cryptoservices/certificateandkeymgmt/tcertstore/t_certstoreout.cpp
author Santosh V Patil <santosh.v.patil@nokia.com>
Fri, 14 Aug 2009 22:14:14 +0530
changeset 4 8e4b1aa36db9
parent 0 2c201484c85f
child 8 35751d3474b7
permissions -rw-r--r--
Added python script to import Mozilla certificates into Symbian OS (Bug 287). Also added the Mozilla certificate store file.

/*
* Copyright (c) 1998-2009 Nokia Corporation and/or its subsidiary(-ies).
* All rights reserved.
* This component and the accompanying materials are made available
* under the terms of the License "Eclipse Public License v1.0"
* which accompanies this distribution, and is available
* at the URL "http://www.eclipse.org/legal/epl-v10.html".
*
* Initial Contributors:
* Nokia Corporation - initial contribution.
*
* Contributors:
*
* Description: 
* TCERTSTOREOUT.CPP
*
*/


#include "t_certstoreout.h"

X509CertWriter::X509CertWriter(Output& aOut)
	:iOut(aOut)
	{
	}

void X509CertWriter::WriteCert(const CX509Certificate& aCertificate)
	{
#ifdef SHOW_EXTENDED
	ShowSerialNumber(aCertificate.SerialNumber());
	ShowValidityPeriod(aCertificate);
	iOut.writeString(_L("Issuer Name = "));
	iOut.writeNewLine();	
	ShowDN(aCertificate.IssuerName());	
	iOut.writeString(_L("Subject Name = "));
	iOut.writeNewLine();	
	ShowDN(aCertificate.SubjectName());
	ShowSigningAlgorithm(aCertificate.SigningAlgorithm());
	ShowExtensions(aCertificate);
	WriteEncodings(aCertificate);
#endif // SHOW_EXTENDED
	iOut.writeString(_L("\t\tShort Issuer Name = "));
	HBufC* issuer = aCertificate.IssuerL();
	iOut.writeString(*issuer);
	iOut.writeNewLine();
	delete issuer;

	iOut.writeString(_L("\t\tShort Subject Name = "));
	HBufC* subject = aCertificate.SubjectL();
	iOut.writeString(*subject);
	iOut.writeNewLine();
	delete subject;
	}

// The rest of these are only compiled of SHOW_EXTENDED defined - this 
// eliminates warnings from WINS/UREL build
#ifdef SHOW_EXTENDED
void X509CertWriter::ShowSigningAlgorithm(const CSigningAlgorithmIdentifier& aSigningAlgorithm)
	{
	iOut.writeString(_L("Signed using: "));
	iOut.writeNewLine();
	iOut.writeSpaces(4);
	iOut.writeString(_L("Asymmetric algorithm = "));
	const CAlgorithmIdentifier& algId = aSigningAlgorithm.AsymmetricAlgorithm();
	switch(algId.Algorithm())
	{
	case ERSA:
		{
		iOut.writeString(_L("RSA"));
		break;
		}
	case EDSA:
		{
		iOut.writeString(_L("DSA"));
		break;
		}
	case EDH:
		{
		iOut.writeString(_L("DH"));
		break;
		}
	default:
		iOut.writeString(_L("Unknown"));
		break;
	}
	iOut.writeNewLine();
	iOut.writeSpaces(4);
	iOut.writeString(_L("Digest algorithm = "));
	const CAlgorithmIdentifier& digestId = aSigningAlgorithm.DigestAlgorithm();
	switch(digestId.Algorithm())
	{
	case EMD2:
		{
		iOut.writeString(_L("MD2"));
		break;
		}
	case EMD5:
		{
		iOut.writeString(_L("MD5"));
		break;
		}
	case ESHA1:
		{
		iOut.writeString(_L("SHA1"));
		break;
		}
	default:
		iOut.writeString(_L("Unknown"));
	}
	iOut.writeNewLine();
	}

void X509CertWriter::ShowSerialNumber(const TPtrC8& aSerialNumber)
	{
	iOut.writeString(_L("Serial Number = "));
	iOut.writeOctetString(aSerialNumber);
	iOut.writeNewLine();
	}

