xmlsec-shim 1.2.18.1
Sign up to get free protection for your applications and to get access to all the features.
- data/.gitignore +17 -0
- data/Gemfile +4 -0
- data/README.md +2 -0
- data/Rakefile +2 -0
- data/ext/xmlsec/extconf.rb +14 -0
- data/lib/xmlsec-shim.rb +27 -0
- data/lib/xmlsec-shim/version.rb +5 -0
- data/vendor/xmlsec1-1.2.18/AUTHORS +8 -0
- data/vendor/xmlsec1-1.2.18/COPYING +105 -0
- data/vendor/xmlsec1-1.2.18/ChangeLog +1810 -0
- data/vendor/xmlsec1-1.2.18/Copyright +105 -0
- data/vendor/xmlsec1-1.2.18/HACKING +199 -0
- data/vendor/xmlsec1-1.2.18/INSTALL +38 -0
- data/vendor/xmlsec1-1.2.18/Makefile.am +186 -0
- data/vendor/xmlsec1-1.2.18/Makefile.in +1155 -0
- data/vendor/xmlsec1-1.2.18/NEWS +1 -0
- data/vendor/xmlsec1-1.2.18/README +15 -0
- data/vendor/xmlsec1-1.2.18/TODO +156 -0
- data/vendor/xmlsec1-1.2.18/aclocal.m4 +1197 -0
- data/vendor/xmlsec1-1.2.18/apps/Makefile.am +84 -0
- data/vendor/xmlsec1-1.2.18/apps/Makefile.in +694 -0
- data/vendor/xmlsec1-1.2.18/apps/cmdline.c +355 -0
- data/vendor/xmlsec1-1.2.18/apps/cmdline.h +89 -0
- data/vendor/xmlsec1-1.2.18/apps/crypto.c +396 -0
- data/vendor/xmlsec1-1.2.18/apps/crypto.h +70 -0
- data/vendor/xmlsec1-1.2.18/apps/xmlsec.c +3058 -0
- data/vendor/xmlsec1-1.2.18/config.guess +1502 -0
- data/vendor/xmlsec1-1.2.18/config.h.in +134 -0
- data/vendor/xmlsec1-1.2.18/config.sub +1714 -0
- data/vendor/xmlsec1-1.2.18/configure +17363 -0
- data/vendor/xmlsec1-1.2.18/configure.in +1633 -0
- data/vendor/xmlsec1-1.2.18/depcomp +630 -0
- data/vendor/xmlsec1-1.2.18/docs/Makefile.am +65 -0
- data/vendor/xmlsec1-1.2.18/docs/Makefile.in +721 -0
- data/vendor/xmlsec1-1.2.18/docs/api/Makefile.am +209 -0
- data/vendor/xmlsec1-1.2.18/docs/api/Makefile.in +664 -0
- data/vendor/xmlsec1-1.2.18/docs/api/chapters/compiling-and-linking.sgml +252 -0
- data/vendor/xmlsec1-1.2.18/docs/api/chapters/creating-templates.sgml +325 -0
- data/vendor/xmlsec1-1.2.18/docs/api/chapters/examples.sgml +102 -0
- data/vendor/xmlsec1-1.2.18/docs/api/chapters/init-and-shutdown.sgml +104 -0
- data/vendor/xmlsec1-1.2.18/docs/api/chapters/new-crypto.sgml +487 -0
- data/vendor/xmlsec1-1.2.18/docs/api/chapters/sign-and-encrypt.sgml +286 -0
- data/vendor/xmlsec1-1.2.18/docs/api/chapters/using-contexts.sgml +138 -0
- data/vendor/xmlsec1-1.2.18/docs/api/chapters/using-keys.sgml +26 -0
- data/vendor/xmlsec1-1.2.18/docs/api/chapters/using-keysmngr.sgml +592 -0
- data/vendor/xmlsec1-1.2.18/docs/api/chapters/using-transforms.sgml +67 -0
- data/vendor/xmlsec1-1.2.18/docs/api/chapters/using-x509-certs.sgml +197 -0
- data/vendor/xmlsec1-1.2.18/docs/api/chapters/verify-and-decrypt.sgml +265 -0
- data/vendor/xmlsec1-1.2.18/docs/api/home.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/images/diagrams.sxd +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/images/encryption-structure.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/images/key.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/images/keysmngr.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/images/sign-enc-model.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/images/signature-structure.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/images/structure.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/images/transform.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/images/transforms-chain.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/images/verif-dec-model.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/index.html +307 -0
- data/vendor/xmlsec1-1.2.18/docs/api/index.sgml +43 -0
- data/vendor/xmlsec1-1.2.18/docs/api/left.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/right.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/up.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-app.html +1525 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-base64.html +357 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-bn.html +705 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-buffer.html +603 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-custom-keys-manager.html +475 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-decrypt-with-keys-mngr.html +396 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-decrypt-with-signle-key.html +326 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-dl.html +245 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-encrypt-dynamic-template.html +386 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-encrypt-template-file.html +364 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-encrypt-with-session-key.html +495 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-encryption-klasses.html +101 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-errors.html +744 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-examples-sign-dynamimc-template.html +406 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-examples-sign-template-file.html +388 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-examples-sign-x509.html +447 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-examples.html +119 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-gcrypt-app.html +578 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-gcrypt-crypto.html +1128 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-gcrypt-ref.html +107 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-gcrypt.sgml +15 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-gnutls-app.html +576 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-gnutls-crypto.html +1076 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-gnutls-ref.html +107 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-gnutls.sgml +15 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-index.html +1570 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-index.sgml +1471 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-io.html +226 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-keyinfo.html +700 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-keys.html +1161 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-keysdata.html +2067 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-keysmngr.html +743 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-list.html +643 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-membuf.html +143 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-mscrypto-app.html +747 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-mscrypto-certkeys.html +252 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-mscrypto-crypto.html +1153 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-mscrypto-keysstore.html +209 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-mscrypto-ref.html +113 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-mscrypto-x509.html +478 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-mscrypto.sgml +21 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-nodeset.html +542 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-compiling-others.html +102 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-compiling-unix.html +223 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-compiling-windows.html +138 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-compiling.html +117 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-contexts.html +229 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-custom-keys-store.html +250 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-decrypt.html +205 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-dynamic-encryption-templates.html +240 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-dynamic-signature-templates.html +250 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-encrypt.html +223 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-include-files.html +141 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-init-shutdown.html +194 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-keys-manager-sign-enc.html +307 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-keys-mngr-verify-decrypt.html +179 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-keys.html +120 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-keysmngr.html +140 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-new-crypto-functions.html +151 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-new-crypto-key-stores.html +83 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-new-crypto-keys.html +103 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-new-crypto-klasses.html +217 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-new-crypto-sharing-results.html +125 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-new-crypto-simple-keys-mngr.html +102 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-new-crypto-skeleton.html +254 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-new-crypto-transforms.html +170 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-new-crypto.html +136 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-overview.html +102 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-sign-encrypt.html +120 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-sign-x509.html +176 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-sign.html +210 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-simple-keys-store.html +177 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-structure.html +115 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-templates.html +114 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-transforms.html +154 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-verify-decrypt.html +120 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-verify-x509.html +180 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-verify.html +210 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes-x509.html +114 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-notes.html +115 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-nss-app.html +740 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-nss-bignum.html +176 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-nss-crypto.html +978 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-nss-keysstore.html +209 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-nss-pkikeys.html +211 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-nss-ref.html +115 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-nss-x509.html +467 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-nss.sgml +23 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-openssl-app.html +800 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-openssl-bn.html +170 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-openssl-crypto.html +1329 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-openssl-evp.html +184 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-openssl-ref.html +113 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-openssl-x509.html +567 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-openssl.sgml +21 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-parser.html +223 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-ref.html +149 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-reference.html +106 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-signature-klasses.html +101 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-templates.html +1290 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-transforms.html +3059 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-verify-with-key.html +318 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-verify-with-keys-mngr.html +388 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-verify-with-restrictions.html +715 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-verify-with-x509.html +369 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-version.html +143 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-x509.html +181 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-xmldsig.html +853 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-xmlenc.html +584 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-xmlsec.html +300 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec-xmltree.html +1529 -0
- data/vendor/xmlsec1-1.2.18/docs/api/xmlsec.sgml +307 -0
- data/vendor/xmlsec1-1.2.18/docs/authors.html +59 -0
- data/vendor/xmlsec1-1.2.18/docs/bugs.html +106 -0
- data/vendor/xmlsec1-1.2.18/docs/c14n.html +73 -0
- data/vendor/xmlsec1-1.2.18/docs/documentation.html +65 -0
- data/vendor/xmlsec1-1.2.18/docs/download.html +115 -0
- data/vendor/xmlsec1-1.2.18/docs/faq.html +449 -0
- data/vendor/xmlsec1-1.2.18/docs/images/bart.gif +0 -0
- data/vendor/xmlsec1-1.2.18/docs/images/libxml2-logo.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/images/libxslt-logo.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/images/logo.gif +0 -0
- data/vendor/xmlsec1-1.2.18/docs/images/openssl-logo.png +0 -0
- data/vendor/xmlsec1-1.2.18/docs/images/xmlsec-logo.gif +0 -0
- data/vendor/xmlsec1-1.2.18/docs/index.html +109 -0
- data/vendor/xmlsec1-1.2.18/docs/news.html +545 -0
- data/vendor/xmlsec1-1.2.18/docs/related.html +165 -0
- data/vendor/xmlsec1-1.2.18/docs/xmldsig-verifier.html +138 -0
- data/vendor/xmlsec1-1.2.18/docs/xmldsig.html +646 -0
- data/vendor/xmlsec1-1.2.18/docs/xmlenc.html +464 -0
- data/vendor/xmlsec1-1.2.18/docs/xmlsec-man.html +291 -0
- data/vendor/xmlsec1-1.2.18/docs/xmlsec.xsl +194 -0
- data/vendor/xmlsec1-1.2.18/examples/Makefile +40 -0
- data/vendor/xmlsec1-1.2.18/examples/Makefile.w32 +88 -0
- data/vendor/xmlsec1-1.2.18/examples/README +126 -0
- data/vendor/xmlsec1-1.2.18/examples/binary.dat +1 -0
- data/vendor/xmlsec1-1.2.18/examples/decrypt1.c +223 -0
- data/vendor/xmlsec1-1.2.18/examples/decrypt2.c +293 -0
- data/vendor/xmlsec1-1.2.18/examples/decrypt3.c +372 -0
- data/vendor/xmlsec1-1.2.18/examples/deskey.bin +1 -0
- data/vendor/xmlsec1-1.2.18/examples/encrypt1-res.xml +13 -0
- data/vendor/xmlsec1-1.2.18/examples/encrypt1-tmpl.xml +13 -0
- data/vendor/xmlsec1-1.2.18/examples/encrypt1.c +219 -0
- data/vendor/xmlsec1-1.2.18/examples/encrypt2-doc.xml +9 -0
- data/vendor/xmlsec1-1.2.18/examples/encrypt2-res.xml +14 -0
- data/vendor/xmlsec1-1.2.18/examples/encrypt2.c +244 -0
- data/vendor/xmlsec1-1.2.18/examples/encrypt3-doc.xml +9 -0
- data/vendor/xmlsec1-1.2.18/examples/encrypt3-res.xml +27 -0
- data/vendor/xmlsec1-1.2.18/examples/encrypt3.c +340 -0
- data/vendor/xmlsec1-1.2.18/examples/mywin32make.bat +18 -0
- data/vendor/xmlsec1-1.2.18/examples/rootcert.pem +25 -0
- data/vendor/xmlsec1-1.2.18/examples/rsacert.pem +83 -0
- data/vendor/xmlsec1-1.2.18/examples/rsakey.pem +27 -0
- data/vendor/xmlsec1-1.2.18/examples/rsapub.pem +9 -0
- data/vendor/xmlsec1-1.2.18/examples/sign1-res.xml +31 -0
- data/vendor/xmlsec1-1.2.18/examples/sign1-tmpl.xml +27 -0
- data/vendor/xmlsec1-1.2.18/examples/sign1.c +212 -0
- data/vendor/xmlsec1-1.2.18/examples/sign2-doc.xml +9 -0
- data/vendor/xmlsec1-1.2.18/examples/sign2-res.xml +30 -0
- data/vendor/xmlsec1-1.2.18/examples/sign2.c +248 -0
- data/vendor/xmlsec1-1.2.18/examples/sign3-doc.xml +9 -0
- data/vendor/xmlsec1-1.2.18/examples/sign3-res.xml +58 -0
- data/vendor/xmlsec1-1.2.18/examples/sign3.c +261 -0
- data/vendor/xmlsec1-1.2.18/examples/verify1.c +215 -0
- data/vendor/xmlsec1-1.2.18/examples/verify2.c +285 -0
- data/vendor/xmlsec1-1.2.18/examples/verify3.c +266 -0
- data/vendor/xmlsec1-1.2.18/examples/verify4-bad-res.xml +90 -0
- data/vendor/xmlsec1-1.2.18/examples/verify4-bad-tmpl.xml +54 -0
- data/vendor/xmlsec1-1.2.18/examples/verify4-res.xml +80 -0
- data/vendor/xmlsec1-1.2.18/examples/verify4-tmpl.xml +47 -0
- data/vendor/xmlsec1-1.2.18/examples/verify4.c +309 -0
- data/vendor/xmlsec1-1.2.18/examples/xkms-server.c +839 -0
- data/vendor/xmlsec1-1.2.18/examples/xmldsigverify.c +381 -0
- data/vendor/xmlsec1-1.2.18/include/Makefile.am +4 -0
- data/vendor/xmlsec1-1.2.18/include/Makefile.in +656 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/Makefile.am +63 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/Makefile.in +767 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/app.h +424 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/base64.h +67 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/bn.h +99 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/buffer.h +108 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/crypto.h +75 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/dl.h +56 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/errors.h +504 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/exports.h +111 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/gcrypt/Makefile.am +13 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/gcrypt/Makefile.in +564 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/gcrypt/app.h +96 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/gcrypt/crypto.h +460 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/gcrypt/symbols.h +104 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/gnutls/Makefile.am +14 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/gnutls/Makefile.in +565 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/gnutls/app.h +96 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/gnutls/crypto.h +462 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/gnutls/symbols.h +104 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/gnutls/x509.h +110 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/io.h +54 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/keyinfo.h +285 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/keys.h +278 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/keysdata.h +837 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/keysmngr.h +264 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/list.h +194 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/membuf.h +44 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/mscrypto/Makefile.am +16 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/mscrypto/Makefile.in +567 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/mscrypto/app.h +116 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/mscrypto/certkeys.h +42 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/mscrypto/crypto.h +516 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/mscrypto/keysstore.h +48 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/mscrypto/symbols.h +114 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/mscrypto/x509.h +92 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/nodeset.h +139 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/nss/Makefile.am +17 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/nss/Makefile.in +568 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/nss/app.h +118 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/nss/bignum.h +37 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/nss/crypto.h +469 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/nss/keysstore.h +46 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/nss/pkikeys.h +44 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/nss/symbols.h +106 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/nss/x509.h +91 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/openssl/Makefile.am +16 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/openssl/Makefile.in +567 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/openssl/app.h +128 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/openssl/bn.h +35 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/openssl/crypto.h +561 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/openssl/evp.h +44 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/openssl/symbols.h +123 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/openssl/x509.h +109 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/parser.h +51 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/private.h +489 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/private/Makefile.am +12 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/private/Makefile.in +563 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/private/xkms.h +121 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/private/xslt.h +34 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/skeleton/Makefile.am +13 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/skeleton/app.h +97 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/skeleton/crypto.h +40 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/skeleton/symbols.h +117 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/soap.h +130 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/strings.h +610 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/templates.h +162 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/transforms.h +994 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/version.h +61 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/version.h.in +61 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/x509.h +80 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/xkms.h +652 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/xmldsig.h +281 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/xmlenc.h +163 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/xmlsec.h +216 -0
- data/vendor/xmlsec1-1.2.18/include/xmlsec/xmltree.h +275 -0
- data/vendor/xmlsec1-1.2.18/install-sh +520 -0
- data/vendor/xmlsec1-1.2.18/ltmain.sh +8413 -0
- data/vendor/xmlsec1-1.2.18/m4/libtool.m4 +7377 -0
- data/vendor/xmlsec1-1.2.18/m4/ltoptions.m4 +368 -0
- data/vendor/xmlsec1-1.2.18/m4/ltsugar.m4 +123 -0
- data/vendor/xmlsec1-1.2.18/m4/ltversion.m4 +23 -0
- data/vendor/xmlsec1-1.2.18/m4/lt~obsolete.m4 +92 -0
- data/vendor/xmlsec1-1.2.18/man/Makefile.am +52 -0
- data/vendor/xmlsec1-1.2.18/man/Makefile.in +582 -0
- data/vendor/xmlsec1-1.2.18/man/xmlsec1-config.1 +34 -0
- data/vendor/xmlsec1-1.2.18/man/xmlsec1.1 +269 -0
- data/vendor/xmlsec1-1.2.18/missing +376 -0
- data/vendor/xmlsec1-1.2.18/scripts/build_release.sh +33 -0
- data/vendor/xmlsec1-1.2.18/scripts/change-release.sh +34 -0
- data/vendor/xmlsec1-1.2.18/scripts/push_release.sh +30 -0
- data/vendor/xmlsec1-1.2.18/scripts/remove-gtkdoclink.pl +20 -0
- data/vendor/xmlsec1-1.2.18/scripts/test_errors.pl +38 -0
- data/vendor/xmlsec1-1.2.18/scripts/test_release.sh +12 -0
- data/vendor/xmlsec1-1.2.18/src/Makefile.am +71 -0
- data/vendor/xmlsec1-1.2.18/src/Makefile.in +878 -0
- data/vendor/xmlsec1-1.2.18/src/app.c +1498 -0
- data/vendor/xmlsec1-1.2.18/src/base64.c +1034 -0
- data/vendor/xmlsec1-1.2.18/src/bn.c +1060 -0
- data/vendor/xmlsec1-1.2.18/src/buffer.c +674 -0
- data/vendor/xmlsec1-1.2.18/src/c14n.c +801 -0
- data/vendor/xmlsec1-1.2.18/src/dl.c +994 -0
- data/vendor/xmlsec1-1.2.18/src/enveloped.c +152 -0
