Home Explore Help
Sign In
epsylon
/
Elgg-Lorea-Hydra
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0
Tree: e48014c2e0
Branches Tags
Elgg-Lorea-H...
/
mod
/
elggpg
/
lib
/
elggpg.php

elggpg.php 4.6 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * ElggPG -- Helpers library
    4. 

  4.  *
    5. 

  5.  * @package        Lorea
    6. 

  6.  * @subpackage     ElggPG
    7. 

  7.  *
    8. 

  8.  * Copyright 2011-2013 Lorea Faeries <federation@lorea.org>
    9. 

  9.  *
    10. 

  10.  * This file is part of the ElggPG plugin for Elgg.
    11. 

  11.  *
    12. 

  12.  * ElggPG is free software: you can redistribute it and/or modify it
    13. 

  13.  * under the terms of the GNU Affero General Public License as
    14. 

  14.  * published by the Free Software Foundation, either version 3 of the
    15. 

  15.  * License, or (at your option) any later version.
    16. 

  16.  *
    17. 

  17.  * ElggPG is distributed in the hope that it will be useful, but
    18. 

  18.  * WITHOUT ANY WARRANTY; without even the implied warranty of
    19. 

  19.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
    20. 

  20.  * Affero General Public License for more details.
    21. 

  21.  *
    22. 

  22.  * You should have received a copy of the GNU Affero General Public
    23. 

  23.  * License along with this program. If not, see
    24. 

  24.  * <http://www.gnu.org/licenses/>.
    25. 

  25.  */
    26. 

  26. 

  27. putenv("GNUPGHOME=" . elggpg_get_gpg_home());
    28. 

  28. 

  29. function elggpg_get_gpg_home() {
    30. 

  30. 	// try to find location of settings from environment file,
    31. 

  31. 	// which means the gpg directory goes at the same level.
    32. 

  32. 	$elgg_config = getenv("elgg_config");
    33. 

  33. 	if ($elgg_config && is_dir(dirname($elgg_config)."/gpg")) {
    34. 

  34. 		return dirname($elgg_config)."/gpg";
    35. 

  35. 	}
    36. 

  36. 

  37. 	// otherwise create a gpg folder at the data folder
    38. 

  38. 	// and store the keys there
    39. 

  39. 	$gpg_path = elgg_get_data_path() . "gpg/";
    40. 

  40. 	if (!file_exists($gpg_path)) {
    41. 

  41. 		mkdir($gpg_path);
    42. 

  42. 	}
    43. 

  43. 	return $gpg_path;
    44. 

  44. }
    45. 

  45. 

  46. function elggpg_import_key($public_key, $user) {
    47. 

  47. 	$gpg = new gnupg();
    48. 

  48. 	$info = $gpg->import($public_key);
    49. 

  49. 	$new_fp = $info['fingerprint'];
    50. 

  50. 

  51. 	$user_fp = current(elgg_get_metadata(array(
    52. 

  52. 		'guid' => $user->guid,
    53. 

  53. 		'metadata_name' => 'openpgp_publickey',
    54. 

  54. 	)));
    55. 

  55. 	$access_id = ACCESS_LOGGED_IN;
    56. 

  56. 

  57. 	if ($user_fp && $user_fp->value != $new_fp) {
    58. 

  58. 		update_metadata($user_fp->id, $user_fp->name, $new_fp, 'text', $user->guid, $access_id);
    59. 

  59. 		$info['imported'] = 1;
    60. 

  60. 	} elseif (!$user_fp) {
    61. 

  61. 		create_metadata($user->guid, "openpgp_publickey", $new_fp, 'text', $user->guid, $access_id);
    62. 

  62. 		$info['imported'] = 1;
    63. 

  63. 	}
    64. 

  64. 

  65. 	$info['key_id'] = elggpg_fp2keyid($new_fp);
    66. 

  66. 

  67. 	return $info;
    68. 

  68. }
    69. 

  69. 

  70. function elggpg_fp2keyid($fp) {
    71. 

  71. 	return substr($fp, count($fp)-17, 16);
    72. 

  72. }
    73. 

  73. 

  74. function elggpg_import_report($info) {
    75. 

  75. 	$yes = elgg_echo('option:yes');
    76. 

  76. 	$no  = elgg_echo('option:no');
    77. 

  77. 	$search  = "\\n";
    78. 

  78. 	$replace = "<br />";
    79. 

  79. 	return str_replace($search, $replace, elgg_echo("elggpg:import:report", array(
    80. 

  80. 		$info['imported']        ? $yes : $no,
    81. 

  81. 		$info['unchanged']       ? $yes : $no,
    82. 

  82. 		$info['newuserids']      ? $yes : $no,
    83. 

  83. 		$info['newsubkeys']      ? $yes : $no,
    84. 

  84. 		$info['secretimported']  ? $yes : $no,
    85. 

