1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/security/manager/ssl/src/nsNSSCertificateFakeTransport.cpp Wed Dec 31 06:09:35 2014 +0100
1.3 @@ -0,0 +1,360 @@
1.4 +/* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
1.5 +/* This Source Code Form is subject to the terms of the Mozilla Public
1.6 + * License, v. 2.0. If a copy of the MPL was not distributed with this
1.7 + * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
1.8 +
1.9 +#include "nsNSSCertificateFakeTransport.h"
1.10 +
1.11 +#include "nsCOMPtr.h"
1.12 +#include "nsIObjectInputStream.h"
1.13 +#include "nsIObjectOutputStream.h"
1.14 +#include "nsIProgrammingLanguage.h"
1.15 +#include "nsISupportsPrimitives.h"
1.16 +#include "nsIX509Cert.h"
1.17 +#include "nsNSSCertificate.h"
1.18 +#include "nsNSSCertificate.h"
1.19 +#include "nsString.h"
1.20 +#include "nsXPIDLString.h"
1.21 +
1.22 +#ifdef PR_LOGGING
1.23 +extern PRLogModuleInfo* gPIPNSSLog;
1.24 +#endif
1.25 +
1.26 +/* nsNSSCertificateFakeTransport */
1.27 +
1.28 +NS_IMPL_ISUPPORTS(nsNSSCertificateFakeTransport,
1.29 + nsIX509Cert,
1.30 + nsISerializable,
1.31 + nsIClassInfo)
1.32 +
1.33 +nsNSSCertificateFakeTransport::nsNSSCertificateFakeTransport() :
1.34 + mCertSerialization(nullptr)
1.35 +{
1.36 +}
1.37 +
1.38 +nsNSSCertificateFakeTransport::~nsNSSCertificateFakeTransport()
1.39 +{
1.40 + if (mCertSerialization)
1.41 + SECITEM_FreeItem(mCertSerialization, true);
1.42 +}
1.43 +
1.44 +/* readonly attribute string dbKey; */
1.45 +NS_IMETHODIMP
1.46 +nsNSSCertificateFakeTransport::GetDbKey(char * *aDbKey)
1.47 +{
1.48 + NS_NOTREACHED("Unimplemented on content process");
1.49 + return NS_ERROR_NOT_IMPLEMENTED;
1.50 +}
1.51 +
1.52 +/* readonly attribute string windowTitle; */
1.53 +NS_IMETHODIMP
1.54 +nsNSSCertificateFakeTransport::GetWindowTitle(char * *aWindowTitle)
1.55 +{
1.56 + NS_NOTREACHED("Unimplemented on content process");
1.57 + return NS_ERROR_NOT_IMPLEMENTED;
1.58 +}
1.59 +
1.60 +NS_IMETHODIMP
1.61 +nsNSSCertificateFakeTransport::GetNickname(nsAString &aNickname)
1.62 +{
1.63 + NS_NOTREACHED("Unimplemented on content process");
1.64 + return NS_ERROR_NOT_IMPLEMENTED;
1.65 +}
1.66 +
1.67 +NS_IMETHODIMP
1.68 +nsNSSCertificateFakeTransport::GetEmailAddress(nsAString &aEmailAddress)
1.69 +{
1.70 + NS_NOTREACHED("Unimplemented on content process");
1.71 + return NS_ERROR_NOT_IMPLEMENTED;
1.72 +}
1.73 +
1.74 +NS_IMETHODIMP
1.75 +nsNSSCertificateFakeTransport::GetEmailAddresses(uint32_t *aLength, char16_t*** aAddresses)
1.76 +{
1.77 + NS_NOTREACHED("Unimplemented on content process");
1.78 + return NS_ERROR_NOT_IMPLEMENTED;
1.79 +}
1.80 +
1.81 +NS_IMETHODIMP
1.82 +nsNSSCertificateFakeTransport::ContainsEmailAddress(const nsAString &aEmailAddress, bool *result)
1.83 +{
1.84 + NS_NOTREACHED("Unimplemented on content process");
1.85 + return NS_ERROR_NOT_IMPLEMENTED;
1.86 +}
1.87 +
1.88 +NS_IMETHODIMP
1.89 +nsNSSCertificateFakeTransport::GetCommonName(nsAString &aCommonName)
1.90 +{
1.91 + NS_NOTREACHED("Unimplemented on content process");
