xmlsecurity/source/helper/xmlsignaturehelper.cxx

   1 /*************************************************************************
   2  *
   3  * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
   4  *
   5  * Copyright 2000, 2010 Oracle and/or its affiliates.
   6  *
   7  * OpenOffice.org - a multi-platform office productivity suite
   8  *
   9  * This file is part of OpenOffice.org.
  10  *
  11  * OpenOffice.org is free software: you can redistribute it and/or modify
  12  * it under the terms of the GNU Lesser General Public License version 3
  13  * only, as published by the Free Software Foundation.
  14  *
  15  * OpenOffice.org is distributed in the hope that it will be useful,
  16  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  17  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  18  * GNU Lesser General Public License version 3 for more details
  19  * (a copy is included in the LICENSE file that accompanied this code).
  20  *
  21  * You should have received a copy of the GNU Lesser General Public License
  22  * version 3 along with OpenOffice.org.  If not, see
  23  * <http://www.openoffice.org/license.html>
  24  * for a copy of the LGPLv3 License.
  25  *
  26  ************************************************************************/
  27
  28 // MARKER(update_precomp.py): autogen include statement, do not remove
  29 #include "precompiled_xmlsecurity.hxx"
  30
  31 #include <xmlsecurity/xmlsignaturehelper.hxx>
  32 #include <xmlsecurity/documentsignaturehelper.hxx>
  33 #include <xsecctl.hxx>
  34
  35 #include <xmlsignaturehelper2.hxx>
  36
  37 #include <tools/stream.hxx>
  38 #include <tools/debug.hxx>
  39
  40 #include <xmloff/attrlist.hxx>
  41
  42 #include <com/sun/star/io/XOutputStream.hpp>
  43 #include <com/sun/star/io/XInputStream.hpp>
  44 #include <com/sun/star/io/XActiveDataSource.hpp>
  45 #include <com/sun/star/lang/XComponent.hpp>
  46 #include <com/sun/star/security/SerialNumberAdapter.hpp>
  47 #include <com/sun/star/beans/XPropertySet.hpp>
  48
  49 #include <tools/date.hxx>
  50 #include <tools/time.hxx>
  51
  52 //MM : search for the default profile
  53 //#include <unotools/streamhelper.hxx>
  54 //MM : end
  55
  56 /* SEInitializer component */
  57 #define SEINITIALIZER_COMPONENT "com.sun.star.xml.crypto.SEInitializer"
  58
  59 #define TAG_DOCUMENTSIGNATURES  "document-signatures"
  60 #define NS_DOCUMENTSIGNATURES   "http://openoffice.org/2004/documentsignatures"
  61 #define NS_DOCUMENTSIGNATURES_ODF_1_2 "urn:oasis:names:tc:opendocument:xmlns:digitalsignature:1.0"
  62
  63 using namespace ::com::sun::star;
  64 using namespace ::com::sun::star::uno;
  65
  66 XMLSignatureHelper::XMLSignatureHelper( const uno::Reference< uno::XComponentContext >& rxCtx)
  67     : mxCtx(rxCtx), mbODFPre1_2(false)
  68 {
  69     mpXSecController = new XSecController(rxCtx);
  70     mxSecurityController = mpXSecController;
  71     mbError = false;
  72 }
  73
  74 XMLSignatureHelper::~XMLSignatureHelper()
  75 {
  76     if ( mxSEInitializer.is() && mxSecurityContext.is() )
  77         mxSEInitializer->freeSecurityContext( mxSecurityContext );
  78 }
  79
  80 bool XMLSignatureHelper::Init( const rtl::OUString& rTokenPath )
  81 {
  82     DBG_ASSERT( !mxSEInitializer.is(), "XMLSignatureHelper::Init - mxSEInitializer already set!" );
  83     DBG_ASSERT( !mxSecurityContext.is(), "XMLSignatureHelper::Init - mxSecurityContext already set!" );
  84
  85     ImplCreateSEInitializer();
  86
  87     if ( mxSEInitializer.is() )