- data/vendor/xmlsec1-1.2.18/src/errors.c +242 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/Makefile.am +55 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/Makefile.in +764 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/README +9 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/app.c +663 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/asn1.c +602 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/asn1.h +39 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/asymkeys.c +1920 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/ciphers.c +855 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/crypto.c +315 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/digests.c +614 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/globals.h +30 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/hmac.c +823 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/kw_aes.c +593 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/kw_des.c +607 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/signatures.c +1490 -0
- data/vendor/xmlsec1-1.2.18/src/gcrypt/symkeys.c +441 -0
- data/vendor/xmlsec1-1.2.18/src/globals.h +25 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/Makefile.am +58 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/Makefile.in +786 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/README +6 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/app.c +998 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/asymkeys.c +455 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/ciphers.c +82 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/crypto.c +351 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/digests.c +112 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/globals.h +31 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/hmac.c +141 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/kw_aes.c +72 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/kw_des.c +51 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/signatures.c +148 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/symkeys.c +125 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/x509.c +1960 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/x509utils.c +1687 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/x509utils.h +143 -0
- data/vendor/xmlsec1-1.2.18/src/gnutls/x509vfy.c +802 -0
- data/vendor/xmlsec1-1.2.18/src/io.c +496 -0
- data/vendor/xmlsec1-1.2.18/src/keyinfo.c +1561 -0
- data/vendor/xmlsec1-1.2.18/src/keys.c +1415 -0
- data/vendor/xmlsec1-1.2.18/src/keysdata.c +1387 -0
- data/vendor/xmlsec1-1.2.18/src/keysmngr.c +745 -0
- data/vendor/xmlsec1-1.2.18/src/kw_aes_des.c +493 -0
- data/vendor/xmlsec1-1.2.18/src/kw_aes_des.h +148 -0
- data/vendor/xmlsec1-1.2.18/src/list.c +534 -0
- data/vendor/xmlsec1-1.2.18/src/membuf.c +209 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/Makefile.am +62 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/Makefile.in +799 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/README +39 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/app.c +1289 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/certkeys.c +2615 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/ciphers.c +937 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/crypto.c +889 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/csp_calg.h +105 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/csp_oid.h +114 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/digests.c +668 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/globals.h +39 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/hmac.c +963 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/keysstore.c +620 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/kt_rsa.c +631 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/kw_aes.c +662 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/kw_des.c +730 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/mingw-crypt32.def +36 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/private.h +130 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/signatures.c +960 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/symkeys.c +824 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/x509.c +2281 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/x509vfy.c +1406 -0
- data/vendor/xmlsec1-1.2.18/src/mscrypto/xmlsec-mingw.h +210 -0
- data/vendor/xmlsec1-1.2.18/src/nodeset.c +610 -0
- data/vendor/xmlsec1-1.2.18/src/nss/Makefile.am +57 -0
- data/vendor/xmlsec1-1.2.18/src/nss/Makefile.in +798 -0
- data/vendor/xmlsec1-1.2.18/src/nss/README +128 -0
- data/vendor/xmlsec1-1.2.18/src/nss/app.c +1598 -0
- data/vendor/xmlsec1-1.2.18/src/nss/bignum.c +163 -0
- data/vendor/xmlsec1-1.2.18/src/nss/ciphers.c +838 -0
- data/vendor/xmlsec1-1.2.18/src/nss/crypto.c +444 -0
- data/vendor/xmlsec1-1.2.18/src/nss/digests.c +576 -0
- data/vendor/xmlsec1-1.2.18/src/nss/globals.h +24 -0
- data/vendor/xmlsec1-1.2.18/src/nss/hmac.c +855 -0
- data/vendor/xmlsec1-1.2.18/src/nss/keysstore.c +485 -0
- data/vendor/xmlsec1-1.2.18/src/nss/keytrans.c +753 -0
- data/vendor/xmlsec1-1.2.18/src/nss/kw_aes.c +681 -0
- data/vendor/xmlsec1-1.2.18/src/nss/kw_des.c +663 -0
- data/vendor/xmlsec1-1.2.18/src/nss/pkikeys.c +1554 -0
- data/vendor/xmlsec1-1.2.18/src/nss/signatures.c +841 -0
- data/vendor/xmlsec1-1.2.18/src/nss/symkeys.c +440 -0
- data/vendor/xmlsec1-1.2.18/src/nss/x509.c +2223 -0
- data/vendor/xmlsec1-1.2.18/src/nss/x509vfy.c +808 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/Makefile.am +56 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/Makefile.in +790 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/README +17 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/app.c +1628 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/bn.c +163 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/ciphers.c +856 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/crypto.c +491 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/digests.c +682 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/evp.c +1559 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/globals.h +24 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/hmac.c +857 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/kt_rsa.c +876 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/kw_aes.c +513 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/kw_des.c +563 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/signatures.c +1065 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/symkeys.c +447 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/x509.c +2414 -0
- data/vendor/xmlsec1-1.2.18/src/openssl/x509vfy.c +1284 -0
- data/vendor/xmlsec1-1.2.18/src/parser.c +571 -0
- data/vendor/xmlsec1-1.2.18/src/skeleton/Makefile.am +45 -0
- data/vendor/xmlsec1-1.2.18/src/skeleton/README +0 -0
- data/vendor/xmlsec1-1.2.18/src/skeleton/app.c +499 -0
- data/vendor/xmlsec1-1.2.18/src/skeleton/crypto.c +260 -0
- data/vendor/xmlsec1-1.2.18/src/skeleton/globals.h +24 -0
- data/vendor/xmlsec1-1.2.18/src/soap.c +1322 -0
- data/vendor/xmlsec1-1.2.18/src/strings.c +597 -0
- data/vendor/xmlsec1-1.2.18/src/templates.c +2091 -0
- data/vendor/xmlsec1-1.2.18/src/transforms.c +2902 -0
- data/vendor/xmlsec1-1.2.18/src/x509.c +97 -0
- data/vendor/xmlsec1-1.2.18/src/xkms.c +4981 -0
- data/vendor/xmlsec1-1.2.18/src/xmldsig.c +1795 -0
- data/vendor/xmlsec1-1.2.18/src/xmlenc.c +1339 -0
- data/vendor/xmlsec1-1.2.18/src/xmlsec.c +185 -0
- data/vendor/xmlsec1-1.2.18/src/xmltree.c +1908 -0
- data/vendor/xmlsec1-1.2.18/src/xpath.c +1148 -0
- data/vendor/xmlsec1-1.2.18/src/xslt.c +617 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/Readme.txt +52 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/bad-alg-enc-element-aes128-kw-3des.xml +29 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/dh-priv-key.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-content-3des-kw-aes192.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-content-3des-kw-aes192.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-content-3des-kw-aes192.xml +30 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-content-aes128-kw-3des.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-content-aes128-kw-3des.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-content-aes128-kw-3des.xml +30 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-content-aes192-kw-aes256.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-content-aes192-kw-aes256.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-content-aes192-kw-aes256.xml +30 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-content-aes256-kt-rsa1_5.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-content-aes256-kt-rsa1_5.tmpl +24 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-content-aes256-kt-rsa1_5.xml +63 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-3des-ka-dh.xml +83 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-3des-kt-rsa1_5.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-3des-kt-rsa1_5.tmpl +23 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-3des-kt-rsa1_5.xml +61 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-3des-kt-rsa_oaep_sha1.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-3des-kt-rsa_oaep_sha1.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-3des-kt-rsa_oaep_sha1.xml +63 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-3des-kt-rsa_oaep_sha256.xml +63 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-3des-kt-rsa_oaep_sha512.xml +63 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-3des-kw-3des.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-3des-kw-3des.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-3des-kw-3des.xml +29 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-ka-dh.xml +83 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-kt-rsa1_5.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-kt-rsa1_5.tmpl +20 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-kt-rsa1_5.xml +61 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-kt-rsa_oaep_sha1.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-kt-rsa_oaep_sha1.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-kt-rsa_oaep_sha1.xml +63 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-kw-aes128.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-kw-aes128.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-kw-aes128.xml +29 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-kw-aes256.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-kw-aes256.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes128-kw-aes256.xml +29 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes192-ka-dh.xml +83 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes192-kt-rsa_oaep_sha1.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes192-kt-rsa_oaep_sha1.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes192-kt-rsa_oaep_sha1.xml +63 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes192-kw-aes192.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes192-kw-aes192.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes192-kw-aes192.xml +29 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes256-ka-dh.xml +83 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes256-kw-aes256.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes256-kw-aes256.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-element-aes256-kw-aes256.xml +29 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-text-3des-kw-aes256.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-text-3des-kw-aes256.tmpl +23 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-text-3des-kw-aes256.xml +32 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-text-aes128-kw-aes192.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-text-aes128-kw-aes192.tmpl +21 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-text-aes128-kw-aes192.xml +28 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-text-aes192-kt-rsa1_5.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-text-aes192-kt-rsa1_5.tmpl +20 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-text-aes192-kt-rsa1_5.xml +62 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-text-aes256-kt-rsa_oaep_sha1.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-text-aes256-kt-rsa_oaep_sha1.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/enc-text-aes256-kt-rsa_oaep_sha1.xml +64 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/key.txt +117 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/keys.xml +61 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/payment.xml +9 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/rsa-priv-key.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/01-phaos-xmlenc-3/rsa-priv-key.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/bad-request-name-not-supported.xml +2 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/bad-request-name.xml +10 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/compound-example-1-no-match.xml +7 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/compound-example-1.xml +51 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/cert1.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/cert1.pem +26 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/cert2.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/cert2.pem +25 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/cert3.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/cert3.pem +24 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/create-keys.sh +73 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/key1-pk8.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/key1.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/key1.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/key1.pem +18 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/key2-pk8.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/key2.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/key2.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/key2.pem +9 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/key3-pk8.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/key3.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/key3.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/key3.pem +9 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/openssl.cnf +106 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/req2.pem +11 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/keys/req3.pem +11 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/locate-example-1-bad-service.xml +2 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/locate-example-1-no-match.xml +2 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/locate-example-1.xml +18 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/locate-example-2-no-match.xml +2 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/locate-example-2.xml +39 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/locate-opaque-client-data-no-match.xml +2 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/locate-opaque-client-data.xml +32 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/readme.txt +117 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/soap11-bad-request-name-msg-invalid.xml +9 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/soap11-bad-request-name.xml +14 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/soap11-locate-example-1-no-match.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/soap11-locate-example-1-unsupported.xml +13 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/soap11-locate-example-1.xml +23 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/soap12-bad-request-name-msg-invalid.xml +11 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/soap12-bad-request-name.xml +14 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/soap12-locate-example-1-no-match.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/soap12-locate-example-1-unsupported.xml +9 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/soap12-locate-example-1.xml +23 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/status-request-success.xml +2 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/status-request.xml +7 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/validate-example-1-no-match.xml +2 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xkms-01/validate-example-1.xml +65 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/README +47 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/dtd-hmac-91.dtd +1 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/dtd-hmac-91.tmpl +27 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/dtd-hmac-91.xml +27 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloped-gost.tmpl +31 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloped-gost.xml +42 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-dsa-x509chain.tmpl +18 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-dsa-x509chain.xml +87 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-expired-cert.tmpl +18 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-expired-cert.xml +85 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-md5-hmac-md5-64.tmpl +16 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-md5-hmac-md5-64.xml +15 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-md5-hmac-md5.tmpl +14 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-md5-hmac-md5.xml +13 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-md5-rsa-md5.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-md5-rsa-md5.xml +85 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-ripemd160-hmac-ripemd160-64.tmpl +16 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-ripemd160-hmac-ripemd160-64.xml +15 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-ripemd160-hmac-ripemd160.tmpl +14 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-ripemd160-hmac-ripemd160.xml +13 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-ripemd160-rsa-ripemd160.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-ripemd160-rsa-ripemd160.xml +85 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-rsa-x509chain.tmpl +18 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-rsa-x509chain.xml +85 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha1-hmac-sha1-64.tmpl +16 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha1-hmac-sha1-64.xml +15 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha1-hmac-sha1.tmpl +14 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha1-hmac-sha1.xml +13 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha1-rsa-sha1.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha1-rsa-sha1.xml +85 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha224-hmac-sha224-64.tmpl +16 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha224-hmac-sha224-64.xml +15 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha224-hmac-sha224.tmpl +14 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha224-hmac-sha224.xml +13 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha224-rsa-sha224.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha224-rsa-sha224.xml +85 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha256-hmac-sha256-64.tmpl +16 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha256-hmac-sha256-64.xml +15 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha256-hmac-sha256.tmpl +14 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha256-hmac-sha256.xml +13 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha256-rsa-sha256.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha256-rsa-sha256.xml +85 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha384-hmac-sha384-64.tmpl +16 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha384-hmac-sha384-64.xml +15 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha384-hmac-sha384.tmpl +14 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha384-hmac-sha384.xml +13 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha384-rsa-sha384.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha384-rsa-sha384.xml +103 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha512-hmac-sha512-64.tmpl +16 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha512-hmac-sha512-64.xml +16 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha512-hmac-sha512.tmpl +14 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha512-hmac-sha512.xml +15 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha512-rsa-sha512.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/enveloping-sha512-rsa-sha512.xml +104 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/x509data-sn-test.tmpl +27 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/x509data-sn-test.xml +40 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/x509data-test.tmpl +31 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/x509data-test.xml +117 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/xpointer-hmac.tmpl +29 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmldsig-01/xpointer-hmac.xml +28 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-aes128cbc-keyname.data +1 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-aes128cbc-keyname.tmpl +11 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-aes128cbc-keyname.xml +12 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-aes192cbc-keyname-ref.data +1 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-aes192cbc-keyname-ref.xml +21 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-aes192cbc-keyname.data +1 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-aes192cbc-keyname.tmpl +11 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-aes192cbc-keyname.xml +12 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-aes256cbc-keyname.data +1 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-aes256cbc-keyname.tmpl +10 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-aes256cbc-keyname.xml +12 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-aes192-keyname.data +1 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-aes192-keyname.tmpl +16 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-aes192-keyname.xml +18 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname-content.data +7 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname-content.tmpl +11 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname-content.xml +15 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname-element-root.data +7 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname-element-root.tmpl +11 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname-element-root.xml +15 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname-element.data +9 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname-element.tmpl +11 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname-element.xml +17 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname.data +1 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname.tmpl +8 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname.xml +8 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname2.data +1 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname2.tmpl +10 -0