1.92 + return NS_ERROR_NOT_IMPLEMENTED;
1.93 +}
1.94 +
1.95 +NS_IMETHODIMP
1.96 +nsNSSCertificateFakeTransport::GetOrganization(nsAString &aOrganization)
1.97 +{
1.98 + NS_NOTREACHED("Unimplemented on content process");
1.99 + return NS_ERROR_NOT_IMPLEMENTED;
1.100 +}
1.101 +
1.102 +NS_IMETHODIMP
1.103 +nsNSSCertificateFakeTransport::GetIssuerCommonName(nsAString &aCommonName)
1.104 +{
1.105 + NS_NOTREACHED("Unimplemented on content process");
1.106 + return NS_ERROR_NOT_IMPLEMENTED;
1.107 +}
1.108 +
1.109 +NS_IMETHODIMP
1.110 +nsNSSCertificateFakeTransport::GetIssuerOrganization(nsAString &aOrganization)
1.111 +{
1.112 + NS_NOTREACHED("Unimplemented on content process");
1.113 + return NS_ERROR_NOT_IMPLEMENTED;
1.114 +}
1.115 +
1.116 +NS_IMETHODIMP
1.117 +nsNSSCertificateFakeTransport::GetIssuerOrganizationUnit(nsAString &aOrganizationUnit)
1.118 +{
1.119 + NS_NOTREACHED("Unimplemented on content process");
1.120 + return NS_ERROR_NOT_IMPLEMENTED;
1.121 +}
1.122 +
1.123 +/* readonly attribute nsIX509Cert issuer; */
1.124 +NS_IMETHODIMP
1.125 +nsNSSCertificateFakeTransport::GetIssuer(nsIX509Cert * *aIssuer)
1.126 +{
1.127 + NS_NOTREACHED("Unimplemented on content process");
1.128 + return NS_ERROR_NOT_IMPLEMENTED;
1.129 +}
1.130 +
1.131 +NS_IMETHODIMP
1.132 +nsNSSCertificateFakeTransport::GetOrganizationalUnit(nsAString &aOrganizationalUnit)
1.133 +{
1.134 + NS_NOTREACHED("Unimplemented on content process");
1.135 + return NS_ERROR_NOT_IMPLEMENTED;
1.136 +}
1.137 +
1.138 +/*
1.139 + * nsIEnumerator getChain();
1.140 + */
1.141 +NS_IMETHODIMP
1.142 +nsNSSCertificateFakeTransport::GetChain(nsIArray **_rvChain)
1.143 +{
1.144 + NS_NOTREACHED("Unimplemented on content process");
1.145 + return NS_ERROR_NOT_IMPLEMENTED;
1.146 +}
1.147 +
1.148 +NS_IMETHODIMP
1.149 +nsNSSCertificateFakeTransport::GetSubjectName(nsAString &_subjectName)
1.150 +{
1.151 + NS_NOTREACHED("Unimplemented on content process");
1.152 + return NS_ERROR_NOT_IMPLEMENTED;
1.153 +}
1.154 +
1.155 +NS_IMETHODIMP
1.156 +nsNSSCertificateFakeTransport::GetIssuerName(nsAString &_issuerName)
1.157 +{
1.158 + NS_NOTREACHED("Unimplemented on content process");
1.159 + return NS_ERROR_NOT_IMPLEMENTED;
1.160 +}
1.161 +
1.162 +NS_IMETHODIMP
1.163 +nsNSSCertificateFakeTransport::GetSerialNumber(nsAString &_serialNumber)
1.164 +{
1.165 + NS_NOTREACHED("Unimplemented on content process");
1.166 + return NS_ERROR_NOT_IMPLEMENTED;
1.167 +}
1.168 +
1.169 +NS_IMETHODIMP
1.170 +nsNSSCertificateFakeTransport::GetSha1Fingerprint(nsAString &_sha1Fingerprint)
1.171 +{
1.172 + NS_NOTREACHED("Unimplemented on content process");
1.173 + return NS_ERROR_NOT_IMPLEMENTED;
1.174 +}
1.175 +
1.176 +NS_IMETHODIMP
1.177 +nsNSSCertificateFakeTransport::GetMd5Fingerprint(nsAString &_md5Fingerprint)
1.178 +{
1.179 + NS_NOTREACHED("Unimplemented on content process");
1.180 + return NS_ERROR_NOT_IMPLEMENTED;
1.181 +}
1.182 +
1.183 +NS_IMETHODIMP
1.184 +nsNSSCertificateFakeTransport::GetTokenName(nsAString &aTokenName)
1.185 +{
1.186 + NS_NOTREACHED("Unimplemented on content process");
