NeoMutt  2025-05-10
Teaching an old dog new tricks
 		DOXYGEN
Loading...
Searching...
No Matches
Functions
decrypt_mime()
Crypto API

Decrypt an encrypted MIME part. More...

+ Collaboration diagram for decrypt_mime():

Functions

int pgp_gpgme_decrypt_mime (FILE *fp_in, FILE **fp_out, struct Body *b, struct Body **b_dec)
 Decrypt an encrypted MIME part - Implements CryptModuleSpecs::decrypt_mime() -.
 
int smime_gpgme_decrypt_mime (FILE *fp_in, FILE **fp_out, struct Body *b, struct Body **b_dec)
 Decrypt an encrypted MIME part - Implements CryptModuleSpecs::decrypt_mime() -.
 
int pgp_class_decrypt_mime (FILE *fp_in, FILE **fp_out, struct Body *b, struct Body **b_dec)
 Decrypt an encrypted MIME part - Implements CryptModuleSpecs::decrypt_mime() -.
 
int smime_class_decrypt_mime (FILE *fp_in, FILE **fp_out, struct Body *b, struct Body **b_dec)
 Decrypt an encrypted MIME part - Implements CryptModuleSpecs::decrypt_mime() -.
 

Detailed Description

Decrypt an encrypted MIME part.

Parameters
[in]fp_inFile containing the encrypted part
[out]fp_outFile containing the decrypted part
[in]bBody of the email
[out]b_decBody containing the decrypted part
Return values
0Success
-1Failure

Function Documentation

◆ pgp_gpgme_decrypt_mime()

int pgp_gpgme_decrypt_mime ( FILE *  fp_in,
FILE **  fp_out,
struct Body b,
struct Body **  b_dec 
)

Decrypt an encrypted MIME part - Implements CryptModuleSpecs::decrypt_mime() -.

Definition at line 1896 of file crypt_gpgme.c.

