trustbridge/nss-cmake-static: nss/lib/softoken/legacydb/pcertdb.c annotate

annotate nss/lib/softoken/legacydb/pcertdb.c @ 3:150b72113545

Add DBM and legacydb support

author	Andre Heinecke <andre.heinecke@intevation.de>
date	Tue, 05 Aug 2014 18:32:02 +0200
parents
children

rev	line source
3 150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1 /* This Source Code Form is subject to the terms of the Mozilla Public
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2 * License, v. 2.0. If a copy of the MPL was not distributed with this
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	6 * Permanent Certificate database handling code
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	7 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	8 #include "lowkeyti.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	9 #include "pcert.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	10 #include "mcom_db.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	11 #include "pcert.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	12 #include "secitem.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	13 #include "secder.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	14
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	15 #include "secerr.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	16 #include "lgdb.h"
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	17
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	18 /* forward declaration */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	19 NSSLOWCERTCertificate *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	20 nsslowcert_FindCertByDERCertNoLocking(NSSLOWCERTCertDBHandle handle, SECItem derCert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	21 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	22 nsslowcert_UpdateSMimeProfile(NSSLOWCERTCertDBHandle *dbhandle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	23 char emailAddr, SECItem derSubject, SECItem *emailProfile,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	24 SECItem *profileTime);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	25 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	26 nsslowcert_UpdatePermCert(NSSLOWCERTCertDBHandle *dbhandle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	27 NSSLOWCERTCertificate cert, char nickname, NSSLOWCERTCertTrust *trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	28 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	29 nsslowcert_UpdateCrl(NSSLOWCERTCertDBHandle handle, SECItem derCrl,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	30 SECItem crlKey, char url, PRBool isKRL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	31
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	32 static NSSLOWCERTCertificate *certListHead = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	33 static NSSLOWCERTTrust *trustListHead = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	34 static certDBEntryCert *entryListHead = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	35 static int certListCount = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	36 static int trustListCount = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	37 static int entryListCount = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	38 #define MAX_CERT_LIST_COUNT 10
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	39 #define MAX_TRUST_LIST_COUNT 10
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	40 #define MAX_ENTRY_LIST_COUNT 10
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	41
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	42 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	43 * the following functions are wrappers for the db library that implement
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	44 * a global lock to make the database thread safe.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	45 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	46 static PZLock *dbLock = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	47 static PZLock *certRefCountLock = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	48 static PZLock *certTrustLock = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	49 static PZLock *freeListLock = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	50
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	51 void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	52 certdb_InitDBLock(NSSLOWCERTCertDBHandle *handle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	53 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	54 if (dbLock == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	55 dbLock = PZ_NewLock(nssILockCertDB);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	56 PORT_Assert(dbLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	57 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	58 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	59
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	60 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	61 nsslowcert_InitLocks(void)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	62 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	63 if (freeListLock == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	64 freeListLock = PZ_NewLock(nssILockRefLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	65 if (freeListLock == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	66 return SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	67 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	68 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	69 if (certRefCountLock == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	70 certRefCountLock = PZ_NewLock(nssILockRefLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	71 if (certRefCountLock == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	72 return SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	73 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	74 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	75 if (certTrustLock == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	76 certTrustLock = PZ_NewLock(nssILockCertDB);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	77 if (certTrustLock == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	78 return SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	79 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	80 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	81
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	82 return SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	83 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	84
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	85 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	86 * Acquire the global lock on the cert database.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	87 * This lock is currently used for the following operations:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	88 * adding or deleting a cert to either the temp or perm databases
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	89 * converting a temp to perm or perm to temp
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	90 * changing (maybe just adding!?) the trust of a cert
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	91 * chaning the DB status checking Configuration
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	92 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	93 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	94 nsslowcert_LockDB(NSSLOWCERTCertDBHandle *handle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	95 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	96 PZ_EnterMonitor(handle->dbMon);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	97 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	98 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	99
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	100 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	101 * Free the global cert database lock.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	102 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	103 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	104 nsslowcert_UnlockDB(NSSLOWCERTCertDBHandle *handle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	105 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	106 PRStatus prstat;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	107
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	108 prstat = PZ_ExitMonitor(handle->dbMon);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	109
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	110 PORT_Assert(prstat == PR_SUCCESS);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	111
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	112 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	113 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	114
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	115
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	116 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	117 * Acquire the cert reference count lock
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	118 * There is currently one global lock for all certs, but I'm putting a cert
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	119 * arg here so that it will be easy to make it per-cert in the future if
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	120 * that turns out to be necessary.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	121 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	122 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	123 nsslowcert_LockCertRefCount(NSSLOWCERTCertificate *cert)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	124 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	125 PORT_Assert(certRefCountLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	126
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	127 PZ_Lock(certRefCountLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	128 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	129 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	130
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	131 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	132 * Free the cert reference count lock
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	133 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	134 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	135 nsslowcert_UnlockCertRefCount(NSSLOWCERTCertificate *cert)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	136 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	137 PRStatus prstat;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	138
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	139 PORT_Assert(certRefCountLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	140
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	141 prstat = PZ_Unlock(certRefCountLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	142
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	143 PORT_Assert(prstat == PR_SUCCESS);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	144
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	145 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	146 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	147
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	148 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	149 * Acquire the cert trust lock
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	150 * There is currently one global lock for all certs, but I'm putting a cert
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	151 * arg here so that it will be easy to make it per-cert in the future if
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	152 * that turns out to be necessary.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	153 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	154 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	155 nsslowcert_LockCertTrust(NSSLOWCERTCertificate *cert)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	156 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	157 PORT_Assert(certTrustLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	158
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	159 PZ_Lock(certTrustLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	160 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	161 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	162
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	163 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	164 * Free the cert trust lock
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	165 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	166 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	167 nsslowcert_UnlockCertTrust(NSSLOWCERTCertificate *cert)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	168 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	169 PRStatus prstat;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	170
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	171 PORT_Assert(certTrustLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	172
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	173 prstat = PZ_Unlock(certTrustLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	174
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	175 PORT_Assert(prstat == PR_SUCCESS);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	176
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	177 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	178 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	179
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	180
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	181 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	182 * Acquire the cert reference count lock
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	183 * There is currently one global lock for all certs, but I'm putting a cert
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	184 * arg here so that it will be easy to make it per-cert in the future if
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	185 * that turns out to be necessary.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	186 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	187 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	188 nsslowcert_LockFreeList(void)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	189 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	190 PORT_Assert(freeListLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	191
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	192 SKIP_AFTER_FORK(PZ_Lock(freeListLock));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	193 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	194 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	195
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	196 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	197 * Free the cert reference count lock
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	198 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	199 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	200 nsslowcert_UnlockFreeList(void)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	201 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	202 PRStatus prstat = PR_SUCCESS;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	203
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	204 PORT_Assert(freeListLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	205
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	206 SKIP_AFTER_FORK(prstat = PZ_Unlock(freeListLock));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	207
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	208 PORT_Assert(prstat == PR_SUCCESS);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	209
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	210 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	211 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	212
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	213 NSSLOWCERTCertificate *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	214 nsslowcert_DupCertificate(NSSLOWCERTCertificate *c)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	215 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	216 if (c) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	217 nsslowcert_LockCertRefCount(c);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	218 ++c->referenceCount;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	219 nsslowcert_UnlockCertRefCount(c);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	220 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	221 return c;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	222 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	223
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	224 static int
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	225 certdb_Get(DB db, DBT key, DBT *data, unsigned int flags)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	226 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	227 PRStatus prstat;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	228 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	229
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	230 PORT_Assert(dbLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	231 PZ_Lock(dbLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	232
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	233 ret = (* db->get)(db, key, data, flags);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	234
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	235 prstat = PZ_Unlock(dbLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	236
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	237 return(ret);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	238 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	239
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	240 static int
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	241 certdb_Put(DB db, DBT key, DBT *data, unsigned int flags)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	242 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	243 PRStatus prstat;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	244 int ret = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	245
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	246 PORT_Assert(dbLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	247 PZ_Lock(dbLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	248
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	249 ret = (* db->put)(db, key, data, flags);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	250
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	251 prstat = PZ_Unlock(dbLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	252
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	253 return(ret);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	254 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	255
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	256 static int
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	257 certdb_Sync(DB *db, unsigned int flags)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	258 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	259 PRStatus prstat;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	260 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	261
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	262 PORT_Assert(dbLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	263 PZ_Lock(dbLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	264
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	265 ret = (* db->sync)(db, flags);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	266
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	267 prstat = PZ_Unlock(dbLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	268
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	269 return(ret);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	270 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	271
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	272 #define DB_NOT_FOUND -30991 /* from DBM 3.2 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	273 static int
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	274 certdb_Del(DB db, DBT key, unsigned int flags)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	275 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	276 PRStatus prstat;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	277 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	278
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	279 PORT_Assert(dbLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	280 PZ_Lock(dbLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	281
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	282 ret = (* db->del)(db, key, flags);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	283
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	284 prstat = PZ_Unlock(dbLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	285
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	286 /* don't fail if the record is already deleted */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	287 if (ret == DB_NOT_FOUND) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	288 ret = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	289 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	290
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	291 return(ret);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	292 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	293
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	294 static int
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	295 certdb_Seq(DB db, DBT key, DBT *data, unsigned int flags)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	296 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	297 PRStatus prstat;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	298 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	299
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	300 PORT_Assert(dbLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	301 PZ_Lock(dbLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	302
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	303 ret = (* db->seq)(db, key, data, flags);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	304
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	305 prstat = PZ_Unlock(dbLock);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	306
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	307 return(ret);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	308 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	309
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	310 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	311 certdb_Close(DB *db)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	312 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	313 PRStatus prstat = PR_SUCCESS;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	314
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	315 PORT_Assert(dbLock != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	316 SKIP_AFTER_FORK(PZ_Lock(dbLock));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	317
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	318 (* db->close)(db);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	319
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	320 SKIP_AFTER_FORK(prstat = PZ_Unlock(dbLock));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	321
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	322 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	323 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	324
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	325 void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	326 pkcs11_freeNickname(char nickname, char space)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	327 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	328 if (nickname && nickname != space) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	329 PORT_Free(nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	330 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	331 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	332
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	333 char *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	334 pkcs11_copyNickname(char nickname,char space, int spaceLen)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	335 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	336 int len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	337 char *copy = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	338
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	339 len = PORT_Strlen(nickname)+1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	340 if (len <= spaceLen) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	341 copy = space;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	342 PORT_Memcpy(copy,nickname,len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	343 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	344 copy = PORT_Strdup(nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	345 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	346
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	347 return copy;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	348 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	349
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	350 void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	351 pkcs11_freeStaticData (unsigned char data, unsigned char space)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	352 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	353 if (data && data != space) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	354 PORT_Free(data);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	355 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	356 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	357
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	358 unsigned char *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	359 pkcs11_allocStaticData(int len, unsigned char *space, int spaceLen)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	360 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	361 unsigned char *data = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	362
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	363 if (len <= spaceLen) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	364 data = space;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	365 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	366 data = (unsigned char *) PORT_Alloc(len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	367 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	368
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	369 return data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	370 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	371
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	372 unsigned char *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	373 pkcs11_copyStaticData(unsigned char *data, int len,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	374 unsigned char *space, int spaceLen)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	375 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	376 unsigned char *copy = pkcs11_allocStaticData(len, space, spaceLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	377 if (copy) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	378 PORT_Memcpy(copy,data,len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	379 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	380
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	381 return copy;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	382 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	383
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	384 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	385 * destroy a database entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	386 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	387 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	388 DestroyDBEntry(certDBEntry *entry)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	389 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	390 PLArenaPool *arena = entry->common.arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	391
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	392 /* must be one of our certDBEntry from the free list */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	393 if (arena == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	394 certDBEntryCert *certEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	395 if ( entry->common.type != certDBEntryTypeCert) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	396 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	397 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	398 certEntry = (certDBEntryCert *)entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	399
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	400 pkcs11_freeStaticData(certEntry->derCert.data, certEntry->derCertSpace);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	401 pkcs11_freeNickname(certEntry->nickname, certEntry->nicknameSpace);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	402
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	403 nsslowcert_LockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	404 if (entryListCount > MAX_ENTRY_LIST_COUNT) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	405 PORT_Free(certEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	406 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	407 entryListCount++;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	408 PORT_Memset(certEntry, 0, sizeof( *certEntry));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	409 certEntry->next = entryListHead;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	410 entryListHead = certEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	411 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	412 nsslowcert_UnlockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	413 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	414 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	415
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	416
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	417 /* Zero out the entry struct, so that any further attempts to use it
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	418 * will cause an exception (e.g. null pointer reference). */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	419 PORT_Memset(&entry->common, 0, sizeof entry->common);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	420 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	421
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	422 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	423 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	424
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	425 /* forward references */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	426 static void nsslowcert_DestroyCertificateNoLocking(NSSLOWCERTCertificate *cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	427
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	428 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	429 DeleteDBEntry(NSSLOWCERTCertDBHandle handle, certDBEntryType type, SECItem dbkey)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	430 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	431 DBT key;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	432 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	433
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	434 /* init the database key */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	435 key.data = dbkey->data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	436 key.size = dbkey->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	437
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	438 dbkey->data[0] = (unsigned char)type;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	439
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	440 /* delete entry from database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	441 ret = certdb_Del(handle->permCertDB, &key, 0 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	442 if ( ret != 0 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	443 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	444 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	445 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	446
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	447 ret = certdb_Sync(handle->permCertDB, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	448 if ( ret ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	449 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	450 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	451 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	452
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	453 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	454
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	455 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	456 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	457 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	458
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	459 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	460 ReadDBEntry(NSSLOWCERTCertDBHandle handle, certDBEntryCommon entry,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	461 SECItem dbkey, SECItem dbentry, PLArenaPool *arena)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	462 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	463 DBT data, key;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	464 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	465 unsigned char *buf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	466
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	467 /* init the database key */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	468 key.data = dbkey->data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	469 key.size = dbkey->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	470
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	471 dbkey->data[0] = (unsigned char)entry->type;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	472
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	473 /* read entry from database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	474 ret = certdb_Get(handle->permCertDB, &key, &data, 0 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	475 if ( ret != 0 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	476 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	477 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	478 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	479
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	480 /* validate the entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	481 if ( data.size < SEC_DB_ENTRY_HEADER_LEN ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	482 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	483 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	484 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	485 buf = (unsigned char *)data.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	486 /* version 7 has the same schema, we may be using a v7 db if we openned
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	487 * the databases readonly. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	488 if (!((buf[0] == (unsigned char)CERT_DB_FILE_VERSION)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	489 \|\| (buf[0] == (unsigned char) CERT_DB_V7_FILE_VERSION))) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	490 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	491 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	492 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	493 if ( buf[1] != (unsigned char)entry->type ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	494 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	495 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	496 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	497
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	498 /* copy out header information */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	499 entry->version = (unsigned int)buf[0];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	500 entry->type = (certDBEntryType)buf[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	501 entry->flags = (unsigned int)buf[2];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	502
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	503 /* format body of entry for return to caller */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	504 dbentry->len = data.size - SEC_DB_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	505 if ( dbentry->len ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	506 if (arena) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	507 dbentry->data = (unsigned char *)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	508 PORT_ArenaAlloc(arena, dbentry->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	509 if ( dbentry->data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	510 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	511 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	512 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	513
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	514 PORT_Memcpy(dbentry->data, &buf[SEC_DB_ENTRY_HEADER_LEN],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	515 dbentry->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	516 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	517 dbentry->data = &buf[SEC_DB_ENTRY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	518 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	519 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	520 dbentry->data = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	521 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	522
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	523 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	524
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	525 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	526 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	527 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	528
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	529 /**
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	530 ** Implement low level database access
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	531 **/
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	532 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	533 WriteDBEntry(NSSLOWCERTCertDBHandle handle, certDBEntryCommon entry,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	534 SECItem dbkey, SECItem dbentry)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	535 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	536 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	537 DBT data, key;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	538 unsigned char *buf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	539
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	540 data.data = dbentry->data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	541 data.size = dbentry->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	542
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	543 buf = (unsigned char*)data.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	544
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	545 buf[0] = (unsigned char)entry->version;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	546 buf[1] = (unsigned char)entry->type;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	547 buf[2] = (unsigned char)entry->flags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	548
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	549 key.data = dbkey->data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	550 key.size = dbkey->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	551
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	552 dbkey->data[0] = (unsigned char)entry->type;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	553
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	554 /* put the record into the database now */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	555 ret = certdb_Put(handle->permCertDB, &key, &data, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	556
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	557 if ( ret != 0 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	558 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	559 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	560
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	561 ret = certdb_Sync( handle->permCertDB, 0 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	562
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	563 if ( ret ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	564 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	565 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	566
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	567 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	568
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	569 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	570 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	571 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	572
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	573 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	574 * encode a database cert record
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	575 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	576 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	577 EncodeDBCertEntry(certDBEntryCert entry, PLArenaPool arena, SECItem *dbitem)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	578 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	579 unsigned int nnlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	580 unsigned char *buf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	581 char *nn;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	582 char zbuf = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	583
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	584 if ( entry->nickname ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	585 nn = entry->nickname;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	586 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	587 nn = &zbuf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	588 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	589 nnlen = PORT_Strlen(nn) + 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	590
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	591 /* allocate space for encoded database record, including space
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	592 * for low level header
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	593 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	594 dbitem->len = entry->derCert.len + nnlen + DB_CERT_ENTRY_HEADER_LEN +
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	595 SEC_DB_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	596
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	597 dbitem->data = (unsigned char *)PORT_ArenaAlloc(arena, dbitem->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	598 if ( dbitem->data == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	599 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	600 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	601 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	602
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	603 /* fill in database record */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	604 buf = &dbitem->data[SEC_DB_ENTRY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	605
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	606 buf[0] = (PRUint8)( entry->trust.sslFlags >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	607 buf[1] = (PRUint8)( entry->trust.sslFlags );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	608 buf[2] = (PRUint8)( entry->trust.emailFlags >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	609 buf[3] = (PRUint8)( entry->trust.emailFlags );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	610 buf[4] = (PRUint8)( entry->trust.objectSigningFlags >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	611 buf[5] = (PRUint8)( entry->trust.objectSigningFlags );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	612 buf[6] = (PRUint8)( entry->derCert.len >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	613 buf[7] = (PRUint8)( entry->derCert.len );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	614 buf[8] = (PRUint8)( nnlen >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	615 buf[9] = (PRUint8)( nnlen );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	616
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	617 PORT_Memcpy(&buf[DB_CERT_ENTRY_HEADER_LEN], entry->derCert.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	618 entry->derCert.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	619
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	620 PORT_Memcpy(&buf[DB_CERT_ENTRY_HEADER_LEN + entry->derCert.len],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	621 nn, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	622
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	623 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	624
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	625 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	626 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	627 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	628
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	629 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	630 * encode a database key for a cert record
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	631 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	632 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	633 EncodeDBCertKey(const SECItem certKey, PLArenaPool arena, SECItem *dbkey)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	634 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	635 unsigned int len = certKey->len + SEC_DB_KEY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	636 if (len > NSS_MAX_LEGACY_DB_KEY_SIZE)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	637 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	638 if (arena) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	639 dbkey->data = (unsigned char *)PORT_ArenaAlloc(arena, len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	640 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	641 if (dbkey->len < len) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	642 dbkey->data = (unsigned char *)PORT_Alloc(len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	643 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	644 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	645 dbkey->len = len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	646 if ( dbkey->data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	647 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	648 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	649 PORT_Memcpy(&dbkey->data[SEC_DB_KEY_HEADER_LEN],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	650 certKey->data, certKey->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	651 dbkey->data[0] = certDBEntryTypeCert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	652
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	653 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	654 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	655 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	656 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	657
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	658 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	659 EncodeDBGenericKey(const SECItem certKey, PLArenaPool arena, SECItem *dbkey,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	660 certDBEntryType entryType)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	661 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	662 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	663 * we only allow _one_ KRL key!