- data/vendor/xmlsec1-1.2.18/tests/aleksey-xmlenc-01/enc-des3cbc-keyname2.xml +12 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/README +203 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/ca2cert.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/ca2cert.pem +66 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/ca2key.pem +9 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/cacert.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/cacert.pem +72 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/cakey.pem +18 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/demoCA/cacert.pem +72 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/demoCA/careq.pem +14 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/demoCA/index.txt +6 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/demoCA/newcerts/01.pem +65 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/demoCA/newcerts/02.pem +93 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/demoCA/newcerts/03.pem +60 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/demoCA/newcerts/04.pem +60 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/demoCA/newcerts/05.pem +83 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/demoCA/private/cakey.pem +18 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/demoCA/serial +1 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/dsacert.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/dsacert.pem +78 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/dsakey.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/dsakey.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/dsakey.p8-der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/dsakey.p8-pem +8 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/dsakey.pem +14 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/expiredcert.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/expiredcert.pem +61 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/expiredkey.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/expiredkey.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/expiredkey.pem +9 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/expiredreq.pem +11 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/gost2001ca.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/gost2001ca.pem +13 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/hmackey.bin +1 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/keys.xml +83 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/largersacert.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/largersacert.pem +100 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/largersakey-win.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/largersakey-winxp.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/largersakey.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/largersakey.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/largersakey.p8-der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/largersakey.p8-pem +53 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/largersakey.pem +51 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/largersareq.pem +30 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/merlincert.pem +20 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/openssl.cnf +316 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/rsacert.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/rsacert.pem +61 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/rsakey-win.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/rsakey-winxp.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/rsakey.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/rsakey.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/rsakey.p8-der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/rsakey.p8-pem +11 -0
- data/vendor/xmlsec1-1.2.18/tests/keys/rsakey.pem +9 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/Readme.txt +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-0.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-1.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-10.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-11.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-12.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-13.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-14.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-15.txt +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-16.txt +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-17.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-18.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-19.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-2.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-20.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-21.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-22.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-23.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-24.txt +1 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-25.txt +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-26.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-27.txt +430 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-3.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-4.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-5.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-6.txt +1 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-7.txt +1 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-8.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/c14n-9.txt +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-c14n-three/signature.xml +526 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-exc-c14n-one/Readme.txt +3 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-exc-c14n-one/exc-signature.tmpl +52 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-exc-c14n-one/exc-signature.xml +73 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/Readme.txt +63 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/badb.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/badb.pem +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/balor.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/balor.pem +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/bres.pem +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/ca.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/ca.pem +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/lugh-cert.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/lugh-cert.pem +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/lugh.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/lugh.pem +12 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/macha.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/macha.pem +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/merlin.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/merlin.pem +21 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/morigu.pem +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/nemain.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/certs/nemain.pem +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-enveloped-dsa.tmpl +22 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-enveloped-dsa.xml +43 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-enveloping-b64-dsa.tmpl +21 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-enveloping-b64-dsa.xml +42 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-enveloping-dsa.tmpl +18 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-enveloping-dsa.xml +39 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-enveloping-hmac-sha1-40.tmpl +16 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-enveloping-hmac-sha1-40.xml +17 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-enveloping-hmac-sha1.tmpl +14 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-enveloping-hmac-sha1.xml +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-enveloping-rsa.tmpl +18 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-enveloping-rsa.xml +31 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-external-b64-dsa.tmpl +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-external-b64-dsa.xml +41 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-external-dsa.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-external-dsa.xml +38 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-keyname.tmpl +16 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-keyname.xml +17 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-retrievalmethod-rawx509crt.tmpl +16 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-retrievalmethod-rawx509crt.xml +17 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-x509-crt-crl.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-x509-crt-crl.xml +47 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-x509-crt.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-x509-crt.xml +38 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-x509-is.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-x509-is.xml +24 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-x509-ski.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-x509-ski.xml +21 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-x509-sn.tmpl +17 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature-x509-sn.xml +21 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature.tmpl +245 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmldsig-twenty-three/signature.xml +269 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/Readme.txt +117 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/bad-encrypt-content-aes128-cbc-kw-aes192.xml +42 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/decryption-transform-except.xml +83 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/decryption-transform.xml +73 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/dh0.p8 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/dh1.p8 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/dsa.p8 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-content-aes128-cbc-kw-aes192.data +27 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-content-aes128-cbc-kw-aes192.tmpl +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-content-aes128-cbc-kw-aes192.xml +45 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-content-aes192-cbc-dh-sha512.xml +113 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-content-aes256-cbc-prop.data +27 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-content-aes256-cbc-prop.tmpl +18 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-content-aes256-cbc-prop.xml +42 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-content-tripledes-cbc.data +27 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-content-tripledes-cbc.tmpl +11 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-content-tripledes-cbc.xml +35 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-aes128-cbc.data +1 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-aes128-cbc.tmpl +11 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-aes128-cbc.xml +12 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-aes192-cbc-kw-aes256.data +1 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-aes192-cbc-kw-aes256.tmpl +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-aes192-cbc-kw-aes256.xml +22 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-aes256-cbc-kw-tripledes.data +1 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-aes256-cbc-kw-tripledes.tmpl +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-aes256-cbc-kw-tripledes.xml +22 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p-sha256.xml +46 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p.data +1 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p.tmpl +21 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p.xml +43 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-element-aes128-cbc-rsa-1_5.data +27 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-element-aes128-cbc-rsa-1_5.tmpl +19 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-element-aes128-cbc-rsa-1_5.xml +63 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-element-aes192-cbc-ref.data +36 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-element-aes192-cbc-ref.xml +42 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-carried-kw-aes256.xml +57 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-kw-aes256-dh-ripemd160.xml +122 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-retrieved-kw-aes256.data +40 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-retrieved-kw-aes256.xml +47 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-element-tripledes-cbc-kw-aes128.data +27 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-element-tripledes-cbc-kw-aes128.tmpl +20 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encrypt-element-tripledes-cbc-kw-aes128.xml +43 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encsig-hmac-sha256-dh.xml +98 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encsig-hmac-sha256-kw-tripledes-dh.xml +108 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encsig-hmac-sha256-rsa-1_5.xml +46 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encsig-hmac-sha256-rsa-oaep-mgf1p.xml +51 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encsig-ripemd160-hmac-ripemd160-kw-tripledes.tmpl +25 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encsig-ripemd160-hmac-ripemd160-kw-tripledes.xml +27 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encsig-sha256-hmac-sha256-kw-aes128.xml +27 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encsig-sha384-hmac-sha384-kw-aes192.xml +27 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/encsig-sha512-hmac-sha512-kw-aes256.xml +28 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/ids.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/keys.xml +42 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/plaintext.xml +24 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/rsa.p8 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/rsapriv.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/rsapriv.p12 +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/rsapriv.p8-der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/rsapriv.p8-pem +17 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/rsapriv.pem +15 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xmlenc-five/rsapub.pem +6 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xpath-filter2-three/Readme.txt +23 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xpath-filter2-three/sign-spec-c14n-0.txt +11 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xpath-filter2-three/sign-spec-c14n-1.txt +0 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xpath-filter2-three/sign-spec-c14n-2.txt +25 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xpath-filter2-three/sign-spec.tmpl +50 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xpath-filter2-three/sign-spec.xml +122 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xpath-filter2-three/sign-xfdl-c14n-0.txt +3986 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xpath-filter2-three/sign-xfdl.tmpl +4153 -0
- data/vendor/xmlsec1-1.2.18/tests/merlin-xpath-filter2-three/sign-xfdl.xml +4225 -0
- data/vendor/xmlsec1-1.2.18/tests/nss.supp +220 -0
- data/vendor/xmlsec1-1.2.18/tests/nssdb/cert8.db +0 -0
- data/vendor/xmlsec1-1.2.18/tests/nssdb/key3.db +0 -0
- data/vendor/xmlsec1-1.2.18/tests/nssdb/secmod.db +0 -0
- data/vendor/xmlsec1-1.2.18/tests/openssl.supp +63 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/README.txt +248 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/certs/crl.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/certs/dsa-ca-cert.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/certs/dsa-cert.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/certs/enc-dsa-key.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/certs/enc-rsa-key.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/certs/hmackey.bin +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/certs/rsa-ca-cert.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/certs/rsa-cert.der +0 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/document-stylesheet.xml +7 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/document.b64 +4 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/document.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/document.xsl +45 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-big.xml +39 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-dsa-detached.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-dsa-enveloped.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-dsa-enveloping.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-dsa-manifest.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-hmac-md5-c14n-enveloping.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-hmac-sha1-40-c14n-comments-detached.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-hmac-sha1-40-exclusive-c14n-comments-detached.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-hmac-sha1-exclusive-c14n-comments-detached.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-hmac-sha1-exclusive-c14n-enveloped.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-detached-b64-transform.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-detached-xpath-transform.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-detached-xslt-transform-bad-retrieval-method.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-detached-xslt-transform-retrieval-method.xml +39 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-detached-xslt-transform.xml +39 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-detached.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-enveloped-bad-digest-val.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-enveloped-bad-sig.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-enveloped.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-enveloping.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-manifest-x509-data-cert-chain.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-manifest-x509-data-cert.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-manifest-x509-data-issuer-serial.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-manifest-x509-data-ski.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-manifest-x509-data-subject-name.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-manifest.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-xpath-transform-enveloped.xml +6 -0
- data/vendor/xmlsec1-1.2.18/tests/phaos-xmldsig-three/signature-rsa-~x509-data-crl.xml +1 -0
- data/vendor/xmlsec1-1.2.18/tests/testDSig.sh +875 -0
- data/vendor/xmlsec1-1.2.18/tests/testEnc.sh +411 -0
- data/vendor/xmlsec1-1.2.18/tests/testKeys.sh +69 -0
- data/vendor/xmlsec1-1.2.18/tests/testRes.sh +20 -0
- data/vendor/xmlsec1-1.2.18/tests/testXKMS.sh +129 -0
- data/vendor/xmlsec1-1.2.18/tests/testrun.sh +443 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/c14n11/xml-base-input.xml +17 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/defCan-1.tmpl +2 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/defCan-1.xml +2 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/defCan-2.tmpl +2 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/defCan-2.xml +2 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/defCan-3.tmpl +2 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/defCan-3.xml +2 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/xpointer-1-SUN.xml +21 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/xpointer-2-SUN.xml +21 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/xpointer-3-SUN.xml +21 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/xpointer-4-SUN.xml +21 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/xpointer-5-SUN.xml +21 -0
- data/vendor/xmlsec1-1.2.18/tests/xmldsig2ed-tests/xpointer-6-SUN.xml +21 -0
- data/vendor/xmlsec1-1.2.18/win32/Makefile.msvc +699 -0
- data/vendor/xmlsec1-1.2.18/win32/README.txt +168 -12
- data/vendor/xmlsec1-1.2.18/win32/configure.js +395 -0
- data/vendor/xmlsec1-1.2.18/win32/libxmlsec.def.src +25 -0
- data/vendor/xmlsec1-1.2.18/win32/mycfg.bat +21 -0
- data/vendor/xmlsec1-1.2.18/xmlsec-config.in +243 -0
- data/vendor/xmlsec1-1.2.18/xmlsec-gcrypt.pc.in +11 -0
- data/vendor/xmlsec1-1.2.18/xmlsec-gnutls.pc.in +11 -0
- data/vendor/xmlsec1-1.2.18/xmlsec-nss.pc.in +11 -0
- data/vendor/xmlsec1-1.2.18/xmlsec-openssl.pc.in +11 -0
- data/vendor/xmlsec1-1.2.18/xmlsec.pc.in +11 -0
- data/vendor/xmlsec1-1.2.18/xmlsec.spec.in +185 -0
- data/vendor/xmlsec1-1.2.18/xmlsec1-config +243 -0
- data/vendor/xmlsec1-1.2.18/xmlsec1-gcrypt.pc +11 -0
- data/vendor/xmlsec1-1.2.18/xmlsec1-gnutls.pc +11 -0
- data/vendor/xmlsec1-1.2.18/xmlsec1-nss.pc +11 -0
- data/vendor/xmlsec1-1.2.18/xmlsec1-openssl.pc +11 -0
- data/vendor/xmlsec1-1.2.18/xmlsec1.m4 +172 -0
- data/vendor/xmlsec1-1.2.18/xmlsec1.pc +11 -0
- data/vendor/xmlsec1-1.2.18/xmlsec1.spec +185 -0
- data/vendor/xmlsec1-1.2.18/xmlsec1Conf.sh +13 -0
- data/vendor/xmlsec1-1.2.18/xmlsecConf.sh.in +13 -0
- data/xmlsec-shim.gemspec +18 -0
- metadata +1014 -0
@@ -0,0 +1,128 @@
|
|
1
|
+
WHAT VERSION OF NSS?
|
2
|
+
------------------------------------------------------------------------
|
3
|
+
NSS 3.9 or greater and NSPR 4.4.1 or greater are required.
|
4
|
+
|
5
|
+
KEYS MANAGER
|
6
|
+
------------------------------------------------------------------------
|
7
|
+
|
8
|
+
xmlsec-nss key manager uses a custom Keys Store, and a custom X509 Store.
|
9
|
+
The custom Keys Store and the X509 Store use the NSS database as the underlying
|
10
|
+
store for public/private keys, Certs and CRLs.
|
11
|
+
|
12
|
+
The NSS Keys store uses the Simple Keys Store on top of the NSS repository.
|
13
|
+
The reason for this is that XMLSEC's generic adoptkey/getKey functions use a
|
14
|
+
XMLSEC key object that contains more attributes than the raw NSS key object,
|
15
|
+
and the getkey function may use a combination of one or more of these attributes
|
16
|
+
(name, type, usage, Id) to find a key. There is no straightforward 1-1 mapping
|
17
|
+
between XMLSEC's adoptkey/getkey and NSS's APIs.
