1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/os/ossrv/ssl/libcrypto/src/crypto/certretriever/certretriever.cpp Fri Jun 15 03:10:57 2012 +0200
1.3 @@ -0,0 +1,336 @@
1.4 +/*
1.5 +Copyright (c) 2009-2010 Nokia Corporation and/or its subsidiary(-ies). All rights reserved.
1.6 +
1.7 +Redistribution and use in source and binary forms, with or without
1.8 +modification, are permitted provided that the following conditions are met:
1.9 +
1.10 +* Redistributions of source code must retain the above copyright notice, this
1.11 + list of conditions and the following disclaimer.
1.12 +* Redistributions in binary form must reproduce the above copyright notice,
1.13 + this list of conditions and the following disclaimer in the documentation
1.14 + and/or other materials provided with the distribution.
1.15 +* Neither the name of Nokia Corporation nor the names of its contributors
1.16 + may be used to endorse or promote products derived from this software
1.17 + without specific prior written permission.
1.18 +
1.19 +THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
1.20 +AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
1.21 +IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
1.22 +DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
1.23 +FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
1.24 +DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
1.25 +SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
1.26 +CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
1.27 +OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
1.28 +OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
1.29 +
1.30 +Description: Contains implementation for x509_add_symbian_cert - to use certificates installed in Symbian with OpenSSL code.
1.31 +*/
1.32 +
1.33 +
1.34 +#include "certretriever.h"
1.35 +#include "createx509.h"
1.36 +
1.37 +#include <securitydefsconst.h>
1.38 +
1.39 +#ifdef __cplusplus
1.40 +extern "C"
1.41 +{
1.42 +#endif
1.43 +int X509_add_symbian_certsL(X509_STORE * store)
1.44 +{
1.45 + CActiveScheduler* activeScheduler;
1.46 + CActiveScheduler* CurrentActiveScheduler = CActiveScheduler::Current();
1.47 + if(CurrentActiveScheduler == NULL)
1.48 + {
1.49 + activeScheduler = new (ELeave) CActiveScheduler;
1.50 + CleanupStack::PushL(activeScheduler);
1.51 +
1.52 + CActiveScheduler::Install(activeScheduler);
1.53 + }
1.54 +
1.55 +
1.56 + TRequestStatus status;
1.57 + CCertRetriever* certRetriever;
1.58 + TRAPD(error, certRetriever = CCertRetriever::NewL(store, status, CActiveScheduler::Current()));
1.59 +
1.60 + // create CActiveSchedulerWait
1.61 + if (CurrentActiveScheduler)
1.62 + {
1.63 + certRetriever->activeSchedulerwait = new (ELeave) CActiveSchedulerWait;
1.64 + certRetriever->OwnScheduler = EFalse;
1.65 + }
1.66 +
1.67 +
1.68 + if(error != KErrNone)
1.69 + {
1.70 + CleanupStack::PopAndDestroy(); // activeScheduler
1.71 + return 0;
1.72 + }
1.73 +
1.74 + CleanupStack::PushL(certRetriever);
1.75 +
1.76 + TRAP(error,certRetriever->RetriveCertificateL());
1.77 + if(error != KErrNone)
1.78 + {
1.79 + if(CurrentActiveScheduler == NULL)
1.80 + {
1.81 + CleanupStack::PopAndDestroy(2); // activeScheduler, certRetriever
1.82 + }
1.83 + else
1.84 + CleanupStack::PopAndDestroy(); // certRetriever
1.85 + return 0;
1.86 + }
1.87 +
1.88 +
1.89 + if(CurrentActiveScheduler == NULL)
1.90 + {
1.91 + activeScheduler->Start();
1.92 + CleanupStack::PopAndDestroy(2); // If you destroy the object it will not be there
1.93 + // in the iActiveQ, and hence stray signal.
1.94 +
1.95 + //CleanupStack::Pop(2); // So just pop it. // activeScheduler, certRetriever
1.96 + }
1.97 + else
1.98 + {
1.99 + // CurrentActiveScheduler->Start();// If you are using CActiveScheduler::Current();
1.100 + // Why u want to start it again?
1.101 +
1.102 + // CleanupStack::PopAndDestroy(); // If you destroy the object it will not be there
1.103 + // in the iActiveQ, and hence stray signal.
