int addUser(AB_PROVIDER *pro,
GWEN_DB_NODE *dbArgs,
int argc,
char **argv)
{
GWEN_DB_NODE *db;
int rv;
GWEN_BUFFER *nameBuffer=NULL;
const char *tokenName;
const char *tokenType;
const char *bankId;
const char *userId;
const char *customerId;
const char *userName;
const char *hostName;
const char *server;
const char *ebicsVersion;
int importing;
uint32_t cid;
const GWEN_ARGS args[]= {
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"bankId", /* name */
0, /* minnum */
1, /* maxnum */
"b", /* short option */
"bank", /* long option */
"Specify the bank code", /* short description */
"Specify the bank code" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"userId", /* name */
0, /* minnum */
1, /* maxnum */
"u", /* short option */
"user", /* long option */
"Specify the user id (Benutzerkennung)", /* short description */
"Specify the user id (Benutzerkennung)" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"customerId", /* name */
0, /* minnum */
1, /* maxnum */
"c", /* short option */
"customer", /* long option */
"Specify the customer id (Kundennummer)", /* short description */
"Specify the customer id (Kundennummer)" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"tokenType", /* name */
1, /* minnum */
1, /* maxnum */
"t", /* short option */
"tokentype", /* long option */
"Specify the crypt token type", /* short description */
"Specify the crypt token type" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"tokenName", /* name */
0, /* minnum */
1, /* maxnum */
"n", /* short option */
"tokenname", /* long option */
"Specify the crypt token name", /* short description */
"Specify the crypt token name" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"serverAddr", /* name */
0, /* minnum */
1, /* maxnum */
"s", /* short option */
"server", /* long option */
"Specify the server URL", /* short description */
"Specify the server URL" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"hostName", /* name */
1, /* minnum */
1, /* maxnum */
"H", /* short option */
"hostname", /* long option */
"Specify the EBICS hostname", /* short description */
"Specify the EBICS hostname" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"userName", /* name */
1, /* minnum */
1, /* maxnum */
"N", /* short option */
"username", /* long option */
"Specify the realname of the user", /* short description */
"Specify the realname of the user" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"ebicsVersion", /* name */
0, /* minnum */
1, /* maxnum */
"E", /* short option */
"ebicsversion", /* long option */
"Specify the EBICS version to use (e.g. H002)", /* short description */
"Specify the EBICS version to use (e.g. H002)" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Int, /* type */
"context", /* name */
0, /* minnum */
1, /* maxnum */
0, /* short option */
"context", /* long option */
"Select a context on the medium", /* short description */
"Select a context on the medium" /* long description */
},
{
0, /* flags */
GWEN_ArgsType_Int, /* type */
"import", /* name */
0, /* minnum */
1, /* maxnum */
0, /* short option */
"import", /* long option */
"Import a user which has already been in use (e.g. with previous versions)",
"Import a user which has already been in use (e.g. with previous versions)"
},
{
GWEN_ARGS_FLAGS_HELP | GWEN_ARGS_FLAGS_LAST, /* flags */
GWEN_ArgsType_Int, /* type */
"help", /* name */
0, /* minnum */
0, /* maxnum */
"h", /* short option */
"help", /* long option */
"Show this help screen", /* short description */
"Show this help screen" /* long description */
}
};
db=GWEN_DB_GetGroup(dbArgs, GWEN_DB_FLAGS_DEFAULT, "local");
rv=GWEN_Args_Check(argc, argv, 1,
0 /*GWEN_ARGS_MODE_ALLOW_FREEPARAM*/,
args,
db);
if (rv==GWEN_ARGS_RESULT_ERROR) {
fprintf(stderr, "ERROR: Could not parse arguments\n");
return 1;
}
else if (rv==GWEN_ARGS_RESULT_HELP) {
GWEN_BUFFER *ubuf;
ubuf=GWEN_Buffer_new(0, 1024, 0, 1);
if (GWEN_Args_Usage(args, ubuf, GWEN_ArgsOutType_Txt)) {
fprintf(stderr, "ERROR: Could not create help string\n");
return 1;
}
fprintf(stdout, "%s\n", GWEN_Buffer_GetStart(ubuf));
