Main Page   Modules   Data Structures   File List   Data Fields   Globals   Related Pages  

lib/signature.c File Reference

More...

#include "system.h"
#include "rpmio_internal.h"
#include <rpmlib.h>
#include <rpmmacro.h>
#include "rpmdb.h"
#include "rpmts.h"
#include "misc.h"
#include "legacy.h"
#include "rpmlead.h"
#include "signature.h"
#include "header_internal.h"
#include "debug.h"

Go to the source code of this file.

Functions

int rpmLookupSignatureType (int action)
const char * rpmDetectPGPVersion (pgpVersion *pgpVer)
rpmRC printSize (FD_t fd, int siglen, int pad, int datalen)
 Print package size.

rpmRC rpmReadSignature (FD_t fd, Header *sighp, sigType sig_type, const char **msg)
int rpmWriteSignature (FD_t fd, Header h)
Header rpmNewSignature (void)
Header rpmFreeSignature (Header h)
int makePGPSignature (const char *file, byte **pkt, int_32 *pktlen, const char *passPhrase)
 Generate PGP (aka RSA/MD5) signature(s) for a header+payload file.

int makeGPGSignature (const char *file, byte **pkt, int_32 *pktlen, const char *passPhrase)
 Generate GPG (aka DSA) signature(s) for a header+payload file.

int makeHDRSignature (Header sig, const char *file, int_32 sigTag, const char *passPhrase)
 Generate header only signature(s) from a header+payload file.

int rpmAddSignature (Header sig, const char *file, int_32 sigTag, const char *passPhrase)
int checkPassPhrase (const char *passPhrase, const int sigTag)
char * rpmGetPassPhrase (const char *prompt, const int sigTag)
const char * rpmSigString (rpmRC res)
rpmRC verifySizeSignature (const rpmts ts, char *t)
rpmRC verifyMD5Signature (const rpmts ts, char *t, DIGEST_CTX md5ctx)
rpmRC verifySHA1Signature (const rpmts ts, char *t, DIGEST_CTX sha1ctx)
 Verify header immutable region SHA1 digest.

unsigned char nibble (char c)
 Convert hex to binary nibble.

rpmRC verifyPGPSignature (rpmts ts, char *t, DIGEST_CTX md5ctx)
 Verify PGP (aka RSA/MD5) signature.

rpmRC verifyGPGSignature (rpmts ts, char *t, DIGEST_CTX sha1ctx)
 Verify GPG (aka DSA) signature.

rpmRC rpmVerifySignature (const rpmts ts, char *result)

Variables

char ** environ = NULL
unsigned char header_magic [8]


Detailed Description

Definition in file signature.c.


Function Documentation

int checkPassPhrase const char *    passPhrase,
const int    sigTag
[static]
 

Definition at line 784 of file signature.c.

References _, dosetenv(), environ, errno, PGP_2, PGP_5, PGP_NOTDETECTED, PGP_UNKNOWN, pgpVersion, poptParseArgvString(), rpmDetectPGPVersion(), RPMERR_EXEC, RPMERR_SIGGEN, rpmError, rpmExpand(), rpmIsVerbose, RPMSIGTAG_DSA, RPMSIGTAG_GPG, RPMSIGTAG_PGP, RPMSIGTAG_PGP5, RPMSIGTAG_RSA, strerror(), and unsetenv().

Referenced by rpmGetPassPhrase().

int makeGPGSignature const char *    file,
byte **    pkt,
int_32   pktlen,
const char *    passPhrase
[static]
 

Generate GPG (aka DSA) signature(s) for a header+payload file.

Parameters:
file  header+payload file name
Return values:
pkt  signature packet(s)
pktlen  signature packet(s) length
Parameters:
passPhrase  private key pass phrase
Returns:
0 on success, 1 on failure

Definition at line 512 of file signature.c.

References _, _free(), addMacro(), alloca(), byte, delMacro(), dosetenv(), environ, errno, Fclose(), Ferror(), Fopen(), int_32, poptParseArgvString(), RPMERR_EXEC, RPMERR_SIGGEN, rpmError, rpmExpand(), RPMMESS_DEBUG, rpmMessage, stpcpy(), strerror(), timedRead, unsetenv(), and xmalloc().

Referenced by makeHDRSignature(), and rpmAddSignature().

int makeHDRSignature Header    sig,
const char *    file,
int_32    sigTag,
const char *    passPhrase
[static]
 

Generate header only signature(s) from a header+payload file.

Parameters:
sig  signature header
file  header+payload file name
sigTag  type of signature(s) to add
passPhrase  private key pass phrase
Returns:
0 on success, -1 on failure

Definition at line 627 of file signature.c.

