robin.thoni
/
docker-roundcube-server
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 10 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
2 Branches
Tree: 8ddc133341
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8ddc133341'
${ noResults }
docker-roundcube-server/roundcube/roundcubemail-1.2.2/plugins/enigma/lib/enigma_driver_phpssl.php

enigma_driver_phpssl.php 6.7KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233 
  1. <?php

  2. 

  3. /**

  4.  +-------------------------------------------------------------------------+

  5.  | S/MIME driver for the Enigma Plugin                                     |

  6.  |                                                                         |

  7.  | Copyright (C) 2010-2015 The Roundcube Dev Team                          |

  8.  |                                                                         |

  9.  | Licensed under the GNU General Public License version 3 or              |

  10.  | any later version with exceptions for skins & plugins.                  |

  11.  | See the README file for a full license statement.                       |

  12.  |                                                                         |

  13.  +-------------------------------------------------------------------------+

  14.  | Author: Aleksander Machniak <alec@alec.pl>                              |

  15.  +-------------------------------------------------------------------------+

  16. */

  17. 

  18. class enigma_driver_phpssl extends enigma_driver

  19. {

  20.     private $rc;

  21.     private $homedir;

  22.     private $user;

  23. 

  24.     function __construct($user)

  25.     {

  26.         $rcmail = rcmail::get_instance();

  27.         $this->rc   = $rcmail;

  28.         $this->user = $user;

  29.     }

  30. 

  31.     /**

  32.      * Driver initialization and environment checking.

  33.      * Should only return critical errors.

  34.      *

  35.      * @return mixed NULL on success, enigma_error on failure

  36.      */

  37.     function init()

  38.     {

  39.         $homedir = $this->rc->config->get('enigma_smime_homedir', INSTALL_PATH . '/plugins/enigma/home');

  40. 

  41.         if (!$homedir)

  42.             return new enigma_error(enigma_error::INTERNAL,

  43.                 "Option 'enigma_smime_homedir' not specified");

  44. 

  45.         // check if homedir exists (create it if not) and is readable

  46.         if (!file_exists($homedir))

  47.             return new enigma_error(enigma_error::INTERNAL,

  48.                 "Keys directory doesn't exists: $homedir");

  49.         if (!is_writable($homedir))

  50.             return new enigma_error(enigma_error::INTERNAL,

  51.                 "Keys directory isn't writeable: $homedir");

  52. 

  53.         $homedir = $homedir . '/' . $this->user;

  54. 

  55.         // check if user's homedir exists (create it if not) and is readable

  56.         if (!file_exists($homedir))

  57.             mkdir($homedir, 0700);

  58. 

  59.         if (!file_exists($homedir))

  60.             return new enigma_error(enigma_error::INTERNAL,

  61.                 "Unable to create keys directory: $homedir");

  62.         if (!is_writable($homedir))

  63.             return new enigma_error(enigma_error::INTERNAL,

  64.                 "Unable to write to keys directory: $homedir");

  65. 

  66.         $this->homedir = $homedir;

  67. 

  68.     }

  69. 

  70.     function encrypt($text, $keys)

  71.     {

  72.     }

  73. 

  74.     function decrypt($text, $keys = array())

  75.     {

  76.     }

  77. 

  78.     function sign($text, $key, $passwd, $mode = null)

  79.     {

  80.     }

  81. 

  82.     function verify($struct, $message)

  83.     {

  84.         // use common temp dir

  85.         $temp_dir  = $this->rc->config->get('temp_dir');

  86.         $msg_file  = tempnam($temp_dir, 'rcmMsg');

  87.         $cert_file = tempnam($temp_dir, 'rcmCert');

  88. 

  89.         $fh = fopen($msg_file, "w");

  90.         if ($struct->mime_id) {

  91.             $message->get_part_body($struct->mime_id, false, 0, $fh);

  92.         }

  93.         else {

  94.             $this->rc->storage->get_raw_body($message->uid, $fh);

  95.         }

  96.         fclose($fh);

  97. 

  98.         // @TODO: use stored certificates

  99. 

  100.         // try with certificate verification

  101.         $sig      = openssl_pkcs7_verify($msg_file, 0, $cert_file);

  102.         $validity = true;

  103. 