1.187 + return NS_ERROR_NOT_IMPLEMENTED;
1.188 +}
1.189 +
1.190 +NS_IMETHODIMP
1.191 +nsNSSCertificateFakeTransport::GetRawDER(uint32_t *aLength, uint8_t **aArray)
1.192 +{
1.193 + NS_NOTREACHED("Unimplemented on content process");
1.194 + return NS_ERROR_NOT_IMPLEMENTED;
1.195 +}
1.196 +
1.197 +NS_IMETHODIMP
1.198 +nsNSSCertificateFakeTransport::GetValidity(nsIX509CertValidity **aValidity)
1.199 +{
1.200 + NS_NOTREACHED("Unimplemented on content process");
1.201 + return NS_ERROR_NOT_IMPLEMENTED;
1.202 +}
1.203 +
1.204 +NS_IMETHODIMP
1.205 +nsNSSCertificateFakeTransport::GetUsagesArray(bool localOnly,
1.206 + uint32_t *_verified,
1.207 + uint32_t *_count,
1.208 + char16_t ***_usages)
1.209 +{
1.210 + NS_NOTREACHED("Unimplemented on content process");
1.211 + return NS_ERROR_NOT_IMPLEMENTED;
1.212 +}
1.213 +
1.214 +NS_IMETHODIMP
1.215 +nsNSSCertificateFakeTransport::GetUsagesString(bool localOnly,
1.216 + uint32_t *_verified,
1.217 + nsAString &_usages)
1.218 +{
1.219 + NS_NOTREACHED("Unimplemented on content process");
1.220 + return NS_ERROR_NOT_IMPLEMENTED;
1.221 +}
1.222 +
1.223 +/* readonly attribute nsIASN1Object ASN1Structure; */
1.224 +NS_IMETHODIMP
1.225 +nsNSSCertificateFakeTransport::GetASN1Structure(nsIASN1Object * *aASN1Structure)
1.226 +{
1.227 + NS_NOTREACHED("Unimplemented on content process");
1.228 + return NS_ERROR_NOT_IMPLEMENTED;
1.229 +}
1.230 +
1.231 +NS_IMETHODIMP
1.232 +nsNSSCertificateFakeTransport::Equals(nsIX509Cert *other, bool *result)
1.233 +{
1.234 + NS_NOTREACHED("Unimplemented on content process");
1.235 + return NS_ERROR_NOT_IMPLEMENTED;
1.236 +}
1.237 +
1.238 +NS_IMETHODIMP
1.239 +nsNSSCertificateFakeTransport::GetSha256SubjectPublicKeyInfoDigest(nsACString_internal&)
1.240 +{
1.241 + NS_NOTREACHED("Unimplemented on content process");
1.242 + return NS_ERROR_NOT_IMPLEMENTED;
1.243 +}
1.244 +
1.245 +// NB: This serialization must match that of nsNSSCertificate.
1.246 +NS_IMETHODIMP
1.247 +nsNSSCertificateFakeTransport::Write(nsIObjectOutputStream* aStream)
1.248 +{
1.249 + // On a non-chrome process we don't have mCert because we lack
1.250 + // nsNSSComponent. nsNSSCertificateFakeTransport object is used only to carry the
1.251 + // certificate serialization.
1.252 +
1.253 + // This serialization has to match that of nsNSSCertificate,
1.254 + // so write a fake cached EV Status.
1.255 + uint32_t status = static_cast<uint32_t>(nsNSSCertificate::ev_status_unknown);
1.256 + nsresult rv = aStream->Write32(status);
1.257 + if (NS_FAILED(rv)) {
1.258 + return rv;
1.259 + }
1.260 +
1.261 + rv = aStream->Write32(mCertSerialization->len);
1.262 + if (NS_FAILED(rv)) {
1.263 + return rv;
1.264 + }
1.265 +
1.266 + return aStream->WriteByteArray(mCertSerialization->data, mCertSerialization->len);
1.267 +}
1.268 +
1.269 +NS_IMETHODIMP
1.270 +nsNSSCertificateFakeTransport::Read(nsIObjectInputStream* aStream)
1.271 +{
1.272 + // This serialization has to match that of nsNSSCertificate,
1.273 + // so read the cachedEVStatus but don't actually use it.
