MCL/sf/mw/vpnclient: comparison vpnengine/pkiservice/src/pkisupport.cpp

equal deleted inserted replaced

-:33413c0669b9
+:c9c2ad51f972
 #include <unifiedcertstore.h>
 #include <mctwritablecertstore.h>
 #include "pkiwrapper.h"
 #include "PKIMapper.h"
+#include "mapdescriptor.h"
 #include "pkisupport.h"
 #include "pkisession.h"
 #include "log_r6.h"
 #include "pkiserviceassert.h"
 #include "pkiserviceconstants.h"
 CPKISupport::~CPKISupport()
 {
 LOG_("CPKISupport::~CPKISupport");
 Cancel();
-if(iCerts != NULL)
+iCerts.Close();
-{
-iCerts->Close();
-delete iCerts;
-}
 delete iCertFilter;
 delete iCertStore;
 iFSession.Close();
 iApplUids.Close();
-delete iImportCertMapping;
 delete iImportCertData;
 iEventMediator.Close();
 delete iCertInfoForLogging;
 iCertInfoForLogging = NULL;
 }
 //
 void  CPKISupport::StartInitializeL(const RMessage2& aMessage)
 {
 LOG_("-> CPKISupport::StartInitialize()");
 User::LeaveIfError(iFSession.Connect());
 iCertStore = CUnifiedCertStore::NewL(iFSession, ETrue);
-PKISERVICE_ASSERT(!iCerts);
-iCerts = new (ELeave) RMPointerArray<CCTCertInfo>;
 iMessage = aMessage;
 iCallerStatus = NULL;
 iSupportStatus = KErrNone;
 // ---------------------------------------------------------------------------
 //
 void  CPKISupport::ReadNextCertForImportL()
 {
 LOG_("-> CPKISupport::ImportNextCertL()");
-PKISERVICE_ASSERT(iImportCounter < iCerts->Count());
+PKISERVICE_ASSERT(iImportCounter < iCerts.Count());
 if(iImportCounter == 0)
 {
-LOG_1("Import %d certificates\n", iCerts->Count());
+LOG_1("Import %d certificates\n", iCerts.Count());
 }
 LOG_1("Import certificate:%d", iImportCounter);
-LOG_1("Label: %S", &((*iCerts)[iImportCounter]->Label()));
+LOG_1("Label: %S", &(iCerts[iImportCounter]->Label()));
-PKISERVICE_ASSERT((*iCerts)[iImportCounter]->CertificateFormat() == EX509Certificate);
-TSecurityObjectDescriptor descriptor;
-descriptor.SetSubjectKeyId(
-(*iCerts)[iImportCounter]->SubjectKeyId());
-descriptor.SetOwnerType(
-(TPKICertificateOwnerType)(*iCerts)[iImportCounter]->
-CertificateOwnerType());
-	descriptor.SetIsDeletable(
-	    (*iCerts)[iImportCounter]->IsDeletable());
-delete iImportCertMapping;
-iImportCertMapping = NULL;
-iImportCertMapping = new (ELeave) CMapDescriptor(descriptor);
-iImportCertMapping->SetMapObjectName((*iCerts)[iImportCounter]->Label());
 delete iImportCertData;
 iImportCertData = NULL;
-iImportCertData = HBufC8::NewL((*iCerts)[iImportCounter]->Size());
+iImportCertData = HBufC8::NewL(iCerts[iImportCounter]->Size());
 iImportCertDataPtr.Set(iImportCertData->Des());
-LOG_(" Values set OK, retrieving");
 iCertStore->Retrieve(
-*(*iCerts)[iImportCounter], iImportCertDataPtr, iStatus);
+*(iCerts[iImportCounter]), iImportCertDataPtr, iStatus);
 iPending = ECertRetrieve;
 SetActive();
 LOG_("<- CPKISupport::ImportCTFCertsL() SetActive() and ret: EFalse");
 }
 // ImportOneCTFCertL
 // ---------------------------------------------------------------------------
 //
 void CPKISupport::SaveCertInfoToCacheL()
 {
-if((iImportCertMapping != NULL) && (iImportCertData != NULL))
+LOG_("Saving cert info to cache");
-{
+PKISERVICE_ASSERT(iImportCertData != NULL);
-LOG_("Saving cert info to cache");
