/**************************************************************************** * * * cryptlib Keyset Interface Header File * * Copyright Peter Gutmann 1996-2005 * * * ****************************************************************************/ #ifndef _KEYSET_DEFINED #define _KEYSET_DEFINED /* Various include files needed by the DBMS libraries */ #include #ifndef _STREAM_DEFINED #if defined( INC_ALL ) #include "stream.h" #else #include "io/stream.h" #endif /* Compiler-specific includes */ #endif /* _STREAM_DEFINED */ /**************************************************************************** * * * Database Keyset Headers * * * ****************************************************************************/ /* Handle ODBC support. This gets rather complex, with all sorts of special- case handling of headers and types required across different systems */ #ifdef USE_ODBC /* As part of the ever-changing way of identifying Win32, Microsoft changed the predefined constant from WIN32 to _WIN32 in VC++ 2.1. However the ODBC header files still expect to find WIN32, and if this isn't defined will use the default (i.e. C) calling convention instead of the Pascal convention which is actually used by the ODBC functions. This means that both the caller and the callee clean up the stack, so that for each ODBC call the stack creeps upwards by a few bytes until eventually the local variables and/or return address get trashed. This problem is usually hidden by the fact that something else defines WIN32 so everything works OK, but the October 1997 development platform upgrade changes this so that compiling the code after this update is installed breaks things. To avoid this problem, we define WIN32 if it isn't defined, which ensures that the ODBC header files work properly */ #if defined( __WIN32__ ) && !defined( WIN32 ) #define WIN32 #endif /* __WIN32__ && !WIN32 */ #ifdef __WINDOWS__ /* Borland have their own weird place to put ODBC headers */ #if defined( __BORLANDC__ ) #include #else /* UnixODBC defines its own version of various Windows types, if we're building under Windows we have to disable this. The UnixODBC headers have a guard ALLREADY_HAVE_WINDOWS_TYPE (sic) but this is all-or- nothing, disabling the defining of Windows *and* SQL types. Defining the guard value fixes most compile problems, but in order to build it the commented-out typedefs also need to be defined. These are already defined in the standard (Windows) sqltypes.h so their use needs to be manually enabled for UnixODBC under Windows (which is unlikely to occur, given that it's a Unix-only driver) */ #define ALLREADY_HAVE_WINDOWS_TYPE #if 0 typedef signed short RETCODE; typedef short int SWORD; typedef long int SDWORD; typedef signed char SQLSCHAR; typedef HWND SQLHWND; #endif /* 0 */ #include #include #endif /* Compiler-specific include locations */ #else #include #include #endif /* Windows vs.everything else */ #endif /* USE_ODBC */ #ifdef USE_DATABASE #error Need to add database backend-specific includes #endif /* USE_DATABASE */ /**************************************************************************** * * * Keyset Types and Constants * * * ****************************************************************************/ /* The maximum size of a cert in binary and base64-encoded form */ #define MAX_CERT_SIZE 2048 #define MAX_ENCODED_CERT_SIZE ( MAX_CERT_SIZE * 4 ) / 3 /* Keyset information flags */ #define KEYSET_OPEN 0x01 /* Keyset is open */ #define KEYSET_EMPTY 0x02 /* Keyset is empty */ #define KEYSET_DIRTY 0x04 /* Keyset data has been changed */ #define KEYSET_STREAM_OPEN 