|
18
|
+
|
19
|
+
For example, the store may be asked to adopt a symmetric key, and later asked
|
20
|
+
to find it just by name. Or the store may be asked to adopt a private key
|
21
|
+
just by its type, and later asked to find it just by type. The key returned
|
22
|
+
by getKey is expected to contain all the attributes that were present at the
|
23
|
+
time of adoptkey - NSS store does not provide a way to store app-specific
|
24
|
+
attributes.
|
25
|
+
|
26
|
+
When a key is adopted by the NSS Keys Store, it is simply saved in the
|
27
|
+
Simple Keys Store. It is not saved into the NSS database. The only
|
28
|
+
way to load keys into the NSS database is with a load operation through
|
29
|
+
the XMLSEC API or via an administrator operation.
|
30
|
+
|
31
|
+
When a getKey is done on the NSS Keys Store, it first checks the Simple
|
32
|
+
Keys Store. If the key is found there, it is returned. If not, the key
|
33
|
+
is searched in the NSS database. If found, the key is stored in the
|
34
|
+
Simple Keys Store before it is returned.
|
35
|
+
|
36
|
+
|
37
|
+
Thus, the various sources for keys/certs/crls for an XMLSEC-NSS application
|
38
|
+
are:
|
39
|
+
- elements in XML documents
|
40
|
+
- PKCS12 and DER files
|
41
|
+
- NSS Database
|
42
|
+
|
43
|
+
|
44
|
+
KNOWN ISSUES
|
45
|
+
------------------------------------------------------------------------
|
46
|
+
1) NSS needs to provide a way to convert a DER integer string to an ASCII
|
47
|
+
decimal string. Once NSS is fixed, the function xmlSecNssASN1IntegerWrite
|
48
|
+
in src/nss/x509.c needs to be implemented.
|
49
|
+
NSS bug: http://bugzilla.mozilla.org/show_bug.cgi?id=212864
|
50
|
+
xmlsec bug: http://bugzilla.gnome.org/show_bug.cgi?id=118633
|
51
|
+
|
52
|
+
2) RSA Encryption/Decryption using PKCS#1 v1.5 padding not currently exposed
|
53
|
+
in NSS. This causes some tests to fail.
|
54
|
+
|
55
|
+
NSS bug: http://bugzilla.mozilla.org/show_bug.cgi?id=214236
|
56
|
+
xmlsec bug: http://bugzilla.gnome.org/show_bug.cgi?id=118628
|
57
|
+
|
58
|
+
3) RSA-OAEP is not yet implemented in NSS. This is the only REQUIRED algorithm
|
59
|
+
that is missing from xmlsec-nss.
|
60
|
+
|
61
|
+
NSS bug: http://bugzilla.mozilla.org/show_bug.cgi?id=158747
|
62
|
+
xmlsec bug: http://bugzilla.gnome.org/show_bug.cgi?id=118629
|
63
|
+
|
64
|
+
4) CERT_FindCertByNameString does not work in all cases
|
65
|
+
|
66
|
+
NSS bug: http://bugzilla.mozilla.org/show_bug.cgi?id=210709
|
67
|
+
xmlsec bug: http://bugzilla.gnome.org/show_bug.cgi?id=118631
|
68
|
+
|
69
|
+
5) CERT_FindCertBySubjectKeyID does not work in all cases
|
70
|
+
|
71
|
+
NSS bug: http://bugzilla.mozilla.org/show_bug.cgi?id=211051
|
72
|
+
xmlsec bug: http://bugzilla.gnome.org/show_bug.cgi?id=118632
|
73
|
+
|
74
|
+
6) Finding a cert by Issuer & Serial Number needs the ability to
|
75
|
+
convert an ASCII decimal string to a DER integer string. Filed
|
76
|
+
an RFE against NSS. Once fixed, xmlSecNumToItem in x509vfy.c
|
77
|
+
needs to be changed to use the new function(s) provided
|
78
|
+
|
79
|
+
NSS bug: http://bugzilla.mozilla.org/show_bug.cgi?id=212864
|
80
|
+
xmlsec bug: http://bugzilla.gnome.org/show_bug.cgi?id=118633
|
81
|
+
|
82
|
+
7) RIPEMD160 Digest and RIPEMD160 HMAC is not supported by NSS
|
83
|
+
|
84
|
+
xmlsec bug: http://bugzilla.gnome.org/show_bug.cgi?id=118634
|
85
|
+
|
86
|
+
8) AES Key wrap algorithm is implemented in NSS but not exposed due to
|
87
|
+
some bug src/nss/kw_aes.c uses a workaround which should be removed
|
88
|
+
when the bug is fixed
|
89
|
+
|
90
|
+
NSS bug: http://bugzilla.mozilla.org/show_bug.cgi?id=213795
|
91
|
+
xmlsec bug: http://bugzilla.gnome.org/show_bug.cgi?id=118635
|
92
|
+
|
93
|
+
9) Not all file formats are supported
|
94
|
+
|
95
|
+
- xmlSecNssAppKeyLoad(): This function loads a PKI key from a file.
|
96
|
+
The following formats are supported:
|
97
|
+
. xmlSecKeyDataFormatDer: This expects the private key to be in
|
98
|
+
PrivateKeyInfo format. Note that the DER files containing
|
99
|
+
private keys in the xmlsec test suite aren't in that format
|
100
|
+
. xmlsecKeyDataFormatPkcs12
|
101
|
+
|
102
|
+
The following formats are not supported:
|
103
|
+
. xmlSecKeyDataFormatPkcs8Pem
|
104
|
+
. xmlSecKeyDataFormatPkcs8Der
|
105
|
+
|
106
|
+
|
107
|
+
- xmlSecNssAppCertLoad(): This function loads a cert from a file.
|
108
|
+
The following formats are supported:
|
109
|
+
xmlSecKeyDataFormatDer
|
110
|
+
|
111
|
+
The following formats are not supported:
|
112
|
+
xmlSecKeyDataFormatPem
|
113
|
+
|
114
|
+
10) "Trusted" vs "Untrusted" certificates:
|
115
|
+
The distinction between "trusted" and "untrusted" certificates in
|
116
|
+
xmlsec-openssl is maintained because the OPENSSL application (and
|
117
|
+
not the OPENSSL library) has to maintain a cert store and verify
|
118
|
+
certificates. With NSS, no such distinction is necessary in the
|
119
|
+
application.
|
120
|
+
|
121
|
+
Aleksey: Not sure that I understand this point but thats what Tej wrote.
|
122
|
+
|
123
|
+
11) NSS doesn't support emailAddress in the cert subject. There is a hack
|
124
|
+
that needs to be removed in xmlSecNssX509FindCert function (x509vfy.c):
|
125
|
+
|
126
|
+
https://bugzilla.mozilla.org/show_bug.cgi?id=561689
|
127
|
+
|
128
|
+
12) CRLs from xml document support is not working at all.
|
@@ -0,0 +1,1598 @@
|
|
1
|
+
/**
|
2
|
+
* XMLSec library
|
3
|
+
*
|
4
|
+
* This is free software; see Copyright file in the source
|
5
|
+
* distribution for preciese wording.
|
6
|
+
*
|
7
|
+
* Copyright (C) 2002-2003 Aleksey Sanin <aleksey@aleksey.com>
|
8
|
+
* Copyright (c) 2003 America Online, Inc. All rights reserved.
|
9
|
+
*/
|
10
|
+
#include "globals.h"
|
11
|
+
|
12
|
+
#include <string.h>
|
13
|
+
|
14
|
+
#include <nspr.h>
|
15
|
+
#include <nss.h>
|
16
|
+
#include <pk11func.h>
|
17
|
+
#include <cert.h>
|
18
|
+
#include <keyhi.h>
|
19
|
+
#include <pkcs12.h>
|
20
|
+
#include <p12plcy.h>
|
21
|
+
/*
|
22
|
+
#include <ssl.h>
|
23
|
+
*/
|
24
|
+
|
25
|
+
#include <xmlsec/xmlsec.h>
|
26
|
+
#include <xmlsec/keys.h>
|
27
|
+
#include <xmlsec/transforms.h>
|
28
|
+
#include <xmlsec/errors.h>
|
29
|
+
|
30
|
+
#include <xmlsec/nss/app.h>
|
31
|
+
#include <xmlsec/nss/crypto.h>
|
32
|
+
#include <xmlsec/nss/x509.h>
|
33
|
+
#include <xmlsec/nss/pkikeys.h>
|
34
|
+
#include <xmlsec/nss/keysstore.h>
|
35
|
+
|
36
|
+
/* workaround - NSS exports this but doesn't declare it */
|
37
|
+
extern CERTCertificate * __CERT_NewTempCertificate (CERTCertDBHandle *handle,
|
38
|
+
SECItem *derCert,
|
39
|
+
char *nickname,
|
40
|
+
PRBool isperm,
|
41
|
+
PRBool copyDER);
|
42
|
+
static int xmlSecNssAppCreateSECItem (SECItem *contents,
|
43
|
+
const xmlSecByte* data,
|
44
|
+
xmlSecSize dataSize);
|
45
|
+
static int xmlSecNssAppReadSECItem (SECItem *contents,
|
46
|
+
const char *fn);
|
47
|
+
static PRBool xmlSecNssAppAscii2UCS2Conv (PRBool toUnicode,
|
48
|
+
unsigned char *inBuf,
|
49
|
+
unsigned int inBufLen,
|
50
|
+
unsigned char *outBuf,
|
51
|
+
unsigned int maxOutBufLen,
|
52
|
+
unsigned int *outBufLen,
|
53
|
+
PRBool swapBytes);
|
54
|
+
static SECItem *xmlSecNssAppNicknameCollisionCallback (SECItem *old_nick,
|
55
|
+
PRBool *cancel,
|
56
|
+
void *wincx);
|
57
|
+
static xmlSecKeyPtr xmlSecNssAppDerKeyLoadSECItem (SECItem* secItem);
|
58
|
+
|
59
|
+
/**
|
60
|
+
* xmlSecNssAppInit:
|
61
|
+
* @config: the path to NSS database files.
|
62
|
+
*
|
63
|
+
* General crypto engine initialization. This function is used
|
64
|
+
* by XMLSec command line utility and called before
|
65
|
+
* @xmlSecInit function.
|
66
|
+
*
|
67
|
+
* Returns: 0 on success or a negative value otherwise.
|
68
|
+
*/
|
69
|
+
int
|
70
|
+
xmlSecNssAppInit(const char* config) {
|
71
|
+
SECStatus rv;
|
72
|
+
|
73
|
+
if(config) {
|
74
|
+
rv = NSS_InitReadWrite(config);
|
75
|
+
if(rv != SECSuccess) {
|
76
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
77
|
+
NULL,
|
78
|
+
"NSS_InitReadWrite",
|
79
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
80
|
+
"config=%s",
|
81
|
+
xmlSecErrorsSafeString(config));
|
82
|
+
return(-1);
|
83
|
+
}
|
84
|
+
} else {
|
85
|
+
rv = NSS_NoDB_Init(NULL);
|
86
|
+
if(rv != SECSuccess) {
|
87
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
88
|
+
NULL,
|
89
|
+
"NSS_NoDB_Init",
|
90
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
91
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
92
|
+
return(-1);
|
93
|
+
}
|
94
|
+
}
|
95
|
+
|
96
|
+
/* configure PKCS11 */
|
97
|
+
PK11_ConfigurePKCS11("manufacturesID", "libraryDescription",
|
98
|
+
"tokenDescription", "privateTokenDescription",
|
99
|
+
"slotDescription", "privateSlotDescription",
|
100
|
+
"fipsSlotDescription", "fipsPrivateSlotDescription",
|
101
|
+
0, 0);
|
102
|
+
|
103
|
+
/* setup for PKCS12 */
|
104
|
+
PORT_SetUCS2_ASCIIConversionFunction(xmlSecNssAppAscii2UCS2Conv);
|
105
|
+
SEC_PKCS12EnableCipher(PKCS12_RC4_40, 1);
|
106
|
+
SEC_PKCS12EnableCipher(PKCS12_RC4_128, 1);
|
107
|
+
SEC_PKCS12EnableCipher(PKCS12_RC2_CBC_40, 1);
|
108
|
+
SEC_PKCS12EnableCipher(PKCS12_RC2_CBC_128, 1);
|
109
|
+
SEC_PKCS12EnableCipher(PKCS12_DES_56, 1);
|
110
|
+
SEC_PKCS12EnableCipher(PKCS12_DES_EDE3_168, 1);
|
111
|
+
SEC_PKCS12SetPreferredCipher(PKCS12_DES_EDE3_168, 1);
|
112
|
+
|
113
|
+
return(0);
|
114
|
+
}
|
115
|
+
|
116
|
+
/**
|
117
|
+
* xmlSecNssAppShutdown:
|
118
|
+
*
|
119
|
+
* General crypto engine shutdown. This function is used
|
120
|
+
* by XMLSec command line utility and called after
|
121
|
+
* @xmlSecShutdown function.
|
122
|
+
*
|
123
|
+
* Returns: 0 on success or a negative value otherwise.
