00001
00002
00003
00004
00005
00006
00007
00008
00009
00010
00011
00012
00013
00014
00015
00016
00017
00018
00019
00020
00021
00022
00023
00024
00025
00026
00027
00028
00029
00030
00031
00032
00033
00034
00035
00036
00037
00038 #include <assert.h>
00039 #include <stdio.h>
00040 #include <string.h>
00041
00042 #include "ksm/database.h"
00043 #include "ksm/database_statement.h"
00044 #include "ksm/db_fields.h"
00045 #include "ksm/debug.h"
00046 #include "ksm/ksm.h"
00047 #include "ksm/kmedef.h"
00048 #include "ksm/ksmdef.h"
00049 #include "ksm/message.h"
00050 #include "ksm/memory.h"
00051 #include "ksm/string_util.h"
00052 #include "ksm/string_util2.h"
00053
00054
00055
00056
00057
00058
00059
00060
00061
00062
00063
00064
00065
00066
00067
00068
00069
00070
00071
00072
00073
00074
00075
00076
00077
00078
00079
00080
00081
00082
00083
00084
00085
00086
00087
00088
00089
00090
00091
00092
00093
00094
00095
00096
00097 int KsmRequestKeys(int keytype, int rollover, const char* datetime,
00098 KSM_REQUEST_CALLBACK callback, void* context, int policy_id, int zone_id,
00099 int run_interval, int* NewDS)
00100 {
00101 int status;
00102
00103
00104 status = DbBeginTransaction();
00105 if (status != 0) {
00106
00107
00108 MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
00109 return status;
00110 }
00111
00112
00113 status = KsmUpdate(policy_id, zone_id);
00114 if (status == 0) {
00115
00116
00117
00118 if ((keytype == KSM_TYPE_KSK) || (keytype == KSM_TYPE_ZSK)) {
00119 status = KsmRequestKeysByType(keytype, rollover, datetime,
00120 callback, context, policy_id, zone_id, run_interval, NewDS);
00121
00122 if (status != 0) {
00123 DbRollback();
00124 return status;
00125 }
00126 }
00127 else {
00128 status = KsmRequestKeysByType(KSM_TYPE_KSK, rollover, datetime,
00129 callback, context, policy_id, zone_id, run_interval, NewDS);
00130 if (status != 0) {
00131 DbRollback();
00132 return status;
00133 }
00134
00135 status = KsmRequestKeysByType(KSM_TYPE_ZSK, rollover, datetime,
00136 callback, context, policy_id, zone_id, run_interval, NewDS);
00137 if (status != 0) {
00138 DbRollback();
00139 return status;
00140 }
00141 }
00142
00143
00144
00145
00146
00147
00148 status = KsmUpdate(policy_id, zone_id);
00149 if (status != 0) {
00150 DbRollback();
00151 return status;
00152 }
00153 else
00154 {
00155
00156 DbCommit();
00157 }
00158 }
00159 else
00160 {
00161
00162 DbRollback();
00163 }
00164
00165 return status;
00166 }
00167
00168
00169
00170
00171
00172
00173
00174
00175
00176
00177
00178
00179
00180
00181
00182
00183
00184
00185
00186
00187
00188
00189
00190
00191
00192
00193
00194
00195
00196
00197
00198
00199
00200
00201
00202
00203
00204
00205
00206
00207
00208
00209
00210
00211
00212 int KsmRequestKeysByType(int keytype, int rollover, const char* datetime,
00213 KSM_REQUEST_CALLBACK callback, void* context, int policy_id, int zone_id,
00214 int run_interval, int* NewDS)
00215 {
00216 int active;
00217 KSM_PARCOLL collection;
00218 int ready;
00219 int first_pass = 0;
00220 int status;
00221 char* zone_name = NULL;
00222 int manual_rollover = 0;
00223
00224
00225
00226 if ((keytype != KSM_TYPE_KSK) && (keytype != KSM_TYPE_ZSK)) {
00227 status = MsgLog(KME_UNKEYTYPE, keytype);
00228 return status;
00229 }
00230
00231 DbgLog(DBG_M_REQUEST, KME_REQKEYTYPE,
00232 (keytype == KSM_TYPE_KSK) ? "key" : "zone");
00233
00234
00235
00236 status = KsmParameterCollection(&collection, policy_id);
00237 if (status != 0) {
00238 return status;
00239 }
00240
00241 if (keytype == KSM_TYPE_KSK) {
00242 manual_rollover = collection.kskmanroll;
00243 }
00244 else if (keytype == KSM_TYPE_ZSK) {
00245 manual_rollover = collection.zskmanroll;
00246 }
00247
00248
00249 status = KsmRequestCheckFirstPass(keytype, &first_pass, zone_id);
00250 if (status != 0) {
00251 return status;
00252 }
00253
00254
00255
00256
00257
00258
00259 if (rollover) {
00260 status = KsmRequestSetActiveExpectedRetire(keytype, datetime, zone_id);
00261 if (status != 0) {
00262 return status;
00263 }
00264 } else {
00265
00266
00267
00268
00269 status = KsmRequestCheckCompromisedFlag(keytype, zone_id, &rollover);
00270 if (status != 0) {
00271 return status;
00272 }
00273 }
00274
00275
00276
00277
00278 if (keytype == KSM_TYPE_KSK) {
00279 status = KsmRequestChangeStateKeyPublishActive(datetime, zone_id, policy_id, NewDS);
00280 if (status != 0) {
00281 return status;
00282 }
00283
00284 if (*NewDS == 1) {
00285
00286 status = KsmRequestChangeStateActiveRetire(keytype, datetime, zone_id, policy_id);
00287 if (status != 0) {
00288 StrFree(zone_name);
00289 return status;
00290 }
00291 *NewDS = 0;
00292
00293 }
00294 }
00295
00296
00297
00298
00299
00300
00301
00302 status = KsmRequestChangeStateRetireDead(keytype, datetime, zone_id, policy_id, collection.kskroll, NewDS);
00303 if (status != 0) {
00304 return status;
00305 }
00306
00307
00308
00309
00310
00311
00312 if (keytype == KSM_TYPE_ZSK ||
