/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */
 * This file is part of the LibreOffice project.
 * This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this
 * file, You can obtain one at http://mozilla.org/MPL/2.0/.

#include "CertificateImpl.hxx"

#include <comphelper/sequence.hxx>
#include <cppuhelper/supportsservice.hxx>

#include <com/sun/star/security/KeyUsage.hpp>
#include <officecfg/Office/Common.hxx>
#include <svl/sigstruct.hxx>
#include <svl/cryptosign.hxx>

#include <context.h>
#include <data.h>

using namespace css;
using namespace css::uno;
using namespace css::security;
using namespace css::util;



//Methods from XCertificateImpl
sal_Int16 SAL_CALL CertificateImpl::getVersion()
    return 0;

Sequence< sal_Int8 > SAL_CALL CertificateImpl::getSerialNumber()
    // TODO: perhaps map to subkey's cardSerialNumber - if you have
    // one to test
    return Sequence< sal_Int8 >();

OUString SAL_CALL CertificateImpl::getIssuerName()
    const GpgME::UserID userId = m_pKey.userID(0);
    if (userId.isNull())
        return OUString();

    return OStringToOUString(userId.id(), RTL_TEXTENCODING_UTF8);

OUString SAL_CALL CertificateImpl::getSubjectName()
    // Same as issuer name (user ID)
    return getIssuerName();

namespace {
    DateTime convertUnixTimeToDateTime(time_t time)
        DateTime dateTime;
        struct tm *timeStruct = gmtime(&time);
        dateTime.Year = timeStruct->tm_year + 1900;
        dateTime.Month = timeStruct->tm_mon + 1;
        dateTime.Day = timeStruct->tm_mday;
        dateTime.Hours = timeStruct->tm_hour;
        dateTime.Minutes = timeStruct->tm_min;
        dateTime.Seconds = timeStruct->tm_sec;
        return dateTime;

DateTime SAL_CALL CertificateImpl::getNotValidBefore()
    const GpgME::Subkey subkey = m_pKey.subkey(0);
    if (subkey.isNull())
        return DateTime();

    return convertUnixTimeToDateTime(m_pKey.subkey(0).creationTime());

DateTime SAL_CALL CertificateImpl::getNotValidAfter()
    const GpgME::Subkey subkey = m_pKey.subkey(0);
    if (subkey.isNull() || subkey.neverExpires())
        return DateTime();

    return convertUnixTimeToDateTime(m_pKey.subkey(0).expirationTime());

Sequence< sal_Int8 > SAL_CALL CertificateImpl::getIssuerUniqueID()
    // Empty for gpg
    return Sequence< sal_Int8 > ();

Sequence< sal_Int8 > SAL_CALL CertificateImpl::getSubjectUniqueID()
    // Empty for gpg
    return Sequence< sal_Int8 > ();

Sequence< Reference< XCertificateExtension > > SAL_CALL CertificateImpl::getExtensions()
    // Empty for gpg
    return Sequence< Reference< XCertificateExtension > > ();

Reference< XCertificateExtension > SAL_CALL CertificateImpl::findCertificateExtension( const Sequence< sal_Int8 >& /*oid*/ )
    // Empty for gpg
    return Reference< XCertificateExtension > ();

Sequence< sal_Int8 > SAL_CALL CertificateImpl::getEncoded()
    if (m_aBits.hasElements())
        return m_aBits;

    // lazy init: extract key data, store into m_aBits
    GpgME::Data data_out;
    m_pContext->setArmor(false); // caller will base64-encode anyway
    GpgME::Error err = m_pContext->exportPublicKeys(  // "exportPublicKeys" is slow!
         ? GpgME::Context::ExportMinimal : 0

    if (err)
        throw RuntimeException(u"The GpgME library failed to retrieve the public key"_ustr);

    off_t result = data_out.seek(0,SEEK_SET);
    (void) result;
    assert(result == 0);
    int len=0, curr=0; char buf;
    while( (curr=data_out.read(&buf, 1)) )
        len += curr;

    // write bits to sequence of bytes
    result = data_out.seek(0,SEEK_SET);
    assert(result == 0);
    if( data_out.read(m_aBits.getArray(), len) != len )
        throw RuntimeException(u"The GpgME library failed to read the key"_ustr);

    // Export key to base64Empty for gpg
    return m_aBits;

OUString SAL_CALL CertificateImpl::getSubjectPublicKeyAlgorithm()
    const GpgME::Subkey subkey = m_pKey.subkey(0);
    if (subkey.isNull())
        return OUString();

    return OStringToOUString(subkey.publicKeyAlgorithmAsString(), RTL_TEXTENCODING_UTF8);

Sequence< sal_Int8 > SAL_CALL CertificateImpl::getSubjectPublicKeyValue()
    return Sequence< sal_Int8 > ();

OUString SAL_CALL CertificateImpl::getSignatureAlgorithm()
    const GpgME::UserID userId = m_pKey.userID(0);
    if (userId.isNull())
        return OUString();

    const GpgME::UserID::Signature signature = userId.signature(0);
    if (signature.isNull())
        return OUString();

    return OStringToOUString(signature.algorithmAsString(), RTL_TEXTENCODING_UTF8);

Sequence< sal_Int8 > SAL_CALL CertificateImpl::getSHA1Thumbprint()
    // This is mapped to the fingerprint for gpg
    const char* keyId = m_pKey.primaryFingerprint();

    // get hex fingerprint as byte array
    return comphelper::containerToSequence<sal_Int8>(svl::crypto::DecodeHexString(keyId));

Sequence<sal_Int8> CertificateImpl::getSHA256Thumbprint()
    // This is mapped to the fingerprint for gpg (though that's only
    // SHA1 actually)
    const char* keyId = m_pKey.primaryFingerprint();
    return comphelper::arrayToSequence<sal_Int8>(
        keyId, strlen(keyId)+1);

svl::crypto::SignatureMethodAlgorithm CertificateImpl::getSignatureMethodAlgorithm()
    return svl::crypto::SignatureMethodAlgorithm::RSA;

Sequence< sal_Int8 > SAL_CALL CertificateImpl::getMD5Thumbprint()
    // This is mapped to the shorter keyID for gpg
    const char* keyId = m_pKey.keyID();
    return comphelper::arrayToSequence<sal_Int8>(
        keyId, strlen(keyId)+1);

CertificateKind SAL_CALL CertificateImpl::getCertificateKind()
    return CertificateKind_OPENPGP;

sal_Int32 SAL_CALL CertificateImpl::getCertificateUsage()

void CertificateImpl::setCertificate(const std::shared_ptr<GpgME::Context>& ctx, const GpgME::Key& key)
    m_pKey = key;
    m_pContext = ctx;

const GpgME::Key* CertificateImpl::getCertificate() const
    return &m_pKey;

/* XServiceInfo */
OUString SAL_CALL CertificateImpl::getImplementationName()
    return u"com.sun.star.xml.security.gpg.XCertificate_GpgImpl"_ustr;

/* XServiceInfo */
sal_Bool SAL_CALL CertificateImpl::supportsService(const OUString& serviceName)
    return cppu::supportsService(this, serviceName);

/* XServiceInfo */
Sequence<OUString> SAL_CALL CertificateImpl::getSupportedServiceNames() { return { OUString() }; }