GWEN_Buffer_free(ubuf);
return 0;
}
tokenType=GWEN_DB_GetCharValue(db, "tokenType", 0, 0);
tokenName=GWEN_DB_GetCharValue(db, "tokenName", 0, 0);
bankId=GWEN_DB_GetCharValue(db, "bankId", 0, 0);
userId=GWEN_DB_GetCharValue(db, "userId", 0, 0);
customerId=GWEN_DB_GetCharValue(db, "customerId", 0, 0);
hostName=GWEN_DB_GetCharValue(db, "hostName", 0, 0);
userName=GWEN_DB_GetCharValue(db, "userName", 0, 0);
server=GWEN_DB_GetCharValue(db, "serverAddr", 0, 0);
cid=GWEN_DB_GetIntValue(db, "context", 0, 0);
importing=GWEN_DB_GetIntValue(db, "import", 0, 0);
ebicsVersion=GWEN_DB_GetCharValue(db, "ebicsVersion", 0, "H003");
if (1) {
const char *lbankId;
const char *luserId;
const char *lcustomerId;
const char *lserverAddr;
GWEN_URL *url;
GWEN_CRYPT_TOKEN_CONTEXT *ctx=NULL;
AB_USER *user;
if (1) {
GWEN_PLUGIN_MANAGER *pm;
GWEN_PLUGIN *pl;
GWEN_CRYPT_TOKEN *ct;
const GWEN_CRYPT_TOKEN_CONTEXT *cctx;
if (cid==0) {
DBG_ERROR(0, "No context given.");
return 1;
}
/* get crypt token */
pm=GWEN_PluginManager_FindPluginManager("ct");
if (pm==0) {
DBG_ERROR(0, "Plugin manager not found");
return 3;
}
pl=GWEN_PluginManager_GetPlugin(pm, tokenType);
if (pl==0) {
DBG_ERROR(0, "Plugin not found");
return 3;
}
DBG_INFO(0, "Plugin found");
ct=GWEN_Crypt_Token_Plugin_CreateToken(pl, tokenName);
if (ct==0) {
DBG_ERROR(0, "Could not create crypt token");
return 3;
}
/* open crypt token */
rv=GWEN_Crypt_Token_Open(ct, 0, 0);
if (rv) {
DBG_ERROR(0, "Could not open token (%d)", rv);
return 3;
}
/* get real token name */
nameBuffer=GWEN_Buffer_new(0, 64, 0, 1);
GWEN_Buffer_AppendString(nameBuffer, GWEN_Crypt_Token_GetTokenName(ct));
tokenName=GWEN_Buffer_GetStart(nameBuffer);
cctx=GWEN_Crypt_Token_GetContext(ct, cid, 0);
if (cctx==NULL) {
DBG_ERROR(0, "Context %02x not found", cid);
return 3;
}
ctx=GWEN_Crypt_Token_Context_dup(cctx);
lbankId=bankId?bankId:GWEN_Crypt_Token_Context_GetServiceId(ctx);
luserId=userId?userId:GWEN_Crypt_Token_Context_GetUserId(ctx);
lcustomerId=customerId?customerId:luserId;
lserverAddr=server?server:GWEN_Crypt_Token_Context_GetAddress(ctx);
rv=GWEN_Crypt_Token_Close(ct, 0, 0);
if (rv) {
DBG_ERROR(0, "Could not close token (%d)", rv);
return 3;
}
GWEN_Crypt_Token_free(ct);
}
if (!lbankId || !*lbankId) {
DBG_ERROR(0, "No bank id stored and none given");
return 3;
}
if (!luserId || !*luserId) {
DBG_ERROR(0, "No user id (Benutzerkennung) stored and none given");
return 3;
}
/* TODO: Check for existing users to avoid duplicates */
#if 0
user=AB_Banking_FindUser(ab, EBC_PROVIDER_NAME,
"de",
lbankId, luserId, lcustomerId);
if (user) {
DBG_ERROR(0, "User %s already exists", luserId);
return 3;
}
#endif
user=AB_Provider_CreateUserObject(pro);
assert(user);
AB_User_SetCountry(user, "de");
AB_User_SetBankCode(user, lbankId);
AB_User_SetUserId(user, luserId);
AB_User_SetCustomerId(user, lcustomerId);
EBC_User_SetPeerId(user, hostName);
AB_User_SetUserName(user, userName);
EBC_User_SetTokenType(user, tokenType);
EBC_User_SetTokenName(user, tokenName);
EBC_User_SetTokenContextId(user, cid);
if (ebicsVersion) {
if (strcasecmp(ebicsVersion, "H002")==0) {
EBC_User_SetProtoVersion(user, "H002");
EBC_User_SetSignVersion(user, "A004");
EBC_User_SetAuthVersion(user, "X001");
EBC_User_SetCryptVersion(user, "E001");
}
else if (strcasecmp(ebicsVersion, "H003")==0) {
EBC_User_SetProtoVersion(user, "H003");
EBC_User_SetSignVersion(user, "A005");
EBC_User_SetAuthVersion(user, "X002");
EBC_User_SetCryptVersion(user, "E002");
}
else if (strcasecmp(ebicsVersion, "H004")==0) {
EBC_User_SetProtoVersion(user, "H004");
EBC_User_SetSignVersion(user, "A005");
EBC_User_SetAuthVersion(user, "X002");
EBC_User_SetCryptVersion(user, "E002");
}
else {
fprintf(stderr, "%s",
I18N("Invalid protocol version.\n"
"Possible versions are H002, H003 and H004.\n"));
return 3;
}
}
/* try to get server address from database if still unknown */
if (!lserverAddr || *lserverAddr==0) {
GWEN_BUFFER *tbuf;
tbuf=GWEN_Buffer_new(0, 256, 0, 1);
if (getBankUrl(AB_Provider_GetBanking(pro), lbankId, tbuf)) {
DBG_INFO(0, "Could not find server address for \"%s\"", lbankId);