00313 collection.kskroll == KSM_ROLL_DNSKEY ||
00314 first_pass == 1) {
00315 status = KsmRequestChangeStatePublishReady(keytype, datetime, zone_id, policy_id, NewDS);
00316 if (status != 0) {
00317 return status;
00318 }
00319 }
00320
00321
00322
00323
00324
00325
00326 if (keytype == KSM_TYPE_KSK) {
00327 status = KsmRequestChangeStateDSPublishDSReady(keytype, datetime, zone_id, policy_id);
00328 if (status != 0) {
00329 return status;
00330 }
00331 }
00332
00333
00334
00335
00336
00337
00338 if (keytype == KSM_TYPE_KSK) {
00339 status = KsmRequestChangeStateGenerateDSSubConditional(keytype, datetime, &collection, zone_id, NewDS);
00340
00341
00342 if (first_pass == 1) {
00343 *NewDS = 0;
00344 }
00345 if (status != 0) {
00346 return status;
00347 }
00348 }
00349
00350
00351
00352
00353
00354
00355
00356 status = KsmRequestChangeStateGeneratePublishConditional(keytype, datetime, &collection, zone_id, run_interval);
00357 if (status != 0) {
00358 return status;
00359 }
00360
00361
00362
00363
00364
00365
00366 status = KsmRequestCheckActiveKey(keytype, datetime, &active, zone_id);
00367 if (status != 0) {
00368 return status;
00369 }
00370
00371
00372
00373
00374
00375
00376
00377
00378
00379
00380 if ((active <= 0) || (rollover)) {
00381
00382
00383 status = KsmZoneNameFromId(zone_id, &zone_name);
00384 if (status != 0) {
00385 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
00386 if (zone_name != NULL) {
00387 StrFree(zone_name);
00388 }
00389 return(status);
00390 }
00391
00392
00393
00394
00395
00396
00397 status = KsmRequestCountReadyKey(keytype, datetime, &ready, zone_id);
00398 if (status != 0) {
00399 StrFree(zone_name);
00400 return status;
00401 }
00402
00403
00404
00405
00406
00407
00408 if (ready <= 0) {
00409
00410
00411
00412
00413
00414
00415
00416
00417 if (first_pass == 1) {
00418
00419
00420 if (keytype == KSM_TYPE_KSK) {
00421
00422
00423 } else {
00424 (void) MsgLog(KME_PROM_PUB, "ZSK");
00425 status = KsmRequestChangeStateN(keytype, datetime, 1,
00426 KSM_STATE_PUBLISH, KSM_STATE_ACTIVE, zone_id);
00427 }
00428
00429 if (status != 0) {
00430 StrFree(zone_name);
00431 return status;
00432 }
00433 }
00434 else {
00435
00436 if (keytype == KSM_TYPE_KSK) {
00437 status = KsmRequestChangeStateDSReadyKeyPublish(datetime, zone_id, policy_id);
00438 if (status != 0) {
00439 return status;
00440 }
00441 }
00442
00443 (void) MsgLog(KME_NOREADYKEY, (keytype == KSM_TYPE_KSK ? "KSK" : "ZSK"), zone_name);
00444
00445 }
00446 }
00447 else if (manual_rollover == 1 && rollover == 0) {
00448 (void) MsgLog(KME_MAN_ROLL_REQUIRED, (keytype == KSM_TYPE_KSK ? "KSK" : "ZSK"), zone_name);
00449 }
00450
00451
00452 else if (keytype == KSM_TYPE_KSK) {
00453
00454
00455
00456
00457 (void) MsgLog(KME_DS_SUBMISSION, zone_name);
00458 }
00459 else {
00460
00461
00462 status = KsmRequestChangeStateReadyActive(keytype, datetime, 1, zone_id);
00463
00464
00465
00466
00467 if (status != KME_BACK_FATAL) {
00468 if (status != 0) {
00469 StrFree(zone_name);
00470 return status;
00471 }
00472
00473
00474 status = KsmRequestChangeStateActiveRetire(keytype, datetime, zone_id, policy_id);
00475 if (status != 0) {
00476 StrFree(zone_name);
00477 return status;
00478 }
00479
00480
00481 (void) MsgLog(KME_ROLL_ZONE, (keytype == KSM_TYPE_KSK ? "KSK" : "ZSK"), zone_name);
00482 }
00483 }
00484 StrFree(zone_name);
00485 }
00486
00487
00488
00489 status = KsmRequestIssueKeys(keytype, callback, context, zone_id);
00490
00491 return status;
00492 }
00493
00494
00495
00496
00497
00498
00499
00500
00501
00502
00503
00504
00505
00506
00507
00508
00509
00510
00511
00512
00513
00514
00515
00516
00517
00518
00519
00520
00521 int KsmRequestSetActiveExpectedRetire(int keytype, const char* datetime, int zone_id)
00522 {
00523 int count = 0;
00524 char* sql = NULL;
00525 int status = 0;
00526 int where = 0;
00527 int i = 0;
00528 int j = 0;
00529 char* insql = NULL;
00530 int* keyids;
00531 DB_RESULT result;
00532 KSM_KEYDATA data;
00533 char buffer[32];
00534
00535
00536
00537 sql = DqsCountInit("KEYDATA_VIEW");
00538 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, keytype, where++);
00539 DqsConditionInt(&sql, "STATE", DQS_COMPARE_EQ, KSM_STATE_ACTIVE, where++);
00540 if (zone_id != -1) {
00541 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, where++);
00542 }
00543 DqsEnd(&sql);
00544
00545 status = DbIntQuery(DbHandle(), &count, sql);
00546 DqsFree(sql);
00547
00548 if (status != 0) {
00549 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
00550 return status;
00551 }
00552
00553 if (count == 0) {
00554
00555 return status;
00556 }
00557
00558
00559 keyids = MemMalloc(count * sizeof(int));
00560
00561
00562
00563 where = 0;
00564 sql = DqsSpecifyInit("KEYDATA_VIEW", DB_KEYDATA_FIELDS);
00565 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, keytype, where++);
00566 DqsConditionInt(&sql, "STATE", DQS_COMPARE_EQ, KSM_STATE_ACTIVE, where++);
00567 if (zone_id != -1) {
