/* +----------------------------------------------------------------------+ | PHP Version 5 | +----------------------------------------------------------------------+ | Copyright (c) 1997-2004 The PHP Group | +----------------------------------------------------------------------+ | This source file is subject to version 3.0 of the PHP license, | | that is bundled with this package in the file LICENSE, and is | | available through the world-wide-web at the following url: | | http://www.php.net/license/3_0.txt. | | If you did not receive a copy of the PHP license and are unable to | | obtain it through the world-wide-web, please send a note to | | license@php.net so we can mail you a copy immediately. | +----------------------------------------------------------------------+ | Author: Thilo Raufeisen | +----------------------------------------------------------------------+ */ /* $Id$ */ #ifdef HAVE_CONFIG_H #include "config.h" #endif #include "php.h" #include "php_ini.h" #include "ext/standard/info.h" #include "php_gnupg.h" #include "php_gnupg_keylistiterator.h" static int le_gnupg; static zend_object_handlers gnupg_object_handlers; /* {{{ defs */ #define GNUGP_GETOBJ() \ zval *this = getThis(); \ gnupg_object *intern; \ ze_gnupg_object *obj = (ze_gnupg_object*) zend_object_store_get_object(this TSRMLS_CC); \ intern = obj->gnupg_ptr; \ if(!intern){ \ php_error_docref(NULL TSRMLS_CC, E_WARNING, "Invalid or unitialized gnupg object"); \ RETURN_FALSE; \ } #define GNUPG_ERR(errortxt) \ zend_update_property_string(Z_OBJCE_P(this), this, "error", 5, (char*)errortxt TSRMLS_DC); \ RETURN_FALSE; /* }}} */ /* {{{ free_resource */ static void gnupg_free_resource_ptr(gnupg_object *intern TSRMLS_DC){ if(intern){ if(intern->ctx){ gpgme_signers_clear (intern->ctx); gpgme_release(intern->ctx); intern->ctx = NULL; } zval_dtor(&intern->passphrase); efree(intern); } } /* }}} */ /* {{{ free_storage */ static void gnupg_object_free_storage(void *object TSRMLS_DC){ ze_gnupg_object * intern = (ze_gnupg_object *) object; if(!intern){ return; } if(intern->gnupg_ptr){ gnupg_free_resource_ptr(intern->gnupg_ptr TSRMLS_CC); } intern->gnupg_ptr = NULL; if(intern->zo.properties){ zend_hash_destroy(intern->zo.properties); FREE_HASHTABLE(intern->zo.properties); } efree(intern); } /* }}} */ /* {{{ objects_new */ zend_object_value gnupg_objects_new(zend_class_entry *class_type TSRMLS_DC){ ze_gnupg_object *intern; zval *tmp; zend_object_value retval; gnupg_object *gnupg_ptr; ze_gnupg_object *ze_obj; gpgme_ctx_t ctx; intern = emalloc(sizeof(ze_gnupg_object)); intern->zo.ce = class_type; intern->zo.in_get = 0; intern->zo.in_set = 0; intern->zo.properties = NULL; ALLOC_HASHTABLE(intern->zo.properties); zend_hash_init(intern->zo.properties, 0, NULL, ZVAL_PTR_DTOR, 0); zend_hash_copy(intern->zo.properties, &class_type->default_properties, (copy_ctor_func_t) zval_add_ref, (void *) &tmp, sizeof(zval *)); retval.handle = zend_objects_store_put(intern,NULL,(zend_objects_free_object_storage_t) gnupg_object_free_storage,NULL TSRMLS_CC); retval.handlers = (zend_object_handlers *) & gnupg_object_handlers; gpgme_new(&ctx); gpgme_set_armor (ctx,1); gnupg_ptr = emalloc(sizeof(gnupg_object)); gnupg_ptr->ctx = ctx; gnupg_ptr->encryptkey = NULL; gnupg_ptr->signmode = GPGME_SIG_MODE_CLEAR; intern->gnupg_ptr = gnupg_ptr; return retval; } /* }}} */ /* {{{ methodlist gnupg */ static zend_function_entry