xmlsecurity/source/xmlsec/nss/xmlencryption_nssimpl.cxx

   1 /*************************************************************************
   2  *
   3  * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
   4  *
   5  * Copyright 2008 by Sun Microsystems, Inc.
   6  *
   7  * OpenOffice.org - a multi-platform office productivity suite
   8  *
   9  * $RCSfile: xmlencryption_nssimpl.cxx,v $
  10  * $Revision: 1.10 $
  11  *
  12  * This file is part of OpenOffice.org.
  13  *
  14  * OpenOffice.org is free software: you can redistribute it and/or modify
  15  * it under the terms of the GNU Lesser General Public License version 3
  16  * only, as published by the Free Software Foundation.
  17  *
  18  * OpenOffice.org is distributed in the hope that it will be useful,
  19  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  20  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  21  * GNU Lesser General Public License version 3 for more details
  22  * (a copy is included in the LICENSE file that accompanied this code).
  23  *
  24  * You should have received a copy of the GNU Lesser General Public License
  25  * version 3 along with OpenOffice.org.  If not, see
  26  * <http://www.openoffice.org/license.html>
  27  * for a copy of the LGPLv3 License.
  28  *
  29  ************************************************************************/
  30
  31 // MARKER(update_precomp.py): autogen include statement, do not remove
  32 #include "precompiled_xmlsecurity.hxx"
  33 #include <sal/config.h>
  34 #include <rtl/uuid.h>
  35 #include "xmlencryption_nssimpl.hxx"
  36
  37 #ifndef _XMLDOCUMENTWRAPPER_XMLSECIMPL_HXX_
  38 #include "xmldocumentwrapper_xmlsecimpl.hxx"
  39 #endif
  40
  41 #ifndef _XMLELEMENTWRAPPER_XMLSECIMPL_HXX_
  42 #include "xmlelementwrapper_xmlsecimpl.hxx"
  43 #endif
  44
  45 #ifndef _SECURITYENVIRONMENT_NSSIMPL_HXX_
  46 #include "securityenvironment_nssimpl.hxx"
  47 #endif
  48 #include "errorcallback.hxx"
  49
  50 #include <sal/types.h>
  51 //For reasons that escape me, this is what xmlsec does when size_t is not 4
  52 #if SAL_TYPES_SIZEOFPOINTER != 4
  53 #    define XMLSEC_NO_SIZE_T
  54 #endif
  55 #include "xmlsec/xmlsec.h"
  56 #include "xmlsec/xmltree.h"
  57 #include "xmlsec/xmlenc.h"
  58 #include "xmlsec/crypto.h"
  59
  60 #ifdef UNX
  61 #define stricmp strcasecmp
  62 #endif
  63
  64 using namespace ::com::sun::star::uno ;
  65 using namespace ::com::sun::star::lang ;
  66 using ::com::sun::star::lang::XMultiServiceFactory ;
  67 using ::com::sun::star::lang::XSingleServiceFactory ;
  68 using ::rtl::OUString ;
  69
  70 using ::com::sun::star::xml::wrapper::XXMLElementWrapper ;
  71 using ::com::sun::star::xml::wrapper::XXMLDocumentWrapper ;
  72 using ::com::sun::star::xml::crypto::XSecurityEnvironment ;
  73 using ::com::sun::star::xml::crypto::XXMLEncryption ;
  74 using ::com::sun::star::xml::crypto::XXMLEncryptionTemplate ;
  75 using ::com::sun::star::xml::crypto::XXMLSecurityContext ;
  76 using ::com::sun::star::xml::crypto::XSecurityEnvironment ;
  77 using ::com::sun::star::xml::crypto::XMLEncryptionException ;
  78
  79 XMLEncryption_NssImpl :: XMLEncryption_NssImpl( const Reference< XMultiServiceFactory >& aFactory ) : m_xServiceManager( aFactory ) {