|
124
|
+
*/
|
125
|
+
int
|
126
|
+
xmlSecNssAppShutdown(void) {
|
127
|
+
SECStatus rv;
|
128
|
+
/*
|
129
|
+
SSL_ClearSessionCache();
|
130
|
+
*/
|
131
|
+
PK11_LogoutAll();
|
132
|
+
rv = NSS_Shutdown();
|
133
|
+
if(rv != SECSuccess) {
|
134
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
135
|
+
NULL,
|
136
|
+
"NSS_Shutdown",
|
137
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
138
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
139
|
+
return(-1);
|
140
|
+
}
|
141
|
+
return(0);
|
142
|
+
}
|
143
|
+
|
144
|
+
|
145
|
+
static int
|
146
|
+
xmlSecNssAppCreateSECItem(SECItem *contents, const xmlSecByte* data, xmlSecSize dataSize) {
|
147
|
+
xmlSecAssert2(contents != NULL, -1);
|
148
|
+
xmlSecAssert2(data != NULL, -1);
|
149
|
+
|
150
|
+
contents->data = 0;
|
151
|
+
if (!SECITEM_AllocItem(NULL, contents, dataSize)) {
|
152
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
153
|
+
NULL,
|
154
|
+
"SECITEM_AllocItem",
|
155
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
156
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
157
|
+
return(-1);
|
158
|
+
}
|
159
|
+
|
160
|
+
if(dataSize > 0) {
|
161
|
+
xmlSecAssert2(contents->data != NULL, -1);
|
162
|
+
memcpy(contents->data, data, dataSize);
|
163
|
+
}
|
164
|
+
|
165
|
+
return (0);
|
166
|
+
}
|
167
|
+
|
168
|
+
static int
|
169
|
+
xmlSecNssAppReadSECItem(SECItem *contents, const char *fn) {
|
170
|
+
PRFileInfo info;
|
171
|
+
PRFileDesc *file = NULL;
|
172
|
+
PRInt32 numBytes;
|
173
|
+
PRStatus prStatus;
|
174
|
+
int ret = -1;
|
175
|
+
|
176
|
+
xmlSecAssert2(contents != NULL, -1);
|
177
|
+
xmlSecAssert2(fn != NULL, -1);
|
178
|
+
|
179
|
+
file = PR_Open(fn, PR_RDONLY, 00660);
|
180
|
+
if (file == NULL) {
|
181
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
182
|
+
NULL,
|
183
|
+
"PR_Open",
|
184
|
+
XMLSEC_ERRORS_R_IO_FAILED,
|
185
|
+
"filename=%s",
|
186
|
+
xmlSecErrorsSafeString(fn));
|
187
|
+
goto done;
|
188
|
+
}
|
189
|
+
|
190
|
+
prStatus = PR_GetOpenFileInfo(file, &info);
|
191
|
+
if (prStatus != PR_SUCCESS) {
|
192
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
193
|
+
NULL,
|
194
|
+
"PR_GetOpenFileInfo",
|
195
|
+
XMLSEC_ERRORS_R_IO_FAILED,
|
196
|
+
"filename=%s",
|
197
|
+
xmlSecErrorsSafeString(fn));
|
198
|
+
goto done;
|
199
|
+
}
|
200
|
+
|
201
|
+
contents->data = 0;
|
202
|
+
if (!SECITEM_AllocItem(NULL, contents, info.size)) {
|
203
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
204
|
+
NULL,
|
205
|
+
"SECITEM_AllocItem",
|
206
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
207
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
208
|
+
goto done;
|
209
|
+
}
|
210
|
+
|
211
|
+
numBytes = PR_Read(file, contents->data, info.size);
|
212
|
+
if (numBytes != info.size) {
|
213
|
+
SECITEM_FreeItem(contents, PR_FALSE);
|
214
|
+
goto done;
|
215
|
+
}
|
216
|
+
|
217
|
+
ret = 0;
|
218
|
+
done:
|
219
|
+
if (file) {
|
220
|
+
PR_Close(file);
|
221
|
+
}
|
222
|
+
|
223
|
+
return (ret);
|
224
|
+
}
|
225
|
+
|
226
|
+
static PRBool
|
227
|
+
xmlSecNssAppAscii2UCS2Conv(PRBool toUnicode,
|
228
|
+
unsigned char *inBuf,
|
229
|
+
unsigned int inBufLen,
|
230
|
+
unsigned char *outBuf,
|
231
|
+
unsigned int maxOutBufLen,
|
232
|
+
unsigned int *outBufLen,
|
233
|
+
PRBool swapBytes ATTRIBUTE_UNUSED)
|
234
|
+
{
|
235
|
+
SECItem it;
|
236
|
+
|
237
|
+
if (toUnicode == PR_FALSE) {
|
238
|
+
return (PR_FALSE);
|
239
|
+
}
|
240
|
+
|
241
|
+
memset(&it, 0, sizeof(it));
|
242
|
+
it.data = inBuf;
|
243
|
+
it.len = inBufLen;
|
244
|
+
|
245
|
+
return(PORT_UCS2_UTF8Conversion(toUnicode, it.data, it.len,
|
246
|
+
outBuf, maxOutBufLen, outBufLen));
|
247
|
+
}
|
248
|
+
|
249
|
+
static SECItem *
|
250
|
+
xmlSecNssAppNicknameCollisionCallback(SECItem *old_nick ATTRIBUTE_UNUSED,
|
251
|
+
PRBool *cancel,
|
252
|
+
void *wincx ATTRIBUTE_UNUSED)
|
253
|
+
{
|
254
|
+
if (cancel == NULL) {
|
255
|
+
return (NULL);
|
256
|
+
}
|
257
|
+
|
258
|
+
/* XXX not handled yet */
|
259
|
+
*cancel = PR_TRUE;
|
260
|
+
return (NULL);
|
261
|
+
}
|
262
|
+
|
263
|
+
/**
|
264
|
+
* xmlSecNssAppKeyLoad:
|
265
|
+
* @filename: the key filename.
|
266
|
+
* @format: the key file format.
|
267
|
+
* @pwd: the key file password.
|
268
|
+
* @pwdCallback: the key password callback.
|
269
|
+
* @pwdCallbackCtx: the user context for password callback.
|
270
|
+
*
|
271
|
+
* Reads key from a file
|
272
|
+
*
|
273
|
+
* Returns: pointer to the key or NULL if an error occurs.
|
274
|
+
*/
|
275
|
+
xmlSecKeyPtr
|
276
|
+
xmlSecNssAppKeyLoad(const char *filename, xmlSecKeyDataFormat format,
|
277
|
+
const char *pwd, void* pwdCallback, void* pwdCallbackCtx) {
|
278
|
+
SECItem secItem;
|
279
|
+
xmlSecKeyPtr res;
|
280
|
+
int ret;
|
281
|
+
|
282
|
+
xmlSecAssert2(filename != NULL, NULL);
|
283
|
+
xmlSecAssert2(format != xmlSecKeyDataFormatUnknown, NULL);
|
284
|
+
|
285
|
+
/* read the file contents */
|
286
|
+
memset(&secItem, 0, sizeof(secItem));
|
287
|
+
ret = xmlSecNssAppReadSECItem(&secItem, filename);
|
288
|
+
if(ret < 0) {
|
289
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
290
|
+
NULL,
|
291
|
+
"xmlSecNssAppReadSECItem",
|
292
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
293
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
294
|
+
return(NULL);
|
295
|
+
}
|
296
|
+
|
297
|
+
res = xmlSecNssAppKeyLoadSECItem(&secItem, format, pwd, pwdCallback, pwdCallbackCtx);
|
298
|
+
if(res == NULL) {
|
299
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
300
|
+
NULL,
|
301
|
+
"xmlSecNssAppKeyLoadSECItem",
|
302
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
303
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
304
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
305
|
+
return(NULL);
|
306
|
+
}
|
307
|
+
|
308
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
309
|
+
return(res);
|
310
|
+
}
|
311
|
+
|
312
|
+
/**
|
313
|
+
* xmlSecNssAppKeyLoadMemory:
|
314
|
+
* @data: the key binary data.
|
315
|
+
* @dataSize: the key binary data size.
|
316
|
+
* @format: the key data format.
|
317
|
+
* @pwd: the key data2 password.
|
318
|
+
* @pwdCallback: the key password callback.
|
319
|
+
* @pwdCallbackCtx: the user context for password callback.
|
320
|
+
*
|
321
|
+
* Reads key from a binary @data.
|
322
|
+
*
|
323
|
+
* Returns: pointer to the key or NULL if an error occurs.
|
324
|
+
*/
|
325
|
+
xmlSecKeyPtr
|
326
|
+
xmlSecNssAppKeyLoadMemory(const xmlSecByte* data, xmlSecSize dataSize, xmlSecKeyDataFormat format,
|
327
|
+
const char *pwd, void* pwdCallback, void* pwdCallbackCtx) {
|
328
|
+
SECItem secItem;
|
329
|
+
xmlSecKeyPtr res;
|
330
|
+
int ret;
|
331
|
+
|
332
|
+
xmlSecAssert2(data != NULL, NULL);
|
333
|
+
xmlSecAssert2(format != xmlSecKeyDataFormatUnknown, NULL);
|
334
|
+
|
335
|
+
memset(&secItem, 0, sizeof(secItem));
|
336
|
+
ret = xmlSecNssAppCreateSECItem(&secItem, data, dataSize);
|
337
|
+
if(ret < 0) {
|
338
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
339
|
+
NULL,
|
340
|
+
"xmlSecNssAppCreateSECItem",
|
341
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
342
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
343
|
+
return(NULL);
|
344
|
+
}
|
345
|
+
|
346
|
+
res = xmlSecNssAppKeyLoadSECItem(&secItem, format, pwd, pwdCallback, pwdCallbackCtx);
|
347
|
+
if(res == NULL) {
|
348
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
349
|
+
NULL,
|
350
|
+
"xmlSecNssAppKeyLoadSECItem",
|
351
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
352
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
353
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
354
|
+
return(NULL);
|
355
|
+
}
|
356
|
+
|
357
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
358
|
+
return(res);
|
359
|
+
}
|
360
|
+
|
361
|
+
/**
|
362
|
+
* xmlSecNssAppKeyLoadSECItem:
|
363
|
+
* @secItem: the pointer to sec item.
|
364
|
+
* @format: the key format.
|
365
|
+
* @pwd: the key password.
|
366
|
+
* @pwdCallback: the key password callback.
|
367
|
+
* @pwdCallbackCtx: the user context for password callback.
|
368
|
+
*
|
369
|
+
* Reads key from a file
|
370
|
+
*
|
371
|
+
* Returns: pointer to the key or NULL if an error occurs.
|
372
|
+
*/
|
373
|
+
xmlSecKeyPtr
|
374
|
+
xmlSecNssAppKeyLoadSECItem(SECItem* secItem, xmlSecKeyDataFormat format,
|
375
|
+
const char *pwd,
|
376
|
+
void* pwdCallback,
|
377
|
+
void* pwdCallbackCtx) {
|
378
|
+
xmlSecKeyPtr key = NULL;
|
379
|
+
|
380
|
+
xmlSecAssert2(secItem != NULL, NULL);
|
381
|
+
xmlSecAssert2(format != xmlSecKeyDataFormatUnknown, NULL);
|
382
|
+
|
383
|
+
switch(format) {
|
384
|
+
#ifndef XMLSEC_NO_X509
|
385
|
+
case xmlSecKeyDataFormatPkcs12:
|
386
|
+
key = xmlSecNssAppPkcs12LoadSECItem(secItem, pwd, pwdCallback, pwdCallbackCtx);
|
387
|
+
if(key == NULL) {
|
388
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
389
|
+
NULL,
|
390
|
+
"xmlSecNssAppPkcs12LoadSECItem",
|
391
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
392
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
393
|
+
return(NULL);
|
394
|
+
}
|
395
|
+
break;
|
396
|
+
case xmlSecKeyDataFormatCertDer:
|
397
|
+
key = xmlSecNssAppKeyFromCertLoadSECItem(secItem, format);
|
398
|
+
if(key == NULL) {
|
399
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
400
|
+
NULL,
|
401
|
+
"xmlSecNssAppKeyFromCertLoadSECItem",
|
402
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
403
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
404
|
+
return(NULL);
|
405
|
+
}
|
406
|
+
break;
|
407
|
+
#endif /* XMLSEC_NO_X509 */
|
408
|
+
case xmlSecKeyDataFormatDer:
|
409
|
+
key = xmlSecNssAppDerKeyLoadSECItem(secItem);
|
410
|
+
if(key == NULL) {
|
411
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
412
|
+
NULL,
|
413
|
+
"xmlSecNssAppDerKeyLoadSECItem",
|
414
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
415
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
416
|
+
return(NULL);
|
417
|
+
}
|
418
|
+
break;
|
419
|
+
default:
|
420
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
421
|
+
NULL,
|
422
|
+
"xmlSecNssAppKeyLoad",
|
423
|
+
XMLSEC_ERRORS_R_INVALID_FORMAT,
|
424
|
+
"format=%d", format);
|
425
|
+
return(NULL);
|
426
|
+
}
|
427
|
+
|
428
|
+
return(key);
|
429
|
+
}
|
430
|
+
|
431
|
+
static xmlSecKeyPtr
|
432
|
+
xmlSecNssAppDerKeyLoadSECItem(SECItem* secItem) {
|
433
|
+
xmlSecKeyPtr key = NULL;
|
434
|
+
xmlSecKeyPtr retval = NULL;
|
435
|
+
xmlSecKeyDataPtr data = NULL;
|
436
|
+
int ret;
|
437
|
+
SECKEYPublicKey *pubkey = NULL;
|
438
|
+
SECKEYPrivateKey *privkey = NULL;
|
439
|
+
CERTSubjectPublicKeyInfo *spki = NULL;
|
440
|
+
SECItem nickname;
|
441
|
+
PK11SlotInfo *slot = NULL;
|
442
|
+
SECStatus status;
|
443
|
+
|
444
|
+
xmlSecAssert2(secItem != NULL, NULL);
|
445
|
+
|
446
|
+
/* we're importing a key about which we know nothing yet, just use the
|
447
|
+
* internal slot
|
448
|
+
*/
|
449
|
+
slot = xmlSecNssGetInternalKeySlot();
|
450
|
+
if (slot == NULL) {
|
451
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
452
|
+
NULL,
|
453
|
+
"xmlSecNssGetInternalKeySlot",
|
454
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
455
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
456
|
+
goto done;
|
457
|
+
}
|
458
|
+
|
459
|
+
nickname.len = 0;
|
460
|
+
nickname.data = NULL;
|
461
|
+
|
462
|
+
|
463
|
+
/* TRY PRIVATE KEY FIRST
|
464
|
+
* Note: This expects the key to be in PrivateKeyInfo format. The
|
465
|
+
* DER files created from PEM via openssl utilities aren't in that
|
466
|
+
* format
|
467
|
+
*/
|
468
|
+
status = PK11_ImportDERPrivateKeyInfoAndReturnKey(slot, secItem,
|
469
|
+
&nickname, NULL, PR_FALSE,
|
470
|
+
PR_TRUE, KU_ALL, &privkey, NULL);
|
471
|
+
if (status != SECSuccess) {
|
472
|
+
/* TRY PUBLIC KEY */
|
473
|
+
spki = SECKEY_DecodeDERSubjectPublicKeyInfo(secItem);
|
474
|
+
if (spki == NULL) {
|
475
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
476
|
+
NULL,
|
477
|
+
"SECKEY_DecodeDERSubjectPublicKeyInfo",
|
478
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
479
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
480
|
+
}
|
481
|
+
|
482
|
+
pubkey = SECKEY_ExtractPublicKey(spki);
|
483
|
+
if (pubkey == NULL) {
|
484
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
485
|
+
NULL,
|
486
|
+
"SECKEY_ExtractPublicKey",
|
487
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
488
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
489
|
+
goto done;
|
490
|
+
}
|
491
|
+
}
|
492
|
+
|
493
|
+
data = xmlSecNssPKIAdoptKey(privkey, pubkey);
|
494
|
+
if(data == NULL) {
|
495
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
496
|
+
NULL,
|
497
|
+
"xmlSecNssPKIAdoptKey",
|
498
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
499
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
500
|
+
goto done;
|
501
|
+
}
|
502
|
+
privkey = NULL;
|
503
|
+
pubkey = NULL;
|
504
|
+
|
505
|
+
key = xmlSecKeyCreate();
|
506
|
+
if(key == NULL) {
|
507
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
508
|
+
NULL,
|
509
|
+
"xmlSecKeyCreate",
|
510
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
511
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
512
|
+
goto done;
|
513
|
+
}
|
514
|
+
|
515
|
+
ret = xmlSecKeySetValue(key, data);
|
516
|
+
if(ret < 0) {
|
517
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
518
|
+
NULL,
|
519
|
+
"xmlSecKeySetValue",
|
520
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
521
|
+
"data=%s",
|
522
|
+
xmlSecErrorsSafeString(xmlSecKeyDataGetName(data)));
|
523
|
+
goto done;
|
524
|
+
}
|
525
|
+
retval = key;
|
526
|
+
key = NULL;
|
527
|
+
data = NULL;
|
528
|
+
|
529
|
+
|
530
|
+
done:
|
531
|
+
if(slot != NULL) {
|
532
|
+
PK11_FreeSlot(slot);
|
533
|
+
}
|
534
|
+
if(privkey != NULL) {
|
535
|
+
SECKEY_DestroyPrivateKey(privkey);
|
536
|
+
}
|
537
|
+
if(pubkey != NULL) {
|
538
|
+
SECKEY_DestroyPublicKey(pubkey);
|
539
|
+
}
|
540
|
+
if(key != NULL) {
|
541
|
+
xmlSecKeyDestroy(key);
|
542
|
+
}
|
543
|
+
if(data != NULL) {
|
544
|
+
xmlSecKeyDataDestroy(data);
|
545
|
+
}
|
546
|
+
if(spki != NULL) {
|
547
|
+
SECKEY_DestroySubjectPublicKeyInfo(spki);
|
548
|
+
}
|
549
|
+
return (retval);
|
550
|
+
}
|
551
|
+
|
552
|
+
#ifndef XMLSEC_NO_X509
|
553
|
+
/**
|
554
|
+
* xmlSecNssAppKeyCertLoad:
|
555
|
+
* @key: the pointer to key.
