libzypp/html/KeyRing_8h_source.html

 /*---------------------------------------------------------------------\
 |                          ____ _   __ __ ___                          |
 |                         |__  / \ / / . \ . \                         |
 |                           / / \ V /|  _/  _/                         |
 |                          / /__ | | | | | |                           |
 |                         /_____||_| |_| |_|                           |
 |                                                                      |
 \---------------------------------------------------------------------*/
 #ifndef ZYPP_KEYRING_H
 #define ZYPP_KEYRING_H

 #include <iosfwd>
 #include <map>
 #include <list>
 #include <set>
 #include <string>

 #include "zypp/base/ReferenceCounted.h"
 #include "zypp/base/Flags.h"
 #include "zypp/Callback.h"
 #include "zypp/base/PtrTypes.h"
 #include "zypp/Locale.h"
 #include "zypp/PublicKey.h"
 #include "zypp/KeyContext.h"

 namespace zypp
 {

   DEFINE_PTR_TYPE(KeyRing);

   struct KeyRingReport : public callback::ReportBase
   {
     enum KeyTrust
     {
       KEY_DONT_TRUST = 0,
       KEY_TRUST_TEMPORARILY,
       KEY_TRUST_AND_IMPORT
     };

     constexpr static const char * ACCEPT_PACKAGE_KEY_REQUEST = "KeyRingReport/AcceptPackageKey";

     virtual KeyTrust askUserToAcceptKey( const PublicKey &key, const KeyContext &keycontext = KeyContext() );

     virtual void infoVerify( const std::string & file_r, const PublicKeyData & keyData_r, const KeyContext &keycontext = KeyContext() );

     virtual bool askUserToAcceptUnsignedFile( const std::string &file, const KeyContext &keycontext = KeyContext() );

     virtual bool askUserToAcceptUnknownKey( const std::string &file, const std::string &id, const KeyContext &keycontext = KeyContext() );

     virtual bool askUserToAcceptVerificationFailed( const std::string &file, const PublicKey &key, const KeyContext &keycontext = KeyContext() );

     bool askUserToAcceptPackageKey( const PublicKey &key_r, const KeyContext &keycontext_r = KeyContext() );

   };

   struct KeyRingSignals : public callback::ReportBase
   {
     virtual void trustedKeyAdded( const PublicKey &/*key*/ )
     {}
     virtual void trustedKeyRemoved( const PublicKey &/*key*/ )
     {}
   };

   class KeyRingException : public Exception
    {
      public:
        KeyRingException()
        : Exception( "Bad Key Exception" )
        {}
        KeyRingException( const std::string & msg_r )
        : Exception( msg_r )
        {}
        virtual ~KeyRingException() throw() {};
    };

   //
   //    CLASS NAME : KeyRing
   //
   class KeyRing : public base::ReferenceCounted, private base::NonCopyable
   {
     friend std::ostream & operator<<( std::ostream & str, const KeyRing & obj );

     public:
       enum DefaultAcceptBits
       {
         ACCEPT_NOTHING             = 0x0000,
         ACCEPT_UNSIGNED_FILE       = 0x0001,
         ACCEPT_UNKNOWNKEY          = 0x0002,
         TRUST_KEY_TEMPORARILY      = 0x0004,
         TRUST_AND_IMPORT_KEY       = 0x0008,
         ACCEPT_VERIFICATION_FAILED = 0x0010,
       };
       ZYPP_DECLARE_FLAGS( DefaultAccept, DefaultAcceptBits );

       static DefaultAccept defaultAccept();

       static void setDefaultAccept( DefaultAccept value_r );

   public:
     class Impl;

   public:
     KeyRing(const Pathname &baseTmpDir);

     void importKey( const PublicKey &key, bool trusted = false);

     void multiKeyImport( const Pathname & keyfile_r, bool trusted_r = false );

     void dumpTrustedPublicKey( const std::string &id, std::ostream &stream )
     { dumpPublicKey(id, true, stream); }

     void dumpUntrustedPublicKey( const std::string &id, std::ostream &stream )
     { dumpPublicKey(id, false, stream); }

     void dumpPublicKey( const std::string &id, bool trusted, std::ostream &stream );