0x08 /* Underlying file stream is open */ /* The precise type of the key file that we're working with. This is used for type checking to make sure we don't try to find private keys in a collection of certificates or whatever */ typedef enum { KEYSET_SUBTYPE_NONE, /* Unknown */ KEYSET_SUBTYPE_ERROR, /* Bad keyset format */ KEYSET_SUBTYPE_PGP_PUBLIC, /* PGP public keyring */ KEYSET_SUBTYPE_PGP_PRIVATE, /* PGP private keyring */ KEYSET_SUBTYPE_PKCS12, /* PKCS #12 key mess */ KEYSET_SUBTYPE_PKCS15, /* PKCS #15 keys */ KEYSET_SUBTYPE_LAST /* Last valid keyset subtype */ } KEYSET_SUBTYPE; /* When perform a DBMS transaction there are several variations on the basic operation type. The following values tell performQuery() and performUpdate() which type of operation to perform */ typedef enum { DBMS_QUERY_NONE, /* No DBMS query */ DBMS_QUERY_NORMAL, /* Standard data fetch */ DBMS_QUERY_CHECK, /* Check-type fetch, don't fetch data */ DBMS_QUERY_START, /* Begin an ongoing query */ DBMS_QUERY_CONTINUE, /* Continue an ongoing query */ DBMS_QUERY_CANCEL, /* Cancel ongoing query */ DBMS_QUERY_LAST /* Last valid DBMS query type */ } DBMS_QUERY_TYPE; typedef enum { DBMS_UPDATE_NONE, /* No DBMS update */ DBMS_UPDATE_NORMAL, /* Standard update */ DBMS_UPDATE_BEGIN, /* Begin a transaction */ DBMS_UPDATE_CONTINUE, /* Continue an ongoing transaction */ DBMS_UPDATE_COMMIT, /* Commit a transaction */ DBMS_UPDATE_ABORT, /* Abort a transaction */ DBMS_UPDATE_LAST /* Last valid DBMS update type */ } DBMS_UPDATE_TYPE; /* To optimise database accesses, we use prepared queries that are prepared once and then re-used whenever a new result set is required. The following values are used to refer to the prepared query types */ typedef enum { DBMS_CACHEDQUERY_NONE, /* No cached query */ DBMS_CACHEDQUERY_CERTID, /* Query on cert ID */ DBMS_CACHEDQUERY_ISSUERID, /* Query on issuer ID */ DBMS_CACHEDQUERY_NAMEID, /* Query in name ID */ DBMS_CACHEDQUERY_URI, /* Query on URI */ DBMS_CACHEDQUERY_LAST /* Last valid cached query type */ } DBMS_CACHEDQUERY_TYPE; #define NO_CACHED_QUERIES 5 /**************************************************************************** * * * Keyset Structures * * * ****************************************************************************/ /* Database state information maintained by the database back-end specific code. This storage is logically distinct from the keyset object storage, and may in fact be physically distinct if the back-end is accessed via an RPC mechanism */ typedef struct { /* DBMS status information */ BOOLEAN needsUpdate; /* Whether data remains to be committed */ BOOLEAN hasBinaryBlobs; /* Whether back-end supports binary blobs */ /* Error information returned by the back-end. This is copied over to the keyset object as required */ ERROR_INFO errorInfo; /* Database-specific information */ #ifdef USE_ODBC /* ODBC access information */ SQLHENV hEnv; /* Environment handle */ SQLHDBC hDbc; /* Connection handle */ SQLHSTMT hStmt[ NO_CACHED_QUERIES ];/* Statement handles */ BOOLEAN hStmtPrepared[ NO_CACHED_QUERIES ];/* Whether stmt is prepared on handle */ BOOLEAN transactIsDestructive; /* Whether commit/rollback destroys prep'd queries */ char blobName[ CRYPT_MAX_TEXTSIZE + 8 ];/* Name of blob data type */ SQLSMALLINT blobType; /* SQL type of blob data type */ char dateTimeName[ CRYPT_MAX_TEXTSIZE + 8 ];/* Name of datetime data type */ SQLINTEGER dateTimeNameColSize; /* Back-end specific size of datetime column */ BOOLEAN needLongLength; /* Back-end needs blob length at bind.time */ int backendType; /* Back-end type if