[apple/security.git] / AppleX509CL / DecodedCrl.cpp

/*
 * Copyright (c) 2002 Apple Computer, Inc. All Rights Reserved.
 * 
 * The contents of this file constitute Original Code as defined in and are
 * subject to the Apple Public Source License Version 1.2 (the 'License').
 * You may not use this file except in compliance with the License. Please obtain
 * a copy of the License at http://www.apple.com/publicsource and read it before
 * using this file.
 * 
 * This Original Code and all software distributed under the License are
 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS
 * OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, INCLUDING WITHOUT
 * LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR
 * PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. Please see the License for the
 * specific language governing rights and limitations under the License.
 */


/*
 * DecodedCrl.cpp - object representing a decoded CRL, in NSS format,
 * with extensions parsed and decoded (still in NSS format).
 *
 * Created 8/28/2002 by Doug Mitchell. 
 */

#include "DecodedCrl.h"
#include "cldebugging.h"
#include "AppleX509CLSession.h"
#include "CSPAttacher.h"
#include <Security/cssmapple.h>

DecodedCrl::DecodedCrl(
	AppleX509CLSession	&session)
	: DecodedItem(session)
{
	memset(&mCrl, 0, sizeof(mCrl));
}

/* one-shot constructor, decoding from DER-encoded data */
DecodedCrl::DecodedCrl(
	AppleX509CLSession	&session,
	const CssmData 		&encodedCrl)
	: DecodedItem(session)
{
	memset(&mCrl, 0, sizeof(mCrl));
	PRErrorCode prtn = mCoder.decode(encodedCrl.data(), encodedCrl.length(), 
		NSS_SignedCrlTemplate, &mCrl);
	if(prtn) {
		CssmError::throwMe(CSSMERR_CL_UNKNOWN_FORMAT);
	}
	mDecodedExtensions.decodeFromNss(mCrl.tbs.extensions);
	mState = IS_DecodedAll;
}
		
DecodedCrl::~DecodedCrl()
{
}
	
/* decode mCrl.tbs and its extensions */
void DecodedCrl::decodeCts(
	const CssmData	&encodedCts)
{
	assert(mState == IS_Empty);
	memset(&mCrl, 0, sizeof(mCrl));
	PRErrorCode prtn = mCoder.decode(encodedCts.data(), encodedCts.length(), 
		NSS_TBSCrlTemplate, &mCrl.tbs);
	if(prtn) {
		CssmError::throwMe(CSSMERR_CL_UNKNOWN_FORMAT);
	}
	mDecodedExtensions.decodeFromNss(mCrl.tbs.extensions);
	mState = IS_DecodedTBS;
}

void DecodedCrl::encodeExtensions()
{
	NSS_TBSCrl &tbs = mCrl.tbs;
	assert(mState == IS_Building);
	assert(tbs.extensions == NULL);

	if(mDecodedExtensions.numExtensions() == 0) {
		/* no extensions, no error */
		return;
	}
	mDecodedExtensions.encodeToNss(tbs.extensions);
}

/*
 * FIXME : how to determine max encoding size at run time!?
 */
#define MAX_TEMPLATE_SIZE	(16 * 1024)

/* encode TBS component; only called from CrlCreateTemplate */
void DecodedCrl::encodeCts(
	CssmOwnedData	&encodedCts)
{
	encodeExtensions();
	assert(mState == IS_Building);
	
	/* enforce required fields - could go deeper, maybe we should */
	NSS_TBSCrl &tbs = mCrl.tbs;
	if((tbs.signature.algorithm.Data == NULL) ||
	   (tbs.issuer.rdns == NULL)) {
		clErrorLog("DecodedCrl::encodeTbs: incomplete TBS");
		/* an odd, undocumented error return */
		CssmError::throwMe(CSSMERR_CL_NO_FIELD_VALUES);
	}
	