     PublicKey exportPublicKey( const PublicKeyData & keyData );

     PublicKey exportTrustedPublicKey( const PublicKeyData & keyData );

     std::string readSignatureKeyId( const Pathname &signature );

     bool isKeyTrusted( const std::string &id );

     bool isKeyKnown( const std::string &id );

     void deleteKey( const std::string &id, bool trusted =  false );

     std::list<PublicKey> publicKeys();

     std::list<PublicKey> trustedPublicKeys();

     std::list<PublicKeyData> publicKeyData();

     std::list<PublicKeyData> trustedPublicKeyData();

     PublicKeyData trustedPublicKeyData( const std::string &id );

     bool verifyFileSignatureWorkflow( const Pathname &file, const std::string &filedesc, const Pathname &signature, bool & sigValid_r, const KeyContext &keycontext = KeyContext());
     bool verifyFileSignatureWorkflow( const Pathname &file, const std::string filedesc, const Pathname &signature, const KeyContext &keycontext = KeyContext());

     bool verifyFileSignature( const Pathname &file, const Pathname &signature );

     bool verifyFileTrustedSignature( const Pathname &file, const Pathname &signature );

     ~KeyRing();

   private:
     RW_pointer<Impl> _pimpl;
   };

   inline std::ostream & operator<<( std::ostream & str, const KeyRing & /*obj*/ )
   {
     //return str << obj.asString();
     return str;
   }

   ZYPP_DECLARE_OPERATORS_FOR_FLAGS( KeyRing::DefaultAccept );


   namespace target
   {
     namespace rpm
     {
       struct KeyRingSignals : public ::zypp::KeyRingSignals
       {};
     }
   }

 } // namespace zypp
 #endif // ZYPP_KEYRING_H
zypp::KeyRingReport::KEY_TRUST_AND_IMPORT
Import the key.
Definition: KeyRing.h:70

zypp::KeyRing::importKey
void importKey(const PublicKey &key, bool trusted=false)
imports a key from a file.
Definition: KeyRing.cc:613

zypp::KeyRing::exportTrustedPublicKey
PublicKey exportTrustedPublicKey(const PublicKeyData &keyData)
Export a trusted public key identified by its key data.
Definition: KeyRing.cc:658

zypp::KeyRing::dumpTrustedPublicKey
void dumpTrustedPublicKey(const std::string &id, std::ostream &stream)
Definition: KeyRing.h:205

zypp::KeyRing
Gpg key handling.
Definition: KeyRing.h:154

Impl
Helper filtering the files offered by a RepomdFileReader.

zypp::KeyRingReport::KEY_TRUST_TEMPORARILY
This basically means, we knew the key, but it was not trusted.
Definition: KeyRing.h:61

zypp::KeyRing::exportPublicKey
PublicKey exportPublicKey(const PublicKeyData &keyData)
Export a public key identified by its key data.
Definition: KeyRing.cc:655

zypp::KeyRingException::KeyRingException
KeyRingException(const std::string &msg_r)
Ctor taking message.
Definition: KeyRing.h:140

zypp::PublicKeyData
Class representing one GPG Public Keys data.
Definition: PublicKey.h:139

zypp::KeyRing::TRUST_KEY_TEMPORARILY
Definition: KeyRing.h:175

zypp::KeyRing::dumpPublicKey
void dumpPublicKey(const std::string &id, bool trusted, std::ostream &stream)
Definition: KeyRing.cc:652

zypp::KeyRing::trustedPublicKeys
std::list< PublicKey > trustedPublicKeys()
Get a list of trusted public keys in the keyring (incl.
Definition: KeyRing.cc:628

zypp::ZYPP_DECLARE_OPERATORS_FOR_FLAGS
ZYPP_DECLARE_OPERATORS_FOR_FLAGS(DiskUsageCounter::MountPoint::HintFlags)

zypp::KeyRing::ACCEPT_UNSIGNED_FILE
Definition: KeyRing.h:173

zypp::KeyRingReport::askUserToAcceptUnsignedFile
virtual bool askUserToAcceptUnsignedFile(const std::string &file, const KeyContext &keycontext=KeyContext())
Definition: KeyRing.cc:63

zypp::KeyRing::TRUST_AND_IMPORT_KEY
Definition: KeyRing.h:176

str
String related utilities and Regular expression matching.

