/* * Copyright 2002-2005 The Apache Software Foundation. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ /* * XSEC * * XSECKeyInfoResolverDefault := Default (very basic) class for applications * to map KeyInfo to keys * * $Id: XSECKeyInfoResolverDefault.cpp 351207 2005-02-03 12:48:16Z milan $ * */ #include #include #include #include #include XERCES_CPP_NAMESPACE_USE // -------------------------------------------------------------------------------- // Construct/Destruct // -------------------------------------------------------------------------------- XSECKeyInfoResolverDefault::XSECKeyInfoResolverDefault() { // Create a UTF-8 formatter XSECnew(mp_formatter, XSECSafeBufferFormatter("UTF-8",XMLFormatter::NoEscapes, XMLFormatter::UnRep_CharRef)); } XSECKeyInfoResolverDefault::~XSECKeyInfoResolverDefault() { if (mp_formatter != NULL) delete mp_formatter; } // -------------------------------------------------------------------------------- // Interface Methods // -------------------------------------------------------------------------------- XSECCryptoKey * XSECKeyInfoResolverDefault::resolveKey(DSIGKeyInfoList * lst) { // Try to find a key from the KeyInfo list as best we can // NOTE: No validation is performed (i.e. no cert/CRL checks etc.) XSECCryptoKey * ret = NULL; DSIGKeyInfoList::size_type sz = lst->getSize(); for (DSIGKeyInfoList::size_type i = 0; i < sz; ++i) { switch (lst->item(i)->getKeyInfoType()) { case (DSIGKeyInfo::KEYINFO_X509) : { ret = NULL; const XMLCh * x509Str; XSECCryptoX509 * x509 = XSECPlatformUtils::g_cryptoProvider->X509(); Janitor j_x509(x509); x509Str = ((DSIGKeyInfoX509 *) lst->item(i))->getCertificateItem(0); if (x509Str != 0) { // The crypto interface classes work UTF-8 safeBuffer transX509; transX509 << (*mp_formatter << x509Str); x509->loadX509Base64Bin(transX509.rawCharBuffer(), (unsigned int) strlen(transX509.rawCharBuffer())); ret = x509->clonePublicKey(); } if (ret != NULL) return ret; } break; case (DSIGKeyInfo::KEYINFO_VALUE_DSA) : { XSECCryptoKeyDSA * dsa = XSECPlatformUtils::g_cryptoProvider->keyDSA(); Janitor j_dsa(dsa); safeBuffer value; value << (*mp_formatter << ((DSIGKeyInfoValue *) lst->item(i))->getDSAP()); dsa->loadPBase64BigNums(value.rawCharBuffer(), (unsigned int) strlen(value.rawCharBuffer())); value << (*mp_formatter << ((DSIGKeyInfoValue *) lst->item(i))->getDSAQ()); dsa->loadQBase64BigNums(value.rawCharBuffer(), (unsigned int) strlen(value.rawCharBuffer())); value << (*mp_formatter << ((DSIGKeyInfoValue *) lst->item(i))->getDSAG()); dsa->loadGBase64BigNums(value.rawCharBuffer(), (unsigned int) strlen(value.rawCharBuffer())); value << (*mp_formatter << ((DSIGKeyInfoValue *) lst->item(i))->getDSAY()); dsa->loadYBase64BigNums(value.rawCharBuffer(), (unsigned int) strlen(value.rawCharBuffer())); j_dsa.release(); return dsa; } break; case (DSIGKeyInfo::KEYINFO_VALUE_RSA) : { XSECCryptoKeyRSA * rsa = XSECPlatformUtils::g_cryptoProvider->keyRSA(); Janitor j_rsa(rsa); safeBuffer value; value << (*mp_formatter << ((DSIGKeyInfoValue *) lst->item(i))->getRSAModulus()); rsa->loadPublicModulusBase64BigNums(value.rawCharBuffer(), (unsigned int) strlen(value.rawCharBuffer())); value << (*mp_formatter << ((DSIGKeyInfoValue *) lst->item(i))->getRSAExponent()); rsa->loadPublicExponentBase64BigNums(value.rawCharBuffer(), (unsigned int) strlen(value.rawCharBuffer())); j_rsa.release(); return rsa; } default : break; } } return NULL; } XSECKeyInfoResolver * XSECKeyInfoResolverDefault::clone(void) const { return new XSECKeyInfoResolverDefault(); }