gnupg_methods[] = { ZEND_ME(gnupg, keyinfo, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, verify, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, geterror, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, setpassphrase, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, setsignerkey, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, clearsignerkey, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, setencryptkey, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, setarmor, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, encrypt, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, decrypt, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, export, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, import, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, getprotocol, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, setsignmode, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, sign, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, encryptsign, NULL, ZEND_ACC_PUBLIC) ZEND_ME(gnupg, decryptverify, NULL, ZEND_ACC_PUBLIC) {NULL, NULL, NULL} }; /* }}} */ /* {{{ class constants */ static void gnupg_declare_long_constant(const char *const_name, long value TSRMLS_DC){ #if PHP_MAJOR_VERSION > 5 || PHP_MINOR_VERSION >= 1 zend_declare_class_constant_long(gnupg_class_entry, (char*)const_name, strlen(const_name), value TSRMLS_CC); #else zval *constant = malloc(sizeof(*constant)); ZVAL_LONG(constant,value); INIT_PZVAL(constant); zend_hash_update(&gnupg_class_entry->constants_table, (char*)const_name, strlen(const_name)+1, &constant, sizeof(zval*), NULL); #endif } /* }}} */ /* {{{ properties */ void register_gnupgProperties(TSRMLS_D){ zend_declare_property_long (gnupg_class_entry, "protocol", 8, GPGME_PROTOCOL_OpenPGP, ZEND_ACC_PROTECTED TSRMLS_DC); zend_declare_property_string (gnupg_class_entry, "error", 5, "", ZEND_ACC_PROTECTED TSRMLS_DC); } /* }}} */ /* {{{ gnupg_module_entry */ zend_module_entry gnupg_module_entry = { #if ZEND_MODULE_API_NO >= 20010901 STANDARD_MODULE_HEADER, #endif "gnupg", NULL, PHP_MINIT(gnupg), PHP_MSHUTDOWN(gnupg), NULL, NULL, PHP_MINFO(gnupg), #if ZEND_MODULE_API_NO >= 20010901 "0.2", #endif STANDARD_MODULE_PROPERTIES }; /* }}} */ #ifdef COMPILE_DL_GNUPG ZEND_GET_MODULE(gnupg) #endif /* {{{ PHP_MINIT_FUNCTION */ PHP_MINIT_FUNCTION(gnupg) { zend_class_entry ce; INIT_CLASS_ENTRY(ce, "gnupg", gnupg_methods); ce.create_object = gnupg_objects_new; gnupg_class_entry = zend_register_internal_class(&ce TSRMLS_CC); memcpy(&gnupg_object_handlers, zend_get_std_object_handlers(), sizeof(zend_object_handlers)); le_gnupg = zend_register_list_destructors_ex(NULL, NULL, "ctx", module_number); if (SUCCESS != gnupg_keylistiterator_init()){ return FAILURE; } register_gnupgProperties(TSRMLS_CC); gnupg_declare_long_constant("SIG_MODE_NORMAL", GPGME_SIG_MODE_NORMAL TSRMLS_DC); gnupg_declare_long_constant("SIG_MODE_DETACH", GPGME_SIG_MODE_DETACH TSRMLS_DC); gnupg_declare_long_constant("SIG_MODE_CLEAR", GPGME_SIG_MODE_CLEAR TSRMLS_DC); gnupg_declare_long_constant("VALIDITY_UNKNOWN", GPGME_VALIDITY_UNKNOWN TSRMLS_DC); gnupg_declare_long_constant("VALIDITY_UNDEFINED", GPGME_VALIDITY_UNDEFINED TSRMLS_DC); gnupg_declare_long_constant("VALIDITY_NEVER", GPGME_VALIDITY_NEVER TSRMLS_DC); gnupg_declare_long_constant("VALIDITY_MARGINAL", GPGME_VALIDITY_MARGINAL TSRMLS_DC); gnupg_declare_long_constant("VALIDITY_FULL", GPGME_VALIDITY_FULL TSRMLS_DC); gnupg_declare_long_constant("VALIDITY_ULTIMATE", GPGME_VALIDITY_ULTIMATE TSRMLS_DC); gnupg_declare_long_constant("PROTOCOL_OpenPGP", GPGME_PROTOCOL_OpenPGP TSRMLS_DC); gnupg_declare_long_constant("PROTOCOL_CMS", GPGME_PROTOCOL_CMS TSRMLS_DC); gnupg_declare_long_constant("SIGSUM_VALID", GPGME_SIGSUM_VALID TSRMLS_DC); gnupg_declare_long_constant("SIGSUM_GREEN", GPGME_SIGSUM_GREEN TSRMLS_DC); gnupg_declare_long_constant("SIGSUM_RED", GPGME_SIGSUM_RED TSRMLS_DC); gnupg_declare_long_constant("SIGSUM_KEY_REVOKED", GPGME_SIGSUM_KEY_REVOKED TSRMLS_DC); gnupg_declare_long_constant("SIGSUM_KEY_EXPIRED", GPGME_SIGSUM_KEY_EXPIRED TSRMLS_DC); gnupg_declare_long_constant("SIGSUM_SIG_EXPIRED", GPGME_SIGSUM_SIG_EXPIRED