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	664 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	665 if (entryType == certDBEntryTypeKeyRevocation) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	666 dbkey->len = SEC_DB_KEY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	667 dbkey->data = (unsigned char *)PORT_ArenaAlloc(arena, dbkey->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	668 if ( dbkey->data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	669 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	670 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	671 dbkey->data[0] = (unsigned char) entryType;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	672 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	673 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	674
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	675
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	676 dbkey->len = certKey->len + SEC_DB_KEY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	677 if (dbkey->len > NSS_MAX_LEGACY_DB_KEY_SIZE)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	678 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	679 dbkey->data = (unsigned char *)PORT_ArenaAlloc(arena, dbkey->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	680 if ( dbkey->data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	681 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	682 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	683 PORT_Memcpy(&dbkey->data[SEC_DB_KEY_HEADER_LEN],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	684 certKey->data, certKey->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	685 dbkey->data[0] = (unsigned char) entryType;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	686
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	687 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	688 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	689 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	690 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	691
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	692 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	693 DecodeDBCertEntry(certDBEntryCert entry, SECItem dbentry)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	694 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	695 unsigned int nnlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	696 unsigned int headerlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	697 int lenoff;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	698
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	699 /* allow updates of old versions of the database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	700 switch ( entry->common.version ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	701 case 5:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	702 headerlen = DB_CERT_V5_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	703 lenoff = 3;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	704 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	705 case 6:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	706 /* should not get here */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	707 PORT_Assert(0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	708 headerlen = DB_CERT_V6_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	709 lenoff = 3;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	710 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	711 case 7:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	712 case 8:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	713 headerlen = DB_CERT_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	714 lenoff = 6;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	715 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	716 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	717 /* better not get here */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	718 PORT_Assert(0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	719 headerlen = DB_CERT_V5_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	720 lenoff = 3;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	721 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	722 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	723
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	724 /* is record long enough for header? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	725 if ( dbentry->len < headerlen ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	726 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	727 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	728 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	729
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	730 /* is database entry correct length? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	731 entry->derCert.len = ( ( dbentry->data[lenoff] << 8 ) \|
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	732 dbentry->data[lenoff+1] );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	733 nnlen = ( ( dbentry->data[lenoff+2] << 8 ) \| dbentry->data[lenoff+3] );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	734 lenoff = dbentry->len - ( entry->derCert.len + nnlen + headerlen );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	735 if ( lenoff ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	736 if ( lenoff < 0 \|\| (lenoff & 0xffff) != 0 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	737 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	738 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	739 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	740 /* The cert size exceeded 64KB. Reconstruct the correct length. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	741 entry->derCert.len += lenoff;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	742 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	743
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	744 /* copy the dercert */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	745 entry->derCert.data = pkcs11_copyStaticData(&dbentry->data[headerlen],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	746 entry->derCert.len,entry->derCertSpace,sizeof(entry->derCertSpace));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	747 if ( entry->derCert.data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	748 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	749 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	750 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	751
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	752 /* copy the nickname */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	753 if ( nnlen > 1 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	754 entry->nickname = (char *)pkcs11_copyStaticData(
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	755 &dbentry->data[headerlen+entry->derCert.len], nnlen,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	756 (unsigned char *)entry->nicknameSpace,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	757 sizeof(entry->nicknameSpace));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	758 if ( entry->nickname == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	759 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	760 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	761 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	762 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	763 entry->nickname = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	764 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	765
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	766 if ( entry->common.version < 7 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	767 /* allow updates of v5 db */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	768 entry->trust.sslFlags = dbentry->data[0];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	769 entry->trust.emailFlags = dbentry->data[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	770 entry->trust.objectSigningFlags = dbentry->data[2];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	771 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	772 entry->trust.sslFlags = ( dbentry->data[0] << 8 ) \| dbentry->data[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	773 entry->trust.emailFlags = ( dbentry->data[2] << 8 ) \| dbentry->data[3];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	774 entry->trust.objectSigningFlags =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	775 ( dbentry->data[4] << 8 ) \| dbentry->data[5];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	776 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	777
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	778 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	779 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	780 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	781 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	782
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	783
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	784 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	785 * Create a new certDBEntryCert from existing data
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	786 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	787 static certDBEntryCert *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	788 NewDBCertEntry(SECItem derCert, char nickname,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	789 NSSLOWCERTCertTrust *trust, int flags)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	790 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	791 certDBEntryCert *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	792 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	793 int nnlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	794
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	795 arena = PORT_NewArena( DER_DEFAULT_CHUNKSIZE );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	796
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	797 if ( !arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	798 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	799 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	800
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	801 entry = PORT_ArenaZNew(arena, certDBEntryCert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	802 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	803 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	804 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	805
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	806 /* fill in the dbCert */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	807 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	808 entry->common.type = certDBEntryTypeCert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	809 entry->common.version = CERT_DB_FILE_VERSION;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	810 entry->common.flags = flags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	811
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	812 if ( trust ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	813 entry->trust = *trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	814 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	815
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	816 entry->derCert.data = (unsigned char *)PORT_ArenaAlloc(arena, derCert->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	817 if ( !entry->derCert.data ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	818 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	819 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	820 entry->derCert.len = derCert->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	821 PORT_Memcpy(entry->derCert.data, derCert->data, derCert->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	822
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	823 nnlen = ( nickname ? strlen(nickname) + 1 : 0 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	824
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	825 if ( nnlen ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	826 entry->nickname = (char *)PORT_ArenaAlloc(arena, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	827 if ( !entry->nickname ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	828 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	829 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	830 PORT_Memcpy(entry->nickname, nickname, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	831
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	832 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	833 entry->nickname = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	834 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	835
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	836 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	837
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	838 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	839
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	840 /* allocation error, free arena and return */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	841 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	842 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	843 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	844
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	845 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	846 return(0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	847 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	848
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	849 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	850 * Decode a version 4 DBCert from the byte stream database format
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	851 * and construct a current database entry struct
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	852 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	853 static certDBEntryCert *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	854 DecodeV4DBCertEntry(unsigned char *buf, int len)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	855 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	856 certDBEntryCert *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	857 int certlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	858 int nnlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	859 PLArenaPool *arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	860
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	861 /* make sure length is at least long enough for the header */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	862 if ( len < DBCERT_V4_HEADER_LEN ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	863 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	864 return(0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	865 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	866
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	867 /* get other lengths */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	868 certlen = buf[3] << 8 \| buf[4];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	869 nnlen = buf[5] << 8 \| buf[6];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	870
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	871 /* make sure DB entry is the right size */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	872 if ( ( certlen + nnlen + DBCERT_V4_HEADER_LEN ) != len ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	873 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	874 return(0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	875 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	876
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	877 /* allocate arena */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	878 arena = PORT_NewArena( DER_DEFAULT_CHUNKSIZE );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	879
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	880 if ( !arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	881 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	882 return(0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	883 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	884
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	885 /* allocate structure and members */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	886 entry = (certDBEntryCert *) PORT_ArenaAlloc(arena, sizeof(certDBEntryCert));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	887
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	888 if ( !entry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	889 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	890 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	891
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	892 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	893 entry->common.version = CERT_DB_FILE_VERSION;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	894 entry->common.type = certDBEntryTypeCert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	895 entry->common.flags = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	896 entry->trust.sslFlags = buf[0];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	897 entry->trust.emailFlags = buf[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	898 entry->trust.objectSigningFlags = buf[2];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	899
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	900 entry->derCert.data = (unsigned char *)PORT_ArenaAlloc(arena, certlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	901 if ( !entry->derCert.data ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	902 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	903 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	904 entry->derCert.len = certlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	905 PORT_Memcpy(entry->derCert.data, &buf[DBCERT_V4_HEADER_LEN], certlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	906
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	907 if ( nnlen ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	908 entry->nickname = (char *) PORT_ArenaAlloc(arena, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	909 if ( !entry->nickname ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	910 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	911 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	912 PORT_Memcpy(entry->nickname, &buf[DBCERT_V4_HEADER_LEN + certlen], nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	913
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	914 if (PORT_Strcmp(entry->nickname, "Server-Cert") == 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	915 entry->trust.sslFlags \|= CERTDB_USER;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	916 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	917 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	918 entry->nickname = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	919 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	920
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	921 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	922
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	923 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	924 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	925 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	926 return(0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	927 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	928
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	929 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	930 * Encode a Certificate database entry into byte stream suitable for
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	931 * the database
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	932 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	933 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	934 WriteDBCertEntry(NSSLOWCERTCertDBHandle handle, certDBEntryCert entry)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	935 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	936 SECItem dbitem, dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	937 PLArenaPool *tmparena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	938 SECItem tmpitem;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	939 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	940
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	941 tmparena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	942 if ( tmparena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	943 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	944 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	945
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	946 rv = EncodeDBCertEntry(entry, tmparena, &dbitem);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	947 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	948 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	949 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	950
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	951 /* get the database key and format it */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	952 rv = nsslowcert_KeyFromDERCert(tmparena, &entry->derCert, &tmpitem);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	953 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	954 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	955 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	956
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	957 rv = EncodeDBCertKey(&tmpitem, tmparena, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	958 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	959 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	960 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	961
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	962 /* now write it to the database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	963 rv = WriteDBEntry(handle, &entry->common, &dbkey, &dbitem);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	964 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	965 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	966 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	967
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	968 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	969 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	970
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	971 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	972 if ( tmparena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	973 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	974 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	975 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	976 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	977
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	978
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	979 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	980 * delete a certificate entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	981 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	982 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	983 DeleteDBCertEntry(NSSLOWCERTCertDBHandle handle, SECItem certKey)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	984 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	985 SECItem dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	986 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	987
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	988 dbkey.data= NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	989 dbkey.len = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	990
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	991 rv = EncodeDBCertKey(certKey, NULL, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	992 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	993 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	994 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	995
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	996 rv = DeleteDBEntry(handle, certDBEntryTypeCert, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	997 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	998 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	999 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1000
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1001 PORT_Free(dbkey.data);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1002
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1003 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1004
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1005 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1006 if (dbkey.data) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1007 PORT_Free(dbkey.data);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1008 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1009 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1010 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1011
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1012 static certDBEntryCert *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1013 CreateCertEntry(void)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1014 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1015 certDBEntryCert *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1016
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1017 nsslowcert_LockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1018 entry = entryListHead;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1019 if (entry) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1020 entryListCount--;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1021 entryListHead = entry->next;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1022 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1023 PORT_Assert(entryListCount >= 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1024 nsslowcert_UnlockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1025 if (entry) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1026 return entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1027 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1028
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1029 return PORT_ZNew(certDBEntryCert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1030 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1031
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1032 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1033 DestroyCertEntryFreeList(void)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1034 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1035 certDBEntryCert *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1036
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1037 nsslowcert_LockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1038 while (NULL != (entry = entryListHead)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1039 entryListCount--;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1040 entryListHead = entry->next;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1041 PORT_Free(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1042 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1043 PORT_Assert(!entryListCount);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1044 entryListCount = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1045 nsslowcert_UnlockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1046 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1047
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1048 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1049 * Read a certificate entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1050 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1051 static certDBEntryCert *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1052 ReadDBCertEntry(NSSLOWCERTCertDBHandle handle, const SECItem certKey)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1053 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1054 certDBEntryCert *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1055 SECItem dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1056 SECItem dbentry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1057 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1058 unsigned char buf[512];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1059
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1060 dbkey.data = buf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1061 dbkey.len = sizeof(buf);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1062
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1063 entry = CreateCertEntry();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1064 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1065 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1066 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1067 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1068 entry->common.arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1069 entry->common.type = certDBEntryTypeCert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1070
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1071 rv = EncodeDBCertKey(certKey, NULL, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1072 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1073 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1074 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1075
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1076 rv = ReadDBEntry(handle, &entry->common, &dbkey, &dbentry, NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1077 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1078 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1079 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1080
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1081 rv = DecodeDBCertEntry(entry, &dbentry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1082 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1083 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1084 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1085
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1086 pkcs11_freeStaticData(dbkey.data,buf);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1087 dbkey.data = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1088 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1089
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1090 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1091 pkcs11_freeStaticData(dbkey.data,buf);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1092 dbkey.data = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1093 if ( entry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1094 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1095 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1096
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1097 return(NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1098 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1099
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1100 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1101 * encode a database cert record
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1102 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1103 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1104 EncodeDBCrlEntry(certDBEntryRevocation entry, PLArenaPool arena, SECItem *dbitem)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1105 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1106 unsigned int nnlen = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1107 unsigned char *buf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1108
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1109 if (entry->url) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1110 nnlen = PORT_Strlen(entry->url) + 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1111 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1112
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1113 /* allocate space for encoded database record, including space
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1114 * for low level header
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1115 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1116 dbitem->len = entry->derCrl.len + nnlen
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1117 + SEC_DB_ENTRY_HEADER_LEN + DB_CRL_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1118
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1119 dbitem->data = (unsigned char *)PORT_ArenaAlloc(arena, dbitem->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1120 if ( dbitem->data == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1121 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1122 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1123 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1124
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1125 /* fill in database record */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1126 buf = &dbitem->data[SEC_DB_ENTRY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1127
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1128 buf[0] = (PRUint8)( entry->derCrl.len >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1129 buf[1] = (PRUint8)( entry->derCrl.len );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1130 buf[2] = (PRUint8)( nnlen >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1131 buf[3] = (PRUint8)( nnlen );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1132
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1133 PORT_Memcpy(&buf[DB_CRL_ENTRY_HEADER_LEN], entry->derCrl.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1134 entry->derCrl.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1135
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1136 if (nnlen != 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1137 PORT_Memcpy(&buf[DB_CRL_ENTRY_HEADER_LEN + entry->derCrl.len],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1138 entry->url, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1139 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1140
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1141 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1142
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1143 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1144 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1145 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1146
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1147 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1148 DecodeDBCrlEntry(certDBEntryRevocation entry, SECItem dbentry)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1149 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1150 unsigned int urlLen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1151 int lenDiff;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1152
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1153 /* is record long enough for header? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1154 if ( dbentry->len < DB_CRL_ENTRY_HEADER_LEN ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1155 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1156 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1157 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1158
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1159 /* is database entry correct length? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1160 entry->derCrl.len = ( ( dbentry->data[0] << 8 ) \| dbentry->data[1] );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1161 urlLen = ( ( dbentry->data[2] << 8 ) \| dbentry->data[3] );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1162 lenDiff = dbentry->len -
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1163 (entry->derCrl.len + urlLen + DB_CRL_ENTRY_HEADER_LEN);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1164 if (lenDiff) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1165 if (lenDiff < 0 \|\| (lenDiff & 0xffff) != 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1166 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1167 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1168 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1169 /* CRL entry is greater than 64 K. Hack to make this continue to work */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1170 entry->derCrl.len += lenDiff;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1171 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1172
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1173 /* copy the der CRL */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1174 entry->derCrl.data = (unsigned char *)PORT_ArenaAlloc(entry->common.arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1175 entry->derCrl.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1176 if ( entry->derCrl.data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1177 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1178 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1179 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1180 PORT_Memcpy(entry->derCrl.data, &dbentry->data[DB_CRL_ENTRY_HEADER_LEN],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1181 entry->derCrl.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1182
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1183 /* copy the url */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1184 entry->url = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1185 if (urlLen != 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1186 entry->url = (char *)PORT_ArenaAlloc(entry->common.arena, urlLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1187 if ( entry->url == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1188 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1189 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1190 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1191 PORT_Memcpy(entry->url,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1192 &dbentry->data[DB_CRL_ENTRY_HEADER_LEN + entry->derCrl.len],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1193 urlLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1194 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1195
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1196 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1197 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1198 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1199 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1200
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1201 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1202 * Create a new certDBEntryRevocation from existing data
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1203 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1204 static certDBEntryRevocation *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1205 NewDBCrlEntry(SECItem derCrl, char url, certDBEntryType crlType, int flags)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1206 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1207 certDBEntryRevocation *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1208 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1209 int nnlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1210
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1211 arena = PORT_NewArena( DER_DEFAULT_CHUNKSIZE );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1212
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1213 if ( !arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1214 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1215 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1216
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1217 entry = PORT_ArenaZNew(arena, certDBEntryRevocation);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1218 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1219 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1220 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1221
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1222 /* fill in the dbRevolcation */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1223 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1224 entry->common.type = crlType;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1225 entry->common.version = CERT_DB_FILE_VERSION;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1226 entry->common.flags = flags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1227
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1228
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1229 entry->derCrl.data = (unsigned char *)PORT_ArenaAlloc(arena, derCrl->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1230 if ( !entry->derCrl.data ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1231 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1232 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1233
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1234 if (url) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1235 nnlen = PORT_Strlen(url) + 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1236 entry->url = (char *)PORT_ArenaAlloc(arena, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1237 if ( !entry->url ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1238 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1239 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1240 PORT_Memcpy(entry->url, url, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1241 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1242 entry->url = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1243 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1244
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1245
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1246 entry->derCrl.len = derCrl->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1247 PORT_Memcpy(entry->derCrl.data, derCrl->data, derCrl->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1248
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1249 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1250
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1251 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1252
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1253 /* allocation error, free arena and return */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1254 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1255 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1256 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1257
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1258 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1259 return(0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1260 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1261
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1262
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1263 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1264 WriteDBCrlEntry(NSSLOWCERTCertDBHandle handle, certDBEntryRevocation entry,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1265 SECItem *crlKey )
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1266 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1267 SECItem dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1268 PLArenaPool *tmparena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1269 SECItem encodedEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1270 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1271
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1272 tmparena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1273 if ( tmparena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1274 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1275 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1276
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1277 rv = EncodeDBCrlEntry(entry, tmparena, &encodedEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1278 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1279 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1280 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1281
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1282 rv = EncodeDBGenericKey(crlKey, tmparena, &dbkey, entry->common.type);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1283 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1284 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1285 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1286
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1287 /* now write it to the database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1288 rv = WriteDBEntry(handle, &entry->common, &dbkey, &encodedEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1289 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1290 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1291 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1292
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1293 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1294 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1295
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1296 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1297 if ( tmparena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1298 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1299 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1300 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1301 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1302 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1303 * delete a crl entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1304 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1305 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1306 DeleteDBCrlEntry(NSSLOWCERTCertDBHandle handle, const SECItem crlKey,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1307 certDBEntryType crlType)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1308 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1309 SECItem dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1310 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1311 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1312
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1313 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1314 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1315 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1316 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1317
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1318 rv = EncodeDBGenericKey(crlKey, arena, &dbkey, crlType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1319 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1320 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1321 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1322
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1323 rv = DeleteDBEntry(handle, crlType, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1324 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1325 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1326 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1327
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1328 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1329 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1330
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1331 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1332 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1333 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1334 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1335
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1336 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1337 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1338
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1339 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1340 * Read a certificate entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1341 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1342 static certDBEntryRevocation *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1343 ReadDBCrlEntry(NSSLOWCERTCertDBHandle handle, SECItem certKey,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1344 certDBEntryType crlType)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1345 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1346 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1347 PLArenaPool *tmparena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1348 certDBEntryRevocation *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1349 SECItem dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1350 SECItem dbentry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1351 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1352
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1353 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1354 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1355 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1356 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1357 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1358
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1359 tmparena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1360 if ( tmparena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1361 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1362 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1363 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1364
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1365 entry = (certDBEntryRevocation *)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1366 PORT_ArenaAlloc(arena, sizeof(certDBEntryRevocation));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1367 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1368 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1369 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1370 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1371 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1372 entry->common.type = crlType;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1373
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1374 rv = EncodeDBGenericKey(certKey, tmparena, &dbkey, crlType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1375 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1376 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1377 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1378
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1379 rv = ReadDBEntry(handle, &entry->common, &dbkey, &dbentry, NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1380 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1381 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1382 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1383
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1384 rv = DecodeDBCrlEntry(entry, &dbentry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1385 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1386 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1387 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1388
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1389 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1390 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1391
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1392 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1393 if ( tmparena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1394 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1395 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1396 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1397 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1398 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1399
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1400 return(NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1401 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1402
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1403 void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1404 nsslowcert_DestroyDBEntry(certDBEntry *entry)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1405 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1406 DestroyDBEntry(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1407 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1408 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1409
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1410 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1411 * Encode a database nickname record
