[thirdparty/openssl.git] / crypto / ct / ct_log.c

/* Author: Adam Eijdenberg <adam.eijdenberg@gmail.com>. */
/* ====================================================================
 * Copyright (c) 1998-2016 The OpenSSL Project.  All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 *
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 *
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in
 *    the documentation and/or other materials provided with the
 *    distribution.
 *
 * 3. All advertising materials mentioning features or use of this
 *    software must display the following acknowledgment:
 *    "This product includes software developed by the OpenSSL Project
 *    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
 *
 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
 *    endorse or promote products derived from this software without
 *    prior written permission. For written permission, please contact
 *    openssl-core@openssl.org.
 *
 * 5. Products derived from this software may not be called "OpenSSL"
 *    nor may "OpenSSL" appear in their names without prior written
 *    permission of the OpenSSL Project.
 *
 * 6. Redistributions of any form whatsoever must retain the following
 *    acknowledgment:
 *    "This product includes software developed by the OpenSSL Project
 *    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
 *
 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
 * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 * OF THE POSSIBILITY OF SUCH DAMAGE.
 * ====================================================================
 *
 * This product includes cryptographic software written by Eric Young
 * (eay@cryptsoft.com).  This product includes software written by Tim
 * Hudson (tjh@cryptsoft.com).
 *
 */

#include <stdlib.h>
#include <string.h>

#include <openssl/conf.h>
#include <openssl/ct.h>
#include <openssl/err.h>
#include <openssl/evp.h>
#include <openssl/safestack.h>

#include "internal/cryptlib.h"

/*
 * Information about a CT log server.
 */
struct ctlog_st {
    char *name;
    uint8_t log_id[CT_V1_HASHLEN];
    EVP_PKEY *public_key;
};

/*
 * A store for multiple CTLOG instances.
 * It takes ownership of any CTLOG instances added to it.
 */
struct ctlog_store_st {
    STACK_OF(CTLOG) *logs;
};

/* The context when loading a CT log list from a CONF file. */
typedef struct ctlog_store_load_ctx_st {
    CTLOG_STORE *log_store;
    CONF *conf;
} CTLOG_STORE_LOAD_CTX;

/*
 * Creates an empty context for loading a CT log store.
 * It should be populated before use.
 */
static CTLOG_STORE_LOAD_CTX *ctlog_store_load_ctx_new();

/*
 * Deletes a CT log store load context.
 * Does not delete any of the fields.
 */
static void ctlog_store_load_ctx_free(CTLOG_STORE_LOAD_CTX* ctx);

static CTLOG_STORE_LOAD_CTX *ctlog_store_load_ctx_new()
{
    CTLOG_STORE_LOAD_CTX *ctx = OPENSSL_zalloc(sizeof(*ctx));

    if (ctx == NULL) {
        CTerr(CT_F_CTLOG_STORE_LOAD_CTX_NEW, ERR_R_MALLOC_FAILURE);
        goto err;
    }

    return ctx;
err:
    ctlog_store_load_ctx_free(ctx);
    return NULL;
}

static void ctlog_store_load_ctx_free(CTLOG_STORE_LOAD_CTX* ctx)
{
    OPENSSL_free(ctx);
}

/* Converts a log's public key into a SHA256 log ID */
static int ct_v1_log_id_from_pkey(EVP_PKEY *pkey,
                                  unsigned char log_id[CT_V1_HASHLEN])
{
    int ret = 0;
    unsigned char *pkey_der = NULL;
    int pkey_der_len = i2d_PUBKEY(pkey, &pkey_der);

    if (pkey_der_len <= 0) {
        CTerr(CT_F_CT_V1_LOG_ID_FROM_PKEY, CT_R_LOG_KEY_INVALID);
        goto err;
    }

    SHA256(pkey_der, pkey_der_len, log_id);
    ret = 1;
err:
    OPENSSL_free(pkey_der);
    return ret;
}

CTLOG_STORE *CTLOG_STORE_new(void)
{
    CTLOG_STORE *ret = OPENSSL_zalloc(sizeof(*ret));

    if (ret == NULL)
        goto err;

    ret->logs = sk_CTLOG_new_null();
    if (ret->logs == NULL)
        goto err;

    return ret;
err:
    CTLOG_STORE_free(ret);
    return NULL;
}

void CTLOG_STORE_free(CTLOG_STORE *store)
{
    if (store != NULL) {
        sk_CTLOG_pop_free(store->logs, CTLOG_free);
        OPENSSL_free(store);
    }
}

static CTLOG *ctlog_new_from_conf(const CONF *conf, const char *section)
{
    CTLOG *ret = NULL;
    char *description = NCONF_get_string(conf, section, "description");
    char *pkey_base64;

