trustbridge/nss-cmake-static: nss/lib/softoken/legacydb/lgattr.c annotate

annotate nss/lib/softoken/legacydb/lgattr.c @ 3:150b72113545

Add DBM and legacydb support

author	Andre Heinecke <andre.heinecke@intevation.de>
date	Tue, 05 Aug 2014 18:32:02 +0200
parents
children

rev	line source
3 150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1 /* This Source Code Form is subject to the terms of the Mozilla Public
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2 * License, v. 2.0. If a copy of the MPL was not distributed with this
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5 * Internal PKCS #11 functions. Should only be called by pkcs11.c
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	6 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	7 #include "pkcs11.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	8 #include "lgdb.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	9
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	10 #include "pcertt.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	11 #include "lowkeyi.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	12 #include "pcert.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	13 #include "blapi.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	14 #include "secerr.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	15 #include "secasn1.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	16
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	17 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	18 * Cache the object we are working on during Set's and Get's
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	19 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	20 typedef struct LGObjectCacheStr {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	21 CK_OBJECT_CLASS objclass;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	22 CK_OBJECT_HANDLE handle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	23 SDB *sdb;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	24 void *objectInfo;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	25 LGFreeFunc infoFree;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	26 SECItem dbKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	27 } LGObjectCache;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	28
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	29 static const CK_OBJECT_HANDLE lg_classArray[] = {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	30 0, CKO_PRIVATE_KEY, CKO_PUBLIC_KEY, CKO_SECRET_KEY,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	31 CKO_NSS_TRUST, CKO_NSS_CRL, CKO_NSS_SMIME,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	32 CKO_CERTIFICATE };
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	33
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	34 #define handleToClass(handle) \
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	35 lg_classArray[((handle & LG_TOKEN_TYPE_MASK))>>LG_TOKEN_TYPE_SHIFT]
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	36
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	37
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	38 static void lg_DestroyObjectCache(LGObjectCache *obj);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	39
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	40 static LGObjectCache *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	41 lg_NewObjectCache(SDB sdb, const SECItem dbKey, CK_OBJECT_HANDLE handle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	42 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	43 LGObjectCache *obj = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	44 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	45
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	46 obj = PORT_New(LGObjectCache);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	47 if (obj == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	48 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	49 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	50
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	51 obj->objclass = handleToClass(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	52 obj->handle = handle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	53 obj->sdb = sdb;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	54 obj->objectInfo = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	55 obj->infoFree = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	56 obj->dbKey.data = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	57 obj->dbKey.len = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	58 lg_DBLock(sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	59 if (dbKey == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	60 dbKey = lg_lookupTokenKeyByHandle(sdb,handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	61 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	62 if (dbKey == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	63 lg_DBUnlock(sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	64 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	65 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	66 rv = SECITEM_CopyItem(NULL,&obj->dbKey,dbKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	67 lg_DBUnlock(sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	68 if (rv != SECSuccess) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	69 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	70 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	71
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	72 return obj;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	73 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	74 if (obj) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	75 (void) lg_DestroyObjectCache(obj);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	76 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	77 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	78
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	79 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	80
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	81 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	82 * free all the data associated with an object. Object reference count must
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	83 * be 'zero'.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	84 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	85 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	86 lg_DestroyObjectCache(LGObjectCache *obj)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	87 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	88 if (obj->dbKey.data) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	89 PORT_Free(obj->dbKey.data);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	90 obj->dbKey.data = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	91 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	92 if (obj->objectInfo) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	93 (*obj->infoFree)(obj->objectInfo);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	94 obj->objectInfo = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	95 obj->infoFree = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	96 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	97 PORT_Free(obj);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	98 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	99 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	100 * ****************** Attribute Utilities *****************************
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	101 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	102
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	103 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	104 lg_ULongAttribute(CK_ATTRIBUTE *attr, CK_ATTRIBUTE_TYPE type, CK_ULONG value)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	105 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	106 unsigned char *data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	107 int i;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	108
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	109 if (attr->pValue == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	110 attr->ulValueLen = 4;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	111 return CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	112 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	113 if (attr->ulValueLen < 4) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	114 attr->ulValueLen = (CK_ULONG) -1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	115 return CKR_BUFFER_TOO_SMALL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	116 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	117
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	118 data = (unsigned char *)attr->pValue;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	119 for (i=0; i < 4; i++) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	120 data[i] = (value >> ((3-i)*8)) & 0xff;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	121 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	122 attr->ulValueLen = 4;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	123 return CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	124 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	125
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	126 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	127 lg_CopyAttribute(CK_ATTRIBUTE *attr, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	128 CK_VOID_PTR value, CK_ULONG len)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	129 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	130
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	131 if (attr->pValue == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	132 attr->ulValueLen = len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	133 return CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	134 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	135 if (attr->ulValueLen < len) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	136 attr->ulValueLen = (CK_ULONG) -1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	137 return CKR_BUFFER_TOO_SMALL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	138 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	139 PORT_Memcpy(attr->pValue,value,len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	140 attr->ulValueLen = len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	141 return CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	142 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	143
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	144 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	145 lg_CopyAttributeSigned(CK_ATTRIBUTE *attribute, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	146 void *value, CK_ULONG len)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	147 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	148 unsigned char * dval = (unsigned char *)value;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	149 if (*dval == 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	150 dval++;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	151 len--;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	152 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	153 return lg_CopyAttribute(attribute,type,dval,len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	154 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	155
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	156 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	157 lg_CopyPrivAttribute(CK_ATTRIBUTE *attribute, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	158 void value, CK_ULONG len, SDB sdbpw)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	159 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	160 SECItem plainText, *cipherText = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	161 CK_RV crv = CKR_USER_NOT_LOGGED_IN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	162 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	163
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	164 plainText.data = value;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	165 plainText.len = len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	166 rv = lg_util_encrypt(NULL, sdbpw, &plainText, &cipherText);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	167 if (rv != SECSuccess) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	168 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	169 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	170 crv = lg_CopyAttribute(attribute,type,cipherText->data,cipherText->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	171 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	172 if (cipherText) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	173 SECITEM_FreeItem(cipherText,PR_TRUE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	174 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	175 return crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	176 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	177
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	178 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	179 lg_CopyPrivAttrSigned(CK_ATTRIBUTE *attribute, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	180 void value, CK_ULONG len, SDB sdbpw)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	181 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	182 unsigned char * dval = (unsigned char *)value;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	183
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	184 if (*dval == 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	185 dval++;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	186 len--;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	187 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	188 return lg_CopyPrivAttribute(attribute,type,dval,len,sdbpw);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	189 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	190
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	191 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	192 lg_invalidAttribute(CK_ATTRIBUTE *attr)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	193 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	194 attr->ulValueLen = (CK_ULONG) -1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	195 return CKR_ATTRIBUTE_TYPE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	196 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	197
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	198
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	199 #define LG_DEF_ATTRIBUTE(value,len) \
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	200 { 0, value, len }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	201
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	202 #define LG_CLONE_ATTR(attribute, type, staticAttr) \
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	203 lg_CopyAttribute(attribute, type, staticAttr.pValue, staticAttr.ulValueLen)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	204
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	205 CK_BBOOL lg_staticTrueValue = CK_TRUE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	206 CK_BBOOL lg_staticFalseValue = CK_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	207 static const CK_ATTRIBUTE lg_StaticTrueAttr =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	208 LG_DEF_ATTRIBUTE(&lg_staticTrueValue,sizeof(lg_staticTrueValue));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	209 static const CK_ATTRIBUTE lg_StaticFalseAttr =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	210 LG_DEF_ATTRIBUTE(&lg_staticFalseValue,sizeof(lg_staticFalseValue));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	211 static const CK_ATTRIBUTE lg_StaticNullAttr = LG_DEF_ATTRIBUTE(NULL,0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	212 char lg_StaticOneValue = 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	213 static const CK_ATTRIBUTE lg_StaticOneAttr =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	214 LG_DEF_ATTRIBUTE(&lg_StaticOneValue,sizeof(lg_StaticOneValue));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	215
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	216 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	217 * helper functions which get the database and call the underlying
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	218 * low level database function.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	219 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	220 static char *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	221 lg_FindKeyNicknameByPublicKey(SDB sdb, SECItem dbKey)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	222 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	223 NSSLOWKEYDBHandle *keyHandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	224 char * label;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	225
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	226 keyHandle = lg_getKeyDB(sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	227 if (!keyHandle) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	228 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	229 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	230