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1412 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1413 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1414 EncodeDBNicknameEntry(certDBEntryNickname entry, PLArenaPool arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1415 SECItem *dbitem)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1416 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1417 unsigned char *buf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1418
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1419 /* allocate space for encoded database record, including space
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1420 * for low level header
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1421 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1422 dbitem->len = entry->subjectName.len + DB_NICKNAME_ENTRY_HEADER_LEN +
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1423 SEC_DB_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1424 dbitem->data = (unsigned char *)PORT_ArenaAlloc(arena, dbitem->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1425 if ( dbitem->data == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1426 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1427 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1428
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1429 /* fill in database record */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1430 buf = &dbitem->data[SEC_DB_ENTRY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1431 buf[0] = (PRUint8)( entry->subjectName.len >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1432 buf[1] = (PRUint8)( entry->subjectName.len );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1433 PORT_Memcpy(&buf[DB_NICKNAME_ENTRY_HEADER_LEN], entry->subjectName.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1434 entry->subjectName.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1435
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1436 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1437
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1438 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1439 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1440 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1441
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1442 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1443 * Encode a database key for a nickname record
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1444 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1445 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1446 EncodeDBNicknameKey(char nickname, PLArenaPool arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1447 SECItem *dbkey)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1448 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1449 unsigned int nnlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1450
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1451 nnlen = PORT_Strlen(nickname) + 1; /* includes null */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1452
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1453 /* now get the database key and format it */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1454 dbkey->len = nnlen + SEC_DB_KEY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1455 if (dbkey->len > NSS_MAX_LEGACY_DB_KEY_SIZE)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1456 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1457 dbkey->data = (unsigned char *)PORT_ArenaAlloc(arena, dbkey->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1458 if ( dbkey->data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1459 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1460 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1461 PORT_Memcpy(&dbkey->data[SEC_DB_KEY_HEADER_LEN], nickname, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1462 dbkey->data[0] = certDBEntryTypeNickname;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1463
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1464 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1465
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1466 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1467 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1468 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1469
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1470 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1471 DecodeDBNicknameEntry(certDBEntryNickname entry, SECItem dbentry,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1472 char *nickname)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1473 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1474 int lenDiff;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1475
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1476 /* is record long enough for header? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1477 if ( dbentry->len < DB_NICKNAME_ENTRY_HEADER_LEN ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1478 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1479 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1480 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1481
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1482 /* is database entry correct length? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1483 entry->subjectName.len = ( ( dbentry->data[0] << 8 ) \| dbentry->data[1] );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1484 lenDiff = dbentry->len -
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1485 (entry->subjectName.len + DB_NICKNAME_ENTRY_HEADER_LEN);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1486 if (lenDiff) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1487 if (lenDiff < 0 \|\| (lenDiff & 0xffff) != 0 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1488 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1489 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1490 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1491 /* The entry size exceeded 64KB. Reconstruct the correct length. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1492 entry->subjectName.len += lenDiff;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1493 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1494
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1495 /* copy the certkey */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1496 entry->subjectName.data =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1497 (unsigned char *)PORT_ArenaAlloc(entry->common.arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1498 entry->subjectName.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1499 if ( entry->subjectName.data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1500 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1501 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1502 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1503 PORT_Memcpy(entry->subjectName.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1504 &dbentry->data[DB_NICKNAME_ENTRY_HEADER_LEN],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1505 entry->subjectName.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1506 entry->subjectName.type = siBuffer;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1507
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1508 entry->nickname = (char *)PORT_ArenaAlloc(entry->common.arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1509 PORT_Strlen(nickname)+1);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1510 if ( entry->nickname ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1511 PORT_Strcpy(entry->nickname, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1512 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1513
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1514 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1515
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1516 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1517 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1518 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1519
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1520 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1521 * create a new nickname entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1522 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1523 static certDBEntryNickname *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1524 NewDBNicknameEntry(char nickname, SECItem subjectName, unsigned int flags)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1525 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1526 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1527 certDBEntryNickname *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1528 int nnlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1529 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1530
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1531 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1532 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1533 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1534 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1535 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1536
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1537 entry = (certDBEntryNickname *)PORT_ArenaAlloc(arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1538 sizeof(certDBEntryNickname));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1539 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1540 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1541 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1542 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1543
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1544 /* init common fields */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1545 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1546 entry->common.type = certDBEntryTypeNickname;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1547 entry->common.version = CERT_DB_FILE_VERSION;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1548 entry->common.flags = flags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1549
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1550 /* copy the nickname */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1551 nnlen = PORT_Strlen(nickname) + 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1552
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1553 entry->nickname = (char*)PORT_ArenaAlloc(arena, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1554 if ( entry->nickname == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1555 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1556 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1557
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1558 PORT_Memcpy(entry->nickname, nickname, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1559
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1560 rv = SECITEM_CopyItem(arena, &entry->subjectName, subjectName);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1561 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1562 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1563 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1564
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1565 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1566 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1567 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1568 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1569 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1570
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1571 return(NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1572 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1573
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1574 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1575 * delete a nickname entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1576 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1577 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1578 DeleteDBNicknameEntry(NSSLOWCERTCertDBHandle handle, char nickname)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1579 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1580 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1581 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1582 SECItem dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1583
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1584 if ( nickname == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1585 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1586 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1587
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1588 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1589 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1590 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1591 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1592
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1593 rv = EncodeDBNicknameKey(nickname, arena, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1594 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1595 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1596 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1597
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1598 rv = DeleteDBEntry(handle, certDBEntryTypeNickname, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1599 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1600 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1601 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1602
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1603 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1604 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1605
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1606 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1607 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1608 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1609 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1610
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1611 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1612 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1613
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1614 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1615 * Read a nickname entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1616 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1617 static certDBEntryNickname *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1618 ReadDBNicknameEntry(NSSLOWCERTCertDBHandle handle, char nickname)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1619 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1620 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1621 PLArenaPool *tmparena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1622 certDBEntryNickname *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1623 SECItem dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1624 SECItem dbentry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1625 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1626
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1627 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1628 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1629 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1630 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1631 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1632
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1633 tmparena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1634 if ( tmparena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1635 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1636 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1637 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1638
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1639 entry = (certDBEntryNickname *)PORT_ArenaAlloc(arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1640 sizeof(certDBEntryNickname));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1641 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1642 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1643 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1644 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1645 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1646 entry->common.type = certDBEntryTypeNickname;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1647
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1648 rv = EncodeDBNicknameKey(nickname, tmparena, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1649 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1650 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1651 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1652
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1653 rv = ReadDBEntry(handle, &entry->common, &dbkey, &dbentry, tmparena);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1654 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1655 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1656 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1657
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1658 /* is record long enough for header? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1659 if ( dbentry.len < DB_NICKNAME_ENTRY_HEADER_LEN ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1660 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1661 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1662 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1663
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1664 rv = DecodeDBNicknameEntry(entry, &dbentry, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1665 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1666 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1667 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1668
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1669 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1670 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1671
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1672 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1673 if ( tmparena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1674 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1675 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1676 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1677 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1678 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1679
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1680 return(NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1681 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1682
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1683 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1684 * Encode a nickname entry into byte stream suitable for
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1685 * the database
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1686 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1687 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1688 WriteDBNicknameEntry(NSSLOWCERTCertDBHandle handle, certDBEntryNickname entry)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1689 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1690 SECItem dbitem, dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1691 PLArenaPool *tmparena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1692 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1693
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1694 tmparena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1695 if ( tmparena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1696 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1697 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1698
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1699 rv = EncodeDBNicknameEntry(entry, tmparena, &dbitem);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1700 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1701 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1702 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1703
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1704 rv = EncodeDBNicknameKey(entry->nickname, tmparena, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1705 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1706 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1707 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1708
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1709 /* now write it to the database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1710 rv = WriteDBEntry(handle, &entry->common, &dbkey, &dbitem);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1711 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1712 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1713 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1714
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1715 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1716 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1717
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1718 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1719 if ( tmparena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1720 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1721 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1722 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1723
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1724 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1725
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1726 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1727 EncodeDBSMimeEntry(certDBEntrySMime entry, PLArenaPool arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1728 SECItem *dbitem)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1729 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1730 unsigned char *buf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1731
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1732 /* allocate space for encoded database record, including space
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1733 * for low level header
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1734 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1735 dbitem->len = entry->subjectName.len + entry->smimeOptions.len +
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1736 entry->optionsDate.len +
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1737 DB_SMIME_ENTRY_HEADER_LEN + SEC_DB_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1738
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1739 dbitem->data = (unsigned char *)PORT_ArenaAlloc(arena, dbitem->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1740 if ( dbitem->data == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1741 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1742 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1743 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1744
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1745 /* fill in database record */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1746 buf = &dbitem->data[SEC_DB_ENTRY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1747
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1748 buf[0] = (PRUint8)( entry->subjectName.len >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1749 buf[1] = (PRUint8)( entry->subjectName.len );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1750 buf[2] = (PRUint8)( entry->smimeOptions.len >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1751 buf[3] = (PRUint8)( entry->smimeOptions.len );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1752 buf[4] = (PRUint8)( entry->optionsDate.len >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1753 buf[5] = (PRUint8)( entry->optionsDate.len );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1754
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1755 /* if no smime options, then there should not be an options date either */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1756 PORT_Assert( ! ( ( entry->smimeOptions.len == 0 ) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1757 ( entry->optionsDate.len != 0 ) ) );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1758
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1759 PORT_Memcpy(&buf[DB_SMIME_ENTRY_HEADER_LEN], entry->subjectName.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1760 entry->subjectName.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1761 if ( entry->smimeOptions.len ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1762 PORT_Memcpy(&buf[DB_SMIME_ENTRY_HEADER_LEN+entry->subjectName.len],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1763 entry->smimeOptions.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1764 entry->smimeOptions.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1765 PORT_Memcpy(&buf[DB_SMIME_ENTRY_HEADER_LEN + entry->subjectName.len +
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1766 entry->smimeOptions.len],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1767 entry->optionsDate.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1768 entry->optionsDate.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1769 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1770
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1771 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1772
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1773 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1774 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1775 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1776
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1777 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1778 * Encode a database key for a SMIME record
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1779 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1780 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1781 EncodeDBSMimeKey(char emailAddr, PLArenaPool arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1782 SECItem *dbkey)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1783 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1784 unsigned int addrlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1785
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1786 addrlen = PORT_Strlen(emailAddr) + 1; /* includes null */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1787
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1788 /* now get the database key and format it */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1789 dbkey->len = addrlen + SEC_DB_KEY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1790 if (dbkey->len > NSS_MAX_LEGACY_DB_KEY_SIZE)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1791 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1792 dbkey->data = (unsigned char *)PORT_ArenaAlloc(arena, dbkey->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1793 if ( dbkey->data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1794 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1795 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1796 PORT_Memcpy(&dbkey->data[SEC_DB_KEY_HEADER_LEN], emailAddr, addrlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1797 dbkey->data[0] = certDBEntryTypeSMimeProfile;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1798
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1799 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1800
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1801 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1802 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1803 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1804
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1805 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1806 * Decode a database SMIME record
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1807 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1808 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1809 DecodeDBSMimeEntry(certDBEntrySMime entry, SECItem dbentry, char *emailAddr)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1810 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1811 int lenDiff;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1812
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1813 /* is record long enough for header? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1814 if ( dbentry->len < DB_SMIME_ENTRY_HEADER_LEN ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1815 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1816 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1817 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1818
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1819 /* is database entry correct length? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1820 entry->subjectName.len = (( dbentry->data[0] << 8 ) \| dbentry->data[1] );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1821 entry->smimeOptions.len = (( dbentry->data[2] << 8 ) \| dbentry->data[3] );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1822 entry->optionsDate.len = (( dbentry->data[4] << 8 ) \| dbentry->data[5] );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1823 lenDiff = dbentry->len - (entry->subjectName.len +
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1824 entry->smimeOptions.len +
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1825 entry->optionsDate.len +
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1826 DB_SMIME_ENTRY_HEADER_LEN);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1827 if (lenDiff) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1828 if (lenDiff < 0 \|\| (lenDiff & 0xffff) != 0 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1829 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1830 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1831 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1832 /* The entry size exceeded 64KB. Reconstruct the correct length. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1833 entry->subjectName.len += lenDiff;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1834 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1835
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1836 /* copy the subject name */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1837 entry->subjectName.data =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1838 (unsigned char *)PORT_ArenaAlloc(entry->common.arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1839 entry->subjectName.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1840 if ( entry->subjectName.data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1841 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1842 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1843 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1844 PORT_Memcpy(entry->subjectName.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1845 &dbentry->data[DB_SMIME_ENTRY_HEADER_LEN],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1846 entry->subjectName.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1847
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1848 /* copy the smime options */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1849 if ( entry->smimeOptions.len ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1850 entry->smimeOptions.data =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1851 (unsigned char *)PORT_ArenaAlloc(entry->common.arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1852 entry->smimeOptions.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1853 if ( entry->smimeOptions.data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1854 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1855 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1856 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1857 PORT_Memcpy(entry->smimeOptions.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1858 &dbentry->data[DB_SMIME_ENTRY_HEADER_LEN +
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1859 entry->subjectName.len],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1860 entry->smimeOptions.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1861 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1862 if ( entry->optionsDate.len ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1863 entry->optionsDate.data =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1864 (unsigned char *)PORT_ArenaAlloc(entry->common.arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1865 entry->optionsDate.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1866 if ( entry->optionsDate.data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1867 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1868 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1869 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1870 PORT_Memcpy(entry->optionsDate.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1871 &dbentry->data[DB_SMIME_ENTRY_HEADER_LEN +
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1872 entry->subjectName.len +
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1873 entry->smimeOptions.len],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1874 entry->optionsDate.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1875 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1876
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1877 /* both options and options date must either exist or not exist */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1878 if ( ( ( entry->optionsDate.len == 0 ) \|\|
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1879 ( entry->smimeOptions.len == 0 ) ) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1880 entry->smimeOptions.len != entry->optionsDate.len ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1881 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1882 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1883 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1884
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1885 entry->emailAddr = (char *)PORT_ArenaAlloc(entry->common.arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1886 PORT_Strlen(emailAddr)+1);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1887 if ( entry->emailAddr ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1888 PORT_Strcpy(entry->emailAddr, emailAddr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1889 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1890
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1891 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1892
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1893 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1894 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1895 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1896
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1897 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1898 * create a new SMIME entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1899 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1900 static certDBEntrySMime *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1901 NewDBSMimeEntry(char emailAddr, SECItem subjectName, SECItem *smimeOptions,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1902 SECItem *optionsDate, unsigned int flags)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1903 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1904 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1905 certDBEntrySMime *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1906 int addrlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1907 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1908
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1909 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1910 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1911 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1912 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1913 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1914
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1915 entry = (certDBEntrySMime *)PORT_ArenaAlloc(arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1916 sizeof(certDBEntrySMime));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1917 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1918 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1919 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1920 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1921
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1922 /* init common fields */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1923 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1924 entry->common.type = certDBEntryTypeSMimeProfile;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1925 entry->common.version = CERT_DB_FILE_VERSION;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1926 entry->common.flags = flags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1927
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1928 /* copy the email addr */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1929 addrlen = PORT_Strlen(emailAddr) + 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1930
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1931 entry->emailAddr = (char*)PORT_ArenaAlloc(arena, addrlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1932 if ( entry->emailAddr == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1933 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1934 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1935
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1936 PORT_Memcpy(entry->emailAddr, emailAddr, addrlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1937
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1938 /* copy the subject name */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1939 rv = SECITEM_CopyItem(arena, &entry->subjectName, subjectName);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1940 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1941 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1942 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1943
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1944 /* copy the smime options */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1945 if ( smimeOptions ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1946 rv = SECITEM_CopyItem(arena, &entry->smimeOptions, smimeOptions);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1947 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1948 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1949 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1950 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1951 PORT_Assert(optionsDate == NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1952 entry->smimeOptions.data = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1953 entry->smimeOptions.len = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1954 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1955
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1956 /* copy the options date */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1957 if ( optionsDate ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1958 rv = SECITEM_CopyItem(arena, &entry->optionsDate, optionsDate);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1959 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1960 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1961 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1962 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1963 PORT_Assert(smimeOptions == NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1964 entry->optionsDate.data = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1965 entry->optionsDate.len = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1966 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1967
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1968 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1969 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1970 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1971 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1972 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1973
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1974 return(NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1975 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1976
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1977 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1978 * delete a SMIME entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1979 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1980 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1981 DeleteDBSMimeEntry(NSSLOWCERTCertDBHandle handle, char emailAddr)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1982 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1983 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1984 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1985 SECItem dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1986
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1987 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1988 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1989 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1990 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1991
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1992 rv = EncodeDBSMimeKey(emailAddr, arena, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1993 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1994 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1995 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1996
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1997 rv = DeleteDBEntry(handle, certDBEntryTypeSMimeProfile, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1998 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	1999 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2000 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2001
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2002 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2003 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2004
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2005 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2006 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2007 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2008 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2009
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2010 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2011 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2012
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2013 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2014 * Read a SMIME entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2015 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2016 certDBEntrySMime *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2017 nsslowcert_ReadDBSMimeEntry(NSSLOWCERTCertDBHandle handle, char emailAddr)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2018 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2019 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2020 PLArenaPool *tmparena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2021 certDBEntrySMime *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2022 SECItem dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2023 SECItem dbentry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2024 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2025
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2026 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2027 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2028 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2029 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2030 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2031
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2032 tmparena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2033 if ( tmparena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2034 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2035 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2036 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2037
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2038 entry = (certDBEntrySMime *)PORT_ArenaAlloc(arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2039 sizeof(certDBEntrySMime));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2040 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2041 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2042 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2043 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2044 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2045 entry->common.type = certDBEntryTypeSMimeProfile;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2046
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2047 rv = EncodeDBSMimeKey(emailAddr, tmparena, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2048 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2049 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2050 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2051
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2052 rv = ReadDBEntry(handle, &entry->common, &dbkey, &dbentry, tmparena);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2053 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2054 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2055 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2056
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2057 /* is record long enough for header? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2058 if ( dbentry.len < DB_SMIME_ENTRY_HEADER_LEN ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2059 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2060 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2061 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2062
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2063 rv = DecodeDBSMimeEntry(entry, &dbentry, emailAddr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2064 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2065 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2066 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2067
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2068 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2069 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2070
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2071 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2072 if ( tmparena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2073 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2074 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2075 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2076 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2077 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2078
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2079 return(NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2080 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2081
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2082 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2083 * Encode a SMIME entry into byte stream suitable for
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2084 * the database
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2085 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2086 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2087 WriteDBSMimeEntry(NSSLOWCERTCertDBHandle handle, certDBEntrySMime entry)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2088 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2089 SECItem dbitem, dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2090 PLArenaPool *tmparena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2091 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2092
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2093 tmparena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2094 if ( tmparena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2095 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2096 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2097
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2098 rv = EncodeDBSMimeEntry(entry, tmparena, &dbitem);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2099 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2100 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2101 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2102
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2103 rv = EncodeDBSMimeKey(entry->emailAddr, tmparena, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2104 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2105 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2106 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2107
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2108 /* now write it to the database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2109 rv = WriteDBEntry(handle, &entry->common, &dbkey, &dbitem);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2110 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2111 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2112 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2113
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2114 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2115 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2116
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2117 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2118 if ( tmparena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2119 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2120 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2121 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2122
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2123 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2124
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2125 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2126 * Encode a database subject record
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2127 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2128 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2129 EncodeDBSubjectEntry(certDBEntrySubject entry, PLArenaPool arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2130 SECItem *dbitem)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2131 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2132 unsigned char *buf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2133 int len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2134 unsigned int ncerts;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2135 unsigned int i;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2136 unsigned char *tmpbuf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2137 unsigned int nnlen = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2138 unsigned int eaddrslen = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2139 int keyidoff;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2140 SECItem *certKeys = entry->certKeys;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2141 SECItem *keyIDs = entry->keyIDs;;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2142
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2143 if ( entry->nickname ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2144 nnlen = PORT_Strlen(entry->nickname) + 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2145 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2146 if ( entry->emailAddrs ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2147 eaddrslen = 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2148 for (i=0; i < entry->nemailAddrs; i++) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2149 eaddrslen += PORT_Strlen(entry->emailAddrs[i]) + 1 + 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2150 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2151 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2152
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2153 ncerts = entry->ncerts;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2154
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2155 /* compute the length of the entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2156 keyidoff = DB_SUBJECT_ENTRY_HEADER_LEN + nnlen ;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2157 len = keyidoff + (4 * ncerts) + eaddrslen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2158 for ( i = 0; i < ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2159 if (keyIDs[i].len > 0xffff \|\|
