|
1 /* |
|
2 * Copyright (c) 2006 Nokia Corporation and/or its subsidiary(-ies). |
|
3 * All rights reserved. |
|
4 * This component and the accompanying materials are made available |
|
5 * under the terms of "Eclipse Public License v1.0" |
|
6 * which accompanies this distribution, and is available |
|
7 * at the URL "http://www.eclipse.org/legal/epl-v10.html". |
|
8 * |
|
9 * Initial Contributors: |
|
10 * Nokia Corporation - initial contribution. |
|
11 * |
|
12 * Contributors: |
|
13 * |
|
14 * Description: Implementation of DevCertKeyDataManager |
|
15 * |
|
16 */ |
|
17 |
|
18 |
|
19 #include <bigint.h> |
|
20 #include "DevCertCreateKey.h" |
|
21 #include "DevTokenServerDebug.h" |
|
22 #include "SimpleDHKey.h" |
|
23 |
|
24 |
|
25 // ======== MEMBER FUNCTIONS ======== |
|
26 |
|
27 // --------------------------------------------------------------------------- |
|
28 // CSimpleDHKey::NewL() |
|
29 // --------------------------------------------------------------------------- |
|
30 // |
|
31 CSimpleDHKey* CSimpleDHKey::NewL(TInt aSize) |
|
32 { |
|
33 CSimpleDHKey* me = new (ELeave) CSimpleDHKey(); |
|
34 CleanupStack::PushL(me); |
|
35 me->ConstructL(aSize); |
|
36 CleanupStack::Pop(me); |
|
37 return (me); |
|
38 } |
|
39 |
|
40 |
|
41 // --------------------------------------------------------------------------- |
|
42 // CSimpleDHKey::ConstructL() |
|
43 // --------------------------------------------------------------------------- |
|
44 // |
|
45 void CSimpleDHKey::ConstructL(TInt aSize) |
|
46 { |
|
47 iKey = RInteger::NewRandomL(aSize - 1); |
|
48 } |
|
49 |
|
50 |
|
51 // --------------------------------------------------------------------------- |
|
52 // CSimpleDHKey::~CSimpleDHKey() |
|
53 // --------------------------------------------------------------------------- |
|
54 // |
|
55 CSimpleDHKey::~CSimpleDHKey() |
|
56 { |
|
57 iKey.Close(); |
|
58 } |
|
59 |
|
60 |
|
61 // --------------------------------------------------------------------------- |
|
62 // CDevCertKeyCreator::CDevCertKeyCreator() |
|
63 // --------------------------------------------------------------------------- |
|
64 // |
|
65 CDevCertKeyCreator::CDevCertKeyCreator() |
|
66 : CActive(EPriorityStandard), iAction(EIdle) |
|
67 { |
|
68 CActiveScheduler::Add(this); |
|
69 } |
|
70 |
|
71 |
|
72 // --------------------------------------------------------------------------- |
|
73 // CDevCertKeyCreator::~CDevCertKeyCreator() |
|
74 // --------------------------------------------------------------------------- |
|
75 // |
|
76 CDevCertKeyCreator::~CDevCertKeyCreator() |
|
77 { |
|
78 Cancel(); |
|
79 iCreatorThread.LogonCancel(iStatus); |
|
80 iCreatorThread.Close(); |
|
81 delete iCreateData; |
|
82 } |
|
83 |
|
84 |
|
85 // --------------------------------------------------------------------------- |
|
86 // CDevCertKeyCreator::DoCreateKeyAsyncL() |
|
87 // Spin a thread to create an appropriate key, if successful, |
|
88 // left on CleanupStack |
|
89 // --------------------------------------------------------------------------- |
|
90 // |
|
91 void CDevCertKeyCreator::DoCreateKeyAsyncL(CDevTokenKeyInfo::EKeyAlgorithm aAlgorithm, TInt aSize, TRequestStatus& aStatus) |
|
92 { |
|
93 if ( (aSize <= 0) || |
|
94 (aAlgorithm==CDevTokenKeyInfo::EInvalidAlgorithm) || |
|
95 ((aAlgorithm!=CDevTokenKeyInfo::ERSA) && (aAlgorithm!=CDevTokenKeyInfo::EDSA) && (aAlgorithm!=CDevTokenKeyInfo::EDH)) ) |
|
96 User::Leave(KErrArgument); |
|
97 |
|
98 iClientStatus = &aStatus; |
|
99 *iClientStatus = KRequestPending; |
|
100 |
|
101 iCreateData = new (ELeave) CDevCertKeyCreatorData(aAlgorithm, aSize); |
|
102 |
|
103 // OK, ready to start the async operation...do it in RunL |
|
104 iAction = EReadyToCreateKey; |