    if (description == NULL) {
        CTerr(CT_F_CTLOG_NEW_FROM_CONF, CT_R_LOG_CONF_MISSING_DESCRIPTION);
        goto end;
    }

    pkey_base64 = NCONF_get_string(conf, section, "key");
    if (pkey_base64 == NULL) {
        CTerr(CT_F_CTLOG_NEW_FROM_CONF, CT_R_LOG_CONF_MISSING_KEY);
        goto end;
    }

    ret = CTLOG_new_from_base64(pkey_base64, description);
    if (ret == NULL) {
        CTerr(CT_F_CTLOG_NEW_FROM_CONF, CT_R_LOG_CONF_INVALID);
        goto end;
    }

end:
    return ret;
}

int CTLOG_STORE_load_default_file(CTLOG_STORE *store)
{
    const char *fpath = getenv(CTLOG_FILE_EVP);

    if (fpath == NULL)
      fpath = CTLOG_FILE;

    return CTLOG_STORE_load_file(store, fpath);
}

static int ctlog_store_load_log(const char *log_name, int log_name_len, void *arg)
{
    CTLOG_STORE_LOAD_CTX *load_ctx = arg;
    CTLOG *ct_log;
    /* log_name may not be null-terminated, so fix that before using it */
    char *tmp = OPENSSL_strndup(log_name, log_name_len);

    ct_log = ctlog_new_from_conf(load_ctx->conf, tmp);
    OPENSSL_free(tmp);
    if (ct_log == NULL)
        return 0;

    sk_CTLOG_push(load_ctx->log_store->logs, ct_log);
    return 1;
}

int CTLOG_STORE_load_file(CTLOG_STORE *store, const char *file)
{
    int ret = -1;
    char *enabled_logs;
    CTLOG_STORE_LOAD_CTX* load_ctx = ctlog_store_load_ctx_new();

    load_ctx->log_store = store;
    load_ctx->conf = NCONF_new(NULL);
    if (load_ctx->conf == NULL)
        goto end;

    ret = NCONF_load(load_ctx->conf, file, NULL);
    if (ret <= 0) {
        CTerr(CT_F_CTLOG_STORE_LOAD_FILE, CT_R_LOG_CONF_INVALID);
        goto end;
    }

    enabled_logs = NCONF_get_string(load_ctx->conf, NULL, "enabled_logs");
    CONF_parse_list(enabled_logs, ',', 1, ctlog_store_load_log, load_ctx);

end:
    NCONF_free(load_ctx->conf);
    ctlog_store_load_ctx_free(load_ctx);
    return ret;
}

/*
 * Initialize a new CTLOG object.
 * Takes ownership of the public key.
 * Copies the name.
 */
CTLOG *CTLOG_new(EVP_PKEY *public_key, const char *name)
{
    CTLOG *ret = CTLOG_new_null();

    if (ret == NULL)
        goto err;

    ret->name = OPENSSL_strdup(name);
    if (ret->name == NULL)
        goto err;

    ret->public_key = public_key;
    if (ct_v1_log_id_from_pkey(public_key, ret->log_id) != 1)
        goto err;

    return ret;
err:
    CTLOG_free(ret);
    return NULL;
}

CTLOG *CTLOG_new_null(void)
{
    CTLOG *ret = OPENSSL_zalloc(sizeof(*ret));

    if (ret == NULL)
        CTerr(CT_F_CTLOG_NEW_NULL, ERR_R_MALLOC_FAILURE);

    return ret;
}

/* Frees CT log and associated structures */
void CTLOG_free(CTLOG *log)
{
    if (log != NULL) {
        OPENSSL_free(log->name);
        EVP_PKEY_free(log->public_key);
        OPENSSL_free(log);
    }
}

const char *CTLOG_get0_name(CTLOG *log)
{
    return log->name;
}

void CTLOG_get0_log_id(CTLOG *log, uint8_t **log_id, size_t *log_id_len)
{
    *log_id = log->log_id;
    *log_id_len = CT_V1_HASHLEN;
}