//dn display code
void X509CertWriter::ShowAVA(const CX520AttributeTypeAndValue& aAva)
	{
	iOut.writeString(aAva.Type());
	HBufC* val = aAva.ValueL();
	CleanupStack::PushL(val);
	iOut.writeString(_L(" = "));
	iOut.writeString(val->Des());
	CleanupStack::PopAndDestroy();
	}

void X509CertWriter::ShowDN(const CX500DistinguishedName& aName)
	{
	TInt count = aName.Count();
	for (TInt i = 0; i < count; i++)
		{
  		const CX520AttributeTypeAndValue& ava = aName.Element(i);
		iOut.writeSpaces(4);
		ShowAVA(ava);
		iOut.writeNewLine();
		}
	}

void X509CertWriter::ShowAKI(const CX509Certificate& aCert)
	{
	const CX509CertExtension* akiExt = aCert.Extension(KAuthorityKeyId);
	if (akiExt)
		{
		iOut.writeString(_L("Authority Key ID = "));
		iOut.writeNewLine();
		const CX509AuthorityKeyIdExt* ext = CX509AuthorityKeyIdExt::NewLC(akiExt->Data());
		const CArrayPtrFlat<CX509GeneralName>& authorityName = ext->AuthorityName();
		TInt count = authorityName.Count();
		if (count > 0)
			{
			iOut.writeSpaces(4);
			iOut.writeString(_L("Authority name = "));
			iOut.writeNewLine();
			for (TInt i = 0; i < count; i++)
				{
				ShowGN(*(authorityName.At(i)));
				}
			}
		if (ext->AuthorityCertSerialNumber().Length() > 0)
			{
			iOut.writeSpaces(4);
			iOut.writeString(_L("Authority cert serial no = "));
			iOut.writeOctetString(ext->AuthorityCertSerialNumber());
			iOut.writeNewLine();
			}
		iOut.writeSpaces(4);
		iOut.writeString(_L("Key Id = "));
		iOut.writeOctetString(ext->KeyId());
		iOut.writeNewLine();
		CleanupStack::PopAndDestroy();
		}
	}

void X509CertWriter::ShowSKI(const CX509Certificate& aCert)
	{
	const CX509CertExtension* skiExt = aCert.Extension(KSubjectKeyId);
	if (skiExt)
		{
		iOut.writeString(_L("Subject Key ID = "));
		iOut.writeNewLine();
		const CX509SubjectKeyIdExt* ext = CX509SubjectKeyIdExt::NewLC(skiExt->Data());
		iOut.writeSpaces(4);
		iOut.writeString(_L("Key Id = "));
		iOut.writeOctetString(ext->KeyId());
		iOut.writeNewLine();
		CleanupStack::PopAndDestroy();
		}
	}

void X509CertWriter::ShowGN(const CX509GeneralName& aName)
	{
	iOut.writeSpaces(4);
	switch(aName.Tag())
		{
		case 1:
			{
			//rfc822
			CX509RFC822NameSubtree* email = CX509RFC822NameSubtree::NewLC(aName.Data());
			const RArray<TPtrC>& rep = email->Rep();
			TInt count = rep.Count();
			for (TInt i = 0; i < count; i++)
				{
				iOut.writeString(rep[i]);
				iOut.writeSpaces(1);
				}
			iOut.writeNewLine();
			CleanupStack::PopAndDestroy();//email
			break;
			}
		case 2:
			{
			//dns name
			CX509DNSNameSubtree* dns = CX509DNSNameSubtree::NewLC(aName.Data());
			const RArray<TPtrC>& rep = dns->Rep();
			TInt count = rep.Count();
			for (TInt i = 0; i < count; i++)
				{
				iOut.writeString(rep[i]);
				iOut.writeSpaces(1);
				}
			CleanupStack::PopAndDestroy();//dns
			break;
			}
		case 4:
			{
			//DN
			CX500DistinguishedName* dN = CX500DistinguishedName::NewLC(aName.Data());
			ShowDN(*dN);
			CleanupStack::PopAndDestroy();
			break;
			}
		case 6:
			{
			//uri
			CX509IPBasedURI* uri = CX509IPBasedURI::NewLC(aName.Data());
			iOut.writeString(uri->Name());
			iOut.writeNewLine();
			CleanupStack::PopAndDestroy();//uri
			break;
			}
		case 7:
			{
			//ip address//!!!!not done for writing to file yet!!!
			CX509IPSubnetMask* ip = CX509IPSubnetMask::NewLC(aName.Data());
			TPtrC8 pBA(ip->BaseAddress());
			TInt counter;
			counter = pBA.Length();
			TPtrC8 pM(ip->Mask());
			counter = pM.Length();
			CleanupStack::PopAndDestroy();
			break;
			}
		}
	}


void X509CertWriter::ShowFingerprint(const CX509Certificate& aCertificate)
	{
	iOut.writeOctetString(aCertificate.Fingerprint());
	iOut.writeNewLine();
	}

void X509CertWriter::ShowValidityPeriod(const CX509Certificate& aCertificate)
	{
	const CValidityPeriod& vp = aCertificate.ValidityPeriod();
	iOut.writeString(_L("Validity Period = "));
	iOut.writeNewLine();
	const TTime& start = vp.Start();
	const TTime& finish = vp.Finish();
	TBuf<30> dateString1;
	start.FormatL(dateString1,(_L("%H%:1%T:%S %*E%*D %X%*N%Y %1 %2 %3")));

	iOut.writeSpaces(4);
	iOut.writeString(_L("Valid From = "));
	iOut.writeString(dateString1);
	iOut.writeNewLine();