  88         mxSecurityContext = mxSEInitializer->createSecurityContext( rTokenPath );
  89
  90     return mxSecurityContext.is();
  91 }
  92
  93 void XMLSignatureHelper::ImplCreateSEInitializer()
  94 {
  95     rtl::OUString sSEInitializer(rtl::OUString::createFromAscii( SEINITIALIZER_COMPONENT ));
  96     uno::Reference< lang::XMultiComponentFactory > xMCF( mxCtx->getServiceManager() );
  97     mxSEInitializer = uno::Reference< com::sun::star::xml::crypto::XSEInitializer > (
  98         xMCF->createInstanceWithContext( sSEInitializer,  mxCtx ), uno::UNO_QUERY );
  99 }
 100
 101 void XMLSignatureHelper::SetUriBinding( com::sun::star::uno::Reference< com::sun::star::xml::crypto::XUriBinding >& rxUriBinding )
 102 {
 103     mxUriBinding = rxUriBinding;
 104 }
 105
 106 com::sun::star::uno::Reference< com::sun::star::xml::crypto::XUriBinding > XMLSignatureHelper::GetUriBinding() const
 107 {
 108     return mxUriBinding;
 109 }
 110
 111 void XMLSignatureHelper::SetStorage(
 112     const Reference < css::embed::XStorage >& rxStorage,
 113     ::rtl::OUString sODFVersion)
 114 {
 115     DBG_ASSERT( !mxUriBinding.is(), "SetStorage - UriBinding already set!" );
 116     mxUriBinding = new UriBindingHelper( rxStorage );
 117     DBG_ASSERT(rxStorage.is(), "SetStorage - empty storage!");
 118     mbODFPre1_2 = DocumentSignatureHelper::isODFPre_1_2(sODFVersion);
 119 }
 120
 121
 122 void XMLSignatureHelper::SetStartVerifySignatureHdl( const Link& rLink )
 123 {
 124     maStartVerifySignatureHdl = rLink;
 125 }
 126
 127
 128 void XMLSignatureHelper::StartMission()
 129 {
 130     if ( !mxUriBinding.is() )
 131         mxUriBinding = new UriBindingHelper();
 132
 133     mpXSecController->startMission( mxUriBinding, mxSecurityContext );
 134 }
 135
 136 void XMLSignatureHelper::EndMission()
 137 {
 138     mpXSecController->endMission();
 139 }
 140
 141 sal_Int32 XMLSignatureHelper::GetNewSecurityId()
 142 {
 143     return mpXSecController->getNewSecurityId();
 144 }
 145
 146 void XMLSignatureHelper::SetX509Certificate(
 147         sal_Int32 nSecurityId,
 148         const rtl::OUString& ouX509IssuerName,
 149         const rtl::OUString& ouX509SerialNumber,
 150         const rtl::OUString& ouX509Cert)
 151 {
 152     mpXSecController->setX509Certificate(
 153         nSecurityId,
 154         ouX509IssuerName,
 155         ouX509SerialNumber,
 156         ouX509Cert);
 157 }
 158
 159 void XMLSignatureHelper::SetX509Certificate(
 160         sal_Int32 nSecurityId,
 161         sal_Int32 nSecurityEnvironmentIndex,
 162         const rtl::OUString& ouX509IssuerName,
 163         const rtl::OUString& ouX509SerialNumber,
 164         const rtl::OUString& ouX509Cert)
 165 {
 166     mpXSecController->setX509Certificate(
 167         nSecurityId,
 168         nSecurityEnvironmentIndex,
 169         ouX509IssuerName,
 170         ouX509SerialNumber,
 171         ouX509Cert);
 172 }
 173
 174 void XMLSignatureHelper::SetDateTime( sal_Int32 nSecurityId, const Date& rDate, const Time& rTime )
 175 {
 176     /*
 177     rtl::OUString aDate = String::CreateFromInt32( rDate.GetDate() );
 178     rtl::OUString aTime = String::CreateFromInt32( rTime.GetTime() );
 179     mpXSecController->setDateTime( nSecurityId, aDate, aTime );
 180     */
 181     ::com::sun::star::util::DateTime stDateTime;
 182     stDateTime.HundredthSeconds = (::sal_uInt16)rTime.Get100Sec();
 183     stDateTime.Seconds = (::sal_uInt16)rTime.GetSec();
 184     stDateTime.Minutes = (::sal_uInt16)rTime.GetMin();