TSRMLS_DC); gnupg_declare_long_constant("SIGSUM_KEY_MISSING", GPGME_SIGSUM_KEY_MISSING TSRMLS_DC); gnupg_declare_long_constant("SIGSUM_CRL_MISSING", GPGME_SIGSUM_CRL_MISSING TSRMLS_DC); gnupg_declare_long_constant("SIGSUM_CRL_TOO_OLD", GPGME_SIGSUM_CRL_TOO_OLD TSRMLS_DC); gnupg_declare_long_constant("SIGSUM_BAD_POLICY", GPGME_SIGSUM_BAD_POLICY TSRMLS_DC); gnupg_declare_long_constant("SIGSUM_SYS_ERROR", GPGME_SIGSUM_SYS_ERROR TSRMLS_DC); return SUCCESS; } /* }}} */ /* {{{ PHP_MSHUTDOWN_FUNCTION */ PHP_MSHUTDOWN_FUNCTION(gnupg) { return SUCCESS; } /* }}} */ /* {{{ PHP_MINFO_FUNCTION */ PHP_MINFO_FUNCTION(gnupg) { php_info_print_table_start(); php_info_print_table_header(2, "gnupg support", "enabled"); php_info_print_table_row(2,"GPGme Version",gpgme_check_version(NULL)); php_info_print_table_end(); } /* }}} */ /* {{{ callback func for setting the passphrase */ gpgme_error_t passphrase_cb (gnupg_object *intern, const char *uid_hint, const char *passphrase_info,int last_was_bad, int fd){ if(last_was_bad){ php_error_docref(NULL TSRMLS_CC, E_WARNING, "Incorrent passphrase"); return 1; } if(Z_STRLEN(intern->passphrase) < 1){ php_error_docref(NULL TSRMLS_CC, E_WARNING, "no passphrase set"); return 1; } write (fd, Z_STRVAL(intern->passphrase), Z_STRLEN(intern->passphrase)); write (fd, "\n", 1); return 0; } /* }}} */ /* {{{ proto bool gnupg_setarmor(int armor) * turn on/off armor mode * 0 = off * >0 = on * */ PHP_FUNCTION(gnupg_setarmor){ int armor; GNUGP_GETOBJ(); if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "l", &armor) == FAILURE){ return; } if(armor > 1){ armor = 1; /*just to make sure */ } gpgme_set_armor (intern->ctx,armor); RETURN_TRUE; } /* }}} */ /* {{{ proto bool gnupg_setsignmode(int signmode) * sets the mode for signing operations */ PHP_FUNCTION(gnupg_setsignmode){ int signmode; GNUGP_GETOBJ(); if(zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC,"l", &signmode) == FAILURE){ return; } switch(signmode){ case GPGME_SIG_MODE_NORMAL: case GPGME_SIG_MODE_DETACH: case GPGME_SIG_MODE_CLEAR: intern->signmode = signmode; RETURN_TRUE; break; default: GNUPG_ERR("invalid signmode"); break; } } /* }}} */ /* {{{ proto bool gnupg_setpassphrase(string passphrase) * sets the passphrase for all next operations */ PHP_FUNCTION(gnupg_setpassphrase){ zval *tmp; GNUGP_GETOBJ(); if(zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC,"z", &tmp) == FAILURE){ return; } intern->passphrase = *tmp; zval_copy_ctor(&intern->passphrase); RETURN_TRUE; } /* }}} */ /* {{{ proto string gnupg_geterror(void) * returns the last errormessage */ PHP_FUNCTION(gnupg_geterror){ zval *error; zval *this = getThis(); error = zend_read_property(Z_OBJCE_P(this), this, "error", 5, 1 TSRMLS_CC); RETURN_STRINGL(Z_STRVAL_P(error), Z_STRLEN_P(error), 1); } /* }}} */ /* {{{ proto int gnupg_getprotocol(void) * returns the currently used pgp-protocol. * atm only OpenPGP is supported */ PHP_FUNCTION(gnupg_getprotocol){ zval *protocol; GNUGP_GETOBJ(); protocol = zend_read_property(Z_OBJCE_P(this), this, "protocol", 8, 1 TSRMLS_CC); RETURN_LONG(Z_LVAL_P(protocol)); } /* }}} */ /* {{{ proto array gnupg_keyinfo(string pattern) * returns an array with informations about all keys, that matches the given pattern */ PHP_FUNCTION(gnupg_keyinfo) { char *searchkey = NULL; int *searchkey_len; int idx; zval *subarr; zval *userid; zval *userids; zval *subkey; zval *subkeys; gpgme_key_t gpgkey; gpgme_subkey_t gpgsubkey; gpgme_user_id_t gpguserid; if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "s", &searchkey, &searchkey_len) == FAILURE){ return; } GNUGP_GETOBJ() if((intern->err = gpgme_op_keylist_start(intern->ctx, searchkey, 0)) != GPG_ERR_NO_ERROR){ GNUPG_ERR("could not init keylist"); } array_init(return_value); while(!