  104.         if ($sig !== true) {

  105.             // try without certificate verification

  106.             $sig      = openssl_pkcs7_verify($msg_file, PKCS7_NOVERIFY, $cert_file);

  107.             $validity = enigma_error::UNVERIFIED;

  108.         }

  109. 

  110.         if ($sig === true) {

  111.             $sig = $this->parse_sig_cert($cert_file, $validity);

  112.         }

  113.         else {

  114.             $errorstr = $this->get_openssl_error();

  115.             $sig = new enigma_error(enigma_error::INTERNAL, $errorstr);

  116.         }

  117. 

  118.         // remove temp files

  119.         @unlink($msg_file);

  120.         @unlink($cert_file);

  121. 

  122.         return $sig;

  123.     }

  124. 

  125.     public function import($content, $isfile=false)

  126.     {

  127.     }

  128. 

  129.     public function export($key, $with_private = false)

  130.     {

  131.     }

  132. 

  133.     public function list_keys($pattern='')

  134.     {

  135.     }

  136. 

  137.     public function get_key($keyid)

  138.     {

  139.     }

  140. 

  141.     public function gen_key($data)

  142.     {

  143.     }

  144. 

  145.     public function delete_key($keyid)

  146.     {

  147.     }

  148. 

  149.     public function delete_privkey($keyid)

  150.     {

  151.     }

  152. 

  153.     public function delete_pubkey($keyid)

  154.     {

  155.     }

  156. 

  157.     /**

  158.      * Converts Crypt_GPG_Key object into Enigma's key object

  159.      *

  160.      * @param Crypt_GPG_Key Key object

  161.      *

  162.      * @return enigma_key Key object

  163.      */

  164.     private function parse_key($key)

  165.     {

  166. /*

  167.         $ekey = new enigma_key();

  168. 

  169.         foreach ($key->getUserIds() as $idx => $user) {

  170.             $id = new enigma_userid();

  171.             $id->name    = $user->getName();

  172.             $id->comment = $user->getComment();

  173.             $id->email   = $user->getEmail();

  174.             $id->valid   = $user->isValid();

  175.             $id->revoked = $user->isRevoked();

  176. 

  177.             $ekey->users[$idx] = $id;

  178.         }

  179.         

  180.         $ekey->name = trim($ekey->users[0]->name . ' <' . $ekey->users[0]->email . '>');

  181. 

  182.         foreach ($key->getSubKeys() as $idx => $subkey) {

  183.                 $skey = new enigma_subkey();

  184.                 $skey->id          = $subkey->getId();

  185.                 $skey->revoked     = $subkey->isRevoked();

  186.                 $skey->created     = $subkey->getCreationDate();

  187.                 $skey->expires     = $subkey->getExpirationDate();

  188.                 $skey->fingerprint = $subkey->getFingerprint();

  189.                 $skey->has_private = $subkey->hasPrivate();

  190. 

  191.                 $ekey->subkeys[$idx] = $skey;

  192.         };

  193.         

  194.         $ekey->id = $ekey->subkeys[0]->id;

  195.         

  196.         return $ekey;

  197. */

  198.     }

  199. 

  200.     private function get_openssl_error()

  201.     {

  202.         $tmp = array();

  203.         while ($errorstr = openssl_error_string()) {

  204.             $tmp[] = $errorstr;

  205.         }

  206. 

  207.         return join("\n", array_values($tmp));

  208.     }

  209. 

  210.     private function parse_sig_cert($file, $validity)

  211.     {

  212.         $cert = openssl_x509_parse(file_get_contents($file));

  213. 

  214.         if (empty($cert) || empty($cert['subject'])) {

  215.             $errorstr = $this->get_openssl_error();

  216.             return new enigma_error(enigma_error::INTERNAL, $errorstr);

  217.         }

  218. 

  219.         $data = new enigma_signature();

  220. 

  221.         $data->id          = $cert['hash']; //?

  222.         $data->valid       = $validity;

  223.         $data->fingerprint = $cert['serialNumber'];

  224.         $data->created     = $cert['validFrom_time_t'];

  225.         $data->expires     = $cert['validTo_time_t'];

  226.         $data->name        = $cert['subject']['CN'];

  227. //        $data->comment     = '';

  228.         $data->email       = $cert['subject']['emailAddress'];

  229. 

  230.         return $data;

  231.     }

  232. 

  233. }