 185     stDateTime.Hours = (::sal_uInt16)rTime.GetHour();
 186     stDateTime.Day = (::sal_uInt16)rDate.GetDay();
 187     stDateTime.Month = (::sal_uInt16)rDate.GetMonth();
 188     stDateTime.Year = (::sal_uInt16)rDate.GetYear();
 189     mpXSecController->setDate( nSecurityId, stDateTime );
 190 }
 191
 192 void XMLSignatureHelper::AddForSigning( sal_Int32 nSecurityId, const rtl::OUString& uri, const rtl::OUString& objectURL, sal_Bool bBinary )
 193 {
 194     mpXSecController->signAStream( nSecurityId, uri, objectURL, bBinary );
 195 }
 196
 197
 198 uno::Reference<xml::sax::XDocumentHandler> XMLSignatureHelper::CreateDocumentHandlerWithHeader(
 199     const com::sun::star::uno::Reference< com::sun::star::io::XOutputStream >& xOutputStream )
 200 {
 201     /*
 202      * get SAX writer component
 203      */
 204     uno::Reference< lang::XMultiComponentFactory > xMCF( mxCtx->getServiceManager() );
 205     uno::Reference< io::XActiveDataSource > xSaxWriter(
 206         xMCF->createInstanceWithContext(rtl::OUString::createFromAscii(
 207             "com.sun.star.xml.sax.Writer"), mxCtx ), uno::UNO_QUERY );
 208
 209     DBG_ASSERT( xSaxWriter.is(), "can't instantiate XML writer" );
 210
 211     /*
 212      * connect XML writer to output stream
 213      */
 214     xSaxWriter->setOutputStream( xOutputStream );
 215
 216     /*
 217      * prepare document handler
 218      */
 219     uno::Reference<xml::sax::XDocumentHandler>
 220         xDocHandler( xSaxWriter,uno::UNO_QUERY);
 221
 222     /*
 223      * write the xml context for signatures
 224      */
 225     rtl::OUString tag_AllSignatures(RTL_CONSTASCII_USTRINGPARAM(TAG_DOCUMENTSIGNATURES));
 226
 227     SvXMLAttributeList *pAttributeList = new SvXMLAttributeList();
 228     rtl::OUString sNamespace;
 229     if (mbODFPre1_2)
 230         sNamespace = rtl::OUString(RTL_CONSTASCII_USTRINGPARAM(NS_DOCUMENTSIGNATURES));
 231     else
 232         sNamespace = rtl::OUString(RTL_CONSTASCII_USTRINGPARAM(NS_DOCUMENTSIGNATURES_ODF_1_2));
 233
 234     pAttributeList->AddAttribute(
 235         rtl::OUString(RTL_CONSTASCII_USTRINGPARAM(ATTR_XMLNS)),
 236         sNamespace);
 237
 238     xDocHandler->startDocument();
 239     xDocHandler->startElement(
 240         tag_AllSignatures,
 241         uno::Reference< com::sun::star::xml::sax::XAttributeList > (pAttributeList));
 242
 243     return xDocHandler;
 244 }
 245
 246 void XMLSignatureHelper::CloseDocumentHandler( const uno::Reference<xml::sax::XDocumentHandler>& xDocumentHandler )
 247 {
 248     rtl::OUString tag_AllSignatures(RTL_CONSTASCII_USTRINGPARAM(TAG_DOCUMENTSIGNATURES));
 249     xDocumentHandler->endElement( tag_AllSignatures );
 250     xDocumentHandler->endDocument();
 251 }
 252
 253 void XMLSignatureHelper::ExportSignature(
 254     const uno::Reference< xml::sax::XDocumentHandler >& xDocumentHandler,
 255     const SignatureInformation& signatureInfo )
 256 {
 257     mpXSecController->exportSignature(xDocumentHandler, signatureInfo);
 258 }
 259
 260 bool XMLSignatureHelper::CreateAndWriteSignature( const uno::Reference< xml::sax::XDocumentHandler >& xDocumentHandler )
 261 {
 262     mbError = false;
 263
 264     /*
 265      * create a signature listener
 266      */
 267 /*
 268     ImplXMLSignatureListener* pSignatureListener = new ImplXMLSignatureListener(
 269                                                     LINK( this, XMLSignatureHelper, SignatureCreationResultListener ),
