xsec/utils/XSECPlatformUtils.hpp - santuario-cpp - Git at Google

 /**
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements. See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership. The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License. You may obtain a copy of the License at
  *
  * http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing,
  * software distributed under the License is distributed on an
  * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
  * KIND, either express or implied. See the License for the
  * specific language governing permissions and limitations
  * under the License.
  */

 /*
  * XSEC
  *
  * XSECPlatformUtils:= To support the platform we run in
  *
  * Author(s): Berin Lautenbach
  *
  * $Id$
  *
  */

 #ifndef XSECPLATFORMUTILS_INCLUDE
 #define XSECPLATFORMUTILS_INCLUDE

 #include <xercesc/dom/DOM.hpp>

 // XSEC

 #include <xsec/framework/XSECDefs.hpp>
 #include <xsec/enc/XSECCryptoProvider.hpp>

 class TXFMBase;
 class XSECAlgorithmMapper;
 class XSECAlgorithmHandler;

 #include <stdio.h>

 /**
  * \brief High level library interface class.
  * @ingroup internal
  *
  * This class is used primarily to initialise the library and
  * communicate high level parameters that will be common to all
  * objects from the class in any given session.
  *
  * It is primarily a static class.
  */

 class XSEC_EXPORT XSECPlatformUtils {

 public :

 	/**
 	 * \brief Number of times initialise has been called
 	 *
 	 * initCount can be read by any class or function to determine how
 	 * many times the library has been initialised.
 	 */

 	static int initCount;

 	/**
 	 * \brief The main cryptographic provider
 	 *
 	 * This pointer can be used to determine the primary crypto
 	 * provider registered in the library.
 	 *
 	 * Individual signatures can over-ride this default.
 	 *
 	 */

 	static XSECCryptoProvider * g_cryptoProvider;

 	/**
 	 * \brief The global Algorithm Mapper
 	 *
 	 * The algorithm mapper is used to map algorithm type URI strings
 	 * to algorithm implementations.  Note that this is a level of
 	 * indirection above actual cryptographic algorithms.  For example:
 	 *
 	 * URI = http://www.w3.org/2001/04/xmlenc#tripledes-cbc
 	 *
 	 * is the URI for 3DES in CBC mode.  The mapper will return an
 	 * algorithm handler that understands what this means in terms of
 	 * IVs and how to call the XSECCryptoKey interface.  It then uses the
 	 * cryptographic provider to actually perform the encryption.
 	 *
 	 * This allows applications to provide new algorithm types.  The
 	 * mapper is used to map the type string to the means of doing the
 	 * encryption, and a new XSECCryptoKey derivative can be provided
 	 * to perform the actual crypo work.
 	 *
 	 * @note The provider should only be added to via the
 	 * XSECPlatformUtils::registerAlgorithmHandler() call.
 	 *
 	 * @see #addAlgorithmHandler()
 	 */

 	static const XSECAlgorithmMapper * g_algorithmMapper;

 	/**
 	 * \brief Initialise the library
 	 *
 	 * <b>Must</b> be called prior to using any functions in the library.
 	 *
 	 * Primarily sets up static variables used by all classes in the
 	 * library.
 	 *
 	 * @param p A pointer to a XSECCryptoProvider object that the library
 	 * should use for cryptographic functions.  If p == NULL, the library
 	 * will instantiate an OpenSSLCryptoProvider object.
 	 */

 	static void Initialise(XSECCryptoProvider * p = NULL);

 	/**
 	 * \brief Set a new crypto provider
 	 *
 	 * Set the crypto provider to the value passed in.  Any current provider
 	 * is deleted.
 	 *
 	 * @note This is not thread-safe.  It should be called prior to any real
 	 * usage of the library.
 	 *
 	 * @param p A pointer to a XSECCryptoProvider object that the library
 	 * should use for cryptographic functions.
 	 * @note Ownership of the provider is passed to the library, which will
 	 * delete it at Termination.
 	 */

 	static void SetCryptoProvider(XSECCryptoProvider * p);