  80 }
  81
  82 XMLEncryption_NssImpl :: ~XMLEncryption_NssImpl() {
  83 }
  84
  85 /* XXMLEncryption */
  86 Reference< XXMLEncryptionTemplate >
  87 SAL_CALL XMLEncryption_NssImpl :: encrypt(
  88     const Reference< XXMLEncryptionTemplate >& aTemplate ,
  89     const Reference< XSecurityEnvironment >& aEnvironment
  90 ) throw( com::sun::star::xml::crypto::XMLEncryptionException,
  91          com::sun::star::uno::SecurityException )
  92 {
  93     xmlSecKeysMngrPtr pMngr = NULL ;
  94     xmlSecEncCtxPtr pEncCtx = NULL ;
  95     xmlNodePtr pEncryptedData = NULL ;
  96     xmlNodePtr pContent = NULL ;
  97
  98     if( !aTemplate.is() )
  99         throw RuntimeException() ;
 100
 101     if( !aEnvironment.is() )
 102         throw RuntimeException() ;
 103
 104     //Get Keys Manager
 105     Reference< XUnoTunnel > xSecTunnel( aEnvironment , UNO_QUERY ) ;
 106     if( !xSecTunnel.is() ) {
 107          throw RuntimeException() ;
 108     }
 109
 110 #if 0
 111     XMLSecurityContext_NssImpl* pSecCtxt = ( XMLSecurityContext_NssImpl* )xSecTunnel->getSomething( XMLSecurityContext_NssImpl::getUnoTunnelId() ) ;
 112     if( pSecCtxt == NULL )
 113         throw RuntimeException() ;
 114 #endif
 115
 116     SecurityEnvironment_NssImpl* pSecEnv =
 117         reinterpret_cast<SecurityEnvironment_NssImpl*>(
 118             sal::static_int_cast<sal_uIntPtr>(xSecTunnel->getSomething( SecurityEnvironment_NssImpl::getUnoTunnelId() ))) ;
 119     if( pSecEnv == NULL )
 120         throw RuntimeException() ;
 121
 122     //Get the encryption template
 123     Reference< XXMLElementWrapper > xTemplate = aTemplate->getTemplate() ;
 124     if( !xTemplate.is() ) {
 125         throw RuntimeException() ;
 126     }
 127
 128     Reference< XUnoTunnel > xTplTunnel( xTemplate , UNO_QUERY ) ;
 129     if( !xTplTunnel.is() ) {
 130         throw RuntimeException() ;
 131     }
 132
 133     XMLElementWrapper_XmlSecImpl* pTemplate =
 134         reinterpret_cast<XMLElementWrapper_XmlSecImpl*>(
 135             sal::static_int_cast<sal_uIntPtr>(
 136                 xTplTunnel->getSomething( XMLElementWrapper_XmlSecImpl::getUnoTunnelImplementationId() )));
 137     if( pTemplate == NULL ) {
 138         throw RuntimeException() ;
 139     }
 140
 141     //MM : Get the element to be encrypted
 142     Reference< XXMLElementWrapper > xTarget = aTemplate->getTarget() ;
 143     if( !xTarget.is() ) {
 144         throw XMLEncryptionException() ;
 145     }
 146
 147     Reference< XUnoTunnel > xTgtTunnel( xTarget , UNO_QUERY ) ;
 148     if( !xTgtTunnel.is() ) {
 149         throw XMLEncryptionException() ;
 150     }
 151
 152     XMLElementWrapper_XmlSecImpl* pTarget =
 153         reinterpret_cast<XMLElementWrapper_XmlSecImpl*>(
 154             sal::static_int_cast<sal_uIntPtr>(
 155                 xTgtTunnel->getSomething( XMLElementWrapper_XmlSecImpl::getUnoTunnelImplementationId() )));
 156     if( pTarget == NULL ) {
 157         throw RuntimeException() ;
 158     }
 159
 160     pContent = pTarget->getNativeElement() ;
 161     //MM : end
 162
 163     if( pContent == NULL ) {
 164         throw XMLEncryptionException() ;
 165     }
 166
