X-Git-Url: http://git.madism.org/?p=apps%2Fmadmutt.git;a=blobdiff_plain;f=mutt_ssl_gnutls.c;h=f6d8b2d6c6f0142099a3dddbf871543e67cddce6;hp=1284aa39b2494596a9946a128bcb88cf28705df7;hb=1dc7032b59cc5b91d70076ed228bda8caf65a7f3;hpb=18ea5e8b861632627335b8d94787c742dbf5f567 diff --git a/mutt_ssl_gnutls.c b/mutt_ssl_gnutls.c index 1284aa3..f6d8b2d 100644 --- a/mutt_ssl_gnutls.c +++ b/mutt_ssl_gnutls.c @@ -12,21 +12,24 @@ # include "config.h" #endif +#ifdef USE_GNUTLS + #include #include #ifdef HAVE_GNUTLS_OPENSSL_H #include #endif +#include +#include + #include "mutt.h" #include "mutt_socket.h" #include "mutt_curses.h" #include "mutt_menu.h" #include "mutt_ssl.h" -#include "lib/mem.h" #include "lib/str.h" -#include "lib/intl.h" #include "lib/rx.h" typedef struct _tlssockdata { @@ -65,7 +68,7 @@ static int tls_init (void) return 0; } -int mutt_gnutls_socket_setup (CONNECTION * conn) +int mutt_ssl_socket_setup (CONNECTION * conn) { if (tls_init () < 0) return -1; @@ -131,7 +134,7 @@ static int tls_socket_open (CONNECTION * conn) return 0; } -int mutt_gnutls_starttls (CONNECTION * conn) +int mutt_ssl_starttls (CONNECTION * conn) { if (tls_init () < 0) return -1; @@ -155,11 +158,11 @@ static int tls_negotiate (CONNECTION * conn) tlssockdata *data; int err; - data = (tlssockdata *) safe_calloc (1, sizeof (tlssockdata)); + data = p_new(tlssockdata, 1); conn->sockdata = data; err = gnutls_certificate_allocate_credentials (&data->xcred); if (err < 0) { - FREE (&conn->sockdata); + p_delete(&conn->sockdata); mutt_error (_("gnutls_certificate_allocate_credentials: %s"), gnutls_strerror (err)); mutt_sleep (2); @@ -256,7 +259,7 @@ static int tls_negotiate (CONNECTION * conn) fail: gnutls_certificate_free_credentials (data->xcred); gnutls_deinit (data->state); - FREE (&conn->sockdata); + p_delete(&conn->sockdata); return -1; } @@ -269,7 +272,7 @@ static int tls_socket_close (CONNECTION * conn) gnutls_certificate_free_credentials (data->xcred); gnutls_deinit (data->state); - FREE(&conn->sockdata); + p_delete(&conn->sockdata); } return raw_socket_close (conn); @@ -304,7 +307,7 @@ static int tls_compare_certificates (const gnutls_datum * peercert) return 0; b64_data.size = filestat.st_size + 1; - b64_data_data = (unsigned char *) safe_calloc (1, b64_data.size); + b64_data_data = p_new(unsigned char, b64_data.size); b64_data_data[b64_data.size - 1] = '\0'; b64_data.data = b64_data_data; @@ -319,12 +322,12 @@ static int tls_compare_certificates (const gnutls_datum * peercert) do { ret = gnutls_pem_base64_decode_alloc (NULL, &b64_data, &cert); if (ret != 0) { - FREE (&b64_data_data); + p_delete(&b64_data_data); return 0; } - ptr = (unsigned char *) strstr (b64_data.data, CERT_SEP) + 1; - ptr = (unsigned char *) strstr (ptr, CERT_SEP); + ptr = (unsigned char *) strstr ((char*) b64_data.data, CERT_SEP) + 1; + ptr = (unsigned char *) strstr ((char*) ptr, CERT_SEP); b64_data.size = b64_data.size - (ptr - b64_data.data); b64_data.data = ptr; @@ -333,7 +336,7 @@ static int tls_compare_certificates (const gnutls_datum * peercert) if (memcmp (cert.data, peercert->data, cert.size) == 0) { /* match found */ gnutls_free (cert.data); - FREE (&b64_data_data); + p_delete(&b64_data_data); return 1; } } @@ -342,7 +345,7 @@ static int tls_compare_certificates (const gnutls_datum * peercert) } while (ptr != NULL); /* no match found */ - FREE (&b64_data_data); + p_delete(&b64_data_data); return 0; } @@ -412,10 +415,10 @@ static int tls_check_stored_hostname (const gnutls_datum * cert, if (regexec (&preg, linestr, 3, pmatch, 0) == 0) { linestr[pmatch[1].rm_eo] = '\0'; linestr[pmatch[2].rm_eo] = '\0'; - if (mutt_strcmp (linestr + pmatch[1].rm_so, hostname) == 0 && - mutt_strcmp (linestr + pmatch[2].rm_so, buf) == 0) { + if (str_cmp (linestr + pmatch[1].rm_so, hostname) == 0 && + str_cmp (linestr + pmatch[2].rm_so, buf) == 0) { regfree (&preg); - FREE(&linestr); + p_delete(&linestr); fclose (fp); return 1; } @@ -449,10 +452,9 @@ static int tls_check_certificate (CONNECTION * conn) MUTTMENU *menu; int done, row, i, ret; FILE *fp; - gnutls_x509_dn dn; time_t t; const gnutls_datum *cert_list; - int cert_list_size = 0; + unsigned int cert_list_size = 0; gnutls_certificate_status certstat; char datestr[30]; gnutls_x509_crt cert; @@ -486,7 +488,7 @@ static int tls_check_certificate (CONNECTION * conn) /* We only support X.509 certificates (not OpenPGP) at the moment */ if (gnutls_certificate_type_get (state) != GNUTLS_CRT_X509) { - mutt_error (_("Error certificate is not X.509")); + mutt_error (_("Certificate is not X.509")); mutt_sleep (2); return 0; } @@ -584,9 +586,9 @@ static int tls_check_certificate (CONNECTION * conn) /* interactive check from user */ menu = mutt_new_menu (); menu->max = 25; - menu->dialog = (char **) safe_calloc (1, menu->max * sizeof (char *)); + menu->dialog = p_new(char*, menu->max); for (i = 0; i < menu->max; i++) - menu->dialog[i] = (char *) safe_calloc (1, SHORT_STRING * sizeof (char)); + menu->dialog[i] = p_new(char, SHORT_STRING); row = 0; strfcpy (menu->dialog[row], _("This certificate belongs to:"), @@ -748,6 +750,7 @@ static int tls_check_certificate (CONNECTION * conn) menu->help = helpstr; done = 0; + set_option (OPTUNBUFFEREDINPUT); while (!done) { switch (mutt_menuLoop (menu)) { case -1: /* abort */ @@ -790,7 +793,10 @@ static int tls_check_certificate (CONNECTION * conn) break; } } + unset_option (OPTUNBUFFEREDINPUT); mutt_menuDestroy (&menu); gnutls_x509_crt_deinit (cert); return (done == 2); } + +#endif /* USE_GNUTLS */