00568 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, where++);
00569 }
00570 DqsEnd(&sql);
00571
00572 status = KsmKeyInitSql(&result, sql);
00573 DqsFree(sql);
00574
00575 if (status == 0) {
00576 while (status == 0) {
00577 status = KsmKey(result, &data);
00578 if (status == 0) {
00579 keyids[i] = data.keypair_id;
00580 i++;
00581 }
00582 }
00583
00584
00585
00586 if (status == -1) {
00587 status = 0;
00588 } else {
00589 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
00590 StrFree(keyids);
00591 return status;
00592 }
00593
00594 KsmKeyEnd(result);
00595
00596 } else {
00597 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
00598 StrFree(keyids);
00599 return status;
00600 }
00601
00602
00603
00604
00605
00606
00607 StrAppend(&insql, "(");
00608 for (j = 0; j < i; ++j) {
00609 if (j != 0) {
00610 StrAppend(&insql, ",");
00611 }
00612 snprintf(buffer, sizeof(buffer), "%d", keyids[j]);
00613 StrAppend(&insql, buffer);
00614 }
00615 StrAppend(&insql, ")");
00616
00617
00618
00619
00620
00621
00622
00623
00624 sql = DusInit("keypairs");
00625 DusSetInt(&sql, "fixedDate", 1, 0);
00626 DusSetInt(&sql, "compromisedflag", 1, 1);
00627
00628 DusConditionKeyword(&sql, "ID", DQS_COMPARE_IN, insql, 0);
00629 DusEnd(&sql);
00630
00631 status = DbExecuteSqlNoResult(DbHandle(), sql);
00632 DusFree(sql);
00633
00634
00635 if (status != 0) {
00636 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
00637 }
00638
00639 sql = DusInit("dnsseckeys");
00640 DusSetString(&sql, "RETIRE", datetime, 0);
00641
00642 DusConditionKeyword(&sql, "KEYPAIR_ID", DQS_COMPARE_IN, insql, 0);
00643
00644 StrFree(insql);
00645 DusEnd(&sql);
00646
00647 status = DbExecuteSqlNoResult(DbHandle(), sql);
00648 DusFree(sql);
00649
00650
00651 if (status != 0) {
00652 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
00653 }
00654
00655 StrFree(keyids);
00656
00657 return status;
00658 }
00659
00660
00661
00662
00663
00664
00665
00666
00667
00668
00669
00670
00671
00672
00673
00674
00675
00676
00677
00678
00679
00680
00681
00682
00683
00684
00685
00686
00687
00688 int KsmRequestChangeStatePublishReady(int keytype, const char* datetime, int zone_id, int policy_id, int* NewDS)
00689 {
00690 return KsmRequestChangeState(keytype, datetime,
00691 KSM_STATE_PUBLISH, KSM_STATE_READY, zone_id, policy_id, -1, NewDS);
00692 }
00693
00694 int KsmRequestChangeStateDSPublishDSReady(int keytype, const char* datetime, int zone_id, int policy_id)
00695 {
00696 int* dummy = NULL;
00697 return KsmRequestChangeState(keytype, datetime,
00698 KSM_STATE_DSPUBLISH, KSM_STATE_DSREADY, zone_id, policy_id, -1, dummy);
00699 }
00700
00701 int KsmRequestChangeStateDSReadyKeyPublish(const char* datetime, int zone_id, int policy_id)
00702 {
00703 int* dummy = NULL;
00704 return KsmRequestChangeState(KSM_TYPE_KSK, datetime,
00705 KSM_STATE_DSREADY, KSM_STATE_KEYPUBLISH, zone_id, policy_id, -1, dummy);
00706 }
00707
00708 int KsmRequestChangeStateKeyPublishActive(const char* datetime, int zone_id, int policy_id, int* NewDS)
00709 {
00710 return KsmRequestChangeState(KSM_TYPE_KSK, datetime,
00711 KSM_STATE_KEYPUBLISH, KSM_STATE_ACTIVE, zone_id, policy_id, -1, NewDS);
00712 }
00713
00714 int KsmRequestChangeStateActiveRetire(int keytype, const char* datetime, int zone_id, int policy_id)
00715 {
00716 int* dummy = NULL;
00717 return KsmRequestChangeState(keytype, datetime,
00718 KSM_STATE_ACTIVE, KSM_STATE_RETIRE, zone_id, policy_id, -1, dummy);
00719 }
00720
00721 int KsmRequestChangeStateRetireDead(int keytype, const char* datetime, int zone_id, int policy_id, int rollover_scheme, int* NewDS)
00722 {
00723 return KsmRequestChangeState(keytype, datetime,
00724 KSM_STATE_RETIRE, KSM_STATE_DEAD, zone_id, policy_id, rollover_scheme, NewDS);
00725 }
00726
00727
00728
00729
00730
00731
00732
00733
00734
00735
00736
00737
00738
00739
00740
00741
00742
00743
00744
00745
00746
00747
00748
00749
00750
00751
00752
00753
00754
00755
00756
00757
00758
00759
00760
00761
00762
00763
00764
00765
00766 int KsmRequestChangeState(int keytype, const char* datetime,
00767 int src_state, int dst_state, int zone_id, int policy_id,
00768 int rollover_scheme, int* NewDS)
00769 {
00770 int where = 0;
00771 char* dst_col = NULL;
00772 int set = 0;
00773 char* sql = NULL;
00774 int status = 0;
00775 int count = 0;
00776 int i = 0;
00777 int j = 0;
00778 char* insql = NULL;
00779 int* keyids;
00780 DB_RESULT result;
00781 KSM_KEYDATA data;
00782 char buffer[32];
00783 char* zone_name = NULL;
00784
00785
00786 (void)policy_id;
00787
00788
00789 if (dst_state == KSM_STATE_DSREADY) {
00790 StrAppend(&dst_col, KSM_STATE_READY_STRING);
00791 } else if (dst_state == KSM_STATE_KEYPUBLISH) {
00792 StrAppend(&dst_col, KSM_STATE_PUBLISH_STRING);
00793 } else {
00794 dst_col = StrStrdup(KsmKeywordStateValueToName(dst_state));
00795 }
00796 (void) StrToUpper(dst_col);
00797
00798
00799 sql = DqsCountInit("KEYDATA_VIEW");
00800 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, keytype, where++);
