trustbridge: cinst/mozilla.c comparison

comparison cinst/mozilla.c @ 524:a097dd86cb4d

merged.

author	Raimund Renkert <rrenkert@intevation.de>
date	Tue, 29 Apr 2014 15:26:43 +0200
parents	48d7b956bd98
children	f115da3645d5

comparison

equal deleted inserted replaced

-:ca583ffe728a
+:a097dd86cb4d
 cn_str = x509_parse_subject(secitemp->data, secitemp->len, CERT_OID_CN);
 o_str = x509_parse_subject(secitemp->data, secitemp->len, CERT_OID_O);
 if (!cn_str || !o_str)
 {
 DEBUGPRINTF("FATAL: Could not parse certificate!");
-DEBUGPRINTF("data len: %u \n", secitemp->len);
 exit(ERR_INVALID_CERT);
 }
 name_len = strlen(cn_str) + strlen(o_str) + 4;
 name = (char *)xmalloc(name_len);
 snprintf(name, name_len, "%s - %s", cn_str, o_str);
 CERTCertificate *cert = NULL;
 bool success = false;
 char *cert_name = nss_cert_name(dercert);
 DEBUGPRINTF("INSTALLING cert: '%s' to: %s\n", cert_name, pdir);
-if (NSS_Initialize(pdir, "", "", "secmod.db", 0) == SECSuccess)
+pk11slot = PK11_GetInternalKeySlot();
-{
+cert = CERT_DecodeCertFromPackage((char *)dercert->data,
-pk11slot = PK11_GetInternalKeySlot();
+(int)dercert->len);
-cert = CERT_DecodeCertFromPackage((char *)dercert->data,
+trust = (CERTCertTrust *)xmalloc(sizeof(CERTCertTrust));
-(int)dercert->len);
+CERT_DecodeTrustString(trust, "C");
-trust = (CERTCertTrust *)xmalloc(sizeof(CERTCertTrust));
+if ((PK11_ImportCert(pk11slot, cert, CK_INVALID_HANDLE,
-CERT_DecodeTrustString(trust, "C");
+cert_name, PR_FALSE)
-if ((PK11_ImportCert(pk11slot, cert, CK_INVALID_HANDLE,
+== SECSuccess) &&
-cert_name, PR_FALSE)
+(CERT_ChangeCertTrust(CERT_GetDefaultCertDB(), cert, trust)
-== SECSuccess) &&
+== SECSuccess))
-(CERT_ChangeCertTrust(CERT_GetDefaultCertDB(), cert, trust)
+{
-== SECSuccess))
+success = true;
-{
-success = true;
-}
-else
-{
-DEBUGPRINTF("Failed to install certificate '%s' to '%s'!\n", cert_name, pdir);
-}
-CERT_DestroyCertificate (cert);
-free(trust);
-PK11_FreeSlot(pk11slot);
-NSS_Shutdown();
 }
 else
 {
-DEBUGPRINTF("Could not open nss certificate store in %s!\n", pdir);
+DEBUGPRINTF("Failed to install certificate '%s' to '%s'!\n", cert_name, pdir);
-}
+ERRORPRINTF("Error installing certificate err: %i\n", PORT_GetError());
+}
+CERT_DestroyCertificate (cert);
+free(trust);
+PK11_FreeSlot(pk11slot);
 free(cert_name);
 return success;
 }
 */
 bool
 apply_to_certs_and_profiles(bool fn(char *, SECItem *),
 seciteml_t **certs, char **pdirs)
 {
-SECItem *cert;
 bool success = true;
-while ((cert = seciteml_pop(certs)) != NULL)
+for (int i=0; pdirs[i] != NULL; i++)
 {
-for (int i=0; pdirs[i] != NULL; i++)
+seciteml_t *iter = *certs;
-{
+if (NSS_Initialize(pdirs[i], "", "", "secmod.db", 0) != SECSuccess)
+{
+DEBUGPRINTF("Could not open nss certificate store in %s!\n", pdirs[i]);
+continue;
+}
+while (iter != NULL && iter->item != NULL)
+{
+SECItem *cert = iter->item;
 if (! (*fn)(pdirs[i], cert))
 success = false;
-}
+iter = iter->next;
-free(cert->data);
+}
-free(cert);
+NSS_Shutdown();
 }
 return success;
 }

Mercurial > trustbridge

comparison cinst/mozilla.c @ 524:a097dd86cb4d