}
if (GWEN_Buffer_GetUsedBytes(tbuf)==0) {
DBG_ERROR(0, "No address given and none available in internal db");
return 3;
}
url=GWEN_Url_fromString(GWEN_Buffer_GetStart(tbuf));
if (url==NULL) {
DBG_ERROR(0, "Bad URL \"%s\" in internal db",
GWEN_Buffer_GetStart(tbuf));
return 3;
}
GWEN_Buffer_free(tbuf);
}
else {
/* set address */
url=GWEN_Url_fromString(lserverAddr);
if (url==NULL) {
DBG_ERROR(0, "Bad URL \"%s\"", lserverAddr);
return 3;
}
}
GWEN_Url_SetProtocol(url, "https");
if (GWEN_Url_GetPort(url)==0)
GWEN_Url_SetPort(url, 443);
/* set url */
if (1) {
GWEN_BUFFER *tbuf;
tbuf=GWEN_Buffer_new(0, 256, 0, 1);
rv=GWEN_Url_toString(url, tbuf);
if (rv<0) {
DBG_ERROR(0, "Internal error storing URL");
return 3;
}
EBC_User_SetServerUrl(user, GWEN_Buffer_GetStart(tbuf));
GWEN_Buffer_free(tbuf);
}
GWEN_Url_free(url);
if (importing) {
EBC_User_AddFlags(user, EBC_USER_FLAGS_INI | EBC_USER_FLAGS_HIA);
EBC_User_SetStatus(user, EBC_UserStatus_Enabled);
}
rv=AB_Provider_AddUser(pro, user);
if (rv<0) {
DBG_ERROR(AQEBICS_LOGDOMAIN, "Coud not add new user (%d)", rv);
AB_User_free(user);
return 4;
}
AB_User_free(user);
/* context no longer needed */
GWEN_Crypt_Token_Context_free(ctx);
}
return 0;
}
int addUser(AB_BANKING *ab,
GWEN_DB_NODE *dbArgs,
int argc,
char **argv) {
GWEN_DB_NODE *db;
AB_PROVIDER *pro;
int rv;
GWEN_BUFFER *nameBuffer=NULL;
const char *tokenName;
const char *tokenType;
const char *bankId;
const char *userId;
const char *customerId;
const char *server;
const char *userName;
int hbciVersion;
int rdhType;
uint32_t cid;
const GWEN_ARGS args[]={
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"userName", /* name */
1, /* minnum */
1, /* maxnum */
"N", /* short option */
"username", /* long option */
"Specify the user name", /* short description */
"Specify the user name (not the userid!)" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"bankId", /* name */
0, /* minnum */
1, /* maxnum */
"b", /* short option */
"bank", /* long option */
"Specify the bank code", /* short description */
"Specify the bank code" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"userId", /* name */
0, /* minnum */
1, /* maxnum */
"u", /* short option */
"user", /* long option */
"Specify the user id (Benutzerkennung)", /* short description */
"Specify the user id (Benutzerkennung)" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"customerId", /* name */
0, /* minnum */
1, /* maxnum */
"c", /* short option */
"customer", /* long option */
"Specify the customer id (Kundennummer)", /* short description */
"Specify the customer id (Kundennummer)" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"tokenType", /* name */
1, /* minnum */
1, /* maxnum */
"t", /* short option */
"tokentype", /* long option */
"Specify the crypt token type", /* short description */
"Specify the crypt token type" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"tokenName", /* name */
0, /* minnum */
1, /* maxnum */
"n", /* short option */
"tokenname", /* long option */
"Specify the crypt token name", /* short description */
"Specify the crypt token name" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"serverAddr", /* name */
0, /* minnum */
1, /* maxnum */
"s", /* short option */
"server", /* long option */
"Specify the server URL", /* short description */
"Specify the server URL" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Int, /* type */
"context", /* name */
0, /* minnum */
1, /* maxnum */
0, /* short option */
"context", /* long option */
"Select a context on the medium", /* short description */
"Select a context on the medium" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT,
GWEN_ArgsType_Int,
"hbciversion",
0,
1,
0,
"hbciversion",
"Select the HBCI version",
"Select the HBCI protocol version"
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT,
GWEN_ArgsType_Int,
"rdhType",
0,
1,
0,
"rdhtype",
"Select the RDH profile type (1, 2, 3, 5, 10)",
"Select the RDH profile type (1, 2, 3, 5, 10)"
},
{
GWEN_ARGS_FLAGS_HELP | GWEN_ARGS_FLAGS_LAST, /* flags */
GWEN_ArgsType_Int, /* type */