(intern->err = gpgme_op_keylist_next(intern->ctx, &gpgkey))){ ALLOC_INIT_ZVAL (subarr); array_init (subarr); ALLOC_INIT_ZVAL (subkeys); array_init (subkeys); ALLOC_INIT_ZVAL (userids); array_init (userids); add_assoc_bool (subarr, "disabled", gpgkey->disabled ); add_assoc_bool (subarr, "expired", gpgkey->expired ); add_assoc_bool (subarr, "revoked", gpgkey->revoked ); add_assoc_bool (subarr, "is_secret", gpgkey->secret ); add_assoc_bool (subarr, "can_sign", gpgkey->can_sign ); add_assoc_bool (subarr, "can_encrypt", gpgkey->can_encrypt ); for(idx = 1, gpguserid = gpgkey->uids; gpguserid; idx++, gpguserid = gpguserid->next){ ALLOC_INIT_ZVAL (userid); array_init (userid); add_assoc_string (userid, "name", gpguserid->name, 1); add_assoc_string (userid, "comment", gpguserid->comment, 1); add_assoc_string (userid, "email", gpguserid->email, 1); add_assoc_string (userid, "uid", gpguserid->uid, 1); add_assoc_bool (userid, "revoked", gpguserid->revoked ); add_assoc_bool (userid, "invalid", gpguserid->invalid ); add_next_index_zval (userids, userid); } add_assoc_zval (subarr, "uids", userids); for(idx = 1, gpgsubkey = gpgkey->subkeys; gpgsubkey; idx++, gpgsubkey = gpgsubkey->next){ ALLOC_INIT_ZVAL (subkey); array_init (subkey); if(gpgsubkey->fpr){ add_assoc_string (subkey, "fingerprint", gpgsubkey->fpr, 1); } add_assoc_string (subkey, "keyid", gpgsubkey->keyid, 1); add_assoc_long (subkey, "timestamp", gpgsubkey->timestamp ); add_assoc_long (subkey, "expires", gpgsubkey->expires ); add_assoc_bool (subkey, "is_secret", gpgsubkey->secret ); add_assoc_bool (subkey, "invalid", gpgsubkey->invalid ); add_assoc_bool (subkey, "can_encrypt", gpgsubkey->can_encrypt ); add_assoc_bool (subkey, "can_sign", gpgsubkey->can_sign ); add_assoc_bool (subkey, "disabled", gpgsubkey->disabled ); add_assoc_bool (subkey, "expired", gpgsubkey->expired ); add_assoc_bool (subkey, "revoked", gpgsubkey->revoked ); add_next_index_zval (subkeys, subkey); } add_assoc_zval (subarr, "subkeys", subkeys); add_next_index_zval (return_value, subarr); } return; } /* }}} */ /* {{{ proto bool gnupg_setsignerkey(string key) * sets the private key for the next sign operation. * please note, that the given key must return only 1 result from the keyring * it should be the best to provide a fingerprint here */ PHP_FUNCTION(gnupg_setsignerkey){ char *key_id = NULL; int key_id_len; gpgme_sign_result_t result; gpgme_key_t gpgme_key; GNUGP_GETOBJ(); if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "s", &key_id, &key_id_len) == FAILURE){ return; } if((intern->err = gpgme_get_key(intern->ctx, key_id, &gpgme_key, 1)) != GPG_ERR_NO_ERROR){ GNUPG_ERR("get_key failed"); } gpgme_signers_clear (intern->ctx); if((intern->err = gpgme_signers_add(intern->ctx, gpgme_key))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not add signer"); } RETURN_TRUE; } /* }}} */ /* {{{ proto bool gnupg_setencryptkey(string key) * sets the public key for next encrypt operation. * please note, that the given key must return only 1 result from the keyring * it should be the best to provide a fingerprint here */ PHP_FUNCTION(gnupg_setencryptkey){ char *key_id = NULL; int key_id_len; gpgme_sign_result_t result; gpgme_key_t gpgme_key; GNUGP_GETOBJ(); if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "s", &key_id, &key_id_len) == FAILURE){ return; } if((intern->err = gpgme_get_key(intern->ctx, key_id, &gpgme_key, 0)) != GPG_ERR_NO_ERROR){ GNUPG_ERR("get_key failed"); } if(intern->encryptkey){ gpgme_key_release(intern->encryptkey); } intern->encryptkey = gpgme_key; RETURN_TRUE; } /* }}} */ /* {{{ proto bool gnupg_clearsignerkey(void) * removes all keys which are set for signing */ PHP_FUNCTION(gnupg_clearsignerkey){ GNUGP_GETOBJ(); gpgme_signers_clear (intern->ctx); RETURN_TRUE; } /* }}} */ /* {{{ proto bool gnupg_clearencryptkey(void) * removes