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2160 (certKeys[i].len > 0xffff)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2161 PORT_SetError(SEC_ERROR_INPUT_LEN);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2162 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2163 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2164 len += certKeys[i].len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2165 len += keyIDs[i].len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2166 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2167
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2168 /* allocate space for encoded database record, including space
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2169 * for low level header
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2170 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2171 dbitem->len = len + SEC_DB_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2172
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2173 dbitem->data = (unsigned char *)PORT_ArenaAlloc(arena, dbitem->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2174 if ( dbitem->data == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2175 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2176 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2177 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2178
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2179 /* fill in database record */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2180 buf = &dbitem->data[SEC_DB_ENTRY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2181
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2182 buf[0] = (PRUint8)( ncerts >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2183 buf[1] = (PRUint8)( ncerts );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2184 buf[2] = (PRUint8)( nnlen >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2185 buf[3] = (PRUint8)( nnlen );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2186 /* v7 email field is NULL in v8 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2187 buf[4] = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2188 buf[5] = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2189
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2190 PORT_Memcpy(&buf[DB_SUBJECT_ENTRY_HEADER_LEN], entry->nickname, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2191 tmpbuf = &buf[keyidoff];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2192 for ( i = 0; i < ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2193 tmpbuf[0] = (PRUint8)( certKeys[i].len >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2194 tmpbuf[1] = (PRUint8)( certKeys[i].len );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2195 tmpbuf += 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2196 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2197 for ( i = 0; i < ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2198 tmpbuf[0] = (PRUint8)( keyIDs[i].len >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2199 tmpbuf[1] = (PRUint8)( keyIDs[i].len );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2200 tmpbuf += 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2201 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2202
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2203 for ( i = 0; i < ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2204 PORT_Memcpy(tmpbuf, certKeys[i].data, certKeys[i].len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2205 tmpbuf += certKeys[i].len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2206 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2207 for ( i = 0; i < ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2208 PORT_Memcpy(tmpbuf, keyIDs[i].data, keyIDs[i].len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2209 tmpbuf += keyIDs[i].len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2210 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2211
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2212 if (entry->emailAddrs) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2213 tmpbuf[0] = (PRUint8)( entry->nemailAddrs >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2214 tmpbuf[1] = (PRUint8)( entry->nemailAddrs );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2215 tmpbuf += 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2216 for (i=0; i < entry->nemailAddrs; i++) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2217 int nameLen = PORT_Strlen(entry->emailAddrs[i]) + 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2218 tmpbuf[0] = (PRUint8)( nameLen >> 8 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2219 tmpbuf[1] = (PRUint8)( nameLen );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2220 tmpbuf += 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2221 PORT_Memcpy(tmpbuf,entry->emailAddrs[i],nameLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2222 tmpbuf +=nameLen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2223 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2224 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2225
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2226 PORT_Assert(tmpbuf == &buf[len]);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2227
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2228 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2229
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2230 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2231 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2232 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2233
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2234 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2235 * Encode a database key for a subject record
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2236 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2237 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2238 EncodeDBSubjectKey(SECItem derSubject, PLArenaPool arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2239 SECItem *dbkey)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2240 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2241 dbkey->len = derSubject->len + SEC_DB_KEY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2242 if (dbkey->len > NSS_MAX_LEGACY_DB_KEY_SIZE)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2243 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2244 dbkey->data = (unsigned char *)PORT_ArenaAlloc(arena, dbkey->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2245 if ( dbkey->data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2246 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2247 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2248 PORT_Memcpy(&dbkey->data[SEC_DB_KEY_HEADER_LEN], derSubject->data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2249 derSubject->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2250 dbkey->data[0] = certDBEntryTypeSubject;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2251
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2252 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2253
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2254 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2255 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2256 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2257
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2258 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2259 DecodeDBSubjectEntry(certDBEntrySubject entry, SECItem dbentry,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2260 const SECItem *derSubject)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2261 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2262 PLArenaPool *arena = entry->common.arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2263 unsigned char *tmpbuf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2264 unsigned char *end;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2265 void *mark = PORT_ArenaMark(arena);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2266 unsigned int eaddrlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2267 unsigned int i;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2268 unsigned int keyidoff;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2269 unsigned int len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2270 unsigned int ncerts = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2271 unsigned int nnlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2272 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2273
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2274 rv = SECITEM_CopyItem(arena, &entry->derSubject, derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2275 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2276 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2277 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2278
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2279 /* is record long enough for header? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2280 if ( dbentry->len < DB_SUBJECT_ENTRY_HEADER_LEN ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2281 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2282 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2283 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2284
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2285 entry->ncerts = ncerts = (( dbentry->data[0] << 8 ) \| dbentry->data[1] );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2286 nnlen = (( dbentry->data[2] << 8 ) \| dbentry->data[3] );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2287 eaddrlen = (( dbentry->data[4] << 8 ) \| dbentry->data[5] );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2288 keyidoff = DB_SUBJECT_ENTRY_HEADER_LEN + nnlen + eaddrlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2289 len = keyidoff + (4 * ncerts);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2290 if ( dbentry->len < len) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2291 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2292 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2293 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2294
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2295 entry->certKeys = PORT_ArenaNewArray(arena, SECItem, ncerts);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2296 entry->keyIDs = PORT_ArenaNewArray(arena, SECItem, ncerts);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2297 if ( ( entry->certKeys == NULL ) \|\| ( entry->keyIDs == NULL ) ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2298 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2299 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2300 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2301
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2302 if ( nnlen > 1 ) { /* null terminator is stored */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2303 entry->nickname = (char *)PORT_ArenaAlloc(arena, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2304 if ( entry->nickname == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2305 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2306 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2307 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2308 PORT_Memcpy(entry->nickname,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2309 &dbentry->data[DB_SUBJECT_ENTRY_HEADER_LEN],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2310 nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2311 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2312 entry->nickname = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2313 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2314
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2315 /* if we have an old style email entry, there is only one */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2316 entry->nemailAddrs = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2317 if ( eaddrlen > 1 ) { /* null terminator is stored */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2318 entry->emailAddrs = PORT_ArenaNewArray(arena, char *, 2);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2319 if ( entry->emailAddrs == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2320 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2321 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2322 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2323 entry->emailAddrs[0] = (char *)PORT_ArenaAlloc(arena, eaddrlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2324 if ( entry->emailAddrs[0] == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2325 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2326 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2327 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2328 PORT_Memcpy(entry->emailAddrs[0],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2329 &dbentry->data[DB_SUBJECT_ENTRY_HEADER_LEN+nnlen],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2330 eaddrlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2331 entry->nemailAddrs = 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2332 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2333 entry->emailAddrs = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2334 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2335
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2336 /* collect the lengths of the certKeys and keyIDs, and total the
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2337 * overall length.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2338 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2339 tmpbuf = &dbentry->data[keyidoff];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2340 for ( i = 0; i < ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2341 unsigned int itemlen = ( tmpbuf[0] << 8 ) \| tmpbuf[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2342 entry->certKeys[i].len = itemlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2343 len += itemlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2344 tmpbuf += 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2345 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2346 for ( i = 0; i < ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2347 unsigned int itemlen = ( tmpbuf[0] << 8 ) \| tmpbuf[1] ;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2348 entry->keyIDs[i].len = itemlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2349 len += itemlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2350 tmpbuf += 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2351 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2352
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2353 /* is encoded entry large enough ? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2354 if ( len > dbentry->len ){
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2355 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2356 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2357 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2358
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2359 for ( i = 0; i < ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2360 unsigned int kLen = entry->certKeys[i].len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2361 entry->certKeys[i].data = (unsigned char *)PORT_ArenaAlloc(arena, kLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2362 if ( entry->certKeys[i].data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2363 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2364 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2365 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2366 PORT_Memcpy(entry->certKeys[i].data, tmpbuf, kLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2367 tmpbuf += kLen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2368 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2369 for ( i = 0; i < ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2370 unsigned int iLen = entry->keyIDs[i].len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2371 entry->keyIDs[i].data = (unsigned char *)PORT_ArenaAlloc(arena, iLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2372 if ( entry->keyIDs[i].data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2373 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2374 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2375 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2376 PORT_Memcpy(entry->keyIDs[i].data, tmpbuf, iLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2377 tmpbuf += iLen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2378 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2379
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2380 end = dbentry->data + dbentry->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2381 if ((eaddrlen == 0) && (end - tmpbuf > 1)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2382 /* read in the additional email addresses */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2383 entry->nemailAddrs = (((unsigned int)tmpbuf[0]) << 8) \| tmpbuf[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2384 tmpbuf += 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2385 if (end - tmpbuf < 2 * (int)entry->nemailAddrs)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2386 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2387 entry->emailAddrs = PORT_ArenaNewArray(arena, char *, entry->nemailAddrs);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2388 if (entry->emailAddrs == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2389 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2390 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2391 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2392 for (i=0; i < entry->nemailAddrs; i++) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2393 int nameLen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2394 if (end - tmpbuf < 2) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2395 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2396 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2397 nameLen = (((int)tmpbuf[0]) << 8) \| tmpbuf[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2398 tmpbuf += 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2399 if (end - tmpbuf < nameLen) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2400 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2401 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2402 entry->emailAddrs[i] = PORT_ArenaAlloc(arena,nameLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2403 if (entry->emailAddrs == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2404 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2405 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2406 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2407 PORT_Memcpy(entry->emailAddrs[i], tmpbuf, nameLen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2408 tmpbuf += nameLen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2409 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2410 if (tmpbuf != end)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2411 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2412 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2413 PORT_ArenaUnmark(arena, mark);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2414 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2415
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2416 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2417 PORT_ArenaRelease(arena, mark); /* discard above allocations */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2418 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2419 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2420
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2421 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2422 * create a new subject entry with a single cert
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2423 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2424 static certDBEntrySubject *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2425 NewDBSubjectEntry(SECItem derSubject, SECItem certKey,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2426 SECItem keyID, char nickname, char *emailAddr,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2427 unsigned int flags)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2428 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2429 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2430 certDBEntrySubject *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2431 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2432 unsigned int nnlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2433 unsigned int eaddrlen;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2434
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2435 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2436 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2437 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2438 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2439 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2440
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2441 entry = (certDBEntrySubject *)PORT_ArenaAlloc(arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2442 sizeof(certDBEntrySubject));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2443 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2444 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2445 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2446 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2447
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2448 /* init common fields */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2449 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2450 entry->common.type = certDBEntryTypeSubject;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2451 entry->common.version = CERT_DB_FILE_VERSION;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2452 entry->common.flags = flags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2453
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2454 /* copy the subject */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2455 rv = SECITEM_CopyItem(arena, &entry->derSubject, derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2456 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2457 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2458 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2459
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2460 entry->ncerts = 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2461 entry->nemailAddrs = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2462 /* copy nickname */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2463 if ( nickname && ( *nickname != '\0' ) ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2464 nnlen = PORT_Strlen(nickname) + 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2465 entry->nickname = (char *)PORT_ArenaAlloc(arena, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2466 if ( entry->nickname == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2467 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2468 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2469
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2470 PORT_Memcpy(entry->nickname, nickname, nnlen);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2471 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2472 entry->nickname = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2473 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2474
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2475 /* copy email addr */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2476 if ( emailAddr && ( *emailAddr != '\0' ) ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2477 emailAddr = nsslowcert_FixupEmailAddr(emailAddr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2478 if ( emailAddr == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2479 entry->emailAddrs = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2480 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2481 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2482
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2483 eaddrlen = PORT_Strlen(emailAddr) + 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2484 entry->emailAddrs = (char *)PORT_ArenaAlloc(arena, sizeof(char ));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2485 if ( entry->emailAddrs == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2486 PORT_Free(emailAddr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2487 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2488 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2489 entry->emailAddrs[0] = PORT_ArenaStrdup(arena,emailAddr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2490 if (entry->emailAddrs[0]) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2491 entry->nemailAddrs = 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2492 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2493
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2494 PORT_Free(emailAddr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2495 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2496 entry->emailAddrs = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2497 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2498
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2499 /* allocate space for certKeys and keyIDs */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2500 entry->certKeys = (SECItem *)PORT_ArenaAlloc(arena, sizeof(SECItem));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2501 entry->keyIDs = (SECItem *)PORT_ArenaAlloc(arena, sizeof(SECItem));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2502 if ( ( entry->certKeys == NULL ) \|\| ( entry->keyIDs == NULL ) ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2503 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2504 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2505
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2506 /* copy the certKey and keyID */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2507 rv = SECITEM_CopyItem(arena, &entry->certKeys[0], certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2508 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2509 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2510 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2511 rv = SECITEM_CopyItem(arena, &entry->keyIDs[0], keyID);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2512 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2513 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2514 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2515
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2516 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2517 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2518 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2519 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2520 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2521
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2522 return(NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2523 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2524
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2525 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2526 * delete a subject entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2527 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2528 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2529 DeleteDBSubjectEntry(NSSLOWCERTCertDBHandle handle, SECItem derSubject)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2530 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2531 SECItem dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2532 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2533 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2534
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2535 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2536 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2537 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2538 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2539
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2540 rv = EncodeDBSubjectKey(derSubject, arena, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2541 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2542 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2543 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2544
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2545 rv = DeleteDBEntry(handle, certDBEntryTypeSubject, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2546 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2547 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2548 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2549
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2550 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2551 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2552
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2553 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2554 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2555 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2556 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2557
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2558 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2559 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2560
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2561 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2562 * Read the subject entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2563 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2564 static certDBEntrySubject *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2565 ReadDBSubjectEntry(NSSLOWCERTCertDBHandle handle, SECItem derSubject)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2566 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2567 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2568 PLArenaPool *tmparena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2569 certDBEntrySubject *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2570 SECItem dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2571 SECItem dbentry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2572 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2573
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2574 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2575 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2576 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2577 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2578 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2579
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2580 tmparena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2581 if ( tmparena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2582 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2583 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2584 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2585
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2586 entry = (certDBEntrySubject *)PORT_ArenaAlloc(arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2587 sizeof(certDBEntrySubject));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2588 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2589 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2590 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2591 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2592 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2593 entry->common.type = certDBEntryTypeSubject;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2594
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2595 rv = EncodeDBSubjectKey(derSubject, tmparena, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2596 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2597 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2598 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2599
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2600 rv = ReadDBEntry(handle, &entry->common, &dbkey, &dbentry, tmparena);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2601 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2602 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2603 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2604
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2605 rv = DecodeDBSubjectEntry(entry, &dbentry, derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2606 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2607 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2608 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2609
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2610 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2611 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2612
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2613 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2614 if ( tmparena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2615 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2616 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2617 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2618 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2619 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2620
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2621 return(NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2622 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2623
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2624 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2625 * Encode a subject name entry into byte stream suitable for
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2626 * the database
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2627 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2628 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2629 WriteDBSubjectEntry(NSSLOWCERTCertDBHandle handle, certDBEntrySubject entry)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2630 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2631 SECItem dbitem, dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2632 PLArenaPool *tmparena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2633 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2634
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2635 tmparena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2636 if ( tmparena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2637 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2638 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2639
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2640 rv = EncodeDBSubjectEntry(entry, tmparena, &dbitem);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2641 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2642 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2643 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2644
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2645 rv = EncodeDBSubjectKey(&entry->derSubject, tmparena, &dbkey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2646 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2647 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2648 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2649
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2650 /* now write it to the database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2651 rv = WriteDBEntry(handle, &entry->common, &dbkey, &dbitem);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2652 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2653 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2654 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2655
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2656 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2657 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2658
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2659 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2660 if ( tmparena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2661 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2662 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2663 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2664
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2665 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2666
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2667 typedef enum { nsslowcert_remove, nsslowcert_add } nsslowcertUpdateType;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2668
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2669 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2670 nsslowcert_UpdateSubjectEmailAddr(NSSLOWCERTCertDBHandle *dbhandle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2671 SECItem derSubject, char emailAddr, nsslowcertUpdateType updateType)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2672 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2673 certDBEntrySubject *entry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2674 int index = -1, i;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2675 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2676
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2677 if (emailAddr) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2678 emailAddr = nsslowcert_FixupEmailAddr(emailAddr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2679 if (emailAddr == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2680 return SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2681 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2682 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2683 return SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2684 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2685
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2686 entry = ReadDBSubjectEntry(dbhandle,derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2687 if (entry == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2688 rv = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2689 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2690 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2691
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2692 for (i=0; i < (int)(entry->nemailAddrs); i++) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2693 if (PORT_Strcmp(entry->emailAddrs[i],emailAddr) == 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2694 index = i;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2695 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2696 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2697
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2698 if (updateType == nsslowcert_remove) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2699 if (index == -1) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2700 rv = SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2701 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2702 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2703 entry->nemailAddrs--;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2704 for (i=index; i < (int)(entry->nemailAddrs); i++) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2705 entry->emailAddrs[i] = entry->emailAddrs[i+1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2706 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2707 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2708 char **newAddrs = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2709
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2710 if (index != -1) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2711 rv = SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2712 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2713 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2714 newAddrs = (char **)PORT_ArenaAlloc(entry->common.arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2715 (entry->nemailAddrs+1)* sizeof(char *));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2716 if (!newAddrs) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2717 rv = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2718 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2719 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2720 for (i=0; i < (int)(entry->nemailAddrs); i++) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2721 newAddrs[i] = entry->emailAddrs[i];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2722 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2723 newAddrs[entry->nemailAddrs] =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2724 PORT_ArenaStrdup(entry->common.arena,emailAddr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2725 if (!newAddrs[entry->nemailAddrs]) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2726 rv = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2727 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2728 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2729 entry->emailAddrs = newAddrs;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2730 entry->nemailAddrs++;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2731 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2732
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2733 /* delete the subject entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2734 DeleteDBSubjectEntry(dbhandle, derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2735
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2736 /* write the new one */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2737 rv = WriteDBSubjectEntry(dbhandle, entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2738
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2739 done:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2740 if (entry) DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2741 if (emailAddr) PORT_Free(emailAddr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2742 return rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2743 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2744
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2745 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2746 * writes a nickname to an existing subject entry that does not currently
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2747 * have one
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2748 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2749 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2750 AddNicknameToSubject(NSSLOWCERTCertDBHandle *dbhandle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2751 NSSLOWCERTCertificate cert, char nickname)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2752 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2753 certDBEntrySubject *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2754 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2755
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2756 if ( nickname == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2757 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2758 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2759
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2760 entry = ReadDBSubjectEntry(dbhandle,&cert->derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2761 PORT_Assert(entry != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2762 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2763 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2764 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2765
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2766 PORT_Assert(entry->nickname == NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2767 if ( entry->nickname != NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2768 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2769 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2770
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2771 entry->nickname = PORT_ArenaStrdup(entry->common.arena, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2772
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2773 if ( entry->nickname == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2774 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2775 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2776
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2777 /* delete the subject entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2778 DeleteDBSubjectEntry(dbhandle, &cert->derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2779
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2780 /* write the new one */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2781 rv = WriteDBSubjectEntry(dbhandle, entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2782 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2783 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2784 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2785
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2786 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2787
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2788 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2789 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2790 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2791
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2792 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2793 * create a new version entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2794 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2795 static certDBEntryVersion *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2796 NewDBVersionEntry(unsigned int flags)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2797 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2798 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2799 certDBEntryVersion *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2800
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2801 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2802 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2803 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2804 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2805 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2806
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2807 entry = (certDBEntryVersion *)PORT_ArenaAlloc(arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2808 sizeof(certDBEntryVersion));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2809 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2810 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2811 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2812 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2813 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2814 entry->common.type = certDBEntryTypeVersion;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2815 entry->common.version = CERT_DB_FILE_VERSION;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2816 entry->common.flags = flags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2817
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2818 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2819 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2820 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2821 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2822 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2823
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2824 return(NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2825 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2826
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2827 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2828 * Read the version entry
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2829 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2830 static certDBEntryVersion *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2831 ReadDBVersionEntry(NSSLOWCERTCertDBHandle *handle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2832 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2833 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2834 PLArenaPool *tmparena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2835 certDBEntryVersion *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2836 SECItem dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2837 SECItem dbentry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2838 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2839
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2840 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2841 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2842 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2843 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2844 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2845
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2846 tmparena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2847 if ( tmparena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2848 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2849 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2850 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2851
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2852 entry = PORT_ArenaZNew(arena, certDBEntryVersion);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2853 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2854 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2855 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2856 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2857 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2858 entry->common.type = certDBEntryTypeVersion;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2859
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2860 /* now get the database key and format it */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2861 dbkey.len = SEC_DB_VERSION_KEY_LEN + SEC_DB_KEY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2862 dbkey.data = (unsigned char *)PORT_ArenaAlloc(tmparena, dbkey.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2863 if ( dbkey.data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2864 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2865 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2866 PORT_Memcpy(&dbkey.data[SEC_DB_KEY_HEADER_LEN], SEC_DB_VERSION_KEY,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2867 SEC_DB_VERSION_KEY_LEN);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2868
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2869 rv = ReadDBEntry(handle, &entry->common, &dbkey, &dbentry, tmparena);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2870 if (rv != SECSuccess) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2871 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2872 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2873
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2874 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2875 return(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2876
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2877 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2878 if ( tmparena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2879 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2880 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2881 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2882 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2883 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2884
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2885 return(NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2886 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2887
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2888
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2889 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2890 * Encode a version entry into byte stream suitable for
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2891 * the database
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2892 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2893 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2894 WriteDBVersionEntry(NSSLOWCERTCertDBHandle handle, certDBEntryVersion entry)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2895 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2896 SECItem dbitem, dbkey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2897 PLArenaPool *tmparena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2898 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2899