EVP_PKEY *CTLOG_get0_public_key(CTLOG *log)
{
    return log->public_key;
}

/*
 * Given a log ID, finds the matching log.
 * Returns NULL if no match found.
 */
CTLOG *CTLOG_STORE_get0_log_by_id(const CTLOG_STORE *store,
                                  const uint8_t *log_id,
                                  size_t log_id_len)
{
    int i;

    for (i = 0; i < sk_CTLOG_num(store->logs); ++i) {
        CTLOG *log = sk_CTLOG_value(store->logs, i);
        if (memcmp(log->log_id, log_id, log_id_len) == 0)
            return log;
    }

    return NULL;
}
Commit	Line	Data
8c6afbc5 RP	1	/* Author: Adam Eijdenberg <adam.eijdenberg@gmail.com>. */
	2	/* ====================================================================
	3	* Copyright (c) 1998-2016 The OpenSSL Project. All rights reserved.
	4	*
	5	* Redistribution and use in source and binary forms, with or without
	6	* modification, are permitted provided that the following conditions
	7	* are met:
	8	*
	9	* 1. Redistributions of source code must retain the above copyright
	10	* notice, this list of conditions and the following disclaimer.
	11	*
	12	* 2. Redistributions in binary form must reproduce the above copyright
	13	* notice, this list of conditions and the following disclaimer in
	14	* the documentation and/or other materials provided with the
	15	* distribution.
	16	*
	17	* 3. All advertising materials mentioning features or use of this
	18	* software must display the following acknowledgment:
	19	* "This product includes software developed by the OpenSSL Project
	20	* for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
	21	*
	22	* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
	23	* endorse or promote products derived from this software without
	24	* prior written permission. For written permission, please contact
	25	* openssl-core@openssl.org.
	26	*
	27	* 5. Products derived from this software may not be called "OpenSSL"
	28	* nor may "OpenSSL" appear in their names without prior written
	29	* permission of the OpenSSL Project.
	30	*
	31	* 6. Redistributions of any form whatsoever must retain the following
	32	* acknowledgment:
	33	* "This product includes software developed by the OpenSSL Project
	34	* for use in the OpenSSL Toolkit (http://www.openssl.org/)"
	35	*
	36	* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
	37	* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
	38	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
	39	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
	40	* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
	41	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
	42	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
	43	* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	44	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
	45	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
	46	* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
	47	* OF THE POSSIBILITY OF SUCH DAMAGE.
	48	* ====================================================================
	49	*
	50	* This product includes cryptographic software written by Eric Young
	51	* (eay@cryptsoft.com). This product includes software written by Tim
	52	* Hudson (tjh@cryptsoft.com).
	53	*
	54	*/
	55
0dfd6cf9 RP	56	#include <stdlib.h>
	57	#include <string.h>
	58
8c6afbc5 RP	59	#include <openssl/conf.h>
	60	#include <openssl/ct.h>
	61	#include <openssl/err.h>
	62	#include <openssl/evp.h>
	63	#include <openssl/safestack.h>
	64
	65	#include "internal/cryptlib.h"
	66
	67	/*
	68	* Information about a CT log server.