00801 DqsConditionInt(&sql, "STATE", DQS_COMPARE_EQ, src_state, where++);
00802 if (zone_id != -1) {
00803 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, where++);
00804 }
00805 DqsConditionString(&sql, dst_col, DQS_COMPARE_LE, datetime, where++);
00806 DqsEnd(&sql);
00807
00808 status = DbIntQuery(DbHandle(), &count, sql);
00809 DqsFree(sql);
00810
00811 if (status != 0) {
00812 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
00813 StrFree(dst_col);
00814 return status;
00815 }
00816
00817 if (count == 0) {
00818
00819 StrFree(dst_col);
00820 return status;
00821 }
00822
00823
00824 keyids = MemMalloc(count * sizeof(int));
00825
00826
00827
00828 where = 0;
00829 sql = DqsSpecifyInit("KEYDATA_VIEW", DB_KEYDATA_FIELDS);
00830 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, keytype, where++);
00831 DqsConditionInt(&sql, "STATE", DQS_COMPARE_EQ, src_state, where++);
00832 if (zone_id != -1) {
00833 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, where++);
00834 }
00835 DqsConditionString(&sql, dst_col, DQS_COMPARE_LE, datetime, where++);
00836 DqsEnd(&sql);
00837
00838 status = KsmKeyInitSql(&result, sql);
00839 DqsFree(sql);
00840
00841 if (status == 0) {
00842 while (status == 0) {
00843 status = KsmKey(result, &data);
00844 if (status == 0) {
00845 keyids[i] = data.keypair_id;
00846 i++;
00847 }
00848 }
00849
00850
00851
00852 if (status == -1) {
00853 status = 0;
00854 } else {
00855 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
00856 StrFree(dst_col);
00857 StrFree(keyids);
00858 return status;
00859 }
00860
00861 KsmKeyEnd(result);
00862
00863 } else {
00864 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
00865 StrFree(dst_col);
00866 StrFree(keyids);
00867 return status;
00868 }
00869
00870
00871
00872 DbgLog(DBG_M_REQUEST, KME_KEYCHSTATE, count,
00873 KsmKeywordStateValueToName(src_state),
00874 KsmKeywordStateValueToName(dst_state));
00875
00876
00877
00878
00879
00880
00881 StrAppend(&insql, "(");
00882 for (j = 0; j < i; ++j) {
00883 if (j != 0) {
00884 StrAppend(&insql, ",");
00885 }
00886 snprintf(buffer, sizeof(buffer), "%d", keyids[j]);
00887 StrAppend(&insql, buffer);
00888 }
00889 StrAppend(&insql, ")");
00890
00891 StrFree(keyids);
00892
00893
00894
00895
00896
00897
00898
00899
00900 sql = DusInit("dnsseckeys");
00901 DusSetInt(&sql, "STATE", dst_state, set++);
00902 DusSetString(&sql, dst_col, datetime, set++);
00903
00904 DusConditionKeyword(&sql, "KEYPAIR_ID", DQS_COMPARE_IN, insql, 0);
00905 DusConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, 1);
00906 DusEnd(&sql);
00907 StrFree(dst_col);
00908
00909 status = DbExecuteSqlNoResult(DbHandle(), sql);
00910 DusFree(sql);
00911
00912
00913 if (status != 0) {
00914 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
00915 }
00916
00917
00918 if (keytype == KSM_TYPE_KSK && ((dst_state == KSM_STATE_DEAD && rollover_scheme == KSM_ROLL_DS) || dst_state == KSM_STATE_READY))
00919 {
00920
00921 *NewDS = 1;
00922
00923
00924 status = KsmZoneNameFromId(zone_id, &zone_name);
00925 if (status != 0) {
00926 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
00927 if (zone_name != NULL) {
00928 StrFree(insql);
00929 StrFree(zone_name);
00930 }
00931 return(status);
00932 }
00933
00934
00935 if (dst_state == KSM_STATE_DEAD && rollover_scheme == KSM_ROLL_DS) {
00936 (void) MsgLog(KME_DS_REM_ZONE, zone_name);
00937 }
00938 else if (dst_state == KSM_STATE_READY) {
00939 (void) MsgLog(KME_NEW_DS, zone_name);
00940
00941 }
00942 }
00943 else if (keytype == KSM_TYPE_KSK && src_state == KSM_STATE_KEYPUBLISH) {
00944
00945 *NewDS = 1;
00946 }
00947
00948 StrFree(insql);
00949 StrFree(zone_name);
00950
00951 return status;
00952 }
00953
00954
00955
00956
00957
00958
00959
00960
00961
00962
00963
00964
00965
00966
00967
00968
00969
00970
00971
00972
00973
00974
00975
00976
00977
00978
00979
00980
00981
00982
00983
00984
00985
00986 int KsmRequestChangeStateGeneratePublish(int keytype, const char* datetime,
00987 int count, int zone_id)
00988 {
00989 return KsmRequestChangeStateN(keytype, datetime, count,
00990 KSM_STATE_GENERATE, KSM_STATE_PUBLISH, zone_id);
00991 }
00992
00993 int KsmRequestChangeStateGenerateDSSub(int keytype, const char* datetime,
00994 int count, int zone_id)
00995 {
00996 return KsmRequestChangeStateN(keytype, datetime, count,
00997 KSM_STATE_GENERATE, KSM_STATE_DSSUB, zone_id);
00998 }
00999
01000 int KsmRequestChangeStateReadyActive(int keytype, const char* datetime,
01001 int count, int zone_id)
01002 {
01003 return KsmRequestChangeStateN(keytype, datetime, count,
01004 KSM_STATE_READY, KSM_STATE_ACTIVE, zone_id);
01005 }
01006
01007
01008
01009
01010
01011
01012
01013
01014
01015
01016
01017
01018
01019
01020
01021
01022
01023
01024
01025
01026
01027
01028
01029
01030
01031
01032
01033
01034
01035
01036
01037
01038
01039
01040
01041 int KsmRequestChangeStateN(int keytype, const char* datetime, int count,
