store is done now

svn path=/trunk/kdesupport/qca/; revision=394962
2025-05-10 09:49:33 +00:00 · 2005-03-04 23:54:03 +00:00 · 2005-03-04 23:54:03 +00:00 · c8fb436f5b
commit c8fb436f5b
parent a2ac358848
7 changed files with 216 additions and 148 deletions
--- a/2
+++ b/2
@ -34,8 +34,6 @@
  Certificate: operator==
  cert: rfc 2818 hostname validation
  ca
-  store
-  system store: all added certs need to be flagged as trusted
  personal bundle
  tls
  sasl
--- a/include/QtCrypto/qca_cert.h
+++ b/include/QtCrypto/qca_cert.h
@ -290,19 +290,6 @@ namespace QCA
 		static CRL fromPEM(const QString &s, ConvertResult *result = 0, const QString &provider = QString());
 	};

-	class QCA_EXPORT CertificateAuthority : public Algorithm
-	{
-	public:
-		CertificateAuthority(const Certificate &cert, const PrivateKey &key, const QString &provider);
-
-		Certificate certificate() const;
-
-		Certificate signRequest(const CertificateRequest &req, const QDateTime &notValidAfter) const;
-		Certificate createCertificate(const PublicKey &key, const CertificateOptions &opts) const;
-		CRL createCRL(const QDateTime &nextUpdate) const;
-		CRL updateCRL(const CRL &crl, const QList<CRLEntry> &entries, const QDateTime &nextUpdate) const;
-	};
-
 	class QCA_EXPORT Store : public Algorithm
 	{
 	public:
@ -317,16 +304,29 @@ namespace QCA

 		// import / export
 		static bool canUsePKCS7(const QString &provider = QString());
-		QByteArray toPKCS7() const;
-		QString toFlatText() const;
-		bool fromPKCS7(const QByteArray &a);
-		bool fromFlatText(const QString &s);
+		bool toPKCS7File(const QString &fileName) const;
+		bool toFlatTextFile(const QString &fileName) const;
+		static Store fromPKCS7File(const QString &fileName, ConvertResult *result = 0, const QString &provider = QString());
+		static Store fromFlatTextFile(const QString &fileName, ConvertResult *result = 0, const QString &provider = QString());

 		void append(const Store &a);
 		Store operator+(const Store &a) const;
 		Store & operator+=(const Store &a);
 	};

+	class QCA_EXPORT CertificateAuthority : public Algorithm
+	{
+	public:
+		CertificateAuthority(const Certificate &cert, const PrivateKey &key, const QString &provider);
+
+		Certificate certificate() const;
+
+		Certificate signRequest(const CertificateRequest &req, const QDateTime &notValidAfter) const;
+		Certificate createCertificate(const PublicKey &key, const CertificateOptions &opts) const;
+		CRL createCRL(const QDateTime &nextUpdate) const;
+		CRL updateCRL(const CRL &crl, const QList<CRLEntry> &entries, const QDateTime &nextUpdate) const;
+	};
+
 	class QCA_EXPORT PersonalBundle : public Algorithm
 	{
 	public:
--- a/include/QtCrypto/qcaprovider.h
+++ b/include/QtCrypto/qcaprovider.h
@ -287,6 +287,14 @@ public:
 	virtual void addCertificate(const CertContext &cert, bool trusted) = 0;
 	virtual void addCRL(const CRLContext &crl) = 0;
 	virtual Validity validate(const CertContext &cert, UsageMode u) const = 0;
+	virtual QList<CertContext*> certificates() const = 0;
+	virtual QList<CRLContext*> crls() const = 0;
+	virtual void append(const StoreContext &s) = 0;
+
+	// import / export
+	virtual bool canUsePKCS7() const = 0;
+	virtual QByteArray toPKCS7() const = 0;
+	virtual ConvertResult fromPKCS7(const QByteArray &a) = 0;
 };

 class TLSContext : public Provider::Context
--- a/src/qca_cert.cpp
+++ b/src/qca_cert.cpp
@ -39,13 +39,31 @@ static bool stringToFile(const QString &fileName, const QString &content)
 	return true;
 }

-static bool stringFromFile(const QString &fileName, QString *str)
+static bool stringFromFile(const QString &fileName, QString *s)
 {
 	QFile f(fileName);
 	if(!f.open(QFile::ReadOnly))
 		return false;
 	QTextStream ts(&f);
-	*str = ts.readAll();
+	*s = ts.readAll();
+	return true;
+}
+
+static bool arrayToFile(const QString &fileName, const QByteArray &content)
+{
+	QFile f(fileName);
+	if(!f.open(QFile::WriteOnly))
+		return false;
+	f.write(content.data(), content.size());
+	return true;
+}
+
+static bool arrayFromFile(const QString &fileName, QByteArray *a)
+{
+	QFile f(fileName);
+	if(!f.open(QFile::ReadOnly))
+		return false;
+	*a = f.readAll();
 	return true;
 }