all keys which are set for encryption */ PHP_FUNCTION(gnupg_clearencryptkey){ GNUGP_GETOBJ(); gpgme_key_release (intern->encryptkey); RETURN_TRUE; } /* }}} */ /* {{{ proto string gnupg_sign(string text) * signs the given test with the key, which was set with setsignerkey before * and returns the signed text * the signmode depends on gnupg_setsignmode */ PHP_FUNCTION(gnupg_sign){ char *value = NULL; int value_len; char *userret; int ret_size; gpgme_data_t in, out; gpgme_sign_result_t result; GNUGP_GETOBJ(); if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "s", &value, &value_len) == FAILURE){ return; } gpgme_set_passphrase_cb (intern->ctx, (void*) passphrase_cb, intern); if((intern->err = gpgme_data_new_from_mem (&in, value, value_len, 0))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create in-data buffer"); } if((intern->err = gpgme_data_new(&out))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create out-data buffer"); } if((intern->err = gpgme_op_sign(intern->ctx, in, out, intern->signmode))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("data signing failed"); } result = gpgme_op_sign_result (intern->ctx); if(result->invalid_signers){ GNUPG_ERR("invalid signers found"); } if(!result->signatures){ GNUPG_ERR("no signature in result"); } if(result->signatures->next){ GNUPG_ERR("unexpected numbers of signatures created"); } userret = gpgme_data_release_and_get_mem(out,&ret_size); if(ret_size < 1){ RETURN_FALSE; } gpgme_data_release (in); free (out); RETURN_STRINGL (userret,ret_size,1); } /* }}} */ /* {{{ proto string gnupg_encrypt(string text) * encrypts the given text with the key, which was set with setencryptkey before * and returns the encrypted text */ PHP_FUNCTION(gnupg_encrypt){ char *value = NULL; int value_len; char *userret = NULL; int ret_size; gpgme_data_t in, out; gpgme_encrypt_result_t result; GNUGP_GETOBJ(); if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "s", &value, &value_len) == FAILURE){ return; } if(!intern->encryptkey){ zend_update_property_string(Z_OBJCE_P(this), this, "error", 5, "no key for encryption set" TSRMLS_DC); RETURN_FALSE; } if((intern->err = gpgme_data_new_from_mem (&in, value, value_len, 0))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could no create in-data buffer"); } if((intern->err = gpgme_data_new(&out))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create out-data buffer"); } if((intern->err = gpgme_op_encrypt(intern->ctx, &intern->encryptkey, GPGME_ENCRYPT_ALWAYS_TRUST, in, out))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("encrypt failed"); } result = gpgme_op_encrypt_result (intern->ctx); if (result->invalid_recipients){ GNUPG_ERR("Invalid recipient encountered"); } userret = gpgme_data_release_and_get_mem(out,&ret_size); if(ret_size < 1){ RETURN_FALSE; } gpgme_data_release (in); free (out); RETURN_STRINGL (userret,ret_size,1); } /* }}} */ /* {{{ proto string gnupg_encrypt_sign(string text) * encrypts and signs the given text with the keys, which weres set with setencryptkey and setsignkey before * and returns the encrypted text */ PHP_FUNCTION(gnupg_encryptsign){ char *value = NULL; int value_len; char *userret = NULL; int ret_size; gpgme_data_t in, out; gpgme_encrypt_result_t result; gpgme_sign_result_t sign_result; GNUGP_GETOBJ(); if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "s", &value, &value_len) == FAILURE){ return; } if(!intern->encryptkey){ zend_update_property_string(Z_OBJCE_P(this), this, "error", 5, "no key for encryption set" TSRMLS_DC); RETURN_FALSE; } gpgme_set_passphrase_cb (intern->ctx, (void*) passphrase_cb, intern); if((intern->err = gpgme_data_new_from_mem (&in, value, value_len, 0))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create in-data buffer"); } if((intern->err = gpgme_data_new(&out))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create out-data buffer"); } if((intern->err = gpgme_op_encrypt_sign(intern->ctx, &intern->encryptkey, GPGME_ENCRYPT_ALWAYS_TRUST, in, out))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("encrypt-sign failed"); } result = gpgme_op_encrypt_result (intern->ctx); if (result->invalid_recipients){ GNUPG_ERR("Invalid recipient encountered"); } sign_result = gpgme_op_sign_result (intern->ctx); if(sign_result->invalid_signers){ GNUPG_ERR("invalid signers found"); } if(!sign_result->signatures || sign_result->signatures->next){ GNUPG_ERR("unexpected numbers of signatures created"); } userret = gpgme_data_release_and_get_mem(out,&ret_size); gpgme_data_release (in); free (out); if(ret_size < 1){ RETURN_FALSE; } RETURN_STRINGL (userret,ret_size,1); } /* }}} */ /* {{{ proto array gnupg_verify(string text [, string &plaintext]) * verifies the given clearsigned text and returns information about the result in an array */ PHP_FUNCTION(gnupg_verify){ char *value = NULL; char *sigtext = NULL; int value_len; int tmp; zval *plaintext; char *userret; int ret_size; gpgme_data_t in, out; gpgme_verify_result_t result; GNUGP_GETOBJ(); if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "s|z", &value, &value_len, &plaintext) == FAILURE){ return; } if((intern->err = gpgme_data_new_from_mem (&in, value, value_len, 0))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create in-data buffer"); } if((intern->err = gpgme_data_new_from_mem (&out, sigtext, 0, 0))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create out-data buffer"); } if((intern->err = gpgme_op_verify (intern->ctx, in, NULL, out))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("verify failed"); } result = gpgme_op_verify_result (intern->ctx); if(!result->signatures){ GNUPG_ERR ("no signature found"); } if(result->signatures->next){ GNUPG_ERR ("multiple signatures found"); } array_init (return_value); add_assoc_string (return_value, "fingerprint", result->signatures->fpr, 1); add_assoc_long (return_value, "validity", result->signatures->validity ); add_assoc_long (return_value, "timestamp", result->signatures->timestamp ); add_assoc_long (return_value, "status", result->signatures->status ); userret = gpgme_data_release_and_get_mem(out,&ret_size); if(plaintext){ ZVAL_STRINGL (plaintext,userret,ret_size,1); } gpgme_data_release (in); free (out); } /* }}} */ /* {{{ proto string gnupg_decrypt(string enctext) * decrypts the given enctext */ PHP_FUNCTION(gnupg_decrypt){ char *enctxt; int enctxt_len; char *userret; int ret_size; gpgme_data_t in, out; gpgme_decrypt_result_t result; GNUGP_GETOBJ(); if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "s", &enctxt, &enctxt_len) == FAILURE){ return; } gpgme_set_passphrase_cb (intern->ctx, (void*) passphrase_cb, intern); if((intern->err = gpgme_data_new_from_mem (&in, enctxt, enctxt_len, 0))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create in-data buffer"); } if((intern->err = gpgme_data_new (&out))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create out-data buffer"); } if((intern->err = gpgme_op_decrypt (intern->ctx, in, out))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("decrypt failed"); } result = gpgme_op_decrypt_result (intern->ctx); if (result->unsupported_algorithm){ GNUPG_ERR ("unsupported algorithm"); } userret = gpgme_data_release_and_get_mem(out,&ret_size); gpgme_data_release (in); free (out); if(ret_size < 1){ RETURN_FALSE; } RETURN_STRINGL (userret,ret_size,1); } /* }}} */ /* {{{ proto string gnupg_decryptverify(string enctext, string &plaintext) * decrypts the given enctext */ PHP_FUNCTION(gnupg_decryptverify){ char *enctxt; int enctxt_len; zval *plaintext; char *userret; int ret_size; gpgme_data_t in, out; gpgme_decrypt_result_t