 	/**
 	 * \brief Add a new algorithm Handler
 	 *
 	 * Application developers can extend the XSECAlgorithmHandler class to
 	 * implement new cryptographic algorithms.  This will then allow the
 	 * library to call the provided handler whenever trying to process a
 	 * type it doesn't understand.
 	 *
 	 * Any handler previously registered for this URI will be overwritten,
 	 * allowing callers to overwrite the handlers for default URIs.
 	 *
 	 * @see XSECAlgorithmHandler
 	 * @note This is <b>not</b> thread safe.  Algorithm handlers should
 	 * be added prior to any processing of signatures etc.
 	 * @param uri Type URI that maps to this handler
 	 * @param handler The handler to be used whenever this URI is seen by
 	 * the library.
 	 */

 	static void registerAlgorithmHandler(const XMLCh * uri, const XSECAlgorithmHandler & handler);

     /**
      * \brief Indicate an algorithm is approved for use, implying others are not.
      *
      * @see XSECAlgorithmHandler
      * @note This is <b>not</b> thread safe.  Algorithms should
      * be whitelisted prior to any processing of signatures etc.
      * @param URI algorithm to whitelist
      */

 	static void whitelistAlgorithm(const XMLCh* URI);

     /**
      * \brief Indicate an algorithm is not approved for use, implying others are.
      *
      * @see XSECAlgorithmHandler
      * @note This is <b>not</b> thread safe.  Algorithms should
      * be blacklisted prior to any processing of signatures etc.
      * @param URI algorithm to blacklist
      */

     static void blacklistAlgorithm(const XMLCh* URI);

     typedef TXFMBase* TransformFactory(XERCES_CPP_NAMESPACE_QUALIFIER DOMDocument*);

     /**
      * \brief Installs logging support during Reference processing
      *
      * The function provided will be called during Reference computation
      * to obtain a transform interface to place at the end of the
      * transform chain. It will be given the chance to log or preserve
      * the result of applying transforms to References during signing
      * and verification operations.
      */
     static void SetReferenceLoggingSink(TransformFactory* factory);

     /**
      * \brief Returns a transform for logging of Reference processing
      *
      * @param doc   the DOM document containing the data being processed
      * @return  a transform to install for logging of Reference data, or NULL
      */
     static TXFMBase* GetReferenceLoggingSink(XERCES_CPP_NAMESPACE_QUALIFIER DOMDocument* doc);

 	/**
 	 * \brief Terminate
 	 *
 	 * Should be called prior to any program exist to allow the library
 	 * to cleanly delete any memory associated with the library as a whole.
 	 *
 	 * @note Do not call this function while any xml-security-c object
 	 * remain instantiated.  The results of doing so is undefined, and could
 	 * cause bad results.
 	 */

 	static void Terminate(void);

 private:
 	static TransformFactory* g_loggingSink;
 };


 #endif /* XSECPLATFORMUTILS_INCLUDE */
	/**
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing,
	* software distributed under the License is distributed on an
	* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	* KIND, either express or implied. See the License for the
	* specific language governing permissions and limitations
	* under the License.
	*/

	/*
	* XSEC
	*
	* XSECPlatformUtils:= To support the platform we run in
	*
	* Author(s): Berin Lautenbach
	*
	* $Id$
	*
	*/

	#ifndef XSECPLATFORMUTILS_INCLUDE
	#define XSECPLATFORMUTILS_INCLUDE

	#include <xercesc/dom/DOM.hpp>

	// XSEC

	#include <xsec/framework/XSECDefs.hpp>
	#include <xsec/enc/XSECCryptoProvider.hpp>

	class TXFMBase;
	class XSECAlgorithmMapper;
	class XSECAlgorithmHandler;

	#include <stdio.h>

	/**
	* \brief High level library interface class.
	* @ingroup internal
	*
	* This class is used primarily to initialise the library and
	* communicate high level parameters that will be common to all
	* objects from the class in any given session.
	*
	* It is primarily a static class.
	*/

	class XSEC_EXPORT XSECPlatformUtils {

	public :

	/**
	* \brief Number of times initialise has been called
	*
	* initCount can be read by any class or function to determine how
	* many times the library has been initialised.
	*/

	static int initCount;

	/**
	* \brief The main cryptographic provider
	*
	* This pointer can be used to determine the primary crypto
	* provider registered in the library.
	*
	* Individual signatures can over-ride this default.
	*
	*/

	static XSECCryptoProvider * g_cryptoProvider;