 270                                                     LINK( this, XMLSignatureHelper, SignatureVerifyResultListener ),
 271                                                     LINK( this, XMLSignatureHelper, StartVerifySignatureElement ) );
 272 */
 273     /*
 274      * configure the signature creation listener
 275      */
 276     //mpXSecController->setSignatureCreationResultListener( pSignatureListener );
 277
 278     /*
 279      * write signatures
 280      */
 281     if ( !mpXSecController->WriteSignature( xDocumentHandler ) )
 282     {
 283         mbError = true;
 284     }
 285
 286     /*
 287      * clear up the signature creation listener
 288      */
 289     //mpXSecController->setSignatureCreationResultListener( NULL );
 290
 291     return !mbError;
 292 }
 293
 294 bool XMLSignatureHelper::CreateAndWriteSignature( const com::sun::star::uno::Reference< com::sun::star::io::XOutputStream >& xOutputStream )
 295 {
 296     uno::Reference<xml::sax::XDocumentHandler> xDocHandler
 297         = CreateDocumentHandlerWithHeader(xOutputStream);
 298
 299     bool rc = CreateAndWriteSignature( xDocHandler );
 300
 301     CloseDocumentHandler(xDocHandler);
 302
 303     return rc;
 304 }
 305
 306 bool XMLSignatureHelper::ReadAndVerifySignature( const com::sun::star::uno::Reference< com::sun::star::io::XInputStream >& xInputStream )
 307 {
 308     mbError = false;
 309
 310     DBG_ASSERT(xInputStream.is(), "input stream missing");
 311
 312     /*
 313      * prepare ParserInputSrouce
 314      */
 315     xml::sax::InputSource aParserInput;
 316     // aParserInput.sSystemId = ouName;
 317     aParserInput.aInputStream = xInputStream;
 318
 319     /*
 320      * get SAX parser component
 321      */
 322     uno::Reference< lang::XMultiComponentFactory > xMCF( mxCtx->getServiceManager() );
 323     uno::Reference< xml::sax::XParser > xParser(
 324         xMCF->createInstanceWithContext(
 325             rtl::OUString::createFromAscii("com.sun.star.xml.sax.Parser"), mxCtx ),
 326         uno::UNO_QUERY );
 327
 328     DBG_ASSERT( xParser.is(), "Can't create parser" );
 329
 330     /*
 331      * create a signature reader
 332      */
 333     uno::Reference< xml::sax::XDocumentHandler > xHandler
 334         = mpXSecController->createSignatureReader( );
 335
 336     /*
 337      * create a signature listener
 338      */
 339     ImplXMLSignatureListener* pSignatureListener = new ImplXMLSignatureListener(
 340                                                     LINK( this, XMLSignatureHelper, SignatureCreationResultListener ),
 341                                                     LINK( this, XMLSignatureHelper, SignatureVerifyResultListener ),
 342                                                     LINK( this, XMLSignatureHelper, StartVerifySignatureElement ) );
 343
 344     /*
 345      * configure the signature verify listener
 346      */
 347     //mpXSecController->setSignatureVerifyResultListener( pSignatureListener );
 348
 349     /*
 350      * setup the connection:
 351      * Parser -> SignatureListener -> SignatureReader
 352      */
 353     pSignatureListener->setNextHandler(xHandler);
 354     xParser->setDocumentHandler( pSignatureListener );
 355
 356     /*
 357      * parser the stream
 358      */
 359     try
 360     {
 361         xParser->parseStream( aParserInput );
 362     }
 363     catch( xml::sax::SAXParseException& )
 364     {
 365         mbError = true;
 366     }
 367     catch( xml::sax::SAXException& )
 368     {
 369         mbError = true;