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	231 label = nsslowkey_FindKeyNicknameByPublicKey(keyHandle, dbKey,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	232 sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	233 return label;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	234 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	235
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	236
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	237 NSSLOWKEYPrivateKey *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	238 lg_FindKeyByPublicKey(SDB sdb, SECItem dbKey)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	239 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	240 NSSLOWKEYPrivateKey *privKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	241 NSSLOWKEYDBHandle *keyHandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	242
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	243 keyHandle = lg_getKeyDB(sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	244 if (keyHandle == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	245 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	246 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	247 privKey = nsslowkey_FindKeyByPublicKey(keyHandle, dbKey, sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	248 if (privKey == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	249 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	250 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	251 return privKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	252 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	253
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	254 static certDBEntrySMime *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	255 lg_getSMime(LGObjectCache *obj)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	256 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	257 certDBEntrySMime *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	258 NSSLOWCERTCertDBHandle *certHandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	259
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	260 if (obj->objclass != CKO_NSS_SMIME) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	261 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	262 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	263 if (obj->objectInfo) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	264 return (certDBEntrySMime *)obj->objectInfo;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	265 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	266
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	267 certHandle = lg_getCertDB(obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	268 if (!certHandle) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	269 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	270 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	271 entry = nsslowcert_ReadDBSMimeEntry(certHandle, (char *)obj->dbKey.data);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	272 obj->objectInfo = (void *)entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	273 obj->infoFree = (LGFreeFunc) nsslowcert_DestroyDBEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	274 return entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	275 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	276
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	277 static certDBEntryRevocation *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	278 lg_getCrl(LGObjectCache *obj)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	279 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	280 certDBEntryRevocation *crl;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	281 PRBool isKrl;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	282 NSSLOWCERTCertDBHandle *certHandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	283
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	284 if (obj->objclass != CKO_NSS_CRL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	285 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	286 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	287 if (obj->objectInfo) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	288 return (certDBEntryRevocation *)obj->objectInfo;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	289 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	290
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	291 isKrl = (PRBool) (obj->handle == LG_TOKEN_KRL_HANDLE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	292 certHandle = lg_getCertDB(obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	293 if (!certHandle) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	294 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	295 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	296
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	297 crl = nsslowcert_FindCrlByKey(certHandle, &obj->dbKey, isKrl);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	298 obj->objectInfo = (void *)crl;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	299 obj->infoFree = (LGFreeFunc) nsslowcert_DestroyDBEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	300 return crl;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	301 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	302
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	303 static NSSLOWCERTCertificate *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	304 lg_getCert(LGObjectCache obj, NSSLOWCERTCertDBHandle certHandle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	305 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	306 NSSLOWCERTCertificate *cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	307 CK_OBJECT_CLASS objClass = obj->objclass;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	308
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	309 if ((objClass != CKO_CERTIFICATE) && (objClass != CKO_NSS_TRUST)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	310 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	311 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	312 if (objClass == CKO_CERTIFICATE && obj->objectInfo) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	313 return (NSSLOWCERTCertificate *)obj->objectInfo;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	314 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	315 cert = nsslowcert_FindCertByKey(certHandle, &obj->dbKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	316 if (objClass == CKO_CERTIFICATE) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	317 obj->objectInfo = (void *)cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	318 obj->infoFree = (LGFreeFunc) nsslowcert_DestroyCertificate ;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	319 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	320 return cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	321 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	322
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	323 static NSSLOWCERTTrust *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	324 lg_getTrust(LGObjectCache obj, NSSLOWCERTCertDBHandle certHandle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	325 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	326 NSSLOWCERTTrust *trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	327
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	328 if (obj->objclass != CKO_NSS_TRUST) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	329 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	330 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	331 if (obj->objectInfo) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	332 return (NSSLOWCERTTrust *)obj->objectInfo;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	333 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	334 trust = nsslowcert_FindTrustByKey(certHandle, &obj->dbKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	335 obj->objectInfo = (void *)trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	336 obj->infoFree = (LGFreeFunc) nsslowcert_DestroyTrust ;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	337 return trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	338 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	339
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	340 static NSSLOWKEYPublicKey *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	341 lg_GetPublicKey(LGObjectCache *obj)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	342 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	343 NSSLOWKEYPublicKey *pubKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	344 NSSLOWKEYPrivateKey *privKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	345
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	346 if (obj->objclass != CKO_PUBLIC_KEY) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	347 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	348 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	349 if (obj->objectInfo) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	350 return (NSSLOWKEYPublicKey *)obj->objectInfo;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	351 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	352 privKey = lg_FindKeyByPublicKey(obj->sdb, &obj->dbKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	353 if (privKey == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	354 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	355 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	356 pubKey = lg_nsslowkey_ConvertToPublicKey(privKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	357 lg_nsslowkey_DestroyPrivateKey(privKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	358 obj->objectInfo = (void *) pubKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	359 obj->infoFree = (LGFreeFunc) lg_nsslowkey_DestroyPublicKey ;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	360 return pubKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	361 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	362
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	363 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	364 * we need two versions of lg_GetPrivateKey. One version that takes the
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	365 * DB handle so we can pass the handle we have already acquired in,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	366 * rather than going through the 'getKeyDB' code again,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	367 * which may fail the second time and another which just aquires
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	368 * the key handle from the sdb (where we don't already have a key handle.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	369 * This version does the former.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	370 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	371 static NSSLOWKEYPrivateKey *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	372 lg_GetPrivateKeyWithDB(LGObjectCache obj, NSSLOWKEYDBHandle keyHandle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	373 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	374 NSSLOWKEYPrivateKey *privKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	375
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	376 if ((obj->objclass != CKO_PRIVATE_KEY) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	377 (obj->objclass != CKO_SECRET_KEY)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	378 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	379 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	380 if (obj->objectInfo) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	381 return (NSSLOWKEYPrivateKey *)obj->objectInfo;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	382 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	383 privKey = nsslowkey_FindKeyByPublicKey(keyHandle, &obj->dbKey, obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	384 if (privKey == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	385 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	386 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	387 obj->objectInfo = (void *) privKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	388 obj->infoFree = (LGFreeFunc) lg_nsslowkey_DestroyPrivateKey ;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	389 return privKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	390 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	391
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	392 /* this version does the latter */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	393 static NSSLOWKEYPrivateKey *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	394 lg_GetPrivateKey(LGObjectCache *obj)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	395 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	396 NSSLOWKEYDBHandle *keyHandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	397 NSSLOWKEYPrivateKey *privKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	398
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	399 keyHandle = lg_getKeyDB(obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	400 if (!keyHandle) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	401 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	402 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	403 privKey = lg_GetPrivateKeyWithDB(obj, keyHandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	404 return privKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	405 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	406
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	407 /* lg_GetPubItem returns data associated with the public key.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	408 * one only needs to free the public key. This comment is here
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	409 * because this sematic would be non-obvious otherwise. All callers
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	410 * should include this comment.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	411 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	412 static SECItem *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	413 lg_GetPubItem(NSSLOWKEYPublicKey *pubKey) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	414 SECItem *pubItem = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	415 /* get value to compare from the cert's public key */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	416 switch ( pubKey->keyType ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	417 case NSSLOWKEYRSAKey:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	418 pubItem = &pubKey->u.rsa.modulus;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	419 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	420 case NSSLOWKEYDSAKey:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	421 pubItem = &pubKey->u.dsa.publicValue;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	422 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	423 case NSSLOWKEYDHKey:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	424 pubItem = &pubKey->u.dh.publicValue;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	425 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	426 #ifndef NSS_DISABLE_ECC
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	427 case NSSLOWKEYECKey:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	428 pubItem = &pubKey->u.ec.publicValue;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	429 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	430 #endif /* NSS_DISABLE_ECC */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	431 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	432 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	433 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	434 return pubItem;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	435 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	436
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	437 static const SEC_ASN1Template lg_SerialTemplate[] = {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	438 { SEC_ASN1_INTEGER, offsetof(NSSLOWCERTCertificate,serialNumber) },
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	439 { 0 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	440 };
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	441
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	442 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	443 lg_FindRSAPublicKeyAttribute(NSSLOWKEYPublicKey *key, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	444 CK_ATTRIBUTE *attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	445 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	446 unsigned char hash[SHA1_LENGTH];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	447 CK_KEY_TYPE keyType = CKK_RSA;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	448