 167     /* MM : remove the following 2 lines
 168     xmlUnlinkNode(pContent);
 169     xmlAddNextSibling(pEncryptedData, pContent);
 170     */
 171
 172     //remember the position of the element to be signed
 173     sal_Bool isParentRef = sal_True;
 174     xmlNodePtr pParent = pEncryptedData->parent;
 175     xmlNodePtr referenceNode;
 176
 177     if (pEncryptedData == pParent->children)
 178     {
 179         referenceNode = pParent;
 180     }
 181     else
 182     {
 183         referenceNode = pEncryptedData->prev;
 184         isParentRef = sal_False;
 185     }
 186
 187      setErrorRecorder( );
 188
 189     pMngr = pSecEnv->createKeysManager() ; //i39448
 190     if( !pMngr ) {
 191         throw RuntimeException() ;
 192     }
 193
 194     //Create Encryption context
 195     pEncCtx = xmlSecEncCtxCreate( pMngr ) ;
 196     if( pEncCtx == NULL )
 197     {
 198         pSecEnv->destroyKeysManager( pMngr ) ; //i39448
 199         //throw XMLEncryptionException() ;
 200         clearErrorRecorder();
 201         return aTemplate;
 202     }
 203
 204     pEncryptedData = pTemplate->getNativeElement() ;
 205
 206     //Find the element to be encrypted.
 207     /* MM : remove the old method to get the target element
 208     //This element is wrapped in the CipherValue sub-element.
 209     xmlNodePtr pCipherData = pEncryptedData->children;
 210     while (pCipherData != NULL && stricmp((const char *)(pCipherData->name), "CipherData"))
 211     {
 212         pCipherData = pCipherData->next;
 213     }
 214
 215     if( pCipherData == NULL ) {
 216         xmlSecEncCtxDestroy( pEncCtx ) ;
 217         throw XMLEncryptionException() ;
 218     }
 219
 220     xmlNodePtr pCipherValue = pCipherData->children;
 221     while (pCipherValue != NULL && stricmp((const char *)(pCipherValue->name), "CipherValue"))
 222     {
 223         pCipherValue = pCipherValue->next;
 224     }
 225
 226     if( pCipherValue == NULL ) {
 227         xmlSecEncCtxDestroy( pEncCtx ) ;
 228         throw XMLEncryptionException() ;
 229     }
 230
 231     pContent = pCipherValue->children;
 232     */
 233
 234     //Encrypt the template
 235     if( xmlSecEncCtxXmlEncrypt( pEncCtx , pEncryptedData , pContent ) < 0 )
 236     {
 237         xmlSecEncCtxDestroy( pEncCtx ) ;
 238         pSecEnv->destroyKeysManager( pMngr ) ; //i39448
 239
 240         //throw XMLEncryptionException() ;
 241         clearErrorRecorder();
 242         return aTemplate;
 243     }
 244
 245     xmlSecEncCtxDestroy( pEncCtx ) ;
 246     pSecEnv->destroyKeysManager( pMngr ) ; //i39448
 247
 248     //get the new EncryptedData element
 249     if (isParentRef)
 250     {
 251         pTemplate->setNativeElement(referenceNode->children) ;
 252     }
 253     else
 254     {
 255         pTemplate->setNativeElement(referenceNode->next);
 256     }
 257
 258     return aTemplate ;
 259 }
 260
 261 /* XXMLEncryption */
 262 Reference< XXMLEncryptionTemplate >
 263 SAL_CALL XMLEncryption_NssImpl :: decrypt(
 264     const Reference< XXMLEncryptionTemplate >& aTemplate ,
 265     const Reference< XXMLSecurityContext >& aSecurityCtx
 266 ) throw( com::sun::star::xml::crypto::XMLEncryptionException ,
 267          com::sun::star::uno::SecurityException) {
