<?php
/****************************************************************************** 
 * Copyright 1991-2011 by Quantum, Inc.  All rights reserved.
 * No part of this work may be reproduced or transmitted in any
 * form or by any means, electronic or mechanical, including
 * photocopying and recording, or by any information storage
 * or retrieval system, except as may be expressly permitted by
 * the 17 U.S.C. section 101, et. seq., or in writing by
 * ADIC, Inc.
 *******************************************************************************/

session_start();
$user = $_SESSION['user'];
$csrFile="/tmp/CSR.pem";
$keyFile="/tmp/userPrimaryKey.pem";

include('common_admin_inc.htm');

$preferredKeyLength = 2048;
$preferredDigestAlg = sha256;

// certificate errors
define ("INVALID_CERT_FILE",100);
define ("KEY_MISMATCH", 101);
define ("START_DATE_ERROR", 102);
define ("END_DATE_ERROR", 103);
define ("KEY_GEN_ERROR", 104);
define ("CSR_GEN_ERROR", 105);

/**
 * @class certificateInformation
 * @brief Data object for ssl subject/issuer of certificates
 * 
 */
class csrInformation 
{
   var $keySize;
   var $digestAlgorithm;
   var $countryCode;		// string 2 characters 
   var $state;			// string  max 128 characters
   var $locality;		// string  max 128 characters
   var $organization;		// string  max 128 characters
   var $organizationalUnit;	// string  max 128 characters
   var $commonName;		// string  max 128 characters
   var $emailAddress;    	// string  max 128 characters
   
   function csrInformation($keySize,$digestAlgorithm,$countryCode,$state,$locality,$organization,$organizationalUnit,$commonName,$emailAddress)
   {
      $this->keySize = $keySize;
      $this->digestAlgorithm = $digestAlgorithm;
      $this->countryCode = $countryCode;
      $this->state = $state;
      $this->locality = $locality;
      $this->organization = $organization;
      $this->organizationalUnit = $organizationalUnit;
      $this->commonName = $commonName;
      $this->emailAddress = $emailAddress;
   }   
}

function createCSR($csrFile,$keyFile,$csrReqInfo)
{

   error_log("Generating Primary Key file.");
   exec("/usr/bin/openssl genrsa -out $keyFile $csrReqInfo->keySize", $results, $rc);
   
   $error=0;
   
   if ($rc == 0 )
   {
       error_log("Primary key file, ".$keyFile.", generated.");
       error_log("Generating certificate signing request.");
       if ($csrReqInfo->emailAddress == "")
       {
          $subj="/C=".$csrReqInfo->countryCode."/ST=".$csrReqInfo->state."/L=".$csrReqInfo->locality."/O=".$csrReqInfo->organization."/OU=".$csrReqInfo->organizationalUnit."/CN=".$csrReqInfo->commonName;
       }
       else
       {
          $subj="/C=".$csrReqInfo->countryCode."/ST=".$csrReqInfo->state."/L=".$csrReqInfo->locality."/O=".$csrReqInfo->organization."/OU=".$csrReqInfo->organizationalUnit."/CN=".$csrReqInfo->commonName."/emailAddress=".$csrReqInfo->emailAddress;
       }
       error_log("Subject data: ".$subj);
       $cmd="/usr/bin/openssl req -new -".$csrReqInfo->digestAlgorithm." -key ".$keyFile." -out ".$csrFile." -subj \"".$subj."\"";
       error_log("cmd: ".$cmd);
       exec($cmd,$results,$rc);
       if ($rc == 0)
       {
          error_log("Generated certificate signing request.");
          $cmd="sudo /bin/mv ".$keyFile." /home/embedded/library/HTTPService/certs/userPrimaryKey.pem";
          error_log("cmd: ".$cmd);
          exec($cmd,$results,$rc);
          if ($rc == 0)
          {
             error_log("Primary key file has been moved to /home/embedded/library/HTTPService/certs.");
          }
          else 
          {
             error_log("Primary key file move to /home/embedded/library/HTTPService/certs failed.");
          }
          
       }
       else
       {
          error_log("Generation of certificate signing request failed.");
          error_log("Results: ".print_r($results,true));
       }
   }
   else
   {
       error_log("Primary key file, ".$keyFile.", generation failed.");
       error_log("Results: ".print_r($results,true));
   }
   return $error;
}

if ($_SERVER[REQUEST_METHOD] == "POST")
{
    error_log($_FILES." _FILES = ". print_r($_FILES, true) );    
    error_log($_SERVER['REQUEST_URI']." POST = ". print_r($_POST, true) );    