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	449 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	450 case CKA_KEY_TYPE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	451 return lg_ULongAttribute(attribute, type, keyType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	452 case CKA_ID:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	453 SHA1_HashBuf(hash,key->u.rsa.modulus.data,key->u.rsa.modulus.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	454 return lg_CopyAttribute(attribute,type,hash,SHA1_LENGTH);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	455 case CKA_DERIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	456 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	457 case CKA_ENCRYPT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	458 case CKA_VERIFY:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	459 case CKA_VERIFY_RECOVER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	460 case CKA_WRAP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	461 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	462 case CKA_MODULUS:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	463 return lg_CopyAttributeSigned(attribute,type,key->u.rsa.modulus.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	464 key->u.rsa.modulus.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	465 case CKA_PUBLIC_EXPONENT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	466 return lg_CopyAttributeSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	467 key->u.rsa.publicExponent.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	468 key->u.rsa.publicExponent.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	469 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	470 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	471 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	472 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	473 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	474
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	475 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	476 lg_FindDSAPublicKeyAttribute(NSSLOWKEYPublicKey *key, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	477 CK_ATTRIBUTE *attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	478 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	479 unsigned char hash[SHA1_LENGTH];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	480 CK_KEY_TYPE keyType = CKK_DSA;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	481
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	482 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	483 case CKA_KEY_TYPE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	484 return lg_ULongAttribute(attribute, type, keyType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	485 case CKA_ID:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	486 SHA1_HashBuf(hash,key->u.dsa.publicValue.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	487 key->u.dsa.publicValue.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	488 return lg_CopyAttribute(attribute,type,hash,SHA1_LENGTH);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	489 case CKA_DERIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	490 case CKA_ENCRYPT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	491 case CKA_VERIFY_RECOVER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	492 case CKA_WRAP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	493 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	494 case CKA_VERIFY:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	495 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	496 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	497 return lg_CopyAttributeSigned(attribute,type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	498 key->u.dsa.publicValue.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	499 key->u.dsa.publicValue.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	500 case CKA_PRIME:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	501 return lg_CopyAttributeSigned(attribute,type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	502 key->u.dsa.params.prime.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	503 key->u.dsa.params.prime.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	504 case CKA_SUBPRIME:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	505 return lg_CopyAttributeSigned(attribute,type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	506 key->u.dsa.params.subPrime.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	507 key->u.dsa.params.subPrime.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	508 case CKA_BASE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	509 return lg_CopyAttributeSigned(attribute,type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	510 key->u.dsa.params.base.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	511 key->u.dsa.params.base.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	512 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	513 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	514 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	515 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	516 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	517
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	518 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	519 lg_FindDHPublicKeyAttribute(NSSLOWKEYPublicKey *key, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	520 CK_ATTRIBUTE *attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	521 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	522 unsigned char hash[SHA1_LENGTH];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	523 CK_KEY_TYPE keyType = CKK_DH;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	524
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	525 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	526 case CKA_KEY_TYPE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	527 return lg_ULongAttribute(attribute, type, keyType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	528 case CKA_ID:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	529 SHA1_HashBuf(hash,key->u.dh.publicValue.data,key->u.dh.publicValue.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	530 return lg_CopyAttribute(attribute,type,hash,SHA1_LENGTH);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	531 case CKA_DERIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	532 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	533 case CKA_ENCRYPT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	534 case CKA_VERIFY:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	535 case CKA_VERIFY_RECOVER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	536 case CKA_WRAP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	537 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	538 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	539 return lg_CopyAttributeSigned(attribute,type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	540 key->u.dh.publicValue.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	541 key->u.dh.publicValue.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	542 case CKA_PRIME:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	543 return lg_CopyAttributeSigned(attribute,type,key->u.dh.prime.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	544 key->u.dh.prime.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	545 case CKA_BASE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	546 return lg_CopyAttributeSigned(attribute,type,key->u.dh.base.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	547 key->u.dh.base.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	548 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	549 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	550 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	551 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	552 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	553
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	554 #ifndef NSS_DISABLE_ECC
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	555 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	556 lg_FindECPublicKeyAttribute(NSSLOWKEYPublicKey *key, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	557 CK_ATTRIBUTE *attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	558 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	559 unsigned char hash[SHA1_LENGTH];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	560 CK_KEY_TYPE keyType = CKK_EC;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	561
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	562 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	563 case CKA_KEY_TYPE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	564 return lg_ULongAttribute(attribute, type, keyType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	565 case CKA_ID:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	566 SHA1_HashBuf(hash, key->u.ec.publicValue.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	567 key->u.ec.publicValue.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	568 return lg_CopyAttribute(attribute,type,hash,SHA1_LENGTH);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	569 case CKA_DERIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	570 case CKA_VERIFY:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	571 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	572 case CKA_ENCRYPT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	573 case CKA_VERIFY_RECOVER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	574 case CKA_WRAP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	575 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	576 case CKA_EC_PARAMS:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	577 return lg_CopyAttributeSigned(attribute,type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	578 key->u.ec.ecParams.DEREncoding.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	579 key->u.ec.ecParams.DEREncoding.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	580 case CKA_EC_POINT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	581 if (getenv("NSS_USE_DECODED_CKA_EC_POINT")) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	582 return lg_CopyAttributeSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	583 key->u.ec.publicValue.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	584 key->u.ec.publicValue.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	585 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	586 SECItem *pubValue = SEC_ASN1EncodeItem(NULL, NULL,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	587 &(key->u.ec.publicValue),
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	588 SEC_ASN1_GET(SEC_OctetStringTemplate));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	589 CK_RV crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	590 if (!pubValue) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	591 return CKR_HOST_MEMORY;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	592 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	593 crv = lg_CopyAttributeSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	594 pubValue->data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	595 pubValue->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	596 SECITEM_FreeItem(pubValue, PR_TRUE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	597 return crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	598 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	599 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	600 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	601 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	602 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	603 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	604 #endif /* NSS_DISABLE_ECC */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	605
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	606
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	607 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	608 lg_FindPublicKeyAttribute(LGObjectCache *obj, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	609 CK_ATTRIBUTE *attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	610 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	611 NSSLOWKEYPublicKey *key;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	612 CK_RV crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	613 char *label;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	614
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	615 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	616 case CKA_PRIVATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	617 case CKA_SENSITIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	618 case CKA_ALWAYS_SENSITIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	619 case CKA_NEVER_EXTRACTABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	620 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	621 case CKA_MODIFIABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	622 case CKA_EXTRACTABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	623 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	624 case CKA_SUBJECT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	625 return LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	626 case CKA_START_DATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	627 case CKA_END_DATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	628 return LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	629 case CKA_LABEL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	630 label = lg_FindKeyNicknameByPublicKey(obj->sdb, &obj->dbKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	631 if (label == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	632 return LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	633 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	634 crv = lg_CopyAttribute(attribute,type,label,PORT_Strlen(label));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	635 PORT_Free(label);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	636 return crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	637 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	638 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	639 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	640
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	641 key = lg_GetPublicKey(obj);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	642 if (key == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	643 if (type == CKA_ID) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	644 return LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	645 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	646 return CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	647 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	648
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	649 switch (key->keyType) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	650 case NSSLOWKEYRSAKey:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	651 return lg_FindRSAPublicKeyAttribute(key,type,attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	652 case NSSLOWKEYDSAKey:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	653 return lg_FindDSAPublicKeyAttribute(key,type,attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	654 case NSSLOWKEYDHKey:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	655 return lg_FindDHPublicKeyAttribute(key,type,attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	656 #ifndef NSS_DISABLE_ECC
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	657 case NSSLOWKEYECKey:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	658 return lg_FindECPublicKeyAttribute(key,type,attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	659 #endif /* NSS_DISABLE_ECC */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	660 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	661 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	662 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	663
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	664 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	665 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	666
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	667 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	668 lg_FindSecretKeyAttribute(LGObjectCache *obj, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	669 CK_ATTRIBUTE *attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	670 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	671 NSSLOWKEYPrivateKey *key;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	672 char *label;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	673 unsigned char *keyString;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	674 CK_RV crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	675 int keyTypeLen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	676 CK_ULONG keyLen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	677 CK_KEY_TYPE keyType;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	678 PRUint32 keyTypeStorage;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	679
