sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-09 00:00:53 -04:00
Code Issues Projects Releases Wiki Activity

Add a getter for signed PKCS#7 attributes

Browse Source
This commit is contained in:
Martin Willi 2012-11-27 17:10:23 +01:00
parent 5a50bec9d2
commit d3d706f4fc
4 changed files with 40 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
src/libstrongswan/credentials/containers/pkcs7.h
View File

@ -34,6 +34,20 @@ struct pkcs7_t {
* Implements container_t. * Implements container_t.
*/ */
container_t container; container_t container;
/**
* Get an authenticated PKCS#9 attribute from PKCS#7 signerInfo.
*
* To select the signerInfo structure to get the attribute from, pass
* the enumerator position from container_t.create_signature_enumerator().
*
* @param oid OID from the attribute to get
* @param enumerator enumerator to select signerInfo
* @param value chunk receiving attribute value, internal data
* @return TRUE if attribute found
*/
bool (*get_attribute)(pkcs7_t *this, int oid, enumerator_t *enumerator,
chunk_t *value);
}; };
#endif /** PKCS7_H_ @}*/ #endif /** PKCS7_H_ @}*/

1
src/libstrongswan/plugins/pkcs7/pkcs7_data.c
View File

@ -98,6 +98,7 @@ static private_pkcs7_data_t* create_empty()
.get_encoding = _get_encoding, .get_encoding = _get_encoding,
.destroy = _destroy, .destroy = _destroy,
}, },
.get_attribute = (void*)return_false,
}, },
); );

1
src/libstrongswan/plugins/pkcs7/pkcs7_enveloped_data.c
View File

@ -380,6 +380,7 @@ static private_pkcs7_enveloped_data_t* create_empty()
.get_encoding = _get_encoding, .get_encoding = _get_encoding,
.destroy = _destroy, .destroy = _destroy,
}, },
.get_attribute = (void*)return_false,
}, },
); );

24
src/libstrongswan/plugins/pkcs7/pkcs7_signed_data.c
View File

@ -172,6 +172,8 @@ typedef struct {
enumerator_t *inner; enumerator_t *inner;
/** currently enumerated auth_cfg */ /** currently enumerated auth_cfg */
auth_cfg_t *auth; auth_cfg_t *auth;
/** currently enumerating signerinfo */
signerinfo_t *info;
/** reference to container */ /** reference to container */
private_pkcs7_signed_data_t *this; private_pkcs7_signed_data_t *this;
} signature_enumerator_t; } signature_enumerator_t;
@ -275,8 +277,10 @@ METHOD(enumerator_t, enumerate, bool,
continue; continue;
} }
*out = this->auth; *out = this->auth;
this->info = info;
return TRUE; return TRUE;
} }
this->info = NULL;
return FALSE; return FALSE;
} }
@ -307,6 +311,25 @@ METHOD(container_t, create_signature_enumerator, enumerator_t*,
return &enumerator->public; return &enumerator->public;
} }
METHOD(pkcs7_t, get_attribute, bool,
private_pkcs7_signed_data_t *this, int oid, enumerator_t *enumerator, chunk_t *value)
{
signature_enumerator_t *e;
chunk_t chunk;
e = (signature_enumerator_t*)enumerator;
if (e->info)
{
chunk = e->info->attributes->get_attribute(e->info->attributes, oid);
if (chunk.len)
{
*value = chunk;
return TRUE;
}
}
return FALSE;
}
METHOD(container_t, get_data, bool, METHOD(container_t, get_data, bool,
private_pkcs7_signed_data_t *this, chunk_t *data) private_pkcs7_signed_data_t *this, chunk_t *data)
{ {
@ -351,6 +374,7 @@ static private_pkcs7_signed_data_t* create_empty()
.get_encoding = _get_encoding, .get_encoding = _get_encoding,
.destroy = _destroy, .destroy = _destroy,
}, },
.get_attribute = _get_attribute,
}, },
.creds = mem_cred_create(), .creds = mem_cred_create(),
.signerinfos = linked_list_create(), .signerinfos = linked_list_create(),