xmlsecurity/source/helper/ooxmlsecparser.cxx

   1 /* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */
   2 /*
   3  * This file is part of the LibreOffice project.
   4  *
   5  * This Source Code Form is subject to the terms of the Mozilla Public
   6  * License, v. 2.0. If a copy of the MPL was not distributed with this
   7  * file, You can obtain one at http://mozilla.org/MPL/2.0/.
   8  */
   9
  10
  11 #include "ooxmlsecparser.hxx"
  12 #include <xmlsignaturehelper.hxx>
  13
  14 using namespace com::sun::star;
  15
  16 OOXMLSecParser::OOXMLSecParser(XMLSignatureHelper& rXMLSignatureHelper, XSecController* pXSecController)
  17     : m_pXSecController(pXSecController)
  18     ,m_bInDigestValue(false)
  19     ,m_bInSignatureValue(false)
  20     ,m_bInX509Certificate(false)
  21     ,m_bInMdssiValue(false)
  22     ,m_bInSignatureComments(false)
  23     ,m_bInX509IssuerName(false)
  24     ,m_bInX509SerialNumber(false)
  25     ,m_bInCertDigest(false)
  26     ,m_bInValidSignatureImage(false)
  27     ,m_bInInvalidSignatureImage(false)
  28     ,m_bInSignatureLineId(false)
  29     ,m_bReferenceUnresolved(false)
  30     ,m_rXMLSignatureHelper(rXMLSignatureHelper)
  31 {
  32 }
  33
  34 OOXMLSecParser::~OOXMLSecParser()
  35 {
  36 }
  37
  38 void SAL_CALL OOXMLSecParser::startDocument()
  39 {
  40     if (m_xNextHandler.is())
  41         m_xNextHandler->startDocument();
  42 }
  43
  44 void SAL_CALL OOXMLSecParser::endDocument()
  45 {
  46     if (m_xNextHandler.is())
  47         m_xNextHandler->endDocument();
  48 }
  49
  50 void SAL_CALL OOXMLSecParser::startElement(const OUString& rName, const uno::Reference<xml::sax::XAttributeList>& xAttribs)
  51 {
  52     OUString aId = xAttribs->getValueByName("Id");
  53     if (!aId.isEmpty())
  54         m_pXSecController->collectToVerify(aId);
  55
  56     if (rName == "Signature")
  57     {
  58         m_rXMLSignatureHelper.StartVerifySignatureElement();
  59         m_pXSecController->addSignature();
  60         if (!aId.isEmpty())
  61             m_pXSecController->setId(aId);
  62     }
  63     else if (rName == "Reference")
  64     {
  65         OUString aURI = xAttribs->getValueByName("URI");
  66         if (aURI.startsWith("#"))
  67             m_pXSecController->addReference(aURI.copy(1), xml::crypto::DigestID::SHA1);
  68         else
  69         {
  70             m_aReferenceURI = aURI;
  71             m_bReferenceUnresolved = true;
  72         }
  73     }
  74     else if (rName == "Transform")
  75     {
  76         if (m_bReferenceUnresolved)
  77         {
  78             OUString aAlgorithm = xAttribs->getValueByName("Algorithm");
  79             if (aAlgorithm == ALGO_RELATIONSHIP)
  80             {
  81                 m_pXSecController->addStreamReference(m_aReferenceURI, /*isBinary=*/false, /*nDigestID=*/xml::crypto::DigestID::SHA256);
  82                 m_bReferenceUnresolved = false;
  83             }
  84         }
  85     }
  86     else if (rName == "DigestValue" && !m_bInCertDigest)
  87     {
  88         m_aDigestValue.clear();
  89         m_bInDigestValue = true;
  90     }
  91     else if (rName == "SignatureValue")
  92     {
  93         m_aSignatureValue.clear();
  94         m_bInSignatureValue = true;
  95     }
  96     else if (rName == "X509Certificate")
  97     {
  98         m_aX509Certificate.clear();
  99         m_bInX509Certificate = true;
 100     }
 101     else if (rName == "mdssi:Value")
 102     {
 103         m_aMdssiValue.clear();
 104         m_bInMdssiValue = true;
 105     }
 106     else if (rName == "SignatureComments")
 107     {
 108         m_aSignatureComments.clear();
 109         m_bInSignatureComments = true;
 110     }
 111     else if (rName == "X509IssuerName")
 112     {
 113         m_aX509IssuerName.clear();
 114         m_bInX509IssuerName = true;
 115     }
 116     else if (rName == "X509SerialNumber")
 117     {
 118         m_aX509SerialNumber.clear();
 119         m_bInX509SerialNumber = true;
 120     }
 121     else if (rName == "xd:CertDigest")
 122     {
 123         m_aCertDigest.clear();
 124         m_bInCertDigest = true;
 125     }
 126     else if (rName == "Object")
 127     {
 128         OUString sId = xAttribs->getValueByName("Id");
 129         if (sId == "idValidSigLnImg")
 130         {
 131             m_aValidSignatureImage.clear();
 132             m_bInValidSignatureImage = true;
 133         }
 134         else if (sId == "idInvalidSigLnImg")
 135         {
 136             m_aInvalidSignatureImage.clear();
 137             m_bInInvalidSignatureImage = true;
 138         }
 139         else
 140         {
 141             SAL_INFO("xmlsecurity.ooxml", "Unknown 'Object' child element: " << rName);
 142         }
 143     }
 144     else if (rName == "SetupID")
 145     {
 146         m_aSignatureLineId.clear();
 147         m_bInSignatureLineId = true;
 148     }
 149     else
 150     {
 151         SAL_INFO("xmlsecurity.ooxml", "Unknown xml element: " << rName);
 152     }
 153
 154     if (m_xNextHandler.is())
 155         m_xNextHandler->startElement(rName, xAttribs);
 156 }
 157
 158 void SAL_CALL OOXMLSecParser::endElement(const OUString& rName)
 159 {
 160     if (rName == "SignedInfo")
 161         m_pXSecController->setReferenceCount();
 162     else if (rName == "Reference")
 163     {
 164         if (m_bReferenceUnresolved)
 165         {
 166             // No transform algorithm found, assume binary.