 268     xmlSecKeysMngrPtr pMngr = NULL ;
 269     xmlSecEncCtxPtr pEncCtx = NULL ;
 270     xmlNodePtr pEncryptedData = NULL ;
 271
 272     if( !aTemplate.is() )
 273         throw RuntimeException() ;
 274
 275     if( !aSecurityCtx.is() )
 276         throw RuntimeException() ;
 277
 278     //Get the encryption template
 279     Reference< XXMLElementWrapper > xTemplate = aTemplate->getTemplate() ;
 280     if( !xTemplate.is() ) {
 281         throw RuntimeException() ;
 282     }
 283
 284     Reference< XUnoTunnel > xTplTunnel( xTemplate , UNO_QUERY ) ;
 285     if( !xTplTunnel.is() ) {
 286         throw RuntimeException() ;
 287     }
 288
 289     XMLElementWrapper_XmlSecImpl* pTemplate =
 290         reinterpret_cast<XMLElementWrapper_XmlSecImpl*>(
 291             sal::static_int_cast<sal_uIntPtr>(
 292                 xTplTunnel->getSomething( XMLElementWrapper_XmlSecImpl::getUnoTunnelImplementationId() )));
 293     if( pTemplate == NULL ) {
 294         throw RuntimeException() ;
 295     }
 296
 297     pEncryptedData = pTemplate->getNativeElement() ;
 298
 299     //remember the position of the element to be signed
 300     sal_Bool isParentRef = sal_True;
 301     xmlNodePtr pParent = pEncryptedData->parent;
 302     xmlNodePtr referenceNode;
 303
 304     if (pEncryptedData == pParent->children)
 305     {
 306         referenceNode = pParent;
 307     }
 308     else
 309     {
 310         referenceNode = pEncryptedData->prev;
 311         isParentRef = sal_False;
 312     }
 313
 314      setErrorRecorder( );
 315
 316     sal_Int32 nSecurityEnvironment = aSecurityCtx->getSecurityEnvironmentNumber();
 317     sal_Int32 i;
 318
 319     for (i=0; i<nSecurityEnvironment; ++i)
 320     {
 321         Reference< XSecurityEnvironment > aEnvironment = aSecurityCtx->getSecurityEnvironmentByIndex(i);
 322
 323         //Get Keys Manager
 324         Reference< XUnoTunnel > xSecTunnel( aEnvironment , UNO_QUERY ) ;
 325         if( !aEnvironment.is() ) {
 326              throw RuntimeException() ;
 327         }
 328
 329         SecurityEnvironment_NssImpl* pSecEnv =
 330             reinterpret_cast<SecurityEnvironment_NssImpl*>(
 331                 sal::static_int_cast<sal_uIntPtr>(
 332                     xSecTunnel->getSomething( SecurityEnvironment_NssImpl::getUnoTunnelId() )));
 333         if( pSecEnv == NULL )
 334             throw RuntimeException() ;
 335
 336         pMngr = pSecEnv->createKeysManager() ; //i39448
 337         if( !pMngr ) {
 338             throw RuntimeException() ;
 339         }
 340
 341         //Create Encryption context
 342         pEncCtx = xmlSecEncCtxCreate( pMngr ) ;
 343         if( pEncCtx == NULL )
 344         {
 345             pSecEnv->destroyKeysManager( pMngr ) ; //i39448
 346             //throw XMLEncryptionException() ;
 347             clearErrorRecorder();
 348             return aTemplate;
 349         }
 350
 351         //Decrypt the template
 352         if(!( xmlSecEncCtxDecrypt( pEncCtx , pEncryptedData ) < 0 || pEncCtx->result == NULL ))
 353         {
 354             //The decryption succeeds
 355
 356             //Destroy the encryption context
 357             xmlSecEncCtxDestroy( pEncCtx ) ;