@ -696,6 +714,174 @@ CRL CRL::fromPEM(const QString &s, ConvertResult *result, const QString &provide
 	return c;
 }

+//----------------------------------------------------------------------------
+// Store
+//----------------------------------------------------------------------------
+static QString readNextPem(QTextStream *ts)
+{
+	QString pem;
+	bool found = false;
+	bool done = false;
+	while(!ts->atEnd())
+	{
+		QString line = ts->readLine();
+		if(!found)
+		{
+			if(line == "-----BEGIN CERTIFICATE-----")
+			{
+				found = true;
+				pem += line + '\n';
+			}
+		}
+		else
+		{
+			pem += line + '\n';
+			if(line == "-----END CERTIFICATE-----")
+			{
+				done = true;
+				break;
+			}
+		}
+	}
+	if(!done)
+		return QString::null;
+	return pem;
+}
+
+Store::Store(const QString &provider)
+:Algorithm("store", provider)
+{
+}
+
+void Store::addCertificate(const Certificate &cert, bool trusted)
+{
+	static_cast<StoreContext *>(context())->addCertificate(*(static_cast<const CertContext *>(cert.context())), trusted);
+}
+
+void Store::addCRL(const CRL &crl)
+{
+	static_cast<StoreContext *>(context())->addCRL(*(static_cast<const CRLContext *>(crl.context())));
+}
+
+Validity Store::validate(const Certificate &cert, UsageMode u) const
+{
+	return static_cast<const StoreContext *>(context())->validate(*(static_cast<const CertContext *>(cert.context())), u);
+}
+
+QList<Certificate> Store::certificates() const
+{
+	QList<CertContext *> in = static_cast<const StoreContext *>(context())->certificates();
+	QList<Certificate> out;
+	for(int n = 0; n < in.count(); ++n)
+	{
+		Certificate cert;
+		cert.change(in[n]);
+		out.append(cert);
+	}
+	return out;
+}
+
+QList<CRL> Store::crls() const
+{
+	QList<CRLContext *> in = static_cast<const StoreContext *>(context())->crls();
+	QList<CRL> out;
+	for(int n = 0; n < in.count(); ++n)
+	{
+		CRL crl;
+		crl.change(in[n]);
+		out.append(crl);
+	}
+	return out;
+}
+
+bool Store::canUsePKCS7(const QString &provider)
+{
+	StoreContext *c = static_cast<StoreContext *>(getContext("store", provider));
+	bool ok = c->canUsePKCS7();
+	delete c;
+	return ok;
+}
+
+bool Store::toPKCS7File(const QString &fileName) const
+{
+	return arrayToFile(fileName, static_cast<const StoreContext *>(context())->toPKCS7());
+}
+
+bool Store::toFlatTextFile(const QString &fileName) const
+{
+	QFile f(fileName);
+	if(!f.open(QFile::WriteOnly))
+		return false;
+
+	QList<CertContext *> in = static_cast<const StoreContext *>(context())->certificates();
+	QTextStream ts(&f);
+	for(int n = 0; n < in.count(); ++n)
+		ts << in[n]->toPEM();
+	return true;
+}
+
+Store Store::fromPKCS7File(const QString &fileName, ConvertResult *result, const QString &provider)
+{
+	QByteArray der;
+	if(!arrayFromFile(fileName, &der))
+	{
+		if(result)
+			*result = ErrorFile;
+		return Store();
+	}
+
+	Store store;
+	StoreContext *c = static_cast<StoreContext *>(getContext("store", provider));
+	ConvertResult r = c->fromPKCS7(der);
+	if(result)
+		*result = r;
+	if(r == ConvertGood)
+		store.change(c);
+	return store;
+}
+
+Store Store::fromFlatTextFile(const QString &fileName, ConvertResult *result, const QString &provider)
+{
+	QFile f(fileName);
+	if(!f.open(QFile::ReadOnly))
+	{
+		if(result)
+			*result = ErrorFile;
+		return Store();
+	}
+
+	Store store;
+	QTextStream ts(&f);
+	while(1)
+	{
+		QString pem = readNextPem(&ts);
+		if(pem.isNull())
+			break;
+		Certificate cert = Certificate::fromPEM(pem, 0, provider);
+		if(!cert.isNull())
+			store.addCertificate(cert, true);
+	}
+	return store;
+}
+
+void Store::append(const Store &a)
+{
+	static_cast<StoreContext *>(context())->append(*(static_cast<const StoreContext *>(a.context())));
+}
+
+Store Store::operator+(const Store &a) const
+{
+	Store s = *this;
+	s.append(a);
+	return s;
+}
+
+Store & Store::operator+=(const Store &a)
+{
+	append(a);
+	return *this;
+}
+
 //----------------------------------------------------------------------------
 // CertificateAuthority
 //----------------------------------------------------------------------------
@ -732,85 +918,6 @@ CRL CertificateAuthority::updateCRL(const CRL &crl, const QList<CRLEntry> &entri
 	return CRL();
 }