special handling is req'd */ char escapeChar; /* SQL query escape char */ #endif /* USE_ODBC */ #ifdef USE_DATABASE #error Need to add database backend-specific state variables #endif /* USE_DATABASE */ #ifdef USE_TCP STREAM stream; /* Network I/O stream */ #endif /* USE_TCP */ } DBMS_STATE_INFO; /* The internal fields in a keyset that hold data for the various keyset types */ typedef enum { KEYSET_NONE, KEYSET_FILE, KEYSET_DBMS, KEYSET_LDAP, KEYSET_HTTP } KEYSET_TYPE; struct KI; /* Forward declaration for argument to function pointers */ typedef struct { /* The I/O stream and file name */ STREAM stream; /* I/O stream for key file */ char fileName[ MAX_PATH_LENGTH + 8 ];/* Name of key file */ } FILE_INFO; typedef struct DI { /* DBMS status information */ int flags; /* General status flags */ /* For database types that can use binary blobs we need to bind the locations of variables and use placeholders in the SQL text rather than passing the data as part of the SQL command. We can't leave this on the stack since it can be referenced by the back-end an arbitrary amount of time after we initiate the update, so we copy it to the following staging area before we pass control to the database back-end */ char boundData[ MAX_ENCODED_CERT_SIZE + 8 ]; /* The data being sent to the back-end can be communicated over a variety of channels. If we're using the RPC API, there's a single dispatch function through which all data is communicated via the RPC mechanism. If we're not using the RPC API, there are a set of function pointers, one for each back-end access type. In addition the state information storage contains the state data needed for the communications channel */ #ifdef USE_RPCAPI void ( *dispatchFunction )( void *stateInfo, BYTE *buffer ); #else int ( *openDatabaseBackend )( void *dbmsStateInfo, const char *name, const int nameLen, const int options, int *featureFlags ); void ( *closeDatabaseBackend )( void *dbmsStateInfo ); int ( *performUpdateBackend )( void *dbmsStateInfo, const char *command, const void *boundData, const int boundDataLength, const time_t boundDate, const DBMS_UPDATE_TYPE updateType ); int ( *performQueryBackend )( void *dbmsStateInfo, const char *command, char *data, int *dataLength, const char *boundData, const int boundDataLength, const time_t boundDate, const DBMS_CACHEDQUERY_TYPE queryEntry, const DBMS_QUERY_TYPE queryType ); void ( *performErrorQueryBackend )( void *dbmsStateInfo, ERROR_INFO *errorInfo ); #endif /* !USE_RPCAPI */ void *stateInfo; /* Database back-end access functions. These use the dispatch function/ function pointers above to communicate with the back-end */ int ( *openDatabaseFunction )( struct DI *dbmsInfo, const char *name, const int nameLen, const int options, int *featureFlags ); void ( *closeDatabaseFunction )( struct DI *dbmsInfo ); int ( *performUpdateFunction )( struct DI *dbmsInfo, const char *command, const void *boundData, const int boundDataLength, const time_t boundDate, const DBMS_UPDATE_TYPE updateType ); int ( *performStaticUpdateFunction )( struct DI *dbmsInfo, const char *command ); int ( *performQueryFunction )( struct DI *dbmsInfo, const char *command, char *data, int *dataLength, const char *queryData, const int queryDataLength, const time_t queryDate, const DBMS_CACHEDQUERY_TYPE queryEntry, const DBMS_QUERY_TYPE queryType ); int ( *performStaticQueryFunction )( struct DI *dbmsInfo, const char *command, const DBMS_CACHEDQUERY_TYPE queryEntry, const DBMS_QUERY_TYPE queryType ); /* Pointers to database-specific keyset access methods */ int ( *certMgmtFunction )( struct