|
556
|
+
* @filename: the certificate filename.
|
557
|
+
* @format: the certificate file format.
|
558
|
+
*
|
559
|
+
* Reads the certificate from $@filename and adds it to key
|
560
|
+
*
|
561
|
+
* Returns: 0 on success or a negative value otherwise.
|
562
|
+
*/
|
563
|
+
int
|
564
|
+
xmlSecNssAppKeyCertLoad(xmlSecKeyPtr key, const char* filename, xmlSecKeyDataFormat format) {
|
565
|
+
SECItem secItem;
|
566
|
+
int ret;
|
567
|
+
|
568
|
+
xmlSecAssert2(key != NULL, -1);
|
569
|
+
xmlSecAssert2(filename != NULL, -1);
|
570
|
+
xmlSecAssert2(format != xmlSecKeyDataFormatUnknown, -1);
|
571
|
+
|
572
|
+
/* read the file contents */
|
573
|
+
memset(&secItem, 0, sizeof(secItem));
|
574
|
+
ret = xmlSecNssAppReadSECItem(&secItem, filename);
|
575
|
+
if(ret < 0) {
|
576
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
577
|
+
NULL,
|
578
|
+
"xmlSecNssAppReadSECItem",
|
579
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
580
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
581
|
+
return(-1);
|
582
|
+
}
|
583
|
+
|
584
|
+
ret = xmlSecNssAppKeyCertLoadSECItem(key, &secItem, format);
|
585
|
+
if(ret < 0) {
|
586
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
587
|
+
NULL,
|
588
|
+
"xmlSecNssAppKeyCertLoadSECItem",
|
589
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
590
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
591
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
592
|
+
return(-1);
|
593
|
+
}
|
594
|
+
|
595
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
596
|
+
return(0);
|
597
|
+
}
|
598
|
+
|
599
|
+
/**
|
600
|
+
* xmlSecNssAppKeyCertLoadMemory:
|
601
|
+
* @key: the pointer to key.
|
602
|
+
* @data: the key binary data.
|
603
|
+
* @dataSize: the key binary data size.
|
604
|
+
* @format: the certificate format.
|
605
|
+
*
|
606
|
+
* Reads the certificate from @data and adds it to key
|
607
|
+
*
|
608
|
+
* Returns: 0 on success or a negative value otherwise.
|
609
|
+
*/
|
610
|
+
int
|
611
|
+
xmlSecNssAppKeyCertLoadMemory(xmlSecKeyPtr key, const xmlSecByte* data, xmlSecSize dataSize, xmlSecKeyDataFormat format) {
|
612
|
+
SECItem secItem;
|
613
|
+
int ret;
|
614
|
+
|
615
|
+
xmlSecAssert2(key != NULL, -1);
|
616
|
+
xmlSecAssert2(data != NULL, -1);
|
617
|
+
xmlSecAssert2(format != xmlSecKeyDataFormatUnknown, -1);
|
618
|
+
|
619
|
+
/* read the file contents */
|
620
|
+
memset(&secItem, 0, sizeof(secItem));
|
621
|
+
ret = xmlSecNssAppCreateSECItem(&secItem, data, dataSize);
|
622
|
+
if(ret < 0) {
|
623
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
624
|
+
NULL,
|
625
|
+
"xmlSecNssAppCreateSECItem",
|
626
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
627
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
628
|
+
return(-1);
|
629
|
+
}
|
630
|
+
|
631
|
+
ret = xmlSecNssAppKeyCertLoadSECItem(key, &secItem, format);
|
632
|
+
if(ret < 0) {
|
633
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
634
|
+
NULL,
|
635
|
+
"xmlSecNssAppKeyCertLoadSECItem",
|
636
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
637
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
638
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
639
|
+
return(-1);
|
640
|
+
}
|
641
|
+
|
642
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
643
|
+
return(0);
|
644
|
+
}
|
645
|
+
|
646
|
+
/**
|
647
|
+
* xmlSecNssAppKeyCertLoadSECItem:
|
648
|
+
* @key: the pointer to key.
|
649
|
+
* @secItem: the pointer to SECItem.
|
650
|
+
* @format: the certificate format.
|
651
|
+
*
|
652
|
+
* Reads the certificate from @secItem and adds it to key
|
653
|
+
*
|
654
|
+
* Returns: 0 on success or a negative value otherwise.
|
655
|
+
*/
|
656
|
+
int
|
657
|
+
xmlSecNssAppKeyCertLoadSECItem(xmlSecKeyPtr key, SECItem* secItem, xmlSecKeyDataFormat format) {
|
658
|
+
CERTCertificate *cert=NULL;
|
659
|
+
xmlSecKeyDataPtr data;
|
660
|
+
int ret;
|
661
|
+
|
662
|
+
xmlSecAssert2(key != NULL, -1);
|
663
|
+
xmlSecAssert2(secItem != NULL, -1);
|
664
|
+
xmlSecAssert2(format != xmlSecKeyDataFormatUnknown, -1);
|
665
|
+
|
666
|
+
data = xmlSecKeyEnsureData(key, xmlSecNssKeyDataX509Id);
|
667
|
+
if(data == NULL) {
|
668
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
669
|
+
NULL,
|
670
|
+
"xmlSecKeyEnsureData",
|
671
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
672
|
+
"transform=%s",
|
673
|
+
xmlSecErrorsSafeString(xmlSecTransformKlassGetName(xmlSecNssKeyDataX509Id)));
|
674
|
+
return(-1);
|
675
|
+
}
|
676
|
+
|
677
|
+
switch(format) {
|
678
|
+
case xmlSecKeyDataFormatPkcs8Der:
|
679
|
+
case xmlSecKeyDataFormatDer:
|
680
|
+
cert = __CERT_NewTempCertificate(CERT_GetDefaultCertDB(),
|
681
|
+
secItem, NULL, PR_FALSE, PR_TRUE);
|
682
|
+
if(cert == NULL) {
|
683
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
684
|
+
NULL,
|
685
|
+
"__CERT_NewTempCertificate",
|
686
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
687
|
+
"format=%d", format);
|
688
|
+
return(-1);
|
689
|
+
}
|
690
|
+
break;
|
691
|
+
default:
|
692
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
693
|
+
NULL,
|
694
|
+
NULL,
|
695
|
+
XMLSEC_ERRORS_R_INVALID_FORMAT,
|
696
|
+
"format=%d", format);
|
697
|
+
return(-1);
|
698
|
+
}
|
699
|
+
|
700
|
+
xmlSecAssert2(cert != NULL, -1);
|
701
|
+
ret = xmlSecNssKeyDataX509AdoptCert(data, cert);
|
702
|
+
if(ret < 0) {
|
703
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
704
|
+
NULL,
|
705
|
+
"xmlSecNssKeyDataX509AdoptCert",
|
706
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
707
|
+
"data=%s",
|
708
|
+
xmlSecErrorsSafeString(xmlSecKeyDataGetName(data)));
|
709
|
+
CERT_DestroyCertificate(cert);
|
710
|
+
return(-1);
|
711
|
+
}
|
712
|
+
|
713
|
+
return(0);
|
714
|
+
}
|
715
|
+
|
716
|
+
/**
|
717
|
+
* xmlSecNssAppPkcs12Load:
|
718
|
+
* @filename: the PKCS12 key filename.
|
719
|
+
* @pwd: the PKCS12 file password.
|
720
|
+
* @pwdCallback: the password callback.
|
721
|
+
* @pwdCallbackCtx: the user context for password callback.
|
722
|
+
*
|
723
|
+
* Reads key and all associated certificates from the PKCS12 file.
|
724
|
+
* For uniformity, call xmlSecNssAppKeyLoad instead of this function. Pass
|
725
|
+
* in format=xmlSecKeyDataFormatPkcs12.
|
726
|
+
*
|
727
|
+
* Returns: pointer to the key or NULL if an error occurs.
|
728
|
+
*/
|
729
|
+
xmlSecKeyPtr
|
730
|
+
xmlSecNssAppPkcs12Load(const char *filename, const char *pwd,
|
731
|
+
void *pwdCallback ATTRIBUTE_UNUSED,
|
732
|
+
void* pwdCallbackCtx ATTRIBUTE_UNUSED) {
|
733
|
+
SECItem secItem;
|
734
|
+
xmlSecKeyPtr res;
|
735
|
+
int ret;
|
736
|
+
|
737
|
+
xmlSecAssert2(filename != NULL, NULL);
|
738
|
+
|
739
|
+
/* read the file contents */
|
740
|
+
memset(&secItem, 0, sizeof(secItem));
|
741
|
+
ret = xmlSecNssAppReadSECItem(&secItem, filename);
|
742
|
+
if(ret < 0) {
|
743
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
744
|
+
NULL,
|
745
|
+
"xmlSecNssAppReadSECItem",
|
746
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
747
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
748
|
+
return(NULL);
|
749
|
+
}
|
750
|
+
|
751
|
+
res = xmlSecNssAppPkcs12LoadSECItem(&secItem, pwd, pwdCallback, pwdCallbackCtx);
|
752
|
+
if(res == NULL) {
|
753
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
754
|
+
NULL,
|
755
|
+
"xmlSecNssAppPkcs12LoadSECItem",
|
756
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
757
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
758
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
759
|
+
return(NULL);
|
760
|
+
}
|
761
|
+
|
762
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
763
|
+
return(res);
|
764
|
+
}
|
765
|
+
|
766
|
+
/**
|
767
|
+
* xmlSecNssAppPkcs12LoadMemory:
|
768
|
+
* @data: the key binary data.
|
769
|
+
* @dataSize: the key binary data size.
|
770
|
+
* @pwd: the PKCS12 password.
|
771
|
+
* @pwdCallback: the password callback.
|
772
|
+
* @pwdCallbackCtx: the user context for password callback.
|
773
|
+
*
|
774
|
+
* Reads key and all associated certificates from the PKCS12 binary data.
|
775
|
+
* For uniformity, call xmlSecNssAppKeyLoad instead of this function. Pass
|
776
|
+
* in format=xmlSecKeyDataFormatPkcs12.
|
777
|
+
*
|
778
|
+
* Returns: pointer to the key or NULL if an error occurs.
|
779
|
+
*/
|
780
|
+
xmlSecKeyPtr
|
781
|
+
xmlSecNssAppPkcs12LoadMemory(const xmlSecByte* data, xmlSecSize dataSize, const char *pwd,
|
782
|
+
void *pwdCallback ATTRIBUTE_UNUSED,
|
783
|
+
void* pwdCallbackCtx ATTRIBUTE_UNUSED) {
|
784
|
+
SECItem secItem;
|
785
|
+
xmlSecKeyPtr res;
|
786
|
+
int ret;
|
787
|
+
|
788
|
+
xmlSecAssert2(data != NULL, NULL);
|
789
|
+
|
790
|
+
memset(&secItem, 0, sizeof(secItem));
|
791
|
+
ret = xmlSecNssAppCreateSECItem(&secItem, data, dataSize);
|
792
|
+
if(ret < 0) {
|
793
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
794
|
+
NULL,
|
795
|
+
"xmlSecNssAppCreateSECItem",
|
796
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
797
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
798
|
+
return(NULL);
|
799
|
+
}
|
800
|
+
|
801
|
+
res = xmlSecNssAppPkcs12LoadSECItem(&secItem, pwd, pwdCallback, pwdCallbackCtx);
|
802
|
+
if(res == NULL) {
|
803
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
804
|
+
NULL,
|
805
|
+
"xmlSecNssAppPkcs12LoadSECItem",
|
806
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
807
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
808
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
809
|
+
return(NULL);
|
810
|
+
}
|
811
|
+
|
812
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
813
|
+
return(res);
|
814
|
+
}
|
815
|
+
|
816
|
+
|
817
|
+
/**
|
818
|
+
* xmlSecNssAppPkcs12LoadSECItem:
|
819
|
+
* @secItem: the @SECItem object.
|
820
|
+
* @pwd: the PKCS12 file password.
|
821
|
+
* @pwdCallback: the password callback.
|
822
|
+
* @pwdCallbackCtx: the user context for password callback.
|
823
|
+
*
|
824
|
+
* Reads key and all associated certificates from the PKCS12 SECItem.
|
825
|
+
* For uniformity, call xmlSecNssAppKeyLoad instead of this function. Pass
|
826
|
+
* in format=xmlSecKeyDataFormatPkcs12.
|
827
|
+
*
|
828
|
+
* Returns: pointer to the key or NULL if an error occurs.
|
829
|
+
*/
|
830
|
+
xmlSecKeyPtr
|
831
|
+
xmlSecNssAppPkcs12LoadSECItem(SECItem* secItem, const char *pwd,
|
832
|
+
void *pwdCallback ATTRIBUTE_UNUSED,
|
833
|
+
void* pwdCallbackCtx ATTRIBUTE_UNUSED) {
|
834
|
+
xmlSecKeyPtr key = NULL;
|
835
|
+
xmlSecKeyDataPtr data = NULL;
|
836
|
+
xmlSecKeyDataPtr x509Data = NULL;
|
837
|
+
int ret;
|
838
|
+
PK11SlotInfo *slot = NULL;
|
839
|
+
SECItem pwditem;
|
840
|
+
SECItem uc2_pwditem;
|
841
|
+
SECStatus rv;
|
842
|
+
SECKEYPrivateKey *privkey = NULL;
|
843
|
+
SECKEYPublicKey *pubkey = NULL;
|
844
|
+
CERTCertList *certlist = NULL;
|
845
|
+
CERTCertListNode *head = NULL;
|
846
|
+
CERTCertificate *cert = NULL;
|
847
|
+
CERTCertificate *tmpcert = NULL;
|
848
|
+
SEC_PKCS12DecoderContext *p12ctx = NULL;
|
849
|
+
|
850
|
+
|
851
|
+
xmlSecAssert2((secItem != NULL), NULL);
|
852
|
+
|
853
|
+
if (pwd == NULL) {
|
854
|
+
pwd = "";
|
855
|
+
}
|
856
|
+
memset(&uc2_pwditem, 0, sizeof(uc2_pwditem));
|
857
|
+
|
858
|
+
/* we're importing a key about which we know nothing yet, just use the
|
859
|
+
* internal slot. We have no criteria to choose a slot.