+CX509Certificate* certificate = CX509Certificate::NewLC(iImportCertDataPtr);
-CX509Certificate* certificate = CX509Certificate::NewLC(iImportCertDataPtr);
+const CCTCertInfo* currentCertInfo = iCerts[iImportCounter];
-const CSubjectPublicKeyInfo& publicKeyInfo = certificate->PublicKey();
+TPkiServiceStoreType storeType = EPkiStoreTypeAny;
-const TPtrC8 keyData = publicKeyInfo.KeyData();
+switch(currentCertInfo->Token().TokenType().Type().iUid)
+{
-TX509KeyFactory keyFactory;
+case STORETYPE_DEVICE_CERT_ID:
-switch(publicKeyInfo.AlgorithmId())
+storeType = EPkiStoreTypeDevice;
+break;
+case STORETYPE_USER_CERT_ID:
+storeType = EPkiStoreTypeUser;
+break;
+default:
+storeType = EPkiStoreTypeAny;
+break;
+}
+CMapDescriptor* newMapping = CMapDescriptor::NewL(currentCertInfo->Label(),
+*certificate,
+(TPKICertificateOwnerType)currentCertInfo->CertificateOwnerType(),
+storeType);
+CleanupStack::PushL(newMapping);
+newMapping->SetMapDeletable(currentCertInfo->IsDeletable());
+newMapping->SetMapApplications(iApplUids);
+iApplUids.Reset();
+User::LeaveIfError(iMapper.AddMapping(newMapping));
+CleanupStack::Pop(newMapping);
+CleanupStack::PopAndDestroy(certificate);
+iImportCounter++;
+}
+// ---------------------------------------------------------------------------
+// GetApplicationsOfCTFCertL
+// ---------------------------------------------------------------------------
+//
+TBool CPKISupport::GetApplicationsOfCTFCertL()
+{
+LOG_("-> CPKISupport::GetApplicationsOfCTFCertL()");
+PKISERVICE_ASSERT(iImportCertData != NULL);
+if(iToggleSwitch == EFalse)
+{
+if(iCerts[iImportCounter]->CertificateOwnerType() == ECACertificate)
 {
-case ERSA:
+PKISERVICE_ASSERT(iApplUids.Count() == 0);
-{
-iImportCertMapping->iKeyAlgorithm = EPKIRSA;
+iToggleSwitch = ETrue;
-const CRSAPublicKey* keyRSA = keyFactory.RSAPublicKeyL( keyData );
+// Get applications
-const TInteger&  n = keyRSA->N();
+iCertStore->Applications(*(iCerts[iImportCounter]), iApplUids, iStatus);
-iImportCertMapping->iKeySize = n.BitCount();
+iPending = EApplications;
-delete keyRSA;
+LOG_("<- CPKISupport::GetApplicationsOfCTFCertL() SetActive(), ret: ETrue");
-}
+SetActive();
-break;
+return ETrue;
-case EDSA:
-{
-iImportCertMapping->iKeyAlgorithm = EPKIDSA;
-TPtrC8 params = publicKeyInfo.EncodedParams();
-const CDSAPublicKey* keyDSA = keyFactory.DSAPublicKeyL( params, keyData );
-const TInteger& y = keyDSA->Y();
-iImportCertMapping->iKeySize = y.BitCount();
-delete keyDSA;
-}
-break;
-default:
-iImportCertMapping->iKeyAlgorithm = EPKIInvalidAlgorithm;
-break;
-}
-CleanupStack::PopAndDestroy(certificate);
-iWrapper.SaveIdentityL(*iImportCertMapping,
-iImportCertDataPtr,
-((*iCerts)[iImportCounter])->CertificateOwnerType());
-TInt storeType = (*iCerts)[iImportCounter]->Token().TokenType().Type().iUid;
-if ( storeType == STORETYPE_DEVICE_CERT_ID )
-{
-iImportCertMapping->SetCertStoreType(EPkiStoreTypeDevice);
-}
-else if ( storeType == STORETYPE_USER_CERT_ID )
-{
-iImportCertMapping->SetCertStoreType(EPkiStoreTypeUser);
 }
 else
 {
-iImportCertMapping->SetCertStoreType(EPkiStoreTypeAny);
+LOG_("<- CPKISupport::GetApplicationsOfCTFCertL() Not a CA cert, ret: EFalse");
+return EFalse;
 }
+}
-		for(TInt i=0;i<iApplUids.Count();i++)