KI *keysetInfo, CRYPT_CERTIFICATE *iCryptCert, const CRYPT_CERTIFICATE caKey, const CRYPT_CERTIFICATE request, const CRYPT_CERTACTION_TYPE action ); } DBMS_INFO; typedef struct { /* The I/O stream */ STREAM stream; /* I/O stream for HTTP read */ /* An HTTP fetch differs from the other types of read in that it can return data in multiple chunks depending on how much comes over the net at once. Because of this we need to track what's come in, and also allocate more buffer space on demand if required. The following variables handle the on-demand re-allocation of buffer space */ int bufPos; /* Current position in buffer */ } HTTP_INFO; typedef struct { /* LDAP status information */ BOOLEAN queryInProgress; /* Whether ongoing query is in progress */ /* LDAP access information */ void *ld; /* LDAP connection information */ void *result; /* State information for ongoing queries */ /* The names of the object class and various attributes. These are stored as part of the keyset context since they may be user-defined */ char nameObjectClass[ CRYPT_MAX_TEXTSIZE + 8 ]; /* Name of object class */ char nameFilter[ CRYPT_MAX_TEXTSIZE + 8 ]; /* Name of query filter */ char nameCACert[ CRYPT_MAX_TEXTSIZE + 8 ]; /* Name of CA cert attribute */ char nameCert[ CRYPT_MAX_TEXTSIZE + 8 ]; /* Name of cert attribute */ char nameCRL[ CRYPT_MAX_TEXTSIZE + 8 ]; /* Name of CRL attribute */ char nameEmail[ CRYPT_MAX_TEXTSIZE + 8 ]; /* Name of email addr.attr.*/ CRYPT_CERTTYPE_TYPE objectType; /* Preferred obj.type to fetch */ /* When storing a cert we need the certificate DN, email address, and cert expiry date */ char C[ CRYPT_MAX_TEXTSIZE + 8 ], SP[ CRYPT_MAX_TEXTSIZE + 8 ], L[ CRYPT_MAX_TEXTSIZE + 8 ], O[ CRYPT_MAX_TEXTSIZE + 8 ], OU[ CRYPT_MAX_TEXTSIZE + 8 ], CN[ CRYPT_MAX_TEXTSIZE + 8 ]; char email[ CRYPT_MAX_TEXTSIZE + 8 ]; time_t date; } LDAP_INFO; /* Defines to make access to the union fields less messy */ #define keysetFile keysetInfo.fileInfo #define keysetDBMS keysetInfo.dbmsInfo #define keysetHTTP keysetInfo.httpInfo #define keysetLDAP keysetInfo.ldapInfo /* The structure that stores information on a keyset */ typedef struct KI { /* General keyset information */ KEYSET_TYPE type; /* Keyset type (native, PGP, X.509, etc) */ KEYSET_SUBTYPE subType; /* Keyset subtype (public, private, etc) */ CRYPT_KEYOPT_TYPE options; /* Keyset options */ int flags; /* Keyset information flags */ /* Keyset type-specific information */ union { FILE_INFO *fileInfo; #ifdef USE_DBMS DBMS_INFO *dbmsInfo; #endif /* USE_DBMS */ #ifdef USE_HTTP HTTP_INFO *httpInfo; #endif /* USE_HTTP */ #ifdef USE_LDAP LDAP_INFO *ldapInfo; #endif /* USE_LDAP */ } keysetInfo; /* Pointers to keyset access methods */ int ( *initFunction )( struct KI *keysetInfo, const char *name, const int nameLength, const CRYPT_KEYOPT_TYPE options ); int ( *shutdownFunction )( struct KI *keysetInfo ); int ( *getAttributeFunction )( struct KI *keysetInfo, void *data, const CRYPT_ATTRIBUTE_TYPE type ); int ( *setAttributeFunction )( struct KI *keysetInfo, const void *data, const CRYPT_ATTRIBUTE_TYPE type ); int ( *getItemFunction )( struct KI *keysetInfo, CRYPT_HANDLE *iCryptHandle, const KEYMGMT_ITEM_TYPE itemType, const CRYPT_KEYID_TYPE keyIDtype, const void *keyID, const int keyIDlength, void *auxInfo, int *auxInfoLength, const int flags ); int ( *setItemFunction )( struct KI *deviceInfo, const CRYPT_HANDLE iCryptHandle, const KEYMGMT_ITEM_TYPE itemType, const char *password, const int passwordLength, const int flags ); int ( *deleteItemFunction )( struct KI *keysetInfo, const KEYMGMT_ITEM_TYPE itemType, const