1.104 +
1.105 + // should wait here untill it finish loading certificates, ths API is synchronous
1.106 + certRetriever->activeSchedulerwait->Start();
1.107 +
1.108 + CleanupStack::Pop(); // So just pop it. // certRetriever
1.109 + }
1.110 +
1.111 +
1.112 +
1.113 + if(status == KErrNone)
1.114 + return 1;
1.115 + else
1.116 + return 0;
1.117 +}
1.118 +#ifdef __cplusplus
1.119 +}
1.120 +#endif
1.121 +
1.122 +CCertRetriever::CCertRetriever(X509_STORE* aStore,
1.123 + TRequestStatus& aStatus,
1.124 + const CActiveScheduler* aActiveScheduler)
1.125 + : CActive(CActive::EPriorityHigh),
1.126 + iStore(aStore),
1.127 + iFinStatus ( aStatus ),
1.128 + iActiveScheduler(aActiveScheduler),
1.129 + iCertPtr(0,0)
1.130 +
1.131 + {
1.132 +
1.133 + OwnScheduler = ETrue;
1.134 + if(iActiveScheduler)
1.135 + iActiveScheduler->Add(this);
1.136 + }
1.137 +
1.138 +CCertRetriever::~CCertRetriever()
1.139 + {
1.140 + Cancel();
1.141 + delete iBuf;
1.142 + delete iCertFilter;
1.143 +
1.144 + iCerts.Close();
1.145 + delete iCertStore;
1.146 + iFs.Close();
1.147 + if(!OwnScheduler)
1.148 + delete activeSchedulerwait;
1.149 + }
1.150 +
1.151 +CCertRetriever* CCertRetriever::NewLC(X509_STORE* aStore,
1.152 + TRequestStatus& aStatus,
1.153 + const CActiveScheduler* aActiveScheduler)
1.154 + {
1.155 + CCertRetriever* self = new (ELeave) CCertRetriever(aStore, aStatus, aActiveScheduler);
1.156 + CleanupStack::PushL(self);
1.157 + TRAPD(err,self->ConstructL());
1.158 + if(err != KErrNotFound)
1.159 + return self;
1.160 +
1.161 + CleanupStack::PopAndDestroy(self);
1.162 + return NULL;
1.163 + }
1.164 +
1.165 +CCertRetriever* CCertRetriever::NewL(X509_STORE* aStore,
1.166 + TRequestStatus& aStatus,
1.167 + const CActiveScheduler* aActiveScheduler)
1.168 + {
1.169 + CCertRetriever* self = CCertRetriever::NewLC(aStore, aStatus, aActiveScheduler);
1.170 + if(self)
1.171 + CleanupStack::Pop();
1.172 + return self;
1.173 + }
1.174 +
1.175 +void CCertRetriever::ConstructL()
1.176 + {
1.177 + TInt err = iFs.Connect();
1.178 + if(err != KErrNone)
1.179 + User::Leave(err);
1.180 +
1.181 + iState = EInitializeCertStore;
1.182 + iBuf = HBufC8::NewL(KMaxCertLength);
1.183 + }
1.184 +
1.185 +
1.186 +void CCertRetriever::RunL()
1.187 + {
1.188 + // 1. All certificates retrieved.
1.189 + // 2. yes. check iActiveScheduler. if null then call User::RequestComplete(iStatus) else iActiveScheduler->Stop();
1.190 + User::LeaveIfError(iStatus.Int());
1.191 +
1.192 + switch(iState)
1.193 + {
1.194 + case EInitializeCertStore:
1.195 + OpenUnifiedCertStoreL();
1.196 + break;
1.197 +
1.198 + case EListCerts:
1.199 + ListCertsL();
1.200 + break;
1.201 + case EAppendCerts:
1.202 + if (!iCerts.Count()) // no certificate in store.