01042 int src_state, int dst_state, int zone_id)
01043 {
01044 char buffer[32];
01045 DQS_QUERY_CONDITION condition[4];
01046 KSM_KEYDATA data;
01047 char* dst_name = NULL;
01048 DB_RESULT result;
01049 int i;
01050 char* insql = NULL;
01051 int* keyids;
01052 int setclause = 0;
01053 char* sql1 = NULL;
01054 char* sql2 = NULL;
01055 char* sql3 = NULL;
01056 int status;
01057 int whereclause = 0;
01058 int count1 = 0;
01059 int count2 = 0;
01060
01061
01062 if (count <= 0) {
01063 status = MsgLog(KSM_INVARG, "Asked to move 0 keys");
01064 return status;
01065 }
01066
01067
01068
01069 DbgLog(DBG_M_REQUEST, KME_KEYCHSTATE, count,
01070 KsmKeywordStateValueToName(src_state),
01071 KsmKeywordStateValueToName(dst_state));
01072
01073
01074 keyids = MemMalloc(count * sizeof(int));
01075
01076
01077
01078 condition[0].code = DB_KEYDATA_KEYTYPE;
01079 condition[0].data.number = keytype;
01080 condition[0].compare = DQS_COMPARE_EQ;
01081
01082 condition[1].code = DB_KEYDATA_STATE;
01083 condition[1].data.number = src_state;
01084 condition[1].compare = DQS_COMPARE_EQ;
01085
01086 condition[2].compare = DQS_END_OF_LIST;
01087
01088 if (zone_id != -1) {
01089 condition[2].code = DB_KEYDATA_ZONE_ID;
01090 condition[2].data.number = zone_id;
01091 condition[2].compare = DQS_COMPARE_EQ;
01092
01093 condition[3].compare = DQS_END_OF_LIST;
01094 }
01095
01096
01097 status = KsmKeyInit(&result, condition);
01098 for (i = 0; ((i < count) && (status == 0)); ++i) {
01099 status = KsmKey(result, &data);
01100 if (status == 0) {
01101 keyids[i] = data.keypair_id;
01102 }
01103 }
01104 KsmKeyEnd(result);
01105
01106
01107
01108 if (status == 0) {
01109
01110
01111
01112
01113
01114
01115 StrAppend(&insql, "(");
01116 for (i = 0; i < count; ++i) {
01117 if (i != 0) {
01118 StrAppend(&insql, ",");
01119 }
01120 snprintf(buffer, sizeof(buffer), "%d", keyids[i]);
01121 StrAppend(&insql, buffer);
01122 }
01123 StrAppend(&insql, ")");
01124
01125
01126
01127 if (dst_state == KSM_STATE_DSSUB) {
01128 StrAppend(&dst_name, KSM_STATE_PUBLISH_STRING);
01129 } else {
01130 dst_name = StrStrdup(KsmKeywordStateValueToName(dst_state));
01131 }
01132 (void) StrToUpper(dst_name);
01133
01134 if (dst_state == KSM_STATE_ACTIVE) {
01135
01136
01137
01138
01139
01140
01141
01142 StrAppend(&sql1, "select count(*) from keypairs where id in ");
01143 StrAppend(&sql1, insql);
01144 StrAppend(&sql1, " and backup is null");
01145
01146 status = DbIntQuery(DbHandle(), &count1, sql1);
01147 DqsFree(sql1);
01148
01149 if (status != 0)
01150 {
01151 status = MsgLog(KSM_SQLFAIL, DbErrmsg(DbHandle()));
01152 StrFree(insql);
01153 MemFree(keyids);
01154 StrFree(dst_name);
01155 return status;
01156 }
01157
01158 if (count1 != 0) {
01159
01160
01161
01162
01163 StrAppend(&sql2, "select count(*) from keypairs k, securitymodules s where s.id = k.securitymodule_id and k.id in ");
01164 StrAppend(&sql2, insql);
01165 StrAppend(&sql2, " and k.backup is null and s.requirebackup = 1");
01166
01167 status = DbIntQuery(DbHandle(), &count2, sql2);
01168 DqsFree(sql2);
01169
01170 if (status != 0)
01171 {
01172 status = MsgLog(KSM_SQLFAIL, DbErrmsg(DbHandle()));
01173 StrFree(insql);
01174 MemFree(keyids);
01175 StrFree(dst_name);
01176 return status;
01177 }
01178
01179 if (count2 != 0) {
01180
01181
01182
01183 status = MsgLog(KME_BACK_FATAL, (keytype == KSM_TYPE_KSK) ? "KSK" : "ZSK");
01184 StrFree(insql);
01185 MemFree(keyids);
01186 StrFree(dst_name);
01187 return status;
01188 }
01189
01190
01191
01192
01193 (void) MsgLog(KME_BACK_NON_FATAL, (keytype == KSM_TYPE_KSK) ? "KSK" : "ZSK");
01194 }
01195 }
01196
01197
01198
01199
01200
01201
01202
01203
01204 sql3 = DusInit("dnsseckeys");
01205 DusSetInt(&sql3, "STATE", dst_state, setclause++);
01206 DusSetString(&sql3, dst_name, datetime, setclause++);
01207 StrFree(dst_name);
01208
01209 DusConditionKeyword(&sql3, "KEYPAIR_ID", DQS_COMPARE_IN, insql, whereclause++);
01210 DusConditionInt(&sql3, "ZONE_ID", DQS_COMPARE_EQ, zone_id, whereclause++);
01211 StrFree(insql);
01212 DusEnd(&sql3);
01213
01214 status = DbExecuteSqlNoResult(DbHandle(), sql3);
01215 DusFree(sql3);
01216
01217
01218
01219 if (status != 0) {
01220 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
01221 }
01222 }
01223
01224
01225
01226 MemFree(keyids);
01227
01228 return status;
01229 }
01230
01231
01232
01233
01234
01235
01236
01237
01238
01239
01240
01241
01242
01243
01244
01245
01246
01247
01248
01249
01250
01251
01252
01253
01254
01255
01256
01257
01258
01259
01260 int KsmRequestChangeStateGenerateDSSubConditional(int keytype,
01261 const char* datetime, KSM_PARCOLL* collection, int zone_id, int* NewDS)
01262 {
01263 int gencnt;
01264 int newkeys;
01265 int standby;
01266 int reqkeys;
01267 int status;
01268
01269
01270 status = KsmRequestStandbyKSKCount(&standby, zone_id);
01271 if (status != 0) {
01272 return status;
01273 }
01274
01275 reqkeys = KsmParameterStandbyKSKeys(collection);