CRYPT_KEYID_TYPE keyIDtype, const void *keyID, const int keyIDlength ); int ( *getFirstItemFunction )( struct KI *keysetInfo, CRYPT_CERTIFICATE *iCertificate, int *stateInfo, const CRYPT_KEYID_TYPE keyIDtype, const void *keyID, const int keyIDlength, const KEYMGMT_ITEM_TYPE itemType, const int options ); int ( *getNextItemFunction )( struct KI *keysetInfo, CRYPT_CERTIFICATE *iCertificate, int *stateInfo, const int options ); BOOLEAN ( *isBusyFunction )( struct KI *keysetInfo ); /* Some keysets require keyset-type-specific data storage, which is managed via the following variables. keyDataSize denotes the total size in bytes of the keyData buffer, keyDataNoObjects is the number of objects in the buffer if it's implemented as an array of key data objects */ void *keyData; /* Keyset data buffer */ int keyDataSize; /* Buffer size */ int keyDataNoObjects; /* No.of objects in key data buffer */ /* Error information */ CRYPT_ATTRIBUTE_TYPE errorLocus;/* Error locus */ CRYPT_ERRTYPE_TYPE errorType; /* Error type */ /* Low-level error information. Since this is fairly space-consuming, we only use it if we're using one of the heavyweight keyset types that require it */ #if defined( USE_DBMS ) || defined( USE_HTTP ) || defined( USE_LDAP ) #define KEYSET_HAS_ERRORINFO ERROR_INFO errorInfo; #endif /* USE_DBMS || USE_HTTP || USE_LDAP */ /* The object's handle and the handle of the user who owns this object. The former is used when sending messages to the object when only the xxx_INFO is available, the latter is used to avoid having to fetch the same information from the system object table */ CRYPT_HANDLE objectHandle; CRYPT_USER ownerHandle; /* Variable-length storage for the type-specific data */ DECLARE_VARSTRUCT_VARS; } KEYSET_INFO; /**************************************************************************** * * * Keyset Functions * * * ****************************************************************************/ /* Prototypes for keyset mapping functions */ #ifdef USE_ODBC int dbxInitODBC( void ); void dbxEndODBC( void ); #else #define dbxInitODBC() CRYPT_OK #define dbxEndODBC() #endif /* USE_ODBC */ #ifdef USE_DBMS int setAccessMethodDBMS( KEYSET_INFO *keysetInfo, const CRYPT_KEYSET_TYPE type ); #else #define setAccessMethodDBMS( x, y ) CRYPT_ARGERROR_NUM1 #endif /* USE_DBMS */ #ifdef USE_HTTP int setAccessMethodHTTP( KEYSET_INFO *keysetInfo ); #else #define setAccessMethodHTTP( x ) CRYPT_ARGERROR_NUM1 #endif /* USE_HTTP */ #ifdef USE_LDAP int dbxInitLDAP( void ); void dbxEndLDAP( void ); int setAccessMethodLDAP( KEYSET_INFO *keysetInfo ); #else #define dbxInitLDAP() CRYPT_OK #define dbxEndLDAP() #define setAccessMethodLDAP( x ) CRYPT_ARGERROR_NUM1 #endif /* USE_LDAP */ #ifdef USE_PGPKEYS int setAccessMethodPGPPublic( KEYSET_INFO *keysetInfo ); int setAccessMethodPGPPrivate( KEYSET_INFO *keysetInfo ); #else #define setAccessMethodPGPPublic( x ) CRYPT_ARGERROR_NUM1 #define setAccessMethodPGPPrivate( x ) CRYPT_ARGERROR_NUM1 #endif /* USE_PGPKEYS */ #ifdef USE_PKCS12 int setAccessMethodPKCS12( KEYSET_INFO *keysetInfo ); #else #define setAccessMethodPKCS12( x ) CRYPT_ARGERROR_NUM1 #endif /* PKCS #12 */ #ifdef USE_PKCS15 int setAccessMethodPKCS15( KEYSET_INFO *keysetInfo ); #else #define setAccessMethodPKCS15( x ) CRYPT_ARGERROR_NUM1 #endif /* PKCS #15 */ #ifdef USE_PKCS12 #define isWriteableFileKeyset( type ) \ ( ( type ) == KEYSET_SUBTYPE_PKCS12 || \ ( type ) == KEYSET_SUBTYPE_PKCS15 ) #else #define isWriteableFileKeyset( type ) \ ( ( type ) == KEYSET_SUBTYPE_PKCS15 ) #endif /* Writeable keyset subtypes */ #endif /* _KEYSET_DEFINED */