static void
gkm_secret_item_real_set_attribute (GkmObject *base, GkmSession *session,
GkmTransaction *transaction, CK_ATTRIBUTE_PTR attr)
{
GkmSecretItem *self = GKM_SECRET_ITEM (base);
const gchar *identifier;
GkmSecretData *sdata;
GHashTable *fields;
gchar *schema_name;
GkmSecret *secret;
gchar *schema;
CK_RV rv;
if (!self->collection) {
gkm_transaction_fail (transaction, CKR_GENERAL_ERROR);
g_return_if_reached ();
}
/* Check that the object is not locked */
if (!gkm_secret_collection_unlocked_have (self->collection, session)) {
gkm_transaction_fail (transaction, CKR_USER_NOT_LOGGED_IN);
return;
}
switch (attr->type) {
case CKA_VALUE:
sdata = gkm_secret_collection_unlocked_use (self->collection, session);
g_return_if_fail (sdata);
identifier = gkm_secret_object_get_identifier (GKM_SECRET_OBJECT (self));
secret = gkm_secret_new (attr->pValue, attr->ulValueLen);
gkm_secret_data_set_transacted (sdata, transaction, identifier, secret);
g_object_unref (secret);
g_object_unref (sdata);
gkm_secret_object_begin_modified (GKM_SECRET_OBJECT (self), transaction);
if (!gkm_transaction_get_failed (transaction))
gkm_transaction_add (transaction, self, complete_set_secret, NULL);
return;
case CKA_G_FIELDS:
rv = gkm_secret_fields_parse (attr, &fields, &schema_name);
if (rv != CKR_OK) {
gkm_transaction_fail (transaction, rv);
} else {
begin_set_fields (self, transaction, fields);
if (schema_name)
begin_set_schema (self, transaction, schema_name);
}
return;
case CKA_G_SCHEMA:
rv = gkm_attribute_get_string (attr, &schema);
if (rv != CKR_OK)
gkm_transaction_fail (transaction, rv);
else
begin_set_schema (self, transaction, schema);
return;
}
GKM_OBJECT_CLASS (gkm_secret_item_parent_class)->set_attribute (base, session, transaction, attr);
}
static void
gkm_secret_item_set_property (GObject *obj, guint prop_id, const GValue *value,
GParamSpec *pspec)
{
GkmSecretItem *self = GKM_SECRET_ITEM (obj);
switch (prop_id) {
case PROP_COLLECTION:
g_return_if_fail (!self->collection);
self->collection = g_value_get_object (value);
g_return_if_fail (self->collection);
g_object_add_weak_pointer (G_OBJECT (self->collection),
(gpointer*)&(self->collection));
break;
case PROP_FIELDS:
gkm_secret_item_set_fields (self, g_value_get_boxed (value));
break;
case PROP_SCHEMA:
gkm_secret_item_set_schema (self, g_value_get_string (value));
break;
default:
G_OBJECT_WARN_INVALID_PROPERTY_ID (obj, prop_id, pspec);
break;
}
}
static gboolean
gkm_secret_item_real_is_locked (GkmSecretObject *obj, GkmSession *session)
{
GkmSecretItem *self = GKM_SECRET_ITEM (obj);
if (!self->collection)
return TRUE;
return gkm_secret_object_is_locked (GKM_SECRET_OBJECT (self->collection), session);
}
static GObject*
gkm_secret_item_constructor (GType type, guint n_props, GObjectConstructParam *props)
{
GkmSecretItem *self = GKM_SECRET_ITEM (G_OBJECT_CLASS (gkm_secret_item_parent_class)->constructor(type, n_props, props));
g_return_val_if_fail (self, NULL);
g_return_val_if_fail (self->collection, NULL);
return G_OBJECT (self);
}
static gboolean
generate_encrypted_data (EggBuffer *buffer, GkmSecretCollection *collection,
GkmSecretData *data)
{
GkmSecretObject *obj;
GkmSecretItem *item;
GList *items, *l;
GHashTable *attributes;
const gchar *label;
GkmSecret *secret;
GList *acl;
int i;
g_assert (buffer);
g_assert (GKM_IS_SECRET_COLLECTION (collection));
g_assert (GKM_IS_SECRET_DATA (data));
/* Make sure we're using non-pageable memory */
egg_buffer_set_allocator (buffer, egg_secure_realloc);
items = gkm_secret_collection_get_items (collection);
for (l = items; l && !egg_buffer_has_error(buffer); l = g_list_next (l)) {
item = GKM_SECRET_ITEM (l->data);
obj = GKM_SECRET_OBJECT (l->data);
label = gkm_secret_object_get_label (obj);
buffer_add_utf8_string (buffer, label);
secret = gkm_secret_data_get_secret (data, gkm_secret_object_get_identifier (obj));
buffer_add_secret (buffer, secret);
if (!buffer_add_time (buffer, gkm_secret_object_get_created (obj)) ||
!buffer_add_time (buffer, gkm_secret_object_get_modified (obj)))
break;
/* reserved: */
if (!buffer_add_utf8_string (buffer, NULL))
