crypto/x509v3/v3_info.c

   1 /* v3_info.c */
   2 /*
   3  * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
   4  * 1999.
   5  */
   6 /* ====================================================================
   7  * Copyright (c) 1999 The OpenSSL Project.  All rights reserved.
   8  *
   9  * Redistribution and use in source and binary forms, with or without
  10  * modification, are permitted provided that the following conditions
  11  * are met:
  12  *
  13  * 1. Redistributions of source code must retain the above copyright
  14  *    notice, this list of conditions and the following disclaimer.
  15  *
  16  * 2. Redistributions in binary form must reproduce the above copyright
  17  *    notice, this list of conditions and the following disclaimer in
  18  *    the documentation and/or other materials provided with the
  19  *    distribution.
  20  *
  21  * 3. All advertising materials mentioning features or use of this
  22  *    software must display the following acknowledgment:
  23  *    "This product includes software developed by the OpenSSL Project
  24  *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
  25  *
  26  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
  27  *    endorse or promote products derived from this software without
  28  *    prior written permission. For written permission, please contact
  29  *    licensing@OpenSSL.org.
  30  *
  31  * 5. Products derived from this software may not be called "OpenSSL"
  32  *    nor may "OpenSSL" appear in their names without prior written
  33  *    permission of the OpenSSL Project.
  34  *
  35  * 6. Redistributions of any form whatsoever must retain the following
  36  *    acknowledgment:
  37  *    "This product includes software developed by the OpenSSL Project
  38  *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
  39  *
  40  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
  41  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  42  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
  43  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
  44  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
  45  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
  46  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
  47  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  48  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
  49  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
  50  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
  51  * OF THE POSSIBILITY OF SUCH DAMAGE.
  52  * ====================================================================
  53  *
  54  * This product includes cryptographic software written by Eric Young
  55  * (eay@cryptsoft.com).  This product includes software written by Tim
  56  * Hudson (tjh@cryptsoft.com).
  57  *
  58  */
  59
  60 #include <stdio.h>
  61 #include "internal/cryptlib.h"
  62 #include <openssl/conf.h>
  63 #include <openssl/asn1.h>
  64 #include <openssl/asn1t.h>
  65 #include <openssl/x509v3.h>
  66 #include "ext_dat.h"
  67
  68 static STACK_OF(CONF_VALUE) *i2v_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD
  69                                                        *method, AUTHORITY_INFO_ACCESS
  70                                                        *ainfo, STACK_OF(CONF_VALUE)
  71                                                        *ret);
  72 static AUTHORITY_INFO_ACCESS *v2i_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD
  73                                                         *method,
  74                                                         X509V3_CTX *ctx,
  75                                                         STACK_OF(CONF_VALUE)
  76                                                         *nval);
  77
  78 const X509V3_EXT_METHOD v3_info = { NID_info_access, X509V3_EXT_MULTILINE,
  79     ASN1_ITEM_ref(AUTHORITY_INFO_ACCESS),
  80     0, 0, 0, 0,
  81     0, 0,
  82     (X509V3_EXT_I2V) i2v_AUTHORITY_INFO_ACCESS,
  83     (X509V3_EXT_V2I)v2i_AUTHORITY_INFO_ACCESS,
  84     0, 0,
  85     NULL
  86 };
  87
  88 const X509V3_EXT_METHOD v3_sinfo = { NID_sinfo_access, X509V3_EXT_MULTILINE,
  89     ASN1_ITEM_ref(AUTHORITY_INFO_ACCESS),
  90     0, 0, 0, 0,
  91     0, 0,
  92     (X509V3_EXT_I2V) i2v_AUTHORITY_INFO_ACCESS,
  93     (X509V3_EXT_V2I)v2i_AUTHORITY_INFO_ACCESS,
  94     0, 0,
  95     NULL
  96 };
  97
  98 ASN1_SEQUENCE(ACCESS_DESCRIPTION) = {
