os/security/cryptoservices/certificateandkeymgmt/pkixCert/pkixCertChainHelper.cpp
1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/os/security/cryptoservices/certificateandkeymgmt/pkixCert/pkixCertChainHelper.cpp Fri Jun 15 03:10:57 2012 +0200
1.3 @@ -0,0 +1,200 @@
1.4 +/*
1.5 +* Copyright (c) 2004-2009 Nokia Corporation and/or its subsidiary(-ies).
1.6 +* All rights reserved.
1.7 +* This component and the accompanying materials are made available
1.8 +* under the terms of the License "Eclipse Public License v1.0"
1.9 +* which accompanies this distribution, and is available
1.10 +* at the URL "http://www.eclipse.org/legal/epl-v10.html".
1.11 +*
1.12 +* Initial Contributors:
1.13 +* Nokia Corporation - initial contribution.
1.14 +*
1.15 +* Contributors:
1.16 +*
1.17 +* Description:
1.18 +*
1.19 +*/
1.20 +
1.21 +
1.22 +#include "pkixCertChainHelper.h"
1.23 +#include <pkixcertchain.h>
1.24 +#include <pkixvalidationresult.h>
1.25 +#include <unifiedcertstore.h>
1.26 +
1.27 +_LIT(KPanicCat, "CPKIXCertChainHelper");
1.28 +
1.29 +CPKIXCertChainHelper* CPKIXCertChainHelper::NewL(RFs& aFs)
1.30 + {
1.31 + CPKIXCertChainHelper* self = new (ELeave) CPKIXCertChainHelper();
1.32 + CleanupStack::PushL(self);
1.33 + self->ConstructL(aFs);
1.34 + CleanupStack::Pop(self);
1.35 + return self;
1.36 + }
1.37 +
1.38 +CPKIXCertChainHelper::CPKIXCertChainHelper() :
1.39 + CActive(EPriorityNormal)
1.40 + {
1.41 + CActiveScheduler::Add(this);
1.42 + }
1.43 +
1.44 +void CPKIXCertChainHelper::ConstructL(RFs& aFs)
1.45 + {
1.46 + iCertStore = CUnifiedCertStore::NewL(aFs, EFalse);
1.47 + }
1.48 +
1.49 +CPKIXCertChainHelper::~CPKIXCertChainHelper()
1.50 + {
1.51 + Cancel();
1.52 + delete iCertStore;
1.53 + }
1.54 +
1.55 +CUnifiedCertStore& CPKIXCertChainHelper::CertStore()
1.56 + {
1.57 + return *iCertStore;
1.58 + }
1.59 +
1.60 +void CPKIXCertChainHelper::Validate(CPKIXCertChainBase& aCertChain,
1.61 + CPKIXValidationResult& aValidationResult,
1.62 + const TTime& aValidationTime,
1.63 + TRequestStatus& aStatus)
1.64 + {
1.65 + StartValidate(aCertChain, aValidationResult, aValidationTime, NULL,
1.66 + aStatus);
1.67 + }
1.68 +
1.69 +void CPKIXCertChainHelper::Validate(CPKIXCertChainBase& aCertChain,
1.70 + CPKIXValidationResult& aValidationResult,
1.71 + const TTime& aValidationTime,
1.72 + const CArrayPtr<HBufC>& aInitialPolicies,
1.73 + TRequestStatus& aStatus)
1.74 + {
1.75 + StartValidate(aCertChain, aValidationResult, aValidationTime, &aInitialPolicies,
1.76 + aStatus);
1.77 + }
1.78 +
1.79 +void CPKIXCertChainHelper::CancelValidate()
1.80 + {
1.81 + if (iState == EInitializeCertStore ||
1.82 + iState == EValidateChain)
1.83 + {
1.84 + Cancel();
1.85 + }
1.86 + }
1.87 +
1.88 +void CPKIXCertChainHelper::StartValidate(CPKIXCertChainBase& aCertChain,