 358             pSecEnv->destroyKeysManager( pMngr ) ; //i39448
 359
 360             //get the decrypted element
 361             XMLElementWrapper_XmlSecImpl * ret = new XMLElementWrapper_XmlSecImpl(isParentRef?
 362                 (referenceNode->children):(referenceNode->next));
 363
 364             //return ret;
 365             aTemplate->setTemplate(ret);
 366             break;
 367         }
 368         else
 369         {
 370             //The decryption fails, continue with the next security environment
 371             xmlSecEncCtxDestroy( pEncCtx ) ;
 372             pSecEnv->destroyKeysManager( pMngr ) ; //i39448
 373         }
 374     }
 375
 376     clearErrorRecorder();
 377     return aTemplate;
 378 }
 379
 380 /* XInitialization */
 381 void SAL_CALL XMLEncryption_NssImpl :: initialize( const Sequence< Any >& /*aArguments*/ ) throw( Exception, RuntimeException ) {
 382     // TBD
 383 } ;
 384
 385 /* XServiceInfo */
 386 OUString SAL_CALL XMLEncryption_NssImpl :: getImplementationName() throw( RuntimeException ) {
 387     return impl_getImplementationName() ;
 388 }
 389
 390 /* XServiceInfo */
 391 sal_Bool SAL_CALL XMLEncryption_NssImpl :: supportsService( const OUString& serviceName) throw( RuntimeException ) {
 392     Sequence< OUString > seqServiceNames = getSupportedServiceNames() ;
 393     const OUString* pArray = seqServiceNames.getConstArray() ;
 394     for( sal_Int32 i = 0 ; i < seqServiceNames.getLength() ; i ++ ) {
 395         if( *( pArray + i ) == serviceName )
 396             return sal_True ;
 397     }
 398     return sal_False ;
 399 }
 400
 401 /* XServiceInfo */
 402 Sequence< OUString > SAL_CALL XMLEncryption_NssImpl :: getSupportedServiceNames() throw( RuntimeException ) {
 403     return impl_getSupportedServiceNames() ;
 404 }
 405
 406 //Helper for XServiceInfo
 407 Sequence< OUString > XMLEncryption_NssImpl :: impl_getSupportedServiceNames() {
 408     ::osl::Guard< ::osl::Mutex > aGuard( ::osl::Mutex::getGlobalMutex() ) ;
 409     Sequence< OUString > seqServiceNames( 1 ) ;
 410     seqServiceNames.getArray()[0] = OUString::createFromAscii( "com.sun.star.xml.crypto.XMLEncryption" ) ;
 411     return seqServiceNames ;
 412 }
 413
 414 OUString XMLEncryption_NssImpl :: impl_getImplementationName() throw( RuntimeException ) {
 415     return OUString::createFromAscii( "com.sun.star.xml.security.bridge.xmlsec.XMLEncryption_NssImpl" ) ;
 416 }
 417
 418 //Helper for registry
 419 Reference< XInterface > SAL_CALL XMLEncryption_NssImpl :: impl_createInstance( const Reference< XMultiServiceFactory >& aServiceManager ) throw( RuntimeException ) {
 420     return Reference< XInterface >( *new XMLEncryption_NssImpl( aServiceManager ) ) ;
 421 }
 422
 423 Reference< XSingleServiceFactory > XMLEncryption_NssImpl :: impl_createFactory( const Reference< XMultiServiceFactory >& aServiceManager ) {
 424     //Reference< XSingleServiceFactory > xFactory ;
 425     //xFactory = ::cppu::createSingleFactory( aServiceManager , impl_getImplementationName , impl_createInstance , impl_getSupportedServiceNames ) ;
 426     //return xFactory ;
 427     return ::cppu::createSingleFactory( aServiceManager , impl_getImplementationName() , impl_createInstance , impl_getSupportedServiceNames() ) ;
 428 }
 429