]>
git.ipfire.org Git - thirdparty/openssl.git/blob - crypto/x509/x_x509a.c
3 * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
6 /* ====================================================================
7 * Copyright (c) 1999 The OpenSSL Project. All rights reserved.
9 * Redistribution and use in source and binary forms, with or without
10 * modification, are permitted provided that the following conditions
13 * 1. Redistributions of source code must retain the above copyright
14 * notice, this list of conditions and the following disclaimer.
16 * 2. Redistributions in binary form must reproduce the above copyright
17 * notice, this list of conditions and the following disclaimer in
18 * the documentation and/or other materials provided with the
21 * 3. All advertising materials mentioning features or use of this
22 * software must display the following acknowledgment:
23 * "This product includes software developed by the OpenSSL Project
24 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
26 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
27 * endorse or promote products derived from this software without
28 * prior written permission. For written permission, please contact
29 * licensing@OpenSSL.org.
31 * 5. Products derived from this software may not be called "OpenSSL"
32 * nor may "OpenSSL" appear in their names without prior written
33 * permission of the OpenSSL Project.
35 * 6. Redistributions of any form whatsoever must retain the following
37 * "This product includes software developed by the OpenSSL Project
38 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
40 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
41 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
42 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
43 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
44 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
45 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
46 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
47 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
49 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
50 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
51 * OF THE POSSIBILITY OF SUCH DAMAGE.
52 * ====================================================================
54 * This product includes cryptographic software written by Eric Young
55 * (eay@cryptsoft.com). This product includes software written by Tim
56 * Hudson (tjh@cryptsoft.com).
61 #include "internal/cryptlib.h"
62 #include <openssl/evp.h>
63 #include <openssl/asn1t.h>
64 #include <openssl/x509.h>
65 #include "internal/x509_int.h"
68 * X509_CERT_AUX routines. These are used to encode additional user
69 * modifiable data about a certificate. This data is appended to the X509
70 * encoding when the *_X509_AUX routines are used. This means that the
71 * "traditional" X509 routines will simply ignore the extra data.
74 static X509_CERT_AUX
*aux_get(X509
*x
);
76 ASN1_SEQUENCE(X509_CERT_AUX
) = {
77 ASN1_SEQUENCE_OF_OPT(X509_CERT_AUX
, trust
, ASN1_OBJECT
),
78 ASN1_IMP_SEQUENCE_OF_OPT(X509_CERT_AUX
, reject
, ASN1_OBJECT
, 0),
79 ASN1_OPT(X509_CERT_AUX
, alias
, ASN1_UTF8STRING
),
80 ASN1_OPT(X509_CERT_AUX
, keyid
, ASN1_OCTET_STRING
),
81 ASN1_IMP_SEQUENCE_OF_OPT(X509_CERT_AUX
, other
, X509_ALGOR
, 1)
82 } ASN1_SEQUENCE_END(X509_CERT_AUX
)
84 IMPLEMENT_ASN1_FUNCTIONS(X509_CERT_AUX
)
86 int X509_trusted(const X509
*x
)
88 return x
->aux
? 1 : 0;
91 static X509_CERT_AUX
*aux_get(X509
*x
)
95 if (x
->aux
== NULL
&& (x
->aux
= X509_CERT_AUX_new()) == NULL
)
100 int X509_alias_set1(X509
*x
, unsigned char *name
, int len
)
104 if (!x
|| !x
->aux
|| !x
->aux
->alias
)
106 ASN1_UTF8STRING_free(x
->aux
->alias
);
107 x
->aux
->alias
= NULL
;
110 if ((aux
= aux_get(x
)) == NULL
)
112 if (aux
->alias
== NULL
&& (aux
->alias
= ASN1_UTF8STRING_new()) == NULL
)
114 return ASN1_STRING_set(aux
->alias
, name
, len
);
117 int X509_keyid_set1(X509
*x
, unsigned char *id
, int len
)
121 if (!x
|| !x
->aux
|| !x
->aux
->keyid
)
123 ASN1_OCTET_STRING_free(x
->aux
->keyid
);
124 x
->aux
->keyid
= NULL
;
127 if ((aux
= aux_get(x
)) == NULL
)
129 if (aux
->keyid
==NULL
130 && (aux
->keyid
= ASN1_OCTET_STRING_new()) == NULL
)
132 return ASN1_STRING_set(aux
->keyid
, id
, len
);
135 unsigned char *X509_alias_get0(X509
*x
, int *len
)
137 if (!x
->aux
|| !x
->aux
->alias
)
140 *len
= x
->aux
->alias
->length
;
141 return x
->aux
->alias
->data
;
144 unsigned char *X509_keyid_get0(X509
*x
, int *len
)
146 if (!x
->aux
|| !x
->aux
->keyid
)
149 *len
= x
->aux
->keyid
->length
;
150 return x
->aux
->keyid
->data
;
153 int X509_add1_trust_object(X509
*x
, ASN1_OBJECT
*obj
)
156 ASN1_OBJECT
*objtmp
= NULL
;
158 objtmp
= OBJ_dup(obj
);
162 if ((aux
= aux_get(x
)) == NULL
)
164 if (aux
->trust
== NULL
165 && (aux
->trust
= sk_ASN1_OBJECT_new_null()) == NULL
)
167 if (!objtmp
|| sk_ASN1_OBJECT_push(aux
->trust
, objtmp
))
170 ASN1_OBJECT_free(objtmp
);
174 int X509_add1_reject_object(X509
*x
, ASN1_OBJECT
*obj
)
178 if ((objtmp
= OBJ_dup(obj
)) == NULL
)
180 if ((aux
= aux_get(x
)) == NULL
)
182 if (aux
->reject
== NULL
183 && (aux
->reject
= sk_ASN1_OBJECT_new_null()) == NULL
)
185 return sk_ASN1_OBJECT_push(aux
->reject
, objtmp
);
187 ASN1_OBJECT_free(objtmp
);
191 void X509_trust_clear(X509
*x
)
194 sk_ASN1_OBJECT_pop_free(x
->aux
->trust
, ASN1_OBJECT_free
);
195 x
->aux
->trust
= NULL
;
199 void X509_reject_clear(X509
*x
)
202 sk_ASN1_OBJECT_pop_free(x
->aux
->reject
, ASN1_OBJECT_free
);
203 x
->aux
->reject
= NULL
;
207 STACK_OF(ASN1_OBJECT
) *X509_get0_trust_objects(X509
*x
)
210 return x
->aux
->trust
;
214 STACK_OF(ASN1_OBJECT
) *X509_get0_reject_objects(X509
*x
)
217 return x
->aux
->reject
;