    $operationInProgress = true;
    $status = new ReturnStatus();
    $status->context = "createCSR";

    $csrInfo=new csrInformation($_POST['keyLength'],$_POST['digestAlg'],$_POST['countryCode'],$_POST['stateprovince'],$_POST['locality'],$_POST['organization'],
                               $_POST['organizationalUnit'],$_POST['commonName'],$_POST['emailAddress']);
    error_log("csrInfo: ".print_r($csrInfo,true));
    
    $iRet=createCSR($csrFile,$keyFile,$csrInfo);
    if( $iRet == 0 )
    {
       error_log("Certificate signing request created.");
    }
    else
    {
       error_log("Problem creating certificate signing request.");
       $status->setErrorCode(4112); //Force corrupt file
    }
    print $status->out();
    return;
}
else
{
    /*
     * if CSR file exists, go ahead and use the data from that file to fill in the fields.
     */
    if (file_exists(csrFile)) 
    {
       error_log("CSR file exists, loading field data.");
    }
    else
    {
       error_log("CSR file does not exist.");
    }
}
?>

<html lang="en">
<head>

<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<title>Tools - SSL Certificate - Create Signing Request (CSR)</title> <link rel=stylesheet
type="text/css" href="css/style.css">
<script type='text/javascript' src='js/common.js'></script>
<script type='text/javascript' src='js/ekm.js'></script>
<script type="text/javascript" src="js/loading.js"></script>
<script type="text/javascript" src="js/IOB.js"></script>
<script type="text/javascript">

var ekm_ssl = <?=$ekm_ssl?1:0?>;
var contextPath="";
var launchProgressWindowDo="progressWindowIndex.htm";
var progressWindowDo="progressWindow.htm";

function applyChanges()
{
    ret = true; 
    if( ret )
    {
        var noFiles = false;
        //
        // Verify the fields are all filled out.
        //
        if( document.forms.CertInForm.countryCode.value == "" ) 
        {
            alert("Two character coutnry code must be entered.");
        }
        else if( document.forms.CertInForm.stateprovince.value == "" ) 
        {
            alert("A state/province must be entered.");
        }
        else if( document.forms.CertInForm.locality.value == "" ) 
        {
            alert("A locality must be entered.");
        }
        else if( document.forms.CertInForm.commonName.value == "" ) 
        {
            alert("A common name must be entered.");
        }
        else if( document.forms.CertInForm.organization.value == "" ) 
        {
            alert("A organization must be entered.");
        }
        else if( document.forms.CertInForm.organizationalUnit.value == "" ) 
        {
            alert("A organization unit must be entered.");
        }
        else
        {
           openProgressWindow('Creating certificate signing request.', 0);
        }   
    }
}

</script>
<style type="text/css">
.botThick{ 
   border-bottom-width:3px;
   border-bottom-color:black;
   border-bottom-style: solid;
   border-spacing:0px;
}
.botThin{ 
   border-bottom-width:1px;
   border-bottom-color:black;
   border-bottom-style: solid;
   border-spacing:0px;
}

.boxThin{ 
   border-width:1px;
   border-color:black;
   border-style: solid;
   border-spacing:0px;
}
.noBorder{ 
   border-width:0px;
   border-spacing:0px;
}

</style>
</head>

<body onload="javascript:{if(parent.frames[1]&&parent.frames['topFrame'].Go)parent.frames['topFrame'].Go();}IsPageLoaded();">
<BGSOUND SRC="#" ID="beep" AUTOSTART="TRUE"><!-- This is used for the beep when the user presses a NON IP Address key in Explorer -->
<input type="hidden" id="<?=ROBOHELP_ID?>" value="<?=TLS_Cert_Import?>" />

<form action="<?= $PHP_SELF ?>" enctype="multipart/form-data" method="post" name="CertInForm" target="returnStatus">

  <table width=95% align=center>
    <tr>
       <br><br>
       <td id="testTD" class="headingTitle">Tools - SSL Certificate - Create Certificate Signing Request</td>
    </tr>
  </table>

  <br><br>
  <table align="left" width="100%" border=0>
    <tr><td align="left" width="100%" nowrap>