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	680 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	681 case CKA_PRIVATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	682 case CKA_SENSITIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	683 case CKA_ALWAYS_SENSITIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	684 case CKA_EXTRACTABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	685 case CKA_DERIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	686 case CKA_ENCRYPT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	687 case CKA_DECRYPT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	688 case CKA_SIGN:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	689 case CKA_VERIFY:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	690 case CKA_WRAP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	691 case CKA_UNWRAP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	692 case CKA_MODIFIABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	693 case CKA_LOCAL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	694 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	695 case CKA_NEVER_EXTRACTABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	696 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	697 case CKA_START_DATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	698 case CKA_END_DATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	699 return LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	700 case CKA_LABEL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	701 label = lg_FindKeyNicknameByPublicKey(obj->sdb, &obj->dbKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	702 if (label == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	703 return LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	704 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	705 crv = lg_CopyAttribute(attribute,type,label,PORT_Strlen(label));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	706 PORT_Free(label);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	707 return crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	708 case CKA_ID:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	709 return lg_CopyAttribute(attribute,type,obj->dbKey.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	710 obj->dbKey.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	711 case CKA_KEY_TYPE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	712 case CKA_VALUE_LEN:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	713 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	714 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	715 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	716 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	717 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	718
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	719 key = lg_GetPrivateKey(obj);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	720 if (key == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	721 return CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	722 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	723 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	724 case CKA_KEY_TYPE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	725 /* handle legacy databases. In legacy databases key_type was stored
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	726 * in host order, with any leading zeros stripped off. Only key types
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	727 * under 0x1f (AES) were stored. We assume that any values which are
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	728 * either 1 byte long (big endian), or have byte[0] between 0 and
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	729 * 0x7f and bytes[1]-bytes[3] equal to '0' (little endian). All other
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	730 * values are assumed to be from the new database, which is always 4
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	731 * bytes in network order */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	732 keyType=0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	733 keyString = key->u.rsa.coefficient.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	734 keyTypeLen = key->u.rsa.coefficient.len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	735
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	736
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	737 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	738 * Because of various endian and word lengths The database may have
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	739 * stored the keyType value in one of the following formats:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	740 * (kt) <= 0x1f
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	741 * length data
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	742 * Big Endian, pre-3.9, all lengths: 1 (kt)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	743 * Little Endian, pre-3.9, 32 bits: 4 (kt) 0 0 0
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	744 * Little Endian, pre-3.9, 64 bits: 8 (kt) 0 0 0 0 0 0 0
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	745 * All platforms, 3.9, 32 bits: 4 0 0 0 (kt)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	746 * Big Endian, 3.9, 64 bits: 8 0 0 0 (kt) 0 0 0 0
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	747 * Little Endian, 3.9, 64 bits: 8 0 0 0 0 0 0 0 (kt)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	748 * All platforms, >= 3.9.1, all lengths: 4 (a) k1 k2 k3
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	749 * where (a) is 0 or >= 0x80. currently (a) can only be 0.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	750 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	751 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	752 * this key was written on a 64 bit platform with a using NSS 3.9
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	753 * or earlier. Reduce the 64 bit possibilities above. When we are
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	754 * through, we will only have:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	755 *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	756 * Big Endian, pre-3.9, all lengths: 1 (kt)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	757 * Little Endian, pre-3.9, all lengths: 4 (kt) 0 0 0
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	758 * All platforms, 3.9, all lengths: 4 0 0 0 (kt)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	759 * All platforms, => 3.9.1, all lengths: 4 (a) k1 k2 k3
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	760 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	761 if (keyTypeLen == 8) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	762 keyTypeStorage = (PRUint32 ) keyString;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	763 if (keyTypeStorage == 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	764 keyString += sizeof(PRUint32);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	765 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	766 keyTypeLen = 4;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	767 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	768 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	769 * Now Handle:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	770 *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	771 * All platforms, 3.9, all lengths: 4 0 0 0 (kt)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	772 * All platforms, => 3.9.1, all lengths: 4 (a) k1 k2 k3
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	773 *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	774 * NOTE: if kt == 0 or ak1k2k3 == 0, the test fails and
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	775 * we handle it as:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	776 *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	777 * Little Endian, pre-3.9, all lengths: 4 (kt) 0 0 0
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	778 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	779 if (keyTypeLen == sizeof(keyTypeStorage) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	780 (((keyString[0] & 0x80) == 0x80) \|\|
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	781 !((keyString[1] == 0) && (keyString[2] == 0)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	782 && (keyString[3] == 0))) ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	783 PORT_Memcpy(&keyTypeStorage, keyString, sizeof(keyTypeStorage));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	784 keyType = (CK_KEY_TYPE) PR_ntohl(keyTypeStorage);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	785 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	786 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	787 * Now Handle:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	788 *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	789 * Big Endian, pre-3.9, all lengths: 1 (kt)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	790 * Little Endian, pre-3.9, all lengths: 4 (kt) 0 0 0
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	791 * -- KeyType == 0 all other cases ---: 4 0 0 0 0
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	792 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	793 keyType = (CK_KEY_TYPE) keyString[0] ;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	794 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	795 return lg_ULongAttribute(attribute, type, keyType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	796 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	797 return lg_CopyPrivAttribute(attribute,type,key->u.rsa.privateExponent.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	798 key->u.rsa.privateExponent.len, obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	799 case CKA_VALUE_LEN:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	800 keyLen=key->u.rsa.privateExponent.len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	801 return lg_ULongAttribute(attribute,type, keyLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	802 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	803 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	804 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	805
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	806 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	807 lg_FindRSAPrivateKeyAttribute(NSSLOWKEYPrivateKey *key, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	808 CK_ATTRIBUTE attribute, SDB sdbpw)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	809 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	810 unsigned char hash[SHA1_LENGTH];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	811 CK_KEY_TYPE keyType = CKK_RSA;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	812
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	813 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	814 case CKA_KEY_TYPE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	815 return lg_ULongAttribute(attribute, type, keyType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	816 case CKA_ID:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	817 SHA1_HashBuf(hash,key->u.rsa.modulus.data,key->u.rsa.modulus.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	818 return lg_CopyAttribute(attribute,type,hash,SHA1_LENGTH);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	819 case CKA_DERIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	820 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	821 case CKA_DECRYPT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	822 case CKA_SIGN:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	823 case CKA_SIGN_RECOVER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	824 case CKA_UNWRAP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	825 return LG_CLONE_ATTR(attribute, type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	826 case CKA_MODULUS:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	827 return lg_CopyAttributeSigned(attribute,type,key->u.rsa.modulus.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	828 key->u.rsa.modulus.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	829 case CKA_PUBLIC_EXPONENT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	830 return lg_CopyAttributeSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	831 key->u.rsa.publicExponent.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	832 key->u.rsa.publicExponent.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	833 case CKA_PRIVATE_EXPONENT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	834 return lg_CopyPrivAttrSigned(attribute,type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	835 key->u.rsa.privateExponent.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	836 key->u.rsa.privateExponent.len, sdbpw);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	837 case CKA_PRIME_1:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	838 return lg_CopyPrivAttrSigned(attribute, type, key->u.rsa.prime1.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	839 key->u.rsa.prime1.len, sdbpw);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	840 case CKA_PRIME_2:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	841 return lg_CopyPrivAttrSigned(attribute, type, key->u.rsa.prime2.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	842 key->u.rsa.prime2.len, sdbpw);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	843 case CKA_EXPONENT_1:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	844 return lg_CopyPrivAttrSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	845 key->u.rsa.exponent1.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	846 key->u.rsa.exponent1.len, sdbpw);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	847 case CKA_EXPONENT_2:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	848 return lg_CopyPrivAttrSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	849 key->u.rsa.exponent2.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	850 key->u.rsa.exponent2.len, sdbpw);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	851 case CKA_COEFFICIENT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	852 return lg_CopyPrivAttrSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	853 key->u.rsa.coefficient.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	854 key->u.rsa.coefficient.len, sdbpw);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	855 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	856 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	857 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	858 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	859 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	860
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	861 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	862 lg_FindDSAPrivateKeyAttribute(NSSLOWKEYPrivateKey *key, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	863 CK_ATTRIBUTE attribute, SDB sdbpw)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	864 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	865 unsigned char hash[SHA1_LENGTH];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	866 CK_KEY_TYPE keyType = CKK_DSA;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	867
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	868 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	869 case CKA_KEY_TYPE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	870 return lg_ULongAttribute(attribute, type, keyType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	871 case CKA_ID:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	872 SHA1_HashBuf(hash,key->u.dsa.publicValue.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	873 key->u.dsa.publicValue.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	874 return lg_CopyAttribute(attribute,type,hash,SHA1_LENGTH);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	875 case CKA_DERIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	876 case CKA_DECRYPT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	877 case CKA_SIGN_RECOVER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	878 case CKA_UNWRAP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	879 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	880 case CKA_SIGN:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	881 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	882 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	883 return lg_CopyPrivAttrSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	884 key->u.dsa.privateValue.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	885 key->u.dsa.privateValue.len, sdbpw);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	886 case CKA_PRIME:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	887 return lg_CopyAttributeSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	888 key->u.dsa.params.prime.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	889 key->u.dsa.params.prime.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	890 case CKA_SUBPRIME:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	891 return lg_CopyAttributeSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	892 key->u.dsa.params.subPrime.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	893 key->u.dsa.params.subPrime.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	894 case CKA_BASE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	895 return lg_CopyAttributeSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	896 key->u.dsa.params.base.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	897 key->u.dsa.params.base.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	898 case CKA_NETSCAPE_DB:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	899 return lg_CopyAttributeSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	900 key->u.dsa.publicValue.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	901 key->u.dsa.publicValue.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	902 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	903 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	904 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	905 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	906 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	907