+else
-			{
+{
-			iImportCertMapping->iApplUids.Append(iApplUids[i]);
+LOG_("<- CPKISupport::GetApplicationsOfCTFCertL() iToggleSwitch == ETrue, ret: EFalse");
-			}
+iToggleSwitch = EFalse;
-User::LeaveIfError(
+return EFalse;
-iMapper.AddMapping(*iImportCertMapping) );
+}
-iApplUids.Close();
-iImportCertMapping = NULL;
-iImportCounter++;
-}
-}
-// ---------------------------------------------------------------------------
-// GetApplicationsOfCTFCertL
-// ---------------------------------------------------------------------------
-//
-TBool  CPKISupport::GetApplicationsOfCTFCertL()
-{
-LOG_("-> CPKISupport::GetApplicationsOfCTFCertL()");
-	if((iImportCertMapping != NULL) && (iImportCertData != NULL))
-		{
-		if(iToggleSwitch == EFalse)
-			{
-			if((*iCerts)[iImportCounter]->CertificateOwnerType() == ECACertificate)
-				{
-				PKISERVICE_ASSERT(iApplUids.Count() == 0);
-				iToggleSwitch = ETrue;
-				// Get applications
-				iCertStore->Applications(*(*iCerts)[iImportCounter], iApplUids, iStatus);
-				iPending = EApplications;
-LOG_("<- CPKISupport::GetApplicationsOfCTFCertL() SetActive(), ret: ETrue");
-				SetActive();
-				return ETrue;
-				}
-			else
-				{
-LOG_("<- CPKISupport::GetApplicationsOfCTFCertL() Not a CA cert, ret: EFalse");
-				return EFalse;
-				}
-			}
-		else
-			{
-LOG_("<- CPKISupport::GetApplicationsOfCTFCertL() iToggleSwitch == ETrue, ret: EFalse");
-			iToggleSwitch = EFalse;
-			return EFalse;
-			}
-		}
-	else
-		{
-		return EFalse;
-		}
 }
 // ---------------------------------------------------------------------------
 // CancelCurrentOperation
 iKeyId.Zero();
 MCTWritableCertStore* certStore(NULL);
 CX509Certificate* tempCert = CX509Certificate::NewLC(aBufferPtr);
-iKeyId = tempCert->KeyIdentifierL();
+iKeyId = tempCert->SubjectKeyIdentifierL();
 CleanupStack::PopAndDestroy();
 if(aOwnerType == EUserCertificate)
 {
 if (iCertStoreType == EPkiStoreTypeDevice)
 // ---------------------------------------------------------------------------
 // ?description_if_needed
 // ---------------------------------------------------------------------------
 //
 void CPKISupport::AttachCertificateL(const TDesC& aLabel,
-const TPKIKeyIdentifier &aKeyId, const TDesC8 &aBufferPtr,
+const TDesC8 &aBufferPtr,
 TRequestStatus& aStatus)
 {
 TKeyIdentifier tempKeyId;
 CX509Certificate* certificate = CX509Certificate::NewLC(aBufferPtr);
 LOG_("Attach certificate");
 iSupportStatus = KErrNone;
-iKeyId = aKeyId;
+ExtractCertInfoL(aLabel, EUserCertificate, aBufferPtr);
-ExtractCertInfoL(aLabel, EUserCertificate, aBufferPtr);
+iKeyId = certificate->SubjectKeyIdentifierL();
-// fetch the keyId from the certificate
-tempKeyId = certificate->KeyIdentifierL();
-// If given keyId is empty, use the keyId from the certificate
-if(iKeyId.Length() == 0)
-{
-iKeyId = tempKeyId;
-}
 SetCallerStatusPending( aStatus );
 CleanupStack::PopAndDestroy(certificate);    // certificate
 iSubState = ESSComplete;
 LOG(Log::Printf(_L("-------------------")));
 certStore->Add(aLabel,
 EX509Certificate,
 EUserCertificate,
-&iKeyId,
+NULL,
 NULL,
 aBufferPtr,
 iStatus);
 iPending = ECertAdd;
 SetActive();