1.203 + {
1.204 + iState = ENoCerts;
1.205 + }
1.206 + else
1.207 + {
1.208 + AppendCertsL();
1.209 + break;
1.210 + }
1.211 +
1.212 + case EDone:
1.213 + if (iState != ENoCerts)
1.214 + {
1.215 + ProcessCertsL(); //Process the last certificate
1.216 + iCertCount = 0;
1.217 + }
1.218 + case ENoCerts:
1.219 +
1.220 + if(iActiveScheduler)
1.221 + {
1.222 + if(OwnScheduler)
1.223 + iActiveScheduler->Stop();
1.224 + else
1.225 + activeSchedulerwait->AsyncStop();
1.226 +
1.227 + iFinStatus = iStatus;
1.228 + }
1.229 + else
1.230 + {
1.231 + TRequestStatus *s = &iFinStatus;
1.232 + User::RequestComplete(s, KErrNone);
1.233 + }
1.234 +
1.235 +
1.236 + break;
1.237 +
1.238 + default:
1.239 + User::Leave(KErrNotFound);
1.240 + break;
1.241 + }
1.242 + }
1.243 +
1.244 +
1.245 +void CCertRetriever::DoCancel()
1.246 + {
1.247 + }
1.248 +
1.249 +TInt CCertRetriever::RunError(TInt aError)
1.250 + {
1.251 + //Can do some error handling here
1.252 + if(iActiveScheduler)
1.253 + {
1.254 + iActiveScheduler->Stop();
1.255 + iFinStatus = iStatus;
1.256 + }
1.257 + else
1.258 + {
1.259 + TRequestStatus *s = &iFinStatus;
1.260 + User::RequestComplete(s, aError);
1.261 + }
1.262 +
1.263 + return KErrNone;
1.264 + }
1.265 +
1.266 +void CCertRetriever::RetriveCertificateL()
1.267 + {
1.268 + OpenUnifiedCertStoreL();
1.269 + }
1.270 +
1.271 +
1.272 +void CCertRetriever::OpenUnifiedCertStoreL()
1.273 + {
1.274 +
1.275 + iState = EListCerts;
1.276 + delete iCertStore;
1.277 + iCertStore = NULL;
1.278 + iCertStore = CUnifiedCertStore::NewL(iFs, EFalse);
1.279 + iCertStore->Initialize(iStatus);
1.280 + SetActive();
1.281 + }
1.282 +
1.283 +void CCertRetriever::ListCertsL()
1.284 +{
1.285 + // Create filter object
1.286 +
1.287 + delete iCertFilter;
1.288 + iCertFilter = NULL;
1.289 + iCertFilter = CCertAttributeFilter::NewL();
1.290 + iCertFilter->SetFormat(EX509Certificate);
1.291 + iCertFilter->SetOwnerType(ECACertificate);
1.292 + iCertFilter->SetUid(KTlsApplicabilityUid);
1.293 +
1.294 + iStatus = KRequestPending;
1.295 + SetActive();
1.296 + iCertStore->List(iCerts, *iCertFilter, iStatus);
1.297 + iState = EAppendCerts;
1.298 +}
1.299 +
1.300 +void CCertRetriever::AppendCertsL()
1.301 +{
1.302 + if(iCertCount>0)
1.303 + ProcessCertsL();
1.304 +
1.305 + CCTCertInfo *cert = iCerts[iCertCount];
1.306 +
1.307 + SetActive();
1.308 + iStatus == KRequestPending;
1.309 +
1.310 + iCertPtr.Set( iBuf->Des() );
1.311 + iCertStore->Retrieve((*cert),iCertPtr,iStatus);
1.312 +
1.313 + iCertCount++;
1.314 +
1.315 + if(iCertCount == iCerts.Count())
1.316 + iState = EDone;
1.317 +}
1.318 +
1.319 +
1.320 +void CCertRetriever::ProcessCertsL()
1.321 +{
1.322 + CX509Certificate *X509Cert;
1.323 + TRAPD(error, X509Cert = CX509Certificate::NewL( iCertPtr ));
1.324 + if(error !=KErrNone)
1.325 + return;
1.326 +
1.327 + CleanupStack::PushL(X509Cert);
1.328 +
1.329 + X509* x509 = CX509_Initializer::CreateX509L(X509Cert);
1.330 +
1.331 + if(x509)
1.332 + {
1.333 + X509_STORE_add_cert(iStore,x509);
1.334 + X509_free(x509);
1.335 + }
1.336 +
1.337 + CleanupStack::PopAndDestroy(); //X509Cert
1.338 +
1.339 +}