git@vger.kernel.org mailing list mirror (one of many)
 help / color / mirror / code / Atom feed
blob cee0dfe401a62e2df8bb612b05cf093a6e6b8206 2455 bytes (raw)
name: gpg-interface.h 	 # note: path name is non-authoritative(*)
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83

 
#ifndef GPG_INTERFACE_H
#define GPG_INTERFACE_H

#define GPG_VERIFY_VERBOSE		1
#define GPG_VERIFY_RAW			2
#define GPG_VERIFY_OMIT_STATUS	4

struct signature_check {
	char *payload;
	char *gpg_output;
	char *gpg_status;

	/*
	 * possible "result":
	 * 0 (not checked)
	 * N (checked but no further result)
	 * U (untrusted good)
	 * G (good)
	 * B (bad)
	 */
	char result;
	char *signer;
	char *key;
};

struct signing_tool {
	char *name;
	char *program;
	struct string_list pemtype;
	struct signing_tool *next;
};

void signature_check_clear(struct signature_check *sigc);

/*
 * Look for signed content (e.g. a signed tag object), whose
 * payload is followed by a detached signature on it.  Return the
 * offset where the embedded detached signature begins, or the end of
 * the data when there is no such signature.
 *
 * If out_tool is non-NULL and a signature is found, it will be
 * pointed at the signing_tool that corresponds to the found
 * signature type.
 */
size_t parse_signature(const char *buf, unsigned long size,
		       const struct signing_tool **out_tool);

void parse_gpg_output(struct signature_check *);

/*
 * Create a detached signature for the contents of "buffer" and append
 * it after "signature"; "buffer" and "signature" can be the same
 * strbuf instance, which would cause the detached signature appended
 * at the end.
 */
int sign_buffer(struct strbuf *buffer, struct strbuf *signature,
		const char *signing_key);

/*
 * Run "gpg" to see if the payload matches the detached signature.
 * gpg_output, when set, receives the diagnostic output from GPG.
 * gpg_status, when set, receives the status output from GPG.
 *
 * Typically the "tool" argument should come from a previous call to
 * parse_signature(). If it's NULL, then verify_signed_buffer() will
 * try to choose the appropriate tool based on the contents of the
 * "signature" buffer.
 */
int verify_signed_buffer(const char *payload, size_t payload_size,
			 const char *signature, size_t signature_size,
			 struct strbuf *gpg_output, struct strbuf *gpg_status,
			 const struct signing_tool *tool);

int git_gpg_config(const char *, const char *, void *);
void set_signing_key(const char *);
const char *get_signing_key(void);
int check_signature(const char *payload, size_t plen,
		    const char *signature, size_t slen,
		    struct signature_check *sigc);
void print_signature_buffer(const struct signature_check *sigc,
			    unsigned flags);

#endif

debug log:

solving cee0dfe401 ...
found cee0dfe401 in https://public-inbox.org/git/20180409204129.43537-9-mastahyeti@gmail.com/
found a5e6517ae6 in https://80x24.org/mirrors/git.git
preparing index
index prepared:
100644 a5e6517ae67ea5fa3f79265517381d58d99fba18	gpg-interface.h

applying [1/1] https://public-inbox.org/git/20180409204129.43537-9-mastahyeti@gmail.com/
diff --git a/gpg-interface.h b/gpg-interface.h
index a5e6517ae6..cee0dfe401 100644

Checking patch gpg-interface.h...
Applied patch gpg-interface.h cleanly.

index at:
100644 cee0dfe401a62e2df8bb612b05cf093a6e6b8206	gpg-interface.h

(*) Git path names are given by the tree(s) the blob belongs to.
    Blobs themselves have no identifier aside from the hash of its contents.^
Code repositories for project(s) associated with this public inbox

	https://80x24.org/mirrors/git.git

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).