"help", /* name */
0, /* minnum */
0, /* maxnum */
"h", /* short option */
"help", /* long option */
"Show this help screen", /* short description */
"Show this help screen" /* long description */
}
};
db=GWEN_DB_GetGroup(dbArgs, GWEN_DB_FLAGS_DEFAULT, "local");
rv=GWEN_Args_Check(argc, argv, 1,
0 /*GWEN_ARGS_MODE_ALLOW_FREEPARAM*/,
args,
db);
if (rv==GWEN_ARGS_RESULT_ERROR) {
fprintf(stderr, "ERROR: Could not parse arguments\n");
return 1;
}
else if (rv==GWEN_ARGS_RESULT_HELP) {
GWEN_BUFFER *ubuf;
ubuf=GWEN_Buffer_new(0, 1024, 0, 1);
if (GWEN_Args_Usage(args, ubuf, GWEN_ArgsOutType_Txt)) {
fprintf(stderr, "ERROR: Could not create help string\n");
return 1;
}
fprintf(stderr, "%s\n", GWEN_Buffer_GetStart(ubuf));
GWEN_Buffer_free(ubuf);
return 0;
}
rv=AB_Banking_Init(ab);
if (rv) {
DBG_ERROR(0, "Error on init (%d)", rv);
return 2;
}
rv=AB_Banking_OnlineInit(ab);
if (rv) {
DBG_ERROR(0, "Error on init (%d)", rv);
return 2;
}
pro=AB_Banking_GetProvider(ab, "aqhbci");
assert(pro);
tokenType=GWEN_DB_GetCharValue(db, "tokenType", 0, 0);
tokenName=GWEN_DB_GetCharValue(db, "tokenName", 0, 0);
bankId=GWEN_DB_GetCharValue(db, "bankId", 0, 0);
userId=GWEN_DB_GetCharValue(db, "userId", 0, 0);
customerId=GWEN_DB_GetCharValue(db, "customerId", 0, 0);
server=GWEN_DB_GetCharValue(db, "serverAddr", 0, 0);
cid=GWEN_DB_GetIntValue(db, "context", 0, 1);
hbciVersion=GWEN_DB_GetIntValue(db, "hbciVersion", 0, 0);
rdhType=GWEN_DB_GetIntValue(db, "rdhType", 0, 1);
userName=GWEN_DB_GetCharValue(db, "userName", 0, 0);
assert(userName);
/* generic check for some arguments */
if (hbciVersion>0 && rdhType>1) {
if (hbciVersion<300 && rdhType>1) {
DBG_ERROR(0, "RDH Types 2 and above only work with HBCI version 300 or later");
return 1;
}
}
if (hbciVersion>0) {
switch(hbciVersion) {
case 201:
case 210:
case 220:
case 300:
/* supported */
break;
default:
DBG_ERROR(0, "HBCI/FinTS version %d not supported", hbciVersion);
return 1;
}
}
if (rdhType>0) {
switch(rdhType) {
case 1:
case 2:
case 10:
/* supported */
break;
case 3:
case 4:
case 5:
case 6:
case 7:
case 8:
case 9:
default:
DBG_ERROR(0, "RDH type %d not supported", rdhType);
return 1;
}
}
if (1) {
const char *lbankId;
const char *luserId;
const char *lcustomerId;
const char *lserverAddr;
AH_CRYPT_MODE cm;
GWEN_URL *url;
GWEN_CRYPT_TOKEN_CONTEXT *ctx=NULL;
AB_USER *user;
if (strcasecmp(tokenType, "pintan")==0) {
lbankId=bankId;
luserId=userId;
lcustomerId=customerId?customerId:luserId;
lserverAddr=server;
cm=AH_CryptMode_Pintan;
}
else {
GWEN_PLUGIN_MANAGER *pm;
GWEN_PLUGIN *pl;
GWEN_CRYPT_TOKEN *ct;
const GWEN_CRYPT_TOKEN_CONTEXT *cctx;
const GWEN_CRYPT_TOKEN_KEYINFO *ki;
uint32_t keyId;
GWEN_CRYPT_CRYPTALGOID algo;
if (cid==0) {
DBG_ERROR(0, "No context given.");
return 1;
}
/* get crypt token */
pm=GWEN_PluginManager_FindPluginManager("ct");
if (pm==0) {
DBG_ERROR(0, "Plugin manager not found");
return 3;
}
pl=GWEN_PluginManager_GetPlugin(pm, tokenType);
if (pl==0) {
DBG_ERROR(0, "Plugin not found");
return 3;
}
DBG_INFO(0, "Plugin found");
ct=GWEN_Crypt_Token_Plugin_CreateToken(pl, tokenName);
if (ct==0) {
DBG_ERROR(0, "Could not create crypt token");
return 3;
}
/* open crypt token */
rv=GWEN_Crypt_Token_Open(ct, 0, 0);
if (rv) {
DBG_ERROR(0, "Could not open token (%d)", rv);
GWEN_Crypt_Token_free(ct);
return 3;
}
/* get real token name */
nameBuffer=GWEN_Buffer_new(0, 64, 0, 1);
GWEN_Buffer_AppendString(nameBuffer,
GWEN_Crypt_Token_GetTokenName(ct));
tokenName=GWEN_Buffer_GetStart(nameBuffer);
cctx=GWEN_Crypt_Token_GetContext(ct, cid, 0);
if (cctx==NULL) {
DBG_ERROR(0, "Context %02x not found", cid);
GWEN_Buffer_free(nameBuffer);
GWEN_Crypt_Token_Close(ct, 1, 0);
GWEN_Crypt_Token_free(ct);
return 3;
}
ctx=GWEN_Crypt_Token_Context_dup(cctx);
lbankId=bankId?bankId:GWEN_Crypt_Token_Context_GetServiceId(ctx);
luserId=userId?userId:GWEN_Crypt_Token_Context_GetUserId(ctx);
lcustomerId=customerId?customerId:luserId;
lserverAddr=server?server:GWEN_Crypt_Token_Context_GetAddress(ctx);
/* determine crypt mode */
keyId=GWEN_Crypt_Token_Context_GetSignKeyId(ctx);