01276
01277
01278
01279
01280
01281
01282
01283 newkeys = reqkeys - standby;
01284
01285 if (newkeys > 0) {
01286
01287
01288
01289 status = KsmRequestGenerateCount(keytype, &gencnt, zone_id);
01290 if (status == 0) {
01291 if (gencnt < newkeys) {
01292 status = MsgLog(KME_INSFGENKEY, gencnt,
01293 KsmKeywordTypeValueToName(keytype), newkeys);
01294 }
01295 DbgLog(DBG_M_REQUEST, KME_GENERATECNT, gencnt,
01296 KsmKeywordTypeValueToName(keytype));
01297
01298 if (status == 0) {
01299
01300
01301
01302 status = KsmRequestChangeStateGenerateDSSub(keytype,
01303 datetime, newkeys, zone_id);
01304
01305
01306 *NewDS = 1;
01307 }
01308 }
01309 }
01310
01311 return 0;
01312 }
01313
01314
01315
01316
01317
01318
01319
01320
01321
01322
01323
01324
01325
01326
01327
01328
01329
01330
01331
01332
01333
01334
01335
01336
01337
01338
01339
01340
01341
01342
01343
01344
01345
01346
01347
01348
01349
01350
01351
01352
01353
01354
01355
01356
01357
01358
01359
01360
01361
01362
01363
01364
01365 int KsmRequestChangeStateGeneratePublishConditional(int keytype,
01366 const char* datetime, KSM_PARCOLL* collection, int zone_id, int run_interval)
01367 {
01368 int availkeys;
01369 int gencnt;
01370 int newkeys;
01371 int pendret;
01372 int reqkeys;
01373 int status;
01374
01375
01376 status = KsmRequestPendingRetireCount(keytype, datetime, collection,
01377 &pendret, zone_id, run_interval);
01378 if (status != 0) {
01379 return status;
01380 }
01381 DbgLog(DBG_M_REQUEST, KME_RETIRECNT, pendret);
01382
01383
01384
01385 status = KsmRequestAvailableCount(keytype, datetime, collection,
01386 &availkeys, zone_id);
01387 if (status != 0) {
01388 return status;
01389 }
01390 DbgLog(DBG_M_REQUEST, KME_AVAILCNT, availkeys);
01391
01392
01393
01394
01395
01396
01397 if (keytype == KSM_TYPE_KSK) {
01398
01399 reqkeys = 1;
01400 }
01401 else if (keytype == KSM_TYPE_ZSK) {
01402 reqkeys = 1 + KsmParameterStandbyZSKeys(collection);
01403 }
01404 else {
01405
01406 return -1;
01407 }
01408
01409
01410
01411
01412
01413
01414
01415 newkeys = reqkeys - (availkeys - pendret);
01416
01417 DbgLog(DBG_M_REQUEST, KME_KEYCNTSUMM, reqkeys, newkeys);
01418
01419 if (newkeys > 0) {
01420
01421
01422
01423 status = KsmRequestGenerateCount(keytype, &gencnt, zone_id);
01424 if (status == 0) {
01425 if (gencnt < newkeys) {
01426 status = MsgLog(KME_INSFGENKEY, gencnt,
01427 KsmKeywordTypeValueToName(keytype), newkeys);
01428 }
01429 DbgLog(DBG_M_REQUEST, KME_GENERATECNT, gencnt,
01430 KsmKeywordTypeValueToName(keytype));
01431
01432 if (status == 0) {
01433
01434
01435
01436 status = KsmRequestChangeStateGeneratePublish(keytype,
01437 datetime, newkeys, zone_id);
01438 }
01439 }
01440 }
01441
01442 return 0;
01443 }
01444
01445
01446
01447
01448
01449
01450
01451
01452
01453
01454
01455
01456
01457
01458
01459
01460
01461
01462
01463
01464
01465
01466
01467
01468
01469
01470
01471
01472
01473
01474
01475
01476
01477
01478
01479
01480
01481
01482 int KsmRequestPendingRetireCount(int keytype, const char* datetime,
01483 KSM_PARCOLL* parameters, int* count, int zone_id, int interval)
01484 {
01485 char buffer[256];
01486 int clause = 0;
01487 size_t nchar;
01488 char* sql;
01489 int status;
01490 int total_interval;
01491
01492 if (keytype == KSM_TYPE_ZSK)
01493 {
01494 total_interval = KsmParameterZskTtl(parameters) +
01495 KsmParameterPropagationDelay(parameters) +
01496 KsmParameterPubSafety(parameters) +
01497 interval;
01498 } else {
01499 total_interval = KsmParameterKskTtl(parameters) +
01500 KsmParameterKskPropagationDelay(parameters) +
01501 KsmParameterPubSafety(parameters) +
01502 interval;
01503
01504
01505
01506
01507
01508
01509
01510
01511
01512
01513
01514
01515
01516
01517
01518
01519
01520
01521
01522
01523
01524
01525
01526
01527
01528
01529 }
01530
01531
01532 sql = DqsCountInit("KEYDATA_VIEW");
01533 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, keytype, clause++);
01534 DqsConditionInt(&sql, "STATE", DQS_COMPARE_EQ, KSM_STATE_ACTIVE, clause++);
01535 if (zone_id != -1) {
01536 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, clause++);
01537 }
01538
01539
01540
01541
01542
01543
01544 #ifdef USE_MYSQL
01545 nchar = snprintf(buffer, sizeof(buffer),
01546 "DATE_ADD('%s', INTERVAL %d SECOND)",
01547 datetime, total_interval);
01548 #else
01549 nchar = snprintf(buffer, sizeof(buffer),
01550 "DATETIME('%s', '+%d SECONDS')",
01551 datetime, total_interval);
01552 #endif
01553 if (nchar >= sizeof(buffer)) {
01554 status = MsgLog(KME_BUFFEROVF, "KsmRequestKeys");
01555 return status;
01556 }
01557
01558 #ifdef USE_MYSQL
01559 DqsConditionKeyword(&sql, "RETIRE", DQS_COMPARE_LE, buffer, clause++);
01560 #else
01561 DqsConditionKeyword(&sql, "DATETIME(RETIRE)", DQS_COMPARE_LE, buffer, clause++);
01562 #endif
01563
01564 DqsEnd(&sql);
01565
01566
01567
01568 status = DbIntQuery(DbHandle(), count, sql);
01569 DqsFree(sql);
01570
01571
01572
01573 if (status != 0) {