 // ---------------------------------------------------------------------------
 // ?description_if_needed
 // ---------------------------------------------------------------------------
 //
 void CPKISupport::RetrieveCertificateL(const TDesC &aLabel,
+const TPKIKeyIdentifier& aCertificateKeyId,
 TPtr8 &aBufferPtr, const TPKICertificateOwnerType& aType,
 TRequestStatus& aStatus)
 {
 LOG(Log::Printf(_L("Retrieve certificate\n")));
 iSupportStatus = KErrNone;
-iCerts->Close();
+iCerts.Close();
 iSubState = ESSContinue;
 iOutBufferPtr = &aBufferPtr;
 SetCallerStatusPending( aStatus );
-SelectCertificateL(aLabel, aType);
+SelectCertificateL(aLabel, aCertificateKeyId, aType);
 }
 // ---------------------------------------------------------------------------
 // ?description_if_needed
 // ---------------------------------------------------------------------------
 void CPKISupport::ContinueRetrieveCertificate()
 {
 iSubState = ESSComplete;
 iPending = ECertRetrieve;
-TUint certificateSize = (*iCerts)[0]->Size();
+TUint certificateSize = iCerts[0]->Size();
 iRequiredBufferLength = certificateSize;
 if (certificateSize <= iOutBufferPtr->MaxLength())
 {
-iCertStore->Retrieve(*(*iCerts)[0], *iOutBufferPtr, iStatus);
+iCertStore->Retrieve(*(iCerts[0]), *iOutBufferPtr, iStatus);
 SetActive();
 }
 else
 {
 iStatus = KRequestPending;
 of this cleanup - it's only necessary once, during PKI startup.
 */
 void CPKISupport::CleanupCertListL()
 {
 LOG_("Removing invalid certs (MIDP2 certs)");
-if (iCerts)
-{
+TInt certcount = iCerts.Count();
-TInt certcount = iCerts->Count();
+_LIT(KMidp2Label, "MIDP2");
-_LIT(KMidp2Label, "MIDP2");
+LOG_1("Total cert count, before cleanup: %d", iCerts.Count());
-LOG_1("Total cert count, before cleanup: %d", iCerts->Count());
+RMPointerArray<CCTCertInfo> removedInfos;
-RMPointerArray<CCTCertInfo> removedInfos;
+CleanupClosePushL(removedInfos);
-CleanupClosePushL(removedInfos);
+for (TInt i = certcount - 1; i >= 0; i--)
-for (TInt i = certcount - 1; i >= 0; i--)
+{
+CCTCertInfo* info = iCerts[i];
+if (info->Label().Compare(KMidp2Label) == 0 ||
+info->CertificateFormat() != EX509Certificate)
 {
-CCTCertInfo* info = (*iCerts)[i];
+// CCTCertInfo has private destructor
-if (info->Label().Compare(KMidp2Label) == 0 ||
+removedInfos.AppendL( info );
-info->CertificateFormat() != EX509Certificate)
+iCerts.Remove(i);
-{
+continue;
-// CCTCertInfo has private destructor
-removedInfos.AppendL( info );
-iCerts->Remove(i);
-continue;
-}
 }
-CleanupStack::PopAndDestroy(); // removedInfos
+}
-iCerts->Compress();
+CleanupStack::PopAndDestroy(); // removedInfos
-LOG_1("Total cert count, after cleanup: %d", iCerts->Count());
+iCerts.Compress();
-}
+LOG_1("Total cert count, after cleanup: %d", iCerts.Count());
-else
-{
-LOG_("Certs list empty!");
-}
 }
 // ---------------------------------------------------------------------------
 // DoRunOperationL
 // ---------------------------------------------------------------------------
 LOG_("CPKISupport::DoRunOperationL() EInitRetrieveCertList");
 // Cert list might be new. Remove all MIDP2 certificates first,
 // if it hasn't been already done
 CleanupCertListL();
 iInitState = EInitCompleteImportCerts;
+if(iImportCounter < iCerts.Count())