References _free(), byte, Fclose(), Ferror(), Fopen(), header_magic, HEADER_MAGIC_YES, headerAddEntry(), headerFree(), headerFreeData(), headerGetEntry(), headerIsEntry(), headerRead(), headerWrite(), int_32, makeGPGSignature(), makePGPSignature(), makeTempFile(), PGPHASHALGO_SHA1, RPM_BIN_TYPE, RPM_STRING_TYPE, RPMDIGEST_NONE, rpmDigestFinal(), rpmDigestInit(), rpmDigestUpdate(), RPMSIGTAG_DSA, RPMSIGTAG_GPG, RPMSIGTAG_MD5, RPMSIGTAG_PGP, RPMSIGTAG_PGP5, RPMSIGTAG_RSA, RPMSIGTAG_SHA1, RPMSIGTAG_SIZE, and RPMTAG_HEADERIMMUTABLE.

Referenced by rpmAddSignature().

int makePGPSignature const char *    file,
byte **    pkt,
int_32   pktlen,
const char *    passPhrase
[static]
 

Generate PGP (aka RSA/MD5) signature(s) for a header+payload file.

Parameters:
file  header+payload file name
Return values:
pkt  signature packet(s)
pktlen  signature packet(s) length
Parameters:
passPhrase  private key pass phrase
Returns:
0 on success, 1 on failure

Definition at line 377 of file signature.c.

References _, _free(), addMacro(), alloca(), byte, delMacro(), dosetenv(), environ, errno, Fclose(), Ferror(), Fopen(), int_32, PGP_2, PGP_5, PGP_NOTDETECTED, PGP_UNKNOWN, pgpVersion, poptParseArgvString(), rpmDetectPGPVersion(), RPMERR_EXEC, RPMERR_SIGGEN, rpmError, rpmExpand(), RPMMESS_DEBUG, rpmMessage, stpcpy(), strerror(), timedRead, unsetenv(), and xmalloc().

Referenced by makeHDRSignature(), and rpmAddSignature().

unsigned char nibble char    c [inline, static]
 

Convert hex to binary nibble.

Parameters:
c  hex character
Returns:
binary nibble

Definition at line 1109 of file signature.c.

rpmRC printSize FD_t    fd,
int    siglen,
int    pad,
int    datalen
[inline, static]
 

Print package size.

Todo:
rpmio: use fdSize rather than fstat(2) to get file size.
Parameters:
fd  package file handle
siglen  signature header size
pad  signature padding
datalen  length of header+payload
Returns:
rpmRC return code

Definition at line 122 of file signature.c.

References _, Fileno(), RPMMESS_DEBUG, rpmMessage, rpmRC, RPMRC_FAIL, and RPMRC_OK.

Referenced by rpmReadSignature().

Header rpmFreeSignature Header    h
 

Destroy signature header from package.

Parameters:
h  signature header
Returns:
NULL always

Definition at line 364 of file signature.c.

References headerFree().

Referenced by rpmpsmStage(), rpmReadPackageFile(), rpmReSign(), rpmVerifySignatures(), and writeRPM().

const char* rpmSigString rpmRC    res [static]
 

Definition at line 949 of file signature.c.

References rpmRC, RPMRC_FAIL, RPMRC_NOKEY, RPMRC_NOTFOUND, RPMRC_NOTTRUSTED, and RPMRC_OK.

Referenced by verifyGPGSignature(), verifyMD5Signature(), verifyPGPSignature(), verifySHA1Signature(), and verifySizeSignature().

rpmRC rpmVerifySignature const rpmts    ts,
char *    result
 

Verify a signature from a package.

This needs the following variables from the transaction set:

  • ts->sigtag type of signature
  • ts->sig signature itself (from signature header)
  • ts->siglen no. of bytes in signature
  • ts->dig signature/pubkey parameters (malloc'd workspace)
Parameters:
ts  transaction set
Return values:
result  detailed text result of signature verification
Returns:
result of signature verification

Definition at line 1334 of file signature.c.

References _, pgpDig_s::hdrsha1ctx, int_32, pgpDig_s::md5ctx, rpmRC, RPMRC_NOTFOUND, RPMSIGTAG_DSA, RPMSIGTAG_GPG, RPMSIGTAG_LEMD5_1, RPMSIGTAG_LEMD5_2, RPMSIGTAG_MD5, RPMSIGTAG_PGP, RPMSIGTAG_PGP5, RPMSIGTAG_RSA, RPMSIGTAG_SHA1, RPMSIGTAG_SIZE, rpmts, rpmtsDig(), rpmtsSig(), rpmtsSiglen(), rpmtsSigtag(), pgpDig_s::sha1ctx, verifyGPGSignature(), verifyMD5Signature(), verifyPGPSignature(), verifySHA1Signature(), and verifySizeSignature().

Referenced by headerCheck(), rpmReadPackageFile(), and rpmVerifySignatures().

rpmRC verifyGPGSignature rpmts    ts,
char *    t,
DIGEST_CTX    sha1ctx
[static]
 

Verify GPG (aka DSA) signature.

Parameters:
ts  transaction set
Return values:
t  verbose success/failure text
Parameters:
sha1ctx 
Returns:
RPMRC_OK on success

Definition at line 1246 of file signature.c.