	PRErrorCode prtn;
	prtn = SecNssEncodeItemOdata(&tbs, NSS_TBSCrlTemplate,
		encodedCts);
	if(prtn) {
		CssmError::throwMe(CSSMERR_CL_MEMORY_ERROR);
	}
}
Commit	Line	Data
df0e469f A	1	/*
	2	* Copyright (c) 2002 Apple Computer, Inc. All Rights Reserved.
	3	*
	4	* The contents of this file constitute Original Code as defined in and are
	5	* subject to the Apple Public Source License Version 1.2 (the 'License').
	6	* You may not use this file except in compliance with the License. Please obtain
	7	* a copy of the License at http://www.apple.com/publicsource and read it before
	8	* using this file.
	9	*
	10	* This Original Code and all software distributed under the License are
	11	* distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS
	12	* OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, INCLUDING WITHOUT
	13	* LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR
	14	* PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. Please see the License for the
	15	* specific language governing rights and limitations under the License.
	16	*/
	17
	18
	19	/*
	20	* DecodedCrl.cpp - object representing a decoded CRL, in NSS format,
	21	* with extensions parsed and decoded (still in NSS format).
	22	*
	23	* Created 8/28/2002 by Doug Mitchell.
	24	*/
	25
	26	#include "DecodedCrl.h"
	27	#include "cldebugging.h"
	28	#include "AppleX509CLSession.h"
	29	#include "CSPAttacher.h"
	30	#include <Security/cssmapple.h>
	31
	32	DecodedCrl::DecodedCrl(
	33	AppleX509CLSession &session)
	34	: DecodedItem(session)
	35	{
	36	memset(&mCrl, 0, sizeof(mCrl));
	37	}
	38
	39	/* one-shot constructor, decoding from DER-encoded data */
	40	DecodedCrl::DecodedCrl(
	41	AppleX509CLSession &session,
	42	const CssmData &encodedCrl)
	43	: DecodedItem(session)
	44	{
	45	memset(&mCrl, 0, sizeof(mCrl));
	46	PRErrorCode prtn = mCoder.decode(encodedCrl.data(), encodedCrl.length(),
	47	NSS_SignedCrlTemplate, &mCrl);
	48	if(prtn) {
	49	CssmError::throwMe(CSSMERR_CL_UNKNOWN_FORMAT);
	50	}
	51	mDecodedExtensions.decodeFromNss(mCrl.tbs.extensions);
	52	mState = IS_DecodedAll;
	53	}
	54
	55	DecodedCrl::~DecodedCrl()
	56	{
	57	}
	58
	59	/* decode mCrl.tbs and its extensions */
	60	void DecodedCrl::decodeCts(
	61	const CssmData &encodedCts)
	62	{
	63	assert(mState == IS_Empty);
	64	memset(&mCrl, 0, sizeof(mCrl));
65	PRErrorCode prtn = mCoder.decode(encodedCts.data(), encodedCts.length(),
66	NSS_TBSCrlTemplate, &mCrl.tbs);
67	if(prtn) {
68	CssmError::throwMe(CSSMERR_CL_UNKNOWN_FORMAT);
69	}
70	mDecodedExtensions.decodeFromNss(mCrl.tbs.extensions);
71	mState = IS_DecodedTBS;
72	}
73
74	void DecodedCrl::encodeExtensions()
75	{
76	NSS_TBSCrl &tbs = mCrl.tbs;
77	assert(mState == IS_Building);
78	assert(tbs.extensions == NULL);
79
80	if(mDecodedExtensions.numExtensions() == 0) {
81	/* no extensions, no error */
82	return;
83	}
84	mDecodedExtensions.encodeToNss(tbs.extensions);
85	}
86
87	/*
88	* FIXME : how to determine max encoding size at run time!?
89	*/
90	#define MAX_TEMPLATE_SIZE (16 * 1024)
91
92	/* encode TBS component; only called from CrlCreateTemplate */
93	void DecodedCrl::encodeCts(
94	CssmOwnedData &encodedCts)
95	{
96	encodeExtensions();
97	assert(mState == IS_Building);
98
99	/* enforce required fields - could go deeper, maybe we should */
100	NSS_TBSCrl &tbs = mCrl.tbs;
101	if((tbs.signature.algorithm.Data == NULL) \|\|
102	(tbs.issuer.rdns == NULL)) {
103	clErrorLog("DecodedCrl::encodeTbs: incomplete TBS");
104	/* an odd, undocumented error return */
105	CssmError::throwMe(CSSMERR_CL_NO_FIELD_VALUES);
106	}
107
108	PRErrorCode prtn;
109	prtn = SecNssEncodeItemOdata(&tbs, NSS_TBSCrlTemplate,
110	encodedCts);
111	if(prtn) {
112	CssmError::throwMe(CSSMERR_CL_MEMORY_ERROR);
113	}
114	}
115