	69	*/
	70	struct ctlog_st {
	71	char *name;
	72	uint8_t log_id[CT_V1_HASHLEN];
	73	EVP_PKEY *public_key;
	74	};
	75
	76	/*
	77	* A store for multiple CTLOG instances.
	78	* It takes ownership of any CTLOG instances added to it.
	79	*/
	80	struct ctlog_store_st {
	81	STACK_OF(CTLOG) *logs;
	82	};
	83
	84	/* The context when loading a CT log list from a CONF file. */
	85	typedef struct ctlog_store_load_ctx_st {
	86	CTLOG_STORE *log_store;
	87	CONF *conf;
	88	} CTLOG_STORE_LOAD_CTX;
	89
	90	/*
	91	* Creates an empty context for loading a CT log store.
	92	* It should be populated before use.
	93	*/
0dfd6cf9	94	static CTLOG_STORE_LOAD_CTX *ctlog_store_load_ctx_new();
8c6afbc5 RP	95
	96	/*
	97	* Deletes a CT log store load context.
	98	* Does not delete any of the fields.
	99	*/
0dfd6cf9	100	static void ctlog_store_load_ctx_free(CTLOG_STORE_LOAD_CTX* ctx);
8c6afbc5	101
0dfd6cf9	102	static CTLOG_STORE_LOAD_CTX *ctlog_store_load_ctx_new()
8c6afbc5	103	{
0dfd6cf9 RP	104	CTLOG_STORE_LOAD_CTX ctx = OPENSSL_zalloc(sizeof(ctx));
0dfd6cf9 RP	105
8c6afbc5 RP	106	if (ctx == NULL) {
	107	CTerr(CT_F_CTLOG_STORE_LOAD_CTX_NEW, ERR_R_MALLOC_FAILURE);
	108	goto err;
	109	}
	110
	111	return ctx;
8c6afbc5	112	err:
0dfd6cf9	113	ctlog_store_load_ctx_free(ctx);
8c6afbc5 RP	114	return NULL;
	115	}
	116
0dfd6cf9	117	static void ctlog_store_load_ctx_free(CTLOG_STORE_LOAD_CTX* ctx)
8c6afbc5	118	{
8c6afbc5 RP	119	OPENSSL_free(ctx);
	120	}
	121
	122	/* Converts a log's public key into a SHA256 log ID */
0dfd6cf9	123	static int ct_v1_log_id_from_pkey(EVP_PKEY *pkey,
8c6afbc5 RP	124	unsigned char log_id[CT_V1_HASHLEN])
	125	{
	126	int ret = 0;
	127	unsigned char *pkey_der = NULL;
	128	int pkey_der_len = i2d_PUBKEY(pkey, &pkey_der);
0dfd6cf9	129
8c6afbc5 RP	130	if (pkey_der_len <= 0) {
	131	CTerr(CT_F_CT_V1_LOG_ID_FROM_PKEY, CT_R_LOG_KEY_INVALID);
	132	goto err;
	133	}
0dfd6cf9	134
8c6afbc5 RP	135	SHA256(pkey_der, pkey_der_len, log_id);
	136	ret = 1;
	137	err:
	138	OPENSSL_free(pkey_der);
	139	return ret;
	140	}
	141
	142	CTLOG_STORE *CTLOG_STORE_new(void)
	143	{
0dfd6cf9 RP	144	CTLOG_STORE ret = OPENSSL_zalloc(sizeof(ret));
0dfd6cf9 RP	145
8c6afbc5 RP	146	if (ret == NULL)
8c6afbc5 RP	147	goto err;
0dfd6cf9	148
8c6afbc5 RP	149	ret->logs = sk_CTLOG_new_null();
	150	if (ret->logs == NULL)
	151	goto err;
0dfd6cf9	152
8c6afbc5 RP	153	return ret;
	154	err:
	155	CTLOG_STORE_free(ret);
	156	return NULL;
	157	}
	158
	159	void CTLOG_STORE_free(CTLOG_STORE *store)
	160	{
	161	if (store != NULL) {
	162	sk_CTLOG_pop_free(store->logs, CTLOG_free);
	163	OPENSSL_free(store);
	164	}
	165	}
	166
0dfd6cf9	167	static CTLOG ctlog_new_from_conf(const CONF conf, const char *section)
8c6afbc5 RP	168	{
8c6afbc5 RP	169	CTLOG *ret = NULL;
0dfd6cf9	170	char *description = NCONF_get_string(conf, section, "description");
8c6afbc5	171	char *pkey_base64;
8c6afbc5 RP	172
	173	if (description == NULL) {
	174	CTerr(CT_F_CTLOG_NEW_FROM_CONF, CT_R_LOG_CONF_MISSING_DESCRIPTION);
	175	goto end;
	176	}
	177
	178	pkey_base64 = NCONF_get_string(conf, section, "key");
8c6afbc5 RP	179	if (pkey_base64 == NULL) {
	180	CTerr(CT_F_CTLOG_NEW_FROM_CONF, CT_R_LOG_CONF_MISSING_KEY);
	181	goto end;
	182	}
	183
	184	ret = CTLOG_new_from_base64(pkey_base64, description);
	185	if (ret == NULL) {
	186	CTerr(CT_F_CTLOG_NEW_FROM_CONF, CT_R_LOG_CONF_INVALID);
	187	goto end;
	188	}
	189
	190	end:
	191	return ret;
	192	}
	193
	194	int CTLOG_STORE_load_default_file(CTLOG_STORE *store)
	195	{
0dfd6cf9 RP	196	const char *fpath = getenv(CTLOG_FILE_EVP);
0dfd6cf9 RP	197