-//----------------------------------------------------------------------------
-// Store
-//----------------------------------------------------------------------------
-Store::Store(const QString &provider)
-:Algorithm("store", provider)
-{
-}
-
-void Store::addCertificate(const Certificate &cert, bool trusted)
-{
-	((StoreContext *)context())->addCertificate(*((CertContext *)cert.context()), trusted);
-}
-
-void Store::addCRL(const CRL &crl)
-{
-	((StoreContext *)context())->addCRL(*((CRLContext *)crl.context()));
-}
-
-Validity Store::validate(const Certificate &cert, UsageMode u) const
-{
-	return ((StoreContext *)context())->validate(*((CertContext *)cert.context()), u);
-}
-
-QList<Certificate> Store::certificates() const
-{
-	return QList<Certificate>();
-}
-
-QList<CRL> Store::crls() const
-{
-	return QList<CRL>();
-}
-
-bool Store::canUsePKCS7(const QString &provider)
-{
-	Q_UNUSED(provider);
-	return false;
-}
-
-QByteArray Store::toPKCS7() const
-{
-	return QByteArray();
-}
-
-QString Store::toFlatText() const
-{
-	return QString();
-}
-
-bool Store::fromPKCS7(const QByteArray &a)
-{
-	Q_UNUSED(a);
-	return false;
-}
-
-bool Store::fromFlatText(const QString &s)
-{
-	Q_UNUSED(s);
-	return false;
-}
-
-void Store::append(const Store &a)
-{
-	Q_UNUSED(a);
-}
-
-Store Store::operator+(const Store &a) const
-{
-	Store s = *this;
-	s.append(a);
-	return s;
-}
-
-Store & Store::operator+=(const Store &a)
-{
-	append(a);
-	return *this;
-}
-
 //----------------------------------------------------------------------------
 // PersonalBundle
 //----------------------------------------------------------------------------
--- a/src/qca_systemstore_flatfile.cpp
+++ b/src/qca_systemstore_flatfile.cpp
@ -30,54 +30,9 @@ bool qca_have_systemstore()
 	return f.open(QFile::ReadOnly);
 }

-static QString readNextPem(QTextStream *ts)
-{
-	QString pem;
-	bool found = false;
-	bool done = false;
-	while(!ts->atEnd())
-	{
-		QString line = ts->readLine();
-		if(!found)
-		{
-			if(line == "-----BEGIN CERTIFICATE-----")
-			{
-				found = true;
-				pem += line + '\n';
-			}
-		}
-		else
-		{
-			pem += line + '\n';
-			if(line == "-----END CERTIFICATE-----")
-			{
-				done = true;
-				break;
-			}
-		}
-	}
-	if(!done)
-		return QString::null;
-	return pem;
-}
-
 Store qca_get_systemstore(const QString &provider)
 {
-	Store store(provider);
-	QFile f(QCA_SYSTEMSTORE_PATH);
-	if(!f.open(QFile::ReadOnly))
-		return store;
-	QTextStream ts(&f);
-	while(1)
-	{
-		QString pem = readNextPem(&ts);
-		if(pem.isNull())
-			break;
-		Certificate cert = Certificate::fromPEM(pem, 0, provider);
-		if(!cert.isNull())
-			store.addCertificate(cert);
-	}
-	return store;
+	return Store::fromFlatTextFile(QCA_SYSTEMSTORE_PATH, 0, provider);
 }

 }
--- a/src/qca_systemstore_mac.cpp
+++ b/src/qca_systemstore_mac.cpp
@ -47,7 +47,7 @@ Store qca_get_systemstore(const QString &provider)

 		Certificate cert = Certificate::fromDER(der, 0, provider);
 		if(!cert.isNull())
-			store.addCertificate(cert);
+			store.addCertificate(cert, true);
 	}
 	CFRelease(anchors);
 	return store;
--- a/src/qca_systemstore_win.cpp
+++ b/src/qca_systemstore_win.cpp
@ -64,7 +64,7 @@ Store qca_get_systemstore(const QString &provider)

 		Certificate cert = Certificate::fromDER(der, 0, provider);
 		if(!cert.isNull())
-			store.addCertificate(cert);
+			store.addCertificate(cert, true);
 	}
 	CertCloseStore(hSystemStore, 0);
 	return store;