zypp::KeyRing::KeyRing
KeyRing(const Pathname &baseTmpDir)
Default ctor.
Definition: KeyRing.cc:605

zypp::KeyRing::trustedPublicKeyData
std::list< PublicKeyData > trustedPublicKeyData()
Get a list of trusted public key data in the keyring (key data only)
Definition: KeyRing.cc:634

zypp::KeyRing::verifyFileSignatureWorkflow
bool verifyFileSignatureWorkflow(const Pathname &file, const std::string &filedesc, const Pathname &signature, bool &sigValid_r, const KeyContext &keycontext=KeyContext())
Follows a signature verification interacting with the user.
Definition: KeyRing.cc:640

zypp::KeyRingReport::askUserToAcceptPackageKey
bool askUserToAcceptPackageKey(const PublicKey &key_r, const KeyContext &keycontext_r=KeyContext())
Ask user to trust and/or import the package key to trusted keyring, using ReportBase::report.
Definition: KeyRing.cc:82

Locale.h

zypp::KeyRingReport::askUserToAcceptUnknownKey
virtual bool askUserToAcceptUnknownKey(const std::string &file, const std::string &id, const KeyContext &keycontext=KeyContext())
we DONT know the key, only its id, but we have never seen it, the difference with trust key is that i...
Definition: KeyRing.cc:76

zypp::callback::ReportBase
Definition: Callback.h:149

zypp::KeyRingException::KeyRingException
KeyRingException()
Ctor taking message.
Definition: KeyRing.h:134

zypp::target::rpm::KeyRingSignals
Internal connection to rpm database.
Definition: KeyRing.h:336

PublicKey.h

zypp::KeyRingReport::infoVerify
virtual void infoVerify(const std::string &file_r, const PublicKeyData &keyData_r, const KeyContext &keycontext=KeyContext())
Informal callback showing the trusted key that will be used for verification.
Definition: KeyRing.cc:60

zypp::KeyRingSignals
Definition: KeyRing.h:120

zypp::KeyRing::ZYPP_DECLARE_FLAGS
ZYPP_DECLARE_FLAGS(DefaultAccept, DefaultAcceptBits)

zypp::KeyRing::ACCEPT_UNKNOWNKEY
Definition: KeyRing.h:174

ReferenceCounted.h

zypp::KeyRingReport::KeyTrust
KeyTrust
User reply options for the askUserToTrustKey callback.
Definition: KeyRing.h:51

PtrTypes.h

zypp::KeyRing::~KeyRing
~KeyRing()
Dtor.
Definition: KeyRing.cc:609

Callback.h

zypp::base::NonCopyable
boost::noncopyable NonCopyable
Ensure derived classes cannot be copied.
Definition: NonCopyable.h:26

zypp::KeyRing::setDefaultAccept
static void setDefaultAccept(DefaultAccept value_r)
Set the active accept bits.
Definition: KeyRing.cc:54

zypp::KeyRing::dumpUntrustedPublicKey
void dumpUntrustedPublicKey(const std::string &id, std::ostream &stream)
Definition: KeyRing.h:208

zypp::KeyContext
Definition: KeyContext.h:8

zypp::DEFINE_PTR_TYPE
DEFINE_PTR_TYPE(Application)

zypp::KeyRing::operator<<
std::ostream & operator<<(std::ostream &str, const KeyRing &)
Definition: KeyRing.h:320

zypp::KeyRingSignals::trustedKeyAdded
virtual void trustedKeyAdded(const PublicKey &)
Definition: KeyRing.h:122

zypp::base::ReferenceCounted
Base class for reference counted objects.
Definition: ReferenceCounted.h:33

