/* * Copyright (C) 2008 Martin Willi * Hochschule fuer Technik Rapperswil * * This program is free software; you can redistribute it and/or modify it * under the terms of the GNU General Public License as published by the * Free Software Foundation; either version 2 of the License, or (at your * option) any later version. See . * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY * or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License * for more details. */ #include "medcli_creds.h" #include #include #include typedef struct private_medcli_creds_t private_medcli_creds_t; /** * Private data of an medcli_creds_t object */ struct private_medcli_creds_t { /** * Public part */ medcli_creds_t public; /** * underlying database handle */ database_t *db; }; /** * enumerator over private keys */ typedef struct { /** implements enumerator */ enumerator_t public; /** inner SQL enumerator */ enumerator_t *inner; /** currently enumerated private key */ private_key_t *current; } private_enumerator_t; METHOD(enumerator_t, private_enumerator_enumerate, bool, private_enumerator_t *this, va_list args) { private_key_t **key; chunk_t chunk; VA_ARGS_VGET(args, key); DESTROY_IF(this->current); while (this->inner->enumerate(this->inner, &chunk)) { this->current = lib->creds->create(lib->creds, CRED_PRIVATE_KEY, KEY_RSA, BUILD_BLOB_ASN1_DER, chunk, BUILD_END); if (this->current) { *key = this->current; return TRUE; } } this->current = NULL; return FALSE; } METHOD(enumerator_t, private_enumerator_destroy, void, private_enumerator_t *this) { DESTROY_IF(this->current); this->inner->destroy(this->inner); free(this); } METHOD(credential_set_t, create_private_enumerator, enumerator_t*, private_medcli_creds_t *this, key_type_t type, identification_t *id) { private_enumerator_t *e; if ((type != KEY_RSA && type != KEY_ANY) || id == NULL || id->get_type(id) != ID_KEY_ID) { DBG1(DBG_CFG, "%N - %Y", key_type_names, type, id); return NULL; } INIT(e, .public = { .enumerate = enumerator_enumerate_default, .venumerate = _private_enumerator_enumerate, .destroy = _private_enumerator_destroy, }, ); e->inner = this->db->query(this->db, "SELECT PrivateKey FROM ClientConfig WHERE KeyId = ?", DB_BLOB, id->get_encoding(id), DB_BLOB); if (!e->inner) { free(e); return NULL; } return &e->public; } /** * enumerator over certificates */ typedef struct { /** implements enumerator */ enumerator_t public; /** inner SQL enumerator */ enumerator_t *inner; /** currently enumerated cert */ certificate_t *current; /** type of requested key */ key_type_t type; } cert_enumerator_t; METHOD(enumerator_t, cert_enumerator_enumerate, bool, cert_enumerator_t *this, va_list args) { certificate_t **cert; public_key_t *public; chunk_t chunk; VA_ARGS_VGET(args, cert); DESTROY_IF(this->current); while (this->inner->enumerate(this->inner, &chunk)) { public = lib->creds->create(lib->creds, CRED_PUBLIC_KEY, KEY_ANY, BUILD_BLOB_ASN1_DER, chunk, BUILD_END); if (public) { if (this->type == KEY_ANY || this->type == public->get_type(public)) { this->current = lib->creds->create(lib->creds, CRED_CERTIFICATE, CERT_TRUSTED_PUBKEY, BUILD_PUBLIC_KEY, public, BUILD_END); public->destroy(public); if (this->current) { *cert = this->current; return TRUE; } } else { public->destroy(public); } } } this->current = NULL; return FALSE; } METHOD(enumerator_t, cert_enumerator_destroy, void, cert_enumerator_t *this) { DESTROY_IF(this->current); this->inner->destroy(this->inner); free(this); } METHOD(credential_set_t, create_cert_enumerator, enumerator_t*, private_medcli_creds_t *this, certificate_type_t cert, key_type_t key, identification_t *id, bool trusted) { cert_enumerator_t *e; if ((cert != CERT_TRUSTED_PUBKEY && cert != CERT_ANY) || id == NULL || id->get_type(id) != ID_KEY_ID) { return NULL; } INIT(e, .public = { .enumerate = enumerator_enumerate_default, .venumerate = _cert_enumerator_enumerate, .destroy = _cert_enumerator_destroy, }, .type = key, ); e->inner = this->db->query(this->db, "SELECT PublicKey FROM ClientConfig WHERE KeyId = ? UNION " "SELECT PublicKey FROM MediationServerConfig WHERE KeyId = ? UNION " "SELECT PublicKey FROM Connection WHERE KeyId = ?", DB_BLOB, id->get_encoding(id), DB_BLOB, id->get_encoding(id), DB_BLOB, id->get_encoding(id), DB_BLOB); if (!e->inner) { free(e); return NULL; } return &e->public; } METHOD(medcli_creds_t, destroy, void, private_medcli_creds_t *this) { free(this); } /** * Described in header. */ medcli_creds_t *medcli_creds_create(database_t *db) { private_medcli_creds_t *this; INIT(this, .public = { .set = { .create_private_enumerator = _create_private_enumerator, .create_cert_enumerator = _create_cert_enumerator, .create_shared_enumerator = (void*)return_null, .create_cdp_enumerator = (void*)return_null, .cache_cert = (void*)nop, }, .destroy = _destroy, }, .db = db, ); return &this->public; }