1 /* v3_info.c */
2 /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
3  * project 1999.
4  */
5 /* ====================================================================
6  * Copyright (c) 1999 The OpenSSL Project.  All rights reserved.
7  *
8  * Redistribution and use in source and binary forms, with or without
9  * modification, are permitted provided that the following conditions
10  * are met:
11  *
12  * 1. Redistributions of source code must retain the above copyright
13  *    notice, this list of conditions and the following disclaimer.
14  *
15  * 2. Redistributions in binary form must reproduce the above copyright
16  *    notice, this list of conditions and the following disclaimer in
17  *    the documentation and/or other materials provided with the
18  *    distribution.
19  *
20  * 3. All advertising materials mentioning features or use of this
21  *    software must display the following acknowledgment:
22  *    "This product includes software developed by the OpenSSL Project
23  *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
24  *
25  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26  *    endorse or promote products derived from this software without
27  *    prior written permission. For written permission, please contact
28  *    licensing@OpenSSL.org.
29  *
30  * 5. Products derived from this software may not be called "OpenSSL"
31  *    nor may "OpenSSL" appear in their names without prior written
32  *    permission of the OpenSSL Project.
33  *
34  * 6. Redistributions of any form whatsoever must retain the following
35  *    acknowledgment:
36  *    "This product includes software developed by the OpenSSL Project
37  *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
38  *
39  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
43  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50  * OF THE POSSIBILITY OF SUCH DAMAGE.
51  * ====================================================================
52  *
53  * This product includes cryptographic software written by Eric Young
54  * (eay@cryptsoft.com).  This product includes software written by Tim
55  * Hudson (tjh@cryptsoft.com).
56  *
57  */
58 
59 #include <stdio.h>
60 #include <string.h>
61 
62 #include <openssl/asn1.h>
63 #include <openssl/asn1t.h>
64 #include <openssl/buf.h>
65 #include <openssl/conf.h>
66 #include <openssl/err.h>
67 #include <openssl/mem.h>
68 #include <openssl/obj.h>
69 #include <openssl/x509v3.h>
70 
71 
72 static STACK_OF(CONF_VALUE) *i2v_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD *method,
73 				AUTHORITY_INFO_ACCESS *ainfo,
74 						STACK_OF(CONF_VALUE) *ret);
75 static AUTHORITY_INFO_ACCESS *v2i_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD *method,
76 				 X509V3_CTX *ctx, STACK_OF(CONF_VALUE) *nval);
77 
78 const X509V3_EXT_METHOD v3_info =
79 { NID_info_access, X509V3_EXT_MULTILINE, ASN1_ITEM_ref(AUTHORITY_INFO_ACCESS),
80 0,0,0,0,
81 0,0,
82 (X509V3_EXT_I2V)i2v_AUTHORITY_INFO_ACCESS,
83 (X509V3_EXT_V2I)v2i_AUTHORITY_INFO_ACCESS,
84 0,0,
85 NULL};
86 
87 const X509V3_EXT_METHOD v3_sinfo =
88 { NID_sinfo_access, X509V3_EXT_MULTILINE, ASN1_ITEM_ref(AUTHORITY_INFO_ACCESS),
89 0,0,0,0,
90 0,0,
91 (X509V3_EXT_I2V)i2v_AUTHORITY_INFO_ACCESS,
92 (X509V3_EXT_V2I)v2i_AUTHORITY_INFO_ACCESS,
93 0,0,
94 NULL};
95 
96 ASN1_SEQUENCE(ACCESS_DESCRIPTION) = {
97 	ASN1_SIMPLE(ACCESS_DESCRIPTION, method, ASN1_OBJECT),
98 	ASN1_SIMPLE(ACCESS_DESCRIPTION, location, GENERAL_NAME)
99 } ASN1_SEQUENCE_END(ACCESS_DESCRIPTION)
100 