zypp::KeyRing::ACCEPT_VERIFICATION_FAILED
Definition: KeyRing.h:177

zypp::KeyRing::isKeyKnown
bool isKeyKnown(const std::string &id)
true if the key id is knows, that means at least exist on the untrusted keyring
Definition: KeyRing.cc:664

zypp::KeyRing::ACCEPT_NOTHING
Definition: KeyRing.h:172

zypp::KeyRingReport::ACCEPT_PACKAGE_KEY_REQUEST
static constexpr const char * ACCEPT_PACKAGE_KEY_REQUEST
Definition: KeyRing.h:73

zypp::KeyRing::multiKeyImport
void multiKeyImport(const Pathname &keyfile_r, bool trusted_r=false)
Initial import from RpmDb.
Definition: KeyRing.cc:616

zypp::KeyRingReport::KEY_DONT_TRUST
User has chosen not to trust the key.
Definition: KeyRing.h:56

KeyContext.h

zypp::KeyRing::DefaultAcceptBits
DefaultAcceptBits
DefaultAccept flags (
Definition: KeyRing.h:170

zypp::KeyRingReport::askUserToAcceptKey
virtual KeyTrust askUserToAcceptKey(const PublicKey &key, const KeyContext &keycontext=KeyContext())
Ask user to trust and/or import the key to trusted keyring.
Definition: KeyRing.cc:67

zypp::KeyRing::defaultAccept
static DefaultAccept defaultAccept()
Get the active accept bits.
Definition: KeyRing.cc:51

zypp::KeyRing::_pimpl
RW_pointer< Impl > _pimpl
Pointer to implementation.
Definition: KeyRing.h:315

zypp::PublicKey
Class representing one GPG Public Key (PublicKeyData + ASCII armored in a tempfile).
Definition: PublicKey.h:272

zypp::KeyRing::publicKeyData
std::list< PublicKeyData > publicKeyData()
Get a list of public key data in the keyring (key data only)
Definition: KeyRing.cc:631

zypp::Exception
Base class for Exception.
Definition: Exception.h:145

zypp::KeyRingReport
Callbacks from signature verification workflow.
Definition: KeyRing.h:44

zypp::RW_pointer< Impl >

zypp::KeyRingException
Definition: KeyRing.h:128

zypp::KeyRing::deleteKey
void deleteKey(const std::string &id, bool trusted=false)
removes a key from the keyring.
Definition: KeyRing.cc:622

zypp::KeyRing::operator<<
friend std::ostream & operator<<(std::ostream &str, const KeyRing &obj)

zypp::KeyRing::verifyFileTrustedSignature
bool verifyFileTrustedSignature(const Pathname &file, const Pathname &signature)
Definition: KeyRing.cc:649

Flags.h

zypp::KeyRing::isKeyTrusted
bool isKeyTrusted(const std::string &id)
true if the key id is trusted
Definition: KeyRing.cc:661

zypp::filesystem::Pathname
Pathname.
Definition: Pathname.h:43

zypp
Easy-to use interface to the ZYPP dependency resolver.
Definition: CodePitfalls.doc:1

zypp::KeyRingSignals::trustedKeyRemoved
virtual void trustedKeyRemoved(const PublicKey &)
Definition: KeyRing.h:124

zypp::KeyRing::readSignatureKeyId
std::string readSignatureKeyId(const Pathname &signature)
reads the public key id from a signature
Definition: KeyRing.cc:619

zypp::KeyRing::verifyFileSignature
bool verifyFileSignature(const Pathname &file, const Pathname &signature)
Verifies a file against a signature, with no user interaction.
Definition: KeyRing.cc:646

zypp::KeyRingException::~KeyRingException
virtual ~KeyRingException()
Dtor.
Definition: KeyRing.h:144

zypp::KeyRingReport::askUserToAcceptVerificationFailed
virtual bool askUserToAcceptVerificationFailed(const std::string &file, const PublicKey &key, const KeyContext &keycontext=KeyContext())
The file filedesc is signed but the verification failed.
Definition: KeyRing.cc:79

zypp::KeyRing::publicKeys
std::list< PublicKey > publicKeys()
Get a list of public keys in the keyring (incl.
Definition: KeyRing.cc:625