|
105 iStatus = KRequestPending; |
|
106 SetActive(); |
|
107 TRequestStatus* stat = &iStatus; |
|
108 User::RequestComplete(stat, KErrNone); |
|
109 } |
|
110 |
|
111 |
|
112 // --------------------------------------------------------------------------- |
|
113 // CDevCertKeyCreator::CreatorThreadEntryPoint() |
|
114 // HERE'S THE THREAD TO CREATE THE KEY |
|
115 // Code cannot leave in here, but not as many traps as it looks |
|
116 // --------------------------------------------------------------------------- |
|
117 // |
|
118 TInt CDevCertKeyCreator::CreatorThreadEntryPoint(TAny* aParameters) |
|
119 { |
|
120 CTrapCleanup* cleanup = CTrapCleanup::New(); |
|
121 if (!cleanup) |
|
122 User::Exit(KErrNoMemory); |
|
123 |
|
124 #ifdef _DEBUG |
|
125 DevTokenServerDebug::PauseOOMTest(); |
|
126 #endif |
|
127 |
|
128 ASSERT(aParameters); |
|
129 TInt result = KErrNone; |
|
130 CDevCertKeyCreatorData* createData = static_cast<CDevCertKeyCreatorData*>(aParameters); |
|
131 switch (createData->iKeyAlgorithm) |
|
132 { |
|
133 case(CDevTokenKeyInfo::ERSA): |
|
134 {// Currently, CRT signing is not supported, in case the key is to be used |
|
135 // for such, create a standard (private) key as part of the pair |
|
136 TRAP(result, createData->iKey.iRSAKey = CRSAKeyPair::NewL(createData->iSize)); |
|
137 } |
|
138 break; |
|
139 case (CDevTokenKeyInfo::EDSA): |
|
140 { |
|
141 TRAP(result, createData->iKey.iDSAKey = CDSAKeyPair::NewL(createData->iSize)); |
|
142 } |
|
143 break; |
|
144 case (CDevTokenKeyInfo::EDH): |
|
145 {// Generate a number that's less than N. The snag is that |
|
146 // we don't know what N is. We do know that it'll be of a |
|
147 // particular size, so we can safely generate any number |
|
148 // with less than iSize digits |
|
149 TRAP(result, createData->iKey.iDHKey = CSimpleDHKey::NewL(createData->iSize)); |
|
150 } |
|
151 break; |
|
152 default: |
|
153 ASSERT(EFalse); |
|
154 result = KErrArgument; |
|
155 } |
|
156 |
|
157 #ifdef _DEBUG |
|
158 DevTokenServerDebug::ResumeOOMTest(); |
|
159 #endif |
|
160 |
|
161 delete cleanup; |
|
162 User::Exit(result); |
|
163 return (KErrNone); |
|
164 } |
|
165 |
|
166 |
|
167 // --------------------------------------------------------------------------- |
|
168 // CDevCertKeyCreator::GetCreatedRSAKey() |
|
169 // --------------------------------------------------------------------------- |
|
170 // |
|
171 CRSAKeyPair* CDevCertKeyCreator::GetCreatedRSAKey() |
|
172 {// Check algorithm is as expected, return NULL if no key or wrong type |
|
173 if ( (!iCreateData) || (CDevTokenKeyInfo::ERSA!=iCreateData->iKeyAlgorithm) ) |
|
174 return (NULL); |
|
175 else |
|
176 return (iCreateData->iKey.iRSAKey); |
|
177 } |
|
178 |
|
179 |
|
180 // --------------------------------------------------------------------------- |
|
181 // CDevCertKeyCreator::GetCreatedDSAKey() |
|
182 // --------------------------------------------------------------------------- |
|
183 // |
|
184 CDSAKeyPair* CDevCertKeyCreator::GetCreatedDSAKey() |
|
185 {// Check algorithm is as expected, return NULL if no key or wrong type |
|
186 if ( (!iCreateData) || (CDevTokenKeyInfo::EDSA!=iCreateData->iKeyAlgorithm) ) |
|
187 return (NULL); |
|
188 else |
|
189 return (iCreateData->iKey.iDSAKey); |
|
190 } |
|
191 |
|
192 |
|
193 // --------------------------------------------------------------------------- |
|
194 // CDevCertKeyCreator::GetCreatedDHKey() |
|
195 // --------------------------------------------------------------------------- |
|
196 // |
|
197 void CDevCertKeyCreator::GetCreatedDHKey(RInteger& aDHKey) |
|
198 { |
|
199 ASSERT(iCreateData); |
|
200 ASSERT(CDevTokenKeyInfo::EDH==iCreateData->iKeyAlgorithm); |
|
201 aDHKey = iCreateData->iKey.iDHKey->DHKey(); |