	TBuf<30> dateString2;
	finish.FormatL(dateString2,(_L("%H%:1%T:%S %*E%*D %X%*N%Y %1 %2 %3")));

	iOut.writeSpaces(4);
	iOut.writeString(_L("Valid Until = "));

	iOut.writeString(dateString2);
	iOut.writeNewLine();
	}

//extensions
void X509CertWriter::ShowExtensions(const CX509Certificate& aCertificate)
	{
	const CArrayPtrFlat<CX509CertExtension>& exts = aCertificate.Extensions();
	TInt count = exts.Count();
	for (TInt i = 0; i < count; i++)
		{
		const CX509CertExtension* ext = exts.At(i);
		iOut.writeString(_L("extension"));
		iOut.writeNum(i);
		if (!(ext->Critical()))
			{
			iOut.writeString(_L(" not"));
			}
		iOut.writeString(_L(" critical"));
		iOut.writeString(_L(" ID = "));
		TPtrC id(ext->Id());
		iOut.writeString(id);
		iOut.writeNewLine();
		if (id == KBasicConstraints)
			{
			ShowBC(*ext);
			}
		if (id == KSubjectAltName)
			{
			iOut.writeString(_L("SubjectAltName: \n"));
			ShowAltName(*ext);
			}
		if (id == KIssuerAltName)
			{
			iOut.writeString(_L("IssuerAltName: \n"));
			ShowAltName(*ext);
			}
		if (id == KKeyUsage)
			{
			ShowKU(*ext);
			}
		if (id == KNameConstraints)
			{
			ShowNC(*ext);
			}
		if (id == KPolicyConstraints)
			{
			ShowPC(*ext);
			}
		if (id == KCertPolicies)
			{
			ShowCP(*ext);
			}
		if (id == KPolicyMapping)
			{
			ShowPM(*ext);
			}
		if (id == KAuthorityKeyId)
			{
			ShowAKI(aCertificate);
			}
		if (id == KSubjectKeyId)
			{
			ShowSKI(aCertificate);
			}
		if (id == KExtendedKeyUsage)
			{
			ShowEKU(*ext);
			}
		}
	}

void X509CertWriter::ShowBC(const CX509CertExtension& aExt)
	{
	iOut.writeString(_L("Basic Constraints:"));
	iOut.writeNewLine();
	CX509BasicConstraintsExt* ext = CX509BasicConstraintsExt::NewLC(aExt.Data());
	if (ext->IsCA())
		{
		iOut.writeSpaces(4);
		iOut.writeString(_L("CA cert"));
		iOut.writeNewLine();
		if (ext->MaxChainLength() < KMaxTInt)
			{
			iOut.writeSpaces(4);
			iOut.writeString(_L("Max Chain Length = "));
			iOut.writeNum(ext->MaxChainLength());
			iOut.writeNewLine();
			}
		}
	else
		{
		iOut.writeSpaces(4);
		iOut.writeString(_L("EE cert"));
		iOut.writeNewLine();
		}
	CleanupStack::PopAndDestroy();
	}

void X509CertWriter::ShowAltName(const CX509CertExtension& aExt)
	{
	CX509AltNameExt* ext = CX509AltNameExt::NewLC(aExt.Data());
	const CArrayPtrFlat<CX509GeneralName>& names = ext->AltName();
	TInt count = names.Count();
	for (TInt i = 0; i < count; i++)
		{
		ShowGN(*(names.At(i)));
		}
	CleanupStack::PopAndDestroy();
	}