-//Falls through
+{
+ReadNextCertForImportL();
+}
+else
+{
+LOG_(" Cert store is empty");
+iInitState = EInitDone;
+iMessage.Complete(KErrNone);
+}
+break;
 case EInitCompleteImportCerts:
 LOG_("CPKISupport::DoRunOperationL() EInitCompleteImportCerts");
 			if(GetApplicationsOfCTFCertL())
 				{
 LOG_(" Getting cert's applications returned with FALSE, breaking");
 				break;
 				}
 SaveCertInfoToCacheL();    // Handles one certificate, if found
-if(iImportCounter < iCerts->Count())
+if(iImportCounter < iCerts.Count())
 {
 ReadNextCertForImportL();
 }
 else
 {
 LOG_(" All certificates imported, doing clean ups");
 // Cleanup
-delete iImportCertMapping;
-iImportCertMapping = NULL;
 delete iImportCertData;
 iImportCertData = NULL;
-iCerts->Close();
+iCerts.Close();
 delete iCertFilter;
 iCertFilter = NULL;
 iInitState = EInitDone;
 iMessage.Complete(KErrNone);
 case PkiService::EReadCertificate:
 switch(iSubState)
 {
 case ESSContinue:
 {
-if(iCerts->Count() > 1)
+if(iCerts.Count() > 1)
 {
 LOG(Log::Printf(_L("Duplicate Certificate\n")));
 iSubState = ESSCompleteRequest;
 iSupportStatus = KErrNotFound;
 }
-else if (iCerts->Count() < 1)
+else if (iCerts.Count() < 1)
 {
 LOG(Log::Printf(_L("No matching certificates found\n")));
 iSubState = ESSCompleteRequest;
 iSupportStatus = KErrNotFound;
 }
-					else if ((((*iCerts)[0])->CertificateOwnerType() == EUserCertificate) &&
+					else if ((iCerts[0]->CertificateOwnerType() == EUserCertificate) &&
-							(((iCertStoreType == EPkiStoreTypeDevice) && (((*iCerts)[0])->Token().Label().Compare(KDeviceCertStore)!=0)) ||
+							(((iCertStoreType == EPkiStoreTypeDevice) && (iCerts[0]->Token().Label().Compare(KDeviceCertStore)!=0)) ||
-	  	((iCertStoreType == EPkiStoreTypeUser) && (((*iCerts)[0])->Token().Label().Compare(KUserCertStore)!=0))))
+	  	((iCertStoreType == EPkiStoreTypeUser) && (iCerts[0]->Token().Label().Compare(KUserCertStore)!=0))))
 						{
 						LOG_1("User certificate's certificate info does not match certificate store type. Store type is: %d", iCertStoreType);
 						iSubState = ESSCompleteRequest;
 						iSupportStatus = KErrNotFound;
 						}
 case PkiService::ETrusted:
 switch(iSubState)
 {
 case ESSContinue:
 {
-if(iCerts->Count() != 1)
+if(iCerts.Count() != 1)
 {
 iSubState = ESSCompleteRequest;
 iSupportStatus = KErrNotFound;
 }
 else
 case PkiService::EApplications:
 switch(iSubState)
 {
 case ESSContinue:
 {
-if(iCerts->Count() != 1)
+if(iCerts.Count() != 1)
 {
 iSubState = ESSCompleteRequest;
 iSupportStatus = KErrNotFound;
 }
 else
 case PkiService::ERemoveCertificate:
 switch(iSubState)
 {
 case ESSContinue:
-if(iCerts->Count() != 1)
+if(iCerts.Count() != 1)
 {
 iSupportStatus = KPKIErrNotFound;
 iSubState = ESSCompleteRequest;
 }
 else
 // ---------------------------------------------------------------------------
 // ?description_if_needed
 // ---------------------------------------------------------------------------
 //
 void CPKISupport::RemoveCertificateL(const TDesC &aLabel,
+const TPKIKeyIdentifier& aCertificateKeyId,
 TRequestStatus& aStatus)
 {
 LOG(Log::Printf(_L("Remove certificate\n")));
 iSupportStatus = KErrNone;
-iCerts->Close();
+iCerts.Close();