 370     }
 371     catch( com::sun::star::io::IOException& )
 372     {
 373         mbError = true;
 374     }
 375     catch( uno::Exception& )
 376     {
 377         mbError = true;
 378     }
 379
 380     /*
 381      * clear up the connection
 382      */
 383     pSignatureListener->setNextHandler( NULL );
 384
 385     /*
 386      * clear up the signature verify listener
 387      */
 388     //mpXSecController->setSignatureVerifyResultListener( NULL );
 389
 390     /*
 391      * release the signature reader
 392      */
 393     mpXSecController->releaseSignatureReader( );
 394
 395     return !mbError;
 396 }
 397
 398 SignatureInformation XMLSignatureHelper::GetSignatureInformation( sal_Int32 nSecurityId ) const
 399 {
 400     return mpXSecController->getSignatureInformation( nSecurityId );
 401 }
 402
 403 SignatureInformations XMLSignatureHelper::GetSignatureInformations() const
 404 {
 405     return mpXSecController->getSignatureInformations();
 406 }
 407
 408 uno::Reference< ::com::sun::star::xml::crypto::XSecurityEnvironment > XMLSignatureHelper::GetSecurityEnvironment()
 409 {
 410     return (mxSecurityContext.is()?(mxSecurityContext->getSecurityEnvironment()): uno::Reference< ::com::sun::star::xml::crypto::XSecurityEnvironment >());
 411 }
 412
 413 uno::Reference< ::com::sun::star::xml::crypto::XSecurityEnvironment > XMLSignatureHelper::GetSecurityEnvironmentByIndex(sal_Int32 nId)
 414 {
 415     return (mxSecurityContext.is()?(mxSecurityContext->getSecurityEnvironmentByIndex(nId)): uno::Reference< ::com::sun::star::xml::crypto::XSecurityEnvironment >());
 416 }
 417
 418 sal_Int32 XMLSignatureHelper::GetSecurityEnvironmentNumber()
 419 {
 420     return (mxSecurityContext.is()?(mxSecurityContext->getSecurityEnvironmentNumber()): 0);
 421 }
 422
 423
 424 /*
 425 void XMLSignatureHelper::createSecurityContext( rtl::OUString tokenPath )
 426 {
 427     if ( !mxSEInitializer.is() )
 428         ImplCreateSEInitializer();
 429
 430     mxSecurityContext = mxSEInitializer->createSecurityContext(tokenPath);
 431 }
 432
 433 void XMLSignatureHelper::freeSecurityContext()
 434 {
 435     if ( !mxSEInitializer.is() )
 436         ImplCreateSEInitializer();
 437
 438     mxSEInitializer->freeSecurityContext( mxSecurityContext );
 439 }
 440 */
 441
 442 IMPL_LINK( XMLSignatureHelper, SignatureCreationResultListener, XMLSignatureCreationResult*, pResult )
 443 {
 444     maCreationResults.insert( maCreationResults.begin() + maCreationResults.size(), *pResult );
 445     if ( pResult->nSignatureCreationResult != com::sun::star::xml::crypto::SecurityOperationStatus_OPERATION_SUCCEEDED )
 446         mbError = true;
 447     return 0;
 448 }
 449
 450 IMPL_LINK( XMLSignatureHelper, SignatureVerifyResultListener, XMLSignatureVerifyResult*, pResult )
 451 {
 452     maVerifyResults.insert( maVerifyResults.begin() + maVerifyResults.size(), *pResult );
 453     if ( pResult->nSignatureVerifyResult != com::sun::star::xml::crypto::SecurityOperationStatus_OPERATION_SUCCEEDED )
 454         mbError = true;
 455     return 0;
 456 }
 457
 458 IMPL_LINK( XMLSignatureHelper, StartVerifySignatureElement, const uno::Reference< com::sun::star::xml::sax::XAttributeList >*, pAttrs )
 459 {
 460     if ( !maStartVerifySignatureHdl.IsSet() || maStartVerifySignatureHdl.Call( (void*)pAttrs ) )
 461     {
 462         sal_Int32 nSignatureId = mpXSecController->getNewSecurityId();
 463         mpXSecController->addSignature( nSignatureId );
 464     }
 465
 466     return 0;
 467 }