1897{
1898 struct State state = { 0 };
1899 struct Body *first_part = b;
1900 int is_signed = 0;
1901 bool need_decode = false;
1902 LOFF_T saved_offset = 0;
1903 size_t saved_length = 0;
1904 FILE *fp_decoded = NULL;
1905 int rc = 0;
1906
1907 first_part->goodsig = false;
1908 first_part->warnsig = false;
1909
1910 if (mutt_is_valid_multipart_pgp_encrypted(b))
1911 {
1912 b = b->parts->next;
1913 /* Some clients improperly encode the octetstream part. */
1914 if (b->encoding != ENC_7BIT)
1915 need_decode = true;
1916 }
1917 else if (mutt_is_malformed_multipart_pgp_encrypted(b))
1918 {
1919 b = b->parts->next->next;
1920 need_decode = true;
1921 }
1922 else
1923 {
1924 return -1;
1925 }
1926
1927 state.fp_in = fp_in;
1928
1929 if (need_decode)
1930 {
1931 saved_offset = b->offset;
1932 saved_length = b->length;
1933
1934 fp_decoded = mutt_file_mkstemp();
1935 if (!fp_decoded)
1936 {
1937 mutt_perror(_("Can't create temporary file"));
1938 return -1;
1939 }
1940
1941 if (!mutt_file_seek(state.fp_in, b->offset, SEEK_SET))
1942 {
1943 rc = -1;
1944 goto bail;
1945 }
1946 state.fp_out = fp_decoded;
1947
1948 mutt_decode_attachment(b, &state);
1949
1950 fflush(fp_decoded);
1951 b->length = ftello(fp_decoded);
1952 b->offset = 0;
1953 rewind(fp_decoded);
1954 state.fp_in = fp_decoded;
1955 state.fp_out = 0;
1956 }
1957
1958 *fp_out = mutt_file_mkstemp();
1959 if (!*fp_out)
1960 {
1961 mutt_perror(_("Can't create temporary file"));
1962 rc = -1;
1963 goto bail;
1964 }
1965
1966 *b_dec = decrypt_part(b, &state, *fp_out, false, &is_signed);
1967 if (*b_dec)
1968 {
1969 rewind(*fp_out);
1970 if (is_signed > 0)
1971 first_part->goodsig = true;
1972 }
1973 else
1974 {
1975 rc = -1;
1976 mutt_file_fclose(fp_out);
1977 }
1978
1979bail:
1980 if (need_decode)
1981 {
1982 b->length = saved_length;
1983 b->offset = saved_offset;
1984 mutt_file_fclose(&fp_decoded);
1985 }
1986
1987 return rc;
1988}
mutt_is_valid_multipart_pgp_encrypted
int mutt_is_valid_multipart_pgp_encrypted(struct Body *b)
Is this a valid multi-part encrypted message?
Definition: crypt.c:467
mutt_is_malformed_multipart_pgp_encrypted
SecurityFlags mutt_is_malformed_multipart_pgp_encrypted(struct Body *b)
Check for malformed layout.
Definition: crypt.c:504
decrypt_part
static struct Body * decrypt_part(struct Body *b, struct State *state, FILE *fp_out, bool is_smime, int *r_is_signed)
Decrypt a PGP or SMIME message.
Definition: crypt_gpgme.c:1732
mutt_file_seek
bool mutt_file_seek(FILE *fp, LOFF_T offset, int whence)
Wrapper for fseeko with error handling.
Definition: file.c:655
mutt_file_fclose
#define mutt_file_fclose(FP)
Definition: file.h:139
mutt_perror
#define mutt_perror(...)
Definition: logging2.h:94
mutt_decode_attachment
void mutt_decode_attachment(const struct Body *b, struct State *state)
Decode an email's attachment.
Definition: handler.c:1907
ENC_7BIT
@ ENC_7BIT
7-bit text
Definition: mime.h:49
_
#define _(a)
Definition: message.h:28
Body
The body of an email.
Definition: body.h:36
Body::parts
struct Body * parts
parts of a multipart or message/rfc822
Definition: body.h:73
Body::offset
LOFF_T offset
offset where the actual data begins
Definition: body.h:52
Body::length
LOFF_T length
length (in bytes) of attachment
Definition: body.h:53
Body::next
struct Body * next
next attachment in the list
Definition: body.h:72
Body::encoding
unsigned int encoding
content-transfer-encoding, ContentEncoding
Definition: body.h:41
Body::goodsig
bool goodsig
Good cryptographic signature.
Definition: body.h:45
Body::warnsig
bool warnsig
Maybe good signature.
Definition: body.h:48
State
Keep track when processing files.
Definition: state.h:48
State::fp_out
FILE * fp_out
File to write to.
Definition: state.h:50
State::fp_in
FILE * fp_in
File to read from.
Definition: state.h:49
mutt_file_mkstemp
#define mutt_file_mkstemp()
Definition: tmp.h:36
+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ smime_gpgme_decrypt_mime()

int smime_gpgme_decrypt_mime ( FILE *  fp_in,
FILE **  fp_out,
struct Body b,
struct Body **  b_dec 
)

Decrypt an encrypted MIME part - Implements CryptModuleSpecs::decrypt_mime() -.

Definition at line 1993 of file crypt_gpgme.c.