01574 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
01575 }
01576
01577 return status;
01578 }
01579
01580
01581
01582
01583
01584
01585
01586
01587
01588
01589
01590
01591
01592
01593
01594
01595
01596
01597
01598
01599
01600
01601
01602
01603
01604
01605
01606
01607
01608
01609
01610
01611
01612
01613
01614 int KsmRequestAvailableCount(int keytype, const char* datetime, KSM_PARCOLL* parameters, int* count, int zone_id)
01615 {
01616 char buffer[256];
01617 int clause = 0;
01618 size_t nchar;
01619 char* sql;
01620 int status;
01621
01622
01623 (void)datetime;
01624 (void)parameters;
01625
01626
01627
01628 sql = DqsCountInit("KEYDATA_VIEW");
01629 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, keytype, clause++);
01630
01631
01632
01633 nchar = snprintf(buffer, sizeof(buffer), "(%d, %d, %d, %d)",
01634 KSM_STATE_PUBLISH, KSM_STATE_READY, KSM_STATE_ACTIVE, KSM_STATE_KEYPUBLISH);
01635 if (nchar >= sizeof(buffer)) {
01636 status = MsgLog(KME_BUFFEROVF, "KsmRequestKeys");
01637 return status;
01638 }
01639 DqsConditionKeyword(&sql, "STATE", DQS_COMPARE_IN, buffer, clause++);
01640 if (zone_id != -1) {
01641 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, clause++);
01642 }
01643 DqsEnd(&sql);
01644
01645
01646
01647 status = DbIntQuery(DbHandle(), count, sql);
01648 DqsFree(sql);
01649
01650
01651
01652 if (status != 0) {
01653 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
01654 }
01655
01656 return status;
01657 }
01658
01659
01660
01661
01662
01663
01664
01665
01666
01667
01668
01669
01670
01671
01672
01673
01674
01675
01676
01677
01678
01679
01680
01681
01682
01683 int KsmRequestGenerateCount(int keytype, int* count, int zone_id)
01684 {
01685 int clause = 0;
01686 char* sql = NULL;
01687 int status = 0;
01688
01689
01690
01691 sql = DqsCountInit("KEYDATA_VIEW");
01692 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, keytype, clause++);
01693 DqsConditionInt(&sql, "STATE", DQS_COMPARE_EQ, KSM_STATE_GENERATE, clause++);
01694 if (zone_id != -1) {
01695 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, clause++);
01696 }
01697 DqsEnd(&sql);
01698
01699
01700
01701 status = DbIntQuery(DbHandle(), count, sql);
01702 DqsFree(sql);
01703
01704
01705
01706 if (status != 0) {
01707 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
01708 }
01709
01710 return status;
01711 }
01712
01713
01714
01715
01716
01717
01718
01719
01720
01721
01722
01723
01724
01725
01726
01727
01728
01729
01730
01731
01732
01733 int KsmRequestStandbyKSKCount(int* count, int zone_id)
01734 {
01735 char buffer[256];
01736 int clause = 0;
01737 size_t nchar;
01738 char* sql;
01739 int status;
01740
01741
01742
01743 sql = DqsCountInit("KEYDATA_VIEW");
01744 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, KSM_TYPE_KSK, clause++);
01745
01746
01747
01748 nchar = snprintf(buffer, sizeof(buffer), "(%d, %d, %d)",
01749 KSM_STATE_DSSUB, KSM_STATE_DSPUBLISH, KSM_STATE_DSREADY);
01750 if (nchar >= sizeof(buffer)) {
01751 status = MsgLog(KME_BUFFEROVF, "KsmRequestKeys");
01752 return status;
01753 }
01754 DqsConditionKeyword(&sql, "STATE", DQS_COMPARE_IN, buffer, clause++);
01755 if (zone_id != -1) {
01756 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, clause++);
01757 }
01758 DqsEnd(&sql);
01759
01760
01761
01762 status = DbIntQuery(DbHandle(), count, sql);
01763 DqsFree(sql);
01764
01765
01766
01767 if (status != 0) {
01768 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
01769 }
01770
01771 return status;
01772 }
01773
01774
01775
01776
01777
01778
01779
01780
01781
01782
01783
01784
01785
01786
01787
01788
01789
01790
01791
01792
01793
01794
01795
01796
01797
01798
01799
01800
01801
01802
01803
01804
01805
01806
01807
01808
01809
01810
01811 int KsmRequestCheckActiveKey(int keytype, const char* datetime, int* count, int zone_id)
01812 {
01813 int clause = 0;
01814 char* sql = NULL;
01815 int status;
01816 #ifdef USE_MYSQL
01817 #else
01818 char buf[256];
01819 #endif
01820 sql = DqsCountInit("KEYDATA_VIEW");
01821 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, keytype, clause++);
01822 DqsConditionInt(&sql, "STATE", DQS_COMPARE_EQ, KSM_STATE_ACTIVE, clause++);
01823 if (zone_id != -1) {
01824 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, clause++);
01825 }
01826
01827 #ifdef USE_MYSQL
01828 DqsConditionString(&sql, "RETIRE", DQS_COMPARE_GT, datetime, clause++);
01829 #else
01830 snprintf(buf, sizeof(buf), "DATETIME('%s')", datetime);
01831 DqsConditionKeyword(&sql, "DATETIME(RETIRE)", DQS_COMPARE_GT, buf, clause++);
01832 #endif
01833
01834 DqsEnd(&sql);
01835
01836 status = DbIntQuery(DbHandle(), count, sql);
01837 DqsFree(sql);
01838
01839 if (status != 0) {
01840 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
01841 }
01842 DbgLog(DBG_M_REQUEST, KME_REMAINACT, *count,
01843 KsmKeywordTypeValueToName(keytype));
01844
01845 return status;
01846 }
01847
01848
01849
01850
01851
01852
01853
01854
01855
01856
01857
01858
01859
01860