References _, byte, pgpDig_s::g, pgpDigParams_s::hash, pgpDigParams_s::hash_algo, pgpDigParams_s::hashlen, pgpDig_s::hdrsha1ctx, pgpDig_s::hm, int_32, pgpDig_s::nbytes, pgpDig_s::p, PGPHASHALGO_SHA1, pgpHexCvt(), PGPPUBKEYALGO_DSA, pgpDigParams_s::pubkey_algo, pgpDig_s::q, pgpDig_s::r, rpmDigestDup(), rpmDigestFinal(), rpmDigestUpdate(), rpmRC, RPMRC_FAIL, RPMRC_NOKEY, RPMRC_OK, rpmSigString(), RPMSIGTAG_DSA, RPMSIGTAG_GPG, rpmts, rpmtsDig(), rpmtsFindPubkey(), rpmtsSig(), rpmtsSiglen(), rpmtsSignature(), rpmtsSigtag(), pgpDig_s::s, pgpDig_s::sha1, pgpDig_s::sha1len, pgpDigParams_s::signhash16, pgpDigParams_s::signid, pgpDigParams_s::sigtype, stpcpy(), and pgpDig_s::y.

Referenced by rpmVerifySignature().

rpmRC verifyMD5Signature const rpmts    ts,
char *    t,
DIGEST_CTX    md5ctx
[static]
 

Definition at line 1003 of file signature.c.

References _, _free(), byte, int_32, pgpHexCvt(), rpmDigestDup(), rpmDigestFinal(), rpmRC, RPMRC_FAIL, RPMRC_NOKEY, RPMRC_OK, rpmSigString(), rpmts, rpmtsDig(), rpmtsSig(), rpmtsSiglen(), and stpcpy().

Referenced by rpmVerifySignature().

rpmRC verifyPGPSignature rpmts    ts,
char *    t,
DIGEST_CTX    md5ctx
[static]
 

Verify PGP (aka RSA/MD5) signature.

Parameters:
ts  transaction set
Return values:
t  verbose success/failure text
Parameters:
md5ctx 
Returns:
RPMRC_OK on success

Definition at line 1130 of file signature.c.

References _, _free(), byte, pgpDig_s::c, pgpDigParams_s::hash, pgpDigParams_s::hash_algo, pgpDigParams_s::hashlen, int_32, pgpDig_s::md5, pgpDig_s::md5len, pgpDig_s::nbytes, nibble(), PGPHASHALGO_MD5, pgpHexCvt(), PGPPUBKEYALGO_RSA, pgpDigParams_s::pubkey_algo, rpmDigestDup(), rpmDigestFinal(), rpmDigestUpdate(), rpmRC, RPMRC_FAIL, RPMRC_NOKEY, RPMRC_OK, rpmSigString(), RPMSIGTAG_PGP, rpmts, rpmtsDig(), rpmtsFindPubkey(), rpmtsSig(), rpmtsSiglen(), rpmtsSignature(), rpmtsSigtag(), pgpDig_s::rsa_pk, pgpDig_s::rsahm, pgpDigParams_s::signhash16, pgpDigParams_s::signid, pgpDigParams_s::sigtype, stpcpy(), and xmalloc().

Referenced by rpmVerifySignature().

rpmRC verifySHA1Signature const rpmts    ts,
char *    t,
DIGEST_CTX    sha1ctx
[static]
 

Verify header immutable region SHA1 digest.

Parameters:
ts  transaction set
Return values:
t  verbose success/failure text
Parameters:
sha1ctx 
Returns:
RPMRC_OK on success

Definition at line 1058 of file signature.c.

References _, _free(), int_32, rpmDigestDup(), rpmDigestFinal(), rpmRC, RPMRC_FAIL, RPMRC_NOKEY, RPMRC_OK, rpmSigString(), rpmts, rpmtsDig(), rpmtsSig(), rpmtsSiglen(), and stpcpy().

Referenced by rpmVerifySignature().

rpmRC verifySizeSignature const rpmts    ts,
char *    t
[static]
 

Definition at line 966 of file signature.c.

References _, int_32, pgpDig_s::nbytes, rpmRC, RPMRC_FAIL, RPMRC_NOKEY, RPMRC_OK, rpmSigString(), rpmts, rpmtsDig(), rpmtsSig(), and stpcpy().

Referenced by rpmVerifySignature().


Variable Documentation

char** environ = NULL
 

Definition at line 30 of file signature.c.

Referenced by checkPassPhrase(), main(), makeGPGSignature(), makePGPSignature(), and open_dso().

unsigned char header_magic[8] [static]
 

Initial value:

 {
    0x8e, 0xad, 0xe8, 0x01, 0x00, 0x00, 0x00, 0x00
}

Definition at line 144 of file signature.c.

Referenced by makeHDRSignature(), and rpmReadSignature().


Generated on Sun Oct 26 13:02:06 2003 for rpm by doxygen1.2.18