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	908 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	909 lg_FindDHPrivateKeyAttribute(NSSLOWKEYPrivateKey *key, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	910 CK_ATTRIBUTE attribute, SDB sdbpw)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	911 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	912 unsigned char hash[SHA1_LENGTH];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	913 CK_KEY_TYPE keyType = CKK_DH;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	914
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	915 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	916 case CKA_KEY_TYPE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	917 return lg_ULongAttribute(attribute, type, keyType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	918 case CKA_ID:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	919 SHA1_HashBuf(hash,key->u.dh.publicValue.data,key->u.dh.publicValue.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	920 return lg_CopyAttribute(attribute,type,hash,SHA1_LENGTH);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	921 case CKA_DERIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	922 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	923 case CKA_DECRYPT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	924 case CKA_SIGN:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	925 case CKA_SIGN_RECOVER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	926 case CKA_UNWRAP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	927 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	928 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	929 return lg_CopyPrivAttrSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	930 key->u.dh.privateValue.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	931 key->u.dh.privateValue.len, sdbpw);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	932 case CKA_PRIME:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	933 return lg_CopyAttributeSigned(attribute, type, key->u.dh.prime.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	934 key->u.dh.prime.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	935 case CKA_BASE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	936 return lg_CopyAttributeSigned(attribute, type, key->u.dh.base.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	937 key->u.dh.base.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	938 case CKA_NETSCAPE_DB:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	939 return lg_CopyAttributeSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	940 key->u.dh.publicValue.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	941 key->u.dh.publicValue.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	942 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	943 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	944 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	945 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	946 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	947
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	948 #ifndef NSS_DISABLE_ECC
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	949 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	950 lg_FindECPrivateKeyAttribute(NSSLOWKEYPrivateKey *key, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	951 CK_ATTRIBUTE attribute, SDB sdbpw)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	952 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	953 unsigned char hash[SHA1_LENGTH];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	954 CK_KEY_TYPE keyType = CKK_EC;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	955
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	956 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	957 case CKA_KEY_TYPE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	958 return lg_ULongAttribute(attribute, type, keyType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	959 case CKA_ID:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	960 SHA1_HashBuf(hash,key->u.ec.publicValue.data,key->u.ec.publicValue.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	961 return lg_CopyAttribute(attribute,type,hash,SHA1_LENGTH);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	962 case CKA_DERIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	963 case CKA_SIGN:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	964 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	965 case CKA_DECRYPT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	966 case CKA_SIGN_RECOVER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	967 case CKA_UNWRAP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	968 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	969 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	970 return lg_CopyPrivAttrSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	971 key->u.ec.privateValue.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	972 key->u.ec.privateValue.len, sdbpw);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	973 case CKA_EC_PARAMS:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	974 return lg_CopyAttributeSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	975 key->u.ec.ecParams.DEREncoding.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	976 key->u.ec.ecParams.DEREncoding.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	977 case CKA_NETSCAPE_DB:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	978 return lg_CopyAttributeSigned(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	979 key->u.ec.publicValue.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	980 key->u.ec.publicValue.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	981 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	982 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	983 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	984 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	985 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	986 #endif /* NSS_DISABLE_ECC */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	987
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	988 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	989 lg_FindPrivateKeyAttribute(LGObjectCache *obj, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	990 CK_ATTRIBUTE *attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	991 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	992 NSSLOWKEYPrivateKey *key;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	993 char *label;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	994 CK_RV crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	995
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	996 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	997 case CKA_PRIVATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	998 case CKA_SENSITIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	999 case CKA_ALWAYS_SENSITIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1000 case CKA_EXTRACTABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1001 case CKA_MODIFIABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1002 case CKA_LOCAL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1003 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1004 case CKA_NEVER_EXTRACTABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1005 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1006 case CKA_SUBJECT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1007 return LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1008 case CKA_START_DATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1009 case CKA_END_DATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1010 return LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1011 case CKA_LABEL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1012 label = lg_FindKeyNicknameByPublicKey(obj->sdb, &obj->dbKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1013 if (label == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1014 return LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1015 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1016 crv = lg_CopyAttribute(attribute,type,label,PORT_Strlen(label));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1017 PORT_Free(label);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1018 return crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1019 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1020 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1021 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1022 key = lg_GetPrivateKey(obj);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1023 if (key == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1024 return CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1025 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1026 switch (key->keyType) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1027 case NSSLOWKEYRSAKey:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1028 return lg_FindRSAPrivateKeyAttribute(key,type,attribute,obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1029 case NSSLOWKEYDSAKey:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1030 return lg_FindDSAPrivateKeyAttribute(key,type,attribute,obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1031 case NSSLOWKEYDHKey:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1032 return lg_FindDHPrivateKeyAttribute(key,type,attribute,obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1033 #ifndef NSS_DISABLE_ECC
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1034 case NSSLOWKEYECKey:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1035 return lg_FindECPrivateKeyAttribute(key,type,attribute,obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1036 #endif /* NSS_DISABLE_ECC */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1037 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1038 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1039 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1040
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1041 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1042 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1043
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1044 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1045 lg_FindSMIMEAttribute(LGObjectCache *obj, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1046 CK_ATTRIBUTE *attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1047 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1048 certDBEntrySMime *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1049 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1050 case CKA_PRIVATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1051 case CKA_MODIFIABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1052 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1053 case CKA_NSS_EMAIL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1054 return lg_CopyAttribute(attribute,type,obj->dbKey.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1055 obj->dbKey.len-1);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1056 case CKA_NSS_SMIME_TIMESTAMP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1057 case CKA_SUBJECT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1058 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1059 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1060 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1061 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1062 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1063 entry = lg_getSMime(obj);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1064 if (entry == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1065 return CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1066 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1067 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1068 case CKA_NSS_SMIME_TIMESTAMP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1069 return lg_CopyAttribute(attribute,type,entry->optionsDate.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1070 entry->optionsDate.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1071 case CKA_SUBJECT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1072 return lg_CopyAttribute(attribute,type,entry->subjectName.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1073 entry->subjectName.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1074 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1075 return lg_CopyAttribute(attribute,type,entry->smimeOptions.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1076 entry->smimeOptions.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1077 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1078 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1079 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1080 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1081 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1082
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1083 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1084 lg_FindTrustAttribute(LGObjectCache *obj, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1085 CK_ATTRIBUTE *attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1086 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1087 NSSLOWCERTTrust *trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1088 NSSLOWCERTCertDBHandle *certHandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1089 NSSLOWCERTCertificate *cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1090 unsigned char hash[SHA1_LENGTH];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1091 unsigned int trustFlags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1092 CK_RV crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1093
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1094 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1095 case CKA_PRIVATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1096 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1097 case CKA_MODIFIABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1098 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1099 case CKA_CERT_SHA1_HASH:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1100 case CKA_CERT_MD5_HASH:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1101 case CKA_TRUST_CLIENT_AUTH:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1102 case CKA_TRUST_SERVER_AUTH:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1103 case CKA_TRUST_EMAIL_PROTECTION:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1104 case CKA_TRUST_CODE_SIGNING:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1105 case CKA_TRUST_STEP_UP_APPROVED:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1106 case CKA_ISSUER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1107 case CKA_SERIAL_NUMBER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1108 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1109 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1110 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1111 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1112 certHandle = lg_getCertDB(obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1113 if (!certHandle) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1114 return CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1115 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1116 trust = lg_getTrust(obj, certHandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1117 if (trust == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1118 return CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1119 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1120 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1121 case CKA_CERT_SHA1_HASH:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1122 SHA1_HashBuf(hash,trust->derCert->data,trust->derCert->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1123 return lg_CopyAttribute(attribute, type, hash, SHA1_LENGTH);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1124 case CKA_CERT_MD5_HASH:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1125 MD5_HashBuf(hash,trust->derCert->data,trust->derCert->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1126 return lg_CopyAttribute(attribute, type, hash, MD5_LENGTH);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1127 case CKA_TRUST_CLIENT_AUTH:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1128 trustFlags = trust->trust->sslFlags & CERTDB_TRUSTED_CLIENT_CA ?
