|
3 | 3 | #include <string> |
4 | 4 |
|
5 | 5 | #include <fcntl.h> |
| 6 | +#include <unistd.h> |
| 7 | +#include <sys/file.h> |
6 | 8 |
|
7 | 9 | #include <rpm/header.h> |
8 | 10 | #include <rpm/rpmbase64.h> |
@@ -148,6 +150,93 @@ rpmRC keystore_fs::import_key(rpmtxn txn, rpmPubkey key, int replace, rpmFlags f |
148 | 150 | return rc; |
149 | 151 | } |
150 | 152 |
|
| 153 | +/*****************************************************************************/ |
| 154 | + |
| 155 | +static int acquire_write_lock(rpmtxn txn) |
| 156 | +{ |
| 157 | + char * keyringpath = rpmGenPath(rpmtxnRootDir(txn), "%{_keyringpath}/", NULL); |
| 158 | + char * lockpath = rpmGenPath(rpmtxnRootDir(txn), "%{_keyringpath}/", "writelock"); |
| 159 | + int fd = -1; |
| 160 | + |
| 161 | + if (rpmMkdirs(NULL, keyringpath)) { |
| 162 | + rpmlog(RPMLOG_ERR, _("failed to create keyring directory %s: %s\n"), |
| 163 | + keyringpath, strerror(errno)); |
| 164 | + goto exit; |
| 165 | + } |
| 166 | + |
| 167 | + if ((fd = open(lockpath, O_WRONLY|O_CREAT)) == -1) { |
| 168 | + rpmlog(RPMLOG_ERR, _("Can't create writelock for keyring at %s: %s\n"), keyringpath, strerror(errno)); |
| 169 | + } else if (flock(fd, LOCK_EX|LOCK_NB)) { |
| 170 | + rpmlog(RPMLOG_ERR, _("Can't acquire writelock for keyring at %s\n"), keyringpath); |
| 171 | + close(fd); |
| 172 | + fd = -1; |
| 173 | + } |
| 174 | + |
| 175 | + exit: |
| 176 | + free(keyringpath); |
| 177 | + free(lockpath); |
| 178 | + return fd; |
| 179 | +} |
| 180 | + |
| 181 | +static void free_write_lock(int fd) |
| 182 | +{ |
| 183 | + flock(fd, LOCK_UN); |
| 184 | +} |
| 185 | + |
| 186 | +rpmRC keystore_openpgp_cert_d::load_keys(rpmtxn txn, rpmKeyring keyring) |
| 187 | +{ |
| 188 | + return load_keys_from_glob(txn, keyring, "%{_keyringpath}/*/*"); |
| 189 | +} |
| 190 | + |
| 191 | +rpmRC keystore_openpgp_cert_d::delete_key(rpmtxn txn, rpmPubkey key) |
| 192 | +{ |
| 193 | + rpmRC rc = RPMRC_NOTFOUND; |
| 194 | + int lock_fd = -1; |
| 195 | + |
| 196 | + if ((lock_fd = acquire_write_lock(txn)) == -1) |
| 197 | + return RPMRC_FAIL; |
| 198 | + |
| 199 | + string fp = rpmPubkeyFingerprintAsHex(key); |
| 200 | + string dir = fp.substr(0, 2); |
| 201 | + string filename = fp.substr(2); |
| 202 | + char * filepath = rpmGetPath(rpmtxnRootDir(txn), "%{_keyringpath}/", dir.c_str(), "/", filename.c_str(), NULL); |
| 203 | + char * dirpath = rpmGetPath(rpmtxnRootDir(txn), "%{_keyringpath}/", dir.c_str(), NULL); |
| 204 | + |
| 205 | + if (!access(filepath, F_OK)) |
| 206 | + rc = unlink(filepath) ? RPMRC_FAIL : RPMRC_OK; |
| 207 | + /* delete directory if empty */ |
| 208 | + rmdir(dirpath); |
| 209 | + |
| 210 | + free(filepath); |
| 211 | + free(dirpath); |
| 212 | + free_write_lock(lock_fd); |
| 213 | + return rc; |
| 214 | +} |
| 215 | + |
| 216 | +rpmRC keystore_openpgp_cert_d::import_key(rpmtxn txn, rpmPubkey key, int replace, rpmFlags flags) |
| 217 | +{ |
| 218 | + rpmRC rc = RPMRC_NOTFOUND; |
| 219 | + int lock_fd = -1; |
| 220 | + |
| 221 | + if ((lock_fd = acquire_write_lock(txn)) == -1) |
| 222 | + return RPMRC_FAIL; |
| 223 | + |
| 224 | + string fp = rpmPubkeyFingerprintAsHex(key); |
| 225 | + string dir = fp.substr(0, 2); |
| 226 | + string filename = fp.substr(2); |
| 227 | + char *dirpath = rpmGetPath(rpmtxnRootDir(txn), "%{_keyringpath}/", dir.c_str(), NULL); |
| 228 | + string dirstr = dirpath; |
| 229 | + |
| 230 | + rc = write_key_to_disk(key, dirstr, filename, replace, flags); |
| 231 | + |
| 232 | + free_write_lock(lock_fd); |
| 233 | + free(dirpath); |
| 234 | + |
| 235 | + return rc; |
| 236 | +} |
| 237 | + |
| 238 | +/*****************************************************************************/ |
| 239 | + |
151 | 240 | rpmRC keystore_rpmdb::load_keys(rpmtxn txn, rpmKeyring keyring) |
152 | 241 | { |
153 | 242 | Header h; |
|
0 commit comments