101 IMPLEMENT_ASN1_FUNCTIONS(ACCESS_DESCRIPTION)
102 
103 ASN1_ITEM_TEMPLATE(AUTHORITY_INFO_ACCESS) =
104 	ASN1_EX_TEMPLATE_TYPE(ASN1_TFLG_SEQUENCE_OF, 0, GeneralNames, ACCESS_DESCRIPTION)
105 ASN1_ITEM_TEMPLATE_END(AUTHORITY_INFO_ACCESS)
106 
107 IMPLEMENT_ASN1_FUNCTIONS(AUTHORITY_INFO_ACCESS)
108 
109 static STACK_OF(CONF_VALUE) *i2v_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD *method,
110 				AUTHORITY_INFO_ACCESS *ainfo,
111 						STACK_OF(CONF_VALUE) *ret)
112 {
113 	ACCESS_DESCRIPTION *desc;
114 	size_t i;
115 	int nlen;
116 	char objtmp[80], *ntmp;
117 	CONF_VALUE *vtmp;
118 	for(i = 0; i < sk_ACCESS_DESCRIPTION_num(ainfo); i++) {
119 		desc = sk_ACCESS_DESCRIPTION_value(ainfo, i);
120 		ret = i2v_GENERAL_NAME(method, desc->location, ret);
121 		if(!ret) break;
122 		vtmp = sk_CONF_VALUE_value(ret, i);
123 		i2t_ASN1_OBJECT(objtmp, sizeof objtmp, desc->method);
124 		nlen = strlen(objtmp) + strlen(vtmp->name) + 5;
125 		ntmp = OPENSSL_malloc(nlen);
126 		if(!ntmp) {
127 			OPENSSL_PUT_ERROR(X509V3, i2v_AUTHORITY_INFO_ACCESS, ERR_R_MALLOC_FAILURE);
128 			return NULL;
129 		}
130 		BUF_strlcpy(ntmp, objtmp, nlen);
131 		BUF_strlcat(ntmp, " - ", nlen);
132 		BUF_strlcat(ntmp, vtmp->name, nlen);
133 		OPENSSL_free(vtmp->name);
134 		vtmp->name = ntmp;
135 
136 	}
137 	if(!ret) return sk_CONF_VALUE_new_null();
138 	return ret;
139 }
140 
v2i_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD * method,X509V3_CTX * ctx,STACK_OF (CONF_VALUE)* nval)141 static AUTHORITY_INFO_ACCESS *v2i_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD *method,
142 				 X509V3_CTX *ctx, STACK_OF(CONF_VALUE) *nval)
143 {
144 	AUTHORITY_INFO_ACCESS *ainfo = NULL;
145 	CONF_VALUE *cnf, ctmp;
146 	ACCESS_DESCRIPTION *acc;
147 	size_t i;
148 	int objlen;
149 	char *objtmp, *ptmp;
150 	if(!(ainfo = sk_ACCESS_DESCRIPTION_new_null())) {
151 		OPENSSL_PUT_ERROR(X509V3, v2i_AUTHORITY_INFO_ACCESS, ERR_R_MALLOC_FAILURE);
152 		return NULL;
153 	}
154 	for(i = 0; i < sk_CONF_VALUE_num(nval); i++) {
155 		cnf = sk_CONF_VALUE_value(nval, i);
156 		if(!(acc = ACCESS_DESCRIPTION_new())
157 			|| !sk_ACCESS_DESCRIPTION_push(ainfo, acc)) {
158 			OPENSSL_PUT_ERROR(X509V3, v2i_AUTHORITY_INFO_ACCESS, ERR_R_MALLOC_FAILURE);
159 			goto err;
160 		}
161 		ptmp = strchr(cnf->name, ';');
162 		if(!ptmp) {
163 			OPENSSL_PUT_ERROR(X509V3, v2i_AUTHORITY_INFO_ACCESS, X509V3_R_INVALID_SYNTAX);
164 			goto err;
165 		}
166 		objlen = ptmp - cnf->name;
167 		ctmp.name = ptmp + 1;
168 		ctmp.value = cnf->value;
169 		if(!v2i_GENERAL_NAME_ex(acc->location, method, ctx, &ctmp, 0))
170 								 goto err;
171 		if(!(objtmp = OPENSSL_malloc(objlen + 1))) {
172 			OPENSSL_PUT_ERROR(X509V3, v2i_AUTHORITY_INFO_ACCESS, ERR_R_MALLOC_FAILURE);
173 			goto err;
174 		}
175 		strncpy(objtmp, cnf->name, objlen);
176 		objtmp[objlen] = 0;
177 		acc->method = OBJ_txt2obj(objtmp, 0);
178 		if(!acc->method) {
179 			OPENSSL_PUT_ERROR(X509V3, v2i_AUTHORITY_INFO_ACCESS, X509V3_R_BAD_OBJECT);
180 			ERR_add_error_data(2, "value=", objtmp);
181 			OPENSSL_free(objtmp);
182 			goto err;
183 		}
184 		OPENSSL_free(objtmp);
185 
186 	}
187 	return ainfo;
188 	err:
189 	sk_ACCESS_DESCRIPTION_pop_free(ainfo, ACCESS_DESCRIPTION_free);
190 	return NULL;
191 }
192 
i2a_ACCESS_DESCRIPTION(BIO * bp,ACCESS_DESCRIPTION * a)193 int i2a_ACCESS_DESCRIPTION(BIO *bp, ACCESS_DESCRIPTION* a)
194         {
195 	i2a_ASN1_OBJECT(bp, a->method);
196 #ifdef UNDEF
197 	i2a_GENERAL_NAME(bp, a->location);
198 #endif
199 	return 2;
200 	}
201