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2900 tmparena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2901 if ( tmparena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2902 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2903 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2904
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2905 /* allocate space for encoded database record, including space
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2906 * for low level header
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2907 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2908 dbitem.len = SEC_DB_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2909
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2910 dbitem.data = (unsigned char *)PORT_ArenaAlloc(tmparena, dbitem.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2911 if ( dbitem.data == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2912 PORT_SetError(SEC_ERROR_NO_MEMORY);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2913 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2914 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2915
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2916 /* now get the database key and format it */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2917 dbkey.len = SEC_DB_VERSION_KEY_LEN + SEC_DB_KEY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2918 dbkey.data = (unsigned char *)PORT_ArenaAlloc(tmparena, dbkey.len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2919 if ( dbkey.data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2920 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2921 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2922 PORT_Memcpy(&dbkey.data[SEC_DB_KEY_HEADER_LEN], SEC_DB_VERSION_KEY,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2923 SEC_DB_VERSION_KEY_LEN);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2924
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2925 /* now write it to the database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2926 rv = WriteDBEntry(handle, &entry->common, &dbkey, &dbitem);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2927 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2928 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2929 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2930
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2931 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2932 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2933
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2934 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2935 if ( tmparena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2936 PORT_FreeArena(tmparena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2937 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2938 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2939 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2940
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2941 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2942 * cert is no longer a perm cert, but will remain a temp cert
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2943 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2944 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2945 RemovePermSubjectNode(NSSLOWCERTCertificate *cert)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2946 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2947 certDBEntrySubject *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2948 unsigned int i;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2949 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2950
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2951 entry = ReadDBSubjectEntry(cert->dbhandle,&cert->derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2952 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2953 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2954 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2955
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2956 PORT_Assert(entry->ncerts);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2957 rv = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2958
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2959 if ( entry->ncerts > 1 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2960 for ( i = 0; i < entry->ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2961 if ( SECITEM_CompareItem(&entry->certKeys[i], &cert->certKey) ==
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2962 SECEqual ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2963 /* copy rest of list forward one entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2964 for ( i = i + 1; i < entry->ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2965 entry->certKeys[i-1] = entry->certKeys[i];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2966 entry->keyIDs[i-1] = entry->keyIDs[i];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2967 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2968 entry->ncerts--;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2969 DeleteDBSubjectEntry(cert->dbhandle, &cert->derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2970 rv = WriteDBSubjectEntry(cert->dbhandle, entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2971 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2972 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2973 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2974 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2975 /* no entries left, delete the perm entry in the DB */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2976 if ( entry->emailAddrs ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2977 /* if the subject had an email record, then delete it too */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2978 for (i=0; i < entry->nemailAddrs; i++) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2979 DeleteDBSMimeEntry(cert->dbhandle, entry->emailAddrs[i]);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2980 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2981 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2982 if ( entry->nickname ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2983 DeleteDBNicknameEntry(cert->dbhandle, entry->nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2984 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2985
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2986 DeleteDBSubjectEntry(cert->dbhandle, &cert->derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2987 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2988 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2989
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2990 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2991 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2992
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2993 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2994 * add a cert to the perm subject list
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2995 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2996 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2997 AddPermSubjectNode(certDBEntrySubject entry, NSSLOWCERTCertificate cert,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2998 char *nickname)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	2999 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3000 SECItem newCertKeys, newKeyIDs;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3001 unsigned int i, new_i;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3002 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3003 unsigned int ncerts;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3004
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3005 PORT_Assert(entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3006 ncerts = entry->ncerts;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3007
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3008 if ( nickname && entry->nickname ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3009 /* nicknames must be the same */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3010 PORT_Assert(PORT_Strcmp(nickname, entry->nickname) == 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3011 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3012
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3013 if ( ( entry->nickname == NULL ) && ( nickname != NULL ) ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3014 /* copy nickname into the entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3015 entry->nickname = PORT_ArenaStrdup(entry->common.arena, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3016 if ( entry->nickname == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3017 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3018 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3019 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3020
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3021 /* a DB entry already exists, so add this cert */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3022 newCertKeys = PORT_ArenaZNewArray(entry->common.arena, SECItem, ncerts + 1);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3023 newKeyIDs = PORT_ArenaZNewArray(entry->common.arena, SECItem, ncerts + 1);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3024
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3025 if ( ( newCertKeys == NULL ) \|\| ( newKeyIDs == NULL ) ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3026 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3027 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3028
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3029 /* Step 1: copy certs older than "cert" into new entry. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3030 for ( i = 0, new_i=0; i < ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3031 NSSLOWCERTCertificate *cmpcert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3032 PRBool isNewer;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3033 cmpcert = nsslowcert_FindCertByKey(cert->dbhandle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3034 &entry->certKeys[i]);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3035 /* The entry has been corrupted, remove it from the list */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3036 if (!cmpcert) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3037 continue;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3038 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3039
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3040 isNewer = nsslowcert_IsNewer(cert, cmpcert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3041 nsslowcert_DestroyCertificate(cmpcert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3042 if ( isNewer )
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3043 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3044 /* copy this cert entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3045 newCertKeys[new_i] = entry->certKeys[i];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3046 newKeyIDs[new_i] = entry->keyIDs[i];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3047 new_i++;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3048 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3049
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3050 /* Step 2: Add "cert" to the entry. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3051 rv = SECITEM_CopyItem(entry->common.arena, &newCertKeys[new_i],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3052 &cert->certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3053 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3054 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3055 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3056 rv = SECITEM_CopyItem(entry->common.arena, &newKeyIDs[new_i],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3057 &cert->subjectKeyID);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3058 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3059 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3060 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3061 new_i++;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3062
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3063 /* Step 3: copy remaining certs (if any) from old entry to new. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3064 for ( ; i < ncerts; i++ ,new_i++) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3065 newCertKeys[new_i] = entry->certKeys[i];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3066 newKeyIDs[new_i] = entry->keyIDs[i];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3067 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3068
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3069 /* update certKeys and keyIDs */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3070 entry->certKeys = newCertKeys;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3071 entry->keyIDs = newKeyIDs;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3072
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3073 /* set new count value */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3074 entry->ncerts = new_i;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3075
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3076 DeleteDBSubjectEntry(cert->dbhandle, &cert->derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3077 rv = WriteDBSubjectEntry(cert->dbhandle, entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3078 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3079 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3080
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3081
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3082 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3083 nsslowcert_TraversePermCertsForSubject(NSSLOWCERTCertDBHandle *handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3084 SECItem *derSubject,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3085 NSSLOWCERTCertCallback cb, void *cbarg)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3086 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3087 certDBEntrySubject *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3088 unsigned int i;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3089 NSSLOWCERTCertificate *cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3090 SECStatus rv = SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3091
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3092 entry = ReadDBSubjectEntry(handle, derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3093
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3094 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3095 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3096 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3097
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3098 for( i = 0; i < entry->ncerts; i++ ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3099 cert = nsslowcert_FindCertByKey(handle, &entry->certKeys[i]);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3100 if (!cert) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3101 continue;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3102 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3103 rv = (* cb)(cert, cbarg);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3104 nsslowcert_DestroyCertificate(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3105 if ( rv == SECFailure ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3106 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3107 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3108 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3109
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3110 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3111
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3112 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3113 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3114
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3115 int
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3116 nsslowcert_NumPermCertsForSubject(NSSLOWCERTCertDBHandle *handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3117 SECItem *derSubject)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3118 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3119 certDBEntrySubject *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3120 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3121
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3122 entry = ReadDBSubjectEntry(handle, derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3123
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3124 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3125 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3126 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3127
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3128 ret = entry->ncerts;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3129
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3130 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3131
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3132 return(ret);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3133 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3134
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3135 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3136 nsslowcert_TraversePermCertsForNickname(NSSLOWCERTCertDBHandle *handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3137 char nickname, NSSLOWCERTCertCallback cb, void cbarg)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3138 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3139 certDBEntryNickname *nnentry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3140 certDBEntrySMime *smentry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3141 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3142 SECItem *derSubject = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3143
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3144 nnentry = ReadDBNicknameEntry(handle, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3145 if ( nnentry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3146 derSubject = &nnentry->subjectName;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3147 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3148 smentry = nsslowcert_ReadDBSMimeEntry(handle, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3149 if ( smentry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3150 derSubject = &smentry->subjectName;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3151 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3152 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3153
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3154 if ( derSubject ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3155 rv = nsslowcert_TraversePermCertsForSubject(handle, derSubject,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3156 cb, cbarg);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3157 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3158 rv = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3159 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3160
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3161 if ( nnentry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3162 DestroyDBEntry((certDBEntry *)nnentry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3163 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3164 if ( smentry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3165 DestroyDBEntry((certDBEntry *)smentry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3166 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3167
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3168 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3169 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3170
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3171 int
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3172 nsslowcert_NumPermCertsForNickname(NSSLOWCERTCertDBHandle *handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3173 char *nickname)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3174 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3175 certDBEntryNickname *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3176 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3177
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3178 entry = ReadDBNicknameEntry(handle, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3179
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3180 if ( entry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3181 ret = nsslowcert_NumPermCertsForSubject(handle, &entry->subjectName);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3182 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3183 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3184 ret = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3185 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3186 return(ret);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3187 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3188
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3189 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3190 * add a nickname to a cert that doesn't have one
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3191 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3192 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3193 AddNicknameToPermCert(NSSLOWCERTCertDBHandle *dbhandle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3194 NSSLOWCERTCertificate cert, char nickname)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3195 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3196 certDBEntryCert *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3197 int rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3198
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3199 entry = cert->dbEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3200 PORT_Assert(entry != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3201 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3202 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3203 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3204
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3205 pkcs11_freeNickname(entry->nickname,entry->nicknameSpace);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3206 entry->nickname = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3207 entry->nickname = pkcs11_copyNickname(nickname,entry->nicknameSpace,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3208 sizeof(entry->nicknameSpace));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3209
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3210 rv = WriteDBCertEntry(dbhandle, entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3211 if ( rv ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3212 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3213 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3214
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3215 pkcs11_freeNickname(cert->nickname,cert->nicknameSpace);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3216 cert->nickname = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3217 cert->nickname = pkcs11_copyNickname(nickname,cert->nicknameSpace,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3218 sizeof(cert->nicknameSpace));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3219
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3220 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3221
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3222 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3223 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3224 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3225
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3226 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3227 * add a nickname to a cert that is already in the perm database, but doesn't
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3228 * have one yet (it is probably an e-mail cert).
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3229 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3230 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3231 nsslowcert_AddPermNickname(NSSLOWCERTCertDBHandle *dbhandle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3232 NSSLOWCERTCertificate cert, char nickname)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3233 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3234 SECStatus rv = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3235 certDBEntrySubject *entry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3236 certDBEntryNickname *nicknameEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3237
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3238 nsslowcert_LockDB(dbhandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3239
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3240 entry = ReadDBSubjectEntry(dbhandle, &cert->derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3241 if (entry == NULL) goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3242
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3243 if ( entry->nickname == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3244
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3245 /* no nickname for subject */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3246 rv = AddNicknameToSubject(dbhandle, cert, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3247 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3248 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3249 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3250 rv = AddNicknameToPermCert(dbhandle, cert, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3251 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3252 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3253 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3254 nicknameEntry = NewDBNicknameEntry(nickname, &cert->derSubject, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3255 if ( nicknameEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3256 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3257 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3258
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3259 rv = WriteDBNicknameEntry(dbhandle, nicknameEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3260 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3261 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3262 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3263 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3264 /* subject already has a nickname */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3265 rv = AddNicknameToPermCert(dbhandle, cert, entry->nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3266 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3267 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3268 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3269 /* make sure nickname entry exists. If the database was corrupted,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3270 * we may have lost the nickname entry. Add it back now */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3271 nicknameEntry = ReadDBNicknameEntry(dbhandle, entry->nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3272 if (nicknameEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3273 nicknameEntry = NewDBNicknameEntry(entry->nickname,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3274 &cert->derSubject, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3275 if ( nicknameEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3276 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3277 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3278
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3279 rv = WriteDBNicknameEntry(dbhandle, nicknameEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3280 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3281 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3282 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3283 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3284 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3285 rv = SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3286
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3287 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3288 if (entry) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3289 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3290 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3291 if (nicknameEntry) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3292 DestroyDBEntry((certDBEntry *)nicknameEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3293 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3294 nsslowcert_UnlockDB(dbhandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3295 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3296 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3297
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3298 static certDBEntryCert *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3299 AddCertToPermDB(NSSLOWCERTCertDBHandle handle, NSSLOWCERTCertificate cert,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3300 char nickname, NSSLOWCERTCertTrust trust)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3301 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3302 certDBEntryCert *certEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3303 certDBEntryNickname *nicknameEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3304 certDBEntrySubject *subjectEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3305 int state = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3306 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3307 PRBool donnentry = PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3308
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3309 if ( nickname ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3310 donnentry = PR_TRUE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3311 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3312
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3313 subjectEntry = ReadDBSubjectEntry(handle, &cert->derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3314
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3315 if ( subjectEntry && subjectEntry->nickname ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3316 donnentry = PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3317 nickname = subjectEntry->nickname;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3318 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3319
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3320 certEntry = NewDBCertEntry(&cert->derCert, nickname, trust, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3321 if ( certEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3322 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3323 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3324
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3325 if ( donnentry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3326 nicknameEntry = NewDBNicknameEntry(nickname, &cert->derSubject, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3327 if ( nicknameEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3328 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3329 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3330 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3331
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3332 rv = WriteDBCertEntry(handle, certEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3333 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3334 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3335 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3336 state = 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3337
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3338 if ( nicknameEntry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3339 rv = WriteDBNicknameEntry(handle, nicknameEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3340 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3341 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3342 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3343 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3344
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3345 state = 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3346
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3347 /* "Change" handles if necessary */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3348 cert->dbhandle = handle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3349
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3350 /* add to or create new subject entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3351 if ( subjectEntry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3352 /* REWRITE BASED ON SUBJECT ENTRY */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3353 rv = AddPermSubjectNode(subjectEntry, cert, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3354 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3355 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3356 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3357 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3358 /* make a new subject entry - this case is only used when updating
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3359 * an old version of the database. This is OK because the oldnickname
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3360 * db format didn't allow multiple certs with the same subject.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3361 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3362 /* where does subjectKeyID and certKey come from? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3363 subjectEntry = NewDBSubjectEntry(&cert->derSubject, &cert->certKey,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3364 &cert->subjectKeyID, nickname,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3365 NULL, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3366 if ( subjectEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3367 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3368 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3369 rv = WriteDBSubjectEntry(handle, subjectEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3370 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3371 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3372 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3373 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3374
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3375 state = 3;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3376
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3377 if ( nicknameEntry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3378 DestroyDBEntry((certDBEntry *)nicknameEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3379 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3380
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3381 if ( subjectEntry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3382 DestroyDBEntry((certDBEntry *)subjectEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3383 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3384
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3385 return(certEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3386
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3387 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3388 /* don't leave partial entry in the database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3389 if ( state > 0 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3390 rv = DeleteDBCertEntry(handle, &cert->certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3391 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3392 if ( ( state > 1 ) && donnentry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3393 rv = DeleteDBNicknameEntry(handle, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3394 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3395 if ( state > 2 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3396 rv = DeleteDBSubjectEntry(handle, &cert->derSubject);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3397 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3398 if ( certEntry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3399 DestroyDBEntry((certDBEntry *)certEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3400 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3401 if ( nicknameEntry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3402 DestroyDBEntry((certDBEntry *)nicknameEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3403 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3404 if ( subjectEntry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3405 DestroyDBEntry((certDBEntry *)subjectEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3406 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3407
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3408 return(NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3409 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3410
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3411 /* forward declaration */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3412 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3413 UpdateV7DB(NSSLOWCERTCertDBHandle handle, DB updatedb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3414
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3415 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3416 * version 8 uses the same schema as version 7. The only differences are
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3417 * 1) version 8 db uses the blob shim to store data entries > 32k.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3418 * 2) version 8 db sets the db block size to 32k.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3419 * both of these are dealt with by the handle.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3420 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3421
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3422 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3423 UpdateV8DB(NSSLOWCERTCertDBHandle handle, DB updatedb)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3424 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3425 return UpdateV7DB(handle,updatedb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3426 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3427
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3428
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3429 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3430 * we could just blindly sequence through reading key data pairs and writing
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3431 * them back out, but some cert.db's have gotten quite large and may have some
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3432 * subtle corruption problems, so instead we cycle through the certs and
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3433 * CRL's and S/MIME profiles and rebuild our subject lists from those records.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3434 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3435 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3436 UpdateV7DB(NSSLOWCERTCertDBHandle handle, DB updatedb)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3437 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3438 DBT key, data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3439 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3440 NSSLOWCERTCertificate *cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3441 PRBool isKRL = PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3442 certDBEntryType entryType;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3443 SECItem dbEntry, dbKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3444 certDBEntryRevocation crlEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3445 certDBEntryCert certEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3446 certDBEntrySMime smimeEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3447 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3448
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3449 ret = (* updatedb->seq)(updatedb, &key, &data, R_FIRST);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3450
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3451 if ( ret ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3452 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3453 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3454
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3455 do {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3456 unsigned char dataBuf = (unsigned char )data.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3457 unsigned char keyBuf = (unsigned char )key.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3458 dbEntry.data = &dataBuf[SEC_DB_ENTRY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3459 dbEntry.len = data.size - SEC_DB_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3460 entryType = (certDBEntryType) keyBuf[0];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3461 dbKey.data = &keyBuf[SEC_DB_KEY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3462 dbKey.len = key.size - SEC_DB_KEY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3463 if ((dbEntry.len <= 0) \|\| (dbKey.len <= 0)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3464 continue;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3465 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3466
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3467 switch (entryType) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3468 /* these entries will get regenerated as we read the
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3469 * rest of the data from the database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3470 case certDBEntryTypeVersion:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3471 case certDBEntryTypeSubject:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3472 case certDBEntryTypeContentVersion:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3473 case certDBEntryTypeNickname:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3474 /* smime profiles need entries created after the certs have
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3475 * been imported, loop over them in a second run */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3476 case certDBEntryTypeSMimeProfile:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3477 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3478
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3479 case certDBEntryTypeCert:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3480 /* decode Entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3481 certEntry.common.version = (unsigned int)dataBuf[0];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3482 certEntry.common.type = entryType;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3483 certEntry.common.flags = (unsigned int)dataBuf[2];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3484 rv = DecodeDBCertEntry(&certEntry,&dbEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3485 if (rv != SECSuccess) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3486 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3487 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3488 /* should we check for existing duplicates? */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3489 cert = nsslowcert_DecodeDERCertificate(&certEntry.derCert,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3490 certEntry.nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3491 if (cert) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3492 nsslowcert_UpdatePermCert(handle, cert, certEntry.nickname,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3493 &certEntry.trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3494 nsslowcert_DestroyCertificate(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3495 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3496 /* free any data the decode may have allocated. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3497 pkcs11_freeStaticData(certEntry.derCert.data,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3498 certEntry.derCertSpace);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3499 pkcs11_freeNickname(certEntry.nickname, certEntry.nicknameSpace);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3500 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3501
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3502 case certDBEntryTypeKeyRevocation:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3503 isKRL = PR_TRUE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3504 /* fall through */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3505 case certDBEntryTypeRevocation:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3506 crlEntry.common.version = (unsigned int)dataBuf[0];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3507 crlEntry.common.type = entryType;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3508 crlEntry.common.flags = (unsigned int)dataBuf[2];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3509 crlEntry.common.arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3510 if (crlEntry.common.arena == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3511 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3512 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3513 rv = DecodeDBCrlEntry(&crlEntry,&dbEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3514 if (rv != SECSuccess) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3515 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3516 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3517 nsslowcert_UpdateCrl(handle, &crlEntry.derCrl, &dbKey,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3518 crlEntry.url, isKRL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3519 /* free data allocated by the decode */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3520 PORT_FreeArena(crlEntry.common.arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3521 crlEntry.common.arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3522 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3523
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3524 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3525 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3526 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3527 } while ( (* updatedb->seq)(updatedb, &key, &data, R_NEXT) == 0 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3528
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3529 /* now loop again updating just the SMimeProfile. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3530 ret = (* updatedb->seq)(updatedb, &key, &data, R_FIRST);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3531
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3532 if ( ret ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3533 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3534 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3535
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3536 do {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3537 unsigned char dataBuf = (unsigned char )data.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3538 unsigned char keyBuf = (unsigned char )key.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3539 dbEntry.data = &dataBuf[SEC_DB_ENTRY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3540 dbEntry.len = data.size - SEC_DB_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3541 entryType = (certDBEntryType) keyBuf[0];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3542 if (entryType != certDBEntryTypeSMimeProfile) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3543 continue;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3544 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3545 dbKey.data = &keyBuf[SEC_DB_KEY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3546 dbKey.len = key.size - SEC_DB_KEY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3547 if ((dbEntry.len <= 0) \|\| (dbKey.len <= 0)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3548 continue;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3549 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3550 smimeEntry.common.version = (unsigned int)dataBuf[0];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3551 smimeEntry.common.type = entryType;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3552 smimeEntry.common.flags = (unsigned int)dataBuf[2];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3553 smimeEntry.common.arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3554 /* decode entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3555 rv = DecodeDBSMimeEntry(&smimeEntry,&dbEntry,(char *)dbKey.data);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3556 if (rv == SECSuccess) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3557 nsslowcert_UpdateSMimeProfile(handle, smimeEntry.emailAddr,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3558 &smimeEntry.subjectName, &smimeEntry.smimeOptions,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3559 &smimeEntry.optionsDate);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3560 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3561 PORT_FreeArena(smimeEntry.common.arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3562 smimeEntry.common.arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3563 } while ( (* updatedb->seq)(updatedb, &key, &data, R_NEXT) == 0 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3564
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3565 (* updatedb->close)(updatedb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3566
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3567 /* a database update is a good time to go back and verify the integrity of
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3568 * the keys and certs */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3569 handle->dbVerify = PR_TRUE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3570 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3571 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3572
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3573 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3574 * NOTE - Version 6 DB did not go out to the real world in a release,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3575 * so we can remove this function in a later release.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3576 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3577 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3578 UpdateV6DB(NSSLOWCERTCertDBHandle handle, DB updatedb)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3579 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3580 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3581 DBT key, data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3582 unsigned char buf, tmpbuf = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3583 certDBEntryType type;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3584 certDBEntryNickname *nnEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3585 certDBEntrySubject *subjectEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3586 certDBEntrySMime *emailEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3587 char *nickname;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3588 char *emailAddr;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3589 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3590
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3591 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3592 * Sequence through the old database and copy all of the entries
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3593 * to the new database. Subject name entries will have the new
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3594 * fields inserted into them (with zero length).