 iSubState = ESSContinue;
 SetCallerStatusPending( aStatus );
-SelectCertificateL(aLabel);
+SelectCertificateL(aLabel, aCertificateKeyId);
 }
 // ---------------------------------------------------------------------------
 // ?description_if_needed
 // ---------------------------------------------------------------------------
 //
 void CPKISupport::ContinueRemoveCertificate()
 {
-iCertStore->Remove(*(*iCerts)[0], iStatus);
+iCertStore->Remove(*(iCerts[0]), iStatus);
 iPending = ECertRemove;
 iSubState = ESSComplete;
 SetActive();
 }
 // ---------------------------------------------------------------------------
 // ?description_if_needed
 // ---------------------------------------------------------------------------
 //
 void CPKISupport::SetTrustL(const TDesC &aLabel,
+const TPKIKeyIdentifier& aCertificateKeyId,
 TBool aTrusted, TRequestStatus& aStatus)
 {
 LOG(Log::Printf(_L("SetTrust\n")));
 iSupportStatus = KErrNone;
-iCerts->Close();
+iCerts.Close();
 iSubState = ESSContinue;
 iTrusted = aTrusted;
 SetCallerStatusPending( aStatus );
-SelectCertificateL(aLabel);
+SelectCertificateL(aLabel, aCertificateKeyId);
 }
 // ---------------------------------------------------------------------------
 // ?description_if_needed
 // ---------------------------------------------------------------------------
 //
 void CPKISupport::ContinueSetTrust()
 {
 iSubState = ESSComplete;
-iCertStore->SetTrust(*(*iCerts)[0], iTrusted, iStatus);
+iCertStore->SetTrust(*(iCerts[0]), iTrusted, iStatus);
 iPending = ESetTrust;
 SetActive();
 }
 // ---------------------------------------------------------------------------
 // ?description_if_needed
 // ---------------------------------------------------------------------------
 //
-void CPKISupport::TrustedL(const TDesC &aLabel, TRequestStatus& aStatus)
+void CPKISupport::TrustedL(const TDesC &aLabel,
+const TPKIKeyIdentifier& aCertificateKeyId,
+TRequestStatus& aStatus)
 {
 LOG(Log::Printf(_L("Trusted\n")));
 iSupportStatus = KErrNone;
-iCerts->Close();
+iCerts.Close();
 iSubState = ESSContinue;
 SetCallerStatusPending( aStatus );
-SelectCertificateL(aLabel);
+SelectCertificateL(aLabel, aCertificateKeyId);
 }
 // ---------------------------------------------------------------------------
 // ?description_if_needed
 // ---------------------------------------------------------------------------
 //
 void CPKISupport::ContinueTrusted()
 {
 iSubState = ESSComplete;
-iCertStore->Trusted(*(*iCerts)[0], iTrusted, iStatus);
+iCertStore->Trusted(*(iCerts[0]), iTrusted, iStatus);
 iPending = ETrusted;
 SetActive();
 }
 // ---------------------------------------------------------------------------
 // ?description_if_needed
 // ---------------------------------------------------------------------------
 //
-void CPKISupport::SetApplicabilityL(const TDesC &aLabel, const RArray<TUid>& aApplUids, TRequestStatus& aStatus)
+void CPKISupport::SetApplicabilityL(const TDesC &aLabel,
+const TPKIKeyIdentifier& aCertificateKeyId,
+const RArray<TUid>& aApplUids, TRequestStatus& aStatus)
 {
 LOG(Log::Printf(_L("SetApplicability\n")));
 iSupportStatus = KErrNone;
-iCerts->Close();
+iCerts.Close();
 iSubState = ESSContinue;
 	iApplUids.Close();
