/* $Header$
 *
 * This program will verify signatures on user records in the database.
 */

#include <stdio.h>
#include <strings.h>
#include <ctype.h>
#include <sys/time.h>
#include <moira.h>
#include <moira_site.h>
#include <des.h>
#include <krb.h>
#include <gdss.h>


char *program;

main(argc, argv)
int argc;
char **argv;
##{
     char buf[BUFSIZ], *usercheck[100], sigbuf[256];
     SigInfo si;
     int status, i, wait, check, debug;
##   char login[10], mid[32], rawsig[256], who[257];
##   int id, timestamp;

     initialize_sms_error_table();
     initialize_krb_error_table();
     initialize_gdss_error_table();

     program = "sign";
     check = debug = 0;

     for (i = 1; i < argc; i++) {
	if (!strcmp(argv[i], "-w"))
	  wait++;
	else if (!strcmp(argv[i], "-d"))
	  debug++;
	else if (!strcmp(argv[i], "-D"))
	  setenv("ING_SET", "set printqry");
	else if (argv[i][0] == '-')
	  fprintf(stderr, "Usage: %s [-w] [-D]\n", argv[0]);
	else usercheck[check++] = argv[i];
    }

##   ingres sms
##   range of u is users
##   range of s is strings

     if (check == 0) {
##	retrieve (login = u.#login, mid = u.mit_id, rawsig = u.signature,
##		  who = s.string, timestamp = u.sigdate)
##	      where u.signature != "" and u.sigwho = s.string_id {
	    sprintf(buf, "%s:%s", strtrim(login), strtrim(mid));
	    si.timestamp = timestamp;
	    si.SigInfoVersion = 0;
	    kname_parse(si.pname, si.pinst, si.prealm, strtrim(who));
	    si.rawsig = (unsigned char *) &rawsig[0];
	    status = GDSS_Recompose(&si, sigbuf);
	    if (status) {
		com_err(program, gdss2et(status), "recomposing for user %s", login);
		continue;
	    }
	    si.rawsig = NULL;
	    status = GDSS_Verify(buf, strlen(buf), sigbuf, &si);
	    if (status) {
		com_err(program, gdss2et(status), "verifying user %s", login);
	    }
	    if (wait) {
		printf("Next");
		fflush(stdout);
		gets(buf);
	    }
##	}
    } else {
	for (i = check - 1; i >= 0; i--) {
	    strcpy(login, usercheck[i]);
##	    retrieve (mid = u.mit_id, rawsig = u.signature,
##		      who = s.string, timestamp = u.sigdate)
##	          where u.signature != "" and u.sigwho = s.string_id 
##			and u.#login = login {
		sprintf(buf, "%s:%s", strtrim(login), strtrim(mid));
		if (debug) {
		    printf("Verifying \"%s\"\n", buf);
		}
		si.timestamp = timestamp;
		si.SigInfoVersion = 0;
		kname_parse(si.pname, si.pinst, si.prealm, strtrim(who));
		si.rawsig = (unsigned char *) &rawsig[0];
		status = GDSS_Recompose(&si, sigbuf);
		if (status) {
		    com_err(program, gdss2et(status), "recomposing for user %s", login);
		    continue;
		}
		si.rawsig = NULL;
		status = GDSS_Verify(buf, strlen(buf), sigbuf, &si);
		if (status)
		  com_err(program, gdss2et(status), "verifying user %s", login);
		else {
		    com_err(program, 0, "signature verified %s", buf);
		    if (debug == 2) {
			hex_dump(sigbuf);
		    }
		}
		if (wait) {
		    printf("Next");
		    fflush(stdout);
		    gets(buf);
		}
##	    }
	}
    }

##   exit
     exit(0);
##}


hex_dump(p)
unsigned  char *p;
{
    printf("Size: %d\n", strlen(p));
    while (strlen(p) >= 8) {
	printf("%02x %02x %02x %02x %02x %02x %02x %02x\n",
		p[0], p[1], p[2], p[3], p[4], p[5], p[6], p[7]);
	p += 8;
    }
    switch (strlen(p)) {
    case 7:
	printf("%02x %02x %02x %02x %02x %02x %02x\n",
		p[0], p[1], p[2], p[3], p[4], p[5], p[6]);
	break;
    case 6:
	printf("%02x %02x %02x %02x %02x %02x\n",
		p[0], p[1], p[2], p[3], p[4], p[5]);
	break;
    case 5:
	printf("%02x %02x %02x %02x %02x\n",
		p[0], p[1], p[2], p[3], p[4]);
	break;
    case 4:
	printf("%02x %02x %02x %02x\n",
		p[0], p[1], p[2], p[3]);
	break;
    case 3:
	printf("%02x %02x %02x\n",
		p[0], p[1], p[2]);
	break;
    case 2:
	printf("%02x %02x\n",
		p[0], p[1]);
	break;
    case 1:
	printf("%02x\n",
		p[0]);
	break;
    default:
	return;
    }
}