if (keyId==0)
keyId=GWEN_Crypt_Token_Context_GetVerifyKeyId(ctx);
if (keyId==0)
keyId=GWEN_Crypt_Token_Context_GetEncipherKeyId(ctx);
if (keyId==0)
keyId=GWEN_Crypt_Token_Context_GetDecipherKeyId(ctx);
GWEN_Crypt_Token_Context_free(ctx);
if (keyId==0) {
DBG_ERROR(0, "No keys, unable to determine crypt mode");
GWEN_Buffer_free(nameBuffer);
GWEN_Crypt_Token_Close(ct, 1, 0);
GWEN_Crypt_Token_free(ct);
return 3;
}
ki=GWEN_Crypt_Token_GetKeyInfo(ct, keyId, 0xffffffff, 0);
if (ki==NULL) {
DBG_ERROR(0,
"Could not get keyinfo for key %d, "
"unable to determine crypt mode", keyId);
GWEN_Buffer_free(nameBuffer);
GWEN_Crypt_Token_Close(ct, 1, 0);
GWEN_Crypt_Token_free(ct);
return 3;
}
algo=GWEN_Crypt_Token_KeyInfo_GetCryptAlgoId(ki);
if (algo==GWEN_Crypt_CryptAlgoId_Des3K)
cm=AH_CryptMode_Ddv;
else if (algo==GWEN_Crypt_CryptAlgoId_Rsa)
cm=AH_CryptMode_Rdh;
else {
DBG_ERROR(0,
"Unexpected crypt algorithm \"%s\", "
"unable to determine crypt mode",
GWEN_Crypt_CryptAlgoId_toString(algo));
GWEN_Buffer_free(nameBuffer);
GWEN_Crypt_Token_Close(ct, 1, 0);
GWEN_Crypt_Token_free(ct);
return 3;
}
rv=GWEN_Crypt_Token_Close(ct, 0, 0);
GWEN_Crypt_Token_free(ct);
if (rv) {
DBG_ERROR(0, "Could not close token (%d)", rv);
GWEN_Buffer_free(nameBuffer);
return 3;
}
}
if (!lbankId || !*lbankId) {
DBG_ERROR(0, "No bank id stored and none given");
GWEN_Buffer_free(nameBuffer);
return 3;
}
if (!luserId || !*luserId) {
DBG_ERROR(0, "No user id (Benutzerkennung) stored and none given");
GWEN_Buffer_free(nameBuffer);
return 3;
}
user=AB_Banking_FindUser(ab, AH_PROVIDER_NAME,
"de",
lbankId, luserId, lcustomerId);
if (user) {
DBG_ERROR(0, "User %s already exists", luserId);
return 3;
}
user=AB_Banking_CreateUser(ab, AH_PROVIDER_NAME);
assert(user);
AB_User_SetUserName(user, userName);
AB_User_SetCountry(user, "de");
AB_User_SetBankCode(user, lbankId);
AB_User_SetUserId(user, luserId);
AB_User_SetCustomerId(user, lcustomerId);
AH_User_SetTokenType(user, tokenType);
AH_User_SetTokenName(user, tokenName);
AH_User_SetTokenContextId(user, cid);
AH_User_SetCryptMode(user, cm);
if (rdhType>0)
AH_User_SetRdhType(user, rdhType);
GWEN_Buffer_free(nameBuffer);
if (hbciVersion==0) {
if (cm==AH_CryptMode_Pintan)
AH_User_SetHbciVersion(user, 220);
else {
if (rdhType>1)
AH_User_SetHbciVersion(user, 300);
else
AH_User_SetHbciVersion(user, 210);
}
}
else {
AH_User_SetHbciVersion(user, hbciVersion);
}
/* try to get server address from database if still unknown */
if (!lserverAddr || *lserverAddr==0) {
GWEN_BUFFER *tbuf;
tbuf=GWEN_Buffer_new(0, 256, 0, 1);
if (getBankUrl(ab,
cm,
lbankId,
tbuf)) {
DBG_INFO(0, "Could not find server address for \"%s\"",
lbankId);
}
if (GWEN_Buffer_GetUsedBytes(tbuf)==0) {
DBG_ERROR(0, "No address given and none available in internal db");
return 3;
}
url=GWEN_Url_fromString(GWEN_Buffer_GetStart(tbuf));
if (url==NULL) {
DBG_ERROR(0, "Bad URL \"%s\" in internal db",
GWEN_Buffer_GetStart(tbuf));
return 3;
}
GWEN_Buffer_free(tbuf);
}
else {
/* set address */
url=GWEN_Url_fromString(lserverAddr);
if (url==NULL) {
DBG_ERROR(0, "Bad URL \"%s\"", lserverAddr);
return 3;
}
}
if (cm==AH_CryptMode_Pintan) {
GWEN_Url_SetProtocol(url, "https");
if (GWEN_Url_GetPort(url)==0)
GWEN_Url_SetPort(url, 443);
}
else {
GWEN_Url_SetProtocol(url, "hbci");
if (GWEN_Url_GetPort(url)==0)
GWEN_Url_SetPort(url, 3000);
}
AH_User_SetServerUrl(user, url);
GWEN_Url_free(url);
if (cm==AH_CryptMode_Ddv)
AH_User_SetStatus(user, AH_UserStatusEnabled);
AB_Banking_AddUser(ab, user);
}
rv=AB_Banking_OnlineFini(ab);
if (rv) {
fprintf(stderr, "ERROR: Error on deinit (%d)\n", rv);
return 5;
}
rv=AB_Banking_Fini(ab);
if (rv) {
fprintf(stderr, "ERROR: Error on deinit (%d)\n", rv);
return 5;
}
return 0;
}
int AH_NewKeyFileDialog_DoIt(GWEN_DIALOG *dlg) {
AH_NEWKEYFILE_DIALOG *xdlg;
AB_USER *u;
GWEN_URL *url;
int rv;
uint32_t pid;
AB_IMEXPORTER_CONTEXT *ctx;
AB_PROVIDER *pro;
GWEN_PLUGIN_MANAGER *pm;
GWEN_PLUGIN *pl;
GWEN_CRYPT_TOKEN *ct;
assert(dlg);
xdlg=GWEN_INHERIT_GETDATA(GWEN_DIALOG, AH_NEWKEYFILE_DIALOG, dlg);
assert(xdlg);
rv=AH_NewKeyFileDialog_GetFilePageData(dlg);
