[ntk/apt.git] / apt-pkg / contrib / gpgv.h

// -*- mode: cpp; mode: fold -*-
// Description								/*{{{*/
/* ######################################################################

   Helpers to deal with gpgv better and more easily

   ##################################################################### */
									/*}}}*/
#ifndef CONTRIB_GPGV_H
#define CONTRIB_GPGV_H

#include <string>
#include <vector>

#include <apt-pkg/fileutl.h>

#if __GNUC__ >= 4
	#define APT_noreturn	__attribute__ ((noreturn))
#else
	#define APT_noreturn	/* no support */
#endif

/** \brief generates and run the command to verify a file with gpgv
 *
 * If File and FileSig specify the same file it is assumed that we
 * deal with a clear-signed message. Note that the method will accept
 * and validate files which include additional (unsigned) messages
 * without complaining. Do NOT open files accepted by this method
 * for reading. Use #OpenMaybeClearSignedFile to access the message
 * instead to ensure you are only reading signed data.
 *
 * The method does not return, but has some notable exit-codes:
 * 111 signals an internal error like the inability to execute gpgv,
 * 112 indicates a clear-signed file which doesn't include a message,
 *  which can happen if APT is run while on a network requiring
 *  authentication before usage (e.g. in hotels)
 * All other exit-codes are passed-through from gpgv.
 *
 * @param File is the message (unsigned or clear-signed)
 * @param FileSig is the signature (detached or clear-signed)
 */
void ExecGPGV(std::string const &File, std::string const &FileSig,
      int const &statusfd, int fd[2]) APT_noreturn;
inline void ExecGPGV(std::string const &File, std::string const &FileSig,
      int const &statusfd = -1) {
   int fd[2];
   ExecGPGV(File, FileSig, statusfd, fd);
};

#undef APT_noreturn

/** \brief Split an inline signature into message and signature
 *
 *  Takes a clear-signed message and puts the first signed message
 *  in the content file and all signatures following it into the
 *  second. Unsigned messages, additional messages as well as
 *  whitespaces are discarded. The resulting files are suitable to
 *  be checked with gpgv.
 *
 *  If a FileFd pointers is NULL it will not be used and the content
 *  which would have been written to it is silently discarded.
 *
 *  The content of the split files is undefined if the splitting was
 *  unsuccessful.
 *
 *  Note that trying to split an unsigned file will fail, but
 *  not generate an error message.
 *
 *  @param InFile is the clear-signed file
 *  @param ContentFile is the FileFd the message will be written to
 *  @param ContentHeader is a list of all required Amored Headers for the message
 *  @param SignatureFile is the FileFd all signatures will be written to
 *  @return true if the splitting was successful, false otherwise
 */
bool SplitClearSignedFile(std::string const &InFile, FileFd * const ContentFile,
      std::vector<std::string> * const ContentHeader, FileFd * const SignatureFile);

/** \brief open a file which might be clear-signed
 *
 * This method tries to extract the (signed) message of a file.
 * If the file isn't signed it will just open the given filename.
 * Otherwise the message is extracted to a temporary file which
 * will be opened instead.
 *
 * @param ClearSignedFileName is the name of the file to open
 * @param[out] MessageFile is the FileFd in which the file will be opened
 * @return true if opening was successful, otherwise false
 */
bool OpenMaybeClearSignedFile(std::string const &ClearSignedFileName, FileFd &MessageFile);