|
860
|
+
*/
|
861
|
+
slot = xmlSecNssGetInternalKeySlot();
|
862
|
+
if (slot == NULL) {
|
863
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
864
|
+
NULL,
|
865
|
+
"xmlSecNssGetInternalKeySlot",
|
866
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
867
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
868
|
+
goto done;
|
869
|
+
}
|
870
|
+
|
871
|
+
pwditem.data = (unsigned char *)pwd;
|
872
|
+
pwditem.len = strlen(pwd)+1;
|
873
|
+
if (!SECITEM_AllocItem(NULL, &uc2_pwditem, 2*pwditem.len)) {
|
874
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
875
|
+
NULL,
|
876
|
+
"SECITEM_AllocItem",
|
877
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
878
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
879
|
+
goto done;
|
880
|
+
}
|
881
|
+
|
882
|
+
if (PORT_UCS2_ASCIIConversion(PR_TRUE, pwditem.data, pwditem.len,
|
883
|
+
uc2_pwditem.data, 2*pwditem.len,
|
884
|
+
&(uc2_pwditem.len), 0) == PR_FALSE) {
|
885
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
886
|
+
NULL,
|
887
|
+
"PORT_UCS2_ASCIIConversion",
|
888
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
889
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
890
|
+
goto done;
|
891
|
+
}
|
892
|
+
|
893
|
+
p12ctx = SEC_PKCS12DecoderStart(&uc2_pwditem, slot, NULL,
|
894
|
+
NULL, NULL, NULL, NULL, NULL);
|
895
|
+
if (p12ctx == NULL) {
|
896
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
897
|
+
NULL,
|
898
|
+
"SEC_PKCS12DecoderStart",
|
899
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
900
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
901
|
+
goto done;
|
902
|
+
}
|
903
|
+
|
904
|
+
rv = SEC_PKCS12DecoderUpdate(p12ctx, secItem->data, secItem->len);
|
905
|
+
if (rv != SECSuccess) {
|
906
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
907
|
+
NULL,
|
908
|
+
"SEC_PKCS12DecoderUpdate",
|
909
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
910
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
911
|
+
goto done;
|
912
|
+
}
|
913
|
+
|
914
|
+
rv = SEC_PKCS12DecoderVerify(p12ctx);
|
915
|
+
if (rv != SECSuccess) {
|
916
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
917
|
+
NULL,
|
918
|
+
"SEC_PKCS12DecoderVerify",
|
919
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
920
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
921
|
+
goto done;
|
922
|
+
}
|
923
|
+
|
924
|
+
rv = SEC_PKCS12DecoderValidateBags(p12ctx, xmlSecNssAppNicknameCollisionCallback);
|
925
|
+
if (rv != SECSuccess) {
|
926
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
927
|
+
NULL,
|
928
|
+
"SEC_PKCS12DecoderValidateBags",
|
929
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
930
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
931
|
+
goto done;
|
932
|
+
}
|
933
|
+
|
934
|
+
rv = SEC_PKCS12DecoderImportBags(p12ctx);
|
935
|
+
if (rv != SECSuccess) {
|
936
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
937
|
+
NULL,
|
938
|
+
"SEC_PKCS12DecoderImportBags",
|
939
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
940
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
941
|
+
goto done;
|
942
|
+
}
|
943
|
+
|
944
|
+
certlist = SEC_PKCS12DecoderGetCerts(p12ctx);
|
945
|
+
if (certlist == NULL) {
|
946
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
947
|
+
NULL,
|
948
|
+
"SEC_PKCS12DecoderGetCerts",
|
949
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
950
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
951
|
+
goto done;
|
952
|
+
}
|
953
|
+
|
954
|
+
x509Data = xmlSecKeyDataCreate(xmlSecNssKeyDataX509Id);
|
955
|
+
if(x509Data == NULL) {
|
956
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
957
|
+
NULL,
|
958
|
+
"xmlSecKeyDataCreate",
|
959
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
960
|
+
"transform=%s",
|
961
|
+
xmlSecErrorsSafeString(xmlSecTransformKlassGetName(xmlSecNssKeyDataX509Id)));
|
962
|
+
goto done;
|
963
|
+
}
|
964
|
+
|
965
|
+
for (head = CERT_LIST_HEAD(certlist);
|
966
|
+
!CERT_LIST_END(head, certlist);
|
967
|
+
head = CERT_LIST_NEXT(head)) {
|
968
|
+
cert = head->cert;
|
969
|
+
privkey = PK11_FindKeyByAnyCert(cert, NULL);
|
970
|
+
|
971
|
+
if (privkey != NULL) {
|
972
|
+
if (data != NULL) {
|
973
|
+
/* we already found a private key.
|
974
|
+
* assume the first private key we find is THE ONE
|
975
|
+
*/
|
976
|
+
SECKEY_DestroyPrivateKey(privkey);
|
977
|
+
privkey = NULL;
|
978
|
+
} else {
|
979
|
+
pubkey = CERT_ExtractPublicKey(cert);
|
980
|
+
if (pubkey == NULL) {
|
981
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
982
|
+
NULL,
|
983
|
+
"CERT_ExtractPublicKey",
|
984
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
985
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
986
|
+
goto done;
|
987
|
+
}
|
988
|
+
data = xmlSecNssPKIAdoptKey(privkey, pubkey);
|
989
|
+
if(data == NULL) {
|
990
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
991
|
+
NULL,
|
992
|
+
"xmlSecNssPKIAdoptKey",
|
993
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
994
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
995
|
+
goto done;
|
996
|
+
}
|
997
|
+
|
998
|
+
pubkey = NULL;
|
999
|
+
privkey = NULL;
|
1000
|
+
|
1001
|
+
tmpcert = CERT_DupCertificate(cert);
|
1002
|
+
if(tmpcert == NULL) {
|
1003
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1004
|
+
NULL,
|
1005
|
+
"CERT_DupCertificate",
|
1006
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
1007
|
+
"data=%s",
|
1008
|
+
xmlSecErrorsSafeString(xmlSecKeyDataGetName(x509Data)));
|
1009
|
+
goto done;
|
1010
|
+
}
|
1011
|
+
|
1012
|
+
ret = xmlSecNssKeyDataX509AdoptKeyCert(x509Data, tmpcert);
|
1013
|
+
if(ret < 0) {
|
1014
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1015
|
+
NULL,
|
1016
|
+
"xmlSecNssKeyDataX509AdoptKeyCert",
|
1017
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1018
|
+
"data=%s",
|
1019
|
+
xmlSecErrorsSafeString(xmlSecKeyDataGetName(x509Data)));
|
1020
|
+
CERT_DestroyCertificate(tmpcert);
|
1021
|
+
goto done;
|
1022
|
+
}
|
1023
|
+
|
1024
|
+
}
|
1025
|
+
}
|
1026
|
+
|
1027
|
+
tmpcert = CERT_DupCertificate(cert);
|
1028
|
+
if(tmpcert == NULL) {
|
1029
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1030
|
+
NULL,
|
1031
|
+
"CERT_DupCertificate",
|
1032
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
1033
|
+
"data=%s",
|
1034
|
+
xmlSecErrorsSafeString(xmlSecKeyDataGetName(x509Data)));
|
1035
|
+
goto done;
|
1036
|
+
}
|
1037
|
+
ret = xmlSecNssKeyDataX509AdoptCert(x509Data, tmpcert);
|
1038
|
+
if(ret < 0) {
|
1039
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1040
|
+
NULL,
|
1041
|
+
"xmlSecNssKeyDataX509AdoptCert",
|
1042
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1043
|
+
"data=%s",
|
1044
|
+
xmlSecErrorsSafeString(xmlSecKeyDataGetName(x509Data)));
|
1045
|
+
CERT_DestroyCertificate(tmpcert);
|
1046
|
+
goto done;
|
1047
|
+
}
|
1048
|
+
|
1049
|
+
} /* end for loop */
|
1050
|
+
|
1051
|
+
if (data == NULL) {
|
1052
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1053
|
+
NULL,
|
1054
|
+
"xmlSecNssAppPkcs12Load",
|
1055
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1056
|
+
"private key not found in PKCS12 file");
|
1057
|
+
goto done;
|
1058
|
+
}
|
1059
|
+
|
1060
|
+
key = xmlSecKeyCreate();
|
1061
|
+
if(key == NULL) {
|
1062
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1063
|
+
NULL,
|
1064
|
+
"xmlSecKeyCreate",
|
1065
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1066
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1067
|
+
goto done;
|
1068
|
+
}
|
1069
|
+
|
1070
|
+
ret = xmlSecKeySetValue(key, data);
|
1071
|
+
if(ret < 0) {
|
1072
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1073
|
+
NULL,
|
1074
|
+
"xmlSecKeySetValue",
|
1075
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1076
|
+
"data=%s",
|
1077
|
+
xmlSecErrorsSafeString(xmlSecKeyDataGetName(x509Data)));
|
1078
|
+
xmlSecKeyDestroy(key);
|
1079
|
+
key = NULL;
|
1080
|
+
goto done;
|
1081
|
+
}
|
1082
|
+
data = NULL;
|
1083
|
+
|
1084
|
+
ret = xmlSecKeyAdoptData(key, x509Data);
|
1085
|
+
if(ret < 0) {
|
1086
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1087
|
+
NULL,
|
1088
|
+
"xmlSecKeyAdoptData",
|
1089
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1090
|
+
"data=%s",
|
1091
|
+
xmlSecErrorsSafeString(xmlSecKeyDataGetName(x509Data)));
|
1092
|
+
xmlSecKeyDestroy(key);
|
1093
|
+
key = NULL;
|
1094
|
+
goto done;
|
1095
|
+
}
|
1096
|
+
x509Data = NULL;
|
1097
|
+
|
1098
|
+
done:
|
1099
|
+
if (p12ctx) {
|
1100
|
+
SEC_PKCS12DecoderFinish(p12ctx);
|
1101
|
+
}
|
1102
|
+
SECITEM_FreeItem(&uc2_pwditem, PR_FALSE);
|
1103
|
+
if (slot) {
|
1104
|
+
PK11_FreeSlot(slot);
|
1105
|
+
}
|
1106
|
+
if (certlist) {
|
1107
|
+
CERT_DestroyCertList(certlist);
|
1108
|
+
}
|
1109
|
+
if(x509Data != NULL) {
|
1110
|
+
xmlSecKeyDataDestroy(x509Data);
|
1111
|
+
}
|
1112
|
+
if(data != NULL) {
|
1113
|
+
xmlSecKeyDataDestroy(data);
|
1114
|
+
}
|
1115
|
+
if (privkey) {
|
1116
|
+
SECKEY_DestroyPrivateKey(privkey);
|
1117
|
+
}
|
1118
|
+
if (pubkey) {
|
1119
|
+
SECKEY_DestroyPublicKey(pubkey);
|
1120
|
+
}
|
1121
|
+
|
1122
|
+
return(key);
|
1123
|
+
}
|
1124
|
+
|
1125
|
+
/**
|
1126
|
+
* xmlSecNssAppKeyFromCertLoadSECItem:
|
1127
|
+
* @secItem: the @SECItem object.
|
1128
|
+
* @format: the cert format.
|
1129
|
+
*
|
1130
|
+
* Loads public key from cert.
|
1131
|
+
*
|
1132
|
+
* Returns: pointer to key or NULL if an error occurs.
|
1133
|
+
*/
|
1134
|
+
xmlSecKeyPtr
|
1135
|
+
xmlSecNssAppKeyFromCertLoadSECItem(SECItem* secItem, xmlSecKeyDataFormat format) {
|
1136
|
+
xmlSecKeyPtr key;
|
1137
|
+
xmlSecKeyDataPtr keyData;
|
1138
|
+
xmlSecKeyDataPtr certData;
|
1139
|
+
CERTCertificate *cert=NULL;
|
1140
|
+
int ret;
|
1141
|
+
|
1142
|
+
xmlSecAssert2(secItem != NULL, NULL);
|
1143
|
+
xmlSecAssert2(format != xmlSecKeyDataFormatUnknown, NULL);
|
1144
|
+
|
1145
|
+
/* load cert */
|
1146
|
+
switch(format) {
|
1147
|
+
case xmlSecKeyDataFormatCertDer:
|
1148
|
+
cert = __CERT_NewTempCertificate(CERT_GetDefaultCertDB(),
|
1149
|
+
secItem, NULL, PR_FALSE, PR_TRUE);
|
1150
|
+
if(cert == NULL) {
|
1151
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1152
|
+
NULL,
|
1153
|
+
"__CERT_NewTempCertificate",
|
1154
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
1155
|
+
"format=%d", format);
|
1156
|
+
return(NULL);
|
1157
|
+
}
|
1158
|
+
break;
|
1159
|
+
default:
|
1160
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1161
|
+
NULL,
|
1162
|
+
NULL,
|
1163
|
+
XMLSEC_ERRORS_R_INVALID_FORMAT,
|
1164
|
+
"format=%d", format);
|
1165
|
+
return(NULL);
|
1166
|
+
}
|
1167
|
+
|
1168
|
+
/* get key value */
|
1169
|
+
keyData = xmlSecNssX509CertGetKey(cert);
|
1170
|
+
if(keyData == NULL) {
|
1171
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1172
|
+
NULL,
|
1173
|
+
"xmlSecNssX509CertGetKey",
|
1174
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1175
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1176
|
+
CERT_DestroyCertificate(cert);
|
1177
|
+
return(NULL);
|
1178
|
+
}
|
1179
|
+
|
1180
|
+
/* create key */
|
1181
|
+
key = xmlSecKeyCreate();
|
1182
|
+
if(key == NULL) {
|
1183
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1184
|
+
NULL,
|
1185
|
+
"xmlSecKeyCreate",
|
1186
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1187
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1188
|
+
xmlSecKeyDataDestroy(keyData);
|
1189
|
+
CERT_DestroyCertificate(cert);
|
1190
|
+
return(NULL);
|
1191
|
+
}
|
1192
|
+
|
1193
|
+
/* set key value */
|
1194
|
+
ret = xmlSecKeySetValue(key, keyData);
|
1195
|
+
if(ret < 0) {
|
1196
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1197
|
+
NULL,
|
1198
|
+
"xmlSecKeySetValue",
|
1199
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1200
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1201
|
+
xmlSecKeyDestroy(key);
|
1202
|
+
xmlSecKeyDataDestroy(keyData);
|
1203
|
+
CERT_DestroyCertificate(cert);
|
1204
|
+
return(NULL);
|
1205
|
+
}
|
1206
|
+
|
1207
|
+
/* create cert data */
|
1208
|
+
certData = xmlSecKeyEnsureData(key, xmlSecNssKeyDataX509Id);
|
1209
|
+
if(certData == NULL) {
|
1210
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1211
|
+
NULL,
|
1212
|
+
"xmlSecKeyEnsureData",
|
1213
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1214
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1215
|
+
xmlSecKeyDestroy(key);
|
1216
|
+
CERT_DestroyCertificate(cert);
|
1217
|
+
return(NULL);
|
1218
|
+
}
|
1219
|
+
|
1220
|
+
/* put cert in the cert data */
|
1221
|
+
ret = xmlSecNssKeyDataX509AdoptCert(certData, cert);
|
1222
|
+
if(ret < 0) {
|
1223
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1224
|
+
NULL,
|
1225
|
+
"xmlSecNssKeyDataX509AdoptCert",
|
1226
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1227
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1228
|
+
xmlSecKeyDestroy(key);
|
1229
|
+
CERT_DestroyCertificate(cert);
|
1230
|
+
return(NULL);
|
1231
|
+
}
|
1232
|
+
|
1233
|
+
return(key);
|
1234
|
+
}
|
1235
|
+
|
1236
|
+
|
1237
|
+
/**
|
1238
|
+
* xmlSecNssAppKeysMngrCertLoad:
|
1239
|
+
* @mngr: the pointer to keys manager.
|
1240
|
+
* @filename: the certificate file.
|
1241
|
+
* @format: the certificate file format (PEM or DER).
|
1242
|
+
* @type: the certificate type (trusted/untrusted).
|
1243
|
+
*
|
1244
|
+
* Reads cert from @filename and adds to the list of trusted or known
|
1245
|
+
* untrusted certs in @store
|
1246
|
+
*
|
1247
|
+
* Returns: 0 on success or a negative value otherwise.