1994{
1995 struct State state = { 0 };
1996 int is_signed;
1997 LOFF_T saved_b_offset;
1998 size_t saved_b_length;
1999
2000 if (mutt_is_application_smime(b) == SEC_NO_FLAGS)
2001 return -1;
2002
2003 if (b->parts)
2004 return -1;
2005
2006 /* Decode the body - we need to pass binary CMS to the
2007 * backend. The backend allows for Base64 encoded data but it does
2008 * not allow for QP which I have seen in some messages. So better
2009 * do it here. */
2010 saved_b_offset = b->offset;
2011 saved_b_length = b->length;
2012 state.fp_in = fp_in;
2013 if (!mutt_file_seek(state.fp_in, b->offset, SEEK_SET))
2014 {
2015 return -1;
2016 }
2017 FILE *fp_tmp = mutt_file_mkstemp();
2018 if (!fp_tmp)
2019 {
2020 mutt_perror(_("Can't create temporary file"));
2021 return -1;
2022 }
2023
2024 state.fp_out = fp_tmp;
2025 mutt_decode_attachment(b, &state);
2026 fflush(fp_tmp);
2027 b->length = ftello(state.fp_out);
2028 b->offset = 0;
2029 rewind(fp_tmp);
2030
2031 memset(&state, 0, sizeof(state));
2032 state.fp_in = fp_tmp;
2033 state.fp_out = 0;
2034 *fp_out = mutt_file_mkstemp();
2035 if (!*fp_out)
2036 {
2037 mutt_perror(_("Can't create temporary file"));
2038 mutt_file_fclose(&fp_tmp);
2039 return -1;
2040 }
2041
2042 *b_dec = decrypt_part(b, &state, *fp_out, true, &is_signed);
2043 if (*b_dec)
2044 (*b_dec)->goodsig = is_signed > 0;
2045 b->length = saved_b_length;
2046 b->offset = saved_b_offset;
2047 mutt_file_fclose(&fp_tmp);
2048 rewind(*fp_out);
2049 if (*b_dec && !is_signed && !(*b_dec)->parts && mutt_is_application_smime(*b_dec))
2050 {
2051 /* Assume that this is a opaque signed s/mime message. This is an ugly way
2052 * of doing it but we have anyway a problem with arbitrary encoded S/MIME
2053 * messages: Only the outer part may be encrypted. The entire mime parsing
2054 * should be revamped, probably by keeping the temporary files so that we
2055 * don't need to decrypt them all the time. Inner parts of an encrypted
2056 * part can then point into this file and there won't ever be a need to
2057 * decrypt again. This needs a partial rewrite of the MIME engine. */
2058 struct Body *bb = *b_dec;
2059
2060 saved_b_offset = bb->offset;
2061 saved_b_length = bb->length;
2062 memset(&state, 0, sizeof(state));
2063 state.fp_in = *fp_out;
2064 if (!mutt_file_seek(state.fp_in, bb->offset, SEEK_SET))
2065 {
2066 return -1;
2067 }
2068 FILE *fp_tmp2 = mutt_file_mkstemp();
2069 if (!fp_tmp2)
2070 {
2071 mutt_perror(_("Can't create temporary file"));
2072 return -1;
2073 }
2074
2075 state.fp_out = fp_tmp2;
2076 mutt_decode_attachment(bb, &state);
2077 fflush(fp_tmp2);
2078 bb->length = ftello(state.fp_out);
2079 bb->offset = 0;
2080 rewind(fp_tmp2);
2081 mutt_file_fclose(fp_out);
2082
2083 memset(&state, 0, sizeof(state));
2084 state.fp_in = fp_tmp2;
2085 state.fp_out = 0;
2086 *fp_out = mutt_file_mkstemp();
2087 if (!*fp_out)
2088 {
2089 mutt_perror(_("Can't create temporary file"));
2090 return -1;
2091 }
2092
2093 struct Body *b_tmp = decrypt_part(bb, &state, *fp_out, true, &is_signed);
2094 if (b_tmp)
2095 b_tmp->goodsig = is_signed > 0;
2096 bb->length = saved_b_length;
2097 bb->offset = saved_b_offset;
2098 mutt_file_fclose(&fp_tmp2);
2099 rewind(*fp_out);
2100 mutt_body_free(b_dec);
2101 *b_dec = b_tmp;
2102 }
2103 return *b_dec ? 0 : -1;
2104}
mutt_is_application_smime
SecurityFlags mutt_is_application_smime(struct Body *b)
Does the message use S/MIME?
Definition: crypt.c:609
mutt_body_free
void mutt_body_free(struct Body **ptr)
Free a Body.
Definition: body.c:58
SEC_NO_FLAGS
#define SEC_NO_FLAGS
No flags are set.
Definition: lib.h:83
+ Here is the call graph for this function:

◆ pgp_class_decrypt_mime()

int pgp_class_decrypt_mime ( FILE *  fp_in,
FILE **  fp_out,
struct Body b,
struct Body **  b_dec 
)

Decrypt an encrypted MIME part - Implements CryptModuleSpecs::decrypt_mime() -.

Definition at line 1162 of file pgp.c.

