X-Git-Url: https://git.netwichtig.de/gitweb/?a=blobdiff_plain;f=src%2Fsrc%2Fpdkim%2Fpdkim.h;h=f6ff78251dd8801cd5b2c9825799d86a0435059b;hb=c7f4ea442a264b5cb3a9ef0eed641f4778dfb5b7;hp=59ac038881f47af47c9a7d9bd6d5d526a9ecf5e6;hpb=617d39327e65b7fccc41a12b4a5e2940d6327c9f;p=user%2Fhenk%2Fcode%2Fexim.git diff --git a/src/src/pdkim/pdkim.h b/src/src/pdkim/pdkim.h index 59ac03888..f6ff78251 100644 --- a/src/src/pdkim/pdkim.h +++ b/src/src/pdkim/pdkim.h @@ -2,7 +2,7 @@ * PDKIM - a RFC4871 (DKIM) implementation * * Copyright (C) 2009 - 2012 Tom Kistner - * Copyright (c) 2016 - 2018 Jeremy Harris + * Copyright (c) 2016 - 2020 Jeremy Harris * * http://duncanthrax.net/pdkim/ * @@ -35,6 +35,15 @@ "List-Id:List-Help:List-Unsubscribe:"\ "List-Subscribe:List-Post:List-Owner:List-Archive" +#define PDKIM_OVERSIGN_HEADERS "+From:+Sender:+Reply-To:+Subject:+Date:"\ + "+Message-ID:+To:+Cc:+MIME-Version:+Content-Type:"\ + "+Content-Transfer-Encoding:+Content-ID:"\ + "+Content-Description:+Resent-Date:+Resent-From:"\ + "+Resent-Sender:+Resent-To:+Resent-Cc:"\ + "+Resent-Message-ID:+In-Reply-To:+References:"\ + "+List-Id:+List-Help:+List-Unsubscribe:"\ + "+List-Subscribe:+List-Post:+List-Owner:+List-Archive" + /* -------------------------------------------------------------------------- */ /* Length of the preallocated buffer for the "answer" from the dns/txt callback function. This should match the maximum RDLENGTH from DNS. */ @@ -48,8 +57,9 @@ #define PDKIM_ERR_RSA_SIGNING -102 #define PDKIM_ERR_LONG_LINE -103 #define PDKIM_ERR_BUFFER_TOO_SMALL -104 -#define PDKIM_SIGN_PRIVKEY_WRAP -105 -#define PDKIM_SIGN_PRIVKEY_B64D -106 +#define PDKIM_ERR_EXCESS_SIGS -105 +#define PDKIM_SIGN_PRIVKEY_WRAP -106 +#define PDKIM_SIGN_PRIVKEY_B64D -107 /* -------------------------------------------------------------------------- */ /* Main/Extended verification status */ @@ -66,16 +76,14 @@ #define PDKIM_VERIFY_INVALID_BUFFER_SIZE 5 #define PDKIM_VERIFY_INVALID_PUBKEY_DNSRECORD 6 #define PDKIM_VERIFY_INVALID_PUBKEY_IMPORT 7 -#define PDKIM_VERIFY_INVALID_SIGNATURE_ERROR 8 -#define PDKIM_VERIFY_INVALID_DKIM_VERSION 9 +#define PDKIM_VERIFY_INVALID_PUBKEY_KEYSIZE 8 +#define PDKIM_VERIFY_INVALID_SIGNATURE_ERROR 9 +#define PDKIM_VERIFY_INVALID_DKIM_VERSION 10 /* -------------------------------------------------------------------------- */ /* Some parameter values */ #define PDKIM_QUERYMETHOD_DNS_TXT 0 -/*#define PDKIM_ALGO_RSA_SHA256 0 */ -/*#define PDKIM_ALGO_RSA_SHA1 1 */ - #define PDKIM_CANON_SIMPLE 0 #define PDKIM_CANON_RELAXED 1 @@ -141,9 +149,10 @@ typedef struct pdkim_signature { /* (v=) The version, as an integer. Currently, always "1" */ int version; - /* (a=) The signature algorithm. Either PDKIM_ALGO_RSA_SHA256 */ - int keytype; /* pdkim_keytypes index */ - int hashtype; /* pdkim_hashes index */ + /* (a=) The signature algorithm. */ + int keytype; /* pdkim_keytypes index */ + unsigned keybits; /* size of the key */ + int hashtype; /* pdkim_hashes index */ /* (c=x/) Header canonicalization method. Either PDKIM_CANON_SIMPLE or PDKIM_CANON_RELAXED */ @@ -279,7 +288,7 @@ typedef struct pdkim_ctx { pdkim_bodyhash *bodyhash; /* Callback for dns/txt query method (verification only) */ - uschar * (*dns_txt_callback)(uschar *); + uschar * (*dns_txt_callback)(const uschar *); /* Coder's little helpers */ gstring *cur_header; @@ -312,7 +321,7 @@ extern "C" { void pdkim_init (void); -void pdkim_init_context (pdkim_ctx *, BOOL, uschar * (*)(uschar *)); +void pdkim_init_context (pdkim_ctx *, BOOL, uschar * (*)(const uschar *)); DLLEXPORT pdkim_signature *pdkim_init_sign (pdkim_ctx *, @@ -320,7 +329,7 @@ pdkim_signature *pdkim_init_sign (pdkim_ctx *, const uschar **); DLLEXPORT -pdkim_ctx *pdkim_init_verify (uschar * (*)(uschar *), BOOL); +pdkim_ctx *pdkim_init_verify (uschar * (*)(const uschar *), BOOL); DLLEXPORT void pdkim_set_optional (pdkim_signature *, char *, char *,int, int,