if (rv<0) {
DBG_ERROR(AQHBCI_LOGDOMAIN, "No file?");
// TODO: show error message
return GWEN_DialogEvent_ResultHandled;
}
pro=AB_Banking_GetProvider(xdlg->banking, "aqhbci");
if (pro==NULL) {
DBG_ERROR(AQHBCI_LOGDOMAIN, "Could not find backend, maybe some plugins are not installed?");
GWEN_Gui_ShowError(I18N("Error"),
"%s",
I18N("Could not find HBCI backend, maybe some plugins are not installed?"));
return GWEN_DialogEvent_ResultHandled;
}
u=AB_Banking_CreateUser(xdlg->banking, "aqhbci");
if (u==NULL) {
DBG_ERROR(AQHBCI_LOGDOMAIN, "Could not create user, maybe backend missing?");
GWEN_Gui_ShowError(I18N("Error"), "%s", I18N("Could not find HBCI backend, maybe some plugins are not installed?"));
return GWEN_DialogEvent_ResultHandled;
}
/* generic setup */
AB_User_SetUserName(u, xdlg->userName);
AB_User_SetUserId(u, xdlg->userId);
if (xdlg->customerId && *(xdlg->customerId))
AB_User_SetCustomerId(u, xdlg->customerId);
else
AB_User_SetCustomerId(u, xdlg->userId);
AB_User_SetCountry(u, "de");
AB_User_SetBankCode(u, xdlg->bankCode);
/* HBCI setup */
AH_User_SetTokenType(u, "ohbci");
AH_User_SetTokenName(u, AH_NewKeyFileDialog_GetFileName(dlg));
AH_User_SetTokenContextId(u, 1);
AH_User_SetCryptMode(u, AH_CryptMode_Rdh);
AH_User_SetStatus(u, AH_UserStatusPending);
AH_User_SetHbciVersion(u, xdlg->hbciVersion);
AH_User_SetRdhType(u, xdlg->rdhVersion);
AH_User_SetFlags(u, xdlg->flags);
/* create CryptToken */
pm=GWEN_PluginManager_FindPluginManager(GWEN_CRYPT_TOKEN_PLUGIN_TYPENAME);
if (pm==0) {
DBG_ERROR(AQHBCI_LOGDOMAIN, "Plugin manager not found");
GWEN_Gui_ShowError(I18N("Error"),
I18N("CryptToken plugin for type %s is not available. Did you install all necessary packages?"),
GWEN_CRYPT_TOKEN_PLUGIN_TYPENAME);
return 3;
}
pl=GWEN_PluginManager_GetPlugin(pm, AH_User_GetTokenType(u));
if (pl==0) {
DBG_ERROR(AQHBCI_LOGDOMAIN, "Plugin not found");
GWEN_Gui_ShowError(I18N("Error"),
I18N("CryptToken plugin for type %s is not available. Did you install all necessary packages?"),
AH_User_GetTokenType(u));
AB_User_free(u);
return GWEN_DialogEvent_ResultHandled;
}
ct=GWEN_Crypt_Token_Plugin_CreateToken(pl, AH_User_GetTokenName(u));
if (ct==0) {
DBG_ERROR(AQHBCI_LOGDOMAIN, "Could not create crypt token");
AB_User_free(u);
return GWEN_DialogEvent_ResultHandled;
}
/* create crypt token */
rv=GWEN_Crypt_Token_Create(ct, 0);
if (rv<0) {
DBG_ERROR(AQHBCI_LOGDOMAIN, "Could not create token");
GWEN_Gui_ShowError(I18N("Error"),
I18N("The keyfile %s could not be created. Maybe there already is a file of that name (%d)."),
GWEN_Crypt_Token_GetTokenName(ct),
rv);
AB_User_free(u);
return GWEN_DialogEvent_ResultHandled;
}
/* close crypt token */
rv=GWEN_Crypt_Token_Close(ct, 0, 0);
if (rv) {
DBG_ERROR(AQHBCI_LOGDOMAIN, "Could not close token");
GWEN_Gui_ShowError(I18N("Error"),
I18N("The keyfile %s could not be closed. Please check disc space."),
GWEN_Crypt_Token_GetTokenName(ct),
rv);
AB_User_free(u);
unlink(AH_User_GetTokenName(u));
return GWEN_DialogEvent_ResultHandled;
}
url=GWEN_Url_fromString(xdlg->url);
assert(url);
GWEN_Url_SetProtocol(url, "hbci");
if (GWEN_Url_GetPort(url)==0)
GWEN_Url_SetPort(url, 3000);
AH_User_SetServerUrl(u, url);
GWEN_Url_free(url);
rv=AB_Banking_AddUser(xdlg->banking, u);
if (rv<0) {
DBG_ERROR(AQHBCI_LOGDOMAIN, "Could not add user (%d)", rv);
GWEN_Gui_ShowError(I18N("Error"),
I18N("Could not add HBCI user, maybe there already is a user of that id (%d)"),
rv);
AB_User_free(u);
DBG_ERROR(AQHBCI_LOGDOMAIN, "Could not add user, maybe there already is a user of the same id (%d)?", rv);
return GWEN_DialogEvent_ResultHandled;
}
pid=GWEN_Gui_ProgressStart(GWEN_GUI_PROGRESS_DELAY |
GWEN_GUI_PROGRESS_ALLOW_EMBED |
GWEN_GUI_PROGRESS_SHOW_PROGRESS |
GWEN_GUI_PROGRESS_SHOW_ABORT,
I18N("Setting Up Keyfile User"),
I18N("The server keys will now be retrieved, keys created and sent to the bank."),
3, /* getkeys, mkKeys, sendKeys */
0);
/* lock new user */
rv=AB_Banking_BeginExclUseUser(xdlg->banking, u);
if (rv<0) {
DBG_ERROR(AQHBCI_LOGDOMAIN, "Could not lock user (%d)", rv);
GWEN_Gui_ProgressLog2(pid,