1.89 + CPKIXValidationResult& aValidationResult,
1.90 + const TTime& aValidationTime,
1.91 + const CArrayPtr<HBufC>* aInitialPolicies,
1.92 + TRequestStatus& aStatus)
1.93 + {
1.94 + __ASSERT_ALWAYS(iState == EIdle, User::Panic(KPanicCat, 1));
1.95 + iCertChain = &aCertChain;
1.96 + iValidationResult = &aValidationResult;
1.97 + iValidationTime = aValidationTime;
1.98 + iInitialPolicies = aInitialPolicies;
1.99 + iClientStatus = &aStatus;
1.100 + aStatus = KRequestPending;
1.101 + InitializeCertStore();
1.102 + }
1.103 +
1.104 +void CPKIXCertChainHelper::InitializeCertStore()
1.105 + {
1.106 + iState = EInitializeCertStore;
1.107 + if (iCertStoreInitialized)
1.108 + {
1.109 + TRequestStatus* status = &iStatus;
1.110 + User::RequestComplete(status, KErrNone);
1.111 + }
1.112 + else
1.113 + {
1.114 + iCertStore->Initialize(iStatus);
1.115 + }
1.116 + SetActive();
1.117 + }
1.118 +
1.119 +void CPKIXCertChainHelper::ValidateChainL()
1.120 + {
1.121 + iState = EValidateChain;
1.122 + if (iInitialPolicies)
1.123 + {
1.124 + iCertChain->ValidateL(*iValidationResult,
1.125 + iValidationTime,
1.126 + *iInitialPolicies,
1.127 + iStatus);
1.128 + }
1.129 + else
1.130 + {
1.131 + iCertChain->ValidateL(*iValidationResult,
1.132 + iValidationTime,
1.133 + iStatus);
1.134 + }
1.135 + SetActive();
1.136 + }
1.137 +
1.138 +void CPKIXCertChainHelper::RunL()
1.139 + {
1.140 + User::LeaveIfError(iStatus.Int());
1.141 +
1.142 + switch (iState)
1.143 + {
1.144 + case EInitializeCertStore:
1.145 + iCertStoreInitialized = ETrue;
1.146 + ValidateChainL();
1.147 + break;
1.148 +
1.149 + case EValidateChain:
1.150 + Complete(KErrNone);
1.151 + break;
1.152 +
1.153 + default:
1.154 + User::Invariant();
1.155 + }
1.156 + }
1.157 +
1.158 +TInt CPKIXCertChainHelper::RunError(TInt aError)
1.159 + {
1.160 + Complete(aError);
1.161 + return KErrNone;
1.162 + }
1.163 +
1.164 +void CPKIXCertChainHelper::DoCancel()
1.165 + {
1.166 + TInt result = KErrCancel;
1.167 +
1.168 + switch (iState)
1.169 + {
1.170 + case EInitializeCertStore:
1.171 + iCertStore->CancelInitialize();
1.172 + break;
1.173 +
1.174 + case EValidateChain:
1.175 + if (iStatus == KRequestPending)
1.176 + {
1.177 + iCertChain->CancelValidate();
1.178 + }
1.179 + else
1.180 + {
1.181 + result = iStatus.Int();
1.182 + }
1.183 + break;
1.184 +
1.185 + default:
1.186 + // Do nothing
1.187 + break;
1.188 + }
1.189 +
1.190 + Complete(result);
1.191 + }
1.192 +
1.193 +void CPKIXCertChainHelper::Complete(TInt aError)
1.194 + {
1.195 + iState = EIdle;
1.196 + iCertChain = NULL;
1.197 + iValidationResult = NULL;
1.198 + iInitialPolicies = NULL;
1.199 + if (iClientStatus)
1.200 + {
1.201 + User::RequestComplete(iClientStatus, aError);
1.202 + }
1.203 + }