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3595 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3596 ret = (* updatedb->seq)(updatedb, &key, &data, R_FIRST);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3597 if ( ret ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3598 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3599 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3600
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3601 do {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3602 buf = (unsigned char *)data.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3603
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3604 if ( data.size >= 3 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3605 if ( buf[0] == 6 ) { /* version number */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3606 type = (certDBEntryType)buf[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3607 if ( type == certDBEntryTypeSubject ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3608 /* expando subjecto entrieo */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3609 tmpbuf = (unsigned char *)PORT_Alloc(data.size + 4);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3610 if ( tmpbuf ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3611 /* copy header stuff */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3612 PORT_Memcpy(tmpbuf, buf, SEC_DB_ENTRY_HEADER_LEN + 2);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3613 /* insert 4 more bytes of zero'd header */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3614 PORT_Memset(&tmpbuf[SEC_DB_ENTRY_HEADER_LEN + 2],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3615 0, 4);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3616 /* copy rest of the data */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3617 PORT_Memcpy(&tmpbuf[SEC_DB_ENTRY_HEADER_LEN + 6],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3618 &buf[SEC_DB_ENTRY_HEADER_LEN + 2],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3619 data.size - (SEC_DB_ENTRY_HEADER_LEN + 2));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3620
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3621 data.data = (void *)tmpbuf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3622 data.size += 4;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3623 buf = tmpbuf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3624 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3625 } else if ( type == certDBEntryTypeCert ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3626 /* expando certo entrieo */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3627 tmpbuf = (unsigned char *)PORT_Alloc(data.size + 3);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3628 if ( tmpbuf ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3629 /* copy header stuff */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3630 PORT_Memcpy(tmpbuf, buf, SEC_DB_ENTRY_HEADER_LEN);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3631
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3632 /* copy trust flage, setting msb's to 0 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3633 tmpbuf[SEC_DB_ENTRY_HEADER_LEN] = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3634 tmpbuf[SEC_DB_ENTRY_HEADER_LEN+1] =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3635 buf[SEC_DB_ENTRY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3636 tmpbuf[SEC_DB_ENTRY_HEADER_LEN+2] = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3637 tmpbuf[SEC_DB_ENTRY_HEADER_LEN+3] =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3638 buf[SEC_DB_ENTRY_HEADER_LEN+1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3639 tmpbuf[SEC_DB_ENTRY_HEADER_LEN+4] = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3640 tmpbuf[SEC_DB_ENTRY_HEADER_LEN+5] =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3641 buf[SEC_DB_ENTRY_HEADER_LEN+2];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3642
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3643 /* copy rest of the data */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3644 PORT_Memcpy(&tmpbuf[SEC_DB_ENTRY_HEADER_LEN + 6],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3645 &buf[SEC_DB_ENTRY_HEADER_LEN + 3],
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3646 data.size - (SEC_DB_ENTRY_HEADER_LEN + 3));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3647
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3648 data.data = (void *)tmpbuf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3649 data.size += 3;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3650 buf = tmpbuf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3651 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3652
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3653 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3654
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3655 /* update the record version number */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3656 buf[0] = CERT_DB_FILE_VERSION;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3657
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3658 /* copy to the new database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3659 ret = certdb_Put(handle->permCertDB, &key, &data, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3660 if ( tmpbuf ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3661 PORT_Free(tmpbuf);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3662 tmpbuf = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3663 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3664 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3665 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3666 } while ( (* updatedb->seq)(updatedb, &key, &data, R_NEXT) == 0 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3667
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3668 ret = certdb_Sync(handle->permCertDB, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3669
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3670 ret = (* updatedb->seq)(updatedb, &key, &data, R_FIRST);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3671 if ( ret ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3672 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3673 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3674
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3675 do {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3676 buf = (unsigned char *)data.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3677
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3678 if ( data.size >= 3 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3679 if ( buf[0] == CERT_DB_FILE_VERSION ) { /* version number */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3680 type = (certDBEntryType)buf[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3681 if ( type == certDBEntryTypeNickname ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3682 nickname = &((char *)key.data)[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3683
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3684 /* get the matching nickname entry in the new DB */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3685 nnEntry = ReadDBNicknameEntry(handle, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3686 if ( nnEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3687 goto endloop;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3688 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3689
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3690 /* find the subject entry pointed to by nickname */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3691 subjectEntry = ReadDBSubjectEntry(handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3692 &nnEntry->subjectName);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3693 if ( subjectEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3694 goto endloop;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3695 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3696
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3697 subjectEntry->nickname =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3698 (char *)PORT_ArenaAlloc(subjectEntry->common.arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3699 key.size - 1);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3700 if ( subjectEntry->nickname ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3701 PORT_Memcpy(subjectEntry->nickname, nickname,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3702 key.size - 1);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3703 rv = WriteDBSubjectEntry(handle, subjectEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3704 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3705 } else if ( type == certDBEntryTypeSMimeProfile ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3706 emailAddr = &((char *)key.data)[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3707
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3708 /* get the matching smime entry in the new DB */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3709 emailEntry = nsslowcert_ReadDBSMimeEntry(handle, emailAddr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3710 if ( emailEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3711 goto endloop;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3712 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3713
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3714 /* find the subject entry pointed to by nickname */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3715 subjectEntry = ReadDBSubjectEntry(handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3716 &emailEntry->subjectName);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3717 if ( subjectEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3718 goto endloop;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3719 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3720
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3721 subjectEntry->emailAddrs = (char **)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3722 PORT_ArenaAlloc(subjectEntry->common.arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3723 sizeof(char *));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3724 if ( subjectEntry->emailAddrs ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3725 subjectEntry->emailAddrs[0] =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3726 (char *)PORT_ArenaAlloc(subjectEntry->common.arena,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3727 key.size - 1);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3728 if ( subjectEntry->emailAddrs[0] ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3729 PORT_Memcpy(subjectEntry->emailAddrs[0], emailAddr,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3730 key.size - 1);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3731 subjectEntry->nemailAddrs = 1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3732 rv = WriteDBSubjectEntry(handle, subjectEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3733 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3734 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3735 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3736
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3737 endloop:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3738 if ( subjectEntry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3739 DestroyDBEntry((certDBEntry *)subjectEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3740 subjectEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3741 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3742 if ( nnEntry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3743 DestroyDBEntry((certDBEntry *)nnEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3744 nnEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3745 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3746 if ( emailEntry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3747 DestroyDBEntry((certDBEntry *)emailEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3748 emailEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3749 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3750 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3751 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3752 } while ( (* updatedb->seq)(updatedb, &key, &data, R_NEXT) == 0 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3753
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3754 ret = certdb_Sync(handle->permCertDB, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3755
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3756 (* updatedb->close)(updatedb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3757 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3758 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3759
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3760
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3761 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3762 updateV5Callback(NSSLOWCERTCertificate cert, SECItem k, void *pdata)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3763 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3764 NSSLOWCERTCertDBHandle *handle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3765 certDBEntryCert *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3766 NSSLOWCERTCertTrust *trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3767
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3768 handle = (NSSLOWCERTCertDBHandle *)pdata;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3769 trust = &cert->dbEntry->trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3770
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3771 /* SSL user certs can be used for email if they have an email addr */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3772 if ( cert->emailAddr && ( trust->sslFlags & CERTDB_USER ) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3773 ( trust->emailFlags == 0 ) ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3774 trust->emailFlags = CERTDB_USER;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3775 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3776 /* servers didn't set the user flags on the server cert.. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3777 if (PORT_Strcmp(cert->dbEntry->nickname,"Server-Cert") == 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3778 trust->sslFlags \|= CERTDB_USER;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3779 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3780
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3781 entry = AddCertToPermDB(handle, cert, cert->dbEntry->nickname,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3782 &cert->dbEntry->trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3783 if ( entry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3784 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3785 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3786
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3787 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3788 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3789
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3790 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3791 UpdateV5DB(NSSLOWCERTCertDBHandle handle, DB updatedb)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3792 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3793 NSSLOWCERTCertDBHandle updatehandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3794 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3795
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3796 updatehandle.permCertDB = updatedb;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3797 updatehandle.dbMon = PZ_NewMonitor(nssILockCertDB);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3798 updatehandle.dbVerify = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3799 updatehandle.ref = 1; /* prevent premature close */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3800
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3801 rv = nsslowcert_TraversePermCerts(&updatehandle, updateV5Callback,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3802 (void *)handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3803
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3804 PZ_DestroyMonitor(updatehandle.dbMon);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3805
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3806 (* updatedb->close)(updatedb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3807 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3808 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3809
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3810 static PRBool
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3811 isV4DB(DB *db) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3812 DBT key,data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3813 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3814
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3815 key.data = "Version";
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3816 key.size = 7;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3817
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3818 ret = (*db->get)(db, &key, &data, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3819 if (ret) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3820 return PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3821 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3822
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3823 if ((data.size == 1) && ((unsigned char )data.data <= 4)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3824 return PR_TRUE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3825 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3826
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3827 return PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3828 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3829
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3830 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3831 UpdateV4DB(NSSLOWCERTCertDBHandle handle, DB updatedb)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3832 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3833 DBT key, data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3834 certDBEntryCert entry, entry2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3835 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3836 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3837 NSSLOWCERTCertificate *cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3838
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3839 ret = (* updatedb->seq)(updatedb, &key, &data, R_FIRST);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3840
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3841 if ( ret ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3842 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3843 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3844
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3845 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3846 if (arena == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3847 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3848 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3849
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3850 do {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3851 if ( data.size != 1 ) { /* skip version number */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3852
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3853 /* decode the old DB entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3854 entry = (certDBEntryCert *)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3855 DecodeV4DBCertEntry((unsigned char*)data.data, data.size);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3856
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3857 if ( entry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3858 cert = nsslowcert_DecodeDERCertificate(&entry->derCert,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3859 entry->nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3860
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3861 if ( cert != NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3862 /* add to new database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3863 entry2 = AddCertToPermDB(handle, cert, entry->nickname,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3864 &entry->trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3865
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3866 nsslowcert_DestroyCertificate(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3867 if ( entry2 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3868 DestroyDBEntry((certDBEntry *)entry2);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3869 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3870 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3871 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3872 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3873 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3874 } while ( (* updatedb->seq)(updatedb, &key, &data, R_NEXT) == 0 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3875
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3876 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3877 (* updatedb->close)(updatedb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3878 return(SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3879 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3880
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3881
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3882 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3883 * return true if a database key conflict exists
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3884 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3885 PRBool
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3886 nsslowcert_CertDBKeyConflict(SECItem derCert, NSSLOWCERTCertDBHandle handle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3887 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3888 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3889 DBT tmpdata;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3890 DBT namekey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3891 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3892 SECItem keyitem;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3893 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3894 SECItem derKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3895
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3896 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3897 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3898 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3899 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3900
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3901 /* get the db key of the cert */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3902 rv = nsslowcert_KeyFromDERCert(arena, derCert, &derKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3903 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3904 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3905 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3906
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3907 rv = EncodeDBCertKey(&derKey, arena, &keyitem);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3908 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3909 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3910 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3911
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3912 namekey.data = keyitem.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3913 namekey.size = keyitem.len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3914
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3915 ret = certdb_Get(handle->permCertDB, &namekey, &tmpdata, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3916 if ( ret == 0 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3917 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3918 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3919
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3920 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3921
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3922 return(PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3923 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3924 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3925 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3926 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3927
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3928 return(PR_TRUE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3929 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3930
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3931 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3932 * return true if a nickname conflict exists
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3933 * NOTE: caller must have already made sure that this exact cert
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3934 * doesn't exist in the DB
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3935 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3936 static PRBool
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3937 nsslowcert_CertNicknameConflict(char nickname, SECItem derSubject,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3938 NSSLOWCERTCertDBHandle *handle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3939 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3940 PRBool rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3941 certDBEntryNickname *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3942
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3943 if ( nickname == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3944 return(PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3945 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3946
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3947 entry = ReadDBNicknameEntry(handle, nickname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3948
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3949 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3950 /* no entry for this nickname, so no conflict */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3951 return(PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3952 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3953
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3954 rv = PR_TRUE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3955 if ( SECITEM_CompareItem(derSubject, &entry->subjectName) == SECEqual ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3956 /* if subject names are the same, then no conflict */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3957 rv = PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3958 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3959
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3960 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3961 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3962 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3963
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3964 #ifdef DBM_USING_NSPR
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3965 #define NO_RDONLY PR_RDONLY
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3966 #define NO_RDWR PR_RDWR
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3967 #define NO_CREATE (PR_RDWR \| PR_CREATE_FILE \| PR_TRUNCATE)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3968 #else
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3969 #define NO_RDONLY O_RDONLY
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3970 #define NO_RDWR O_RDWR
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3971 #define NO_CREATE (O_RDWR \| O_CREAT \| O_TRUNC)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3972 #endif
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3973
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3974 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3975 * open an old database that needs to be updated
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3976 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3977 static DB *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3978 nsslowcert_openolddb(NSSLOWCERTDBNameFunc namecb, void *cbarg, int version)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3979 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3980 char * tmpname;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3981 DB *updatedb = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3982
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3983 tmpname = (* namecb)(cbarg, version); /* get v6 db name */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3984 if ( tmpname ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3985 updatedb = dbopen( tmpname, NO_RDONLY, 0600, DB_HASH, 0 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3986 PORT_Free(tmpname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3987 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3988 return updatedb;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3989 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3990
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3991 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3992 openNewCertDB(const char appName, const char prefix, const char *certdbname,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3993 NSSLOWCERTCertDBHandle handle, NSSLOWCERTDBNameFunc namecb, void cbarg)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3994 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3995 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3996 certDBEntryVersion *versionEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3997 DB *updatedb = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3998 int status = RDB_FAIL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	3999
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4000 if (appName) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4001 handle->permCertDB=rdbopen( appName, prefix, "cert", NO_CREATE, &status);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4002 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4003 handle->permCertDB=dbsopen(certdbname, NO_CREATE, 0600, DB_HASH, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4004 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4005
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4006 /* if create fails then we lose */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4007 if ( handle->permCertDB == 0 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4008 return status == RDB_RETRY ? SECWouldBlock : SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4009 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4010
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4011 /* Verify version number; */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4012 versionEntry = NewDBVersionEntry(0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4013 if ( versionEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4014 rv = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4015 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4016 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4017
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4018 rv = WriteDBVersionEntry(handle, versionEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4019
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4020 DestroyDBEntry((certDBEntry *)versionEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4021
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4022 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4023 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4024 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4025
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4026 /* rv must already be Success here because of previous if statement */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4027 /* try to upgrade old db here */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4028 if (appName &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4029 (updatedb = dbsopen(certdbname, NO_RDONLY, 0600, DB_HASH, 0)) != NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4030 rv = UpdateV8DB(handle, updatedb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4031 } else if ((updatedb = nsslowcert_openolddb(namecb,cbarg,7)) != NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4032 rv = UpdateV7DB(handle, updatedb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4033 } else if ((updatedb = nsslowcert_openolddb(namecb,cbarg,6)) != NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4034 rv = UpdateV6DB(handle, updatedb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4035 } else if ((updatedb = nsslowcert_openolddb(namecb,cbarg,5)) != NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4036 rv = UpdateV5DB(handle, updatedb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4037 } else if ((updatedb = nsslowcert_openolddb(namecb,cbarg,4)) != NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4038 /* NES has v5 format db's with v4 db names! */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4039 if (isV4DB(updatedb)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4040 rv = UpdateV4DB(handle,updatedb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4041 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4042 rv = UpdateV5DB(handle,updatedb);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4043 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4044 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4045
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4046
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4047 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4048 db_InitComplete(handle->permCertDB);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4049 return rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4050 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4051
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4052 static int
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4053 nsslowcert_GetVersionNumber( NSSLOWCERTCertDBHandle *handle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4054 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4055 certDBEntryVersion *versionEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4056 int version = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4057
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4058 versionEntry = ReadDBVersionEntry(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4059 if ( versionEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4060 return 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4061 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4062 version = versionEntry->common.version;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4063 DestroyDBEntry((certDBEntry *)versionEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4064 return version;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4065 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4066
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4067 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4068 * Open the certificate database and index databases. Create them if
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4069 * they are not there or bad.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4070 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4071 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4072 nsslowcert_OpenPermCertDB(NSSLOWCERTCertDBHandle *handle, PRBool readOnly,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4073 const char appName, const char prefix,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4074 NSSLOWCERTDBNameFunc namecb, void *cbarg)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4075 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4076 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4077 int openflags;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4078 char *certdbname;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4079 int version = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4080
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4081 certdbname = (* namecb)(cbarg, CERT_DB_FILE_VERSION);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4082 if ( certdbname == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4083 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4084 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4085
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4086 openflags = readOnly ? NO_RDONLY : NO_RDWR;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4087
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4088 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4089 * first open the permanent file based database.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4090 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4091 if (appName) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4092 handle->permCertDB = rdbopen( appName, prefix, "cert", openflags, NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4093 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4094 handle->permCertDB = dbsopen( certdbname, openflags, 0600, DB_HASH, 0 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4095 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4096
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4097 /* check for correct version number */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4098 if ( handle->permCertDB ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4099 version = nsslowcert_GetVersionNumber(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4100 if ((version != CERT_DB_FILE_VERSION) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4101 !(appName && version == CERT_DB_V7_FILE_VERSION)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4102 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4103 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4104 } else if ( readOnly ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4105 /* don't create if readonly */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4106 /* Try openning a version 7 database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4107 handle->permCertDB = nsslowcert_openolddb(namecb,cbarg, 7);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4108 if (!handle->permCertDB) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4109 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4110 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4111 if (nsslowcert_GetVersionNumber(handle) != 7) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4112 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4113 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4114 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4115 /* if first open fails, try to create a new DB */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4116 rv = openNewCertDB(appName,prefix,certdbname,handle,namecb,cbarg);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4117 if (rv == SECWouldBlock) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4118 /* only the rdb version can fail with wouldblock */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4119 handle->permCertDB =
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4120 rdbopen( appName, prefix, "cert", openflags, NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4121
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4122 /* check for correct version number */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4123 if ( !handle->permCertDB ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4124 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4125 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4126 version = nsslowcert_GetVersionNumber(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4127 if ((version != CERT_DB_FILE_VERSION) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4128 !(appName && version == CERT_DB_V7_FILE_VERSION)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4129 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4130 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4131 } else if (rv != SECSuccess) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4132 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4133 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4134 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4135
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4136 PORT_Free(certdbname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4137
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4138 return (SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4139
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4140 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4141
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4142 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4143
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4144 if ( handle->permCertDB ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4145 certdb_Close(handle->permCertDB);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4146 handle->permCertDB = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4147 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4148
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4149 PORT_Free(certdbname);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4150
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4151 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4152 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4153
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4154 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4155 * delete all DB records associated with a particular certificate
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4156 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4157 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4158 DeletePermCert(NSSLOWCERTCertificate *cert)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4159 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4160 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4161 SECStatus ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4162
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4163 ret = SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4164
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4165 rv = DeleteDBCertEntry(cert->dbhandle, &cert->certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4166 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4167 ret = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4168 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4169
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4170 rv = RemovePermSubjectNode(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4171
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4172
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4173 return(ret);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4174 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4175
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4176 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4177 * Delete a certificate from the permanent database.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4178 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4179 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4180 nsslowcert_DeletePermCertificate(NSSLOWCERTCertificate *cert)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4181 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4182 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4183