|
202 } |
|
203 |
|
204 |
|
205 // --------------------------------------------------------------------------- |
|
206 // CDevCertKeyCreator::DoCancel() |
|
207 // --------------------------------------------------------------------------- |
|
208 // |
|
209 void CDevCertKeyCreator::DoCancel() |
|
210 {// Only do the cancel if in the middle of creating a key. Kill the thread. |
|
211 if (iAction!=EIdle) |
|
212 { |
|
213 TExitType exitType = iCreatorThread.ExitType(); |
|
214 if (EExitPending==exitType) // Still alive, so kill it |
|
215 iCreatorThread.Kill(KErrCancel); |
|
216 |
|
217 iAction = EIdle; |
|
218 } |
|
219 |
|
220 ASSERT(iClientStatus); |
|
221 User::RequestComplete(iClientStatus, KErrCancel); |
|
222 } |
|
223 |
|
224 |
|
225 // --------------------------------------------------------------------------- |
|
226 // CDevCertKeyCreator::RunL() |
|
227 // --------------------------------------------------------------------------- |
|
228 // |
|
229 void CDevCertKeyCreator::RunL() |
|
230 { |
|
231 ASSERT(iClientStatus); |
|
232 |
|
233 switch (iAction) |
|
234 { |
|
235 case (EReadyToCreateKey): |
|
236 {// Spin off the thread and pass it the parameter data, then stand by |
|
237 User::LeaveIfError(iCreatorThread.Create(KCreateKeyName, CreatorThreadEntryPoint, KDefaultStackSize, NULL, (TAny*)iCreateData)); |
|
238 iStatus = KRequestPending; |
|
239 iCreatorThread.Logon(iStatus); |
|
240 iAction = ECreatedKey; |
|
241 SetActive(); |
|
242 iCreatorThread.Resume(); |
|
243 } |
|
244 break; |
|
245 case (ECreatedKey): |
|
246 {// Notify the caller |
|
247 ASSERT(iClientStatus); |
|
248 |
|
249 // May be OOM creating logon, in which case we should kill thread |
|
250 if (iStatus.Int() == KErrNoMemory) |
|
251 { |
|
252 TExitType exitType = iCreatorThread.ExitType(); |
|
253 if (EExitPending==exitType) // Still alive, so kill it |
|
254 iCreatorThread.Kill(KErrNone); |
|
255 } |
|
256 |
|
257 User::RequestComplete(iClientStatus, iStatus.Int()); |
|
258 iAction = EIdle; |
|
259 } |
|
260 break; |
|
261 default: |
|
262 ASSERT(EFalse); |
|
263 } |
|
264 } |
|
265 |
|
266 |
|
267 // --------------------------------------------------------------------------- |
|
268 // CDevCertKeyCreator::RunError() |
|
269 // --------------------------------------------------------------------------- |
|
270 // |
|
271 TInt CDevCertKeyCreator::RunError(TInt anError) |
|
272 { |
|
273 if (iClientStatus) |
|
274 { |
|
275 User::RequestComplete(iClientStatus, anError); |
|
276 } |
|
277 return (KErrNone); |
|
278 } |
|
279 |
|
280 |
|
281 // --------------------------------------------------------------------------- |
|
282 // CDevCertKeyCreator::CDevCertKeyCreatorData::CDevCertKeyCreatorData() |
|
283 // --------------------------------------------------------------------------- |
|
284 // |
|
285 CDevCertKeyCreator::CDevCertKeyCreatorData::CDevCertKeyCreatorData(CDevTokenKeyInfo::EKeyAlgorithm aAlgorithm, TInt aSize) |
|
286 : iSize(aSize), iKeyAlgorithm(aAlgorithm) |
|
287 {} |
|
288 |
|
289 |
|
290 // --------------------------------------------------------------------------- |
|
291 // CDevCertKeyCreator::CDevCertKeyCreatorData::~CDevCertKeyCreatorData() |
|
292 // --------------------------------------------------------------------------- |
|
293 // |
|
294 CDevCertKeyCreator::CDevCertKeyCreatorData::~CDevCertKeyCreatorData() |
|
295 { |
|
296 if (iKeyAlgorithm==CDevTokenKeyInfo::ERSA) |
|
297 { |
|
298 delete iKey.iRSAKey; |
|
299 } |
|
300 else if (iKeyAlgorithm==CDevTokenKeyInfo::EDSA) |
|
301 { |
|
302 delete iKey.iDSAKey; |
|
303 } |
|
304 else if (iKeyAlgorithm==CDevTokenKeyInfo::EDH) |
|
305 { |
|
306 delete iKey.iDHKey; |
|
307 } |
|
308 } |
|
309 |
|
310 //EOF |
|
311 |