_LIT(KDigSig, "digital signature");
_LIT(KNonRep, "non-repudiation");
_LIT(KKeyEnc, "key encipherment");
_LIT(KDataEnc, "data encipherment");
_LIT(KKeyAgree, "key agreement");
_LIT(KCertSign, "key cert sign");
_LIT(KCRLSign, "crl sign");
_LIT(KEnciph, "encipher only");
_LIT(KDeciph, "decipher only");

void X509CertWriter::ShowKU(const CX509CertExtension& aExt)
	{
	iOut.writeString(_L("Key Usage:"));
	iOut.writeNewLine();
	CX509KeyUsageExt* ext = CX509KeyUsageExt::NewLC(aExt.Data());
		if (ext->IsSet(EX509DigitalSignature))
			{
			iOut.writeSpaces(4);
			iOut.writeString(KDigSig);
			iOut.writeNewLine();
			}
		if (ext->IsSet(EX509NonRepudiation))
			{
			iOut.writeSpaces(4);
			iOut.writeString(KNonRep);
			iOut.writeNewLine();
			}
		if (ext->IsSet(EX509KeyEncipherment))
			{
			iOut.writeSpaces(4);
			iOut.writeString(KKeyEnc);
			iOut.writeNewLine();
			}
		if (ext->IsSet(EX509DataEncipherment))
			{
			iOut.writeSpaces(4);
			iOut.writeString(KDataEnc);
			iOut.writeNewLine();
			}
		if (ext->IsSet(EX509KeyAgreement))
			{
			iOut.writeSpaces(4);
			iOut.writeString(KKeyAgree);
			iOut.writeNewLine();
			}
		if (ext->IsSet(EX509KeyCertSign))
			{
			iOut.writeSpaces(4);
			iOut.writeString(KCertSign);
			iOut.writeNewLine();
			}
		if (ext->IsSet(EX509CRLSign))
			{
			iOut.writeSpaces(4);
			iOut.writeString(KCRLSign);
			iOut.writeNewLine();
			}
		if (ext->IsSet(EX509EncipherOnly))
			{
			iOut.writeSpaces(4);
			iOut.writeString(KEnciph);
			iOut.writeNewLine();
			}
		if (ext->IsSet(EX509DecipherOnly))
			{
			iOut.writeSpaces(4);
			iOut.writeString(KDeciph);
			iOut.writeNewLine();
			}		
	CleanupStack::PopAndDestroy();//ext
	}

void X509CertWriter::ShowSubtrees(const CArrayPtrFlat<CX509GeneralSubtree>& aSubtrees)
	{
	TInt count = aSubtrees.Count();
	for (TInt i = 0; i < count; i++)
		{
		const CX509GeneralSubtree* subtree = aSubtrees.At(i);
		ShowGN(subtree->Name());
		///!!!!!don't write these outFile either!!
		}
	}

void X509CertWriter::ShowNC(const CX509CertExtension& aExt)
	{//!!!!don't write these outFile

	CX509NameConstraintsExt* ext = CX509NameConstraintsExt::NewLC(aExt.Data());
	ShowSubtrees(ext->ExcludedSubtrees());
	ShowSubtrees(ext->PermittedSubtrees());
	CleanupStack::PopAndDestroy();
	}

void X509CertWriter::ShowPC(const CX509CertExtension& /*aExt*/)
	{//!!!!don't write these outFile
	//CX509PolicyConstraintsExt* ext = CX509PolicyConstraintsExt::NewLC(aExt.Data());
	//TX509PolicyConstraint required = ext->ExplicitPolicyRequired();
	//TX509PolicyConstraint mapping = ext->InhibitPolicyMapping();
	//CleanupStack::PopAndDestroy();
	}

void X509CertWriter::ShowCP(const CX509CertExtension& aExt)
	{
	iOut.writeString(_L("Cert Policies = "));
	iOut.writeNewLine();

	CX509CertPoliciesExt* ext = CX509CertPoliciesExt::NewLC(aExt.Data());
	const CArrayPtrFlat<CX509CertPolicyInfo>& policies = ext->Policies();
	TInt count = policies.Count();
	for (TInt i = 0; i < count; i++)
		{
		const CX509CertPolicyInfo* policy = policies.At(i);
		
		iOut.writeSpaces(4);
		iOut.writeString(_L("Policy ID = "));
		iOut.writeString(policy->Id());
		iOut.writeNewLine();
		const CArrayPtrFlat<CX509PolicyQualifierInfo>& qualifiers = policy->Qualifiers();
		TInt qCount = qualifiers.Count();

		if (qCount > 0)
			{

			iOut.writeSpaces(4);
			iOut.writeString(_L("Qualified by: "));
			iOut.writeNewLine();
			}

		for (TInt i = 0; i < qCount; i++)
			{
			CX509PolicyQualifierInfo* qualifier = qualifiers.At(i);

			iOut.writeSpaces(8);
			iOut.writeString(_L("Qualifier ID = "));
			iOut.writeString(qualifier->Id());
			iOut.writeNewLine();
			}
		}
	CleanupStack::PopAndDestroy();//ext
	}

void X509CertWriter::ShowPM(const CX509CertExtension& aExt)
	{//!!!!we don't write this one outFile either 
	CX509PolicyMappingExt* ext = CX509PolicyMappingExt::NewLC(aExt.Data());
	const CArrayPtrFlat<CX509PolicyMapping>& mappings = ext->Mappings();
	TInt count = mappings.Count();
	for (TInt i = 0; i < count; i++)
		{
		//const CX509PolicyMapping* mapping = mappings.At(i);
		}
	CleanupStack::PopAndDestroy();
	}


void X509CertWriter::ShowEKU(const CX509CertExtension& aExt)
	{
	iOut.writeString(_L("Extended Key Usage = "));
	iOut.writeNewLine();