1163{
1164 struct State state = { 0 };
1165 struct Body *p = b;
1166 bool need_decode = false;
1167 LOFF_T saved_offset = 0;
1168 size_t saved_length = 0;
1169 FILE *fp_decoded = NULL;
1170 int rc = 0;
1171
1172 if (mutt_is_valid_multipart_pgp_encrypted(b))
1173 {
1174 b = b->parts->next;
1175 /* Some clients improperly encode the octetstream part. */
1176 if (b->encoding != ENC_7BIT)
1177 need_decode = true;
1178 }
1179 else if (mutt_is_malformed_multipart_pgp_encrypted(b))
1180 {
1181 b = b->parts->next->next;
1182 need_decode = true;
1183 }
1184 else
1185 {
1186 return -1;
1187 }
1188
1189 state.fp_in = fp_in;
1190
1191 if (need_decode)
1192 {
1193 saved_offset = b->offset;
1194 saved_length = b->length;
1195
1196 fp_decoded = mutt_file_mkstemp();
1197 if (!fp_decoded)
1198 {
1199 mutt_perror(_("Can't create temporary file"));
1200 return -1;
1201 }
1202
1203 if (!mutt_file_seek(state.fp_in, b->offset, SEEK_SET))
1204 {
1205 rc = -1;
1206 goto bail;
1207 }
1208 state.fp_out = fp_decoded;
1209
1210 mutt_decode_attachment(b, &state);
1211
1212 fflush(fp_decoded);
1213 b->length = ftello(fp_decoded);
1214 b->offset = 0;
1215 rewind(fp_decoded);
1216 state.fp_in = fp_decoded;
1217 state.fp_out = 0;
1218 }
1219
1220 *fp_out = mutt_file_mkstemp();
1221 if (!*fp_out)
1222 {
1223 mutt_perror(_("Can't create temporary file"));
1224 rc = -1;
1225 goto bail;
1226 }
1227
1228 *b_dec = pgp_decrypt_part(b, &state, *fp_out, p);
1229 if (!*b_dec)
1230 rc = -1;
1231 rewind(*fp_out);
1232
1233bail:
1234 if (need_decode)
1235 {
1236 b->length = saved_length;
1237 b->offset = saved_offset;
1238 mutt_file_fclose(&fp_decoded);
1239 }
1240
1241 return rc;
1242}
pgp_decrypt_part
static struct Body * pgp_decrypt_part(struct Body *a, struct State *state, FILE *fp_out, struct Body *p)
Decrypt part of a PGP message.
Definition: pgp.c:1026
+ Here is the call graph for this function:

◆ smime_class_decrypt_mime()

int smime_class_decrypt_mime ( FILE *  fp_in,
FILE **  fp_out,
struct Body b,
struct Body **  b_dec 
)

Decrypt an encrypted MIME part - Implements CryptModuleSpecs::decrypt_mime() -.

Definition at line 1917 of file smime.c.

1918{
1919 struct State state = { 0 };
1920 LOFF_T tmpoffset = b->offset;
1921 size_t tmplength = b->length;
1922 int rc = -1;
1923
1924 if (!mutt_is_application_smime(b))
1925 return -1;
1926
1927 if (b->parts)
1928 return -1;
1929
1930 state.fp_in = fp_in;
1931 if (!mutt_file_seek(state.fp_in, b->offset, SEEK_SET))
1932 {
1933 return -1;
1934 }
1935
1936 FILE *fp_tmp = mutt_file_mkstemp();
1937 if (!fp_tmp)
1938 {
1939 mutt_perror(_("Can't create temporary file"));
1940 return -1;
1941 }
1942
1943 state.fp_out = fp_tmp;
1944 mutt_decode_attachment(b, &state);
1945 fflush(fp_tmp);
1946 b->length = ftello(state.fp_out);
1947 b->offset = 0;
1948 rewind(fp_tmp);
1949 state.fp_in = fp_tmp;
1950 state.fp_out = 0;
1951
1952 *fp_out = mutt_file_mkstemp();
1953 if (!*fp_out)
1954 {
1955 mutt_perror(_("Can't create temporary file"));
1956 goto bail;
1957 }
1958
1959 *b_dec = smime_handle_entity(b, &state, *fp_out);
1960 if (!*b_dec)
1961 goto bail;
1962
1963 (*b_dec)->goodsig = b->goodsig;
1964 (*b_dec)->badsig = b->badsig;
1965 rc = 0;
1966
1967bail:
1968 b->length = tmplength;
1969 b->offset = tmpoffset;
1970 mutt_file_fclose(&fp_tmp);
1971 if (*fp_out)
1972 rewind(*fp_out);
1973
1974 return rc;
1975}
smime_handle_entity
static struct Body * smime_handle_entity(struct Body *b, struct State *state, FILE *fp_out_file)
Handle type application/pkcs7-mime.
Definition: smime.c:1679
Body::badsig
bool badsig
Bad cryptographic signature (needed to check encrypted s/mime-signatures)
Definition: body.h:43
+ Here is the call graph for this function: