)
return EXIT_FAILURE;
g_free (gpg);
for (i = 1; i < argc; i++) {
if (argv[i][0] != '-') {
datadir = argv[i];
break;
}
}
if (i < argc && (stat (datadir, &st) == -1 || !S_ISDIR (st.st_mode)))
return 0;
testsuite_start ("GnuPG crypto context");
ctx = g_mime_gpg_context_new ();
g_mime_crypto_context_set_request_password (ctx, request_passwd);
testsuite_check ("GMimeGpgContext::import");
try {
key = g_build_filename (datadir, "gmime.gpg.pub", NULL);
import_key (ctx, key);
g_free (key);
key = g_build_filename (datadir, "gmime.gpg.sec", NULL);
import_key (ctx, key);
g_free (key);
testsuite_check_passed ();
} catch (ex) {
testsuite_check_failed ("GMimeGpgContext::import failed: %s", ex->message);
return EXIT_FAILURE;
} finally;
key = g_build_filename (datadir, "gmime.gpg.pub", NULL);
testsuite_check ("GMimeGpgContext::export");
try {
test_export (ctx, key);
testsuite_check_passed ();
} catch (ex) {
testsuite_check_failed ("GMimeGpgContext::export failed: %s", ex->message);
} finally;
g_free (key);
istream = g_mime_stream_mem_new ();
ostream = g_mime_stream_mem_new ();
g_mime_stream_write_string (istream, "this is some cleartext\r\n");
g_mime_stream_reset (istream);
what = "GMimeGpgContext::sign";
testsuite_check ("%s", what);
try {
test_sign (ctx, FALSE, istream, ostream);
testsuite_check_passed ();
what = "GMimeGpgContext::verify";
testsuite_check ("%s", what);
g_mime_stream_reset (istream);
g_mime_stream_reset (ostream);
test_verify (ctx, istream, ostream);
testsuite_check_passed ();
} catch (ex) {
testsuite_check_failed ("%s failed: %s", what, ex->message);
} finally;
g_object_unref (ostream);
g_mime_stream_reset (istream);
ostream = g_mime_stream_mem_new ();
what = "GMimeGpgContext::sign (detached)";
testsuite_check ("%s", what);
try {
test_sign (ctx, TRUE, istream, ostream);
testsuite_check_passed ();
what = "GMimeGpgContext::verify (detached)";
testsuite_check ("%s", what);
g_mime_stream_reset (istream);
g_mime_stream_reset (ostream);
test_verify_detached (ctx, istream, ostream);
testsuite_check_passed ();
} catch (ex) {
testsuite_check_failed ("%s failed: %s", what, ex->message);
} finally;
g_object_unref (ostream);
g_mime_stream_reset (istream);
ostream = g_mime_stream_mem_new ();
what = "GMimeGpgContext::encrypt";
testsuite_check ("%s", what);
try {
test_encrypt (ctx, FALSE, istream, ostream);
testsuite_check_passed ();
what = "GMimeGpgContext::decrypt";
testsuite_check ("%s", what);
g_mime_stream_reset (istream);
g_mime_stream_reset (ostream);
test_decrypt (ctx, FALSE, istream, ostream);
testsuite_check_passed ();
} catch (ex) {
testsuite_check_failed ("%s failed: %s", what, ex->message);
} finally;
g_object_unref (ostream);
g_mime_stream_reset (istream);
ostream = g_mime_stream_mem_new ();
what = "GMimeGpgContext::encrypt+sign";
testsuite_check ("%s", what);
try {
test_encrypt (ctx, TRUE, istream, ostream);
testsuite_check_passed ();
what = "GMimeGpgContext::decrypt+verify";
testsuite_check ("%s", what);
g_mime_stream_reset (istream);
g_mime_stream_reset (ostream);
test_decrypt (ctx, TRUE, istream, ostream);
testsuite_check_passed ();
} catch (ex) {
testsuite_check_failed ("%s failed: %s", what, ex->message);
} finally;
g_object_unref (istream);
g_object_unref (ostream);
g_object_unref (ctx);
filter = (GMimeFilterOpenPGP *) g_mime_filter_openpgp_new ();
what = "GMimeFilterOpenPGP::public key block";
testsuite_check ("%s", what);
try {
key = g_build_filename (datadir, "gmime.gpg.pub", NULL);
test_openpgp_filter (filter, key, GMIME_OPENPGP_DATA_PUBLIC_KEY, 0, 1720);
g_free (key);
testsuite_check_passed ();
} catch (ex) {
testsuite_check_failed ("%s failed: %s", what, ex->message);
} finally;
g_mime_filter_reset ((GMimeFilter *) filter);
what = "GMimeFilterOpenPGP::private key block";
testsuite_check ("%s", what);
try {
key = g_build_filename (datadir, "gmime.gpg.sec", NULL);
test_openpgp_filter (filter, key, GMIME_OPENPGP_DATA_PRIVATE_KEY, 0, 1928);
g_free (key);
testsuite_check_passed ();
} catch (ex) {
testsuite_check_failed ("%s failed: %s", what, ex->message);
} finally;
g_mime_filter_reset ((GMimeFilter *) filter);
what = "GMimeFilterOpenPGP::signed message block";
testsuite_check ("%s", what);
try {
key = g_build_filename (datadir, "signed-message.txt", NULL);
test_openpgp_filter (filter, key, GMIME_OPENPGP_DATA_SIGNED, 162, 440);
g_free (key);
testsuite_check_passed ();
} catch (ex) {
testsuite_check_failed ("%s failed: %s", what, ex->message);
} finally;
g_mime_filter_reset ((GMimeFilter *) filter);
what = "GMimeFilterOpenPGP::encrypted message block";
testsuite_check ("%s", what);
try {
key = g_build_filename (datadir, "encrypted-message.txt", NULL);
test_openpgp_filter (filter, key, GMIME_OPENPGP_DATA_ENCRYPTED, 165, 1084);
g_free (key);
testsuite_check_passed ();
} catch (ex) {
testsuite_check_failed ("%s failed: %s", what, ex->message);
} finally;
g_object_unref (filter);
testsuite_end ();
g_mime_shutdown ();
if (testsuite_destroy_gpghome () != 0)
return EXIT_FAILURE;
return testsuite_exit ();
#else
fprintf (stderr, "PGP support not enabled in this build.\n");
return EXIT_SUCCESS;
#endif
}
int k_ec2m_import_key(mm_256* key)
{
import_key(key);
smp_call_function(import_key, key, 1);
return OK;
}