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1129 trust->trust->sslFlags \| CERTDB_TRUSTED_CA : 0 ;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1130 goto trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1131 case CKA_TRUST_SERVER_AUTH:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1132 trustFlags = trust->trust->sslFlags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1133 goto trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1134 case CKA_TRUST_EMAIL_PROTECTION:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1135 trustFlags = trust->trust->emailFlags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1136 goto trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1137 case CKA_TRUST_CODE_SIGNING:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1138 trustFlags = trust->trust->objectSigningFlags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1139 trust:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1140 if (trustFlags & CERTDB_TRUSTED_CA ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1141 return lg_ULongAttribute(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1142 CKT_NSS_TRUSTED_DELEGATOR);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1143 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1144 if (trustFlags & CERTDB_TRUSTED) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1145 return lg_ULongAttribute(attribute, type, CKT_NSS_TRUSTED);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1146 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1147 if (trustFlags & CERTDB_MUST_VERIFY) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1148 return lg_ULongAttribute(attribute, type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1149 CKT_NSS_MUST_VERIFY_TRUST);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1150 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1151 if (trustFlags & CERTDB_TRUSTED_UNKNOWN) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1152 return lg_ULongAttribute(attribute, type, CKT_NSS_TRUST_UNKNOWN);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1153 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1154 if (trustFlags & CERTDB_VALID_CA) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1155 return lg_ULongAttribute(attribute, type, CKT_NSS_VALID_DELEGATOR);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1156 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1157 if (trustFlags & CERTDB_TERMINAL_RECORD) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1158 return lg_ULongAttribute(attribute, type, CKT_NSS_NOT_TRUSTED);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1159 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1160 return lg_ULongAttribute(attribute, type, CKT_NSS_TRUST_UNKNOWN);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1161 case CKA_TRUST_STEP_UP_APPROVED:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1162 if (trust->trust->sslFlags & CERTDB_GOVT_APPROVED_CA) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1163 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1164 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1165 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1166 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1167 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1168 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1169 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1170
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1171
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1172 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1173 case CKA_ISSUER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1174 cert = lg_getCert(obj, certHandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1175 if (cert == NULL) break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1176 crv = lg_CopyAttribute(attribute,type,cert->derIssuer.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1177 cert->derIssuer.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1178 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1179 case CKA_SERIAL_NUMBER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1180 cert = lg_getCert(obj, certHandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1181 if (cert == NULL) break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1182 crv = lg_CopyAttribute(attribute,type,cert->derSN.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1183 cert->derSN.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1184 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1185 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1186 cert = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1187 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1188 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1189 if (cert) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1190 nsslowcert_DestroyCertificate(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1191 return crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1192 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1193 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1194 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1195
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1196 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1197 lg_FindCrlAttribute(LGObjectCache *obj, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1198 CK_ATTRIBUTE *attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1199 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1200 certDBEntryRevocation *crl;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1201
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1202 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1203 case CKA_PRIVATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1204 case CKA_MODIFIABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1205 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1206 case CKA_NSS_KRL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1207 return ((obj->handle == LG_TOKEN_KRL_HANDLE)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1208 ? LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1209 : LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1210 case CKA_SUBJECT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1211 return lg_CopyAttribute(attribute,type,obj->dbKey.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1212 obj->dbKey.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1213 case CKA_NSS_URL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1214 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1215 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1216 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1217 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1218 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1219 crl = lg_getCrl(obj);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1220 if (!crl) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1221 return CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1222 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1223 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1224 case CKA_NSS_URL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1225 if (crl->url == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1226 return LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1227 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1228 return lg_CopyAttribute(attribute, type, crl->url,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1229 PORT_Strlen(crl->url)+1);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1230 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1231 return lg_CopyAttribute(attribute, type, crl->derCrl.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1232 crl->derCrl.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1233 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1234 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1235 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1236 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1237 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1238
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1239 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1240 lg_FindCertAttribute(LGObjectCache *obj, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1241 CK_ATTRIBUTE *attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1242 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1243 NSSLOWCERTCertificate *cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1244 NSSLOWCERTCertDBHandle *certHandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1245 NSSLOWKEYPublicKey *pubKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1246 unsigned char hash[SHA1_LENGTH];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1247 SECItem *item;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1248
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1249 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1250 case CKA_PRIVATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1251 return LG_CLONE_ATTR(attribute,type,lg_StaticFalseAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1252 case CKA_MODIFIABLE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1253 return LG_CLONE_ATTR(attribute,type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1254 case CKA_CERTIFICATE_TYPE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1255 /* hardcoding X.509 into here */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1256 return lg_ULongAttribute(attribute, type, CKC_X_509);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1257 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1258 case CKA_ID:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1259 case CKA_LABEL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1260 case CKA_SUBJECT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1261 case CKA_ISSUER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1262 case CKA_SERIAL_NUMBER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1263 case CKA_NSS_EMAIL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1264 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1265 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1266 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1267 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1268
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1269 certHandle = lg_getCertDB(obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1270 if (certHandle == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1271 return CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1272 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1273
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1274 cert = lg_getCert(obj, certHandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1275 if (cert == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1276 return CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1277 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1278 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1279 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1280 return lg_CopyAttribute(attribute,type,cert->derCert.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1281 cert->derCert.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1282 case CKA_ID:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1283 if (((cert->trust->sslFlags & CERTDB_USER) == 0) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1284 ((cert->trust->emailFlags & CERTDB_USER) == 0) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1285 ((cert->trust->objectSigningFlags & CERTDB_USER) == 0)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1286 return LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1287 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1288 pubKey = nsslowcert_ExtractPublicKey(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1289 if (pubKey == NULL) break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1290 item = lg_GetPubItem(pubKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1291 if (item == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1292 lg_nsslowkey_DestroyPublicKey(pubKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1293 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1294 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1295 SHA1_HashBuf(hash,item->data,item->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1296 /* item is imbedded in pubKey, just free the key */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1297 lg_nsslowkey_DestroyPublicKey(pubKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1298 return lg_CopyAttribute(attribute, type, hash, SHA1_LENGTH);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1299 case CKA_LABEL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1300 return cert->nickname
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1301 ? lg_CopyAttribute(attribute, type, cert->nickname,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1302 PORT_Strlen(cert->nickname))
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1303 : LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1304 case CKA_SUBJECT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1305 return lg_CopyAttribute(attribute,type,cert->derSubject.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1306 cert->derSubject.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1307 case CKA_ISSUER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1308 return lg_CopyAttribute(attribute,type,cert->derIssuer.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1309 cert->derIssuer.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1310 case CKA_SERIAL_NUMBER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1311 return lg_CopyAttribute(attribute,type,cert->derSN.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1312 cert->derSN.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1313 case CKA_NSS_EMAIL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1314 return (cert->emailAddr && cert->emailAddr[0])
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1315 ? lg_CopyAttribute(attribute, type, cert->emailAddr,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1316 PORT_Strlen(cert->emailAddr))
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1317 : LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1318 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1319 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1320 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1321 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1322 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1323
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1324 CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1325 lg_GetSingleAttribute(LGObjectCache obj, CK_ATTRIBUTE attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1326 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1327 /* handle the common ones */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1328 CK_ATTRIBUTE_TYPE type = attribute->type;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1329 switch (type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1330 case CKA_CLASS:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1331 return lg_ULongAttribute(attribute,type,obj->objclass);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1332 case CKA_TOKEN:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1333 return LG_CLONE_ATTR(attribute, type,lg_StaticTrueAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1334 case CKA_LABEL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1335 if ( (obj->objclass == CKO_CERTIFICATE)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1336 \|\| (obj->objclass == CKO_PRIVATE_KEY)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1337 \|\| (obj->objclass == CKO_PUBLIC_KEY)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1338 \|\| (obj->objclass == CKO_SECRET_KEY)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1339 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1340 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1341 return LG_CLONE_ATTR(attribute,type,lg_StaticNullAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1342 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1343 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1344 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1345 switch (obj->objclass) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1346 case CKO_CERTIFICATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1347 return lg_FindCertAttribute(obj,type,attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1348 case CKO_NSS_CRL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1349 return lg_FindCrlAttribute(obj,type,attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1350 case CKO_NSS_TRUST:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1351 return lg_FindTrustAttribute(obj,type,attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1352 case CKO_NSS_SMIME:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1353 return lg_FindSMIMEAttribute(obj,type,attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1354 case CKO_PUBLIC_KEY:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1355 return lg_FindPublicKeyAttribute(obj,type,attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1356 case CKO_PRIVATE_KEY:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1357 return lg_FindPrivateKeyAttribute(obj,type,attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1358 case CKO_SECRET_KEY:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1359 return lg_FindSecretKeyAttribute(obj,type,attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1360 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1361 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1362 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1363 return lg_invalidAttribute(attribute);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1364 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1365