8c6afbc5 RP	198	if (fpath == NULL)
8c6afbc5 RP	199	fpath = CTLOG_FILE;
0dfd6cf9	200
8c6afbc5 RP	201	return CTLOG_STORE_load_file(store, fpath);
	202	}
	203
0dfd6cf9	204	static int ctlog_store_load_log(const char log_name, int log_name_len, void arg)
8c6afbc5 RP	205	{
	206	CTLOG_STORE_LOAD_CTX *load_ctx = arg;
	207	CTLOG *ct_log;
8c6afbc5 RP	208	/* log_name may not be null-terminated, so fix that before using it */
8c6afbc5 RP	209	char *tmp = OPENSSL_strndup(log_name, log_name_len);
0dfd6cf9 RP	210
0dfd6cf9 RP	211	ct_log = ctlog_new_from_conf(load_ctx->conf, tmp);
8c6afbc5 RP	212	OPENSSL_free(tmp);
	213	if (ct_log == NULL)
	214	return 0;
	215
	216	sk_CTLOG_push(load_ctx->log_store->logs, ct_log);
	217	return 1;
	218	}
	219
	220	int CTLOG_STORE_load_file(CTLOG_STORE store, const char file)
	221	{
	222	int ret = -1;
	223	char *enabled_logs;
0dfd6cf9 RP	224	CTLOG_STORE_LOAD_CTX* load_ctx = ctlog_store_load_ctx_new();
0dfd6cf9 RP	225
8c6afbc5 RP	226	load_ctx->log_store = store;
	227	load_ctx->conf = NCONF_new(NULL);
	228	if (load_ctx->conf == NULL)
	229	goto end;
	230
	231	ret = NCONF_load(load_ctx->conf, file, NULL);
	232	if (ret <= 0) {
	233	CTerr(CT_F_CTLOG_STORE_LOAD_FILE, CT_R_LOG_CONF_INVALID);
	234	goto end;
	235	}
	236
	237	enabled_logs = NCONF_get_string(load_ctx->conf, NULL, "enabled_logs");
0dfd6cf9	238	CONF_parse_list(enabled_logs, ',', 1, ctlog_store_load_log, load_ctx);
8c6afbc5 RP	239
	240	end:
	241	NCONF_free(load_ctx->conf);
0dfd6cf9	242	ctlog_store_load_ctx_free(load_ctx);
8c6afbc5 RP	243	return ret;
	244	}
	245
	246	/*
	247	* Initialize a new CTLOG object.
	248	* Takes ownership of the public key.
	249	* Copies the name.
	250	*/
	251	CTLOG CTLOG_new(EVP_PKEY public_key, const char *name)
	252	{
0dfd6cf9 RP	253	CTLOG *ret = CTLOG_new_null();
0dfd6cf9 RP	254
8c6afbc5 RP	255	if (ret == NULL)
8c6afbc5 RP	256	goto err;
0dfd6cf9	257
8c6afbc5 RP	258	ret->name = OPENSSL_strdup(name);
	259	if (ret->name == NULL)
	260	goto err;
0dfd6cf9	261
8c6afbc5	262	ret->public_key = public_key;
0dfd6cf9	263	if (ct_v1_log_id_from_pkey(public_key, ret->log_id) != 1)
8c6afbc5	264	goto err;
0dfd6cf9	265
8c6afbc5 RP	266	return ret;
	267	err:
	268	CTLOG_free(ret);
	269	return NULL;
	270	}
	271
	272	CTLOG *CTLOG_new_null(void)
	273	{
0dfd6cf9 RP	274	CTLOG ret = OPENSSL_zalloc(sizeof(ret));
0dfd6cf9 RP	275
8c6afbc5 RP	276	if (ret == NULL)
8c6afbc5 RP	277	CTerr(CT_F_CTLOG_NEW_NULL, ERR_R_MALLOC_FAILURE);
0dfd6cf9	278
8c6afbc5 RP	279	return ret;
	280	}
	281
	282	/* Frees CT log and associated structures */
	283	void CTLOG_free(CTLOG *log)
	284	{
	285	if (log != NULL) {
	286	OPENSSL_free(log->name);
8c6afbc5	287	EVP_PKEY_free(log->public_key);
8c6afbc5 RP	288	OPENSSL_free(log);
	289	}
	290	}
	291
	292	const char CTLOG_get0_name(CTLOG log)
	293	{
	294	return log->name;
	295	}
	296
	297	void CTLOG_get0_log_id(CTLOG log, uint8_t log_id, size_t log_id_len)
	298	{
	299	*log_id = log->log_id;
	300	*log_id_len = CT_V1_HASHLEN;
	301	}
	302
	303	EVP_PKEY CTLOG_get0_public_key(CTLOG log)
	304	{
	305	return log->public_key;
	306	}
	307
	308	/*
	309	* Given a log ID, finds the matching log.
	310	* Returns NULL if no match found.
	311	*/
	312	CTLOG CTLOG_STORE_get0_log_by_id(const CTLOG_STORE store,
	313	const uint8_t *log_id,
	314	size_t log_id_len)
	315	{
	316	int i;
0dfd6cf9	317
8c6afbc5 RP	318	for (i = 0; i < sk_CTLOG_num(store->logs); ++i) {
	319	CTLOG *log = sk_CTLOG_value(store->logs, i);
	320	if (memcmp(log->log_id, log_id, log_id_len) == 0)
	321	return log;
	322	}
0dfd6cf9	323
8c6afbc5 RP	324	return NULL;
8c6afbc5 RP	325	}