#endif
Commit	Line	Data
2f5b6151 DK	1	// -- mode: cpp; mode: fold --
	2	// Description /{{{/
	3	/* ######################################################################
	4
	5	Helpers to deal with gpgv better and more easily
	6
	7	##################################################################### */
	8	/}}}/
	9	#ifndef CONTRIB_GPGV_H
	10	#define CONTRIB_GPGV_H
	11
	12	#include <string>
2d3fe9cf	13	#include <vector>
2f5b6151	14
f1828b69 DK	15	#include <apt-pkg/fileutl.h>
f1828b69 DK	16
99ed26d3 DK	17	#if __GNUC__ >= 4
	18	#define APT_noreturn __attribute__ ((noreturn))
	19	#else
	20	#define APT_noreturn /* no support */
	21	#endif
2f5b6151	22
99ed26d3 DK	23	/** \brief generates and run the command to verify a file with gpgv
	24	*
	25	* If File and FileSig specify the same file it is assumed that we
ae99ce2e DK	26	* deal with a clear-signed message. Note that the method will accept
	27	* and validate files which include additional (unsigned) messages
	28	* without complaining. Do NOT open files accepted by this method
	29	* for reading. Use #OpenMaybeClearSignedFile to access the message
	30	* instead to ensure you are only reading signed data.
	31	*
1e3f4083	32	* The method does not return, but has some notable exit-codes:
ae99ce2e DK	33	* 111 signals an internal error like the inability to execute gpgv,
	34	* 112 indicates a clear-signed file which doesn't include a message,
	35	* which can happen if APT is run while on a network requiring
	36	* authentication before usage (e.g. in hotels)
	37	* All other exit-codes are passed-through from gpgv.
99ed26d3 DK	38	*
	39	* @param File is the message (unsigned or clear-signed)
	40	* @param FileSig is the signature (detached or clear-signed)
	41	*/
	42	void ExecGPGV(std::string const &File, std::string const &FileSig,
	43	int const &statusfd, int fd[2]) APT_noreturn;
	44	inline void ExecGPGV(std::string const &File, std::string const &FileSig,
2f5b6151 DK	45	int const &statusfd = -1) {
2f5b6151 DK	46	int fd[2];
99ed26d3 DK	47	ExecGPGV(File, FileSig, statusfd, fd);
	48	};
	49
	50	#undef APT_noreturn
2f5b6151	51
2d3fe9cf DK	52	/** \brief Split an inline signature into message and signature
	53	*
	54	* Takes a clear-signed message and puts the first signed message
	55	* in the content file and all signatures following it into the
	56	* second. Unsigned messages, additional messages as well as
	57	* whitespaces are discarded. The resulting files are suitable to
	58	* be checked with gpgv.
	59	*
b408e4ad DK	60	* If a FileFd pointers is NULL it will not be used and the content
b408e4ad DK	61	* which would have been written to it is silently discarded.
2d3fe9cf	62	*
f1828b69 DK	63	* The content of the split files is undefined if the splitting was
	64	* unsuccessful.
	65	*
	66	* Note that trying to split an unsigned file will fail, but
	67	* not generate an error message.
	68	*
2d3fe9cf	69	* @param InFile is the clear-signed file
b408e4ad	70	* @param ContentFile is the FileFd the message will be written to
2d3fe9cf	71	* @param ContentHeader is a list of all required Amored Headers for the message
b408e4ad	72	* @param SignatureFile is the FileFd all signatures will be written to
f1828b69	73	* @return true if the splitting was successful, false otherwise
2d3fe9cf	74	*/
b408e4ad DK	75	bool SplitClearSignedFile(std::string const &InFile, FileFd * const ContentFile,
b408e4ad DK	76	std::vector<std::string> * const ContentHeader, FileFd * const SignatureFile);
2d3fe9cf	77
f1828b69 DK	78	/** \brief open a file which might be clear-signed
	79	*
	80	* This method tries to extract the (signed) message of a file.
	81	* If the file isn't signed it will just open the given filename.
	82	* Otherwise the message is extracted to a temporary file which
	83	* will be opened instead.
	84	*
	85	* @param ClearSignedFileName is the name of the file to open
	86	* @param[out] MessageFile is the FileFd in which the file will be opened
	87	* @return true if opening was successful, otherwise false
	88	*/
	89	bool OpenMaybeClearSignedFile(std::string const &ClearSignedFileName, FileFd &MessageFile);
	90
2f5b6151	91	#endif