/************************************************************** * * Licensed to the Apache Software Foundation (ASF) under one * or more contributor license agreements. See the NOTICE file * distributed with this work for additional information * regarding copyright ownership. The ASF licenses this file * to you under the Apache License, Version 2.0 (the * "License"); you may not use this file except in compliance * with the License. You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, * software distributed under the License is distributed on an * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY * KIND, either express or implied. See the License for the * specific language governing permissions and limitations * under the License. * *************************************************************/ // MARKER(update_precomp.py): autogen include statement, do not remove #include "precompiled_xmlsecurity.hxx" #include #include #include #include #include #include #include #include #include #include #include #include #include #ifndef _SANEXTENSION_NSSIMPL_HXX_ #include "sanextension_nssimpl.hxx" #endif using namespace ::com::sun::star; using namespace ::com::sun::star::uno ; using namespace ::com::sun::star::security ; using ::rtl::OUString ; using ::com::sun::star::security::XCertificateExtension ; SanExtensionImpl :: SanExtensionImpl() : m_critical( sal_False ) { } SanExtensionImpl :: ~SanExtensionImpl() { } //Methods from XCertificateExtension sal_Bool SAL_CALL SanExtensionImpl :: isCritical() throw( ::com::sun::star::uno::RuntimeException ) { return m_critical ; } ::com::sun::star::uno::Sequence< sal_Int8 > SAL_CALL SanExtensionImpl :: getExtensionId() throw( ::com::sun::star::uno::RuntimeException ) { return m_xExtnId ; } ::com::sun::star::uno::Sequence< sal_Int8 > SAL_CALL SanExtensionImpl :: getExtensionValue() throw( ::com::sun::star::uno::RuntimeException ) { return m_xExtnValue ; } namespace { // Helper functions from nss/lib/certdb/genname.c static int GetNamesLength(CERTGeneralName *names) { int length = 0; CERTGeneralName *first; first = names; if (names != NULL) { do { length++; names = CERT_GetNextGeneralName(names); } while (names != first); } return length; } } //Methods from XSanExtension ::com::sun::star::uno::Sequence< com::sun::star::security::CertAltNameEntry > SAL_CALL SanExtensionImpl :: getAlternativeNames() throw( ::com::sun::star::uno::RuntimeException ){ if (!m_Entries.hasElements()) { SECItem item; item.type = siDERCertBuffer; item.data = (unsigned char*) m_xExtnValue.getArray(); item.len = m_xExtnValue.getLength(); PRArenaPool *arena; CERTGeneralName *nameList; arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE); if (!arena) return m_Entries; nameList = CERT_DecodeAltNameExtension(arena, &item); CERTGeneralName* current = nameList; int size = GetNamesLength(nameList); CertAltNameEntry* arrCertAltNameEntry = new CertAltNameEntry[size]; for(int i = 0; i < size ; i++){ switch (current->type) { case certOtherName: { arrCertAltNameEntry[i].Type = ExtAltNameType_OTHER_NAME; ::com::sun::star::beans::PropertyValue otherNameProp; otherNameProp.Name = ::rtl::OUString::createFromAscii(CERT_GetOidString(¤t->name.OthName.oid)); Sequence< sal_Int8 > otherName( current->name.OthName.name.len ) ; for( unsigned int r = 0; r < current->name.OthName.name.len ; r ++ ) otherName[r] = *( current->name.OthName.name.data + r ) ; otherNameProp.Value <<= otherName; arrCertAltNameEntry[i].Value <<= otherNameProp; break; } case certRFC822Name: arrCertAltNameEntry[i].Type = ExtAltNameType_RFC822_NAME; arrCertAltNameEntry[i].Value <<= ::rtl::OUString((const sal_Char*)current->name.other.data, current->name.other.len, RTL_TEXTENCODING_ASCII_US); break; case certDNSName: arrCertAltNameEntry[i].Type = ExtAltNameType_DNS_NAME; arrCertAltNameEntry[i].Value <<= ::rtl::OUString((const sal_Char*)current->name.other.data, current->name.other.len, RTL_TEXTENCODING_ASCII_US); break; case certX400Address: { // unsupported arrCertAltNameEntry[i].Type = ExtAltNameType_X400_ADDRESS; break; } case certDirectoryName: { // unsupported arrCertAltNameEntry[i].Type = ExtAltNameType_DIRECTORY_NAME; break; } case certEDIPartyName: { // unsupported arrCertAltNameEntry[i].Type = ExtAltNameType_EDI_PARTY_NAME; break; } case certURI: arrCertAltNameEntry[i].Type = ExtAltNameType_URL; arrCertAltNameEntry[i].Value <<= ::rtl::OUString((const sal_Char*)current->name.other.data, current->name.other.len, RTL_TEXTENCODING_ASCII_US); break; case certIPAddress: { arrCertAltNameEntry[i].Type = ExtAltNameType_IP_ADDRESS; Sequence< sal_Int8 > ipAddress( current->name.other.len ) ; for( unsigned int r = 0; r < current->name.other.len ; r ++ ) ipAddress[r] = *( current->name.other.data + r ) ; arrCertAltNameEntry[i].Value <<= ipAddress; break; } case certRegisterID: arrCertAltNameEntry[i].Type = ExtAltNameType_REGISTERED_ID; rtl::OString nssOid = ::rtl::OString(CERT_GetOidString(¤t->name.other)); rtl::OString unoOid = removeOIDFromString(nssOid); arrCertAltNameEntry[i].Value <<= rtl::OStringToOUString( unoOid, RTL_TEXTENCODING_ASCII_US ); break; } current = CERT_GetNextGeneralName(current); } m_Entries = ::comphelper::arrayToSequence< com::sun::star::security::CertAltNameEntry >(arrCertAltNameEntry, size); delete [] arrCertAltNameEntry; PORT_FreeArena(arena, PR_FALSE); } return m_Entries; } ::rtl::OString SanExtensionImpl :: removeOIDFromString( const ::rtl::OString &oidString) { ::rtl::OString objID; ::rtl::OString oid("OID."); if (oidString.match(oid)) objID = oidString.copy(oid.getLength()); else objID = oidString; return objID; } //Helper method void SanExtensionImpl :: setCertExtn( ::com::sun::star::uno::Sequence< sal_Int8 > extnId, ::com::sun::star::uno::Sequence< sal_Int8 > extnValue, sal_Bool critical ) { m_critical = critical ; m_xExtnId = extnId ; m_xExtnValue = extnValue ; } void SanExtensionImpl :: setCertExtn( unsigned char* value, unsigned int vlen, unsigned char* id, unsigned int idlen, sal_Bool critical ) { unsigned int i ; if( value != NULL && vlen != 0 ) { Sequence< sal_Int8 > extnv( vlen ) ; for( i = 0; i < vlen ; i ++ ) extnv[i] = *( value + i ) ; m_xExtnValue = extnv ; } else { m_xExtnValue = Sequence(); } if( id != NULL && idlen != 0 ) { Sequence< sal_Int8 > extnId( idlen ) ; for( i = 0; i < idlen ; i ++ ) extnId[i] = *( id + i ) ; m_xExtnId = extnId ; } else { m_xExtnId = Sequence(); } m_critical = critical ; } void SanExtensionImpl :: extractCertExt () { }