  85. 		$info['secretunchanged'] ? $yes : $no,
    86. 

  86. 		$info['newsignatures']   ? $yes : $no,
    87. 

  87. 		$info['skippedkeys']     ? $yes : $no,
    88. 

  88. 	)));
    89. 

  89. }
    90. 

  90. 

  91. function elggpg_export_key($user) {
    92. 

  92. 	$gpg = new gnupg();
    93. 

  93. 	return $gpg->export($user->openpgp_publickey);
    94. 

  94. }
    95. 

  95. 

  96. function elggpg_haskey($user) {
    97. 

  97. 	return $user->openpgp_publickey;
    98. 

  98. }
    99. 

  99. 

  100. function elggpg_keyinfo($user) {
    101. 

  101. 	$gnupg = new gnupg();
    102. 

  102. 

  103. 	$fingerprint = $user->openpgp_publickey;
    104. 

  104. 

  105. 	if (!$fingerprint) {
    106. 

  106. 		return false;
    107. 

  107. 	}
    108. 

  108. 

  109. 	try {
    110. 

  110. 

  111. 		$info = $gnupg->keyinfo($fingerprint);
    112. 

  112. 

  113. 	} catch (Exception $e) {
    114. 

  114. 		return false;
    115. 

  115. 	}
    116. 

  116. 

  117. 	$simple_info = array(
    118. 

  118. 		'name'        => $info[0]['uids'][0]['name'],
    119. 

  119. 		'comment'     => $info[0]['uids'][0]['comment'],
    120. 

  120. 		'email'       => $info[0]['uids'][0]['email'],
    121. 

  121. 		'fingerprint' => $info[0]['subkeys'][0]['fingerprint'],
    122. 

  122. 		'subkeys'     => array(),
    123. 

  123. 	);
    124. 

  124. 

  125. 	if (strlen($simple_info['fingerprint']) < 1) {
    126. 

  126. 		return false;
    127. 

  127. 	}
    128. 

  128. 

  129. 	foreach ($info[0]['subkeys'] as $subkey) {
    130. 

  130. 		if ($subkey['can_encrypt']) {
    131. 

  131. 			$type = 'encrypt';
    132. 

  132. 		}
    133. 

  133. 		if ($subkey['can_sign']) {
    134. 

  134. 			$type .= 'sign';
    135. 

  135. 		}
    136. 

  136. 

  137. 		$simple_info['subkeys'][] = array(
    138. 

  138. 			'keyid'   => $subkey['keyid'],
    139. 

  139. 			'type'    => $type,
    140. 

  140. 			'created' => $subkey['timestamp'],
    141. 

  141. 			'expires' => $subkey['expires'],
    142. 

  142. 		);
    143. 

  143. 	}
    144. 

  144. 

  145. 	return $simple_info;
    146. 

  146. 

  147. }
    148. 

  148. 

  149. function elggpg_delete_key($user) {
    150. 

  150. 

  151. 	if (!$user->openpgp_publickey) {
    152. 

  152. 		return false;
    153. 

  153. 	}
    154. 

  154. 

  155. 	$count = elgg_get_entities_from_metadata(array(
    156. 

  156. 		'type' => 'user',
    157. 

  157. 		'metadata_name' => 'openpgp_publickey',
    158. 

  158. 		'metadata_value' => $user->openpgp_publickey,
    159. 

  159. 		'count' => true,
    160. 

  160. 	));
    161. 

  161. 

  162. 	if ($count > 1) {
    163. 

  163. 		$user->openpgp_publickey = NULL;
    164. 

  164. 		return true;
    165. 

  165. 	}
    166. 

  166. 

  167. 	$gpg = new gnupg();
    168. 

  168. 	$info = $gpg->deletekey($user->openpgp_publickey);
    169. 

  169. 	$user->openpgp_publickey = NULL;
    170. 

  170. 	return $info;
    171. 

  171. }
    172. 

  172. 

  173. function elggpg_encrypt($body, $user, $force = true) {
    174. 

  174. 	$already_encrypted = strpos($body, "-----BEGIN PGP MESSAGE-----") !== false;
    175. 

  175. 	try {
    176. 

  176. 		if (!$already_encrypted) {
    177. 

  177. 			$gpg = new gnupg();
    178. 

  178. 			$gpg->addencryptkey($user->openpgp_publickey);
    179. 

  179. 			if ($encrbody = $gpg->encrypt($body)) {
    180. 

  180. 				$body = $encrbody;
    181. 

  181. 			} elseif ($force) {
    182. 

  182. 				return false;
    183. 

  183. 			}
    184. 

  184. 		}
    185. 

  185. 	} catch (Exception $e) {
    186. 

  186. 		if ($force) {
    187. 

  187. 			return false;
    188. 

  188. 		}
    189. 

  189. 	}
    190. 

  190. 	return $body;
    191. 

  191. }
    192. 

  192.