/* This Source Code Form is subject to the terms of the Mozilla Public * License, v. 2.0. If a copy of the MPL was not distributed with this * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ #include #include #include #include #include #include #include #include /* These are installation functions that make calls to the security library. * We don't want to include security include files in the C++ code too much. */ static char* PR_fgets(char *buf, int size, PRFileDesc *file); /*************************************************************************** * * P k 1 1 I n s t a l l _ A d d N e w M o d u l e */ int Pk11Install_AddNewModule(char* moduleName, char* dllPath, unsigned long defaultMechanismFlags, unsigned long cipherEnableFlags) { return (SECMOD_AddNewModule(moduleName, dllPath, SECMOD_PubMechFlagstoInternal(defaultMechanismFlags), SECMOD_PubCipherFlagstoInternal(cipherEnableFlags)) == SECSuccess) ? 0 : -1; } /************************************************************************* * * P k 1 1 I n s t a l l _ U s e r V e r i f y J a r * * Gives the user feedback on the signatures of a JAR files, asks them * whether they actually want to continue. * Assumes the jar structure has already been created and is valid. * Returns 0 if the user wants to continue the installation, nonzero * if the user wishes to abort. */ short Pk11Install_UserVerifyJar(JAR *jar, PRFileDesc *out, PRBool query) { JAR_Context *ctx; JAR_Cert *fing; JAR_Item *item; char stdinbuf[80]; int count=0; CERTCertificate *cert, *prev=NULL; PR_fprintf(out, "\nThis installation JAR file was signed by:\n"); ctx = JAR_find(jar, NULL, jarTypeSign); while(JAR_find_next(ctx, &item) >= 0 ) { fing = (JAR_Cert*) item->data; cert = fing->cert; if(cert==prev) { continue; } count++; PR_fprintf(out, "----------------------------------------------\n"); if(cert) { if(cert->nickname) { PR_fprintf(out, "**NICKNAME**\n%s\n", cert->nickname); } if(cert->subjectName) { PR_fprintf(out, "**SUBJECT NAME**\n%s\n", cert->subjectName); } if(cert->issuerName) { PR_fprintf(out, "**ISSUER NAME**\n%s\n", cert->issuerName); } } else { PR_fprintf(out, "No matching certificate could be found.\n"); } PR_fprintf(out, "----------------------------------------------\n\n"); prev=cert; } JAR_find_end(ctx); if(count==0) { PR_fprintf(out, "No signatures found: JAR FILE IS UNSIGNED.\n"); } if(query) { PR_fprintf(out, "Do you wish to continue this installation? (y/n) "); if(PR_fgets(stdinbuf, 80, PR_STDIN) != NULL) { char *response; if( (response=strtok(stdinbuf, " \t\n\r")) ) { if( !PL_strcasecmp(response, "y") || !PL_strcasecmp(response, "yes") ) { return 0; } } } } return 1; } /************************************************************************** * * P R _ f g e t s * * fgets implemented with NSPR. */ static char* PR_fgets(char *buf, int size, PRFileDesc *file) { int i; int status; char c; i=0; while(i < size-1) { status = PR_Read(file, (void*) &c, 1); if(status==-1) { return NULL; } else if(status==0) { break; } buf[i++] = c; if(c=='\n') { break; } } buf[i]='\0'; return buf; } /************************************************************************** * * m y S E C U _ E r r o r S t r i n g * */ const char* mySECU_ErrorString(PRErrorCode errnum) { return SECU_Strerror(errnum); }