	CX509ExtendedKeyUsageExt* ext = CX509ExtendedKeyUsageExt::NewLC(aExt.Data());
	const CArrayPtrFlat<HBufC>& usages = ext->KeyUsages();
	TInt count = usages.Count();
	for (TInt i = 0; i < count; i++)
		{
		iOut.writeSpaces(4);
		iOut.writeString(usages.At(i)->Des());
		iOut.writeNewLine();
		}
	CleanupStack::PopAndDestroy();
	}

void X509CertWriter::ShowSignature(const CX509Certificate& /*aCert*/)
	{
/*	HBufC8* sig = aCert.SignatureL();
	CleanupStack::PushL(sig);
	User::LeaveIfError(outFile.Write(sig->Des()));
	User::LeaveIfError(outFile.Flush()); // Commit data
	CleanupStack::PopAndDestroy();*/
	}

void X509CertWriter::WriteEncodings(const CX509Certificate& aCertificate)
	{
	iOut.writeString(_L("Version:"));
	iOut.writeNewLine();
	WriteEncoding(aCertificate, CX509Certificate::EVersionNumber);
	iOut.writeNewLine();

	iOut.writeString(_L("Serial Number:"));
	iOut.writeNewLine();
	WriteEncoding(aCertificate, CX509Certificate::ESerialNumber);
	iOut.writeNewLine();

	iOut.writeString(_L("Algorithm:"));
	iOut.writeNewLine();
	WriteEncoding(aCertificate, CX509Certificate::EAlgorithmId);
	iOut.writeNewLine();

	iOut.writeString(_L("Issuer:"));
	iOut.writeNewLine();
	WriteEncoding(aCertificate, CX509Certificate::EIssuerName);
	iOut.writeNewLine();

	iOut.writeString(_L("Validity:"));
	iOut.writeNewLine();
	WriteEncoding(aCertificate, CX509Certificate::EValidityPeriod);
	iOut.writeNewLine();

	iOut.writeString(_L("Subject:"));
	iOut.writeNewLine();
	WriteEncoding(aCertificate, CX509Certificate::ESubjectName);
	iOut.writeNewLine();

	iOut.writeString(_L("Public Key:"));
	iOut.writeNewLine();
	WriteEncoding(aCertificate, CX509Certificate::ESubjectPublicKeyInfo);
	iOut.writeNewLine();

	iOut.writeString(_L("Issuer ID:"));
	iOut.writeNewLine();
	WriteEncoding(aCertificate, CX509Certificate::EIssuerUID);
	iOut.writeNewLine();
	
	iOut.writeString(_L("Subject ID:"));
	iOut.writeNewLine();
	WriteEncoding(aCertificate, CX509Certificate::ESubjectUID);
	iOut.writeNewLine();

	iOut.writeString(_L("Extensions:"));
	iOut.writeNewLine();
	WriteEncoding(aCertificate, CX509Certificate::EExtensionList);
	iOut.writeNewLine();
	}

void X509CertWriter::WriteEncoding(const CX509Certificate& aCertificate, const TUint aIndex)
	{
	if (aCertificate.DataElementEncoding(aIndex))
		{
		iOut.writeOctetString(*(aCertificate.DataElementEncoding(aIndex)));
		}
	}

#endif // SHOW_EXTENDED

/**********************************************************/

WTLSCertWriter::WTLSCertWriter(Output& aOut)
	:iOut(aOut)
	{
	}

void WTLSCertWriter::WriteCert(const CWTLSCertificate& aCertificate)
	{
	iOut.writeString(_L("\t\tIssuer Name = "));
	HBufC* issuer = aCertificate.IssuerL();
	iOut.writeString(*issuer);
	delete issuer;
	iOut.writeNewLine();
	iOut.writeString(_L("\t\tSubject Name = "));
	HBufC* subject = aCertificate.SubjectL();
	iOut.writeString(*subject);
	delete subject;
	iOut.writeNewLine();
	}

void WTLSCertWriter::ShowName(const CWTLSName& /*aName*/)
	{
//	iOut.writeString(aName.Name());
	}