  99         ASN1_SIMPLE(ACCESS_DESCRIPTION, method, ASN1_OBJECT),
 100         ASN1_SIMPLE(ACCESS_DESCRIPTION, location, GENERAL_NAME)
 101 } ASN1_SEQUENCE_END(ACCESS_DESCRIPTION)
 102
 103 IMPLEMENT_ASN1_FUNCTIONS(ACCESS_DESCRIPTION)
 104
 105 ASN1_ITEM_TEMPLATE(AUTHORITY_INFO_ACCESS) =
 106         ASN1_EX_TEMPLATE_TYPE(ASN1_TFLG_SEQUENCE_OF, 0, GeneralNames, ACCESS_DESCRIPTION)
 107 ASN1_ITEM_TEMPLATE_END(AUTHORITY_INFO_ACCESS)
 108
 109 IMPLEMENT_ASN1_FUNCTIONS(AUTHORITY_INFO_ACCESS)
 110
 111 static STACK_OF(CONF_VALUE) *i2v_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD
 112                                                        *method, AUTHORITY_INFO_ACCESS
 113                                                        *ainfo, STACK_OF(CONF_VALUE)
 114                                                        *ret)
 115 {
 116     ACCESS_DESCRIPTION *desc;
 117     int i, nlen;
 118     char objtmp[80], *ntmp;
 119     CONF_VALUE *vtmp;
 120     for (i = 0; i < sk_ACCESS_DESCRIPTION_num(ainfo); i++) {
 121         desc = sk_ACCESS_DESCRIPTION_value(ainfo, i);
 122         ret = i2v_GENERAL_NAME(method, desc->location, ret);
 123         if (!ret)
 124             break;
 125         vtmp = sk_CONF_VALUE_value(ret, i);
 126         i2t_ASN1_OBJECT(objtmp, sizeof objtmp, desc->method);
 127         nlen = strlen(objtmp) + strlen(vtmp->name) + 5;
 128         ntmp = OPENSSL_malloc(nlen);
 129         if (ntmp == NULL) {
 130             X509V3err(X509V3_F_I2V_AUTHORITY_INFO_ACCESS,
 131                       ERR_R_MALLOC_FAILURE);
 132             return NULL;
 133         }
 134         OPENSSL_strlcpy(ntmp, objtmp, nlen);
 135         OPENSSL_strlcat(ntmp, " - ", nlen);
 136         OPENSSL_strlcat(ntmp, vtmp->name, nlen);
 137         OPENSSL_free(vtmp->name);
 138         vtmp->name = ntmp;
 139
 140     }
 141     if (!ret)
 142         return sk_CONF_VALUE_new_null();
 143     return ret;
 144 }
 145
 146 static AUTHORITY_INFO_ACCESS *v2i_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD
 147                                                         *method,
 148                                                         X509V3_CTX *ctx,
 149                                                         STACK_OF(CONF_VALUE)
 150                                                         *nval)
 151 {
 152     AUTHORITY_INFO_ACCESS *ainfo = NULL;
 153     CONF_VALUE *cnf, ctmp;
 154     ACCESS_DESCRIPTION *acc;
 155     int i, objlen;
 156     char *objtmp, *ptmp;
 157
 158     if ((ainfo = sk_ACCESS_DESCRIPTION_new_null()) == NULL) {
 159         X509V3err(X509V3_F_V2I_AUTHORITY_INFO_ACCESS, ERR_R_MALLOC_FAILURE);
 160         return NULL;
 161     }
 162     for (i = 0; i < sk_CONF_VALUE_num(nval); i++) {
 163         cnf = sk_CONF_VALUE_value(nval, i);
 164         if ((acc = ACCESS_DESCRIPTION_new()) == NULL
 165             || !sk_ACCESS_DESCRIPTION_push(ainfo, acc)) {
 166             X509V3err(X509V3_F_V2I_AUTHORITY_INFO_ACCESS,
 167                       ERR_R_MALLOC_FAILURE);
 168             goto err;
 169         }
 170         ptmp = strchr(cnf->name, ';');
 171         if (!ptmp) {
 172             X509V3err(X509V3_F_V2I_AUTHORITY_INFO_ACCESS,
 173                       X509V3_R_INVALID_SYNTAX);
 174             goto err;
 175         }
 176         objlen = ptmp - cnf->name;
 177         ctmp.name = ptmp + 1;
 178         ctmp.value = cnf->value;
 179         if (!v2i_GENERAL_NAME_ex(acc->location, method, ctx, &ctmp, 0))
 180             goto err;
 181         if ((objtmp = OPENSSL_malloc(objlen + 1)) == NULL) {
 182             X509V3err(X509V3_F_V2I_AUTHORITY_INFO_ACCESS,
 183                       ERR_R_MALLOC_FAILURE);
 184             goto err;
 185         }
 186         strncpy(objtmp, cnf->name, objlen);
 187         objtmp[objlen] = 0;
 188         acc->method = OBJ_txt2obj(objtmp, 0);
 189         if (!acc->method) {
 190             X509V3err(X509V3_F_V2I_AUTHORITY_INFO_ACCESS,
 191                       X509V3_R_BAD_OBJECT);
 192             ERR_add_error_data(2, "value=", objtmp);
 193             OPENSSL_free(objtmp);
 194             goto err;
 195         }
 196         OPENSSL_free(objtmp);
 197
 198     }
 199     return ainfo;
 200  err:
 201     sk_ACCESS_DESCRIPTION_pop_free(ainfo, ACCESS_DESCRIPTION_free);
 202     return NULL;
 203 }
 204
 205 int i2a_ACCESS_DESCRIPTION(BIO *bp, ACCESS_DESCRIPTION *a)
 206 {
 207     i2a_ASN1_OBJECT(bp, a->method);
 208     return 2;
 209 }