      <table id="dataTableOuter" border="0" width="95%" align="center">
         <tr>
            <td align="left" valign="top" width="8%">Select Key Length:</td>
            <td align="left" width="50%" nowrap >
               <select name=keyLength id="keyLength" size=1" >
                  <option value="1024" <?=$preferredKeyLength==1024?"SELECTED":""?>>1024</option>
                  <option value="2048" <?=$preferredKeyLength==2048?"SELECTED":""?>>2048</option>
                  <option value="4096" <?=$preferredKeyLenght==4096?"SELECTED":""?>>4096</option>
               </select>
            </td>
        </tr>
      </table> 
      <table id="dataTableOuter" border="0" width="95%" align="center">
         <tr>
            <td align="left" valign="top" width="8%">Select Digest Algorithm:</td>
            <td align="left" width="50%" nowrap >
               <select name=digestAlg id="digestAlg" size=1  >
                  <option value="sha1" <?=$preferredDigestAlg==sha1?"SELECTED":""?>>sha1</option>
                  <option value="sha256" <?=$preferredDigestAlg==sha256?"SELECTED":""?>>sha256</option>
                  <option value="sha512" <?=$preferredDigestALg==sha512?"SELECTED":""?>>sha512</option>
               </select>
            </td>
        </tr>
      </table> 
      <table id="dataTableOuter" border="0" width="95%" align="center">
         <tr>
            <td align="left" valign="top" width="8%">Country Code:</td>
            <td align="left" width="50%" nowrap >
               <input type="countryCode" name="countryCode" size=2 maxlength=2 >
               <br>
            </td>
         </tr>
      </table> 
      <table id="dataTableOuter" border="0" width="95%" align="center">
         <tr>
            <td align="left" valign="top" width="8%">State/Province:</td>
            <td align="left" width="50%" nowrap >
               <input type="stateprovince" name="stateprovince" size=41 maxlength=255 >
            </td>
         </tr>
      </table> 
      <table id="dataTableOuter" border="0" width="95%" align="center">
         <tr>
            <td align="left" valign="top" width="8%">Locality:</td>
            <td align="left" width="50%" nowrap >
               <input type="locality" name="locality" size=41 maxlength=255 >
            </td>
         </tr>
      </table> 
      <table id="dataTableOuter" border="0" width="95%" align="center">
         <tr>
            <td align="left" valign="top" width="8%">Common Name:</td>
            <td align="left" width="50%" nowrap >
               <input type="commonName" name="commonName" size=41 maxlength=255 >
            </td>
         </tr>
      </table> 
      <table id="dataTableOuter" border="0" width="95%" align="center">
         <tr>
            <td align="left" valign="top" width="8%">Organization:</td>
            <td align="left" width="50%" nowrap >
               <input type="organization" name="organization" size=41 maxlength=255 >
            </td>
          </tr>
      </table> 
      <table id="dataTableOuter" border="0" width="95%" align="center">
         <tr>
            <td align="left" valign="top" width="8%">Organizational Unit:</td>
            <td align="left" width="50%" nowrap >
               <input type="organizationalUnit" name="organizationalUnit" size=41 maxlength=255 >
            </td>
         </tr>
      </table> 
      <table id="dataTableOuter" border="0" width="95%" align="center">
         <tr>
            <td align="left" valign="top" width="8%">E-Mail Address:</td>
            <td align="left" width="50%" nowrap >
               <input type="emailAddress" name="emailAddress" size=41 maxlength=255 > <b>Optional</b>
            </td>
         </tr>
      </table> 
   </table>

   </td></tr>
      </table>
  </td></tr>
  <br>
  <table width=95% align=center border="0">
  <tr>
     <td class="headingTitle">Certificate Signing Request (CSR) Data</td>
  </tr>
  <tr>
     <td height="80%">
        <iframe style="background-color:white" id="" frameborder="1" src="logShow.htm?logFile=csrFile" width="100%" height="100%"></iframe>
     </td>
  </tr>
  </table>
<br>
<br>
<div id="NAVDiv" style="position:relative; width:100%;">
   <br>
   <table class="navbar" id="button" align=center><tr>
      <td>
         <br>
         <a href="javascript:loadHomePage();"
            onMouseOver="changeImage(1,'cancel');window.status='Return to home page'; return true;"
            onMouseOut="changeImage(0,'cancel');window.status=''; return true;">
         <img name=cancel title='Return to home page' src="images/buttons/cancel.gif" border=0></a>
   
         <a href="javascript:applyChanges();"
            onMouseOver="changeImage(1,'apply');window.status='Apply the Changes'; return true;"
            onMouseOut="changeImage(0,'apply');window.status=''; return true;">
         <img name=apply src="images/buttons/apply.gif" border=0></a>
      </td>
   </tr></table>
   </table>
</div>


</form>

<?
include('progressWin_inc.htm');
?>
</body>
</html>