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1366 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1367 * Fill in the attribute template based on the data in the database.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1368 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1369 CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1370 lg_GetAttributeValue(SDB sdb, CK_OBJECT_HANDLE handle, CK_ATTRIBUTE templ,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1371 CK_ULONG count)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1372 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1373 LGObjectCache *obj = lg_NewObjectCache(sdb, NULL, handle & ~LG_TOKEN_MASK);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1374 CK_RV crv, crvCollect = CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1375 unsigned int i;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1376
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1377 if (obj == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1378 return CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1379 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1380
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1381 for (i=0; i < count; i++) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1382 crv = lg_GetSingleAttribute(obj, &templ[i]);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1383 if (crvCollect == CKR_OK) crvCollect = crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1384 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1385
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1386 lg_DestroyObjectCache(obj);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1387 return crvCollect;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1388 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1389
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1390 PRBool
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1391 lg_cmpAttribute(LGObjectCache obj, const CK_ATTRIBUTE attribute)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1392 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1393 unsigned char buf[LG_BUF_SPACE];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1394 CK_ATTRIBUTE testAttr;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1395 unsigned char *tempBuf = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1396 PRBool match = PR_TRUE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1397 CK_RV crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1398
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1399 /* we're going to compare 'attribute' with the actual attribute from
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1400 * the object. We'll use the length of 'attribute' to decide how much
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1401 * space we need to read the test attribute. If 'attribute' doesn't give
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1402 * enough space, then we know the values don't match and that will
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1403 * show up as ckr != CKR_OK */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1404 testAttr = *attribute;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1405 testAttr.pValue = buf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1406
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1407 /* if we don't have enough space, malloc it */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1408 if (attribute->ulValueLen > LG_BUF_SPACE) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1409 tempBuf = PORT_Alloc(attribute->ulValueLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1410 if (!tempBuf) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1411 return PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1412 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1413 testAttr.pValue = tempBuf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1414 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1415
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1416 /* get the attribute */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1417 crv = lg_GetSingleAttribute(obj, &testAttr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1418 /* if the attribute was read OK, compare it */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1419 if ((crv != CKR_OK) \|\| (attribute->ulValueLen != testAttr.ulValueLen) \|\|
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1420 (PORT_Memcmp(attribute->pValue,testAttr.pValue,testAttr.ulValueLen)!= 0)){
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1421 /* something didn't match, this isn't the object we are looking for */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1422 match = PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1423 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1424 /* free the buffer we may have allocated */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1425 if (tempBuf) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1426 PORT_Free(tempBuf);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1427 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1428 return match;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1429 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1430
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1431 PRBool
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1432 lg_tokenMatch(SDB sdb, const SECItem dbKey, CK_OBJECT_HANDLE class,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1433 const CK_ATTRIBUTE *templ, CK_ULONG count)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1434 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1435 PRBool match = PR_TRUE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1436 LGObjectCache *obj = lg_NewObjectCache(sdb, dbKey, class);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1437 unsigned int i;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1438
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1439 if (obj == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1440 return PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1441 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1442
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1443 for (i=0; i < count; i++) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1444 match = lg_cmpAttribute(obj, &templ[i]);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1445 if (!match) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1446 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1447 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1448 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1449
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1450 /* done looking, free up our cache */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1451 lg_DestroyObjectCache(obj);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1452
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1453 /* if we get through the whole list without finding a mismatched attribute,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1454 * then this object fits the criteria we are matching */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1455 return match;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1456 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1457
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1458 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1459 lg_SetCertAttribute(LGObjectCache *obj, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1460 const void *value, unsigned int len)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1461 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1462 NSSLOWCERTCertificate *cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1463 NSSLOWCERTCertDBHandle *certHandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1464 char *nickname = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1465 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1466 CK_RV crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1467
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1468 /* we can't change the EMAIL values, but let the
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1469 * upper layers feel better about the fact we tried to set these */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1470 if (type == CKA_NSS_EMAIL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1471 return CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1472 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1473
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1474 certHandle = lg_getCertDB(obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1475 if (certHandle == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1476 crv = CKR_TOKEN_WRITE_PROTECTED;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1477 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1478 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1479
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1480 if ((type != CKA_LABEL) && (type != CKA_ID)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1481 crv = CKR_ATTRIBUTE_READ_ONLY;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1482 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1483 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1484
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1485 cert = lg_getCert(obj, certHandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1486 if (cert == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1487 crv = CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1488 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1489 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1490
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1491 /* if the app is trying to set CKA_ID, it's probably because it just
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1492 * imported the key. Look to see if we need to set the CERTDB_USER bits.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1493 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1494 if (type == CKA_ID) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1495 if (((cert->trust->sslFlags & CERTDB_USER) == 0) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1496 ((cert->trust->emailFlags & CERTDB_USER) == 0) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1497 ((cert->trust->objectSigningFlags & CERTDB_USER) == 0)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1498 NSSLOWKEYDBHandle *keyHandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1499
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1500 keyHandle = lg_getKeyDB(obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1501 if (keyHandle) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1502 if (nsslowkey_KeyForCertExists(keyHandle, cert)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1503 NSSLOWCERTCertTrust trust = *cert->trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1504 trust.sslFlags \|= CERTDB_USER;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1505 trust.emailFlags \|= CERTDB_USER;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1506 trust.objectSigningFlags \|= CERTDB_USER;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1507 nsslowcert_ChangeCertTrust(certHandle,cert,&trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1508 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1509 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1510 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1511 crv = CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1512 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1513 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1514
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1515 /* must be CKA_LABEL */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1516 if (value != NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1517 nickname = PORT_ZAlloc(len+1);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1518 if (nickname == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1519 crv = CKR_HOST_MEMORY;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1520 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1521 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1522 PORT_Memcpy(nickname,value,len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1523 nickname[len] = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1524 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1525 rv = nsslowcert_AddPermNickname(certHandle, cert, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1526 crv = (rv == SECSuccess) ? CKR_OK : CKR_DEVICE_ERROR;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1527
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1528 done:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1529 if (nickname) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1530 PORT_Free(nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1531 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1532 return crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1533 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1534
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1535 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1536 lg_SetPrivateKeyAttribute(LGObjectCache *obj, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1537 const void *value, unsigned int len,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1538 PRBool *writePrivate)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1539 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1540 NSSLOWKEYPrivateKey *privKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1541 NSSLOWKEYDBHandle *keyHandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1542 char *nickname = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1543 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1544 CK_RV crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1545
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1546 /* we can't change the ID and we don't store the subject, but let the
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1547 * upper layers feel better about the fact we tried to set these */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1548 if ((type == CKA_ID) \|\| (type == CKA_SUBJECT) \|\|
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1549 (type == CKA_LOCAL) \|\| (type == CKA_NEVER_EXTRACTABLE) \|\|
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1550 (type == CKA_ALWAYS_SENSITIVE)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1551 return CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1552 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1553
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1554 keyHandle = lg_getKeyDB(obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1555 if (keyHandle == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1556 crv = CKR_TOKEN_WRITE_PROTECTED;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1557 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1558 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1559
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1560 privKey = lg_GetPrivateKeyWithDB(obj, keyHandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1561 if (privKey == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1562 crv = CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1563 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1564 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1565