 167             m_pXSecController->addStreamReference(m_aReferenceURI, /*isBinary=*/true, /*nDigestID=*/xml::crypto::DigestID::SHA256);
 168             m_bReferenceUnresolved = false;
 169         }
 170         m_pXSecController->setDigestValue(xml::crypto::DigestID::SHA256, m_aDigestValue);
 171     }
 172     else if (rName == "DigestValue" && !m_bInCertDigest)
 173         m_bInDigestValue = false;
 174     else if (rName == "SignatureValue")
 175     {
 176         m_pXSecController->setSignatureValue(m_aSignatureValue);
 177         m_bInSignatureValue = false;
 178     }
 179     else if (rName == "X509Certificate")
 180     {
 181         m_pXSecController->setX509Certificate(m_aX509Certificate);
 182         m_bInX509Certificate = false;
 183     }
 184     else if (rName == "mdssi:Value")
 185     {
 186         m_pXSecController->setDate(m_aMdssiValue);
 187         m_bInMdssiValue = false;
 188     }
 189     else if (rName == "SignatureComments")
 190     {
 191         m_pXSecController->setDescription(m_aSignatureComments);
 192         m_bInSignatureComments = false;
 193     }
 194     else if (rName == "X509IssuerName")
 195     {
 196         m_pXSecController->setX509IssuerName(m_aX509IssuerName);
 197         m_bInX509IssuerName = false;
 198     }
 199     else if (rName == "X509SerialNumber")
 200     {
 201         m_pXSecController->setX509SerialNumber(m_aX509SerialNumber);
 202         m_bInX509SerialNumber = false;
 203     }
 204     else if (rName == "xd:CertDigest")
 205     {
 206         m_pXSecController->setCertDigest(m_aCertDigest);
 207         m_bInCertDigest = false;
 208     }
 209     else if (rName == "Object")
 210     {
 211         if (m_bInValidSignatureImage)
 212         {
 213             m_pXSecController->setValidSignatureImage(m_aValidSignatureImage);
 214             m_bInValidSignatureImage = false;
 215         }
 216         else if (m_bInInvalidSignatureImage)
 217         {
 218             m_pXSecController->setInvalidSignatureImage(m_aInvalidSignatureImage);
 219             m_bInInvalidSignatureImage = false;
 220         }
 221     }
 222     else if (rName == "SetupID")
 223     {
 224         m_pXSecController->setSignatureLineId(m_aSignatureLineId);
 225         m_bInSignatureLineId = false;
 226     }
 227
 228     if (m_xNextHandler.is())
 229         m_xNextHandler->endElement(rName);
 230 }
 231
 232 void SAL_CALL OOXMLSecParser::characters(const OUString& rChars)
 233 {
 234     if (m_bInDigestValue && !m_bInCertDigest)
 235         m_aDigestValue += rChars;
 236     else if (m_bInSignatureValue)
 237         m_aSignatureValue += rChars;
 238     else if (m_bInX509Certificate)
 239         m_aX509Certificate += rChars;
 240     else if (m_bInMdssiValue)
 241         m_aMdssiValue += rChars;
 242     else if (m_bInSignatureComments)
 243         m_aSignatureComments += rChars;
 244     else if (m_bInX509IssuerName)
 245         m_aX509IssuerName += rChars;
 246     else if (m_bInX509SerialNumber)
 247         m_aX509SerialNumber += rChars;
 248     else if (m_bInCertDigest)
 249         m_aCertDigest += rChars;
 250     else if (m_bInValidSignatureImage)
 251         m_aValidSignatureImage += rChars;
 252     else if (m_bInInvalidSignatureImage)
 253         m_aInvalidSignatureImage += rChars;
 254     else if (m_bInSignatureLineId)
 255         m_aSignatureLineId += rChars;
 256
 257     if (m_xNextHandler.is())
 258         m_xNextHandler->characters(rChars);
 259 }
 260
 261 void SAL_CALL OOXMLSecParser::ignorableWhitespace(const OUString& rWhitespace)
 262 {
 263     if (m_xNextHandler.is())
 264         m_xNextHandler->ignorableWhitespace(rWhitespace);
 265 }
 266
 267 void SAL_CALL OOXMLSecParser::processingInstruction(const OUString& rTarget, const OUString& rData)
 268 {
 269     if (m_xNextHandler.is())
 270         m_xNextHandler->processingInstruction(rTarget, rData);
 271 }
 272
 273 void SAL_CALL OOXMLSecParser::setDocumentLocator(const uno::Reference<xml::sax::XLocator>& xLocator)
 274 {
 275     if (m_xNextHandler.is())
 276         m_xNextHandler->setDocumentLocator(xLocator);
 277 }
 278
 279 void SAL_CALL OOXMLSecParser::initialize(const uno::Sequence<uno::Any>& rArguments)
 280 {
 281     rArguments[0] >>= m_xNextHandler;
 282 }
 283
 284 /* vim:set shiftwidth=4 softtabstop=4 expandtab: */