1.274 + uint32_t cachedEVStatus;
1.275 + nsresult rv = aStream->Read32(&cachedEVStatus);
1.276 + if (NS_FAILED(rv)) {
1.277 + return rv;
1.278 + }
1.279 +
1.280 + uint32_t len;
1.281 + rv = aStream->Read32(&len);
1.282 + if (NS_FAILED(rv)) {
1.283 + return rv;
1.284 + }
1.285 +
1.286 + nsXPIDLCString str;
1.287 + rv = aStream->ReadBytes(len, getter_Copies(str));
1.288 + if (NS_FAILED(rv)) {
1.289 + return rv;
1.290 + }
1.291 +
1.292 + // On a non-chrome process we cannot instatiate mCert because we lack
1.293 + // nsNSSComponent. nsNSSCertificateFakeTransport object is used only to carry the
1.294 + // certificate serialization.
1.295 +
1.296 + mCertSerialization = SECITEM_AllocItem(nullptr, nullptr, len);
1.297 + if (!mCertSerialization)
1.298 + return NS_ERROR_OUT_OF_MEMORY;
1.299 + PORT_Memcpy(mCertSerialization->data, str.Data(), len);
1.300 +
1.301 + return NS_OK;
1.302 +}
1.303 +
1.304 +NS_IMETHODIMP
1.305 +nsNSSCertificateFakeTransport::GetInterfaces(uint32_t *count, nsIID * **array)
1.306 +{
1.307 + *count = 0;
1.308 + *array = nullptr;
1.309 + return NS_OK;
1.310 +}
1.311 +
1.312 +NS_IMETHODIMP
1.313 +nsNSSCertificateFakeTransport::GetHelperForLanguage(uint32_t language, nsISupports **_retval)
1.314 +{
1.315 + *_retval = nullptr;
1.316 + return NS_OK;
1.317 +}
1.318 +
1.319 +NS_IMETHODIMP
1.320 +nsNSSCertificateFakeTransport::GetContractID(char * *aContractID)
1.321 +{
1.322 + *aContractID = nullptr;
1.323 + return NS_OK;
1.324 +}
1.325 +
1.326 +NS_IMETHODIMP
1.327 +nsNSSCertificateFakeTransport::GetClassDescription(char * *aClassDescription)
1.328 +{
1.329 + *aClassDescription = nullptr;
1.330 + return NS_OK;
1.331 +}
1.332 +
1.333 +NS_IMETHODIMP
1.334 +nsNSSCertificateFakeTransport::GetClassID(nsCID * *aClassID)
1.335 +{
1.336 + *aClassID = (nsCID*) nsMemory::Alloc(sizeof(nsCID));
1.337 + if (!*aClassID)
1.338 + return NS_ERROR_OUT_OF_MEMORY;
1.339 + return GetClassIDNoAlloc(*aClassID);
1.340 +}
1.341 +
1.342 +NS_IMETHODIMP
1.343 +nsNSSCertificateFakeTransport::GetImplementationLanguage(uint32_t *aImplementationLanguage)
1.344 +{
1.345 + *aImplementationLanguage = nsIProgrammingLanguage::CPLUSPLUS;
1.346 + return NS_OK;
1.347 +}
1.348 +
1.349 +NS_IMETHODIMP
1.350 +nsNSSCertificateFakeTransport::GetFlags(uint32_t *aFlags)
1.351 +{
1.352 + *aFlags = nsIClassInfo::THREADSAFE;
1.353 + return NS_OK;
1.354 +}
1.355 +
1.356 +NS_IMETHODIMP
1.357 +nsNSSCertificateFakeTransport::GetClassIDNoAlloc(nsCID *aClassIDNoAlloc)
1.358 +{
1.359 + static NS_DEFINE_CID(kNSSCertificateCID, NS_X509CERT_CID);
1.360 +
1.361 + *aClassIDNoAlloc = kNSSCertificateCID;
1.362 + return NS_OK;
1.363 +}