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4184 nsslowcert_LockDB(cert->dbhandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4185
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4186 /* delete the records from the permanent database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4187 rv = DeletePermCert(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4188
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4189 /* get rid of dbcert and stuff pointing to it */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4190 DestroyDBEntry((certDBEntry *)cert->dbEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4191 cert->dbEntry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4192 cert->trust = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4193
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4194 nsslowcert_UnlockDB(cert->dbhandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4195 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4196 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4197
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4198 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4199 * Traverse all of the entries in the database of a particular type
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4200 * call the given function for each one.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4201 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4202 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4203 nsslowcert_TraverseDBEntries(NSSLOWCERTCertDBHandle *handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4204 certDBEntryType type,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4205 SECStatus (* callback)(SECItem data, SECItem key,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4206 certDBEntryType type, void *pdata),
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4207 void *udata )
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4208 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4209 DBT data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4210 DBT key;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4211 SECStatus rv = SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4212 int ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4213 SECItem dataitem;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4214 SECItem keyitem;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4215 unsigned char *buf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4216 unsigned char *keybuf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4217
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4218 ret = certdb_Seq(handle->permCertDB, &key, &data, R_FIRST);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4219 if ( ret ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4220 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4221 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4222 /* here, ret is zero and rv is SECSuccess.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4223 * Below here, ret is a count of successful calls to the callback function.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4224 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4225 do {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4226 buf = (unsigned char *)data.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4227
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4228 if ( buf[1] == (unsigned char)type ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4229 dataitem.len = data.size;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4230 dataitem.data = buf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4231 dataitem.type = siBuffer;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4232 keyitem.len = key.size - SEC_DB_KEY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4233 keybuf = (unsigned char *)key.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4234 keyitem.data = &keybuf[SEC_DB_KEY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4235 keyitem.type = siBuffer;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4236 /* type should equal keybuf[0]. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4237
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4238 rv = (* callback)(&dataitem, &keyitem, type, udata);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4239 if ( rv == SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4240 ++ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4241 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4242 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4243 } while ( certdb_Seq(handle->permCertDB, &key, &data, R_NEXT) == 0 );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4244 /* If any callbacks succeeded, or no calls to callbacks were made,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4245 * then report success. Otherwise, report failure.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4246 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4247 return (ret ? SECSuccess : rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4248 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4249 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4250 * Decode a certificate and enter it into the temporary certificate database.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4251 * Deal with nicknames correctly
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4252 *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4253 * This is the private entry point.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4254 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4255 static NSSLOWCERTCertificate *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4256 DecodeACert(NSSLOWCERTCertDBHandle handle, certDBEntryCert entry)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4257 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4258 NSSLOWCERTCertificate *cert = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4259
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4260 cert = nsslowcert_DecodeDERCertificate(&entry->derCert, entry->nickname );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4261
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4262 if ( cert == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4263 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4264 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4265
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4266 cert->dbhandle = handle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4267 cert->dbEntry = entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4268 cert->trust = &entry->trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4269
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4270 return(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4271
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4272 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4273 return(0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4274 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4275
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4276 static NSSLOWCERTTrust *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4277 CreateTrust(void)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4278 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4279 NSSLOWCERTTrust *trust = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4280
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4281 nsslowcert_LockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4282 trust = trustListHead;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4283 if (trust) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4284 trustListCount--;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4285 trustListHead = trust->next;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4286 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4287 PORT_Assert(trustListCount >= 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4288 nsslowcert_UnlockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4289 if (trust) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4290 return trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4291 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4292
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4293 return PORT_ZNew(NSSLOWCERTTrust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4294 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4295
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4296 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4297 DestroyTrustFreeList(void)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4298 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4299 NSSLOWCERTTrust *trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4300
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4301 nsslowcert_LockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4302 while (NULL != (trust = trustListHead)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4303 trustListCount--;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4304 trustListHead = trust->next;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4305 PORT_Free(trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4306 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4307 PORT_Assert(!trustListCount);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4308 trustListCount = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4309 nsslowcert_UnlockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4310 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4311
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4312 static NSSLOWCERTTrust *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4313 DecodeTrustEntry(NSSLOWCERTCertDBHandle handle, certDBEntryCert entry,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4314 const SECItem *dbKey)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4315 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4316 NSSLOWCERTTrust *trust = CreateTrust();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4317 if (trust == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4318 return trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4319 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4320 trust->dbhandle = handle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4321 trust->dbEntry = entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4322 trust->dbKey.data = pkcs11_copyStaticData(dbKey->data,dbKey->len,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4323 trust->dbKeySpace, sizeof(trust->dbKeySpace));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4324 if (!trust->dbKey.data) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4325 PORT_Free(trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4326 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4327 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4328 trust->dbKey.len = dbKey->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4329
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4330 trust->trust = &entry->trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4331 trust->derCert = &entry->derCert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4332
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4333 return(trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4334 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4335
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4336 typedef struct {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4337 PermCertCallback certfunc;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4338 NSSLOWCERTCertDBHandle *handle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4339 void *data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4340 } PermCertCallbackState;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4341
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4342 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4343 * traversal callback to decode certs and call callers callback
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4344 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4345 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4346 certcallback(SECItem dbdata, SECItem dbkey, certDBEntryType type, void *data)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4347 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4348 PermCertCallbackState *mystate;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4349 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4350 certDBEntryCert *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4351 SECItem entryitem;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4352 NSSLOWCERTCertificate *cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4353 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4354
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4355 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4356 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4357 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4358 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4359
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4360 entry = (certDBEntryCert *)PORT_ArenaAlloc(arena, sizeof(certDBEntryCert));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4361 mystate = (PermCertCallbackState *)data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4362 entry->common.version = (unsigned int)dbdata->data[0];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4363 entry->common.type = (certDBEntryType)dbdata->data[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4364 entry->common.flags = (unsigned int)dbdata->data[2];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4365 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4366
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4367 entryitem.len = dbdata->len - SEC_DB_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4368 entryitem.data = &dbdata->data[SEC_DB_ENTRY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4369
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4370 rv = DecodeDBCertEntry(entry, &entryitem);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4371 if (rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4372 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4373 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4374 entry->derCert.type = siBuffer;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4375
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4376 /* note: Entry is 'inheritted'. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4377 cert = DecodeACert(mystate->handle, entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4378
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4379 rv = (* mystate->certfunc)(cert, dbkey, mystate->data);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4380
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4381 /* arena stored in entry destroyed by nsslowcert_DestroyCertificate */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4382 nsslowcert_DestroyCertificateNoLocking(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4383
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4384 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4385
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4386 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4387 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4388 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4389 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4390 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4391 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4392
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4393 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4394 * Traverse all of the certificates in the permanent database and
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4395 * call the given function for each one; expect the caller to have lock.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4396 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4397 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4398 TraversePermCertsNoLocking(NSSLOWCERTCertDBHandle *handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4399 SECStatus (* certfunc)(NSSLOWCERTCertificate *cert,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4400 SECItem *k,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4401 void *pdata),
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4402 void *udata )
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4403 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4404 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4405 PermCertCallbackState mystate;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4406
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4407 mystate.certfunc = certfunc;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4408 mystate.handle = handle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4409 mystate.data = udata;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4410 rv = nsslowcert_TraverseDBEntries(handle, certDBEntryTypeCert, certcallback,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4411 (void *)&mystate);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4412
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4413 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4414 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4415
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4416 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4417 * Traverse all of the certificates in the permanent database and
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4418 * call the given function for each one.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4419 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4420 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4421 nsslowcert_TraversePermCerts(NSSLOWCERTCertDBHandle *handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4422 SECStatus (* certfunc)(NSSLOWCERTCertificate cert, SECItem k,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4423 void *pdata),
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4424 void *udata )
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4425 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4426 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4427
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4428 nsslowcert_LockDB(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4429 rv = TraversePermCertsNoLocking(handle, certfunc, udata);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4430 nsslowcert_UnlockDB(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4431
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4432 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4433 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4434
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4435
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4436
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4437 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4438 * Close the database
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4439 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4440 void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4441 nsslowcert_ClosePermCertDB(NSSLOWCERTCertDBHandle *handle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4442 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4443 if ( handle ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4444 if ( handle->permCertDB ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4445 certdb_Close( handle->permCertDB );
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4446 handle->permCertDB = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4447 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4448 if (handle->dbMon) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4449 PZ_DestroyMonitor(handle->dbMon);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4450 handle->dbMon = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4451 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4452 PORT_Free(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4453 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4454 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4455 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4456
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4457 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4458 * Get the trust attributes from a certificate
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4459 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4460 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4461 nsslowcert_GetCertTrust(NSSLOWCERTCertificate cert, NSSLOWCERTCertTrust trust)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4462 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4463 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4464
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4465 nsslowcert_LockCertTrust(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4466
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4467 if ( cert->trust == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4468 rv = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4469 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4470 trust = cert->trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4471 rv = SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4472 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4473
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4474 nsslowcert_UnlockCertTrust(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4475 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4476 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4477
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4478 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4479 * Change the trust attributes of a certificate and make them permanent
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4480 * in the database.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4481 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4482 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4483 nsslowcert_ChangeCertTrust(NSSLOWCERTCertDBHandle *handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4484 NSSLOWCERTCertificate cert, NSSLOWCERTCertTrust trust)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4485 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4486 certDBEntryCert *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4487 int rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4488 SECStatus ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4489
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4490 nsslowcert_LockDB(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4491 nsslowcert_LockCertTrust(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4492 /* only set the trust on permanent certs */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4493 if ( cert->trust == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4494 ret = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4495 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4496 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4497
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4498 cert->trust = trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4499 if ( cert->dbEntry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4500 ret = SECSuccess; /* not in permanent database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4501 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4502 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4503
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4504 entry = cert->dbEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4505 entry->trust = *trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4506
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4507 rv = WriteDBCertEntry(handle, entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4508 if ( rv ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4509 ret = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4510 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4511 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4512
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4513 ret = SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4514
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4515 done:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4516 nsslowcert_UnlockCertTrust(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4517 nsslowcert_UnlockDB(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4518 return(ret);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4519 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4520
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4521
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4522 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4523 nsslowcert_UpdatePermCert(NSSLOWCERTCertDBHandle *dbhandle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4524 NSSLOWCERTCertificate cert, char nickname, NSSLOWCERTCertTrust *trust)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4525 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4526 char *oldnn;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4527 certDBEntryCert *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4528 PRBool conflict;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4529 SECStatus ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4530
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4531 PORT_Assert(!cert->dbEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4532
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4533 /* don't add a conflicting nickname */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4534 conflict = nsslowcert_CertNicknameConflict(nickname, &cert->derSubject,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4535 dbhandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4536 if ( conflict ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4537 ret = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4538 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4539 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4540
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4541 /* save old nickname so that we can delete it */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4542 oldnn = cert->nickname;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4543
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4544 entry = AddCertToPermDB(dbhandle, cert, nickname, trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4545
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4546 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4547 ret = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4548 goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4549 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4550
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4551 pkcs11_freeNickname(oldnn,cert->nicknameSpace);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4552
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4553 cert->nickname = (entry->nickname) ? pkcs11_copyNickname(entry->nickname,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4554 cert->nicknameSpace, sizeof(cert->nicknameSpace)) : NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4555 cert->trust = &entry->trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4556 cert->dbEntry = entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4557
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4558 ret = SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4559 done:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4560 return(ret);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4561 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4562
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4563 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4564 nsslowcert_AddPermCert(NSSLOWCERTCertDBHandle *dbhandle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4565 NSSLOWCERTCertificate cert, char nickname, NSSLOWCERTCertTrust *trust)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4566 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4567 SECStatus ret;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4568
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4569 nsslowcert_LockDB(dbhandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4570
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4571 ret = nsslowcert_UpdatePermCert(dbhandle, cert, nickname, trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4572
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4573 nsslowcert_UnlockDB(dbhandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4574 return(ret);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4575 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4576
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4577 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4578 * Open the certificate database and index databases. Create them if
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4579 * they are not there or bad.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4580 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4581 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4582 nsslowcert_OpenCertDB(NSSLOWCERTCertDBHandle *handle, PRBool readOnly,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4583 const char appName, const char prefix,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4584 NSSLOWCERTDBNameFunc namecb, void *cbarg, PRBool openVolatile)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4585 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4586 int rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4587
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4588 certdb_InitDBLock(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4589
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4590 handle->dbMon = PZ_NewMonitor(nssILockCertDB);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4591 PORT_Assert(handle->dbMon != NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4592 handle->dbVerify = PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4593
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4594 rv = nsslowcert_OpenPermCertDB(handle, readOnly, appName, prefix,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4595 namecb, cbarg);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4596 if ( rv ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4597 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4598 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4599
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4600 return (SECSuccess);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4601
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4602 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4603 if (handle->dbMon) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4604 PZ_DestroyMonitor(handle->dbMon);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4605 handle->dbMon = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4606 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4607 PORT_SetError(SEC_ERROR_BAD_DATABASE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4608 return(SECFailure);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4609 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4610
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4611 PRBool
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4612 nsslowcert_needDBVerify(NSSLOWCERTCertDBHandle *handle)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4613 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4614 if (!handle) return PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4615 return handle->dbVerify;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4616 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4617
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4618 void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4619 nsslowcert_setDBVerify(NSSLOWCERTCertDBHandle *handle, PRBool value)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4620 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4621 handle->dbVerify = value;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4622 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4623
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4624
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4625 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4626 * Lookup a certificate in the databases.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4627 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4628 static NSSLOWCERTCertificate *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4629 FindCertByKey(NSSLOWCERTCertDBHandle handle, const SECItem certKey, PRBool lockdb)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4630 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4631 NSSLOWCERTCertificate *cert = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4632 certDBEntryCert *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4633 PRBool locked = PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4634
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4635 if ( lockdb ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4636 locked = PR_TRUE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4637 nsslowcert_LockDB(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4638 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4639
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4640 /* find in perm database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4641 entry = ReadDBCertEntry(handle, certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4642
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4643 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4644 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4645 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4646
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4647 /* inherit entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4648 cert = DecodeACert(handle, entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4649
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4650 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4651 if (cert == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4652 if (entry) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4653 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4654 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4655 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4656
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4657 if ( locked ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4658 nsslowcert_UnlockDB(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4659 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4660
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4661 return(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4662 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4663
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4664 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4665 * Lookup a certificate in the databases.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4666 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4667 static NSSLOWCERTTrust *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4668 FindTrustByKey(NSSLOWCERTCertDBHandle handle, const SECItem certKey, PRBool lockdb)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4669 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4670 NSSLOWCERTTrust *trust = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4671 certDBEntryCert *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4672 PRBool locked = PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4673
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4674 if ( lockdb ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4675 locked = PR_TRUE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4676 nsslowcert_LockDB(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4677 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4678
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4679 /* find in perm database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4680 entry = ReadDBCertEntry(handle, certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4681
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4682 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4683 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4684 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4685
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4686 if (!nsslowcert_hasTrust(&entry->trust)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4687 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4688 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4689
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4690 /* inherit entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4691 trust = DecodeTrustEntry(handle, entry, certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4692
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4693 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4694 if (trust == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4695 if (entry) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4696 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4697 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4698 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4699
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4700 if ( locked ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4701 nsslowcert_UnlockDB(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4702 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4703
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4704 return(trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4705 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4706
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4707 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4708 * Lookup a certificate in the databases without locking
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4709 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4710 NSSLOWCERTCertificate *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4711 nsslowcert_FindCertByKey(NSSLOWCERTCertDBHandle handle, const SECItem certKey)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4712 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4713 return(FindCertByKey(handle, certKey, PR_FALSE));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4714 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4715
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4716 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4717 * Lookup a trust object in the databases without locking
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4718 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4719 NSSLOWCERTTrust *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4720 nsslowcert_FindTrustByKey(NSSLOWCERTCertDBHandle handle, const SECItem certKey)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4721 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4722 return(FindTrustByKey(handle, certKey, PR_FALSE));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4723 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4724
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4725 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4726 * Generate a key from an issuerAndSerialNumber, and find the
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4727 * associated cert in the database.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4728 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4729 NSSLOWCERTCertificate *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4730 nsslowcert_FindCertByIssuerAndSN(NSSLOWCERTCertDBHandle handle, NSSLOWCERTIssuerAndSN issuerAndSN)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4731 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4732 SECItem certKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4733 SECItem *sn = &issuerAndSN->serialNumber;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4734 SECItem *issuer = &issuerAndSN->derIssuer;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4735 NSSLOWCERTCertificate *cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4736 int data_left = sn->len-1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4737 int data_len = sn->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4738 int index = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4739
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4740 /* automatically detect DER encoded serial numbers and remove the der
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4741 * encoding since the database expects unencoded data.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4742 * if it's DER encoded, there must be at least 3 bytes, tag, len, data */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4743 if ((sn->len >= 3) && (sn->data[0] == 0x2)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4744 /* remove the der encoding of the serial number before generating the
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4745 * key.. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4746 data_left = sn->len-2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4747 data_len = sn->data[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4748 index = 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4749
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4750 /* extended length ? (not very likely for a serial number) */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4751 if (data_len & 0x80) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4752 int len_count = data_len & 0x7f;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4753
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4754 data_len = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4755 data_left -= len_count;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4756 if (data_left > 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4757 while (len_count --) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4758 data_len = (data_len << 8) \| sn->data[index++];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4759 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4760 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4761 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4762 /* XXX leaving any leading zeros on the serial number for backwards
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4763 * compatibility
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4764 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4765 /* not a valid der, must be just an unlucky serial number value */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4766 if (data_len != data_left) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4767 data_len = sn->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4768 index = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4769 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4770 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4771
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4772 certKey.type = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4773 certKey.data = (unsigned char*)PORT_Alloc(sn->len + issuer->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4774 certKey.len = data_len + issuer->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4775
