return 0;
}
-
-canl_err_code CANL_CALLCONV
-canl_cred_load_req(canl_ctx ctx, canl_cred cred, canl_x509_req req)
-{
- glb_ctx *cc = (glb_ctx*) ctx;
- creds *crd = (creds*) cred;
- request *rqst = (request *) req;
- int ret = 0;
-
- if (!ctx)
- return EINVAL;
-
- if (!cred)
- return set_error(cc, EINVAL, POSIX_ERROR, "Cred. handler"
- " not initialized" );
- if (!rqst)
- return set_error(cc, EINVAL, POSIX_ERROR, "Cred. handler"
- " not initialized" );
- if (rqst->c_req)
- if (crd->c_req) {
- X509_REQ_free(crd->c_req);
- crd->c_req = NULL;
- }
-
- crd->c_req = X509_REQ_dup(rqst->c_req);
- if (!crd->c_req)
- return set_error(cc, ENOMEM, POSIX_ERROR, "Cannot copy"
- " X509 request handler" ); //TODO check ret val
- if (rqst->c_key) {
- if ((ret = pkey_dup(cc, &crd->c_key, rqst->c_key)))
- return ret;
- }
-
- return 0;
-}
-
canl_err_code CANL_CALLCONV
canl_cred_load_priv_key_file(canl_ctx ctx, canl_cred cred, const char *pkey_file,
canl_password_callback pass_clb, void *arg)
/* handle requests*/
canl_err_code CANL_CALLCONV
-canl_req_create(canl_ctx ctx, canl_x509_req *ret_req, unsigned int bits)
+canl_cred_new_req(canl_ctx ctx, canl_cred ret_req, unsigned int bits)
{
glb_ctx *cc = (glb_ctx*) ctx;
- request *req = NULL;
+ creds *crd_req = (creds*) ret_req;
int ret = 0;
if (!ctx)
if (!ret_req)
return set_error(cc, EINVAL, POSIX_ERROR, "Cred. handler"
" not initialized" );
-
- /*create new cred. handler*/
- req = (request *) calloc(1, sizeof(*req));
- if (!req)
- return set_error(cc, ENOMEM, POSIX_ERROR, "Not enough memory");
+
+ if (crd_req->c_req) {
+ X509_REQ_free(crd_req->c_req);
+ crd_req->c_req = NULL;
+ }
/*TODO 1st NULL may invoke callback to ask user for new name*/
- ret = proxy_genreq(NULL, &req->c_req, &req->c_key, bits, NULL, NULL);
+ ret = proxy_genreq(NULL, &crd_req->c_req, &crd_req->c_key, bits, NULL, NULL);
if (ret)
return set_error(cc, CANL_ERR_unknown, CANL_ERROR, "Cannot make new"
"proxy certificate");
- if (*ret_req)
- canl_req_free(cc, *ret_req);
-
- *ret_req = req;
-
- return 0;
-}
-
-canl_err_code CANL_CALLCONV
-canl_req_free(canl_ctx ctx, canl_x509_req c_req)
-{
- glb_ctx *cc = (glb_ctx*) ctx;
- request *req = (request*) c_req;
-
- if (!ctx)
- return EINVAL;
-
- if (!c_req)
- return set_error(cc, EINVAL, POSIX_ERROR, "Request handler"
- " not initialized" );
-
- /* Delete contents*/
- if (req->c_key) {
- EVP_PKEY_free(req->c_key);
- req->c_key = NULL;
- }
- if (req->c_req) {
- X509_REQ_free(req->c_req);
- req->c_req = NULL;
- }
-
- free (req);
- req = NULL;
-
return 0;
-
-
}
canl_err_code CANL_CALLCONV
-canl_req_get_req(canl_ctx ctx, canl_x509_req req_in, X509_REQ ** req_ret)
+canl_req_get_req(canl_ctx ctx, canl_cred req_in, X509_REQ ** req_ret)
{
glb_ctx *cc = (glb_ctx*) ctx;
- request *req = (request*) req_in;
+ creds *req = (creds*) req_in;
if (!ctx)
return EINVAL;
if (!req_ret)
return set_error(cc, EINVAL, POSIX_ERROR, "Request handler"
" not initialized" );
-
+
+ /*TODO free REQ if req_ret full*/
*req_ret = X509_REQ_dup(req->c_req);
if (*req_ret)
return set_error(cc, ENOMEM, POSIX_ERROR, "Cannot copy"
X509_REQ *c_req;
} creds;
-typedef struct _request {
- EVP_PKEY *c_key;
- X509_REQ *c_req;
-} request;
-
/* Routines to handle credentials */
canl_err_code CANL_CALLCONV
canl_ctx_set_cred(canl_ctx, canl_cred);
canl_err_code CANL_CALLCONV
-canl_cred_load_req(canl_ctx, canl_cred, canl_x509_req);
-
-canl_err_code CANL_CALLCONV
canl_cred_load_priv_key_file(canl_ctx, canl_cred, const char *,
canl_password_callback, void *);
/* Routines to handle X.509 requests */
canl_err_code CANL_CALLCONV
-canl_req_create(canl_ctx, canl_x509_req *, unsigned int);
-
-canl_err_code CANL_CALLCONV
-canl_req_free(canl_ctx, canl_x509_req);
+canl_cred_new_req(canl_ctx, canl_cred, unsigned int);
canl_err_code CANL_CALLCONV
-canl_req_get_req(canl_ctx, canl_x509_req, X509_REQ **);
+canl_req_get_req(canl_ctx, canl_cred, X509_REQ **);
#if 0
canl_err_code CANL_CALLCONV
git://scientific.zcu.cz / jra1mw.git / commitdiff