	/**
	* \brief The global Algorithm Mapper
	*
	* The algorithm mapper is used to map algorithm type URI strings
	* to algorithm implementations. Note that this is a level of
	* indirection above actual cryptographic algorithms. For example:
	*
	* URI = http://www.w3.org/2001/04/xmlenc#tripledes-cbc
	*
	* is the URI for 3DES in CBC mode. The mapper will return an
	* algorithm handler that understands what this means in terms of
	* IVs and how to call the XSECCryptoKey interface. It then uses the
	* cryptographic provider to actually perform the encryption.
	*
	* This allows applications to provide new algorithm types. The
	* mapper is used to map the type string to the means of doing the
	* encryption, and a new XSECCryptoKey derivative can be provided
	* to perform the actual crypo work.
	*
	* @note The provider should only be added to via the
	* XSECPlatformUtils::registerAlgorithmHandler() call.
	*
	* @see #addAlgorithmHandler()
	*/

	static const XSECAlgorithmMapper * g_algorithmMapper;

	/**
	* \brief Initialise the library
	*
	* <b>Must</b> be called prior to using any functions in the library.
	*
	* Primarily sets up static variables used by all classes in the
	* library.
	*
	* @param p A pointer to a XSECCryptoProvider object that the library
	* should use for cryptographic functions. If p == NULL, the library
	* will instantiate an OpenSSLCryptoProvider object.
	*/

	static void Initialise(XSECCryptoProvider * p = NULL);

	/**
	* \brief Set a new crypto provider
	*
	* Set the crypto provider to the value passed in. Any current provider
	* is deleted.
	*
	* @note This is not thread-safe. It should be called prior to any real
	* usage of the library.
	*
	* @param p A pointer to a XSECCryptoProvider object that the library
	* should use for cryptographic functions.
	* @note Ownership of the provider is passed to the library, which will
	* delete it at Termination.
	*/

	static void SetCryptoProvider(XSECCryptoProvider * p);

	/**
	* \brief Add a new algorithm Handler
	*
	* Application developers can extend the XSECAlgorithmHandler class to
	* implement new cryptographic algorithms. This will then allow the
	* library to call the provided handler whenever trying to process a
	* type it doesn't understand.
	*
	* Any handler previously registered for this URI will be overwritten,
	* allowing callers to overwrite the handlers for default URIs.
	*
	* @see XSECAlgorithmHandler
	* @note This is <b>not</b> thread safe. Algorithm handlers should
	* be added prior to any processing of signatures etc.
	* @param uri Type URI that maps to this handler
	* @param handler The handler to be used whenever this URI is seen by
	* the library.
	*/

	static void registerAlgorithmHandler(const XMLCh * uri, const XSECAlgorithmHandler & handler);

	/**
	* \brief Indicate an algorithm is approved for use, implying others are not.
	*
	* @see XSECAlgorithmHandler
	* @note This is <b>not</b> thread safe. Algorithms should
	* be whitelisted prior to any processing of signatures etc.
	* @param URI algorithm to whitelist
	*/

	static void whitelistAlgorithm(const XMLCh* URI);

	/**
	* \brief Indicate an algorithm is not approved for use, implying others are.
	*
	* @see XSECAlgorithmHandler
	* @note This is <b>not</b> thread safe. Algorithms should
	* be blacklisted prior to any processing of signatures etc.
	* @param URI algorithm to blacklist
	*/

	static void blacklistAlgorithm(const XMLCh* URI);

	typedef TXFMBase* TransformFactory(XERCES_CPP_NAMESPACE_QUALIFIER DOMDocument*);

	/**
	* \brief Installs logging support during Reference processing
	*
	* The function provided will be called during Reference computation
	* to obtain a transform interface to place at the end of the
	* transform chain. It will be given the chance to log or preserve
	* the result of applying transforms to References during signing
	* and verification operations.
	*/
	static void SetReferenceLoggingSink(TransformFactory* factory);

	/**
	* \brief Returns a transform for logging of Reference processing
	*
	* @param doc the DOM document containing the data being processed
	* @return a transform to install for logging of Reference data, or NULL
	*/
	static TXFMBase* GetReferenceLoggingSink(XERCES_CPP_NAMESPACE_QUALIFIER DOMDocument* doc);

	/**
	* \brief Terminate
	*
	* Should be called prior to any program exist to allow the library
	* to cleanly delete any memory associated with the library as a whole.
	*
	* @note Do not call this function while any xml-security-c object
	* remain instantiated. The results of doing so is undefined, and could
	* cause bad results.
	*/

	static void Terminate(void);

	private:
	static TransformFactory* g_loggingSink;
	};


	#endif /* XSECPLATFORMUTILS_INCLUDE */