01861
01862
01863
01864
01865
01866
01867
01868
01869
01870
01871
01872
01873
01874
01875 int KsmRequestCountReadyKey(int keytype, const char* datetime, int* count, int zone_id)
01876 {
01877 int clause = 0;
01878 char* sql = NULL;
01879 int status;
01880
01881
01882 (void)datetime;
01883
01884 sql = DqsCountInit("KEYDATA_VIEW");
01885 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, keytype, clause++);
01886 DqsConditionInt(&sql, "STATE", DQS_COMPARE_EQ, KSM_STATE_READY, clause++);
01887 if (zone_id != -1) {
01888 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, clause++);
01889 }
01890 DqsEnd(&sql);
01891
01892 status = DbIntQuery(DbHandle(), count, sql);
01893 DqsFree(sql);
01894
01895 if (status != 0) {
01896 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
01897 }
01898 DbgLog(DBG_M_REQUEST, KME_READYCNT, *count,
01899 KsmKeywordTypeValueToName(keytype));
01900
01901 return status;
01902 }
01903
01904
01905
01906
01907
01908
01909
01910
01911
01912
01913
01914
01915
01916
01917
01918
01919
01920
01921
01922
01923
01924
01925
01926
01927 int KsmRequestCheckFirstPass(int keytype, int* first_pass_flag, int zone_id)
01928 {
01929 int clause = 0;
01930 char* sql = NULL;
01931 int status;
01932 int count = 0;
01933
01934 sql = DqsCountInit("KEYDATA_VIEW");
01935 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, keytype, clause++);
01936 DqsConditionInt(&sql, "STATE", DQS_COMPARE_GE, KSM_STATE_PUBLISH, clause++);
01937 if (zone_id != -1) {
01938 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, clause++);
01939 }
01940 DqsEnd(&sql);
01941
01942 status = DbIntQuery(DbHandle(), &count, sql);
01943 DqsFree(sql);
01944
01945 if (status != 0) {
01946 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
01947 }
01948
01949 if (count == 0) {
01950
01951 *first_pass_flag = 1;
01952 }
01953 else {
01954 *first_pass_flag = 0;
01955 }
01956
01957 return status;
01958 }
01959
01960
01961
01962
01963
01964
01965
01966
01967
01968
01969
01970
01971
01972
01973
01974
01975
01976
01977
01978
01979
01980
01981
01982
01983 int KsmRequestCheckCompromisedFlag(int keytype, int zone_id, int* comp_flag)
01984 {
01985 int clause = 0;
01986 char* sql = NULL;
01987 int status;
01988 int count = 0;
01989
01990 sql = DqsCountInit("KEYDATA_VIEW");
01991 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, keytype, clause++);
01992 DqsConditionInt(&sql, "STATE", DQS_COMPARE_EQ, KSM_STATE_ACTIVE, clause++);
01993 if (zone_id != -1) {
01994 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, clause++);
01995 }
01996 DqsConditionInt(&sql, "compromisedflag", DQS_COMPARE_EQ, 1, clause++);
01997 DqsEnd(&sql);
01998
01999 status = DbIntQuery(DbHandle(), &count, sql);
02000 DqsFree(sql);
02001
02002 if (status != 0) {
02003 status = MsgLog(KME_SQLFAIL, DbErrmsg(DbHandle()));
02004 }
02005
02006 if (count == 0) {
02007
02008
02009 *comp_flag = 0;
02010 }
02011 else {
02012 *comp_flag = 1;
02013 }
02014
02015 return status;
02016 }
02017
02018
02019
02020
02021
02022
02023
02024
02025
02026
02027
02028
02029
02030
02031
02032
02033
02034
02035
02036
02037
02038
02039
02040
02041
02042
02043
02044
02045 int KsmRequestIssueKeys(int keytype, KSM_REQUEST_CALLBACK callback,
02046 void* context, int zone_id)
02047 {
02048 int clause = 0;
02049 KSM_KEYDATA data;
02050 DB_RESULT result;
02051 char in[128];
02052 size_t nchar;
02053 char* sql = NULL;
02054 int status;
02055
02056
02057
02058
02059
02060
02061 nchar = snprintf(in, sizeof(in), "(%d, %d, %d, %d, %d)",
02062 KSM_STATE_PUBLISH, KSM_STATE_READY, KSM_STATE_ACTIVE, KSM_STATE_RETIRE, KSM_STATE_KEYPUBLISH);
02063 if (nchar >= sizeof(in)) {
02064 status = MsgLog(KME_BUFFEROVF, "KsmRequestIssueKeys");
02065 return status;
02066 }
02067
02068
02069
02070 sql = DqsSpecifyInit("KEYDATA_VIEW", DB_KEYDATA_FIELDS);
02071 DqsConditionInt(&sql, "KEYTYPE", DQS_COMPARE_EQ, keytype, clause++);
02072 DqsConditionKeyword(&sql, "STATE", DQS_COMPARE_IN, in, clause++);
02073 if (zone_id != -1) {
02074 DqsConditionInt(&sql, "ZONE_ID", DQS_COMPARE_EQ, zone_id, clause++);
02075 }
02076 DqsEnd(&sql);
02077
02078
02079
02080 status = KsmKeyInitSql(&result, sql);
02081 if (status == 0) {
02082 status = KsmKey(result, &data);
02083 while (status == 0) {
02084 status = (*callback)(context, &data);
02085 if (status == 0) {
02086 status = KsmKey(result, &data);
02087 }
02088 }
02089
02090
02091
02092 if (status == -1) {
02093 status = 0;
02094 }
02095
02096 KsmKeyEnd(result);
02097 }
02098
02099 DqsFree(sql);
02100 return status;
02101 }
02102
02103
02104
02105
02106
02107
02108
02109
02110
02111
02112
02113
02114
02115
02116
02117
02118
02119
02120
02121
02122
02123
02124 int KsmRequestPrintKey(void* context, KSM_KEYDATA* data)
02125 {
02126
02127 (void)context;
02128
02129 printf("%s %lu %d %d %s\n", KsmKeywordStateValueToName(data->state),
02130 data->keypair_id, data->keytype, data->algorithm, data->location);
02131
02132 return 0;
02133 }