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1566 crv = CKR_ATTRIBUTE_READ_ONLY;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1567 switch(type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1568 case CKA_LABEL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1569 if (value != NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1570 nickname = PORT_ZAlloc(len+1);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1571 if (nickname == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1572 crv = CKR_HOST_MEMORY;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1573 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1574 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1575 PORT_Memcpy(nickname,value,len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1576 nickname[len] = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1577 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1578 rv = nsslowkey_UpdateNickname(keyHandle, privKey, &obj->dbKey,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1579 nickname, obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1580 crv = (rv == SECSuccess) ? CKR_OK : CKR_DEVICE_ERROR;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1581 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1582 case CKA_UNWRAP:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1583 case CKA_SIGN:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1584 case CKA_DERIVE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1585 case CKA_SIGN_RECOVER:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1586 case CKA_DECRYPT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1587 /* ignore attempts to change restrict these.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1588 * legacyDB ignore these flags and always presents all of them
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1589 * that are valid as true.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1590 * NOTE: We only get here if the current value and the new value do
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1591 * not match. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1592 if ((char )value == 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1593 crv = CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1594 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1595 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1596 case CKA_VALUE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1597 case CKA_PRIVATE_EXPONENT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1598 case CKA_PRIME_1:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1599 case CKA_PRIME_2:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1600 case CKA_EXPONENT_1:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1601 case CKA_EXPONENT_2:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1602 case CKA_COEFFICIENT:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1603 /* We aren't really changing these values, we are just triggering
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1604 * the database to update it's entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1605 *writePrivate = PR_TRUE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1606 crv = CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1607 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1608 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1609 crv = CKR_ATTRIBUTE_READ_ONLY;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1610 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1611 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1612 done:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1613 if (nickname) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1614 PORT_Free(nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1615 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1616 return crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1617 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1618
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1619 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1620 lg_SetPublicKeyAttribute(LGObjectCache *obj, CK_ATTRIBUTE_TYPE type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1621 const void *value, unsigned int len,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1622 PRBool *writePrivate)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1623 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1624 /* we can't change the ID and we don't store the subject, but let the
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1625 * upper layers feel better about the fact we tried to set these */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1626 if ((type == CKA_ID) \|\| (type == CKA_SUBJECT) \|\| (type == CKA_LABEL)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1627 return CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1628 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1629 return CKR_ATTRIBUTE_READ_ONLY;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1630 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1631
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1632 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1633 lg_SetTrustAttribute(LGObjectCache obj, const CK_ATTRIBUTE attr)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1634 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1635 unsigned int flags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1636 CK_TRUST trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1637 NSSLOWCERTCertificate *cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1638 NSSLOWCERTCertDBHandle *certHandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1639 NSSLOWCERTCertTrust dbTrust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1640 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1641 CK_RV crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1642
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1643 if (attr->type == CKA_LABEL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1644 return CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1645 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1646
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1647 crv = lg_GetULongAttribute(attr->type, attr, 1, &trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1648 if (crv != CKR_OK) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1649 return crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1650 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1651 flags = lg_MapTrust(trust, (PRBool) (attr->type == CKA_TRUST_CLIENT_AUTH));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1652
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1653 certHandle = lg_getCertDB(obj->sdb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1654
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1655 if (certHandle == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1656 crv = CKR_TOKEN_WRITE_PROTECTED;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1657 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1658 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1659
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1660 cert = lg_getCert(obj, certHandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1661 if (cert == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1662 crv = CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1663 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1664 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1665 dbTrust = *cert->trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1666
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1667 switch (attr->type) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1668 case CKA_TRUST_EMAIL_PROTECTION:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1669 dbTrust.emailFlags = flags \|
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1670 (cert->trust->emailFlags & CERTDB_PRESERVE_TRUST_BITS);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1671 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1672 case CKA_TRUST_CODE_SIGNING:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1673 dbTrust.objectSigningFlags = flags \|
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1674 (cert->trust->objectSigningFlags & CERTDB_PRESERVE_TRUST_BITS);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1675 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1676 case CKA_TRUST_CLIENT_AUTH:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1677 dbTrust.sslFlags = flags \| (cert->trust->sslFlags &
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1678 (CERTDB_PRESERVE_TRUST_BITS\|CERTDB_TRUSTED_CA));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1679 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1680 case CKA_TRUST_SERVER_AUTH:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1681 dbTrust.sslFlags = flags \| (cert->trust->sslFlags &
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1682 (CERTDB_PRESERVE_TRUST_BITS\|CERTDB_TRUSTED_CLIENT_CA));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1683 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1684 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1685 crv = CKR_ATTRIBUTE_READ_ONLY;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1686 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1687 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1688
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1689 rv = nsslowcert_ChangeCertTrust(certHandle, cert, &dbTrust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1690 crv = (rv == SECSuccess) ? CKR_OK : CKR_DEVICE_ERROR;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1691 done:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1692 return crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1693 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1694
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1695 static CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1696 lg_SetSingleAttribute(LGObjectCache obj, const CK_ATTRIBUTE attr,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1697 PRBool *writePrivate)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1698 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1699 CK_ATTRIBUTE attribLocal;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1700 CK_RV crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1701
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1702 if ((attr->type == CKA_NETSCAPE_DB) && (obj->objclass == CKO_PRIVATE_KEY)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1703 *writePrivate = PR_TRUE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1704 return CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1705 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1706
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1707 /* Make sure the attribute exists first */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1708 attribLocal.type = attr->type;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1709 attribLocal.pValue = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1710 attribLocal.ulValueLen = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1711 crv = lg_GetSingleAttribute(obj, &attribLocal);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1712 if (crv != CKR_OK) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1713 return crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1714 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1715
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1716 /* if we are just setting it to the value we already have,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1717 * allow it to happen. Let label setting go through so
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1718 * we have the opportunity to repair any database corruption. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1719 if (attr->type != CKA_LABEL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1720 if (lg_cmpAttribute(obj,attr)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1721 return CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1722 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1723 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1724
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1725 crv = CKR_ATTRIBUTE_READ_ONLY;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1726 switch (obj->objclass) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1727 case CKO_CERTIFICATE:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1728 /* change NICKNAME, EMAIL, */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1729 crv = lg_SetCertAttribute(obj,attr->type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1730 attr->pValue,attr->ulValueLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1731 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1732 case CKO_NSS_CRL:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1733 /* change URL */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1734 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1735 case CKO_NSS_TRUST:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1736 crv = lg_SetTrustAttribute(obj,attr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1737 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1738 case CKO_PRIVATE_KEY:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1739 case CKO_SECRET_KEY:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1740 crv = lg_SetPrivateKeyAttribute(obj,attr->type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1741 attr->pValue,attr->ulValueLen, writePrivate);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1742 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1743 case CKO_PUBLIC_KEY:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1744 crv = lg_SetPublicKeyAttribute(obj,attr->type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1745 attr->pValue,attr->ulValueLen, writePrivate);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1746 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1747 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1748 return crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1749 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1750
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1751 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1752 * Fill in the attribute template based on the data in the database.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1753 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1754 CK_RV
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1755 lg_SetAttributeValue(SDB *sdb, CK_OBJECT_HANDLE handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1756 const CK_ATTRIBUTE *templ, CK_ULONG count)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1757 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1758 LGObjectCache *obj = lg_NewObjectCache(sdb, NULL, handle & ~LG_TOKEN_MASK);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1759 CK_RV crv, crvCollect = CKR_OK;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1760 PRBool writePrivate = PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1761 unsigned int i;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1762
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1763 if (obj == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1764 return CKR_OBJECT_HANDLE_INVALID;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1765 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1766
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1767 for (i=0; i < count; i++) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1768 crv = lg_SetSingleAttribute(obj, &templ[i], &writePrivate);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1769 if (crvCollect == CKR_OK) crvCollect = crv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1770 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1771
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1772 /* Write any collected changes out for private and secret keys.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1773 * don't do the write for just the label */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1774 if (writePrivate) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1775 NSSLOWKEYPrivateKey *privKey = lg_GetPrivateKey(obj);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1776 SECStatus rv = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1777 char * label = lg_FindKeyNicknameByPublicKey(obj->sdb, &obj->dbKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1778
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1779 if (privKey) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1780 rv = nsslowkey_StoreKeyByPublicKeyAlg(lg_getKeyDB(sdb), privKey,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1781 &obj->dbKey, label, sdb, PR_TRUE );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1782 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1783 if (rv != SECSuccess) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1784 crv = CKR_DEVICE_ERROR;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1785 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1786 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1787
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1788 lg_DestroyObjectCache(obj);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1789 return crvCollect;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1790 }

Mercurial > trustbridge > nss-cmake-static

annotate nss/lib/softoken/legacydb/lgattr.c @ 3:150b72113545