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4776 if ( certKey.data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4777 return(0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4778 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4779
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4780 /* first try the serial number as hand-decoded above*/
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4781 /* copy the serialNumber */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4782 PORT_Memcpy(certKey.data, &sn->data[index], data_len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4783
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4784 /* copy the issuer */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4785 PORT_Memcpy( &certKey.data[data_len],issuer->data,issuer->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4786
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4787 cert = nsslowcert_FindCertByKey(handle, &certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4788 if (cert) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4789 PORT_Free(certKey.data);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4790 return (cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4791 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4792
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4793 /* didn't find it, try by der encoded serial number */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4794 /* copy the serialNumber */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4795 PORT_Memcpy(certKey.data, sn->data, sn->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4796
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4797 /* copy the issuer */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4798 PORT_Memcpy( &certKey.data[sn->len], issuer->data, issuer->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4799 certKey.len = sn->len + issuer->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4800
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4801 cert = nsslowcert_FindCertByKey(handle, &certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4802
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4803 PORT_Free(certKey.data);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4804
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4805 return(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4806 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4807
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4808 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4809 * Generate a key from an issuerAndSerialNumber, and find the
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4810 * associated cert in the database.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4811 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4812 NSSLOWCERTTrust *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4813 nsslowcert_FindTrustByIssuerAndSN(NSSLOWCERTCertDBHandle *handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4814 NSSLOWCERTIssuerAndSN *issuerAndSN)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4815 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4816 SECItem certKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4817 SECItem *sn = &issuerAndSN->serialNumber;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4818 SECItem *issuer = &issuerAndSN->derIssuer;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4819 NSSLOWCERTTrust *trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4820 unsigned char keyBuf[512];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4821 int data_left = sn->len-1;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4822 int data_len = sn->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4823 int index = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4824 int len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4825
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4826 /* automatically detect DER encoded serial numbers and remove the der
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4827 * encoding since the database expects unencoded data.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4828 * if it's DER encoded, there must be at least 3 bytes, tag, len, data */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4829 if ((sn->len >= 3) && (sn->data[0] == 0x2)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4830 /* remove the der encoding of the serial number before generating the
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4831 * key.. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4832 data_left = sn->len-2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4833 data_len = sn->data[1];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4834 index = 2;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4835
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4836 /* extended length ? (not very likely for a serial number) */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4837 if (data_len & 0x80) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4838 int len_count = data_len & 0x7f;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4839
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4840 data_len = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4841 data_left -= len_count;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4842 if (data_left > 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4843 while (len_count --) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4844 data_len = (data_len << 8) \| sn->data[index++];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4845 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4846 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4847 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4848 /* XXX leaving any leading zeros on the serial number for backwards
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4849 * compatibility
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4850 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4851 /* not a valid der, must be just an unlucky serial number value */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4852 if (data_len != data_left) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4853 data_len = sn->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4854 index = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4855 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4856 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4857
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4858 certKey.type = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4859 certKey.len = data_len + issuer->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4860 len = sn->len + issuer->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4861 if (len > sizeof (keyBuf)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4862 certKey.data = (unsigned char*)PORT_Alloc(len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4863 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4864 certKey.data = keyBuf;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4865 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4866
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4867 if ( certKey.data == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4868 return(0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4869 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4870
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4871 /* first try the serial number as hand-decoded above*/
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4872 /* copy the serialNumber */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4873 PORT_Memcpy(certKey.data, &sn->data[index], data_len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4874
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4875 /* copy the issuer */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4876 PORT_Memcpy( &certKey.data[data_len],issuer->data,issuer->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4877
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4878 trust = nsslowcert_FindTrustByKey(handle, &certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4879 if (trust) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4880 pkcs11_freeStaticData(certKey.data, keyBuf);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4881 return (trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4882 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4883
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4884 if (index == 0) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4885 pkcs11_freeStaticData(certKey.data, keyBuf);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4886 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4887 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4888
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4889 /* didn't find it, try by der encoded serial number */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4890 /* copy the serialNumber */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4891 PORT_Memcpy(certKey.data, sn->data, sn->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4892
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4893 /* copy the issuer */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4894 PORT_Memcpy( &certKey.data[sn->len], issuer->data, issuer->len);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4895 certKey.len = sn->len + issuer->len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4896
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4897 trust = nsslowcert_FindTrustByKey(handle, &certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4898
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4899 pkcs11_freeStaticData(certKey.data, keyBuf);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4900
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4901 return(trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4902 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4903
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4904 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4905 * look for the given DER certificate in the database
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4906 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4907 NSSLOWCERTCertificate *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4908 nsslowcert_FindCertByDERCert(NSSLOWCERTCertDBHandle handle, SECItem derCert)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4909 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4910 PLArenaPool *arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4911 SECItem certKey;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4912 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4913 NSSLOWCERTCertificate *cert = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4914
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4915 /* create a scratch arena */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4916 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4917 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4918 return(NULL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4919 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4920
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4921 /* extract the database key from the cert */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4922 rv = nsslowcert_KeyFromDERCert(arena, derCert, &certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4923 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4924 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4925 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4926
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4927 /* find the certificate */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4928 cert = nsslowcert_FindCertByKey(handle, &certKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4929
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4930 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4931 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4932 return(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4933 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4934
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4935 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4936 DestroyCertificate(NSSLOWCERTCertificate *cert, PRBool lockdb)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4937 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4938 int refCount;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4939 NSSLOWCERTCertDBHandle *handle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4940
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4941 if ( cert ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4942
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4943 handle = cert->dbhandle;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4944
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4945 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4946 * handle may be NULL, for example if the cert was created with
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4947 * nsslowcert_DecodeDERCertificate.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4948 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4949 if ( lockdb && handle ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4950 nsslowcert_LockDB(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4951 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4952
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4953 nsslowcert_LockCertRefCount(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4954 PORT_Assert(cert->referenceCount > 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4955 refCount = --cert->referenceCount;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4956 nsslowcert_UnlockCertRefCount(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4957
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4958 if ( refCount == 0 ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4959 certDBEntryCert *entry = cert->dbEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4960
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4961 if ( entry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4962 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4963 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4964
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4965 pkcs11_freeNickname(cert->nickname,cert->nicknameSpace);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4966 pkcs11_freeNickname(cert->emailAddr,cert->emailAddrSpace);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4967 pkcs11_freeStaticData(cert->certKey.data,cert->certKeySpace);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4968 cert->certKey.data = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4969 cert->nickname = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4970
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4971 /* zero cert before freeing. Any stale references to this cert
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4972 * after this point will probably cause an exception. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4973 PORT_Memset(cert, 0, sizeof *cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4974
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4975 /* use reflock to protect the free list */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4976 nsslowcert_LockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4977 if (certListCount > MAX_CERT_LIST_COUNT) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4978 PORT_Free(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4979 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4980 certListCount++;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4981 cert->next = certListHead;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4982 certListHead = cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4983 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4984 nsslowcert_UnlockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4985 cert = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4986 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4987 if ( lockdb && handle ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4988 nsslowcert_UnlockDB(handle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4989 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4990 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4991
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4992 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4993 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4994
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4995 NSSLOWCERTCertificate *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4996 nsslowcert_CreateCert(void)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4997 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4998 NSSLOWCERTCertificate *cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	4999 nsslowcert_LockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5000 cert = certListHead;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5001 if (cert) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5002 certListHead = cert->next;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5003 certListCount--;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5004 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5005 PORT_Assert(certListCount >= 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5006 nsslowcert_UnlockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5007 if (cert) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5008 return cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5009 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5010 return PORT_ZNew(NSSLOWCERTCertificate);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5011 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5012
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5013 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5014 DestroyCertFreeList(void)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5015 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5016 NSSLOWCERTCertificate *cert;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5017
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5018 nsslowcert_LockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5019 while (NULL != (cert = certListHead)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5020 certListCount--;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5021 certListHead = cert->next;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5022 PORT_Free(cert);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5023 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5024 PORT_Assert(!certListCount);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5025 certListCount = 0;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5026 nsslowcert_UnlockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5027 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5028
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5029 void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5030 nsslowcert_DestroyTrust(NSSLOWCERTTrust *trust)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5031 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5032 certDBEntryCert *entry = trust->dbEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5033
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5034 if ( entry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5035 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5036 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5037 pkcs11_freeStaticData(trust->dbKey.data,trust->dbKeySpace);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5038 PORT_Memset(trust, 0, sizeof(*trust));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5039
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5040 nsslowcert_LockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5041 if (trustListCount > MAX_TRUST_LIST_COUNT) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5042 PORT_Free(trust);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5043 } else {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5044 trustListCount++;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5045 trust->next = trustListHead;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5046 trustListHead = trust;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5047 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5048 nsslowcert_UnlockFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5049
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5050 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5051 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5052
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5053 void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5054 nsslowcert_DestroyCertificate(NSSLOWCERTCertificate *cert)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5055 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5056 DestroyCertificate(cert, PR_TRUE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5057 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5058 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5059
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5060 static void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5061 nsslowcert_DestroyCertificateNoLocking(NSSLOWCERTCertificate *cert)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5062 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5063 DestroyCertificate(cert, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5064 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5065 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5066
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5067 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5068 * Lookup a CRL in the databases. We mirror the same fast caching data base
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5069 * caching stuff used by certificates....?
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5070 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5071 certDBEntryRevocation *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5072 nsslowcert_FindCrlByKey(NSSLOWCERTCertDBHandle *handle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5073 SECItem *crlKey, PRBool isKRL)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5074 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5075 SECItem keyitem;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5076 DBT key;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5077 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5078 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5079 certDBEntryRevocation *entry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5080 certDBEntryType crlType = isKRL ? certDBEntryTypeKeyRevocation
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5081 : certDBEntryTypeRevocation;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5082
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5083 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5084 if ( arena == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5085 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5086 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5087
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5088 rv = EncodeDBGenericKey(crlKey, arena, &keyitem, crlType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5089 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5090 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5091 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5092
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5093 key.data = keyitem.data;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5094 key.size = keyitem.len;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5095
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5096 /* find in perm database */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5097 entry = ReadDBCrlEntry(handle, crlKey, crlType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5098
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5099 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5100 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5101 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5102
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5103 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5104 if ( arena ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5105 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5106 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5107
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5108 return entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5109 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5110
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5111 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5112 * replace the existing URL in the data base with a new one
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5113 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5114 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5115 nsslowcert_UpdateCrl(NSSLOWCERTCertDBHandle handle, SECItem derCrl,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5116 SECItem crlKey, char url, PRBool isKRL)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5117 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5118 SECStatus rv = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5119 certDBEntryRevocation *entry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5120 certDBEntryType crlType = isKRL ? certDBEntryTypeKeyRevocation
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5121 : certDBEntryTypeRevocation;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5122 DeleteDBCrlEntry(handle, crlKey, crlType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5123
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5124 /* Write the new entry into the data base */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5125 entry = NewDBCrlEntry(derCrl, url, crlType, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5126 if (entry == NULL) goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5127
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5128 rv = WriteDBCrlEntry(handle, entry, crlKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5129 if (rv != SECSuccess) goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5130
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5131 done:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5132 if (entry) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5133 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5134 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5135 return rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5136 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5137
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5138 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5139 nsslowcert_AddCrl(NSSLOWCERTCertDBHandle handle, SECItem derCrl,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5140 SECItem crlKey, char url, PRBool isKRL)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5141 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5142 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5143
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5144 rv = nsslowcert_UpdateCrl(handle, derCrl, crlKey, url, isKRL);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5145
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5146 return rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5147 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5148
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5149 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5150 nsslowcert_DeletePermCRL(NSSLOWCERTCertDBHandle handle, const SECItem derName,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5151 PRBool isKRL)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5152 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5153 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5154 certDBEntryType crlType = isKRL ? certDBEntryTypeKeyRevocation
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5155 : certDBEntryTypeRevocation;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5156
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5157 rv = DeleteDBCrlEntry(handle, derName, crlType);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5158 if (rv != SECSuccess) goto done;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5159
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5160 done:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5161 return rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5162 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5163
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5164
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5165 PRBool
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5166 nsslowcert_hasTrust(NSSLOWCERTCertTrust *trust)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5167 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5168 if (trust == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5169 return PR_FALSE;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5170 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5171 return !((trust->sslFlags & CERTDB_TRUSTED_UNKNOWN) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5172 (trust->emailFlags & CERTDB_TRUSTED_UNKNOWN) &&
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5173 (trust->objectSigningFlags & CERTDB_TRUSTED_UNKNOWN));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5174 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5175
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5176 /*
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5177 * This function has the logic that decides if another person's cert and
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5178 * email profile from an S/MIME message should be saved. It can deal with
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5179 * the case when there is no profile.
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5180 */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5181 static SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5182 nsslowcert_UpdateSMimeProfile(NSSLOWCERTCertDBHandle *dbhandle,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5183 char emailAddr, SECItem derSubject, SECItem *emailProfile,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5184 SECItem *profileTime)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5185 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5186 certDBEntrySMime *entry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5187 SECStatus rv = SECFailure;;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5188
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5189
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5190 /* find our existing entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5191 entry = nsslowcert_ReadDBSMimeEntry(dbhandle, emailAddr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5192
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5193 if ( entry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5194 /* keep our old db entry consistant for old applications. */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5195 if (!SECITEM_ItemsAreEqual(derSubject, &entry->subjectName)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5196 nsslowcert_UpdateSubjectEmailAddr(dbhandle, &entry->subjectName,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5197 emailAddr, nsslowcert_remove);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5198 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5199 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5200 entry = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5201 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5202
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5203 /* now save the entry */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5204 entry = NewDBSMimeEntry(emailAddr, derSubject, emailProfile,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5205 profileTime, 0);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5206 if ( entry == NULL ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5207 rv = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5208 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5209 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5210
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5211 nsslowcert_LockDB(dbhandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5212
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5213 rv = DeleteDBSMimeEntry(dbhandle, emailAddr);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5214 /* if delete fails, try to write new entry anyway... */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5215
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5216 /* link subject entry back here */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5217 rv = nsslowcert_UpdateSubjectEmailAddr(dbhandle, derSubject, emailAddr,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5218 nsslowcert_add);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5219 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5220 nsslowcert_UnlockDB(dbhandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5221 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5222 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5223
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5224 rv = WriteDBSMimeEntry(dbhandle, entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5225 if ( rv != SECSuccess ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5226 nsslowcert_UnlockDB(dbhandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5227 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5228 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5229
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5230 nsslowcert_UnlockDB(dbhandle);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5231
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5232 rv = SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5233
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5234 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5235 if ( entry ) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5236 DestroyDBEntry((certDBEntry *)entry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5237 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5238 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5239 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5240
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5241 SECStatus
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5242 nsslowcert_SaveSMimeProfile(NSSLOWCERTCertDBHandle dbhandle, char emailAddr,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5243 SECItem derSubject, SECItem emailProfile, SECItem *profileTime)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5244 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5245 SECStatus rv = SECFailure;;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5246
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5247
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5248 rv = nsslowcert_UpdateSMimeProfile(dbhandle, emailAddr,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5249 derSubject, emailProfile, profileTime);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5250
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5251 return(rv);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5252 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5253
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5254 void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5255 nsslowcert_DestroyFreeLists(void)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5256 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5257 if (freeListLock == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5258 return;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5259 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5260 DestroyCertEntryFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5261 DestroyTrustFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5262 DestroyCertFreeList();
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5263 SKIP_AFTER_FORK(PZ_DestroyLock(freeListLock));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5264 freeListLock = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5265 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5266
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5267 void
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5268 nsslowcert_DestroyGlobalLocks(void)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5269 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5270 if (dbLock) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5271 SKIP_AFTER_FORK(PZ_DestroyLock(dbLock));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5272 dbLock = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5273 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5274 if (certRefCountLock) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5275 SKIP_AFTER_FORK(PZ_DestroyLock(certRefCountLock));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5276 certRefCountLock = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5277 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5278 if (certTrustLock) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5279 SKIP_AFTER_FORK(PZ_DestroyLock(certTrustLock));
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5280 certTrustLock = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5281 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5282 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5283
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5284 certDBEntry *
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5285 nsslowcert_DecodeAnyDBEntry(SECItem dbData, const SECItem dbKey,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5286 certDBEntryType entryType, void *pdata)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5287 {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5288 PLArenaPool *arena = NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5289 certDBEntry *entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5290 SECStatus rv;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5291 SECItem dbEntry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5292
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5293
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5294 if ((dbData->len < SEC_DB_ENTRY_HEADER_LEN) \|\| (dbKey->len == 0)) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5295 PORT_SetError(SEC_ERROR_INVALID_ARGS);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5296 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5297 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5298 dbEntry.data = &dbData->data[SEC_DB_ENTRY_HEADER_LEN];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5299 dbEntry.len = dbData->len - SEC_DB_ENTRY_HEADER_LEN;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5300
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5301 arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5302 if (arena == NULL) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5303 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5304 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5305 entry = PORT_ArenaZNew(arena, certDBEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5306 if (!entry)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5307 goto loser;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5308
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5309 entry->common.version = (unsigned int)dbData->data[0];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5310 entry->common.flags = (unsigned int)dbData->data[2];
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5311 entry->common.type = entryType;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5312 entry->common.arena = arena;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5313
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5314 switch (entryType) {
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5315 case certDBEntryTypeContentVersion: /* This type appears to be unused */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5316 case certDBEntryTypeVersion: /* This type has only the common hdr */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5317 rv = SECSuccess;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5318 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5319
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5320 case certDBEntryTypeSubject:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5321 rv = DecodeDBSubjectEntry(&entry->subject, &dbEntry, dbKey);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5322 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5323
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5324 case certDBEntryTypeNickname:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5325 rv = DecodeDBNicknameEntry(&entry->nickname, &dbEntry,
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5326 (char *)dbKey->data);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5327 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5328
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5329 /* smime profiles need entries created after the certs have
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5330 * been imported, loop over them in a second run */
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5331 case certDBEntryTypeSMimeProfile:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5332 rv = DecodeDBSMimeEntry(&entry->smime, &dbEntry, (char *)dbKey->data);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5333 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5334
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5335 case certDBEntryTypeCert:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5336 rv = DecodeDBCertEntry(&entry->cert, &dbEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5337 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5338
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5339 case certDBEntryTypeKeyRevocation:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5340 case certDBEntryTypeRevocation:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5341 rv = DecodeDBCrlEntry(&entry->revocation, &dbEntry);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5342 break;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5343
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5344 default:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5345 PORT_SetError(SEC_ERROR_INVALID_ARGS);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5346 rv = SECFailure;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5347 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5348
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5349 if (rv == SECSuccess)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5350 return entry;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5351
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5352 loser:
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5353 if (arena)
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5354 PORT_FreeArena(arena, PR_FALSE);
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5355 return NULL;
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5356 }
150b72113545 Add DBM and legacydb support Andre Heinecke <andre.heinecke@intevation.de> parents: diff changeset	5357

Mercurial > trustbridge > nss-cmake-static

annotate nss/lib/softoken/legacydb/pcertdb.c @ 3:150b72113545