|
1248
|
+
*/
|
1249
|
+
int
|
1250
|
+
xmlSecNssAppKeysMngrCertLoad(xmlSecKeysMngrPtr mngr, const char *filename,
|
1251
|
+
xmlSecKeyDataFormat format,
|
1252
|
+
xmlSecKeyDataType type) {
|
1253
|
+
SECItem secItem;
|
1254
|
+
int ret;
|
1255
|
+
|
1256
|
+
xmlSecAssert2(mngr != NULL, -1);
|
1257
|
+
xmlSecAssert2(filename != NULL, -1);
|
1258
|
+
xmlSecAssert2(format != xmlSecKeyDataFormatUnknown, -1);
|
1259
|
+
|
1260
|
+
/* read the file contents */
|
1261
|
+
memset(&secItem, 0, sizeof(secItem));
|
1262
|
+
ret = xmlSecNssAppReadSECItem(&secItem, filename);
|
1263
|
+
if(ret < 0) {
|
1264
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1265
|
+
NULL,
|
1266
|
+
"xmlSecNssAppReadSECItem",
|
1267
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1268
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1269
|
+
return(-1);
|
1270
|
+
}
|
1271
|
+
|
1272
|
+
ret = xmlSecNssAppKeysMngrCertLoadSECItem(mngr, &secItem, format, type);
|
1273
|
+
if(ret < 0) {
|
1274
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1275
|
+
NULL,
|
1276
|
+
"xmlSecNssAppKeysMngrCertLoadSECItem",
|
1277
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1278
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1279
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
1280
|
+
return(-1);
|
1281
|
+
}
|
1282
|
+
|
1283
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
1284
|
+
return(0);
|
1285
|
+
}
|
1286
|
+
|
1287
|
+
/**
|
1288
|
+
* xmlSecNssAppKeysMngrCertLoadMemory:
|
1289
|
+
* @mngr: the pointer to keys manager.
|
1290
|
+
* @data: the key binary data.
|
1291
|
+
* @dataSize: the key binary data size.
|
1292
|
+
* @format: the certificate format (PEM or DER).
|
1293
|
+
* @type: the certificate type (trusted/untrusted).
|
1294
|
+
*
|
1295
|
+
* Reads cert from @data and adds to the list of trusted or known
|
1296
|
+
* untrusted certs in @store
|
1297
|
+
*
|
1298
|
+
* Returns: 0 on success or a negative value otherwise.
|
1299
|
+
*/
|
1300
|
+
int
|
1301
|
+
xmlSecNssAppKeysMngrCertLoadMemory(xmlSecKeysMngrPtr mngr, const xmlSecByte* data,
|
1302
|
+
xmlSecSize dataSize, xmlSecKeyDataFormat format,
|
1303
|
+
xmlSecKeyDataType type) {
|
1304
|
+
SECItem secItem;
|
1305
|
+
int ret;
|
1306
|
+
|
1307
|
+
xmlSecAssert2(mngr != NULL, -1);
|
1308
|
+
xmlSecAssert2(data != NULL, -1);
|
1309
|
+
xmlSecAssert2(format != xmlSecKeyDataFormatUnknown, -1);
|
1310
|
+
|
1311
|
+
memset(&secItem, 0, sizeof(secItem));
|
1312
|
+
ret = xmlSecNssAppCreateSECItem(&secItem, data, dataSize);
|
1313
|
+
if(ret < 0) {
|
1314
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1315
|
+
NULL,
|
1316
|
+
"xmlSecNssAppCreateSECItem",
|
1317
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1318
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1319
|
+
return(-1);
|
1320
|
+
}
|
1321
|
+
|
1322
|
+
ret = xmlSecNssAppKeysMngrCertLoadSECItem(mngr, &secItem, format, type);
|
1323
|
+
if(ret < 0) {
|
1324
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1325
|
+
NULL,
|
1326
|
+
"xmlSecNssAppKeysMngrCertLoadSECItem",
|
1327
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1328
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1329
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
1330
|
+
return(-1);
|
1331
|
+
}
|
1332
|
+
|
1333
|
+
SECITEM_FreeItem(&secItem, PR_FALSE);
|
1334
|
+
return(0);
|
1335
|
+
}
|
1336
|
+
|
1337
|
+
/**
|
1338
|
+
* xmlSecNssAppKeysMngrCertLoadSECItem:
|
1339
|
+
* @mngr: the pointer to keys manager.
|
1340
|
+
* @secItem: the pointer to SECItem.
|
1341
|
+
* @format: the certificate format (PEM or DER).
|
1342
|
+
* @type: the certificate type (trusted/untrusted).
|
1343
|
+
*
|
1344
|
+
* Reads cert from @secItem and adds to the list of trusted or known
|
1345
|
+
* untrusted certs in @store
|
1346
|
+
*
|
1347
|
+
* Returns: 0 on success or a negative value otherwise.
|
1348
|
+
*/
|
1349
|
+
int
|
1350
|
+
xmlSecNssAppKeysMngrCertLoadSECItem(xmlSecKeysMngrPtr mngr, SECItem* secItem,
|
1351
|
+
xmlSecKeyDataFormat format,
|
1352
|
+
xmlSecKeyDataType type) {
|
1353
|
+
xmlSecKeyDataStorePtr x509Store;
|
1354
|
+
CERTCertificate* cert;
|
1355
|
+
int ret;
|
1356
|
+
|
1357
|
+
xmlSecAssert2(mngr != NULL, -1);
|
1358
|
+
xmlSecAssert2(secItem != NULL, -1);
|
1359
|
+
xmlSecAssert2(format != xmlSecKeyDataFormatUnknown, -1);
|
1360
|
+
|
1361
|
+
x509Store = xmlSecKeysMngrGetDataStore(mngr, xmlSecNssX509StoreId);
|
1362
|
+
if(x509Store == NULL) {
|
1363
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1364
|
+
NULL,
|
1365
|
+
"xmlSecKeysMngrGetDataStore",
|
1366
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1367
|
+
"xmlSecNssX509StoreId");
|
1368
|
+
return(-1);
|
1369
|
+
}
|
1370
|
+
|
1371
|
+
switch(format) {
|
1372
|
+
case xmlSecKeyDataFormatDer:
|
1373
|
+
cert = __CERT_NewTempCertificate(CERT_GetDefaultCertDB(),
|
1374
|
+
secItem, NULL, PR_FALSE, PR_TRUE);
|
1375
|
+
if(cert == NULL) {
|
1376
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1377
|
+
NULL,
|
1378
|
+
"__CERT_NewTempCertificate",
|
1379
|
+
XMLSEC_ERRORS_R_CRYPTO_FAILED,
|
1380
|
+
"format=%d", format);
|
1381
|
+
return(-1);
|
1382
|
+
}
|
1383
|
+
break;
|
1384
|
+
default:
|
1385
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1386
|
+
NULL,
|
1387
|
+
NULL,
|
1388
|
+
XMLSEC_ERRORS_R_INVALID_FORMAT,
|
1389
|
+
"format=%d", format);
|
1390
|
+
return(-1);
|
1391
|
+
}
|
1392
|
+
|
1393
|
+
ret = xmlSecNssX509StoreAdoptCert(x509Store, cert, type);
|
1394
|
+
if(ret < 0) {
|
1395
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1396
|
+
NULL,
|
1397
|
+
"xmlSecNssX509StoreAdoptCert",
|
1398
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1399
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1400
|
+
CERT_DestroyCertificate(cert);
|
1401
|
+
return(-1);
|
1402
|
+
}
|
1403
|
+
|
1404
|
+
return(0);
|
1405
|
+
}
|
1406
|
+
|
1407
|
+
#endif /* XMLSEC_NO_X509 */
|
1408
|
+
|
1409
|
+
/**
|
1410
|
+
* xmlSecNssAppDefaultKeysMngrInit:
|
1411
|
+
* @mngr: the pointer to keys manager.
|
1412
|
+
*
|
1413
|
+
* Initializes @mngr with NSS keys store #xmlSecNssKeysStoreId
|
1414
|
+
* and a default NSS crypto key data stores.
|
1415
|
+
*
|
1416
|
+
* Returns: 0 on success or a negative value otherwise.
|
1417
|
+
*/
|
1418
|
+
int
|
1419
|
+
xmlSecNssAppDefaultKeysMngrInit(xmlSecKeysMngrPtr mngr) {
|
1420
|
+
int ret;
|
1421
|
+
|
1422
|
+
xmlSecAssert2(mngr != NULL, -1);
|
1423
|
+
|
1424
|
+
/* create NSS keys store if needed */
|
1425
|
+
if(xmlSecKeysMngrGetKeysStore(mngr) == NULL) {
|
1426
|
+
xmlSecKeyStorePtr keysStore;
|
1427
|
+
|
1428
|
+
keysStore = xmlSecKeyStoreCreate(xmlSecNssKeysStoreId);
|
1429
|
+
if(keysStore == NULL) {
|
1430
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1431
|
+
NULL,
|
1432
|
+
"xmlSecKeyStoreCreate",
|
1433
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1434
|
+
"xmlSecNssKeysStoreId");
|
1435
|
+
return(-1);
|
1436
|
+
}
|
1437
|
+
|
1438
|
+
ret = xmlSecKeysMngrAdoptKeysStore(mngr, keysStore);
|
1439
|
+
if(ret < 0) {
|
1440
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1441
|
+
NULL,
|
1442
|
+
"xmlSecKeysMngrAdoptKeysStore",
|
1443
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1444
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1445
|
+
xmlSecKeyStoreDestroy(keysStore);
|
1446
|
+
return(-1);
|
1447
|
+
}
|
1448
|
+
}
|
1449
|
+
|
1450
|
+
ret = xmlSecNssKeysMngrInit(mngr);
|
1451
|
+
if(ret < 0) {
|
1452
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1453
|
+
NULL,
|
1454
|
+
"xmlSecNssKeysMngrInit",
|
1455
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1456
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1457
|
+
return(-1);
|
1458
|
+
}
|
1459
|
+
|
1460
|
+
mngr->getKey = xmlSecKeysMngrGetKey;
|
1461
|
+
return(0);
|
1462
|
+
}
|
1463
|
+
|
1464
|
+
/**
|
1465
|
+
* xmlSecNssAppDefaultKeysMngrAdoptKey:
|
1466
|
+
* @mngr: the pointer to keys manager.
|
1467
|
+
* @key: the pointer to key.
|
1468
|
+
*
|
1469
|
+
* Adds @key to the keys manager @mngr created with #xmlSecNssAppDefaultKeysMngrInit
|
1470
|
+
* function.
|
1471
|
+
*
|
1472
|
+
* Returns: 0 on success or a negative value otherwise.
|
1473
|
+
*/
|
1474
|
+
int
|
1475
|
+
xmlSecNssAppDefaultKeysMngrAdoptKey(xmlSecKeysMngrPtr mngr, xmlSecKeyPtr key) {
|
1476
|
+
xmlSecKeyStorePtr store;
|
1477
|
+
int ret;
|
1478
|
+
|
1479
|
+
xmlSecAssert2(mngr != NULL, -1);
|
1480
|
+
xmlSecAssert2(key != NULL, -1);
|
1481
|
+
|
1482
|
+
store = xmlSecKeysMngrGetKeysStore(mngr);
|
1483
|
+
if(store == NULL) {
|
1484
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1485
|
+
NULL,
|
1486
|
+
"xmlSecKeysMngrGetKeysStore",
|
1487
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1488
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1489
|
+
return(-1);
|
1490
|
+
}
|
1491
|
+
|
1492
|
+
ret = xmlSecNssKeysStoreAdoptKey(store, key);
|
1493
|
+
if(ret < 0) {
|
1494
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1495
|
+
NULL,
|
1496
|
+
"xmlSecNssKeysStoreAdoptKey",
|
1497
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1498
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1499
|
+
return(-1);
|
1500
|
+
}
|
1501
|
+
|
1502
|
+
return(0);
|
1503
|
+
}
|
1504
|
+
|
1505
|
+
/**
|
1506
|
+
* xmlSecNssAppDefaultKeysMngrLoad:
|
1507
|
+
* @mngr: the pointer to keys manager.
|
1508
|
+
* @uri: the uri.
|
1509
|
+
*
|
1510
|
+
* Loads XML keys file from @uri to the keys manager @mngr created
|
1511
|
+
* with #xmlSecNssAppDefaultKeysMngrInit function.
|
1512
|
+
*
|
1513
|
+
* Returns: 0 on success or a negative value otherwise.
|
1514
|
+
*/
|
1515
|
+
int
|
1516
|
+
xmlSecNssAppDefaultKeysMngrLoad(xmlSecKeysMngrPtr mngr, const char* uri) {
|
1517
|
+
xmlSecKeyStorePtr store;
|
1518
|
+
int ret;
|
1519
|
+
|
1520
|
+
xmlSecAssert2(mngr != NULL, -1);
|
1521
|
+
xmlSecAssert2(uri != NULL, -1);
|
1522
|
+
|
1523
|
+
store = xmlSecKeysMngrGetKeysStore(mngr);
|
1524
|
+
if(store == NULL) {
|
1525
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1526
|
+
NULL,
|
1527
|
+
"xmlSecKeysMngrGetKeysStore",
|
1528
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1529
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1530
|
+
return(-1);
|
1531
|
+
}
|
1532
|
+
|
1533
|
+
ret = xmlSecNssKeysStoreLoad(store, uri, mngr);
|
1534
|
+
if(ret < 0) {
|
1535
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1536
|
+
NULL,
|
1537
|
+
"xmlSecNssKeysStoreLoad",
|
1538
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1539
|
+
"uri=%s", xmlSecErrorsSafeString(uri));
|
1540
|
+
return(-1);
|
1541
|
+
}
|
1542
|
+
|
1543
|
+
return(0);
|
1544
|
+
}
|
1545
|
+
|
1546
|
+
/**
|
1547
|
+
* xmlSecNssAppDefaultKeysMngrSave:
|
1548
|
+
* @mngr: the pointer to keys manager.
|
1549
|
+
* @filename: the destination filename.
|
1550
|
+
* @type: the type of keys to save (public/private/symmetric).
|
1551
|
+
*
|
1552
|
+
* Saves keys from @mngr to XML keys file.
|
1553
|
+
*
|
1554
|
+
* Returns: 0 on success or a negative value otherwise.
|
1555
|
+
*/
|
1556
|
+
int
|
1557
|
+
xmlSecNssAppDefaultKeysMngrSave(xmlSecKeysMngrPtr mngr, const char* filename, xmlSecKeyDataType type) {
|
1558
|
+
xmlSecKeyStorePtr store;
|
1559
|
+
int ret;
|
1560
|
+
|
1561
|
+
xmlSecAssert2(mngr != NULL, -1);
|
1562
|
+
xmlSecAssert2(filename != NULL, -1);
|
1563
|
+
|
1564
|
+
store = xmlSecKeysMngrGetKeysStore(mngr);
|
1565
|
+
if(store == NULL) {
|
1566
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1567
|
+
NULL,
|
1568
|
+
"xmlSecKeysMngrGetKeysStore",
|
1569
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1570
|
+
XMLSEC_ERRORS_NO_MESSAGE);
|
1571
|
+
return(-1);
|
1572
|
+
}
|
1573
|
+
|
1574
|
+
ret = xmlSecNssKeysStoreSave(store, filename, type);
|
1575
|
+
if(ret < 0) {
|
1576
|
+
xmlSecError(XMLSEC_ERRORS_HERE,
|
1577
|
+
NULL,
|
1578
|
+
"xmlSecNssKeysStoreSave",
|
1579
|
+
XMLSEC_ERRORS_R_XMLSEC_FAILED,
|
1580
|
+
"filename%s", xmlSecErrorsSafeString(filename));
|
1581
|
+
return(-1);
|
1582
|
+
}
|
1583
|
+
|
1584
|
+
return(0);
|
1585
|
+
}
|
1586
|
+
|
1587
|
+
/**
|
1588
|
+
* xmlSecNssAppGetDefaultPwdCallback:
|
1589
|
+
*
|
1590
|
+
* Gets default password callback.
|
1591
|
+
*
|
1592
|
+
* Returns: default password callback.
|
1593
|
+
*/
|
1594
|
+
void*
|
1595
|
+
xmlSecNssAppGetDefaultPwdCallback(void) {
|
1596
|
+
return(NULL);
|
1597
|
+
}
|
1598
|
+
|