 	for(TInt i = 0;i<aApplUids.Count();i++)
 		{
 		iApplUids.Append(aApplUids[i]);
 		}
 SetCallerStatusPending( aStatus );
-SelectCertificateL(aLabel);
+SelectCertificateL(aLabel, aCertificateKeyId);
 }
 // ---------------------------------------------------------------------------
 // ContinueSetApplicability
 // ---------------------------------------------------------------------------
 //
 void CPKISupport::ContinueSetApplicability()
 {
-PKISERVICE_ASSERT(iCerts && iCerts->Count());
+PKISERVICE_ASSERT(iCerts.Count());
 iSubState = ESSComplete;
-iCertStore->SetApplicability(*(*iCerts)[0], iApplUids, iStatus);
+iCertStore->SetApplicability(*(iCerts[0]), iApplUids, iStatus);
 iPending = ESetApplicability;
 SetActive();
 }
 // ---------------------------------------------------------------------------
 // ?description_if_needed
 // ---------------------------------------------------------------------------
 //
-void CPKISupport::ApplicationsL(const TDesC &aLabel, TRequestStatus& aStatus)
+void CPKISupport::ApplicationsL(const TDesC &aLabel, const TPKIKeyIdentifier& aCertificateKeyId,
+TRequestStatus& aStatus)
 {
 LOG(Log::Printf(_L("Applications\n")));
 iSupportStatus = KErrNone;
-iCerts->Close();
+iCerts.Close();
 iSubState = ESSContinue;
 SetCallerStatusPending( aStatus );
-SelectCertificateL(aLabel);
+SelectCertificateL(aLabel, aCertificateKeyId);
 }
 // ---------------------------------------------------------------------------
 // ContinueApplications
 // ---------------------------------------------------------------------------
 //
 void CPKISupport::ContinueApplications()
 {
 iSubState = ESSComplete;
 	iApplUids.Close();
-iCertStore->Applications(*(*iCerts)[0], iApplUids, iStatus);
+iCertStore->Applications(*(iCerts[0]), iApplUids, iStatus);
 iPending = EApplications;
 SetActive();
 }
 // ---------------------------------------------------------------------------
 // SelectCertificateL
 // ---------------------------------------------------------------------------
 //
 void CPKISupport::SelectCertificateL(const TDesC &aLabel,
+const TPKIKeyIdentifier& aCertificateKeyId,
 const TPKICertificateOwnerType& aType )
 {
 delete iCertFilter;
 iCertFilter = NULL;
 iCertFilter = CCertAttributeFilter::NewL();
 LOG(Log::Printf(_L(" Select by label: %S\n"), &aLabel));
 iCertFilter->SetLabel(aLabel);
+iCertFilter->SetSubjectKeyId(aCertificateKeyId);
 if (aType != 0)
 {
 LOG_1(" Select by owner type: %d", aType);
 iCertFilter->SetOwnerType(TCertificateOwnerType(aType));
 }
 void CPKISupport::GetCertificateStoreListAsync()
 {
 LOG_1("-> CPKISupport::GetCertificateStoreListAsync() iSubState:%d",
 iSubState );
 // preconditions
-PKISERVICE_ASSERT( iCerts && iCertFilter && iStatus != KRequestPending );
+PKISERVICE_ASSERT( iCertFilter && iStatus != KRequestPending );
 LOG_1("CPKISupport::GetSertificateStoreListAsync iSubState:%d",
 iSubState );
 // Get list of all known certificates
-iCertStore->List(*iCerts, *iCertFilter, iStatus);
+iCertStore->List(iCerts, *iCertFilter, iStatus);
 iPending = EListCerts;
 SetActive();
 LOG_("<- CPKISupport::GetCertificateStoreListAsync()");
 }

changeset 1	c9c2ad51f972
parent 0	33413c0669b9
child 4	29b591713d44