#include <stdio.h>
#include <stdlib.h>
#include <memory>
#include "cconsolestream.h"
using namespace P6R;
namespace {
class CKmipExample5
{
public:
CKmipExample5()
: m_port(0), m_compatMask(0), m_pHostName(NULL)
{ }
~CKmipExample5()
{
if (NULL != m_pHostName) m_cpStr->wstrfree( m_pHostName );
if (NULL != m_cpStoreInit) m_cpStoreInit->close();
}
protected:
};
{
{
{
{
}
}
}
return err;
}
{
}
return err;
}
{
if (NULL == pwszFilename) return eInvalidArg;
{
{
{
{
{
if ( pBuffer )
{
{
{
keyBuffer.
length = cBytesRead;
err = createPKCS8Key( keyBuffer, keySize, ppNewKey );
}
}
}
else err = eIoError;
delete [] pBuffer;
}
else err = eNoMemory;
}
else {
err = eTooSmall;
}
}
}
}
return err;
}
{
*ppGenKeys = NULL;
{
{
(*ppGenKeys)->release();
*ppGenKeys = NULL;
}
}
return err;
}
{
if (
P6FAILED( err = m_cpStr->wstrlcat( confPath,
P6CNTOF(confPath), pFilePath, NULL )))
return err;
{
{
err = pKeystore->
setCertificate( pNamespace, szHash, cpNewCert, NULL );
}
}
return err;
}
{
if (
P6FAILED( err = m_cpStr->wstrlcat( confPath,
P6CNTOF(confPath), pFilePath, NULL )))
return err;
{
err = pKeystore->
setCertificate( pNamespace, pName, cpNewCert, NULL );
}
return err;
}
{
if (
P6FAILED( err = m_cpStr->wstrlcat( confPath,
P6CNTOF(confPath), pFilePath, NULL )))
return err;
{
err = pKeystore->
setKey( pNamespace, pName, cpNewKey, NULL, 0, NULL );
}
return err;
}
{
*pInit = NULL;
*pKeystore = NULL;
{
if (NULL != (*pKeystore)) (*pKeystore)->release();
(*pKeystore) = NULL;
(*pInit)->release();
(*pInit) = NULL;
return err;
}
if (
P6FAILED( err = (*pInit)->openSigned( NULL, pKeystoreName )))
{
if (NULL != (*pKeystore)) (*pKeystore)->release();
(*pKeystore) = NULL;
(*pInit)->release();
(*pInit) = NULL;
return err;
}
if (
P6FAILED( err = saveRootCertInStore( (*pKeystore),
P6TEXT(
"p6r.trustedroot"), rootPEM )))
return err;
if (
P6FAILED( err = saveClientCertInStore( (*pKeystore),
P6TEXT(
"p6r.clientauth"), m_pHostName, certPEM )))
return err;
if (
P6FAILED( err = savePrivKeyInStore( (*pKeystore),
P6TEXT(
"p6r.clientauth"), m_pHostName, privPEM, privSize )))
return err;
return eOk;
}
{
{
{
{
}
}
}
}
return err;
}
{
if (
P6FAILED( err = getRNG( m_cpRandom.addressof())))
return err;
m_port = 5696;
m_compatMask = 0;
if (
P6FAILED( err = m_cpStr->wstrdup(
P6TEXT(
"fqdn.com"), &m_pHostName )))
return err;
{
}
}
if (
P6SUCCEEDED( err )) err = m_cpCrypto->setKey( cpKey );
if (
P6FAILED( err = m_cpStr->wstrlcat( dbPath,
P6CNTOF(dbPath),
P6TEXT(
"/db/KMIP12_keystore"), NULL )))
return err;
if (
P6FAILED( err = m_cpStr->wstrlcat( dbPath,
P6CNTOF(dbPath),
P6TEXT(
"/db/KMIP12_keystore.sig"), NULL )))
return err;
err = createKeystore(
P6TEXT(
"KMIP12_keystore"),
P6TEXT(
"RootCert.pem"),
P6TEXT(
"ClientCert.pem"),
P6TEXT(
"ClientPrivate.pem"), 2048, m_cpStoreInit.addressof(), m_cpKeystore.addressof() );
return err;
}
{
return eOk;
}
{
if (
P6FAILED( err = pClient->
setSSLOptions( NULL, (P6SSF_METHOD_TLS1 | P6SSF_SECURE_CLIENT | P6SSF_SECURE_CLIENT_AUTH | P6SSF_LOG_X509SUBJECTLOOKUPS | P6SSF_VRFY_DISABLEHOSTMATCH))))
return err;
return pClient->
open( m_pHostName, m_port, (bWithCredentials ? &credential : NULL));
}
{
err = pEnum->
next( &buffer );
{
if (NULL == (pGUID =
new(std::nothrow)
P6CHAR[buffer.
length + 2]))
return eNoMemory;
pGUID[0] = 0;
}
else err = eFail;
return err;
}
{
if (NULL != pUniqueId)
{
if (
P6FAILED( err = extractUniqueId( pUniqueId, &enumStr )))
return err;
if (enumStr.
length ==
id.length)
{
err = m_cpStr->strcmp( enumStr.
pString,
id.pString,
id.length, &match );
}
}
return (0 == match);
}
{
{
printf("\ncall to revokeAndDestroyObject has failed %x\n", err );
}
printf("\nKMIP server returned an error - revoke and destroy object\n");
}
if (NULL != pUniqueId)
{
bMatch = isEqualId( pUniqueId, objectId );
if (!bMatch) {
printf("\nKMIP server to revoke object with wrong object uniqueId\n");
}
}
}
return err;
}
{
{
err = pClient->
destroyObject( objectId, NULL, &pUniqueId, &resultCodes );
printf("\ncall to destroyObject has failed %x\n", err );
}
printf("\nKMIP server returned an error - destroy object\n");
}
bMatch = isEqualId( pUniqueId, objectId );
if (!bMatch) {
printf("\nKMIP server to destroy object with wrong object uniqueId\n");
}
if (bFree)
delete [] objectId.
pString;
}
return err;
}
{
attributeList[0].
index = 0;
err = pClient->
locateObject( locateParams, &pUniqueId, &resultCodes );
{
err = pUniqueId->
reset();
{
err = pUniqueId->
count( &number );
err = pUniqueId->
next( &buffer );
if (NULL == (pGUID =
new(std::nothrow)
P6CHAR[buffer.
length + 2]))
return eNoMemory;
pGUID[0] = 0;
{
switch ( objectType ) {
break;
default:
err = destroyObject( pClient, buffer,
P6TRUE );
break;
}
}
else {
}
}
}
return eOk;
}
{
setPreferences( &preferences,
P6TEXT(
"CLEAN_UP"), 0, 0, 0, 0, 5000, 2000, 2000, 120000, 2, 2 );
return cpClient->
close();
}
{
CKmipExample5 example;
err = example.run(pDataStream);
}
}
}
int main(int argc,char *argv[])
{
{
{
KMIP_CleanUp( cpDataStream );
}
else printf("ERROR: Failed to initialize the loader [ %x ]\n", err );
}
else printf( "ERROR: Failed to create CConsoleStream [ %x ]\n", err );
return err;
}