GWEN_LoggerLevel_Error,
I18N("Unable to lock users (%d)"), rv);
AB_Banking_DeleteUser(xdlg->banking, u);
unlink(AH_NewKeyFileDialog_GetFileName(dlg));
GWEN_Gui_ProgressEnd(pid);
return GWEN_DialogEvent_ResultHandled;
}
/* get server keys id */
GWEN_Gui_ProgressLog(pid,
GWEN_LoggerLevel_Notice,
I18N("Retrieving server keys"));
ctx=AB_ImExporterContext_new();
rv=AH_Provider_GetServerKeys(pro, u, ctx, 0, 1, 0);
if (rv<0) {
AB_Banking_EndExclUseUser(xdlg->banking, u, 1);
DBG_INFO(AQHBCI_LOGDOMAIN, "here (%d)", rv);
AB_Banking_DeleteUser(xdlg->banking, u);
unlink(AH_NewKeyFileDialog_GetFileName(dlg));
GWEN_Gui_ProgressEnd(pid);
return GWEN_DialogEvent_ResultHandled;
}
rv=AH_NewKeyFileDialog_CheckBankIniLetter(dlg, u);
if (rv<0) {
AB_Banking_EndExclUseUser(xdlg->banking, u, 1);
DBG_INFO(AQHBCI_LOGDOMAIN, "here (%d)", rv);
AB_Banking_DeleteUser(xdlg->banking, u);
unlink(AH_NewKeyFileDialog_GetFileName(dlg));
GWEN_Gui_ProgressLog(pid,
GWEN_LoggerLevel_Error,
I18N("Bad bank keys, you should contact your bank."));
GWEN_Gui_ProgressEnd(pid);
return GWEN_DialogEvent_ResultHandled;
}
rv=GWEN_Gui_ProgressAdvance(pid, GWEN_GUI_PROGRESS_ONE);
if (rv==GWEN_ERROR_USER_ABORTED) {
AB_Banking_EndExclUseUser(xdlg->banking, u, 1);
DBG_INFO(AQHBCI_LOGDOMAIN, "here (%d)", rv);
AB_Banking_DeleteUser(xdlg->banking, u);
unlink(AH_NewKeyFileDialog_GetFileName(dlg));
GWEN_Gui_ProgressLog(pid,
GWEN_LoggerLevel_Error,
I18N("Aborted by user."));
GWEN_Gui_ProgressEnd(pid);
return GWEN_DialogEvent_ResultHandled;
}
/* generate keys */
rv=AH_Provider_CreateKeys(pro, u, 0);
if (rv<0) {
AB_Banking_EndExclUseUser(xdlg->banking, u, 1);
DBG_INFO(AQHBCI_LOGDOMAIN, "here (%d)", rv);
AB_Banking_DeleteUser(xdlg->banking, u);
unlink(AH_NewKeyFileDialog_GetFileName(dlg));
GWEN_Gui_ProgressLog2(pid,
GWEN_LoggerLevel_Error,
I18N("Error generating keys: %d"), rv);
GWEN_Gui_ProgressEnd(pid);
return GWEN_DialogEvent_ResultHandled;
}
rv=GWEN_Gui_ProgressAdvance(pid, GWEN_GUI_PROGRESS_ONE);
if (rv==GWEN_ERROR_USER_ABORTED) {
AB_Banking_EndExclUseUser(xdlg->banking, u, 1);
DBG_INFO(AQHBCI_LOGDOMAIN, "here (%d)", rv);
AB_Banking_DeleteUser(xdlg->banking, u);
unlink(AH_NewKeyFileDialog_GetFileName(dlg));
GWEN_Gui_ProgressLog(pid,
GWEN_LoggerLevel_Error,
I18N("Aborted by user."));
GWEN_Gui_ProgressEnd(pid);
return GWEN_DialogEvent_ResultHandled;
}
/* send user keys */
GWEN_Gui_ProgressLog(pid,
GWEN_LoggerLevel_Notice,
I18N("Sending user keys"));
ctx=AB_ImExporterContext_new();
rv=AH_Provider_SendUserKeys2(pro, u, ctx, 0, 0, 1, 0); /* withAuthKey, withProgress, nounmount, doLock */
if (rv<0) {
AB_Banking_EndExclUseUser(xdlg->banking, u, 1);
DBG_INFO(AQHBCI_LOGDOMAIN, "here (%d)", rv);
AB_Banking_DeleteUser(xdlg->banking, u);
unlink(AH_NewKeyFileDialog_GetFileName(dlg));
GWEN_Gui_ProgressEnd(pid);
return GWEN_DialogEvent_ResultHandled;
}
rv=GWEN_Gui_ProgressAdvance(pid, GWEN_GUI_PROGRESS_ONE);
if (rv==GWEN_ERROR_USER_ABORTED) {
AB_Banking_EndExclUseUser(xdlg->banking, u, 1);
DBG_INFO(AQHBCI_LOGDOMAIN, "here (%d)", rv);
AB_Banking_DeleteUser(xdlg->banking, u);
//unlink(AH_NewKeyFileDialog_GetFileName(dlg));
GWEN_Gui_ProgressLog(pid,
GWEN_LoggerLevel_Error,
I18N("Aborted by user."));
GWEN_Gui_ProgressEnd(pid);
return GWEN_DialogEvent_ResultHandled;
}
/* unlock user */
rv=AB_Banking_EndExclUseUser(xdlg->banking, u, 0);
if (rv<0) {
DBG_INFO(AQHBCI_LOGDOMAIN,
"Could not unlock customer [%s] (%d)",
AB_User_GetCustomerId(u), rv);
GWEN_Gui_ProgressLog2(pid,
GWEN_LoggerLevel_Error,
I18N("Could not unlock user %s (%d)"),
AB_User_GetUserId(u), rv);
AB_Banking_EndExclUseUser(xdlg->banking, u, 1);
AB_Banking_DeleteUser(xdlg->banking, u);
GWEN_Gui_ProgressEnd(pid);
return GWEN_DialogEvent_ResultHandled;
}
GWEN_Gui_ProgressEnd(pid);
AH_NewKeyFileDialog_EnterPage(dlg, PAGE_END, 1);
xdlg->user=u;
return GWEN_DialogEvent_ResultHandled;
}
int cryptWithNew2(GWEN_DB_NODE *dbArgs, int argc, char **argv) {
GWEN_DB_NODE *db;
const char *ttype;
const char *tname;
GWEN_PLUGIN_MANAGER *pm;
GWEN_PLUGIN *pl;
GWEN_CRYPT_TOKEN *ct;
unsigned int cid;
int rv;