decrypt_result; gpgme_verify_result_t verify_result; GNUGP_GETOBJ(); if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "sz", &enctxt, &enctxt_len, &plaintext) == FAILURE){ return; } gpgme_set_passphrase_cb (intern->ctx, (void*) passphrase_cb, intern); if((intern->err = gpgme_data_new_from_mem (&in, enctxt, enctxt_len, 0))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create in-data buffer"); } if((intern->err = gpgme_data_new (&out))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create out-data buffer"); } if((intern->err = gpgme_op_decrypt_verify (intern->ctx, in, out))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("decrypt-verify failed"); } userret = gpgme_data_release_and_get_mem(out,&ret_size); ZVAL_STRINGL (plaintext,userret,ret_size,1); decrypt_result = gpgme_op_decrypt_result (intern->ctx); if (decrypt_result->unsupported_algorithm){ GNUPG_ERR ("unsupported algorithm"); } verify_result = gpgme_op_verify_result (intern->ctx); if(!verify_result->signatures){ GNUPG_ERR ("no signature found"); } if(verify_result->signatures->next){ GNUPG_ERR ("multiple signatures found"); } array_init (return_value); add_assoc_string (return_value, "fingerprint", verify_result->signatures->fpr, 1); add_assoc_long (return_value, "validity", verify_result->signatures->validity ); add_assoc_long (return_value, "timestamp", verify_result->signatures->timestamp ); add_assoc_long (return_value, "status", verify_result->signatures->status ); gpgme_data_release (in); free (out); } /* }}} */ /* {{{ proto string gnupg_export(string pattern) * exports the first public key which matches against the given pattern */ PHP_FUNCTION(gnupg_export){ char *searchkey = NULL; int *searchkey_len; char *userret; int ret_size; gpgme_data_t out; GNUGP_GETOBJ(); if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "s", &searchkey, &searchkey_len) == FAILURE){ return; } if((intern->err = gpgme_data_new (&out))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create data buffer"); } if((intern->err = gpgme_op_export (intern->ctx, searchkey, 0, out))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("export failed"); } userret = gpgme_data_release_and_get_mem(out,&ret_size); if(ret_size < 1){ RETURN_FALSE; } RETURN_STRINGL (userret,ret_size,1); free (out); } /* }}} */ /* {{{ proto array gnupg_import(string key) * imports the given key and returns a status-array */ PHP_FUNCTION(gnupg_import){ char *importkey = NULL; int importkey_len; gpgme_data_t in; gpgme_import_result_t result; GNUGP_GETOBJ(); if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "s", &importkey, &importkey_len) == FAILURE){ return; } if((intern->err = gpgme_data_new_from_mem (&in, importkey, importkey_len, 0))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("could not create in-data buffer"); } if((intern->err = gpgme_op_import(intern->ctx,in))!=GPG_ERR_NO_ERROR){ GNUPG_ERR("import failed"); } gpgme_data_release(in); result = gpgme_op_import_result (intern->ctx); array_init (return_value); add_assoc_long (return_value, "imported", result->imported); add_assoc_long (return_value, "unchanged", result->unchanged); add_assoc_long (return_value, "newuserids", result->new_user_ids); add_assoc_long (return_value, "newsubkeys", result->new_sub_keys); add_assoc_long (return_value, "secretimported", result->secret_imported); add_assoc_long (return_value, "secretunchanged", result->secret_unchanged); add_assoc_long (return_value, "newsignatures", result->new_signatures); add_assoc_long (return_value, "skippedkeys", result->skipped_new_keys); add_assoc_string (return_value, "fingerprint", result->imports->fpr, 1); } /* }}} */ /* * Local variables: * tab-width: 4 * c-basic-offset: 4 * End: * vim600: noet sw=4 ts=4 fdm=marker * vim<600: noet sw=4 ts=4 */