crypto/ct/ct_prn.c

   1 /*
   2  * Written by Rob Stradling (rob@comodo.com) and Stephen Henson
   3  * (steve@openssl.org) for the OpenSSL project 2014.
   4  */
   5 /* ====================================================================
   6  * Copyright (c) 2014 The OpenSSL Project.  All rights reserved.
   7  *
   8  * Redistribution and use in source and binary forms, with or without
   9  * modification, are permitted provided that the following conditions
  10  * are met:
  11  *
  12  * 1. Redistributions of source code must retain the above copyright
  13  *    notice, this list of conditions and the following disclaimer.
  14  *
  15  * 2. Redistributions in binary form must reproduce the above copyright
  16  *    notice, this list of conditions and the following disclaimer in
  17  *    the documentation and/or other materials provided with the
  18  *    distribution.
  19  *
  20  * 3. All advertising materials mentioning features or use of this
  21  *    software must display the following acknowledgment:
  22  *    "This product includes software developed by the OpenSSL Project
  23  *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
  24  *
  25  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
  26  *    endorse or promote products derived from this software without
  27  *    prior written permission. For written permission, please contact
  28  *    licensing@OpenSSL.org.
  29  *
  30  * 5. Products derived from this software may not be called "OpenSSL"
  31  *    nor may "OpenSSL" appear in their names without prior written
  32  *    permission of the OpenSSL Project.
  33  *
  34  * 6. Redistributions of any form whatsoever must retain the following
  35  *    acknowledgment:
  36  *    "This product includes software developed by the OpenSSL Project
  37  *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
  38  *
  39  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
  40  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  41  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
  42  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
  43  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
  44  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
  45  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
  46  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  47  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
  48  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
  49  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
  50  * OF THE POSSIBILITY OF SUCH DAMAGE.
  51  * ====================================================================
  52  *
  53  * This product includes cryptographic software written by Eric Young
  54  * (eay@cryptsoft.com).  This product includes software written by Tim
  55  * Hudson (tjh@cryptsoft.com).
  56  *
  57  */
  58
  59 #ifdef OPENSSL_NO_CT
  60 # error "CT is disabled"
  61 #endif
  62
  63 #include <openssl/asn1.h>
  64 #include <openssl/bio.h>
  65
  66 #include "ct_locl.h"
  67
  68 static void SCT_signature_algorithms_print(const SCT *sct, BIO *out)
  69 {
  70     int nid = SCT_get_signature_nid(sct);
  71
  72     if (nid <= 0)
  73         BIO_printf(out, "%02X%02X", sct->hash_alg, sct->sig_alg);
  74     else
  75         BIO_printf(out, "%s", OBJ_nid2ln(nid));
  76 }
  77
  78 static void timestamp_print(uint64_t timestamp, BIO *out)
  79 {
  80     ASN1_GENERALIZEDTIME *gen = ASN1_GENERALIZEDTIME_new();
  81     char genstr[20];
  82
  83     ASN1_GENERALIZEDTIME_adj(gen, (time_t)0,
  84                              (int)(timestamp / 86400000),
  85                              (timestamp % 86400000) / 1000);
  86     /*
  87      * Note GeneralizedTime from ASN1_GENERALIZETIME_adj is always 15
  88      * characters long with a final Z. Update it with fractional seconds.
  89      */
  90     BIO_snprintf(genstr, sizeof(genstr), "%.14s.%03dZ",
  91                  ASN1_STRING_data(gen), (unsigned int)(timestamp % 1000));
  92     ASN1_GENERALIZEDTIME_set_string(gen, genstr);
  93     ASN1_GENERALIZEDTIME_print(out, gen);
  94     ASN1_GENERALIZEDTIME_free(gen);
  95 }
  96
  97 void SCT_print(const SCT *sct, BIO *out, int indent)
  98 {
  99     BIO_printf(out, "%*sSigned Certificate Timestamp:", indent, "");
 100     BIO_printf(out, "\n%*sVersion   : ", indent + 4, "");
 101
 102     if (sct->version != SCT_VERSION_V1) {
 103         BIO_printf(out, "unknown\n%*s", indent + 16, "");
 104         BIO_hex_string(out, indent + 16, 16, sct->sct, sct->sct_len);
 105         return;
 106     }
 107
 108     BIO_printf(out, "v1 (0x0)");
 109
 110     BIO_printf(out, "\n%*sLog ID    : ", indent + 4, "");
 111     BIO_hex_string(out, indent + 16, 16, sct->log_id, sct->log_id_len);
 112
 113     BIO_printf(out, "\n%*sTimestamp : ", indent + 4, "");
 114     timestamp_print(sct->timestamp, out);
 115
 116     BIO_printf(out, "\n%*sExtensions: ", indent + 4, "");
 117     if (sct->ext_len == 0)
 118         BIO_printf(out, "none");
 119     else
 120         BIO_hex_string(out, indent + 16, 16, sct->ext, sct->ext_len);
 121
 122     BIO_printf(out, "\n%*sSignature : ", indent + 4, "");
 123     SCT_signature_algorithms_print(sct, out);
 124     BIO_printf(out, "\n%*s            ", indent + 4, "");
 125     BIO_hex_string(out, indent + 16, 16, sct->sig, sct->sig_len);
 126 }
 127
 128 void SCT_LIST_print(const STACK_OF(SCT) *sct_list, BIO *out, int indent,
 129                     const char *separator)
 130 {
 131     int i;
 132
 133     for (i = 0; i < sk_SCT_num(sct_list); ++i) {
 134         SCT *sct = sk_SCT_value(sct_list, i);
 135         SCT_print(sct, out, indent);
 136         if (i < sk_SCT_num(sct_list) - 1)
 137             BIO_printf(out, "%s", separator);
 138     }
 139 }