const GWEN_ARGS args[]={
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Int, /* type */
"contextId", /* name */
0, /* minnum */
1, /* maxnum */
"i", /* short option */
"id", /* long option */
"Context id (0 for any)", /* short description */
"Context id (0 for any)" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"tokenType", /* name */
1, /* minnum */
1, /* maxnum */
"t", /* short option */
"ttype", /* long option */
"Specify the crypt token type", /* short description */
"Specify the crypt token type" /* long description */
},
{
GWEN_ARGS_FLAGS_HAS_ARGUMENT, /* flags */
GWEN_ArgsType_Char, /* type */
"tokenName", /* name */
0, /* minnum */
1, /* maxnum */
"n", /* short option */
"tname", /* long option */
"Specify the crypt token name", /* short description */
"Specify the crypt token name" /* long description */
},
{
GWEN_ARGS_FLAGS_HELP | GWEN_ARGS_FLAGS_LAST, /* flags */
GWEN_ArgsType_Int, /* type */
"help", /* name */
0, /* minnum */
0, /* maxnum */
"h", /* short option */
"help", /* long option */
"Show this help screen", /* short description */
"Show this help screen" /* long description */
}
};
db=GWEN_DB_GetGroup(dbArgs, GWEN_DB_FLAGS_DEFAULT, "local");
rv=GWEN_Args_Check(argc, argv, 1,
GWEN_ARGS_MODE_ALLOW_FREEPARAM,
args,
db);
if (rv==GWEN_ARGS_RESULT_ERROR) {
fprintf(stderr, "ERROR: Could not parse arguments\n");
return 1;
}
else if (rv==GWEN_ARGS_RESULT_HELP) {
GWEN_BUFFER *ubuf;
ubuf=GWEN_Buffer_new(0, 1024, 0, 1);
if (GWEN_Args_Usage(args, ubuf, GWEN_ArgsOutType_Txt)) {
fprintf(stderr, "ERROR: Could not create help string\n");
return 1;
}
fprintf(stderr, "%s\n", GWEN_Buffer_GetStart(ubuf));
GWEN_Buffer_free(ubuf);
return 0;
}
cid=GWEN_DB_GetIntValue(db, "contextId", 0, 0);
ttype=GWEN_DB_GetCharValue(db, "tokenType", 0, 0);
assert(ttype);
tname=GWEN_DB_GetCharValue(db, "tokenName", 0, 0);
/* get crypt token */
pm=GWEN_PluginManager_FindPluginManager("ct");
if (pm==0) {
DBG_ERROR(0, "Plugin manager not found");
return 3;
}
pl=GWEN_PluginManager_GetPlugin(pm, ttype);
if (pl==0) {
DBG_ERROR(0, "Plugin not found");
return 3;
}
DBG_INFO(0, "Plugin found");
ct=GWEN_Crypt_Token_Plugin_CreateToken(pl, tname);
if (ct==0) {
DBG_ERROR(0, "Could not create crypt token");
return 3;
}
if (GWEN_DB_GetIntValue(dbArgs, "forcePin", 0, 0))
GWEN_Crypt_Token_AddModes(ct, GWEN_CRYPT_TOKEN_MODE_FORCE_PIN_ENTRY);
/* open crypt token for use */
rv=GWEN_Crypt_Token_Open(ct, 0, 0);
if (rv) {
DBG_ERROR(0, "Could not open token");
return 3;
}
else {
uint8_t clearText[96]={
0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08,
0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f, 0x10,
0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17, 0x18,
0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f, 0x20,
0x21, 0x22, 0x23, 0x24, 0x25, 0x26, 0x27, 0x28,
0x29, 0x2a, 0x2b, 0x2c, 0x2d, 0x2e, 0x2f, 0x30,
0x31, 0x32, 0x33, 0x34, 0x35, 0x36, 0x37, 0x38,
0x39, 0x3a, 0x3b, 0x3c, 0x3d, 0x3e, 0x3f, 0x40,
0x41, 0x42, 0x43, 0x44, 0x45, 0x46, 0x47, 0x48,
0x49, 0x4a, 0x4b, 0x4c, 0x4d, 0x4e, 0x4f, 0x50,
0x51, 0x52, 0x53, 0x54, 0x55, 0x56, 0x57, 0x58,
0x59, 0x5a, 0x5b, 0x5c, 0x5d, 0x5e, 0x5f, 0x60
};
uint8_t encrypted[128];
uint32_t elen;
uint8_t decrypted[128];
uint32_t dlen;
GWEN_CRYPT_PADDALGO *algo;
algo=GWEN_Crypt_PaddAlgo_new(GWEN_Crypt_PaddAlgoId_None);
elen=sizeof(encrypted);
rv=GWEN_Crypt_Token_Encipher(ct,
0x02,
algo,
clearText,
96,
encrypted,
&elen,
0);
if (rv) {
DBG_ERROR(0, "Could not encipher data (%d)", rv);
return 3;
}
fprintf(stderr, "Encrypted data is:\n");
GWEN_Text_DumpString((const char*) encrypted, elen, stderr, 2);
dlen=sizeof(decrypted);
rv=GWEN_Crypt_Token_Decipher(ct,
0x02,
algo,
encrypted,
elen,
decrypted,
&dlen,
0);
if (rv) {
DBG_ERROR(0, "Could not decipher data (%d)", rv);
return 3;
}
if (memcmp(clearText, decrypted, dlen)) {
DBG_ERROR(0, "Deciphered data does not equal clear text(%d)", rv);
return 3;
}
fprintf(stderr, "Deciphered data is ok.\n");
}
/* close crypt token */
rv=GWEN_Crypt_Token_Close(ct, 0, 0);
if (rv) {
DBG_ERROR(0, "Could not close token");
return 3;
}
return 0;
}