break;
for (i = 0; i < 4; i++)
egg_buffer_add_uint32 (buffer, 0);
attributes = gkm_secret_item_get_fields (item);
if (!buffer_add_attributes (buffer, attributes, FALSE))
break;
acl = g_object_get_data (G_OBJECT (item), "compat-acl");
if (!generate_acl_data (buffer, acl))
break;
}
g_list_free (items);
/* Iteration completed prematurely == fail */
return (l == NULL);
}
static void
gkm_secret_item_dispose (GObject *obj)
{
GkmSecretItem *self = GKM_SECRET_ITEM (obj);
if (self->collection)
g_object_remove_weak_pointer (G_OBJECT (self->collection),
(gpointer*)&(self->collection));
self->collection = NULL;
G_OBJECT_CLASS (gkm_secret_item_parent_class)->dispose (obj);
}
static gboolean
complete_set_secret (GkmTransaction *transaction, GObject *obj, gpointer user_data)
{
GkmSecretItem *self = GKM_SECRET_ITEM (obj);
if (!gkm_transaction_get_failed (transaction)) {
gkm_object_notify_attribute (GKM_OBJECT (obj), CKA_VALUE);
gkm_secret_object_was_modified (GKM_SECRET_OBJECT (self));
}
return TRUE;
}
static void
gkm_secret_item_finalize (GObject *obj)
{
GkmSecretItem *self = GKM_SECRET_ITEM (obj);
g_assert (!self->collection);
if (self->fields)
g_hash_table_unref (self->fields);
self->fields = NULL;
G_OBJECT_CLASS (gkm_secret_item_parent_class)->finalize (obj);
}
static gboolean
complete_set_schema (GkmTransaction *transaction, GObject *obj, gpointer user_data)
{
GkmSecretItem *self = GKM_SECRET_ITEM (obj);
gchar *old_schema = user_data;
if (gkm_transaction_get_failed (transaction)) {
g_free (self->schema);
self->schema = old_schema;
} else {
gkm_object_notify_attribute (GKM_OBJECT (obj), CKA_G_SCHEMA);
g_object_notify (G_OBJECT (obj), "schema");
g_free (old_schema);
}
return TRUE;
}
static gboolean
complete_set_fields (GkmTransaction *transaction, GObject *obj, gpointer user_data)
{
GkmSecretItem *self = GKM_SECRET_ITEM (obj);
GHashTable *old_fields = user_data;
if (gkm_transaction_get_failed (transaction)) {
if (self->fields)
g_hash_table_unref (self->fields);
self->fields = old_fields;
} else {
gkm_object_notify_attribute (GKM_OBJECT (obj), CKA_G_FIELDS);
g_object_notify (G_OBJECT (obj), "fields");
if (old_fields)
g_hash_table_unref (old_fields);
}
return TRUE;
}
static CK_RV
gkm_secret_item_real_get_attribute (GkmObject *base, GkmSession *session, CK_ATTRIBUTE_PTR attr)
{
GkmSecretItem *self = GKM_SECRET_ITEM (base);
GkmSecretData *sdata;
const gchar *identifier;
const guchar *secret;
gsize n_secret = 0;
CK_RV rv;
g_return_val_if_fail (self->collection, CKR_GENERAL_ERROR);
switch (attr->type) {
case CKA_CLASS:
return gkm_attribute_set_ulong (attr, CKO_SECRET_KEY);
case CKA_VALUE:
sdata = gkm_secret_collection_unlocked_use (self->collection, session);
if (sdata == NULL)
return CKR_USER_NOT_LOGGED_IN;
identifier = gkm_secret_object_get_identifier (GKM_SECRET_OBJECT (self));
secret = gkm_secret_data_get_raw (sdata, identifier, &n_secret);
rv = gkm_attribute_set_data (attr, secret, n_secret);
gkm_object_mark_used (base);
g_object_unref (sdata);
return rv;
case CKA_G_COLLECTION:
g_return_val_if_fail (self->collection, CKR_GENERAL_ERROR);
identifier = gkm_secret_object_get_identifier (GKM_SECRET_OBJECT (self->collection));
return gkm_attribute_set_string (attr, identifier);
case CKA_G_FIELDS:
if (!self->fields)
return gkm_attribute_set_data (attr, NULL, 0);
return gkm_secret_fields_serialize (attr, self->fields, self->schema);
case CKA_G_SCHEMA:
return gkm_attribute_set_string (attr, self->schema);
}
return GKM_OBJECT_CLASS (gkm_secret_item_parent_class)->get_attribute (base, session, attr);
}
static void
gkm_secret_item_get_property (GObject *obj, guint prop_id, GValue *value,
GParamSpec *pspec)
{
GkmSecretItem *self = GKM_SECRET_ITEM (obj);
switch (prop_id) {
case PROP_COLLECTION:
g_value_set_object (value, gkm_secret_item_get_collection (self));
break;
case PROP_FIELDS:
g_value_set_boxed (value, gkm_secret_item_get_fields (self));
break;
case PROP_SCHEMA:
g_value_set_string (value, gkm_secret_item_get_schema (self));
break;
default:
G_OBJECT_WARN_INVALID_PROPERTY_ID (obj, prop_id, pspec);
break;
}
}
